0

Hello!

I recently got hit with some viruses on my computer that were difficult to remove (Antimalware Doctor, Windows Security, and I-Q Manager/copyright violation). I couldn't get an internet connection and none of my executables would not run, and I obviously got a lot of popups asking to run virus scans and purchase them.

I was able to run multiple scans on my computer to remove them. I noticed after I apparently removed them that not only is my computer acting much slower than before, but I can also still see the names of some of the malware in my msconfig start up menu.

I dont know if this is because of the virus, but since I apparently removed the viruses anytime I try to open up multiple chrome tabs my whole computer screen turns blue and says "A problem has been detected and windows has been shut down to prevent damage to your computer". At the end it says " ***STOP: 0x000000F4 (0x00000003,0x850F1540,0X850F16B4, 0X805C8C8A).

I'm just not sure I got 100% rid of these viruses (using Kaspersky/Malwarebytes), and i'd like to know if someone can tell if I need to do more. Here are the attachments that were requested:

mbam-log-2010-05-17 (11-51-12).txt

Attach.txt

GMER ONE.txt

GMER TWO.txt


Thanks!

Here is also the dds requested:


DDS (Ver_10-03-17.01) - NTFSx86
Run by Jamar at 12:25:08.90 on Mon 05/17/2010
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_20
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.894.442 [GMT -4:00]

AV: Kaspersky Anti-Virus *On-access scanning enabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
svchost.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
C:\Program Files\Micro Niche Finder\srvany.exe
C:\Program Files\Micro Niche Finder\bggoogle.exe
svchost.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Documents and Settings\Jamar\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Jamar\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Jamar\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Jamar\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Jamar\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = www.google.com
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride =
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Lexmark Toolbar: {1017a80c-6f09-4548-a84d-edd6ac9525f0} - c:\program files\lexmark toolbar\toolband.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: WormRadar.com IESiteBlocker.NavFilter: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - AVG Safe Search
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - c:\program files\kaspersky lab\kaspersky anti-virus 2010\ievkbd.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: FilterBHO Class: {e33cf602-d945-461a-83f0-819f76a199f8} - c:\program files\kaspersky lab\kaspersky anti-virus 2010\klwtbbho.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: {BA52B914-B692-46c4-B683-905236F6F655} - No File
TB: Lexmark Toolbar: {1017a80c-6f09-4548-a84d-edd6ac9525f0} - c:\program files\lexmark toolbar\toolband.dll
TB: {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
mRun: [AVP] "c:\program files\kaspersky lab\kaspersky anti-virus 2010\avp.exe"
mRun: [nmctxth] "c:\program files\common files\pure networks shared\platform\nmctxth.exe"
mRun: [ATICCC] "c:\program files\ati technologies\ati.ace\CLIStart.exe"
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {4248FE82-7FCB-46AC-B270-339F08212110} - {4248FE82-7FCB-46AC-B270-339F08212110} - c:\program files\kaspersky lab\kaspersky anti-virus 2010\klwtbbho.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - c:\program files\kaspersky lab\kaspersky anti-virus 2010\klwtbbho.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5483.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} -
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - c:\program files\common files\pure networks shared\platform\puresp4.dll
Notify: AtiExtEvent - Ati2evxx.dll
Notify: klogon - c:\windows\system32\klogon.dll
AppInit_DLLs: c:\progra~1\kasper~1\kasper~1\mzvkbd3.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\jamar\applic~1\mozilla\firefox\profiles\ufz7ms1c.jamar\
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");

============= SERVICES / DRIVERS ===============

R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2009-10-14 36880]
R1 kl1;Kl1;c:\windows\system32\drivers\kl1.sys [2009-9-1 128016]
R1 KLIF;Kaspersky Lab Driver;c:\windows\system32\drivers\klif.sys [2010-5-15 315408]
R2 AVP;Kaspersky Anti-Virus;c:\program files\kaspersky lab\kaspersky anti-virus 2010\avp.exe [2009-10-20 340456]
R2 iPodDrv;iPodDrv;c:\windows\system32\drivers\iPodDrv.sys [2009-8-20 6656]
R2 Micro Niche Finder Background Download Service;Micro Niche Finder Background Download Service;c:\program files\micro niche finder\srvany.exe [2009-8-29 8192]
R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2009-6-14 24652]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2009-9-14 32272]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2009-10-2 19472]
S1 SASDIFSV;SASDIFSV;f:\documents\sasdifsv.sys [2010-2-17 12872]
S1 SASKUTIL;SASKUTIL;f:\documents\SASKUTIL.SYS [2010-2-17 66632]
S3 isaxbox;isaxbox;c:\windows\system32\isaxbox.sys [2004-8-10 2304]
S3 SASENUM;SASENUM;f:\documents\SASENUM.SYS [2010-2-17 12872]
S4 Ias;Windows Messenger Access;c:\windows\system32\svchost.exe -k netsvcs [2004-8-10 14336]
S4 IODSEZWKDG;IODSEZWKDG;c:\docume~1\admini~1.jam\locals~1\temp\iodsezwkdg.exe --> c:\docume~1\admini~1.jam\locals~1\temp\IODSEZWKDG.exe [?]
S4 lxdp_device;lxdp_device;c:\windows\system32\lxdpcoms.exe -service --> c:\windows\system32\lxdpcoms.exe -service [?]
S4 lxdpCATSCustConnectService;lxdpCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdpserv.exe [2008-2-27 98984]
S4 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]

=============== Created Last 30 ================

2010-05-16 15:09:56 1296 ----a-w- c:\windows\system32\drivers\kgpcpy.cfg
2010-05-16 15:04:38 20480 ---ha-w- C:\SZKGFS.dat
2010-05-16 15:03:32 0 d-----w- c:\docume~1\alluse~1\applic~1\SITEguard
2010-05-16 14:58:34 0 d-----w- c:\program files\common files\iS3
2010-05-16 14:58:33 0 d-----w- c:\docume~1\alluse~1\applic~1\STOPzilla!
2010-05-16 06:23:21 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-05-16 01:57:20 75264 ----a-w- c:\windows\system32\drivers\ipsec.kav
2010-05-16 01:37:07 113933 ----a-w- c:\windows\system32\drivers\klin.dat
2010-05-16 01:37:06 97549 ----a-w- c:\windows\system32\drivers\klick.dat
2010-05-16 01:36:03 0 d-----w- c:\program files\Kaspersky Lab
2010-05-16 01:36:03 0 d-----w- c:\docume~1\alluse~1\applic~1\Kaspersky Lab
2010-05-15 23:30:45 0 d-----w- c:\docume~1\jamar\applic~1\SUPERAntiSpyware.com
2010-05-15 22:41:45 3206 ----a-w- c:\windows\system32\tmp.reg
2010-05-15 21:25:14 0 d-----w- c:\docume~1\alluse~1\applic~1\Kaspersky Lab Setup Files
2010-05-15 05:07:45 2282 ----a-w- c:\windows\lsrslt.ini
2010-05-15 05:03:49 0 d--h--w- c:\windows\system32\GroupPolicy
2010-05-15 03:30:40 0 d-----w- c:\program files\Spyware Doctor
2010-05-15 03:20:10 0 d-----w- c:\program files\common files\PC Tools
2010-05-15 01:48:02 86528 --sha-r- c:\windows\system32\ipconf6.dll
2010-05-15 01:47:46 0 d-----w- c:\docume~1\jamar\applic~1\A824D1A2222CD0662571EFDEDB52B7A9
2010-05-12 13:59:43 0 d-----w- c:\program files\Micro Niche Finder 5.0
2010-05-04 19:32:06 17064 ----a-w- c:\windows\system32\lxdpwupd.exe
2010-05-04 19:32:06 102400 ----a-w- c:\windows\system32\lxdpwupd.dll
2010-05-04 19:32:04 44 ----a-w- c:\windows\system32\lxdprwrd.ini
2010-05-04 19:32:02 348160 ----a-w- c:\windows\system32\LXDPinst.dll
2010-05-04 19:32:01 438272 ----a-w- c:\windows\system32\LXDPhcp.dll
2010-05-04 19:31:52 0 d-----w- c:\program files\Lexmark Z2300 Series
2010-05-04 19:31:13 76955 ----a-w- c:\windows\system32\LexFiles.ulf
2010-05-04 19:30:57 77304 ----a-r- c:\windows\system32\lxdpprpr.chm
2010-05-04 19:30:56 348160 ----a-r- c:\windows\system32\lxdpcoin.dll
2010-05-04 19:30:55 77906 ----a-r- c:\windows\system32\lxdpcfg.dll
2010-05-04 19:30:55 1541 ----a-r- c:\windows\system32\lxdp.loc
2010-05-04 19:01:27 0 d-----w- c:\program files\Lexmark Toolbar
2010-04-25 23:34:35 0 d-----w- c:\program files\iPod
2010-04-25 23:34:27 0 d-----w- c:\program files\iTunes
2010-04-25 23:34:27 0 d-----w- c:\docume~1\alluse~1\applic~1\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2010-04-25 23:30:06 0 d-----w- c:\program files\Bonjour
2010-04-25 21:55:49 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2010-04-25 21:55:40 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2010-04-25 21:55:36 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2010-04-25 21:55:27 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2010-04-25 21:55:17 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2010-04-25 21:54:41 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
2010-04-25 21:54:29 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
2010-04-25 21:54:26 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
2010-04-25 21:54:21 19200 -c--a-w- c:\windows\system32\dllcache\wstcodec.sys
2010-04-25 21:54:18 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys
2010-04-25 21:54:14 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2010-04-25 21:53:47 154624 -c--a-w- c:\windows\system32\dllcache\wlluc48.sys
2010-04-25 21:53:38 34890 -c--a-w- c:\windows\system32\dllcache\wlandrv2.sys
2010-04-25 21:53:24 771581 -c--a-w- c:\windows\system32\dllcache\winacisa.sys
2010-04-25 21:53:13 53760 -c--a-w- c:\windows\system32\dllcache\wiamsmud.dll
2010-04-25 21:53:03 87040 -c--a-w- c:\windows\system32\dllcache\wiafbdrv.dll
2010-04-25 21:52:49 701386 -c--a-w- c:\windows\system32\dllcache\wdhaalba.sys
2010-04-25 21:52:47 23615 -c--a-w- c:\windows\system32\dllcache\wch7xxnt.sys
2010-04-25 21:52:44 31744 -c--a-w- c:\windows\system32\dllcache\wceusbsh.sys
2010-04-25 21:52:35 35871 -c--a-w- c:\windows\system32\dllcache\wbfirdma.sys
2010-04-25 21:52:31 33599 -c--a-w- c:\windows\system32\dllcache\watv04nt.sys
2010-04-25 21:52:29 19551 -c--a-w- c:\windows\system32\dllcache\watv02nt.sys
2010-04-25 21:52:26 29311 -c--a-w- c:\windows\system32\dllcache\watv01nt.sys
2010-04-25 21:52:20 11775 -c--a-w- c:\windows\system32\dllcache\wadv05nt.sys
2010-04-25 21:52:17 12127 -c--a-w- c:\windows\system32\dllcache\wadv02nt.sys
2010-04-25 21:52:15 12415 -c--a-w- c:\windows\system32\dllcache\wadv01nt.sys
2010-04-25 21:52:05 16925 -c--a-w- c:\windows\system32\dllcache\w940nd.sys
2010-04-25 21:51:56 19016 -c--a-w- c:\windows\system32\dllcache\w926nd.sys
2010-04-25 21:51:46 19528 -c--a-w- c:\windows\system32\dllcache\w840nd.sys
2010-04-25 21:51:29 64605 -c--a-w- c:\windows\system32\dllcache\vvoice.sys
2010-04-25 21:51:19 397502 -c--a-w- c:\windows\system32\dllcache\vpctcom.sys
2010-04-25 21:51:09 604253 -c--a-w- c:\windows\system32\dllcache\vmodem.sys
2010-04-25 21:51:00 249402 -c--a-w- c:\windows\system32\dllcache\vinwm.sys
2010-04-25 21:50:51 24576 -c--a-w- c:\windows\system32\dllcache\viairda.sys
2010-04-25 21:50:48 5376 -c--a-w- c:\windows\system32\dllcache\viaide.sys
2010-04-25 21:50:45 53760 -c--a-w- c:\windows\system32\dllcache\vfwwdm32.dll
2010-04-25 21:50:35 687999 -c--a-w- c:\windows\system32\dllcache\usrwdxjs.sys
2010-04-25 21:50:25 765884 -c--a-w- c:\windows\system32\dllcache\usrti.sys
2010-04-25 21:50:15 113762 -c--a-w- c:\windows\system32\dllcache\usrpda.sys
2010-04-25 21:50:06 7556 -c--a-w- c:\windows\system32\dllcache\usroslba.sys
2010-04-25 21:49:57 224802 -c--a-w- c:\windows\system32\dllcache\usr1807a.sys
2010-04-25 21:49:48 794399 -c--a-w- c:\windows\system32\dllcache\usr1806v.sys
2010-04-25 21:49:39 793598 -c--a-w- c:\windows\system32\dllcache\usr1806.sys
2010-04-25 21:49:30 794654 -c--a-w- c:\windows\system32\dllcache\usr1801.sys
2010-04-25 21:49:27 20608 -c--a-w- c:\windows\system32\dllcache\usbuhci.sys
2010-04-25 21:49:23 32128 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2010-04-25 21:49:21 60032 -c--a-w- c:\windows\system32\dllcache\usbaudio.sys
2010-04-25 21:49:18 32384 -c--a-w- c:\windows\system32\dllcache\usb101et.sys
2010-04-25 21:49:05 94720 -c--a-w- c:\windows\system32\dllcache\umaxud32.dll
2010-04-25 21:48:56 28160 -c--a-w- c:\windows\system32\dllcache\umaxu40.dll
2010-04-25 21:48:47 26624 -c--a-w- c:\windows\system32\dllcache\umaxu22.dll
2010-04-25 21:48:38 69632 -c--a-w- c:\windows\system32\dllcache\umaxu12.dll
2010-04-25 21:48:29 50688 -c--a-w- c:\windows\system32\dllcache\umaxscan.dll
2010-04-25 21:48:20 22912 -c--a-w- c:\windows\system32\dllcache\umaxpcls.sys
2010-04-25 21:48:11 50176 -c--a-w- c:\windows\system32\dllcache\umaxp60.dll
2010-04-25 21:48:03 47616 -c--a-w- c:\windows\system32\dllcache\umaxcam.dll
2010-04-25 21:47:54 211968 -c--a-w- c:\windows\system32\dllcache\um54scan.dll
2010-04-25 21:47:45 216064 -c--a-w- c:\windows\system32\dllcache\um34scan.dll
2010-04-25 21:47:35 36736 -c--a-w- c:\windows\system32\dllcache\ultra.sys
2010-04-25 21:47:25 11520 -c--a-w- c:\windows\system32\dllcache\twotrack.sys
2010-04-25 21:47:09 166784 -c--a-w- c:\windows\system32\dllcache\tridxpm.sys
2010-04-25 21:47:00 525568 -c--a-w- c:\windows\system32\dllcache\tridxp.dll
2010-04-25 21:46:52 159232 -c--a-w- c:\windows\system32\dllcache\tridkbm.sys
2010-04-25 21:46:43 440576 -c--a-w- c:\windows\system32\dllcache\tridkb.dll
2010-04-25 21:46:34 222336 -c--a-w- c:\windows\system32\dllcache\trid3dm.sys
2010-04-25 21:46:25 315520 -c--a-w- c:\windows\system32\dllcache\trid3d.dll
2010-04-25 21:46:15 34375 -c--a-w- c:\windows\system32\dllcache\tpro4.sys
2010-04-25 21:46:07 42496 -c--a-w- c:\windows\system32\dllcache\tp4res.dll
2010-04-25 21:46:04 82944 -c--a-w- c:\windows\system32\dllcache\tp4mon.exe
2010-04-25 21:45:55 31744 -c--a-w- c:\windows\system32\dllcache\tp4.dll
2010-04-25 21:45:45 4992 -c--a-w- c:\windows\system32\dllcache\toside.sys
2010-04-25 21:45:36 230912 -c--a-w- c:\windows\system32\dllcache\tosdvd03.sys
2010-04-25 21:45:27 241664 -c--a-w- c:\windows\system32\dllcache\tosdvd02.sys
2010-04-25 21:45:18 28232 -c--a-w- c:\windows\system32\dllcache\tos4mo.sys
2010-04-25 21:45:08 123995 -c--a-w- c:\windows\system32\dllcache\tjisdn.sys
2010-04-25 21:44:55 138528 -c--a-w- c:\windows\system32\dllcache\tgiulnt5.sys
2010-04-25 21:44:46 81408 -c--a-w- c:\windows\system32\dllcache\tgiul50.dll
2010-04-25 21:44:44 149376 -c--a-w- c:\windows\system32\dllcache\tffsport.sys
2010-04-25 21:44:35 17129 -c--a-w- c:\windows\system32\dllcache\tdkcd31.sys
2010-04-25 21:44:26 37961 -c--a-w- c:\windows\system32\dllcache\tdk100b.sys
2010-04-25 21:44:11 30464 -c--a-w- c:\windows\system32\dllcache\tbatm155.sys
2010-04-25 21:44:01 7040 -c--a-w- c:\windows\system32\dllcache\tandqic.sys
2010-04-25 21:43:52 36640 -c--a-w- c:\windows\system32\dllcache\t2r4mini.sys
2010-04-25 21:43:44 172768 -c--a-w- c:\windows\system32\dllcache\t2r4disp.dll
2010-04-25 21:43:33 32640 -c--a-w- c:\windows\system32\dllcache\symc8xx.sys
2010-04-25 21:43:25 16256 -c--a-w- c:\windows\system32\dllcache\symc810.sys
2010-04-25 21:43:17 30688 -c--a-w- c:\windows\system32\dllcache\sym_u3.sys
2010-04-25 21:43:08 28384 -c--a-w- c:\windows\system32\dllcache\sym_hi.sys
2010-04-25 21:43:00 94293 -c--a-w- c:\windows\system32\dllcache\sxports.dll
2010-04-25 21:42:52 103936 -c--a-w- c:\windows\system32\dllcache\sx.sys
2010-04-25 21:42:44 3968 -c--a-w- c:\windows\system32\dllcache\swusbflt.sys
2010-04-25 21:42:36 10240 -c--a-w- c:\windows\system32\dllcache\swpidflt.dll
2010-04-25 21:42:28 10240 -c--a-w- c:\windows\system32\dllcache\swpdflt2.dll
2010-04-25 21:42:20 53760 -c--a-w- c:\windows\system32\dllcache\sw_wheel.dll
2010-04-25 21:42:11 41472 -c--a-w- c:\windows\system32\dllcache\sw_effct.dll
2010-04-25 21:42:08 15232 -c--a-w- c:\windows\system32\dllcache\streamip.sys
2010-04-25 21:42:00 155648 -c--a-w- c:\windows\system32\dllcache\stlnprop.dll
2010-04-25 21:41:52 53248 -c--a-w- c:\windows\system32\dllcache\stlncoin.dll
2010-04-25 21:41:44 285760 -c--a-w- c:\windows\system32\dllcache\stlnata.sys
2010-04-25 21:41:35 16896 -c--a-w- c:\windows\system32\dllcache\stcusb.sys
2010-04-25 21:41:23 48736 -c--a-w- c:\windows\system32\dllcache\srwlnd5.sys
2010-04-25 21:41:14 99328 -c--a-w- c:\windows\system32\dllcache\srusd.dll
2010-04-25 21:40:59 24660 -c--a-w- c:\windows\system32\dllcache\spxupchk.dll
2010-04-25 21:40:49 61824 -c--a-w- c:\windows\system32\dllcache\speed.sys
2010-04-25 21:40:41 106584 -c--a-w- c:\windows\system32\dllcache\spdports.dll
2010-04-25 21:40:32 19072 -c--a-w- c:\windows\system32\dllcache\sparrow.sys
2010-04-25 21:40:24 7552 -c--a-w- c:\windows\system32\dllcache\sonypvu1.sys
2010-04-25 21:40:16 37040 -c--a-w- c:\windows\system32\dllcache\sonypi.sys
2010-04-25 21:40:08 114688 -c--a-w- c:\windows\system32\dllcache\sonypi.dll
2010-04-25 21:40:00 20752 -c--a-w- c:\windows\system32\dllcache\sonync.sys
2010-04-25 21:39:52 9600 -c--a-w- c:\windows\system32\dllcache\sonymc.sys
2010-04-25 21:39:50 7552 -c--a-w- c:\windows\system32\dllcache\sonyait.sys
2010-04-25 21:39:40 7040 -c--a-w- c:\windows\system32\dllcache\snyaitmc.sys
2010-04-25 21:39:25 58368 -c--a-w- c:\windows\system32\dllcache\smiminib.sys
2010-04-25 21:39:11 147200 -c--a-w- c:\windows\system32\dllcache\smidispb.dll
2010-04-25 21:39:03 25034 -c--a-w- c:\windows\system32\dllcache\smcpwr2n.sys
2010-04-25 21:38:55 35913 -c--a-w- c:\windows\system32\dllcache\smcirda.sys
2010-04-25 21:38:46 24576 -c--a-w- c:\windows\system32\dllcache\smc8000n.sys
2010-04-25 21:38:38 6784 -c--a-w- c:\windows\system32\dllcache\smbhc.sys
2010-04-25 21:38:36 6912 -c--a-w- c:\windows\system32\dllcache\smbclass.sys
2010-04-25 21:38:34 16000 -c--a-w- c:\windows\system32\dllcache\smbbatt.sys
2010-04-25 21:38:25 45568 -c--a-w- c:\windows\system32\dllcache\smb3w.dll
2010-04-25 21:38:17 33792 -c--a-w- c:\windows\system32\dllcache\smb0w.dll
2010-04-25 21:38:08 28672 -c--a-w- c:\windows\system32\dllcache\sma0w.dll
2010-04-25 21:37:59 28160 -c--a-w- c:\windows\system32\dllcache\sm91w.dll
2010-04-25 21:37:47 11136 -c--a-w- c:\windows\system32\dllcache\slip.sys
2010-04-25 21:37:45 63547 -c--a-w- c:\windows\system32\dllcache\sla30nd5.sys
2010-04-25 21:37:36 91294 -c--a-w- c:\windows\system32\dllcache\skfpwin.sys
2010-04-25 21:37:28 94698 -c--a-w- c:\windows\system32\dllcache\sk98xwin.sys
2010-04-25 21:37:21 157696 -c--a-w- c:\windows\system32\dllcache\sisv256.dll
2010-04-25 21:37:13 50432 -c--a-w- c:\windows\system32\dllcache\sisv.sys
2010-04-25 21:37:10 32768 -c--a-w- c:\windows\system32\dllcache\sisnic.sys
2010-04-25 21:37:02 238592 -c--a-w- c:\windows\system32\dllcache\sisgrv.dll
2010-04-25 21:36:54 104064 -c--a-w- c:\windows\system32\dllcache\sisgrp.sys
2010-04-25 21:36:46 150144 -c--a-w- c:\windows\system32\dllcache\sis6306v.dll
2010-04-25 21:36:38 68608 -c--a-w- c:\windows\system32\dllcache\sis6306p.sys
2010-04-25 21:36:30 252032 -c--a-w- c:\windows\system32\dllcache\sis300iv.dll
2010-04-25 21:36:22 101760 -c--a-w- c:\windows\system32\dllcache\sis300ip.sys
2010-04-25 21:36:03 161568 -c--a-w- c:\windows\system32\dllcache\sgsmusb.sys
2010-04-25 21:35:55 18400 -c--a-w- c:\windows\system32\dllcache\sgsmld.sys
2010-04-25 21:35:48 98080 -c--a-w- c:\windows\system32\dllcache\sgiulnt5.sys
2010-04-25 21:35:40 386560 -c--a-w- c:\windows\system32\dllcache\sgiul50.dll
2010-04-25 21:35:31 36480 -c--a-w- c:\windows\system32\dllcache\sfmanm.sys
2010-04-25 21:35:22 6784 -c--a-w- c:\windows\system32\dllcache\serscan.sys
2010-04-25 21:35:13 17664 -c--a-w- c:\windows\system32\dllcache\sermouse.sys
2010-04-25 21:35:02 6912 -c--a-w- c:\windows\system32\dllcache\seaddsmc.sys
2010-04-25 21:35:00 11520 -c--a-w- c:\windows\system32\dllcache\scsiscan.sys
2010-04-25 21:34:52 11648 -c--a-w- c:\windows\system32\dllcache\scsiprnt.sys
2010-04-25 21:34:38 17280 -c--a-w- c:\windows\system32\dllcache\scr111.sys
2010-04-25 21:34:30 16640 -c--a-w- c:\windows\system32\dllcache\scmstcs.sys
2010-04-25 21:34:21 23936 -c--a-w- c:\windows\system32\dllcache\sccmusbm.sys
2010-04-25 21:34:13 23936 -c--a-w- c:\windows\system32\dllcache\sccmn50m.sys
2010-04-25 21:34:10 43904 -c--a-w- c:\windows\system32\dllcache\sbp2port.sys
2010-04-25 21:34:02 495616 -c--a-w- c:\windows\system32\dllcache\sblfx.dll
2010-04-25 21:33:53 75392 -c--a-w- c:\windows\system32\dllcache\s3savmxm.sys
2010-04-25 21:33:45 245632 -c--a-w- c:\windows\system32\dllcache\s3savmx.dll
2010-04-25 21:33:37 77824 -c--a-w- c:\windows\system32\dllcache\s3sav4m.sys
2010-04-25 21:33:29 198400 -c--a-w- c:\windows\system32\dllcache\s3sav4.dll
2010-04-25 21:33:22 61504 -c--a-w- c:\windows\system32\dllcache\s3sav3dm.sys
2010-04-25 21:33:14 179264 -c--a-w- c:\windows\system32\dllcache\s3sav3d.dll
2010-04-25 21:33:06 210496 -c--a-w- c:\windows\system32\dllcache\s3mvirge.dll
2010-04-25 21:32:59 62496 -c--a-w- c:\windows\system32\dllcache\s3mtrio.dll
2010-04-25 21:32:51 41216 -c--a-w- c:\windows\system32\dllcache\s3mt3d.sys
2010-04-25 21:32:43 182272 -c--a-w- c:\windows\system32\dllcache\s3mt3d.dll
2010-04-25 21:32:36 166720 -c--a-w- c:\windows\system32\dllcache\s3m.sys
2010-04-25 21:32:28 65664 -c--a-w- c:\windows\system32\dllcache\s3legacy.sys
2010-04-25 21:32:19 82432 -c--a-w- c:\windows\system32\dllcache\rwia450.dll
2010-04-25 21:32:11 79872 -c--a-w- c:\windows\system32\dllcache\rwia430.dll
2010-04-25 21:32:02 29696 -c--a-w- c:\windows\system32\dllcache\rw450ext.dll
2010-04-25 21:32:00 27648 -c--a-w- c:\windows\system32\dllcache\rw430ext.dll
2010-04-25 21:31:56 20992 -c--a-w- c:\windows\system32\dllcache\rtl8139.sys
2010-04-25 21:31:49 19017 -c--a-w- c:\windows\system32\dllcache\rtl8029.sys
2010-04-25 21:31:41 30720 -c--a-w- c:\windows\system32\dllcache\rthwcls.sys
2010-04-25 21:31:31 9216 -c--a-w- c:\windows\system32\dllcache\rsmgrstr.dll
2010-04-25 21:31:22 3840 -c--a-w- c:\windows\system32\dllcache\rpfun.sys
2010-04-25 21:31:18 79104 -c--a-w- c:\windows\system32\dllcache\rocket.sys
2010-04-25 21:31:08 37563 -c--a-w- c:\windows\system32\dllcache\rlnet5.sys
2010-04-25 21:30:58 86097 -c--a-w- c:\windows\system32\dllcache\reslog32.dll
2010-04-25 21:30:39 19584 -c--a-w- c:\windows\system32\dllcache\rasirda.sys
2010-04-25 21:30:29 714762 -c--a-w- c:\windows\system32\dllcache\r2mdmkxx.sys
2010-04-25 21:30:22 899146 -c--a-w- c:\windows\system32\dllcache\r2mdkxga.sys
2010-04-25 21:30:14 41472 -c--a-w- c:\windows\system32\dllcache\qvusd.dll
2010-04-25 21:30:05 3328 -c--a-w- c:\windows\system32\dllcache\qv2kux.sys
2010-04-25 21:29:47 49024 -c--a-w- c:\windows\system32\dllcache\ql1280.sys
2010-04-25 21:29:39 40448 -c--a-w- c:\windows\system32\dllcache\ql1240.sys
2010-04-25 21:29:32 45312 -c--a-w- c:\windows\system32\dllcache\ql12160.sys
2010-04-25 21:29:24 33152 -c--a-w- c:\windows\system32\dllcache\ql10wnt.sys
2010-04-25 21:29:16 40320 -c--a-w- c:\windows\system32\dllcache\ql1080.sys
2010-04-25 21:29:14 6016 -c--a-w- c:\windows\system32\dllcache\qic157.sys
2010-04-25 21:29:03 130942 -c--a-w- c:\windows\system32\dllcache\ptserlv.sys
2010-04-25 21:28:54 112574 -c--a-w- c:\windows\system32\dllcache\ptserlp.sys
2010-04-25 21:28:47 128286 -c--a-w- c:\windows\system32\dllcache\ptserli.sys
2010-04-25 21:28:44 159232 -c--a-w- c:\windows\system32\dllcache\ptpusd.dll
2010-04-25 21:28:37 5632 -c--a-w- c:\windows\system32\dllcache\ptpusb.dll
2010-04-25 21:28:28 35328 -c--a-w- c:\windows\system32\dllcache\psisload.dll
2010-04-25 21:28:20 16128 -c--a-w- c:\windows\system32\dllcache\pscr.sys
2010-04-25 21:28:13 17664 -c--a-w- c:\windows\system32\dllcache\ppa3.sys
2010-04-25 21:28:06 17792 -c--a-w- c:\windows\system32\dllcache\ppa.sys
2010-04-25 21:28:03 8832 -c--a-w- c:\windows\system32\dllcache\powerfil.sys
2010-04-25 21:27:55 7168 -c--a-w- c:\windows\system32\dllcache\pnrmc.sys
2010-04-25 21:27:38 121344 -c--a-w- c:\windows\system32\dllcache\phvfwext.dll
2010-04-25 21:27:31 19840 -c--a-w- c:\windows\system32\dllcache\philtune.sys
2010-04-25 21:27:23 92416 -c--a-w- c:\windows\system32\dllcache\phildec.sys
2010-04-25 21:27:15 173696 -c--a-w- c:\windows\system32\dllcache\philcam2.sys
2010-04-25 21:27:08 75776 -c--a-w- c:\windows\system32\dllcache\philcam1.sys
2010-04-25 21:27:00 16384 -c--a-w- c:\windows\system32\dllcache\philcam1.dll
2010-04-25 21:26:53 105984 -c--a-w- c:\windows\system32\dllcache\phdsext.ax
2010-04-25 21:26:45 259328 -c--a-w- c:\windows\system32\dllcache\perm3dd.dll
2010-04-25 21:26:43 28032 -c--a-w- c:\windows\system32\dllcache\perm3.sys
2010-04-25 21:26:41 211584 -c--a-w- c:\windows\system32\dllcache\perm2dll.dll
2010-04-25 21:26:39 27904 -c--a-w- c:\windows\system32\dllcache\perm2.sys
2010-04-25 21:26:31 5504 -c--a-w- c:\windows\system32\dllcache\perc2hib.sys
2010-04-25 21:26:24 27296 -c--a-w- c:\windows\system32\dllcache\perc2.sys
2010-04-25 21:26:21 169984 -c--a-w- c:\windows\system32\dllcache\pcx500.sys
2010-04-25 21:26:14 86016 -c--a-w- c:\windows\system32\dllcache\pctspk.exe
2010-04-25 21:26:11 35328 -c--a-w- c:\windows\system32\dllcache\pcntpci5.sys
2010-04-25 21:26:08 29769 -c--a-w- c:\windows\system32\dllcache\pcntn5m.sys
2010-04-25 21:26:05 30282 -c--a-w- c:\windows\system32\dllcache\pcntn5hl.sys
2010-04-25 21:24:59 27209 -c--a-w- c:\windows\system32\dllcache\otc06x5.sys
2010-04-25 21:24:56 54528 -c--a-w- c:\windows\system32\dllcache\opl3sax.sys
2010-04-25 21:24:53 61696 -c--a-w- c:\windows\system32\dllcache\ohci1394.sys
2010-04-25 21:24:47 198144 -c--a-w- c:\windows\system32\dllcache\nv3.sys
2010-04-25 21:24:44 123776 -c--a-w- c:\windows\system32\dllcache\nv3.dll
2010-04-25 21:24:36 51552 -c--a-w- c:\windows\system32\dllcache\ntgrip.sys
2010-04-25 21:24:27 9344 -c--a-w- c:\windows\system32\dllcache\ntapm.sys
2010-04-25 21:24:23 7552 -c--a-w- c:\windows\system32\dllcache\nsmmc.sys
2010-04-25 21:24:22 28672 -c--a-w- c:\windows\system32\dllcache\nscirda.sys
2010-04-25 21:24:17 87040 -c--a-w- c:\windows\system32\dllcache\nm6wdm.sys
2010-04-25 21:24:13 126080 -c--a-w- c:\windows\system32\dllcache\nm5a2wdm.sys
2010-04-25 21:24:06 32840 -c--a-w- c:\windows\system32\dllcache\ngrpci.sys
2010-04-25 21:22:51 103296 -c--a-w- c:\windows\system32\dllcache\mtxvideo.sys
2010-04-25 21:22:44 5504 -c--a-w- c:\windows\system32\dllcache\mstee.sys
2010-04-25 21:22:44 49024 -c--a-w- c:\windows\system32\dllcache\mstape.sys
2010-04-25 21:22:35 12416 -c--a-w- c:\windows\system32\dllcache\msriffwv.sys
2010-04-25 21:22:29 2944 -c--a-w- c:\windows\system32\dllcache\msmpu401.sys
2010-04-25 21:22:28 22016 -c--a-w- c:\windows\system32\dllcache\msircomm.sys
2010-04-25 21:22:17 35200 -c--a-w- c:\windows\system32\dllcache\msgame.sys
2010-04-25 21:22:13 6016 -c--a-w- c:\windows\system32\dllcache\msfsio.sys
2010-04-25 21:22:12 51200 -c--a-w- c:\windows\system32\dllcache\msdv.sys
2010-04-25 21:22:00 17280 -c--a-w- c:\windows\system32\dllcache\mraid35x.sys
2010-04-25 21:20:58 22848 -c--a-w- c:\windows\system32\dllcache\lwusbhid.sys
2010-04-25 21:19:48 26624 -c--a-w- c:\windows\system32\dllcache\irstusb.sys
2010-04-25 21:18:59 20480 -c--a-w- c:\windows\system32\dllcache\icam5ext.dll
2010-04-25 21:17:58 44863 -c--a-w- c:\windows\system32\dllcache\hsf_soar.sys
2010-04-25 21:17:55 57471 -c--a-w- c:\windows\system32\dllcache\hsf_samp.sys
2010-04-25 21:17:52 542879 -c--a-w- c:\windows\system32\dllcache\hsf_msft.sys
2010-04-25 21:17:46 391199 -c--a-w- c:\windows\system32\dllcache\hsf_k56k.sys
2010-04-25 21:17:41 9759 -c--a-w- c:\windows\system32\dllcache\hsf_inst.dll
2010-04-25 21:17:35 115807 -c--a-w- c:\windows\system32\dllcache\hsf_fsks.sys
2010-04-25 21:17:29 199711 -c--a-w- c:\windows\system32\dllcache\hsf_faxx.sys
2010-04-25 21:17:23 289887 -c--a-w- c:\windows\system32\dllcache\hsf_fall.sys
2010-04-25 21:17:17 67167 -c--a-w- c:\windows\system32\dllcache\hsf_bsc2.sys
2010-04-25 21:17:11 150239 -c--a-w- c:\windows\system32\dllcache\hsf_amos.sys
2010-04-25 21:17:04 19456 -c--a-w- c:\windows\system32\dllcache\hr1w.dll
2010-04-25 21:16:58 5760 -c--a-w- c:\windows\system32\dllcache\hpt4qic.sys
2010-04-25 21:16:53 13312 -c--a-w- c:\windows\system32\dllcache\hpsjmcro.dll
2010-04-25 21:16:47 324608 -c--a-w- c:\windows\system32\dllcache\hpojwia.dll
2010-04-25 21:16:41 25952 -c--a-w- c:\windows\system32\dllcache\hpn.sys
2010-04-25 21:16:35 32768 -c--a-w- c:\windows\system32\dllcache\hpgtmcro.dll
2010-04-25 21:16:30 68608 -c--a-w- c:\windows\system32\dllcache\hpgt53tk.dll
2010-04-25 21:16:24 165888 -c--a-w- c:\windows\system32\dllcache\hpgt53.dll
2010-04-25 21:16:19 31232 -c--a-w- c:\windows\system32\dllcache\hpgt42tk.dll
2010-04-25 21:16:13 93696 -c--a-w- c:\windows\system32\dllcache\hpgt42.dll
2010-04-25 21:16:07 126976 -c--a-w- c:\windows\system32\dllcache\hpgt34tk.dll
2010-04-25 21:16:02 101376 -c--a-w- c:\windows\system32\dllcache\hpgt34.dll
2010-04-25 21:15:56 48128 -c--a-w- c:\windows\system32\dllcache\hpgt33tk.dll
2010-04-25 21:15:50 89088 -c--a-w- c:\windows\system32\dllcache\hpgt33.dll
2010-04-25 21:15:45 123392 -c--a-w- c:\windows\system32\dllcache\hpgt21tk.dll
2010-04-25 21:15:39 83968 -c--a-w- c:\windows\system32\dllcache\hpgt21.dll
2010-04-25 21:15:34 119296 -c--a-w- c:\windows\system32\dllcache\hpdigwia.dll
2010-04-25 21:15:31 10368 -c--a-w- c:\windows\system32\dllcache\hidusb.sys
2010-04-25 21:15:26 2688 -c--a-w- c:\windows\system32\dllcache\hidswvd.sys
2010-04-25 21:15:25 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll
2010-04-25 21:15:20 8576 -c--a-w- c:\windows\system32\dllcache\hidgame.sys
2010-04-25 21:15:19 20352 -c--a-w- c:\windows\system32\dllcache\hidbatt.sys
2010-04-25 21:15:12 907456 -c--a-w- c:\windows\system32\dllcache\hcf_msft.sys
2010-04-25 21:15:04 28288 -c--a-w- c:\windows\system32\dllcache\grserial.sys
2010-04-25 21:14:59 82304 -c--a-w- c:\windows\system32\dllcache\grclass.sys
2010-04-25 21:14:53 17408 -c--a-w- c:\windows\system32\dllcache\gpr400.sys
2010-04-25 21:14:49 59136 -c--a-w- c:\windows\system32\dllcache\gckernel.sys
2010-04-25 21:14:48 10624 -c--a-w- c:\windows\system32\dllcache\gameenum.sys
2010-04-25 21:14:42 322432 -c--a-w- c:\windows\system32\dllcache\g400m.sys
2010-04-25 21:14:37 1733120 -c--a-w- c:\windows\system32\dllcache\g400d.dll
2010-04-25 21:14:33 320384 -c--a-w- c:\windows\system32\dllcache\g200m.sys
2010-04-25 21:14:28 470144 -c--a-w- c:\windows\system32\dllcache\g200d.dll
2010-04-25 21:14:22 454912 -c--a-w- c:\windows\system32\dllcache\fxusbase.sys
2010-04-25 21:14:07 92160 -c--a-w- c:\windows\system32\dllcache\fuusd.dll
2010-04-25 21:14:02 455296 -c--a-w- c:\windows\system32\dllcache\fusbbase.sys
2010-04-25 21:13:57 455680 -c--a-w- c:\windows\system32\dllcache\fus2base.sys
2010-04-25 21:13:47 442240 -c--a-w- c:\windows\system32\dllcache\fpnpbase.sys
2010-04-25 21:13:42 441728 -c--a-w- c:\windows\system32\dllcache\fpcmbase.sys
2010-04-25 21:13:37 444416 -c--a-w- c:\windows\system32\dllcache\fpcibase.sys
2010-04-25 21:13:34 34173 -c--a-w- c:\windows\system32\dllcache\forehe.sys
2010-04-25 21:13:28 71680 -c--a-w- c:\windows\system32\dllcache\fnfilter.dll
2010-04-25 21:13:20 27165 -c--a-w- c:\windows\system32\dllcache\fetnd5.sys
2010-04-25 21:13:06 22090 -c--a-w- c:\windows\system32\dllcache\fem556n5.sys
2010-04-25 21:12:57 24618 -c--a-w- c:\windows\system32\dllcache\fa410nd5.sys
2010-04-25 21:12:53 16074 -c--a-w- c:\windows\system32\dllcache\fa312nd5.sys
2010-04-25 21:12:48 11850 -c--a-w- c:\windows\system32\dllcache\f3ab18xj.sys
2010-04-25 21:12:43 12362 -c--a-w- c:\windows\system32\dllcache\f3ab18xi.sys
2010-04-25 21:12:36 7040 -c--a-w- c:\windows\system32\dllcache\exabyte2.sys
2010-04-25 21:12:31 16998 -c--a-w- c:\windows\system32\dllcache\ex10.sys
2010-04-25 21:12:22 45568 -c--a-w- c:\windows\system32\dllcache\esunib.dll
2010-04-25 21:12:18 45568 -c--a-w- c:\windows\system32\dllcache\esuni.dll
2010-04-25 21:12:11 34816 -c--a-w- c:\windows\system32\dllcache\esuimg.dll
2010-04-25 21:12:02 43008 -c--a-w- c:\windows\system32\dllcache\esucm.dll
2010-04-25 21:12:01 137088 -c--a-w- c:\windows\system32\dllcache\essm2e.sys
2010-04-25 21:10:56 18503 -c--a-w- c:\windows\system32\dllcache\epro4.sys
2010-04-25 21:09:59 26141 -c--a-w- c:\windows\system32\dllcache\el589nd5.sys
2010-04-25 21:08:59 8320 -c--a-w- c:\windows\system32\dllcache\dlttape.sys
2010-04-25 21:07:59 37735 -c--a-w- c:\windows\system32\dllcache\digiasyn.sys
2010-04-25 21:06:58 50176 -c--a-w- c:\windows\system32\dllcache\cyyport.sys
2010-04-25 21:05:58 44032 -c--a-w- c:\windows\system32\dllcache\cnusd.dll
2010-04-25 21:04:59 171264 -c--a-w- c:\windows\system32\dllcache\camdrv30.sys
2010-04-25 21:03:59 19456 -c--a-w- c:\windows\system32\dllcache\brbidiif.dll
2010-04-25 21:02:57 6272 -c--a-w- c:\windows\system32\dllcache\apmbatt.sys
2010-04-25 21:01:44 66048 -c--a-w- c:\windows\system32\dllcache\s3legacy.dll
2010-04-24 14:02:18 0 d-----w- c:\docume~1\jamar\applic~1\Facebook
2010-04-23 02:33:05 815104 ----a-w- c:\windows\system32\xvidcore.dll
2010-04-23 02:33:05 77824 ----a-w- c:\windows\system32\xvid.ax
2010-04-23 02:33:04 180224 ----a-w- c:\windows\system32\xvidvfw.dll
2010-04-23 02:33:04 0 d-----w- c:\program files\Xvid
2010-04-23 02:33:02 0 d-----w- c:\program files\FDRLab
2010-04-17 18:02:12 0 d-----w- c:\docume~1\jamar\applic~1\Sony Online Entertainment
2010-04-17 18:01:43 0 d-----w- c:\program files\Sony Online Entertainment

==================== Find3M ====================

2010-04-29 19:39:38 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-29 19:39:26 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-02-17 02:24:51 72080 ----a-w- c:\documents and settings\jamar\g2mdlhlpx.exe
2010-01-16 19:30:35 32768 -csha-w- c:\windows\system32\config\systemprofile\cookies\index.dat

============= FINISH: 12:28:20.35 ===============

Attachments
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4109

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

5/17/2010 11:51:12 AM
mbam-log-2010-05-17 (11-51-12).txt

Scan type: Full scan (C:\|)
Objects scanned: 194977
Time elapsed: 1 hour(s), 18 minute(s), 34 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Documents and Settings\Jamar\Application Data\mtl.dll (Trojan.Agent) -> Quarantined and deleted successfully.
1
Contributor
1
Reply
2
Views
7 Years
Discussion Span
Last Post by jcpryor
This topic has been dead for over six months. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.