I suppose the title says it all, my computer has some sort of infection where every search in google in both firefox and internet explorer redirect the searches to random pages. Additionally, typing in certain addresses simply won't load where I know the page should work, such as certain links on microsoft.com. Furthermore, I have enabled Automatic Updates and it tells me that it is not enabled even though it clearly is in the settings and going to the update page through internet explorer simply does not work.


A: Firefox and Internet Explorer Redirecting Pages/Pages Won't Load/Auto Updates Doesn't Work

Here is the DDS Log and Attached is the Attach.txt
DDS (Ver_11-03-05.01) - NTFSx86
Run by user at 3:08:50.73 on Fri 01/03/2003
Internet Explorer: 6.0.2900.2180 BrowserJavaVersion: 1.6.0_24
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.511.124 [GMT -8:00]
AV: COMODO Antivirus *Disabled/Updated* {043803A5-4F86-4ef7-AFC5-F6E02A79969B}
============== Running Processes ===============
C:\WINNT\system32\svchost.exe -k DcomLaunch
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINNT\system32\svchost.exe -k netsvcs
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\WINNT\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\AOL\1161876944\ee\AOLSoftware.exe
C:\Program Files\VIA\VIAudioi\EnvyADeck\EnMixCPL.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\user\My Documents\Downloads\dds.scr
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.google.com/
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: {4E7BD74F-2B8D-469E-8CB0-AB60BB9AAE22} - No File
TB: {4982D40A-C53B-4615-B15B-B5B5E98D167C} - No File
mRun: [HostManager] c:\program files\common files\aol\1161876944\ee\AOLSoftware.exe
mRun: [AOLDialer] c:\program files\common files\aol\acs\AOLDial.exe
mRun: [LVCOMSX] c:\winnt\system32\LVCOMSX.EXE
mRun: [NvCplDaemon] RUNDLL32.EXE c:\winnt\system32\NvCpl.dll,NvStartup
mRun: [nwiz] nwiz.exe /install
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [NvMediaCenter] RUNDLL32.EXE c:\winnt\system32\NvMcTray.dll,NvTaskbarInit
mRun: [EnvyHFCPL] c:\program files\via\viaudioi\envyadeck\EnMixCPL.exe 1
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [COMODO Internet Security] "c:\program files\comodo\comodo internet security\cfp.exe" -h
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
dRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
StartupFolder: c:\docume~1\alluse~1.win\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office\OSA9.EXE
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\winnt\system32\Shdocvw.dll
DPF: {01113300-3E00-11D2-8470-0060089874ED} - hxxps://activatemydsl.verizon.net/sdcCommon/download/DSL/tgctlcm.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?LinkID=39204
DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} - hxxp://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
AppInit_DLLs: c:\winnt\system32\guard32.dll
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\user\applic~1\mozilla\firefox\profiles\wv1kws6c.default\
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\program files\google\update\\npGoogleOneClick8.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll
============= SERVICES / DRIVERS ===============
R1 cmderd;COMODO Internet Security Eradication Driver;c:\winnt\system32\drivers\cmderd.sys [2011-1-6 15592]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\winnt\system32\drivers\cmdGuard.sys [2011-1-6 239368]
R1 SAVRKBootTasks;Boot Tasks Driver;c:\winnt\system32\SAVRKBootTasks.sys [2003-1-3 18816]
R2 cmdAgent;COMODO Internet Security Helper Service;c:\program files\comodo\comodo internet security\cmdagent.exe [2011-1-17 1803224]
R3 Envy24HFS;ICE Envy24 Family Audio Controller WDM;c:\winnt\system32\drivers\Envy24HF.sys [2009-6-29 627840]
S1 SASDIFSV;SASDIFSV;\??\c:\docume~1\user\locals~1\temp\sas_selfextract\sasdifsv.sys --> c:\docume~1\user\locals~1\temp\sas_selfextract\SASDIFSV.SYS [?]
S1 SASKUTIL;SASKUTIL;\??\c:\docume~1\user\locals~1\temp\sas_selfextract\saskutil.sys --> c:\docume~1\user\locals~1\temp\sas_selfextract\SASKUTIL.SYS [?]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-2-8 135664]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\winnt\system32\19.tmp --> c:\winnt\system32\19.tmp [?]
S3 SBRE;SBRE;\??\c:\winnt\system32\drivers\sbredrv.sys --> c:\winnt\system32\drivers\SBREdrv.sys [?]
=============== Created Last 30 ================
2011-03-31 04:24:11 -------- d-----w- C:\found.000
2011-03-30 21:06:46 -------- d-----w- c:\winnt\system32\Adobe
2011-02-27 19:25:30 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\MFAData
2011-02-09 13:53:52 270848 ------w- c:\winnt\system32\dllcache\sbe.dll
2011-02-09 13:53:52 186880 ------w- c:\winnt\system32\dllcache\encdec.dll
2011-02-02 07:58:35 2067456 ------w- c:\winnt\system32\dllcache\lhmstscx.dll
2011-01-27 11:57:06 677888 ------w- c:\winnt\system32\dllcache\lhmstsc.exe
2011-01-21 14:44:37 439296 ------w- c:\winnt\system32\dllcache\shimgvw.dll
2011-01-07 01:37:04 27576 ----a-w- c:\winnt\system32\drivers\cmdhlp.sys
2011-01-07 01:37:02 239368 ----a-w- c:\winnt\system32\drivers\cmdGuard.sys
2011-01-07 01:37:02 15592 ----a-w- c:\winnt\system32\drivers\cmderd.sys
2010-12-29 09:42:04 285480 ----a-w- c:\winnt\system32\guard32.dll
2010-12-15 05:17:38 40960 ------w- c:\winnt\system32\dllcache\ndproxy.sys
2010-12-15 05:16:47 45568 ------w- c:\winnt\system32\dllcache\wab.exe
2010-11-30 01:00:17 -------- d-----w- c:\program files\BringMeSports_1cEI
2010-11-18 18:12:44 81920 ------w- c:\winnt\system32\dllcache\isign32.dll
2010-11-09 14:52:35 536576 ------w- c:\winnt\system32\dllcache\msado15.dll
2010-11-09 14:52:35 249856 ------w- c:\winnt\system32\dllcache\odbc32.dll
2010-11-09 14:52:35 200704 ------w- c:\winnt\system32\dllcache\msadox.dll
2010-11-09 14:52:35 180224 ------w- c:\winnt\system32\dllcache\msadomd.dll
2010-11-09 14:52:35 143360 ------w- c:\winnt\system32\dllcache\msadco.dll
2010-11-09 14:52:35 102400 ------w- c:\winnt\system32\dllcache\msjro.dll
2010-10-13 20:53:35 953856 ------w- c:\winnt\system32\dllcache\mfc40u.dll
2010-10-13 20:53:34 974848 ------w- c:\winnt\system32\dllcache\mfc42.dll
2010-10-13 20:52:47 617472 ------w- c:\winnt\system32\dllcache\comctl32.dll
2010-08-27 05:57:43 99840 ------w- c:\winnt\system32\dllcache\srvsvc.dll
2010-08-17 13:17:06 58880 ------w- c:\winnt\system32\dllcache\spoolsv.exe
2010-07-16 12:05:55 1288192 ------w- c:\winnt\system32\dllcache\ole32.dll
2010-07-13 23:05:47 744448 ------w- c:\winnt\system32\dllcache\helpsvc.exe
2010-07-13 04:42:14 8704 ----a-w- c:\winnt\system32\kbdjpn.dll
2010-07-13 04:42:14 8704 ----a-w- c:\winnt\system32\dllcache\kbdjpn.dll
2010-07-13 04:42:14 8192 ----a-w- c:\winnt\system32\kbdkor.dll
2010-07-13 04:42:14 8192 ----a-w- c:\winnt\system32\dllcache\kbdkor.dll
2010-07-13 04:42:14 6144 ----a-w- c:\winnt\system32\kbd101c.dll
2010-07-13 04:42:14 6144 ----a-w- c:\winnt\system32\dllcache\kbd101c.dll
2010-07-13 04:42:14 5632 ----a-w- c:\winnt\system32\kbd103.dll
2010-07-13 04:42:14 5632 ----a-w- c:\winnt\system32\dllcache\kbd103.dll
2010-07-13 04:42:13 6144 ----a-w- c:\winnt\system32\kbd101b.dll
2010-07-13 04:42:13 6144 ----a-w- c:\winnt\system32\dllcache\kbd101b.dll
2010-07-13 04:42:12 6144 ----a-w- c:\winnt\system32\kbd106.dll
2010-07-13 04:42:12 6144 ----a-w- c:\winnt\system32\dllcache\kbd106.dll
2010-06-18 17:45:17 293376 ------w- c:\winnt\system32\dllcache\winsrv.dll
2010-06-11 03:39:23 743424 ------w- c:\winnt\system32\dllcache\iedvtool.dll
2010-05-04 03:19:33 -------- d-----w- c:\winnt\system32\NtmsData
2010-04-24 13:51:56 -------- d-----w- c:\program files\MSECache
2010-04-20 05:30:08 290048 ------w- c:\winnt\system32\dllcache\atmfd.dll
2010-04-16 15:36:56 406016 ------w- c:\winnt\system32\dllcache\usp10.dll
2010-04-09 00:00:52 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\RegWork
2010-04-09 00:00:21 -------- d-----w- c:\program files\RegWork
2010-04-09 00:00:21 -------- d-----w- c:\docume~1\user\applic~1\RegWork
2010-04-06 02:38:11 -------- d-----w- C:\BUFF10
2010-03-10 22:18:32 3558912 ------w- c:\winnt\system32\dllcache\moviemk.exe
2010-03-05 14:37:40 65536 ------w- c:\winnt\system32\dllcache\asycfilt.dll
2010-02-27 00:39:01 5504 ----a-w- c:\winnt\system32\drivers\MSTEE.sys
2010-02-27 00:39:01 5504 ----a-w- c:\winnt\system32\dllcache\mstee.sys
2010-02-25 07:04:01 -------- d-----w- c:\docume~1\user\locals~1\applic~1\Temp
2010-02-12 04:33:11 100864 ------w- c:\winnt\system32\dllcache\6to4svc.dll
2010-01-13 14:01:25 86016 ------w- c:\winnt\system32\dllcache\cabview.dll
2010-01-12 22:28:32 471552 ------w- c:\winnt\system32\dllcache\aclayers.dll
2010-01-06 01:12:53 -------- d-----w- c:\program files\Realtek AC97
2009-12-24 06:59:40 177664 ------w- c:\winnt\system32\dllcache\wintrust.dll
2009-12-16 18:43:27 343040 ------w- c:\winnt\system32\dllcache\mspaint.exe
2009-12-14 07:08:23 33280 ------w- c:\winnt\system32\dllcache\csrsrv.dll
2009-11-27 16:07:34 11264 ------w- c:\winnt\system32\dllcache\msrle32.dll
2009-10-21 05:38:36 75776 ------w- c:\winnt\system32\dllcache\strmfilt.dll
2009-10-21 05:38:36 25088 ------w- c:\winnt\system32\dllcache\httpapi.dll
2009-10-20 16:20:16 265728 ------w- c:\winnt\system32\dllcache\http.sys
2009-10-13 10:30:16 270336 ------w- c:\winnt\system32\dllcache\oakley.dll
2009-10-12 13:38:19 149504 ------w- c:\winnt\system32\dllcache\rastls.dll
2009-10-12 13:38:18 79872 ------w- c:\winnt\system32\dllcache\raschap.dll
2009-09-18 23:21:04 -------- d-----w- c:\docume~1\user\locals~1\applic~1\Google
2009-09-09 01:09:20 153088 ------w- c:\winnt\system32\dllcache\triedit.dll
2009-09-04 21:03:36 58880 ------w- c:\winnt\system32\dllcache\msasn1.dll
2009-08-12 04:31:30 1315328 ------w- c:\winnt\system32\dllcache\msoe.dll
2009-08-05 09:01:48 204800 ------w- c:\winnt\system32\dllcache\mswebdvd.dll
2009-07-27 23:17:41 135168 ------w- c:\winnt\system32\dllcache\shsvcs.dll
2009-07-21 08:05:40 1348432 ----a-w- c:\winnt\system32\msxml4.dll
2009-07-17 19:01:06 58880 ------w- c:\winnt\system32\dllcache\atl.dll
2009-07-17 16:22:18 1435648 ------w- c:\winnt\system32\dllcache\query.dll
2009-07-12 19:11:20 670016 ----a-w- c:\program files\common files\microsoft shared\vc\msdia90.dll
2009-06-29 18:08:00 6656 ----a-r- c:\winnt\system32\enhfcpl.cpl
2009-06-29 18:07:49 627840 ----a-r- c:\winnt\system32\drivers\Envy24HF.sys
2009-06-29 18:07:49 254000 ----a-w- c:\winnt\system32\dllcache\a3d.dll
2009-06-29 18:07:49 254000 ----a-r- c:\winnt\system32\Audio3D.dll
2009-06-29 18:07:49 254000 ----a-r- c:\winnt\system32\A3D.dll
2009-06-29 18:07:27 331184 ------w- c:\winnt\system32\difxapi.dll
2009-06-29 18:07:27 -------- d-----w- c:\program files\VIA
2009-06-27 17:06:40 12800 ------w- c:\winnt\system32\dllcache\xpshims.dll
2009-06-27 17:06:39 247808 ------w- c:\winnt\system32\dllcache\ieproxy.dll
2009-06-27 17:05:55 81920 ----a-w- c:\winnt\system32\ieencode.dll
2009-06-27 17:05:55 81920 ----a-w- c:\winnt\system32\dllcache\ieencode.dll
2009-06-27 16:29:58 -------- d-----w- c:\winnt\system32\CatRoot2
2009-06-25 21:11:26 -------- d-----w- c:\winnt\system32\wbem\repository\FS
2009-06-25 21:11:26 -------- d-----w- c:\winnt\system32\wbem\Repository
2009-06-25 08:25:26 54272 ------w- c:\winnt\system32\dllcache\wdigest.dll
2009-06-25 08:25:26 301568 ------w- c:\winnt\system32\dllcache\kerberos.dll
2009-06-25 08:25:26 136192 ------w- c:\winnt\system32\dllcache\msv1_0.dll
2009-06-24 11:18:41 92928 ------w- c:\winnt\system32\dllcache\ksecdd.sys
2009-06-16 14:36:30 81920 ------w- c:\winnt\system32\dllcache\fontsub.dll
2009-06-16 14:36:30 119808 ------w- c:\winnt\system32\dllcache\t2embed.dll
2009-06-12 12:31:40 80896 ------w- c:\winnt\system32\dllcache\tlntsess.exe
2009-06-12 12:31:39 76288 ------w- c:\winnt\system32\dllcache\telnet.exe
2009-06-10 14:13:29 84992 ------w- c:\winnt\system32\dllcache\avifil32.dll
2009-06-10 06:14:49 132096 ------w- c:\winnt\system32\dllcache\wkssvc.dll
2009-06-03 17:37:45 272128 ------w- c:\winnt\system32\dllcache\bthport.sys
2009-06-03 17:37:33 203136 ------w- c:\winnt\system32\dllcache\rmcast.sys
2009-06-03 17:37:31 455680 ------w- c:\winnt\system32\dllcache\mrxsmb.sys
2009-06-03 17:37:28 357248 ------w- c:\winnt\system32\dllcache\srv.sys
2009-06-03 17:37:26 692736 ------w- c:\winnt\system32\dllcache\inetcomm.dll
2009-06-03 17:37:17 337408 ------w- c:\winnt\system32\dllcache\netapi32.dll
2009-06-03 17:27:29 79872 ------w- c:\winnt\system32\msxml6r.dll
2009-06-03 17:27:29 79872 ------w- c:\winnt\system32\dllcache\msxml6r.dll
2009-06-03 17:27:29 1372672 ----a-w- c:\winnt\system32\msxml6.dll
2009-06-03 17:27:29 1372672 ------w- c:\winnt\system32\dllcache\msxml6.dll
2009-06-03 17:27:16 102912 ------w- c:\winnt\system32\dllcache\dpcdll.dll
2009-06-03 17:25:30 19456 ----a-w- c:\winnt\system32\dllcache\agt0411.dll
2009-06-03 17:25:27 19456 ----a-w- c:\winnt\system32\dllcache\agt0404.dll
2009-06-03 17:25:16 6144 ----a-w- c:\winnt\system32\kbd106n.dll
2009-06-03 17:25:16 6144 ----a-w- c:\winnt\system32\dllcache\kbd106n.dll
2009-06-03 17:25:10 6144 ----a-w- c:\winnt\system32\kbd101.dll
2009-06-03 17:25:10 6144 ----a-w- c:\winnt\system32\dllcache\kbd101.dll
2009-06-03 17:25:08 19456 ----a-w- c:\winnt\system32\dllcache\agt0804.dll
2009-06-03 17:24:55 7168 ----a-w- c:\winnt\system32\f3ahvoas.dll
2009-06-03 17:24:55 7168 ----a-w- c:\winnt\system32\dllcache\f3ahvoas.dll
2009-06-03 17:24:51 6144 ----a-w- c:\winnt\system32\kbdlk41j.dll
2009-06-03 17:24:51 6144 ----a-w- c:\winnt\system32\dllcache\kbdlk41j.dll
2009-06-03 17:24:33 19456 ----a-w- c:\winnt\system32\dllcache\agt0412.dll
2009-06-03 17:24:29 7168 ----a-w- c:\winnt\system32\kbdibm02.dll
2009-06-03 17:24:29 7168 ----a-w- c:\winnt\system32\dllcache\kbdibm02.dll
2009-06-03 17:24:27 6656 ----a-w- c:\winnt\system32\kbdlk41a.dll
2009-06-03 17:24:27 6656 ----a-w- c:\winnt\system32\dllcache\kbdlk41a.dll
2009-06-03 17:24:15 218112 ----a-w- c:\winnt\system32\dllcache\c_g18030.dll
2009-06-03 17:24:15 218112 ----a-w- c:\winnt\system32\c_g18030.dll
2009-06-03 17:23:55 6144 ----a-w- c:\winnt\system32\kbdax2.dll
2009-06-03 17:23:55 6144 ----a-w- c:\winnt\system32\dllcache\kbdax2.dll
2009-06-03 17:23:41 -------- d-----w- c:\winnt\ServicePackFiles
2009-06-03 17:23:27 294912 ------w- c:\program files\windows media player\dlimport.exe
2009-06-03 17:23:21 294912 ------w- c:\winnt\system32\dllcache\dlimport.exe
2009-06-03 17:21:59 59136 ------w- c:\winnt\system32\drivers\rfcomm.sys
2009-06-03 17:20:47 19569 ----a-w- c:\winnt\003138_.tmp
2009-06-03 16:51:48 1172480 ------w- c:\winnt\system32\dllcache\msxml3.dll
2009-06-03 16:51:40 218112 ------w- c:\winnt\system32\dllcache\wordpad.exe
2009-06-03 15:59:57 19569 ----a-w- c:\winnt\000001_.tmp
2009-06-02 18:01:12 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\Sunbelt
2009-06-02 17:00:55 18443776 ----a-w- C:\alc850_6240.exe
2009-06-02 17:00:03 -------- d-----w- c:\winnt\nview
2009-06-02 17:00:02 446464 ----a-w- c:\winnt\system32\nvudisp.exe
2009-06-02 16:59:32 446464 ----a-w- c:\winnt\system32\NVUNINST.EXE
2009-06-02 16:59:26 -------- d-----w- C:\NVIDIA
2009-06-02 16:57:49 38674984 ----a-w- C:\175.19_geforce_winxp_32bit_english_whql.exe
2009-06-02 16:23:11 28160 ----a-w- c:\winnt\system32\nvmdcoi.dll
2009-06-02 16:23:11 20224 ----a-w- c:\winnt\system32\drivers\nvidesm.sys
2009-06-02 16:15:46 -------- d-----w- C:\Drivers2
2009-06-01 19:27:01 23040 ----a-w- c:\winnt\system32\dllcache\xrxwbtmp.dll
2009-06-01 19:27:01 116224 ----a-w- c:\winnt\system32\dllcache\xrxwiadr.dll
2009-06-01 19:27:00 27648 ----a-w- c:\winnt\system32\dllcache\xrxftplt.exe
2009-06-01 19:27:00 18944 ----a-w- c:\winnt\system32\dllcache\xrxscnui.dll
2009-06-01 19:26:59 4608 ----a-w- c:\winnt\system32\dllcache\xrxflnch.exe
2009-06-01 19:24:59 604253 ----a-w- c:\winnt\system32\dllcache\vmodem.sys
2009-06-01 19:23:58 24660 ----a-w- c:\winnt\system32\dllcache\spxupchk.dll
2009-06-01 19:22:58 29696 ----a-w- c:\winnt\system32\dllcache\rw450ext.dll
2009-06-01 19:21:59 44544 ----a-w- c:\winnt\system32\dllcache\ovui2.dll
2009-06-01 19:20:58 35200 ----a-w- c:\winnt\system32\dllcache\msgame.sys
2009-06-01 19:19:43 26624 ----a-w- c:\winnt\system32\dllcache\irstusb.sys
2009-06-01 19:18:51 488383 ----a-w- c:\winnt\system32\dllcache\hsf_v124.sys
2009-06-01 19:17:59 43008 ----a-w- c:\winnt\system32\dllcache\esucm.dll
2009-06-01 19:16:58 179584 ----a-w- c:\winnt\system32\dllcache\dac2w2k.sys
2009-06-01 19:15:27 13824 ----a-w- c:\winnt\system32\dllcache\bulltlp3.sys
2009-06-01 19:14:59 13696 ----a-w- c:\winnt\system32\dllcache\avcstrm.sys
2009-06-01 19:13:48 66048 ----a-w- c:\winnt\system32\dllcache\s3legacy.dll
2009-05-29 22:10:33 -------- d-----w- c:\docume~1\user\applic~1\TuneUp Software
2009-05-29 19:31:56 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\SUPERAntiSpyware.com
2009-05-29 19:31:29 -------- d-----w- c:\program files\SUPERAntiSpyware
2009-05-29 19:31:29 -------- d-----w- c:\docume~1\user\applic~1\SUPERAntiSpyware.com
2009-05-29 19:30:23 -------- d-sh--w- c:\documents and settings\user\IECompatCache
2009-05-29 19:30:08 -------- d-sh--w- c:\documents and settings\user\PrivacIE
2009-05-29 19:26:21 -------- d-sh--w- c:\documents and settings\user\IETldCache
2009-05-29 19:24:14 -------- d-----w- c:\winnt\ie8updates
2009-05-29 19:23:35 102912 ------w- c:\winnt\system32\dllcache\iecompat.dll
2009-05-29 18:04:11 -------- d-----w- c:\docume~1\user\applic~1\Malwarebytes
2009-05-29 18:04:03 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\Malwarebytes
2009-05-29 18:02:55 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\Spybot - Search & Destroy
2009-05-29 15:52:57 -------- d-----w- c:\documents and settings\user\DoctorWeb
2009-05-07 15:32:35 345600 ------w- c:\winnt\system32\dllcache\localspl.dll
2009-04-15 21:50:08 5120 ----a-w- c:\winnt\system32\xpsp4res.dll
2009-04-15 14:51:25 590848 ------w- c:\winnt\system32\dllcache\rpcrt4.dll
2009-04-02 23:40:08 221184 ----a-w- c:\winnt\system32\wmpns.dll
2009-04-01 22:43:19 73728 ----a-w- c:\winnt\system32\javacpl.cpl
2009-04-01 22:14:35 -------- d-----w- c:\program files\AVG
2009-04-01 22:08:14 -------- d-----w- c:\winnt\SxsCaPendDel
2009-04-01 20:49:55 -------- d-----w- c:\winnt\system32\scripting
2009-04-01 20:49:55 -------- d-----w- c:\winnt\l2schemas
2009-04-01 20:49:54 -------- d-----w- c:\winnt\system32\en
2009-04-01 20:49:54 -------- d-----w- c:\winnt\system32\bits
2009-04-01 20:43:37 44928 ----a-w- c:\winnt\system32\dllcache\agpcpq.sys
2009-04-01 20:43:37 43008 ----a-w- c:\winnt\system32\dllcache\amdagp.sys
2009-04-01 20:43:37 42752 ----a-w- c:\winnt\system32\dllcache\alim1541.sys
2009-04-01 20:43:37 42368 ----a-w- c:\winnt\system32\dllcache\agp440.sys
2009-04-01 20:43:32 40960 ----a-w- c:\winnt\system32\dllcache\sisagp.sys
2009-04-01 20:43:31 42240 ----a-w- c:\winnt\system32\dllcache\viaagp.sys
2009-04-01 20:41:04 19569 ----a-w- c:\winnt\003127_.tmp
2009-04-01 20:38:59 272128 ----a-w- c:\winnt\system32\drivers\bthport.sys
2009-03-27 16:00:39 98304 ----a-w- c:\winnt\system32\SDABtnCtl.ocx
2009-03-27 16:00:24 -------- d-----w- C:\BUFF09
2009-03-26 15:38:25 -------- d-----w- c:\docume~1\user\locals~1\applic~1\Citrix
2009-03-21 14:06:58 989696 ------w- c:\winnt\system32\dllcache\kernel32.dll
2009-02-16 21:55:08 6066176 ----a-w- c:\winnt\system32\dllcache\ieframe.dll
2009-02-16 21:55:08 52224 ----a-w- c:\winnt\system32\dllcache\msfeedsbs.dll
2009-02-16 21:55:08 459264 ----a-w- c:\winnt\system32\dllcache\msfeeds.dll
2009-02-16 21:55:08 268288 ----a-w- c:\winnt\system32\dllcache\iertutil.dll
2009-02-16 21:55:08 13824 ------w- c:\winnt\system32\dllcache\ieudinit.exe
2009-02-16 21:55:07 63488 ----a-w- c:\winnt\system32\dllcache\icardie.dll
2009-02-16 21:55:07 383488 ----a-w- c:\winnt\system32\dllcache\ieapfltr.dll
2009-02-16 21:55:07 2455488 ----a-w- c:\winnt\system32\dllcache\ieapfltr.dat
2009-02-16 21:53:43 35328 ----a-w- c:\winnt\system32\dllcache\corpol.dll
2009-02-16 21:50:37 -------- d-----w- c:\winnt\network diagnostic
2009-02-09 11:13:27 1854976 ------w- c:\winnt\system32\dllcache\win32k.sys
2009-02-08 02:02:58 2069376 ------w- c:\winnt\system32\dllcache\ntkrnlpa.exe
2009-02-05 22:16:37 299520 ----a-w- c:\winnt\uninst.exe
2009-02-05 22:16:34 -------- d-----w- c:\documents and settings\user\WINDOWS
2009-02-03 19:59:07 56832 ------w- c:\winnt\system32\dllcache\secur32.dll
2009-01-15 09:04:22 193024 ------w- c:\program files\internet explorer\IEShims.dll
2009-01-08 01:20:18 265720 ----a-w- c:\winnt\system32\msdbg2.dll
2009-01-06 05:11:25 3000 ----a-r- c:\winnt\system32\SetupNT.sys
2009-01-06 05:11:15 3 ----a-w- c:\winnt\system32\BSETUP.TMP
2008-12-20 22:14:38 1291776 ------w- c:\winnt\system32\dllcache\quartz.dll
2008-12-16 12:30:34 354816 ------w- c:\winnt\system32\dllcache\winhttp.dll
2008-12-08 17:12:07 -------- d-----w- C:\BUFF08
2008-12-08 17:11:06 -------- d-----w- c:\winnt\system32\appmgmt
2008-12-05 06:54:55 149504 ------w- c:\winnt\system32\dllcache\schannel.dll
2008-10-23 12:36:14 286720 ------w- c:\winnt\system32\dllcache\gdi32.dll
2008-09-06 07:30:42 239496 ------w- c:\winnt\system32\dllcache\wgaLogon.dll
2008-09-06 07:29:58 934792 ------w- c:\winnt\system32\dllcache\WgaTray.exe
2008-07-07 20:26:58 253952 ------w- c:\winnt\system32\dllcache\es.dll
2008-06-24 16:43:16 74240 ------w- c:\winnt\system32\dllcache\mscms.dll
2008-06-20 17:46:57 245248 ------w- c:\winnt\system32\dllcache\mswsock.dll
2008-06-20 17:46:57 147968 ------w- c:\winnt\system32\dllcache\dnsapi.dll
2008-06-20 11:51:12 361600 ------w- c:\winnt\system32\dllcache\tcpip.sys
2008-06-20 11:40:08 138496 ------w- c:\winnt\system32\dllcache\afd.sys
2008-06-20 11:08:27 226880 ------w- c:\winnt\system32\dllcache\tcpip6.sys
2008-06-17 19:02:19 8462336 ------w- c:\winnt\system32\dllcache\shell32.dll
2008-06-12 14:23:32 956928 ------w- c:\winnt\system32\dllcache\msdtctm.dll
2008-06-12 14:23:32 91648 ------w- c:\winnt\system32\dllcache\mtxoci.dll
2008-06-12 14:23:32 66560 ------w- c:\winnt\system32\dllcache\mtxclu.dll
2008-06-12 14:23:32 58880 ------w- c:\winnt\system32\dllcache\msdtclog.dll
2008-06-12 14:23:32 428032 ------w- c:\winnt\system32\dllcache\msdtcprx.dll
2008-06-12 14:23:32 161792 ------w- c:\winnt\system32\dllcache\msdtcuiu.dll
2008-05-09 10:53:40 90112 ------w- c:\winnt\system32\dllcache\wshext.dll
2008-05-09 10:53:40 417792 ----a-w- c:\winnt\system32\dllcache\vbscript.dll
2008-05-09 10:53:40 172032 ------w- c:\winnt\system32\dllcache\scrrun.dll
2008-05-09 10:53:39 450560 ----a-w- c:\winnt\system32\dllcache\jscript.dll
2008-05-09 10:53:39 180224 ------w- c:\winnt\system32\dllcache\scrobj.dll
2008-05-08 11:24:44 155648 ------w- c:\winnt\system32\dllcache\wscript.exe
2008-05-07 09:07:23 135168 ------w- c:\winnt\system32\dllcache\cscript.exe
2008-04-14 12:42:38 7680 ----a-w- c:\winnt\system32\spdwnwxp.exe
2008-04-14 12:42:38 20992 ------w- c:\winnt\system32\spupdwxp.exe
2008-04-14 12:42:22 20992 ------w- c:\winnt\system32\faxpatch.exe
2008-04-14 12:39:26 24064 ------w- c:\winnt\system32\dllcache\pidgen.dll
2008-04-02 03:12:09 -------- d-----w- c:\docume~1\user\applic~1\Verizon
2008-04-02 03:12:06 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\Verizon
2008-04-02 03:12:03 -------- d-----w- c:\winnt\bin
2008-04-02 03:11:49 -------- d-----w- c:\program files\vol_toolbar
2008-04-02 03:05:07 -------- d-----w- c:\docume~1\user\locals~1\applic~1\SupportSoft
2008-04-02 03:04:52 -------- d-----w- c:\program files\Verizon
2007-07-12 10:00:27 -------- d-----w- c:\program files\MSXML 4.0
2007-07-05 22:15:33 245824 ----a-r- c:\winnt\Instexec.exe
2007-07-05 22:15:31 245824 ----a-r- c:\winnt\system32\InstExec.exe
2007-07-05 22:15:12 -------- d-----w- c:\program files\common files\Logitech
2007-07-05 22:13:16 729088 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iKernel.dll
2007-07-05 22:13:16 69715 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\ctor.dll
2007-07-05 22:13:16 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\DotNetInstaller.exe
2007-07-05 22:13:16 266240 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iscript.dll
2007-07-05 22:13:16 192512 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iuser.dll
2007-07-05 22:13:15 311428 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\setup.dll
2007-07-05 22:13:15 188548 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iGdi.dll
2007-06-19 00:16:32 12259160 ----a-w- c:\program files\common files\microsoft shared\office11\MSO.DLL
2007-06-19 00:05:02 1103280 ----a-w- c:\program files\common files\microsoft shared\office11\RICHED20.DLL
2007-06-01 03:09:37 21728 ----a-w- c:\winnt\system32\wucltui.dll.mui
2007-06-01 03:09:37 17632 ----a-w- c:\winnt\system32\wuaueng.dll.mui
2007-06-01 03:09:37 15072 ----a-w- c:\winnt\system32\wuaucpl.cpl.mui
2007-06-01 03:09:37 15064 ----a-w- c:\winnt\system32\wuapi.dll.mui
2007-03-23 02:29:14 1753952 ----a-w- c:\program files\common files\microsoft shared\office11\1033\MSOINTL.DLL
2007-03-23 02:25:54 124248 ----a-w- c:\program files\common files\microsoft shared\office11\UCS20.DLL
2007-03-23 02:05:32 60256 ----a-w- c:\program files\common files\microsoft shared\office11\1033\LCCWIZ.DLL
2007-03-17 01:41:36 1425744 ----a-w- c:\program files\common files\microsoft shared\office11\MSXML5.DLL
2007-02-09 16:32:49 147456 ----a-w- c:\winnt\system32\vbzip11.dll
2007-02-09 16:32:48 143360 ----a-w- c:\winnt\system32\vbuzip10.dll
2007-02-09 16:12:10 7966720 ----a-w- c:\winnt\system32\SDAresource2.dll
2007-02-09 16:11:55 -------- d-----w- C:\BUFF07
2007-02-09 16:11:54 415504 ----a-w- c:\winnt\system32\msrepl35.dll
2007-02-09 16:11:54 252176 ----a-w- c:\winnt\system32\Msrd2x35.dll
2007-02-09 16:11:54 1046288 ----a-w- c:\winnt\system32\msjet35.dll
2007-02-09 16:11:53 89360 ----a-w- c:\winnt\system32\Vb5db.dll
2007-02-09 16:11:53 368912 ----a-w- c:\winnt\system32\vbar332.dll
2007-02-09 16:11:53 24848 ----a-w- c:\winnt\system32\MSJTER35.DLL
2007-02-09 16:11:53 123664 ----a-w- c:\winnt\system32\MSJINT35.DLL
2007-02-05 20:01:05 -------- d-----w- c:\docume~1\user\locals~1\applic~1\Identities
2006-12-22 16:24:22 -------- d-----w- c:\docume~1\user\locals~1\applic~1\Adobe
2006-12-12 16:24:12 2555704 ----a-w- c:\docume~1\alluse~1.win\applic~1\microsoft\windows defender\definition updates\{404a7c25-08b1-42fe-bb26-2789c30ca084}\mpengine.dll
2006-12-07 03:57:42 -------- d-sh--w- c:\documents and settings\user\UserData
2006-12-02 09:08:40 625152 ----a-w- c:\program files\common files\microsoft shared\vc\msdia80.dll
2006-11-16 16:44:29 103984 ----a-w- c:\winnt\system32\AOLDial.dll
2006-11-16 16:44:22 33592 ----a-w- c:\winnt\system32\drivers\atwpkt264.sys
2006-11-16 16:44:08 25136 ----a-w- c:\winnt\system32\drivers\atwpkt2.sys
2006-11-09 14:01:16 -------- d-----w- c:\docume~1\user\locals~1\applic~1\Help
2006-11-08 01:12:18 89600 ----a-w- c:\winnt\system32\Mscal.ocx
2006-11-08 01:12:18 224016 ------w- c:\winnt\system32\Tabctl32.ocx
2006-11-08 01:12:18 198640 ----a-w- c:\winnt\system32\Mci32.ocx
2006-11-08 01:12:18 103744 ----a-w- c:\winnt\system32\Mscomm32.ocx
2006-11-08 01:12:17 438976 ----a-w- c:\winnt\system32\Mshflxgd.ocx
2006-11-08 00:54:34 609584 ----a-w- c:\winnt\system32\comctl32.ocx
2006-11-08 00:54:34 244416 ----a-w- c:\winnt\system32\Msflxgrd.ocx
2006-11-08 00:54:34 1009136 ----a-w- c:\winnt\system32\Mschrt20.ocx
2006-11-08 00:54:33 66048 ----a-w- c:\winnt\system32\mrtrate.dll
2006-11-08 00:54:33 65536 ----a-w- c:\winnt\system32\mrtmngr.exe
2006-11-08 00:54:33 1694992 ----a-w- c:\winnt\system32\vba6.dll
2006-11-08 00:54:32 73728 ----a-w- c:\winnt\Icg32.dll
2006-11-08 00:53:11 -------- d-----w- c:\winnt\Intuit
2006-10-30 18:51:08 5632 ----a-w- c:\winnt\system32\ptpusb.dll
2006-10-30 18:51:07 159232 ----a-w- c:\winnt\system32\ptpusd.dll
2006-10-30 18:04:57 21504 ----a-w- c:\winnt\system32\hidserv.dll
2006-10-30 18:04:54 12160 ----a-w- c:\winnt\system32\drivers\mouhid.sys
2006-10-30 18:04:54 12160 ----a-w- c:\winnt\system32\dllcache\mouhid.sys
2006-10-26 16:33:19 2555704 ----a-w- c:\docume~1\alluse~1.win\applic~1\microsoft\windows defender\definition updates\backup\mpengine.dll
2006-10-26 16:17:43 -------- d-----w- c:\docume~1\user\locals~1\applic~1\AOL
2006-10-26 16:17:33 65536 ----a-w- c:\winnt\wanmpsvc.exe
2006-10-26 16:12:07 -------- d-----w- c:\program files\IZArc
2006-10-26 15:39:13 -------- d-----w- c:\docume~1\user\applic~1\AOL
2006-10-26 15:38:31 -------- d-----w- C:\Install ICQ
2006-10-26 15:38:24 -------- d-----w- C:\Install iTunes
2006-10-26 15:38:22 -------- d-----w- C:\AOL Instant Messenger
2006-10-26 15:38:19 -------- d-----w- C:\MAV
2006-10-26 15:37:55 -------- d-----w- c:\docume~1\user\applic~1\You've Got Pictures Screensaver
2006-10-26 15:37:31 86016 ----a-w- c:\winnt\unvise32qt.exe
2006-10-26 15:37:25 -------- d-----w- c:\winnt\system32\QuickTime
2006-10-26 15:37:16 8552 ----a-w- c:\winnt\system32\drivers\asctrm.sys
2006-10-26 15:37:05 24576 ----a-w- c:\winnt\system32\prefscpl.cpl
2006-10-26 15:36:45 647872 ----a-w- c:\winnt\system32\MSComCt2.ocx
2006-10-26 15:36:45 203976 ----a-w- c:\winnt\system32\RichTx32.ocx
2006-10-26 15:36:45 115920 ----a-w- c:\winnt\system32\MSInet.ocx
2006-10-26 15:36:45 10752 ----a-w- c:\winnt\system32\aamd532.dll
2006-10-26 15:36:45 102400 ----a-w- c:\winnt\system32\SimpleRegistry.dll
2006-10-26 15:36:44 140288 ----a-w- c:\winnt\system32\COMDLG32.OCX
2006-10-26 15:36:39 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\Viewpoint
2006-10-26 15:36:15 -------- d-----w- c:\program files\common files\AolCoach
2006-10-26 15:35:39 -------- d-----w- c:\program files\America Online 9.0a
2006-10-23 19:45:49 -------- d-----w- C:\TEMP
2006-10-23 17:49:19 16128 ----a-w- c:\winnt\system32\drivers\MODEMCSA.sys
2006-10-23 17:49:19 16128 ----a-w- c:\winnt\system32\dllcache\modemcsa.sys
2006-10-23 17:42:03 26144 ----a-w- c:\winnt\system32\spupdsvc.exe
2006-10-23 17:42:03 -------- d-----w- c:\winnt\system32\PreInstall
2006-10-23 17:42:02 -------- d--h--w- c:\winnt\$hf_mig$
2006-10-23 17:41:23 49152 ----a-w- c:\winnt\system32\ChCfg.exe
2006-10-23 17:41:15 4030144 ----a-w- c:\winnt\system32\drivers\ALCXWDM.SYS
2006-10-23 17:41:07 10528768 ----a-w- c:\winnt\system32\RTLCPL.EXE
2006-10-23 17:41:06 577536 ----a-w- c:\winnt\SOUNDMAN.EXE
2006-10-23 17:41:06 18804736 ----a-w- c:\winnt\system32\ALSNDMGR.CPL
2006-10-23 17:41:06 147456 ----a-w- c:\winnt\system32\RTLCPAPI.dll
2006-10-23 17:41:05 315392 ----a-w- c:\winnt\alcupd.exe
2006-10-23 17:41:05 217088 ----a-w- c:\winnt\alcrmv.exe
2006-10-23 17:40:58 757760 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\iKernel.dll
2006-10-23 17:40:58 69715 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\ctor.dll
2006-10-23 17:40:58 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\DotNetInstaller.exe
2006-10-23 17:40:58 32768 ----a-w- c:\program files\common files\installshield\professional\runtime\Objectps.dll
2006-10-23 17:40:58 274432 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\iscript.dll
2006-10-23 17:40:58 204800 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\iuser.dll
2006-10-23 17:40:56 331908 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\setup.dll
2006-10-23 17:40:56 200836 ----a-w- c:\program files\common files\installshield\professional\runtime\11\50\intel32\iGdi.dll
2006-10-23 17:35:43 499712 ----a-w- c:\winnt\system32\msvcp71.dll
2006-10-23 17:35:43 348160 ----a-w- c:\winnt\system32\msvcr71.dll
2006-10-23 17:34:55 -------- d-----w- c:\winnt\system32\SoftwareDistribution
2006-10-23 17:32:55 126976 ------w- c:\winnt\system32\NVNFINST.DLL
2006-10-23 17:32:00 820864 ----a-r- c:\winnt\system32\drivers\nvmcp.sys
2006-10-23 17:32:00 62336 ----a-r- c:\winnt\system32\drivers\nvarm.sys
2006-10-23 17:32:00 5120 ----a-r- c:\winnt\system32\ALut.dll
2006-10-23 17:32:00 44032 ----a-r- c:\winnt\system32\OpenAL32.dll
2006-10-23 17:32:00 44032 ----a-r- c:\winnt\system32\nvopenal.dll
2006-10-23 17:32:00 4096 ----a-r- c:\winnt\system32\nvack.dll
2006-10-23 17:32:00 30720 ----a-r- c:\winnt\system32\nvasio.dll
2006-10-23 17:32:00 241664 ----a-r- c:\winnt\system32\drivers\nvapu.sys
2006-10-23 17:32:00 13056 ----a-r- c:\winnt\system32\drivers\nvax.sys
2006-10-23 17:31:27 80896 ----a-w- c:\winnt\system32\drivers\NVENET.sys
2006-10-23 17:31:27 122 ----a-w- c:\winnt\system32\drivers\ramsed.bin
2006-10-23 17:31:27 1024 ----a-w- c:\winnt\system32\drivers\jedih2rx.bin
2006-10-23 17:31:15 13568 ----a-w- c:\winnt\system32\drivers\nv_agp.SYS
2006-10-23 17:31:15 -------- d-----w- c:\winnt\system32\ReinstallBackups
2006-10-23 17:30:57 -------- d-----w- C:\drivers
2006-10-23 17:12:49 -------- d-----w- c:\winnt\ShellNew
2006-10-21 15:10:01 -------- d-----w- c:\winnt\pss
2006-10-21 14:54:59 -------- d-----w- c:\docume~1\user\locals~1\applic~1\Microsoft
==================== Find3M ====================
2011-02-09 13:53:52 270848 ----a-w- c:\winnt\system32\sbe.dll
2011-02-09 13:53:52 186880 ----a-w- c:\winnt\system32\encdec.dll
2011-02-02 07:58:35 2067456 ----a-w- c:\winnt\system32\mstscax.dll
2011-01-27 11:57:06 677888 ----a-w- c:\winnt\system32\mstsc.exe
2011-01-21 14:44:37 439296 ----a-w- c:\winnt\system32\shimgvw.dll
2011-01-07 14:09:02 290048 ----a-w- c:\winnt\system32\atmfd.dll
2010-12-31 13:10:33 1854976 ----a-w- c:\winnt\system32\win32k.sys
2010-12-22 12:34:28 301568 ----a-w- c:\winnt\system32\kerberos.dll
2010-12-20 17:26:00 730112 ----a-w- c:\winnt\system32\lsasrv.dll
2010-12-09 15:15:09 718336 ----a-w- c:\winnt\system32\ntdll.dll
2010-12-09 14:30:22 33280 ----a-w- c:\winnt\system32\csrsrv.dll
2010-12-09 13:38:47 2192768 ----a-w- c:\winnt\system32\ntoskrnl.exe
2010-12-09 13:07:05 2069376 ----a-w- c:\winnt\system32\ntkrnlpa.exe
2010-11-18 18:12:44 81920 ----a-w- c:\winnt\system32\isign32.dll
2010-11-09 14:52:35 249856 ----a-w- c:\winnt\system32\odbc32.dll
2010-11-08 09:20:24 89088 ----a-w- c:\winnt\MBR.exe
2010-09-18 19:23:26 974848 ----a-w- c:\winnt\system32\mfc42u.dll
2010-09-18 06:53:25 974848 ----a-w- c:\winnt\system32\mfc42.dll
2010-09-18 06:53:25 954368 ----a-w- c:\winnt\system32\mfc40.dll
2010-09-18 06:53:25 953856 ----a-w- c:\winnt\system32\mfc40u.dll
2010-08-27 08:02:29 119808 ----a-w- c:\winnt\system32\t2embed.dll
2010-08-27 05:57:43 99840 ----a-w- c:\winnt\system32\srvsvc.dll
2010-08-23 16:12:04 617472 ----a-w- c:\winnt\system32\comctl32.dll
2010-08-17 13:17:06 58880 ----a-w- c:\winnt\system32\spoolsv.exe
2010-08-16 08:45:00 590848 ----a-w- c:\winnt\system32\rpcrt4.dll
2010-07-16 12:05:55 1288192 ----a-w- c:\winnt\system32\ole32.dll
2010-06-30 12:31:35 149504 ----a-w- c:\winnt\system32\schannel.dll
2010-06-18 17:45:17 293376 ----a-w- c:\winnt\system32\winsrv.dll
2010-06-17 14:03:00 80384 ----a-w- c:\winnt\system32\iccvid.dll
2010-06-15 16:17:24 143422 ----a-w- c:\winnt\system32\l3codecx.ax
2010-06-14 14:31:20 744448 ----a-w- c:\winnt\pchealth\helpctr\binaries\helpsvc.exe
2010-06-14 07:41:45 1172480 ----a-w- c:\winnt\system32\msxml3.dll
2010-06-09 07:43:36 692736 ----a-w- c:\winnt\system32\inetcomm.dll
2010-05-26 18:45:04 18816 ------w- c:\winnt\system32\SAVRKBootTasks.sys
2010-04-26 23:58:12 256512 ----a-w- c:\winnt\PEV.exe
2010-04-16 15:36:56 406016 ----a-w- c:\winnt\system32\usp10.dll
2010-04-05 18:54:04 384512 ----a-w- c:\winnt\system32\mp4sdmod.dll
2010-03-30 07:52:26 262416 ----a-w- c:\winnt\system32\mpg4ds32.ax
2010-03-05 14:37:40 65536 ----a-w- c:\winnt\system32\asycfilt.dll
2010-02-12 04:33:11 100864 ----a-w- c:\winnt\system32\6to4svc.dll
2010-02-05 18:27:45 1291776 ----a-w- c:\winnt\system32\quartz.dll
2010-01-29 14:43:39 307260 ----a-w- c:\winnt\system32\l3codeca.acm
2010-01-13 14:01:25 86016 ----a-w- c:\winnt\system32\cabview.dll
2009-12-24 06:59:40 177664 ----a-w- c:\winnt\system32\wintrust.dll
2009-12-16 18:43:27 343040 ----a-w- c:\winnt\system32\mspaint.exe
2009-11-27 17:11:44 17920 ----a-w- c:\winnt\system32\msyuv.dll
2009-11-27 16:07:35 8704 ----a-w- c:\winnt\system32\tsbyuv.dll
2009-11-27 16:07:35 28672 ----a-w- c:\winnt\system32\msvidc32.dll
2009-11-27 16:07:34 84992 ----a-w- c:\winnt\system32\avifil32.dll
2009-11-27 16:07:34 48128 ----a-w- c:\winnt\system32\iyuv_32.dll
2009-11-27 16:07:34 11264 ----a-w- c:\winnt\system32\msrle32.dll
2009-11-21 15:51:04 471552 ----a-w- c:\winnt\apppatch\aclayers.dll
2009-10-21 05:38:36 75776 ----a-w- c:\winnt\system32\strmfilt.dll
2009-10-21 05:38:36 25088 ----a-w- c:\winnt\system32\httpapi.dll
2009-10-15 16:28:26 81920 ----a-w- c:\winnt\system32\fontsub.dll
2009-10-13 10:30:16 270336 ----a-w- c:\winnt\system32\oakley.dll
2009-10-12 13:38:19 149504 ----a-w- c:\winnt\system32\rastls.dll
2009-10-12 13:38:18 79872 ----a-w- c:\winnt\system32\raschap.dll
2009-09-11 14:18:39 136192 ----a-w- c:\winnt\system32\msv1_0.dll
2009-09-04 21:03:36 58880 ----a-w- c:\winnt\system32\msasn1.dll
2009-09-01 14:46:07 282654 ----a-w- c:\winnt\system32\msaud32.acm
2009-08-26 08:00:21 247326 ----a-w- c:\winnt\system32\strmdll.dll
2009-08-25 09:17:27 354816 ----a-w- c:\winnt\system32\winhttp.dll
2009-08-07 02:24:10 217816 ----a-w- c:\winnt\system32\wuaucpl.cpl
2009-08-05 09:01:48 204800 ----a-w- c:\winnt\system32\mswebdvd.dll
2009-07-17 19:01:06 58880 ----a-w- c:\winnt\system32\atl.dll
2009-07-17 16:22:18 1435648 ----a-w- c:\winnt\system32\query.dll
2009-07-12 19:21:50 233472 ----a-w- c:\winnt\system32\wmpdxm.dll
2009-06-25 08:25:26 56832 ----a-w- c:\winnt\system32\secur32.dll
2009-06-25 08:25:26 54272 ----a-w- c:\winnt\system32\wdigest.dll
2009-06-12 12:31:40 80896 ----a-w- c:\winnt\system32\tlntsess.exe
2009-06-12 12:31:39 76288 ----a-w- c:\winnt\system32\telnet.exe
2009-06-10 06:14:49 132096 ----a-w- c:\winnt\system32\wkssvc.dll
2009-05-07 15:32:35 345600 ----a-w- c:\winnt\system32\localspl.dll
2009-04-07 09:11:14 90112 ----a-w- c:\winnt\DUMP4cd7.tmp
2009-04-07 01:39:28 90112 ----a-w- c:\winnt\DUMP4872.tmp
2009-04-07 01:38:53 90112 ----a-w- c:\winnt\DUMP4b22.tmp
2009-04-05 07:02:56 90112 ----a-w- c:\winnt\DUMP3eed.tmp
2009-04-03 19:15:24 485376 ----a-w- c:\winnt\system32\wmspdmod.dll
2009-03-06 14:22:18 284160 ----a-w- c:\winnt\system32\pdh.dll
2009-02-09 12:10:48 617472 ----a-w- c:\winnt\system32\advapi32.dll
2009-02-09 12:10:48 473600 ----a-w- c:\winnt\system32\wbem\fastprox.dll
2009-02-09 12:10:48 453120 ----a-w- c:\winnt\system32\wbem\wmiprvsd.dll
2009-02-09 12:10:48 401408 ----a-w- c:\winnt\system32\rpcss.dll
2009-02-06 11:11:05 110592 ----a-w- c:\winnt\system32\services.exe
2009-02-06 10:39:08 35328 ----a-w- c:\winnt\system32\sc.exe
2009-02-06 10:10:02 227840 ----a-w- c:\winnt\system32\wbem\wmiprvse.exe
2009-01-08 01:20:38 24576 ----a-w- c:\winnt\system32\nlsdl.dll
2009-01-08 01:20:36 26112 ----a-w- c:\winnt\system32\idndl.dll
2009-01-08 01:20:36 23552 ----a-w- c:\winnt\system32\normaliz.dll
2008-10-23 12:36:14 286720 ----a-w- c:\winnt\system32\gdi32.dll
2008-10-16 10:37:03 659456 ----a-w- c:\winnt\system32\wininet.dll
2008-07-07 20:26:58 253952 ----a-w- c:\winnt\system32\es.dll
2008-06-24 16:43:16 74240 ----a-w- c:\winnt\system32\mscms.dll
2008-06-20 17:46:57 245248 ----a-w- c:\winnt\system32\mswsock.dll
2008-06-12 14:23:32 956928 ----a-w- c:\winnt\system32\msdtctm.dll
2008-06-12 14:23:32 91648 ----a-w- c:\winnt\system32\mtxoci.dll
2008-06-12 14:23:32 66560 ----a-w- c:\winnt\system32\mtxclu.dll
2008-06-12 14:23:32 58880 ----a-w- c:\winnt\system32\msdtclog.dll
2008-06-12 14:23:32 428032 ----a-w- c:\winnt\system32\msdtcprx.dll
=================== ROOTKIT ====================
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: WDC_WD16 rev.01.0 -> Harddisk0\DR0 -> \Device\Scsi\nvidesm1
device: opened successfully
user: MBR read successfully
Disk trace:
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x82EB75D9]<<
_asm { PUSH EBP; MOV EBP, ESP; PUSH ECX; MOV EAX, [EBP+0x8]; CMP EAX, [0x82ebd970]; MOV EAX, [0x82ebd9ec]; PUSH EBX; PUSH ESI; MOV ESI, [EBP+0xc]; MOV EBX, [ESI+0x60]; PUSH EDI; JNZ 0x20; MOV [EBP+0x8], EAX; }
1 nt!IofCallDriver[0x804E37D5] -> \Device\Harddisk0\DR0[0x82F28030]
3 CLASSPNP[0xF86EBFD7] -> nt!IofCallDriver[0x804E37D5] -> \Device\00000067[0x82F16F18]
5 ACPI[0xF8662620] -> nt!IofCallDriver[0x804E37D5] -> [0x82EFA1D0]
\Driver\nvidesm[0x82F15F38] -> IRP_MJ_CREATE -> 0x82EB75D9
kernel: MBR read successfully
_asm { XOR AX, AX; MOV SS, AX; MOV SP, 0x7c00; STI ; PUSH AX; POP ES; PUSH AX; POP DS; CLD ; MOV SI, 0x7c1b; MOV DI, 0x61b; PUSH AX; PUSH DI; MOV CX, 0x1e5; REP MOVSB ; RETF ; MOV BP, 0x7be; MOV CL, 0x4; CMP [BP+0x0], CH; JL 0x2e; JNZ 0x3a; }
detected disk devices:
\Device\Scsi\nvidesm1Port0Path0Target0Lun0 -> \??\SCSI#Disk&Ven_WDC_WD16&Prod_00AAJB-00J3A&Rev_01.0#4&2ee6d67b&0&000#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} device not found
detected hooks:
user & kernel MBR OK
Warning: possible TDL3 rootkit infection !
============= FINISH: 3:11:48.62 ===============

Try this:

Read other 16 answers

