Redirect Issue

Patrick123 · June 21, 2010

Hey guys,

Like others out there, I also have the Google redirect issue. It usually takes me to some advertisement page/google analytics and whenever I search on Google for anything, it doesn't let me go to the designated website.

Any help would be greatly appreciated Thank you.

Here's my HiJackThis log:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 23:02:47, on 6/20/2010

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.17055)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe

C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Symantec AntiVirus\DefWatch.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\WINDOWS\system32\lxddcoms.exe

C:\WINDOWS\system32\PnkBstrA.exe

C:\WINDOWS\system32\PnkBstrB.exe

C:\Program Files\Symantec AntiVirus\SavRoam.exe

C:\Program Files\Dell Support Center\bin\sprtsvc.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Symantec AntiVirus\Rtvscan.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Lexmark 2500 Series\lxddmon.exe

C:\Program Files\Lexmark 2500 Series\lxddamon.exe

C:\WINDOWS\stsystra.exe

C:\Program Files\Dell Support Center\bin\sprtcmd.exe

C:\Program Files\Common Files\Symantec Shared\ccApp.exe

C:\PROGRA~1\SYMANT~1\VPTray.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\WINDOWS\vVX6000.exe

C:\Program Files\iTunes\iTunesHelper.exe

D:\Documents and Settings\Chris\Winamp Remote\bin\OrbTray.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe

D:\Program Files\Digital Line Detect\DLG.exe

C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Google\Update\1.2.183.29\GoogleCrashHandler.exe

D:\Documents and Settings\Chris\Winamp Remote\bin\Orb.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Skype\Phone\Skype.exe

C:\Program Files\Skype\Plugin Manager\skypePM.exe

C:\WINDOWS\system32\taskmgr.exe

C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe

C:\WINDOWS\system32\conime.exe

C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\IRENE KIM\Desktop\OTL.exe

C:\WINDOWS\notepad.exe

C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O4 - HKLM\..\Run: [lxddmon.exe] "C:\Program Files\Lexmark 2500 Series\lxddmon.exe"

O4 - HKLM\..\Run: [lxddamon] "C:\Program Files\Lexmark 2500 Series\lxddamon.exe"

O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s

O4 - HKLM\..\Run: [uIUCU] C:\DOCUME~1\SEOKTA~1\LOCALS~1\Temp\UIUCU.EXE -CLEAN_UP -S

O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe

O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"

O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter

O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"

O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe

O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32

O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC

O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC

O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [VX6000] C:\WINDOWS\vVX6000.exe

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKCU\..\Run: [Orb] "D:\Documents and Settings\Chris\Winamp Remote\bin\OrbTray.exe" /background

O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler

O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\Run: [M5T8QL3YW3] C:\WINDOWS\TEMP\Bg1.exe (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')

O4 - .DEFAULT User Startup: wyli.exe (User 'Default user')

O4 - Global Startup: Digital Line Detect.lnk = ?

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll

O15 - ESC Trusted Zone: http://*.update.microsoft.com

O17 - HKLM\System\CCS\Services\Tcpip\..\{E4D45501-247A-4891-B8AB-0ADB0253D186}: NameServer = 208.67.222.222,208.67.220.220

O18 - Protocol: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll

O18 - Protocol: cdl - {3DD53D40-7B8B-11D0-B013-00AA0059CE02} - C:\WINDOWS\system32\urlmon.dll

O18 - Protocol: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll

O18 - Protocol: file - {79EAC9E7-BAF9-11CE-8C82-00AA004BA90B} - C:\WINDOWS\system32\urlmon.dll

O18 - Protocol: ftp - {79EAC9E3-BAF9-11CE-8C82-00AA004BA90B} - C:\WINDOWS\system32\urlmon.dll

O18 - Protocol: gopher - {79EAC9E4-BAF9-11CE-8C82-00AA004BA90B} - C:\WINDOWS\system32\urlmon.dll

O18 - Protocol: http - {79EAC9E2-BAF9-11CE-8C82-00AA004BA90B} - C:\WINDOWS\system32\urlmon.dll

O18 - Protocol: https - {79EAC9E5-BAF9-11CE-8C82-00AA004BA90B} - C:\WINDOWS\system32\urlmon.dll

O18 - Protocol: ipp - (no CLSID) - (no file)

O18 - Protocol: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll

O18 - Protocol: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: local - {79EAC9E7-BAF9-11CE-8C82-00AA004BA90B} - C:\WINDOWS\system32\urlmon.dll

O18 - Protocol: mailto - {3050F3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll

O18 - Protocol: mhtml - {05300401-BCBC-11D0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll

O18 - Protocol: mk - {79EAC9E6-BAF9-11CE-8C82-00AA004BA90B} - C:\WINDOWS\system32\urlmon.dll

O18 - Protocol: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll

O18 - Protocol: msdaipp - (no CLSID) - (no file)

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL

O18 - Protocol: mso-offdap - {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL

O18 - Protocol: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL

O18 - Protocol: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll

O18 - Protocol: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll

O18 - Protocol: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll

O18 - Protocol: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll

O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe

O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe

O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe

O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: lxdd_device - - C:\WINDOWS\system32\lxddcoms.exe

O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)

O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe

O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe

O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe

O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe

O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe

O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe

--

End of file - 12879 bytes

Patrick123 · June 21, 2010

Here's my OTL.txt log after following another thread's advice regarding OTL(OTL.txt was too long so I divided it up into numerous posts. Sorry!):

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,022.00 Mb Total Physical Memory | 405.00 Mb Available Physical Memory | 40.00% Memory free

2.00 Gb Paging File | 2.00 Gb Available in Paging File | 67.00% Paging File free

Paging file location(s): C:\pagefile.sys 1533 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 48.83 Gb Total Space | 6.44 Gb Free Space | 13.19% Space Free | Partition Type: NTFS

Drive D: | 183.99 Gb Total Space | 55.05 Gb Free Space | 29.92% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: COMMON

Current User Name: IRENE KIM

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Company Name Whitelist: Off

Skip Microsoft Files: Off

File Age = 30 Days

Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\IRENE KIM\Desktop\OTL.exe (OldTimer Tools)

PRC - C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Google\Update\1.2.183.29\GoogleCrashHandler.exe (Google Inc.)

PRC - C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Google\Chrome\Application\chrome.exe (Google Inc.)

PRC - C:\WINDOWS\vVX6000.exe (Microsoft Corporation

)

PRC - C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)

PRC - C:\Program Files\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)

PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)

PRC - C:\WINDOWS\system32\conime.exe (Microsoft Corporation)

PRC - D:\Documents and Settings\Chris\Winamp Remote\bin\OrbTray.exe (Orb Networks)

PRC - D:\Documents and Settings\Chris\Winamp Remote\bin\Orb.exe (Orb Networks, Inc.)

PRC - C:\Program Files\Lexmark 2500 Series\lxddmon.exe ()

PRC - C:\WINDOWS\system32\lxddcoms.exe ( )

PRC - C:\Program Files\Lexmark 2500 Series\lxddamon.exe ()

PRC - C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)

PRC - C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)

PRC - C:\Program Files\Symantec AntiVirus\VPTray.exe (Symantec Corporation)

PRC - C:\Program Files\Symantec AntiVirus\SavRoam.exe (symantec)

PRC - C:\Program Files\Symantec AntiVirus\Rtvscan.exe (Symantec Corporation)

PRC - C:\Program Files\Symantec AntiVirus\DefWatch.exe (Symantec Corporation)

PRC - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe (Symantec Corporation)

PRC - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe (Symantec Corporation)

PRC - C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)

PRC - D:\Program Files\Digital Line Detect\DLG.exe (BVRP Software)

========== Modules (SafeList) ==========

MOD - C:\Documents and Settings\IRENE KIM\Desktop\OTL.exe (OldTimer Tools)

MOD - C:\WINDOWS\system32\iphlpapi.dll (Microsoft Corporation)

MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)

MOD - C:\WINDOWS\ime\imkr6_1\imekrcic.dll (Microsoft Corporation)

========== Win32 Services (SafeList) ==========

SRV - (aspnet_state) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe (Microsoft Corporation)

SRV - (WPFFontCache_v0400) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation)

SRV - (clr_optimization_v4.0.30319_32) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)

SRV - (NetTcpPortSharing) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation)

SRV - (npggsvc) -- C:\WINDOWS\System32\GameMon.des (INCA Internet Co., Ltd.)

SRV - (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)

SRV - (lxdd_device) -- C:\WINDOWS\System32\lxddcoms.exe ( )

SRV - (SavRoam) -- C:\Program Files\Symantec AntiVirus\SavRoam.exe (symantec)

SRV - (Symantec AntiVirus) -- C:\Program Files\Symantec AntiVirus\Rtvscan.exe (Symantec Corporation)

SRV - (DefWatch) -- C:\Program Files\Symantec AntiVirus\DefWatch.exe (Symantec Corporation)

SRV - (SNDSrvc) -- C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe (Symantec Corporation)

SRV - (ccSetMgr) -- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe (Symantec Corporation)

SRV - (ccPwdSvc) -- C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe (Symantec Corporation)

SRV - (ccEvtMgr) -- C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe (Symantec Corporation)

========== Driver Services (SafeList) ==========

DRV - (EagleNT) -- File not found

DRV - (NAVEX15) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20100517.020\NAVEX15.SYS (Symantec Corporation)

DRV - (NAVENG) -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20100517.020\NAVENG.SYS (Symantec Corporation)

DRV - (PnkBstrK) -- C:\WINDOWS\system32\drivers\PnkBstrK.sys ()

DRV - (oreans32) -- C:\WINDOWS\system32\drivers\oreans32.sys ()

DRV - (sptd) -- C:\WINDOWS\System32\Drivers\sptd.sys ()

DRV - (VX6000) -- C:\WINDOWS\system32\drivers\VX6000Xp.sys (Microsoft Corporation

)

DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)

DRV - (tclondrv) -- C:\WINDOWS\system32\DRIVERS\tclondrv.sys (TuneClone Software)

DRV - (NwlnkIpx) -- C:\WINDOWS\system32\drivers\nwlnkipx.sys (Microsoft Corporation)

DRV - (usbaudio) USB Audio Driver (WDM) -- C:\WINDOWS\system32\drivers\USBAUDIO.sys (Microsoft Corporation)

DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows ® Server 2003 DDK provider)

DRV - (UsbDiag) -- C:\WINDOWS\system32\drivers\lgusbdiag.sys (LG Electronics Inc.)

DRV - (USBModem) -- C:\WINDOWS\system32\drivers\lgusbmodem.sys (LG Electronics Inc.)

DRV - (usbbus) -- C:\WINDOWS\system32\drivers\lgusbbus.sys (LG Electronics Inc.)

DRV - (libusb0) -- C:\WINDOWS\system32\drivers\libusb0.sys (http://libusb-win32.sourceforge.net)

DRV - (bcm4sbxp) -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys (Broadcom Corporation)

DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (SigmaTel, Inc.)

DRV - (AmdK8) -- C:\WINDOWS\system32\drivers\AmdK8.sys (Advanced Micro Devices)

DRV - (SYMTDI) -- C:\WINDOWS\System32\Drivers\SYMTDI.SYS (Symantec Corporation)

DRV - (SYMREDRV) -- C:\WINDOWS\System32\Drivers\SYMREDRV.SYS (Symantec Corporation)

DRV - (NwlnkNb) -- C:\WINDOWS\system32\drivers\nwlnknb.sys (Microsoft Corporation)

DRV - (NwlnkSpx) -- C:\WINDOWS\system32\drivers\nwlnkspx.sys (Microsoft Corporation)

DRV - (FsVga) -- C:\WINDOWS\system32\drivers\fsvga.sys (Microsoft Corporation)

DRV - (BCM43XX) -- C:\WINDOWS\system32\drivers\BCMWL5.SYS (Broadcom Corporation)

DRV - (SymEvent) -- C:\Program Files\Symantec\SYMEVENT.SYS (Symantec Corporation)

DRV - (SAVRT) -- C:\Program Files\Symantec AntiVirus\savrt.sys (Symantec Corporation)

DRV - (SAVRTPEL) -- C:\Program Files\Symantec AntiVirus\Savrtpel.sys (Symantec Corporation)

DRV - (TIEHDUSB) -- C:\WINDOWS\system32\drivers\tiehdusb.sys (Texas Instruments Incorporated)

========== Standard Registry (All) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/

IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.google.com/"

FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.3

FF - prefs.js..extensions.enabledItems: {43c35458-c907-439b-bcfd-07d373834689}:2.2.0

FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.5.0

FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.8.20091209.4

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}:6.0.18

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0

FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:1.0.0.071303000004

FF - prefs.js..extensions.enabledItems: youtube2mp3@mondayx.de:1.0.5

FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.9

FF - HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b}: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [2008/12/06 11:19:16 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Firefox\Extensions\\jqs@sun.com: C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2008/12/27 21:54:52 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/06/17 16:57:02 | 000,000,000 | ---D | M]

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.9\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/06/18 23:53:48 | 000,000,000 | ---D | M]

[2008/11/26 11:13:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Mozilla\Extensions

[2008/11/26 11:13:53 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\IRENE KIM\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}

[2010/06/18 18:13:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Mozilla\Firefox\Profiles\umsr1c9k.default\extensions

[2010/02/02 13:05:58 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\IRENE KIM\Application Data\Mozilla\Firefox\Profiles\umsr1c9k.default\extensions\{43c35458-c907-439b-bcfd-07d373834689}

[2010/02/02 13:05:37 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\IRENE KIM\Application Data\Mozilla\Firefox\Profiles\umsr1c9k.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}

[2009/12/25 16:14:50 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Documents and Settings\IRENE KIM\Application Data\Mozilla\Firefox\Profiles\umsr1c9k.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}

[2010/02/02 13:05:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Mozilla\Firefox\Profiles\umsr1c9k.default\extensions\firebug@software.joehewitt.com

[2009/04/28 19:54:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Mozilla\Firefox\Profiles\umsr1c9k.default\extensions\moveplayer@movenetworks.com

[2009/12/25 16:14:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Mozilla\Firefox\Profiles\umsr1c9k.default\extensions\youtube2mp3@mondayx.de

[2010/06/20 00:43:49 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions

[2010/05/01 23:07:09 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

[2010/02/10 22:16:20 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

[2010/05/01 23:06:59 | 000,023,512 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll

[2010/05/01 23:06:59 | 000,137,176 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll

[2009/12/17 18:14:01 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll

[2010/05/01 23:07:03 | 000,064,984 | ---- | M] (mozilla.org) -- C:\Program Files\Mozilla Firefox\plugins\npnul32.dll

[2010/04/03 19:43:36 | 000,103,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll

[2009/12/02 03:38:29 | 000,001,394 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazondotcom.xml

[2009/12/02 03:38:29 | 000,002,193 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\answers.xml

[2009/12/02 03:38:29 | 000,001,534 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons.xml

[2009/12/02 03:38:29 | 000,002,344 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay.xml

[2009/12/02 03:38:29 | 000,002,371 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\google.xml

[2009/12/02 03:38:29 | 000,001,178 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia.xml

[2009/12/02 03:38:29 | 000,000,792 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo.xml

O1 HOSTS File: ([2004/08/04 06:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)

O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)

O3 - HKCU\..\Toolbar\ShellBrowser: (&Address) - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)

O3 - HKCU\..\Toolbar\ShellBrowser: (&Links) - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)

O3 - HKCU\..\Toolbar\WebBrowser: (&Links) - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\WINDOWS\system32\ieframe.dll (Microsoft Corporation)

O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)

O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)

O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)

O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)

O4 - HKLM..\Run: [dscactivate] C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe ( )

O4 - HKLM..\Run: [FaxCenterServer] C:\Program Files\Lexmark Fax Solutions\fm3032.exe ()

O4 - HKLM..\Run: [iMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)

O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)

O4 - HKLM..\Run: [lxddamon] C:\Program Files\Lexmark 2500 Series\lxddamon.exe ()

O4 - HKLM..\Run: [lxddmon.exe] C:\Program Files\Lexmark 2500 Series\lxddmon.exe ()

O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()

O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)

O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)

O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)

O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)

O4 - HKLM..\Run: [sigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)

O4 - HKLM..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)

O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)

O4 - HKLM..\Run: [uIUCU] C:\Documents and Settings\SEOK TAE KIM\Local Settings\Temp\UIUCU.EXE (Conexant Systems, Inc.)

O4 - HKLM..\Run: [updateManager] C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe (Sonic Solutions)

O4 - HKLM..\Run: [vptray] C:\Program Files\Symantec AntiVirus\VPTray.exe (Symantec Corporation)

O4 - HKLM..\Run: [VX6000] C:\WINDOWS\vVX6000.exe (Microsoft Corporation

)

O4 - HKCU..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)

O4 - HKCU..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)

O4 - HKCU..\Run: [Google Update] C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Google\Update\GoogleUpdate.exe (Google Inc.)

O4 - HKCU..\Run: [iSUSPM] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)

O4 - HKCU..\Run: [Orb] D:\Documents and Settings\Chris\Winamp Remote\bin\OrbTray.exe (Orb Networks)

O4 - HKCU..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)

O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk = D:\Program Files\Digital Line Detect\DLG.exe (BVRP Software)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowLegacyWebView = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowUnhashedWebView = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: Explorer Options2 =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)

O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe (Microsoft Corporation)

O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\WINDOWS\system32\winrnr.dll (Microsoft Corporation)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)

O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINDOWS\system32\rsvpsp.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\WINDOWS\system32\mswsock.dll (Microsoft Corporation)

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_18)

O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_18)

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwa...ash/swflash.cab (Shockwave Flash Object)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.15.1

O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)

O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)

O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)

O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)

O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)

O18 - Protocol\Handler\gopher {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)

O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)

O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)

O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ipp - No CLSID value found

O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)

O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)

O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)

O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)

O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\WINDOWS\system32\inetcomm.dll (Microsoft Corporation)

O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp - No CLSID value found

O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)

O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\WINDOWS\system32\itss.dll (Microsoft Corporation)

O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)

O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)

O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O18 - Protocol\Handler\sysimage {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)

O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\WINDOWS\system32\msvidctl.dll (Microsoft Corporation)

O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\WINDOWS\system32\mshtml.dll (Microsoft Corporation)

O18 - Protocol\Handler\wia {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS\system32\wiascr.dll (Microsoft Corporation)

O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)

O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)

O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\WINDOWS\System32\mscoree.dll (Microsoft Corporation)

O18 - Protocol\Filter\Class Install Handler {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)

O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)

O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)

O18 - Protocol\Filter\lzdhtml {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll (Microsoft Corporation)

O18 - Protocol\Filter\text/webviewhtml {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)

O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)

O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UIHost - (logonui.exe) - C:\WINDOWS\System32\logonui.exe (Microsoft Corporation)

O20 - HKLM Winlogon: VMApplet - (rundll32 shell32) - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)

O20 - HKLM Winlogon: VMApplet - (Control_RunDLL "sysdm.cpl") - C:\WINDOWS\System32\sysdm.cpl (Microsoft Corporation)

O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)

O20 - Winlogon\Notify\crypt32chain: DllName - crypt32.dll - C:\WINDOWS\System32\crypt32.dll (Microsoft Corporation)

O20 - Winlogon\Notify\cryptnet: DllName - cryptnet.dll - C:\WINDOWS\System32\cryptnet.dll (Microsoft Corporation)

O20 - Winlogon\Notify\cscdll: DllName - cscdll.dll - C:\WINDOWS\System32\cscdll.dll (Microsoft Corporation)

O20 - Winlogon\Notify\dimsntfy: DllName - %SystemRoot%\System32\dimsntfy.dll - C:\WINDOWS\system32\dimsntfy.dll (Microsoft Corporation)

O20 - Winlogon\Notify\NavLogon: DllName - C:\WINDOWS\system32\NavLogon.dll - C:\WINDOWS\system32\NavLogon.dll (Symantec Corporation)

O20 - Winlogon\Notify\ScCertProp: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)

O20 - Winlogon\Notify\Schedule: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)

O20 - Winlogon\Notify\sclgntfy: DllName - sclgntfy.dll - C:\WINDOWS\System32\sclgntfy.dll (Microsoft Corporation)

O20 - Winlogon\Notify\SensLogn: DllName - WlNotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)

O20 - Winlogon\Notify\termsrv: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)

O20 - Winlogon\Notify\wlballoon: DllName - wlnotify.dll - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)

O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)

O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)

O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Corporation)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Corporation)

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Corporation)

O22 - SharedTaskScheduler: {438755C2-A8BA-11D1-B96B-00A0C90312E1} - Browseui preloader - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)

O22 - SharedTaskScheduler: {8C7461EF-2B13-11d2-BE35-3078302C2030} - Component Categories cache daemon - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)

O24 - Desktop Components:0 (My Current Home Page) - About:Home

O24 - Desktop WallPaper: C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O24 - Desktop BackupWallPaper: C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Microsoft\Wallpaper1.bmp

O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\System32\shell32.dll (Microsoft Corporation)

O29 - HKLM SecurityProviders - (msapsspc.dll) - C:\WINDOWS\System32\msapsspc.dll (Microsoft Corporation)

O29 - HKLM SecurityProviders - (schannel.dll) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)

O29 - HKLM SecurityProviders - (digest.dll) - C:\WINDOWS\System32\digest.dll (Microsoft Corporation)

O29 - HKLM SecurityProviders - (msnsspc.dll) - C:\WINDOWS\System32\msnsspc.dll (Microsoft Corporation)

O30 - LSA: Authentication Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)

O30 - LSA: Security Packages - (kerberos) - C:\WINDOWS\System32\kerberos.dll (Microsoft Corporation)

O30 - LSA: Security Packages - (msv1_0) - C:\WINDOWS\System32\msv1_0.dll (Microsoft Corporation)

O30 - LSA: Security Packages - (schannel) - C:\WINDOWS\System32\schannel.dll (Microsoft Corporation)

O30 - LSA: Security Packages - (wdigest) - C:\WINDOWS\System32\wdigest.dll (Microsoft Corporation)

O31 - SafeBoot: AlternateShell - cmd.exe

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2008/11/19 12:09:57 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]

O33 - MountPoints2\{0502b019-5199-11df-982d-00188b7a199e}\Shell\AutoRun\command - "" = G:\Get_Started_for_Win.exe -- File not found

O33 - MountPoints2\{e3520afd-b65e-11dd-9761-a689e16cde11}\Shell - "" = AutoRun

O33 - MountPoints2\{e3520afd-b65e-11dd-9761-a689e16cde11}\Shell\AutoRun - "" = Auto&Play

O33 - MountPoints2\{e3520afd-b65e-11dd-9761-a689e16cde11}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found

O33 - MountPoints2\{e3520aff-b65e-11dd-9761-a689e16cde11}\Shell - "" = AutoRun

O33 - MountPoints2\{e3520aff-b65e-11dd-9761-a689e16cde11}\Shell\AutoRun - "" = Auto&Play

O33 - MountPoints2\{e3520aff-b65e-11dd-9761-a689e16cde11}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found

NetSvcs: Ias - C:\WINDOWS\system32\ias [2008/11/19 12:09:35 | 000,000,000 | ---D | M]

NetSvcs: Iprip - File not found

NetSvcs: Irmon - File not found

NetSvcs: NWCWorkstation - File not found

NetSvcs: Nwsapagent - File not found

NetSvcs: Wmi - C:\WINDOWS\system32\wmi.dll (Microsoft Corporation)

NetSvcs: WmdmPmSp - File not found

Unable to start service SrService!

========== Files/Folders - Created Within 30 Days ==========

[2010/06/20 22:52:39 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\IRENE KIM\Desktop\OTL.exe

[2010/06/20 22:51:14 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll

[2010/06/20 22:51:14 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll

[2010/06/20 22:51:13 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll

[2010/06/20 22:51:12 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll

[2010/06/20 22:51:11 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll

[2010/06/20 22:51:11 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll

[2010/06/20 22:51:10 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll

[2010/06/20 22:51:10 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll

[2010/06/20 22:51:09 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_6.dll

[2010/06/20 22:51:09 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_6.dll

[2010/06/20 22:51:09 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_4.dll

[2010/06/20 22:51:08 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_7.dll

[2010/06/20 22:51:07 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_5.dll

[2010/06/20 22:51:07 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_5.dll

[2010/06/20 22:51:06 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_42.dll

[2010/06/20 22:51:04 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_42.dll

[2010/06/20 22:51:03 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_42.dll

[2010/06/20 22:51:02 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_42.dll

[2010/06/20 22:50:47 | 068,977,376 | ---- | C] (Beijing Rising Information Technology Co., Ltd.) -- C:\Documents and Settings\IRENE KIM\Desktop\RavINTFree10.exe

[2010/06/20 22:49:50 | 003,387,040 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\IRENE KIM\Desktop\ccsetup232.exe

[2010/06/20 22:48:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood

[2010/06/20 22:48:36 | 000,288,088 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\IRENE KIM\Desktop\dxwebsetup.exe

[2010/06/20 14:13:58 | 009,920,512 | ---- | C] (Wizet) -- C:\Documents and Settings\All Users\Documents\v83 Localhost.exe

[2010/06/20 13:54:21 | 009,920,512 | ---- | C] (Wizet) -- C:\Documents and Settings\IRENE KIM\Desktop\v83 Localhost.exe

[2010/06/20 13:41:59 | 000,000,000 | ---D | C] -- C:\Program Files\BreakPoint Software

[2010/06/20 13:40:10 | 010,648,816 | ---- | C] (BreakPoint Software) -- C:\Documents and Settings\IRENE KIM\Desktop\hw32v601.exe

[2010/06/18 23:25:36 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro

[2010/06/18 18:44:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\IRENE KIM\Application Data\Malwarebytes

[2010/06/18 18:44:02 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys

[2010/06/18 18:43:59 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys

[2010/06/18 18:43:59 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware

[2010/06/18 18:43:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes

[2010/06/18 17:43:06 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agcgauge.ax

[2010/06/18 17:42:52 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adpu160m.sys

[2010/06/18 17:42:52 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys

[2010/06/18 17:42:52 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys

[2010/06/18 17:42:51 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys

[2010/06/18 17:42:51 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys

[2010/06/18 17:42:50 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys

[2010/06/18 17:42:50 | 000,020,160 | ---- | C] (ADMtek Incorporated) -- C:\WINDOWS\System32\dllcache\adm8511.sys

[2010/06/18 17:42:50 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adicvls.sys

[2010/06/18 17:42:48 | 000,297,728 | ---- | C] (Silicon Integrated Systems Corp.) -- C:\WINDOWS\System32\dllcache\ac97sis.sys

[2010/06/18 17:42:48 | 000,084,480 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ac97via.sys

[2010/06/18 17:42:48 | 000,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS\System32\dllcache\acerscad.dll

[2010/06/18 17:42:47 | 000,231,552 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\ac97ali.sys

[2010/06/18 17:42:47 | 000,096,256 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\ac97intc.sys

[2010/06/18 17:42:47 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\abp480n5.sys

[2010/06/18 17:41:21 | 000,116,224 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll

[2010/06/18 17:41:17 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll

[2010/06/18 17:41:09 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xrxflnch.exe

[2010/06/18 17:41:04 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe

[2010/06/18 17:41:00 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys

[2010/06/18 17:40:59 | 000,019,455 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wvchntxx.sys

[2010/06/18 17:40:56 | 000,012,063 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wsiintxx.sys

[2010/06/18 17:40:55 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshirda.dll

[2010/06/18 17:40:44 | 000,008,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiacpi.sys

[2010/06/18 17:40:42 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys

[2010/06/18 17:40:38 | 000,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys

[2010/06/18 17:40:32 | 000,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys

[2010/06/18 17:40:28 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiamsmud.dll

[2010/06/18 17:40:22 | 000,701,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\wdhaalba.sys

[2010/06/18 17:40:21 | 000,023,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wch7xxnt.sys

[2010/06/18 17:40:20 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wceusbsh.sys

[2010/06/18 17:40:17 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys

[2010/06/18 17:40:15 | 000,033,599 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv04nt.sys

[2010/06/18 17:40:14 | 000,019,551 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv02nt.sys

[2010/06/18 17:40:13 | 000,029,311 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv01nt.sys

[2010/06/18 17:40:12 | 000,011,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv05nt.sys

[2010/06/18 17:40:11 | 000,012,127 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv02nt.sys

[2010/06/18 17:40:10 | 000,012,415 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv01nt.sys

[2010/06/18 17:40:06 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys

[2010/06/18 17:40:02 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys

[2010/06/18 17:39:59 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys

[2010/06/18 17:39:52 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys

[2010/06/18 17:39:49 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys

[2010/06/18 17:39:45 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys

[2010/06/18 17:39:41 | 000,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys

[2010/06/18 17:39:37 | 000,024,576 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\viairda.sys

[2010/06/18 17:39:36 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viaide.sys

[2010/06/18 17:39:31 | 000,687,999 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrwdxjs.sys

[2010/06/18 17:39:27 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys

[2010/06/18 17:39:23 | 000,113,762 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrpda.sys

[2010/06/18 17:39:20 | 000,007,556 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usroslba.sys

[2010/06/18 17:39:16 | 000,224,802 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usr1807a.sys

[2010/06/18 17:39:12 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys

[2010/06/18 17:39:09 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys

[2010/06/18 17:39:05 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys

[2010/06/18 17:39:02 | 000,020,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbuhci.sys

[2010/06/18 17:39:01 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbser.sys

[2010/06/18 17:38:59 | 000,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys

[2010/06/18 17:38:54 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxud32.dll

[2010/06/18 17:38:51 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu40.dll

[2010/06/18 17:38:47 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu22.dll

[2010/06/18 17:38:44 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu12.dll

[2010/06/18 17:38:40 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll

[2010/06/18 17:38:37 | 000,022,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxpcls.sys

[2010/06/18 17:38:33 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxp60.dll

[2010/06/18 17:38:29 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxcam.dll

[2010/06/18 17:38:26 | 000,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um54scan.dll

[2010/06/18 17:38:22 | 000,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um34scan.dll

[2010/06/18 17:38:19 | 000,036,736 | ---- | C] (Promise Technology, Inc.) -- C:\WINDOWS\System32\dllcache\ultra.sys

[2010/06/18 17:38:15 | 000,011,520 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\twotrack.sys

[2010/06/18 17:38:10 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys

[2010/06/18 17:38:06 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll

[2010/06/18 17:38:03 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys

[2010/06/18 17:37:59 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll

[2010/06/18 17:37:56 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys

[2010/06/18 17:37:52 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll

[2010/06/18 17:37:48 | 000,034,375 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\tpro4.sys

[2010/06/18 17:37:45 | 000,042,496 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4res.dll

[2010/06/18 17:37:44 | 000,082,944 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4mon.exe

[2010/06/18 17:37:41 | 000,031,744 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4.dll

[2010/06/18 17:37:36 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\toside.sys

[2010/06/18 17:37:33 | 000,230,912 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd03.sys

[2010/06/18 17:37:29 | 000,241,664 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd02.sys

[2010/06/18 17:37:26 | 000,028,232 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\dllcache\tos4mo.sys

[2010/06/18 17:37:22 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys

[2010/06/18 17:37:18 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys

[2010/06/18 17:37:14 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll

[2010/06/18 17:37:13 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys

[2010/06/18 17:37:09 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys

[2010/06/18 17:37:06 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys

[2010/06/18 17:37:00 | 000,030,464 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tbatm155.sys

[2010/06/18 17:36:56 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tandqic.sys

[2010/06/18 17:36:53 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys

[2010/06/18 17:36:50 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll

[2010/06/18 17:36:45 | 000,032,640 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\symc8xx.sys

[2010/06/18 17:36:42 | 000,016,256 | ---- | C] (Symbios Logic Inc.) -- C:\WINDOWS\System32\dllcache\symc810.sys

[2010/06/18 17:36:39 | 000,030,688 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\sym_u3.sys

[2010/06/18 17:36:36 | 000,028,384 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\sym_hi.sys

[2010/06/18 17:36:32 | 000,094,293 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sxports.dll

[2010/06/18 17:36:29 | 000,103,936 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sx.sys

[2010/06/18 17:36:26 | 000,003,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swusbflt.sys

[2010/06/18 17:36:23 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpidflt.dll

[2010/06/18 17:36:20 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpdflt2.dll

[2010/06/18 17:36:16 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_wheel.dll

[2010/06/18 17:36:13 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_effct.dll

[2010/06/18 17:36:09 | 000,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll

[2010/06/18 17:36:06 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll

[2010/06/18 17:36:03 | 000,285,760 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys

[2010/06/18 17:35:59 | 000,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys

[2010/06/18 17:35:55 | 000,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys

[2010/06/18 17:35:52 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusd.dll

[2010/06/18 17:35:47 | 000,024,660 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxupchk.dll

[2010/06/18 17:35:43 | 000,061,824 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\speed.sys

[2010/06/18 17:35:40 | 000,106,584 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spdports.dll

[2010/06/18 17:35:36 | 000,019,072 | ---- | C] (Adaptec, Inc.) -- C:\WINDOWS\System32\dllcache\sparrow.sys

[2010/06/18 17:35:33 | 000,007,552 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypvu1.sys

[2010/06/18 17:35:30 | 000,037,040 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.sys

[2010/06/18 17:35:26 | 000,114,688 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.dll

[2010/06/18 17:35:23 | 000,020,752 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonync.sys

[2010/06/18 17:35:20 | 000,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonymc.sys

[2010/06/18 17:35:18 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonyait.sys

[2010/06/18 17:35:14 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snyaitmc.sys

[2010/06/18 17:34:32 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys

[2010/06/18 17:34:28 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll

[2010/06/18 17:34:25 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys

[2010/06/18 17:34:21 | 000,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys

[2010/06/18 17:34:18 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys

[2010/06/18 17:34:15 | 000,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbhc.sys

[2010/06/18 17:34:14 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbclass.sys

[2010/06/18 17:34:13 | 000,016,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbbatt.sys

[2010/06/18 17:34:10 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb3w.dll

[2010/06/18 17:34:07 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb0w.dll

[2010/06/18 17:34:03 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma0w.dll

[2010/06/18 17:33:59 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm91w.dll

[2010/06/18 17:33:55 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys

[2010/06/18 17:33:52 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys

[2010/06/18 17:33:48 | 000,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys

[2010/06/18 17:33:45 | 000,157,696 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv256.dll

[2010/06/18 17:33:42 | 000,050,432 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv.sys

[2010/06/18 17:33:41 | 000,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys

[2010/06/18 17:33:38 | 000,238,592 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrv.dll

[2010/06/18 17:33:35 | 000,104,064 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrp.sys

[2010/06/18 17:33:32 | 000,150,144 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306v.dll

[2010/06/18 17:33:29 | 000,068,608 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306p.sys

[2010/06/18 17:33:26 | 000,252,032 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300iv.dll

[2010/06/18 17:33:23 | 000,101,760 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300ip.sys

[2010/06/18 17:33:16 | 000,161,568 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys

[2010/06/18 17:33:13 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys

[2010/06/18 17:33:09 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys

[2010/06/18 17:33:06 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll

[2010/06/18 17:33:03 | 000,036,480 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sfmanm.sys

[2010/06/18 17:32:59 | 000,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\serscan.sys

[2010/06/18 17:32:56 | 000,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sermouse.sys

[2010/06/18 17:32:09 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seaddsmc.sys

[2010/06/18 17:32:08 | 000,011,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiscan.sys

[2010/06/18 17:32:05 | 000,011,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiprnt.sys

[2010/06/18 17:31:48 | 000,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys

[2010/06/18 17:31:45 | 000,016,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scmstcs.sys

[2010/06/18 17:31:42 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys

[2010/06/18 17:31:39 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys

[2010/06/18 17:31:37 | 000,043,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sbp2port.sys

[2010/06/18 17:31:34 | 000,495,616 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sblfx.dll

[2010/06/18 17:31:30 | 000,075,392 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmxm.sys

[2010/06/18 17:31:27 | 000,245,632 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmx.dll

[2010/06/18 17:31:24 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys

[2010/06/18 17:31:21 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll

[2010/06/18 17:31:18 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys

[2010/06/18 17:31:15 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll

[2010/06/18 17:31:12 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll

[2010/06/18 17:31:09 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll

[2010/06/18 17:31:06 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys

[2010/06/18 17:31:03 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll

[2010/06/18 17:30:59 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys

[2010/06/18 17:30:56 | 000,065,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.sys

[2010/06/18 17:30:53 | 000,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll

[2010/06/18 17:30:50 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll

[2010/06/18 17:30:48 | 000,029,696 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw450ext.dll

[2010/06/18 17:30:47 | 000,027,648 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll

[2010/06/18 17:30:43 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8139.sys

[2010/06/18 17:30:40 | 000,019,017 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8029.sys

[2010/06/18 17:30:36 | 000,030,720 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rthwcls.sys

[2010/06/18 17:30:32 | 000,009,216 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\rsmgrstr.dll

[2010/06/18 17:30:28 | 000,003,840 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rpfun.sys

[2010/06/18 17:30:25 | 000,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys

[2010/06/18 17:30:21 | 000,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys

[2010/06/18 17:30:17 | 000,086,097 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\reslog32.dll

[2010/06/18 17:29:40 | 000,019,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rasirda.sys

[2010/06/18 17:29:32 | 000,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys

[2010/06/18 17:29:29 | 000,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys

[2010/06/18 17:29:26 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qvusd.dll

[2010/06/18 17:29:23 | 000,003,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qv2kux.sys

[2010/06/18 17:29:15 | 000,049,024 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql1280.sys

[2010/06/18 17:29:12 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ql1240.sys

[2010/06/18 17:29:09 | 000,045,312 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql12160.sys

[2010/06/18 17:29:06 | 000,033,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ql10wnt.sys

[2010/06/18 17:29:03 | 000,040,320 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql1080.sys

[2010/06/18 17:29:02 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qic157.sys

[2010/06/18 17:28:56 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys

[2010/06/18 17:28:53 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys

[2010/06/18 17:28:50 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys

[2010/06/18 17:28:49 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusd.dll

[2010/06/18 17:28:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusb.dll

[2010/06/18 17:28:42 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\psisload.dll

[2010/06/18 17:28:37 | 000,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys

[2010/06/18 17:28:36 | 000,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa3.sys

[2010/06/18 17:28:33 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa.sys

[2010/06/18 17:28:32 | 000,008,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\powerfil.sys

[2010/06/18 17:28:28 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pnrmc.sys

[2010/06/18 17:28:19 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phvfwext.dll

[2010/06/18 17:28:15 | 000,019,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philtune.sys

[2010/06/18 17:28:12 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phildec.sys

[2010/06/18 17:28:09 | 000,173,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam2.sys

[2010/06/18 17:28:06 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.sys

[2010/06/18 17:28:03 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.dll

[2010/06/18 17:28:00 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phdsext.ax

[2010/06/18 17:27:59 | 000,259,328 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3dd.dll

[2010/06/18 17:27:58 | 000,211,584 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2dll.dll

[2010/06/18 17:27:58 | 000,028,032 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3.sys

[2010/06/18 17:27:57 | 000,027,904 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2.sys

[2010/06/18 17:27:53 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perc2hib.sys

[2010/06/18 17:27:50 | 000,027,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perc2.sys

[2010/06/18 17:27:49 | 000,169,984 | ---- | C] (Cisco Systems) -- C:\WINDOWS\System32\dllcache\pcx500.sys

[2010/06/18 17:27:46 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe

[2010/06/18 17:27:43 | 000,035,328 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntpci5.sys

[2010/06/18 17:27:40 | 000,029,769 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5m.sys

[2010/06/18 17:27:37 | 000,030,282 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5hl.sys

[2010/06/18 17:27:34 | 000,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys

[2010/06/18 17:27:33 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys

[2010/06/18 17:27:30 | 000,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys

[2010/06/18 17:27:25 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2rc.dll

[2010/06/18 17:27:22 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2.dll

[2010/06/18 17:27:19 | 000,025,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovsound2.sys

[2010/06/18 17:27:16 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcoms.exe

[2010/06/18 17:27:13 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcomc.dll

[2010/06/18 17:27:10 | 000,351,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodek2.sys

[2010/06/18 17:27:07 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodec2.dll

[2010/06/18 17:27:04 | 000,031,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovce.sys

[2010/06/18 17:27:01 | 000,028,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcd.sys

[2010/06/18 17:26:59 | 000,048,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcam2.sys

[2010/06/18 17:26:56 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovca.sys

[2010/06/18 17:26:53 | 000,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys

[2010/06/18 17:26:50 | 000,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otceth5.sys

[2010/06/18 17:26:47 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys

[2010/06/18 17:26:44 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys

[2010/06/18 17:26:42 | 000,061,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ohci1394.sys

[2010/06/18 17:26:37 | 000,198,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.sys

[2010/06/18 17:26:34 | 000,123,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.dll

[2010/06/18 17:26:29 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys

[2010/06/18 17:26:11 | 000,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntapm.sys

[2010/06/18 17:26:08 | 000,028,672 | ---- | C] (National Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\nscirda.sys

[2010/06/18 17:26:08 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsmmc.sys

[2010/06/18 17:26:04 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys

[2010/06/18 17:26:01 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys

[2010/06/18 17:25:57 | 000,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys

[2010/06/18 17:25:57 | 000,032,840 | ---- | C] (NETGEAR Corporation.) -- C:\WINDOWS\System32\dllcache\ngrpci.sys

[2010/06/18 17:25:53 | 000,065,278 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\netflx3.sys

[2010/06/18 17:25:49 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys

[2010/06/18 17:25:46 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll

[2010/06/18 17:25:44 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ne2000.sys

[2010/06/18 17:25:40 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll

[2010/06/18 17:25:37 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys

[2010/06/18 17:25:34 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys

[2010/06/18 17:25:31 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll

[2010/06/18 17:25:28 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys

[2010/06/18 17:25:26 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll

[2010/06/18 17:25:23 | 000,128,000 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n100325.sys

[2010/06/18 17:25:20 | 000,052,255 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n1000nt5.sys

[2010/06/18 17:25:17 | 000,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys

[2010/06/18 17:25:14 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll

[2010/06/18 17:25:11 | 000,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS\System32\dllcache\mxnic.sys

[2010/06/18 17:25:09 | 000,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll

Patrick123 · June 21, 2010

Second half of OTL.txt:

--- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys

[2010/06/18 17:25:03 | 000,103,296 | ---- | C] (Matrox Graphics Inc) -- C:\WINDOWS\System32\dllcache\mtxvideo.sys

[2010/06/18 17:24:58 | 000,049,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstape.sys

[2010/06/18 17:24:54 | 000,012,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msriffwv.sys

[2010/06/18 17:24:48 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msmpu401.sys

[2010/06/18 17:24:47 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msircomm.sys

[2010/06/18 17:24:37 | 000,035,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgame.sys

[2010/06/18 17:24:34 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfsio.sys

[2010/06/18 17:24:33 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdv.sys

[2010/06/18 17:24:27 | 000,017,280 | ---- | C] (American Megatrends Inc.) -- C:\WINDOWS\System32\dllcache\mraid35x.sys

[2010/06/18 17:24:26 | 000,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpe.sys

[2010/06/18 17:24:22 | 000,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\modemcsa.sys

[2010/06/18 17:24:17 | 000,006,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\miniqic.sys

[2010/06/18 17:24:13 | 000,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaum.sys

[2010/06/18 17:24:10 | 000,235,648 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaud.dll

[2010/06/18 17:24:08 | 000,026,112 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\memstpci.sys

[2010/06/18 17:24:06 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memgrp.dll

[2010/06/18 17:24:03 | 000,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memcard.sys

[2010/06/18 17:24:00 | 000,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys

[2010/06/18 17:23:56 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mammoth.sys

[2010/06/18 17:23:27 | 000,048,768 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\maestro.sys

[2010/06/18 17:23:24 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3092dc.dll

[2010/06/18 17:23:21 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3091dc.dll

[2010/06/18 17:23:18 | 000,022,848 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwusbhid.sys

[2010/06/18 17:23:18 | 000,020,864 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwadihid.sys

[2010/06/18 17:23:15 | 000,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys

[2010/06/18 17:23:12 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys

[2010/06/18 17:23:11 | 000,420,992 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys

[2010/06/18 17:23:11 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ltotape.sys

[2010/06/18 17:23:08 | 000,606,684 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys

[2010/06/18 17:23:08 | 000,576,746 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys

[2010/06/18 17:23:05 | 000,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys

[2010/06/18 17:23:02 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\loop.sys

[2010/06/18 17:22:58 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys

[2010/06/18 17:22:55 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys

[2010/06/18 17:22:53 | 000,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys

[2010/06/18 17:22:50 | 000,015,744 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys

[2010/06/18 17:22:48 | 000,034,688 | ---- | C] (Toshiba Corp.) -- C:\WINDOWS\System32\dllcache\lbrtfdc.sys

[2010/06/18 17:22:45 | 000,026,442 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys

[2010/06/18 17:22:43 | 000,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS\System32\dllcache\ktc111.sys

[2010/06/18 17:22:39 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kousd.dll

[2010/06/18 17:22:38 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsusd.dll

[2010/06/18 17:22:37 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsui.dll

[2010/06/18 17:22:16 | 000,026,624 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\dllcache\irstusb.sys

[2010/06/18 17:22:13 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irmon.dll

[2010/06/18 17:22:13 | 000,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irsir.sys

[2010/06/18 17:22:11 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys

[2010/06/18 17:22:10 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irftp.exe

[2010/06/18 17:22:10 | 000,088,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irda.sys

[2010/06/18 17:22:05 | 000,045,632 | ---- | C] (Interphase ® Corporation a Windows ® 2000 DDK Driver Provider) -- C:\WINDOWS\System32\dllcache\ip5515.sys

[2010/06/18 17:22:02 | 000,090,200 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8ports.dll

[2010/06/18 17:22:00 | 000,038,784 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8.sys

[2010/06/18 17:21:59 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\intelide.sys

[2010/06/18 17:21:57 | 000,013,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inport.sys

[2010/06/18 17:21:54 | 000,016,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ini910u.sys

[2010/06/18 17:21:37 | 000,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll

[2010/06/18 17:21:34 | 000,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5usb.sys

[2010/06/18 17:21:32 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5ext.dll

[2010/06/18 17:21:29 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5com.dll

[2010/06/18 17:21:27 | 000,154,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4usb.sys

[2010/06/18 17:21:24 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4ext.dll

[2010/06/18 17:21:22 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4com.dll

[2010/06/18 17:21:19 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3ext.dll

[2010/06/18 17:21:17 | 000,141,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3.sys

[2010/06/18 17:21:14 | 000,038,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ibmvcap.sys

[2010/06/18 17:21:12 | 000,109,085 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtrp.sys

[2010/06/18 17:21:09 | 000,100,936 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtok.sys

[2010/06/18 17:21:07 | 000,009,216 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmsgnet.dll

[2010/06/18 17:21:04 | 000,028,700 | ---- | C] (IBM Corp.) -- C:\WINDOWS\System32\dllcache\ibmexmp.sys

[2010/06/18 17:21:03 | 000,161,020 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\i81xnt5.sys

[2010/06/18 17:21:02 | 000,702,845 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\i81xdnt5.dll

[2010/06/18 17:20:59 | 000,058,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740nt5.sys

[2010/06/18 17:20:48 | 000,353,184 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740dnt5.dll

[2010/06/18 17:20:47 | 000,018,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i2omp.sys

[2010/06/18 17:20:45 | 000,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i2omgmt.sys

[2010/06/18 17:19:51 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll

[2010/06/18 17:19:51 | 000,098,304 | ---- | C] (Aureal Semiconductor) -- C:\WINDOWS\System32\dllcache\a3d.dll

[2010/06/18 17:19:50 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\61883.sys

[2010/06/18 17:19:50 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\8514a.dll

[2010/06/18 17:19:50 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\4mmdat.sys

[2010/06/18 17:19:49 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll

[2010/06/18 17:19:49 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys

[2010/06/18 17:19:48 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys

[2010/06/18 17:19:48 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394vdbg.sys

[2010/06/18 17:19:47 | 000,053,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394bus.sys

[2010/06/18 17:19:27 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.dll

[2010/06/17 22:58:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Thomson Learning

[2010/06/17 22:58:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\IRENE KIM\Application Data\Thomson Learning

[2010/06/17 18:03:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Macromedia

[2010/06/17 18:03:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Adobe

[2010/06/17 14:26:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\IRENE KIM\Desktop\V62-V83

[2010/06/17 13:18:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\IRENE KIM\Application Data\Trillian

[2010/06/16 23:42:04 | 000,679,936 | ---- | C] (Generated by JEDI) -- C:\WINDOWS\System32\D3DX81ab.dll

[2010/06/16 23:40:28 | 004,267,210 | ---- | C] (Dark Byte ) -- C:\Documents and Settings\IRENE KIM\Desktop\CheatEngine56.exe

[2010/06/16 23:16:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\IRENE KIM\Application Data\mIRC

[2010/06/16 23:03:23 | 001,751,280 | ---- | C] (mIRC Co. Ltd.) -- C:\Documents and Settings\IRENE KIM\Desktop\mirc635.exe

[2010/06/15 22:17:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\IRENE KIM\Desktop\Textures

[2010/06/13 17:54:03 | 000,761,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr100.dll

[2010/06/13 17:50:51 | 000,000,000 | ---D | C] -- C:\Users

[2010/06/13 17:36:01 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_42.dll

[2010/06/11 23:14:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nexon

[2010/05/26 08:06:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\IRENE KIM\Application Data\Efme

[2010/05/23 01:10:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\WMTools Downloaded Files

[2008/11/19 13:31:06 | 000,999,424 | ---- | C] ( ) -- C:\WINDOWS\System32\lxddusb1.dll

[2008/11/19 13:31:06 | 000,413,696 | ---- | C] ( ) -- C:\WINDOWS\System32\lxddinpa.dll

[2008/11/19 13:31:06 | 000,397,312 | ---- | C] ( ) -- C:\WINDOWS\System32\lxddiesc.dll

[2008/11/19 13:31:06 | 000,323,584 | ---- | C] ( ) -- C:\WINDOWS\System32\LXDDhcp.dll

[2008/11/19 13:31:05 | 001,232,896 | ---- | C] ( ) -- C:\WINDOWS\System32\lxddserv.dll

[2008/11/19 13:31:05 | 000,643,072 | ---- | C] ( ) -- C:\WINDOWS\System32\lxddpmui.dll

[2008/11/19 13:31:05 | 000,585,728 | ---- | C] ( ) -- C:\WINDOWS\System32\lxddlmpm.dll

[2008/11/19 13:31:05 | 000,163,840 | ---- | C] ( ) -- C:\WINDOWS\System32\lxddprox.dll

[2008/11/19 13:31:05 | 000,094,208 | ---- | C] ( ) -- C:\WINDOWS\System32\lxddpplc.dll

[2008/11/19 13:31:03 | 000,700,416 | ---- | C] ( ) -- C:\WINDOWS\System32\lxddhbn3.dll

[2008/11/19 13:31:02 | 000,425,984 | ---- | C] ( ) -- C:\WINDOWS\System32\lxddcomm.dll

[2008/11/19 13:31:01 | 000,684,032 | ---- | C] ( ) -- C:\WINDOWS\System32\lxddcomc.dll

[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[10 C:\Documents and Settings\All Users\*.tmp files -> C:\Documents and Settings\All Users\*.tmp -> ]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/06/20 22:54:30 | 068,977,376 | ---- | M] (Beijing Rising Information Technology Co., Ltd.) -- C:\Documents and Settings\IRENE KIM\Desktop\RavINTFree10.exe

[2010/06/20 22:53:44 | 000,293,376 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\p6pzvb9h.exe

[2010/06/20 22:52:39 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\IRENE KIM\Desktop\OTL.exe

[2010/06/20 22:50:33 | 003,387,040 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\IRENE KIM\Desktop\ccsetup232.exe

[2010/06/20 22:48:36 | 000,288,088 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\IRENE KIM\Desktop\dxwebsetup.exe

[2010/06/20 22:44:01 | 000,000,994 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-73586283-2147183749-682003330-1005UA.job

[2010/06/20 22:36:05 | 000,002,455 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\HiJackThis.lnk

[2010/06/20 22:29:52 | 000,000,135 | ---- | M] () -- C:\WINDOWS\System32\msexcr.ini

[2010/06/20 19:43:23 | 000,000,288 | -H-- | M] () -- C:\WINDOWS\tasks\959b8009.job

[2010/06/20 19:38:23 | 000,044,544 | ---- | M] () -- C:\WINDOWS\System32\ernel32.dll

[2010/06/20 19:38:22 | 000,000,292 | -H-- | M] () -- C:\WINDOWS\tasks\b3cbf2ef.job

[2010/06/20 19:38:22 | 000,000,280 | -H-- | M] () -- C:\WINDOWS\tasks\3745e8d5.job

[2010/06/20 19:37:58 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT

[2010/06/20 19:37:53 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat

[2010/06/20 18:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\tasks\At1.job

[2010/06/20 15:59:48 | 006,291,456 | -H-- | M] () -- C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\IconCache.db

[2010/06/20 15:37:35 | 008,126,464 | -H-- | M] () -- C:\Documents and Settings\IRENE KIM\NTUSER.DAT

[2010/06/20 15:37:26 | 000,000,278 | -HS- | M] () -- C:\Documents and Settings\IRENE KIM\ntuser.ini

[2010/06/20 15:25:18 | 080,398,104 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\jdk-6u20-windows-i586.exe

[2010/06/20 14:59:06 | 000,007,835 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\Flames_Menu_v2.1.zip

[2010/06/20 14:02:13 | 009,920,512 | ---- | M] (Wizet) -- C:\Documents and Settings\IRENE KIM\Desktop\v83 Localhost.exe

[2010/06/20 14:02:13 | 009,920,512 | ---- | M] (Wizet) -- C:\Documents and Settings\All Users\Documents\v83 Localhost.exe

[2010/06/20 13:54:19 | 003,016,114 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\localhost.rar

[2010/06/20 13:53:48 | 003,016,386 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\v83 Localhost.rar

[2010/06/20 13:42:02 | 000,000,945 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Hex Workshop Hex Editor.lnk

[2010/06/20 13:40:29 | 010,648,816 | ---- | M] (BreakPoint Software) -- C:\Documents and Settings\IRENE KIM\Desktop\hw32v601.exe

[2010/06/20 02:31:26 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini

[2010/06/19 21:44:02 | 000,386,124 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\Break Your Heart EKG.mp3

[2010/06/19 21:44:02 | 000,212,201 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\heartless ekg.mp3

[2010/06/19 11:53:40 | 000,009,216 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\Flames_Menu_v2.1.dll

[2010/06/19 09:44:02 | 000,000,942 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-73586283-2147183749-682003330-1005Core.job

[2010/06/18 23:19:37 | 001,402,880 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\HiJackThis.msi

[2010/06/18 23:08:22 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk

[2010/06/18 18:44:04 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk

[2010/06/18 17:55:05 | 000,000,376 | RHS- | M] () -- C:\boot.ini

[2010/06/17 22:56:52 | 000,000,755 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\Diet Analysis Plus 8.0.1.lnk

[2010/06/17 19:33:14 | 000,051,200 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[2010/06/17 18:02:10 | 000,044,544 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Application Data\959b8009.exe

[2010/06/17 17:04:43 | 000,060,572 | ---- | M] () -- C:\Documents and Settings\All Users\lxdd

[2010/06/17 17:04:21 | 000,431,091 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\6-17-2010 17;04;21.jpg

[2010/06/17 16:43:46 | 000,916,168 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\6-17-2010 16;43;46.jpg

[2010/06/17 16:33:46 | 001,254,691 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\6-17-2010 16;33;46.jpg

[2010/06/17 16:24:05 | 001,419,641 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\6-17-2010 16;24;13.jpg

[2010/06/17 16:11:12 | 001,678,403 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\6-17-2010 16;11;05.jpg

[2010/06/16 23:40:52 | 004,267,210 | ---- | M] (Dark Byte ) -- C:\Documents and Settings\IRENE KIM\Desktop\CheatEngine56.exe

[2010/06/16 23:39:02 | 000,656,379 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\V62-V83.rar

[2010/06/16 23:16:25 | 000,000,674 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\mIRC.lnk

[2010/06/16 23:03:25 | 001,751,280 | ---- | M] (mIRC Co. Ltd.) -- C:\Documents and Settings\IRENE KIM\Desktop\mirc635.exe

[2010/06/15 22:16:09 | 000,406,577 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\CombatArms.rar

[2010/06/14 16:14:45 | 000,425,984 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\CombatArms.dll

[2010/06/14 13:00:05 | 000,000,849 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\Shortcut to Tainted Injector.exe.lnk

[2010/06/14 12:58:49 | 000,000,804 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\Shortcut to CombatArms_Direct.exe.lnk

[2010/06/13 17:54:16 | 000,761,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr100.dll

[2010/06/13 17:43:42 | 000,570,892 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI

[2010/06/13 17:43:42 | 000,496,094 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat

[2010/06/13 17:43:42 | 000,084,578 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat

[2010/06/12 03:04:49 | 000,001,029 | ---- | M] () -- C:\WINDOWS\win.ini

[2010/06/11 18:17:24 | 000,265,416 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT

[2010/06/11 03:44:33 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK

[2010/06/09 18:40:42 | 000,002,316 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\Google Chrome.lnk

[2010/06/09 18:40:42 | 000,002,294 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk

[2010/06/04 22:12:46 | 000,010,752 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\New Microsoft Word Document (3).doc

[2010/06/04 19:07:19 | 001,371,835 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\NC Residence.jpg

[2010/06/04 19:06:36 | 001,435,475 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\NDS.jpg

[2010/06/02 04:55:30 | 000,527,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_7.dll

[2010/06/02 04:55:30 | 000,239,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_7.dll

[2010/06/02 04:55:30 | 000,074,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_5.dll

[2010/05/27 22:47:01 | 000,010,752 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\New Microsoft Word Document.doc

[2010/05/27 18:23:55 | 000,035,749 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\wheel.JPG

[2010/05/26 22:30:17 | 000,042,496 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\Integration by Partial Fractions.doc

[2010/05/26 21:41:47 | 000,041,984 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\Arc Length.doc

[2010/05/26 20:44:20 | 000,059,904 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\Washer Integration.doc

[2010/05/26 19:41:34 | 000,084,480 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\Disks.doc

[2010/05/26 16:24:53 | 000,054,272 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\Integration by Parts.doc

[2010/05/26 11:41:02 | 002,106,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_43.dll

[2010/05/26 11:41:02 | 001,998,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll

[2010/05/26 11:41:02 | 001,868,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dcsx_43.dll

[2010/05/26 11:41:02 | 000,470,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_43.dll

[2010/05/26 11:41:02 | 000,248,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx11_43.dll

[2010/05/23 20:29:49 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat

[2010/05/23 17:26:24 | 046,152,129 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\EKG1.wmv

[2010/05/23 17:12:56 | 000,150,528 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\EKG.MSWMM

[2010/05/23 11:13:01 | 002,712,786 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\5-23-2010 11;13;01.jpg

[2010/05/23 11:11:48 | 000,925,337 | ---- | M] () -- C:\Documents and Settings\IRENE KIM\Desktop\5-23-2010 11;11;49.jpg

[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

[10 C:\Documents and Settings\All Users\*.tmp files -> C:\Documents and Settings\All Users\*.tmp -> ]

[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/06/20 22:53:43 | 000,293,376 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\p6pzvb9h.exe

[2010/06/20 22:29:52 | 000,000,135 | ---- | C] () -- C:\WINDOWS\System32\msexcr.ini

[2010/06/20 15:17:38 | 080,398,104 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\jdk-6u20-windows-i586.exe

[2010/06/20 14:59:28 | 000,009,216 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\Flames_Menu_v2.1.dll

[2010/06/20 14:59:09 | 000,007,835 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\Flames_Menu_v2.1.zip

[2010/06/20 13:54:00 | 003,016,114 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\localhost.rar

[2010/06/20 13:53:40 | 003,016,386 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\v83 Localhost.rar

[2010/06/20 13:42:02 | 000,000,945 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Hex Workshop Hex Editor.lnk

[2010/06/20 11:40:20 | 000,044,544 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Application Data\959b8009.exe

[2010/06/18 23:25:37 | 000,002,455 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\HiJackThis.lnk

[2010/06/18 23:19:37 | 001,402,880 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\HiJackThis.msi

[2010/06/18 18:44:04 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk

[2010/06/18 17:53:11 | 000,000,372 | ---- | C] () -- C:\boot.bak

[2010/06/18 17:41:16 | 000,018,944 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxscnui.dll

[2010/06/18 17:41:12 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxftplt.exe

[2010/06/18 17:28:45 | 000,033,280 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax

[2010/06/18 17:28:40 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll

[2010/06/18 17:24:33 | 000,056,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax

[2010/06/18 13:05:23 | 000,000,292 | -H-- | C] () -- C:\WINDOWS\tasks\b3cbf2ef.job

[2010/06/18 06:11:23 | 000,000,280 | -H-- | C] () -- C:\WINDOWS\tasks\3745e8d5.job

[2010/06/17 22:56:52 | 000,000,755 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\Diet Analysis Plus 8.0.1.lnk

[2010/06/17 18:02:15 | 000,044,544 | ---- | C] () -- C:\WINDOWS\System32\ernel32.dll

[2010/06/17 18:02:12 | 000,000,288 | -H-- | C] () -- C:\WINDOWS\tasks\959b8009.job

[2010/06/17 17:04:23 | 000,431,091 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\6-17-2010 17;04;21.jpg

[2010/06/17 16:43:56 | 000,916,168 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\6-17-2010 16;43;46.jpg

[2010/06/17 16:33:56 | 001,254,691 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\6-17-2010 16;33;46.jpg

[2010/06/17 16:26:14 | 001,419,641 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\6-17-2010 16;24;13.jpg

[2010/06/17 16:11:11 | 001,678,403 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\6-17-2010 16;11;05.jpg

[2010/06/17 13:24:20 | 000,000,376 | ---- | C] () -- C:\WINDOWS\tasks\At1.job

[2010/06/16 23:42:04 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll

[2010/06/16 23:38:58 | 000,656,379 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\V62-V83.rar

[2010/06/16 23:16:25 | 000,000,674 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\mIRC.lnk

[2010/06/15 22:17:06 | 000,425,984 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\CombatArms.dll

[2010/06/15 22:16:01 | 000,406,577 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\CombatArms.rar

[2010/06/14 13:00:05 | 000,000,849 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\Shortcut to Tainted Injector.exe.lnk

[2010/06/14 12:58:51 | 000,000,804 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\Shortcut to CombatArms_Direct.exe.lnk

[2010/06/04 22:12:46 | 000,010,752 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\New Microsoft Word Document (3).doc

[2010/06/04 19:07:27 | 001,371,835 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\NC Residence.jpg

[2010/06/04 19:06:44 | 001,435,475 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\NDS.jpg

[2010/05/27 22:47:01 | 000,010,752 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\New Microsoft Word Document.doc

[2010/05/27 18:14:46 | 000,035,749 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\wheel.JPG

[2010/05/26 21:48:28 | 000,042,496 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\Integration by Partial Fractions.doc

[2010/05/26 21:14:52 | 000,041,984 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\Arc Length.doc

[2010/05/26 20:44:20 | 000,059,904 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\Washer Integration.doc

[2010/05/26 16:24:53 | 000,054,272 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\Integration by Parts.doc

[2010/05/26 15:25:58 | 000,084,480 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\Disks.doc

[2010/05/23 17:17:46 | 046,152,129 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\EKG1.wmv

[2010/05/23 17:03:39 | 000,386,124 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\Break Your Heart EKG.mp3

[2010/05/23 16:53:46 | 000,150,528 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\EKG.MSWMM

[2010/05/23 16:50:43 | 000,212,201 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\heartless ekg.mp3

[2010/05/23 11:13:35 | 002,712,786 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\5-23-2010 11;13;01.jpg

[2010/05/23 11:11:54 | 000,925,337 | ---- | C] () -- C:\Documents and Settings\IRENE KIM\Desktop\5-23-2010 11;11;49.jpg

[2010/03/04 10:03:26 | 000,002,048 | ---- | C] () -- C:\WINDOWS\System32\upsdb.sys

[2009/09/10 19:08:37 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\mvastnet.dll

[2009/08/08 15:32:43 | 000,033,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\oreans32.sys

[2009/07/20 13:45:52 | 000,138,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys

[2009/07/20 13:45:24 | 000,000,362 | ---- | C] () -- C:\WINDOWS\game.ini

[2009/07/01 08:18:02 | 000,721,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys

[2009/06/26 18:21:02 | 000,015,497 | ---- | C] () -- C:\WINDOWS\VX6KStd.ini

[2009/03/28 14:07:44 | 000,000,083 | ---- | C] () -- C:\WINDOWS\wa.INI

[2009/03/22 19:29:52 | 000,000,275 | ---- | C] () -- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini

[2009/03/01 14:34:14 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\AVERM.dll

[2009/03/01 14:34:14 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\AVEQT.dll

[2009/01/10 16:16:56 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll

[2009/01/10 16:16:56 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll

[2009/01/10 16:16:56 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll

[2008/11/29 11:03:56 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini

[2008/11/19 20:17:02 | 000,000,000 | ---- | C] () -- C:\WINDOWS\OpPrintServer.INI

[2008/11/19 19:38:34 | 000,000,000 | ---- | C] () -- C:\WINDOWS\VPC32.INI

[2008/11/19 17:03:50 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI

[2008/11/19 13:45:36 | 000,692,224 | ---- | C] () -- C:\WINDOWS\System32\lxdddrs.dll

[2008/11/19 13:45:36 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\lxddcnv4.dll

[2008/11/19 13:45:36 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\lxddcaps.dll

[2008/11/19 13:43:44 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\LXF3PMON.DLL

[2008/11/19 13:43:44 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\lxf3oem.dll

[2008/11/19 13:43:44 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\LXF3FXPU.DLL

[2008/11/19 13:43:44 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\LXF3PMRC.DLL

[2008/11/19 13:33:28 | 000,000,044 | ---- | C] () -- C:\WINDOWS\System32\lxddrwrd.ini

[2008/11/19 13:31:55 | 000,344,064 | R--- | C] () -- C:\WINDOWS\System32\lxddcoin.dll

[2008/11/19 13:31:06 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\LXDDinst.dll

[2008/11/19 13:31:03 | 000,208,896 | ---- | C] () -- C:\WINDOWS\System32\lxddgrd.dll

[2008/10/28 18:40:48 | 000,173,552 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat

[2006/05/17 22:47:12 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxddvs.dll

[2003/01/07 16:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== LOP Check ==========

[2009/11/25 12:30:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\id Software

[2009/01/09 09:30:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LxThumbs

[2008/11/30 13:20:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MakeMusic

[2009/05/26 21:06:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Musicnotes

[2010/06/11 23:14:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nexon

[2008/12/05 23:57:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NexonUS

[2010/01/24 19:11:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\OrbNetworks

[2008/11/19 18:35:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft

[2009/09/26 17:34:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP

[2009/09/26 17:34:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneClone

[2009/05/16 21:52:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WindSolutions

[2009/09/13 19:22:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}

[2009/10/30 16:16:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\.minecraft

[2009/11/07 16:58:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Design Science

[2010/03/17 21:57:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\DiskAid

[2010/06/20 15:30:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Efme

[2010/03/16 17:43:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Facebook

[2009/03/01 14:34:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\GetRightToGo

[2009/07/10 10:12:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\gtk-2.0

[2009/10/24 20:34:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\id Software

[2009/01/29 11:16:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Lexmark Productivity Studio

[2009/06/15 12:04:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Meebo

[2009/02/28 00:07:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\NCSoft

[2008/12/26 14:48:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Nexon

[2010/06/19 04:32:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Orwue

[2010/06/17 22:58:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Thomson Learning

[2010/06/17 13:24:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\Trillian

[2009/05/16 21:35:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\IRENE KIM\Application Data\WindSolutions

[2010/06/20 19:38:22 | 000,000,280 | -H-- | M] () -- C:\WINDOWS\Tasks\3745e8d5.job

[2010/06/20 19:43:23 | 000,000,288 | -H-- | M] () -- C:\WINDOWS\Tasks\959b8009.job

[2010/06/20 18:00:00 | 000,000,376 | ---- | M] () -- C:\WINDOWS\Tasks\At1.job

[2010/06/20 19:38:22 | 000,000,292 | -H-- | M] () -- C:\WINDOWS\Tasks\b3cbf2ef.job

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.* >

[2008/11/19 12:09:57 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT

[2009/02/04 17:11:47 | 000,000,372 | ---- | M] () -- C:\boot.bak

[2010/06/18 17:55:05 | 000,000,376 | RHS- | M] () -- C:\boot.ini

[2008/11/19 12:09:57 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS

[2008/11/19 12:09:57 | 000,000,000 | RHS- | M] () -- C:\IO.SYS

[2009/09/30 22:10:11 | 000,000,069 | ---- | M] () -- C:\lxdd.log

[2008/11/19 12:09:57 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS

[2004/08/04 06:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM

[2008/11/30 13:26:52 | 000,250,048 | RHS- | M] () -- C:\ntldr

[2010/06/20 19:37:46 | 1608,126,464 | -HS- | M] () -- C:\pagefile.sys

[2009/06/10 13:59:49 | 000,000,268 | -H-- | M] () -- C:\sqmdata00.sqm

[2009/06/10 14:45:12 | 000,000,268 | -H-- | M] () -- C:\sqmdata01.sqm

[2009/08/14 20:00:20 | 000,000,268 | -H-- | M] () -- C:\sqmdata02.sqm

[2009/08/15 10:44:53 | 000,000,268 | -H-- | M] () -- C:\sqmdata03.sqm

[2009/08/15 10:49:31 | 000,000,268 | -H-- | M] () -- C:\sqmdata04.sqm

[2009/10/11 03:55:50 | 000,000,268 | -H-- | M] () -- C:\sqmdata05.sqm

[2009/10/18 23:05:20 | 000,000,268 | -H-- | M] () -- C:\sqmdata06.sqm

[2009/11/23 19:43:47 | 000,000,268 | -H-- | M] () -- C:\sqmdata07.sqm

[2009/12/01 21:29:08 | 000,000,268 | -H-- | M] () -- C:\sqmdata08.sqm

[2009/12/12 13:31:19 | 000,000,268 | -H-- | M] () -- C:\sqmdata09.sqm

[2009/05/21 21:59:37 | 000,000,268 | -H-- | M] () -- C:\sqmdata10.sqm

[2009/05/23 21:33:57 | 000,000,268 | -H-- | M] () -- C:\sqmdata11.sqm

[2009/05/23 22:05:37 | 000,000,268 | -H-- | M] () -- C:\sqmdata12.sqm

[2009/05/25 11:24:48 | 000,000,268 | -H-- | M] () -- C:\sqmdata13.sqm

[2009/05/29 16:26:58 | 000,000,268 | -H-- | M] () -- C:\sqmdata14.sqm

[2009/05/30 11:34:50 | 000,000,268 | -H-- | M] () -- C:\sqmdata15.sqm

[2009/05/31 10:13:46 | 000,000,268 | -H-- | M] () -- C:\sqmdata16.sqm

[2009/05/31 23:56:26 | 000,000,268 | -H-- | M] () -- C:\sqmdata17.sqm

[2009/06/02 16:23:57 | 000,000,268 | -H-- | M] () -- C:\sqmdata18.sqm

[2009/06/10 13:06:57 | 000,000,268 | -H-- | M] () -- C:\sqmdata19.sqm

[2009/06/10 13:59:49 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt00.sqm

[2009/06/10 14:45:12 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt01.sqm

[2009/08/14 20:00:20 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt02.sqm

[2009/08/15 10:44:52 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt03.sqm

[2009/08/15 10:49:31 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt04.sqm

[2009/10/11 03:55:50 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt05.sqm

[2009/10/18 23:05:20 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt06.sqm

[2009/11/23 19:43:47 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt07.sqm

[2009/12/01 21:29:07 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt08.sqm

[2009/12/12 13:31:19 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt09.sqm

[2009/05/21 21:59:37 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt10.sqm

[2009/05/23 21:33:57 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt11.sqm

[2009/05/23 22:05:37 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt12.sqm

[2009/05/25 11:24:48 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt13.sqm

[2009/05/29 16:26:57 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt14.sqm

[2009/05/30 11:34:50 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt15.sqm

[2009/05/31 10:13:46 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt16.sqm

[2009/05/31 23:56:25 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt17.sqm

[2009/06/02 16:23:57 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt18.sqm

[2009/06/10 13:06:56 | 000,000,244 | -H-- | M] () -- C:\sqmnoopt19.sqm

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

[2009/02/25 17:42:32 | 000,442,368 | ---- | M] (Advanced Micro Devices, Inc.) Unable to obtain MD5 -- C:\WINDOWS\system32\ATIDEMGX.dll

[2004/08/04 06:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\kbd101a.dll

[2001/08/17 15:55:56 | 000,005,632 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\kbd103.dll

[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\System32\config\*.sav >

[2008/11/19 06:42:56 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav

[2008/11/19 06:42:56 | 000,634,880 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav

[2008/11/19 06:42:56 | 000,901,120 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav

< %systemroot%\system32\drivers\*.sys /90 >

[2010/04/29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbam.sys

[2010/04/29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys

========== Alternate Data Streams ==========

@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0B174FAE

< End of report >

Patrick123 · June 21, 2010

Extras.txt from OTL:

OTL Extras logfile created on: 6/20/2010 22:53:30 - Run 1

OTL by OldTimer - Version 3.2.6.1 Folder = C:\Documents and Settings\IRENE KIM\Desktop

Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 7.0.5730.13)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,022.00 Mb Total Physical Memory | 405.00 Mb Available Physical Memory | 40.00% Memory free

2.00 Gb Paging File | 2.00 Gb Available in Paging File | 67.00% Paging File free

Paging file location(s): C:\pagefile.sys 1533 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 48.83 Gb Total Space | 6.44 Gb Free Space | 13.19% Space Free | Partition Type: NTFS

Drive D: | 183.99 Gb Total Space | 55.05 Gb Free Space | 29.92% Space Free | Partition Type: NTFS

E: Drive not present or media not loaded

F: Drive not present or media not loaded

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: COMMON

Current User Name: IRENE KIM

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: Current user

Company Name Whitelist: Off

Skip Microsoft Files: Off

File Age = 30 Days

Output = Minimal

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]

.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

exefile [open] -- "%1" %*

htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)

htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)

Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"FirstRunDisabled" = 1

"FirewallDisableNotify" = 0

"UpdatesDisableNotify" = 0

"AntiVirusOverride" = 1

"FirewallOverride" = 0

"UacDisableNotify" = 1

"AntiVirusDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004

"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005

"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001

"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"EnableFirewall" = 1

"DoNotAllowExceptions" = 0

"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007

"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004

"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005

"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001

"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)

"C:\Program Files\Lexmark 2500 Series\app4r.exe" = C:\Program Files\Lexmark 2500 Series\App4R.exe:*:Enabled:Printing Application -- ()

"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

"C:\Documents and Settings\PATRICK KIM\My Documents\Combat Arms\CombatArms.exe" = C:\Documents and Settings\PATRICK KIM\My Documents\Combat Arms\CombatArms.exe:*Enabled:CombatArms.exe -- File not found

"C:\Documents and Settings\PATRICK KIM\My Documents\Combat Arms\Engine.exe" = C:\Documents and Settings\PATRICK KIM\My Documents\Combat Arms\Engine.exe:*Enabled:Engine.exe -- File not found

"D:\Documents and Settings\All Users\Shared Documents\Shared Game\PUYO2\Gears\Exteel\System\Exteel.exe" = D:\Documents and Settings\All Users\Shared Documents\Shared Game\PUYO2\Gears\Exteel\System\Exteel.exe:*:Enabled:Exteel -- File not found

"C:\Program Files\NCsoft\Exteel\System\Exteel.exe" = C:\Program Files\NCsoft\Exteel\System\Exteel.exe:*:Enabled:Exteel -- File not found

"D:\Documents and Settings\p\misc\Combat Arms\CombatArms.exe" = D:\Documents and Settings\p\misc\Combat Arms\CombatArms.exe:*Enabled:CombatArms.exe -- File not found

"D:\Documents and Settings\p\misc\Combat Arms\Engine.exe" = D:\Documents and Settings\p\misc\Combat Arms\Engine.exe:*Enabled:Engine.exe -- File not found

"C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -- File not found

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)

"D:\Documents and Settings\p\Combat Arms\CombatArms.exe" = D:\Documents and Settings\p\Combat Arms\CombatArms.exe:*Enabled:CombatArms.exe -- (Nexon)

"D:\Documents and Settings\p\Combat Arms\Engine.exe" = D:\Documents and Settings\p\Combat Arms\Engine.exe:*Enabled:Engine.exe -- (Nexon)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)

"C:\WINDOWS\system32\lxddcoms.exe" = C:\WINDOWS\system32\lxddcoms.exe:*:Enabled:Lexmark Communications System -- ( )

"C:\Program Files\Lexmark 2500 Series\lxddamon.exe" = C:\Program Files\Lexmark 2500 Series\lxddamon.exe:*:Enabled:Lexmark Device Monitor -- ()

"C:\Program Files\Lexmark 2500 Series\App4R.exe" = C:\Program Files\Lexmark 2500 Series\App4R.exe:*:Enabled:Lexmark Imaging Studio -- ()

"C:\Documents and Settings\All Users\Application Data\NexonUS\NGM\NGM.exe" = C:\Documents and Settings\All Users\Application Data\NexonUS\NGM\NGM.exe:*:Enabled:Nexon Game Manager -- (Nexon)

"C:\Documents and Settings\PATRICK KIM\My Documents\Combat Arms\NMService.exe" = C:\Documents and Settings\PATRICK KIM\My Documents\Combat Arms\NMService.exe:*:Enabled:Nexon Messenger Core -- File not found

"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)

"C:\Documents and Settings\PATRICK KIM\My Documents\Combat Arms\CombatArms.exe" = C:\Documents and Settings\PATRICK KIM\My Documents\Combat Arms\CombatArms.exe:*Enabled:CombatArms.exe -- File not found

"C:\Documents and Settings\PATRICK KIM\My Documents\Combat Arms\Engine.exe" = C:\Documents and Settings\PATRICK KIM\My Documents\Combat Arms\Engine.exe:*Enabled:Engine.exe -- File not found

"D:\Documents and Settings\All Users\Shared Documents\Shared Game\BROOD\StarCraft.exe" = D:\Documents and Settings\All Users\Shared Documents\Shared Game\BROOD\StarCraft.exe:*:Enabled:Starcraft -- (Blizzard Entertainment)

"C:\Program Files\Canon\CSCLIB\CDPROCMN.exe" = C:\Program Files\Canon\CSCLIB\CDPROCMN.exe:*:Enabled:Canon Digital Camera SDK main server EXE -- (Canon Inc.)

"C:\Program Files\Canon\CSCLIB\CDPROC.exe" = C:\Program Files\Canon\CSCLIB\CDPROC.exe:*:Enabled:Canon Digital Camera SDK CDPROC EXE -- (Canon Inc.)

"C:\WINDOWS\system32\java.exe" = C:\WINDOWS\system32\java.exe:*:Enabled:Java Platform SE binary -- (Sun Microsystems, Inc.)

"C:\Documents and Settings\All Users\Documents\op\OPERATION7.exe" = C:\Documents and Settings\All Users\Documents\op\OPERATION7.exe:*:Enabled:OPERATION7 -- File not found

"C:\ijji\ENGLISH\u_sf\soldierfront.exe" = C:\ijji\ENGLISH\u_sf\soldierfront.exe:*:Disabled:soldierfront -- File not found

"D:\Documents and Settings\p\New Folder\Ventrilo.exe" = D:\Documents and Settings\p\New Folder\Ventrilo.exe:*:Enabled:Ventrilo.exe -- ()

"C:\Documents and Settings\PATRICK KIM\My Documents\v62\ChickenMS_Client.exe" = C:\Documents and Settings\PATRICK KIM\My Documents\v62\ChickenMS_Client.exe:*:Enabled:MapleStory -- File not found

"D:\Documents and Settings\p\misc\Combat Arms\CombatArms.exe" = D:\Documents and Settings\p\misc\Combat Arms\CombatArms.exe:*Enabled:CombatArms.exe -- File not found

"D:\Documents and Settings\p\misc\Combat Arms\Engine.exe" = D:\Documents and Settings\p\misc\Combat Arms\Engine.exe:*Enabled:Engine.exe -- File not found

"D:\Documents and Settings\p\misc\Combat Arms\NMService.exe" = D:\Documents and Settings\p\misc\Combat Arms\NMService.exe:*:Enabled:NMService -- File not found

"C:\Program Files\MSN Messenger\livecall.exe" = C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone) -- File not found

"C:\Program Files\Java\jre6\bin\java.exe" = C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java Platform SE binary -- (Sun Microsystems, Inc.)

"C:\WINDOWS\system32\mmc.exe" = C:\WINDOWS\system32\mmc.exe:*:Enabled:Microsoft Management Console -- (Microsoft Corporation)

"C:\WINDOWS\system32\PnkBstrA.exe" = C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA -- ()

"C:\WINDOWS\system32\PnkBstrB.exe" = C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB -- ()

"C:\Program Files\Bonjour\mDNSResponder.exe" = C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour -- (Apple Inc.)

"D:\Program Files\Mozilla Firefox\firefox.exe" = D:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- File not found

"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" = C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger -- (Microsoft Corporation)

"C:\Program Files\Skype\Plugin Manager\skypePM.exe" = C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager -- (Skype Technologies)

"C:\Program Files\iTunes\iTunes.exe" = C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes -- (Apple Inc.)

"C:\Program Files\Batery\BateryApp.exe" = C:\Program Files\Batery\BateryApp.exe:*:Enabled:Batery -- (Batery)

"D:\Documents and Settings\p\Combat Arms\CombatArms.exe" = D:\Documents and Settings\p\Combat Arms\CombatArms.exe:*Enabled:CombatArms.exe -- (Nexon)

"D:\Documents and Settings\p\Combat Arms\NMService.exe" = D:\Documents and Settings\p\Combat Arms\NMService.exe:*:Enabled:Nexon Messenger Core -- (Nexon Corp.)

"D:\Documents and Settings\p\Combat Arms\Engine.exe" = D:\Documents and Settings\p\Combat Arms\Engine.exe:*:Enabled:Combat Arms -- (Nexon)

"D:\Documents and Settings\p\mIRC\mirc.exe" = D:\Documents and Settings\p\mIRC\mirc.exe:*:Enabled:mIRC -- (mIRC Co. Ltd.)

"C:\WINDOWS\system32\spoolsv.exe" = C:\WINDOWS\system32\spoolsv.exe:*:Enabled:spoolsv.exe -- (Microsoft Corporation)

"C:\WINDOWS\system32\spool\drivers\w32x86\3\lxddpswx.exe" = C:\WINDOWS\system32\spool\drivers\w32x86\3\lxddpswx.exe:*:Disabled: -- ()

"C:\WINDOWS\system32\spool\drivers\w32x86\3\lxddjswx.exe" = C:\WINDOWS\system32\spool\drivers\w32x86\3\lxddjswx.exe:*:Disabled: -- ()

"D:\Program Files\torrent\uTorrent.exe" = D:\Program Files\torrent\uTorrent.exe:*:Disabled:μTorrent -- (BitTorrent, Inc.)

"D:\Documents and Settings\All Users\Shared Documents\Shared Game\PUYO2\Gears\Exteel\System\Exteel.exe" = D:\Documents and Settings\All Users\Shared Documents\Shared Game\PUYO2\Gears\Exteel\System\Exteel.exe:*:Disabled:Exteel -- File not found

"C:\Program Files\NCsoft\Exteel\System\Exteel.exe" = C:\Program Files\NCsoft\Exteel\System\Exteel.exe:*:Disabled:Exteel -- File not found

"D:\Documents and Settings\All Users\Shared Documents\Shared Game\PUYO2\Gears\Gears\Gears of War\Binaries\WarGame-G4WLive.exe" = D:\Documents and Settings\All Users\Shared Documents\Shared Game\PUYO2\Gears\Gears\Gears of War\Binaries\WarGame-G4WLive.exe:*:Disabled:Gears Of War -- File not found

"D:\Documents and Settings\All Users\Shared Documents\Shared Game\PUYO2\Gears\Gears of War\Gears of War\Binaries\WarGame-G4WLive.exe" = D:\Documents and Settings\All Users\Shared Documents\Shared Game\PUYO2\Gears\Gears of War\Gears of War\Binaries\WarGame-G4WLive.exe:*:Disabled:Gears Of War -- File not found

"C:\Program Files\Google\Google Talk\googletalk.exe" = C:\Program Files\Google\Google Talk\googletalk.exe:*:Disabled:Google Talk -- (Google)

"C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.dll" = C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.dll:*:Disabled:Google Talk Plugin -- (Google)

"D:\Documents and Settings\Chris\Winamp Remote\bin\Orb.exe" = D:\Documents and Settings\Chris\Winamp Remote\bin\Orb.exe:*:Disabled:Orb -- (Orb Networks, Inc.)

"C:\Program Files\Winamp Remote\bin\Orb.exe" = C:\Program Files\Winamp Remote\bin\Orb.exe:*:Disabled:Orb -- (Orb Networks, Inc.)

"D:\Documents and Settings\Chris\Winamp Remote\bin\OrbStreamerClient.exe" = D:\Documents and Settings\Chris\Winamp Remote\bin\OrbStreamerClient.exe:*:Disabled:Orb Stream Client -- (Orb Networks)

"C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe" = C:\Program Files\Winamp Remote\bin\OrbStreamerClient.exe:*:Disabled:Orb Stream Client -- (Orb Networks)

"D:\Documents and Settings\Chris\Winamp Remote\bin\OrbTray.exe" = D:\Documents and Settings\Chris\Winamp Remote\bin\OrbTray.exe:*:Disabled:OrbTray -- (Orb Networks)

"C:\Program Files\Winamp Remote\bin\OrbTray.exe" = C:\Program Files\Winamp Remote\bin\OrbTray.exe:*:Disabled:OrbTray -- (Orb Networks)

"C:\WINDOWS\Downloaded Program Files\PurpleBean.exe" = C:\WINDOWS\Downloaded Program Files\PurpleBean.exe:*:Disabled:PurpleBean.exe -- ()

"C:\Documents and Settings\PATRICK KIM\temp\TeamViewer\Version4\TeamViewer.exe" = C:\Documents and Settings\PATRICK KIM\temp\TeamViewer\Version4\TeamViewer.exe:*:Disabled:TeamViewer Remote Control Application -- File not found

"C:\Program Files\Lexmark 2500 Series\lxddmon.exe" = C:\Program Files\Lexmark 2500 Series\lxddmon.exe:*:Enabled: -- ()

"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)

"C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe" = C:\Documents and Settings\IRENE KIM\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe:*:Enabled:Google Talk Plugin -- (Google)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

".sol Editor" = .sol Editor 1.1.0.1

"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR

"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148

"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center

"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour

"{09DA4F91-2A09-4232-AB8C-6BC740096DE3}" = Sonic Update Manager

"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended

"{10CE1EA2-12E9-11D3-825E-00C04F6843FE}" = Microsoft Office Sounds

"{12515056-B730-3044-A2E8-0D38C7D5F3BB}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - KOR

"{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}" = QuickTime

"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool

"{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk" = Google Talk (remove only)

"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT

"{24EEF6D7-A7B6-4AA9-AFD9-407185A7769F}" = MapleStory

"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java 6 Update 18

"{2C164906-E68F-462A-9010-70DD022223EF}" = RemoteCapture Task 1.0.2

"{3062D9D0-0EF0-4F0D-9575-26013FF60FC9}" = MapleStory

"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile

"{3FA365DF-2D68-45ED-8F83-8C8A33E65143}" = Apple Application Support

"{4324BC93-C82F-ED16-BA86-5E34B9E05303}" = ccc-core-static

"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant

"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis

"{48FE73F3-4C3A-4871-BCD0-A7726A08BD64}" = Hex Workshop v6

"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater

"{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}" = Microsoft Games for Windows - LIVE

"{4B55E0A8-07F5-4966-9B7B-D32C8ADC0FF4}" = Digimax Converter

"{4ED118EE-785C-CC18-5D2E-D5CA4BAA03F0}" = Catalyst Control Center Graphics Full New

"{539475B7-44B7-8B0A-134C-F01B9C8B7569}" = ccc-core-preinstall

"{5AC7AE54-55DF-1126-076C-623F008D40B6}" = Catalyst Control Center Graphics Full Existing

"{6102D63A-9387-4FC8-98E4-181121F8C0BA}" = MPlugin_USA

"{612B9183-67A9-4B44-9877-2F059E35B86A}" = Broadcom 440x 10/100 Integrated Controller

"{6351D217-3EE3-1967-29BE-6A77635FE485}" = Skins

"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update

"{6AB9CD3A-F91F-233B-923B-6C59BA63524D}" = Catalyst Control Center HydraVision Full

"{6B67DCD0-362E-4705-B8F5-F329D459E93D}" = 밧데리파일

"{6BB42024-D62A-33F5-B883-52069E2C9668}" = Google Talk Plugin

"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable

"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com

"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client

"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials

"{82B06A13-A5F5-4020-92C8-9C8C2B0034C3}" = ImageCreator ver.1.5

"{848AC794-8B81-440A-81AE-6474337DB527}" = Symantec AntiVirus

"{85A91C22-C369-FCFB-5F1F-D59EB21AD0E1}" = CCC Help English

"{86D6A20D-3910-4441-A3E5-EB6977251C86}" = Samsung USB Driver

"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight

"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003

"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system

"{912444AD-B364-3D0E-B58E-4F862BC1249D}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - KOR

"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting

"{9518F764-C54D-47B2-9E73-154B21E79FD2}" = RAW Image Task 1.0

"{972B9815-783B-3136-9247-CF62322C4E40}" = Microsoft .NET Framework 3.5 Language Pack SP1 - kor

"{A10D9B03-AABB-47D7-8A30-2FEA97E70BC7}" = Quake Live Mozilla Plugin

"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI

"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2

"{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio

"{A6D0140F-E62F-9D1E-2408-9CFF91FF6FC8}" = ccc-utility

"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger

"{A8B94669-8654-4126-BD28-D0D2412CDED6}" = TI Connect 1.6

"{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}" = Apple Mobile Device Support

"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.2

"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9

"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint

"{AEC0CEBC-0FC7-4716-8222-1C4A742719B1}" = Digimax Master

"{BEF56F2D-56ED-4176-BF72-7B68D4A3B98D}" = Canon PhotoRecord

"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2

"{C151CE54-E7EA-4804-854B-F515368B0798}" = Athlon 64 Processor Driver

"{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}" = Canon Utilities ZoomBrowser EX

"{C3ABE126-2BB2-4246-BFE1-6797679B3579}" = LG USB Modem driver

"{C3E1AA89-B370-46F4-AEBD-F4EBE7BE38A1}" = Camera Support Core Library

"{C44A7422-E380-44BE-79FE-1C032D8A03A7}" = Catalyst Control Center Core Implementation

"{C99C0593-3B48-41D9-B42F-6E035B320449}" = Broadcom Management Programs

"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1

"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype

Patrick123 · June 22, 2010

Bump... :welcome:

screen317 · July 7, 2010

Hi and welcome to Malwarebytes.

My apologies for the extended delay. Do you still need help?

screen317 · July 24, 2010

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Sign In

Redirect Issue

Recommended Posts

Patrick123

Link to post

Share on other sites

Patrick123

Link to post

Share on other sites

Patrick123

Link to post

Share on other sites

Patrick123

Link to post

Share on other sites

Patrick123

Link to post

Share on other sites

screen317

Link to post

Share on other sites

screen317

Link to post

Share on other sites

Recently Browsing 0 members

Browse

Activity

Personal

Business

Business Modules

Partners

Learn

Start here

Type of malware/attacks

How does it get on my computer?

Scams and grifts

Support

Important Information