My Computer stops rebooting after adding corrupted hard drive

Status
Not open for further replies.
Missing Shared DLL C:\WINDOWS\system32\pxwma.dll

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDll

s
Unused File Extension SysmonLogManager.Snapin

HKCR\SysmonLogManager.Snapin
Unused File Extension WMPCD HKCR\WMPCD
Unused File Extension .r3t

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\

FileExts\.r3t
Unused File Extension .rf

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\

FileExts\.rf
Unused File Extension .rjs

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\

FileExts\.rjs
Unused File Extension .rjt

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\

FileExts\.rjt
Unused File Extension .rnx

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\

FileExts\.rnx
Unused File Extension .rp

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\

FileExts\.rp
Unused File Extension .rt

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\

FileExts\.rt
Unused File Extension .sdp

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\

FileExts\.sdp
Open with Application Issue C:\Program

Files\Logitech\Desktop

Messenger\8876480\7.2.0.137-8876480SL\Program\PrvCnt.exe

"%1" HKCR\bwpfile\shell\open
Invalid Default Icon

C:\WINDOWS\system32\CMMGR32.EXE,1 HKCR\Connection

Manager Profile\DefaultIcon
Open with Application Issue

C:\WINDOWS\system32\CMMGR32.EXE "%1" HKCR\Connection

Manager Profile\shell\open
Open with Application Issue

C:\WINDOWS\system32\CMMGR32.EXE /settings "%1"

HKCR\Connection Manager Profile\shell\Settings...
ActiveX/COM Issue

InProcServer32\C:\WINDOWS\system32\plugin.ocx

HKCR\CLSID\{06DD38D3-D187-11CF-A80D-00C04FD74AD8}
Open with Application Issue

Applications\moviemk.exe\shell

HKCR\Applications\moviemk.exe
Application Paths Issue cmmgr32.exe -

C:\WINDOWS\system32\cmmgr32.exe

HKLM\Software\Microsoft\Windows\CurrentVersion\App

Paths\cmmgr32.exe
Application Paths Issue Intel Application Accelerator -

C:\Program Files\Intel\Intel Application

Accelerator\Intel Application Accelerator

HKLM\Software\Microsoft\Windows\CurrentVersion\App

Paths\Intel Application Accelerator
Application Paths Issue ldm.exe - C:\Program

Files\Logitech\Desktop Messenger\ldm.exe

HKLM\Software\Microsoft\Windows\CurrentVersion\App

Paths\ldm.exe
Uninstaller Reference Issue

"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spunins

t.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB893803v2
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB898461
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB923561
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB941569
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.e

xe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB944338-v2
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB946648
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB950760
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB950762
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB950974
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB951066
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.e

xe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB951376-v2
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB951748
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB952004
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.

exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB952069_WM9
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB952287
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB952954
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.

exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB954155_WM9
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB955069
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB955759
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB956572
 
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB956802
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB956803
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB956844
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB958470$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB958470
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB958644
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB958869
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB959426
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB960225
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB960803
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB960859
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB961501
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB967715
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB968389
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.

exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB968816_WM9
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB969059
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB969947
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB970238
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB970430
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB971032$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB971032
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB971468
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB971657
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB971737
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB971961
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB972270
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB973354
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB973507
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB973540_WM9L$\spuninst\spuninst

.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB973540_WM9L
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB973687
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB973815
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB973869
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB973904
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB974112
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB974318
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB974392
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB974571
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB975025
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB975467
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB975560
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB975561
 
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB975713
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB977165-v2$\spuninst\spuninst.e

xe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB977165-v2
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB977914
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB978037
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB978207$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB978207
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB978251$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB978251
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB978262
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB978706
Uninstaller Reference Issue

"C:\WINDOWS\$NtUninstallKB979306$\spuninst\spuninst.exe"

HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall

\KB979306
 
Osiris said:
How did the hdd get corrupted?

Can you go thru this and post the logs?

XP Full
Click to expand...

Due to trouble in rebooting I have disconnected the slave hard drive. There is continuous loop messages of found new hardware for HID Mouse/Keyboard drivers + Logitech Speaker and some other devices drivers updating as I have to change it to suit according to my work station hardwares, available.
I don't want to hook up the slave hard drive for atleast couple of days. Though it might not be corrupted, earlier as mother drive its Windows was not responding , not rebooting, due to virus/spyware attack.

I will post the log the moment I will re-connect that IBM Deskstar drive as slave drive.
 
That's the log for mother drive, the computer was not rebooting with ieexplorer.exe error showing ntdll.dll and XP cd , too showing ntdll.dll error on the blue scree. Later, I will post another combo log , after hooking up slave D Drive.

ComboFix 10-04-21.01 - TM 04/22/2010 17:07:17.1.1 - x86
Running from: c:\documents and settings\TM\My Documents\Downloads\ComboFix.exe
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\docume~1\TM\LOCALS~1\Temp\install_flash_player.exe

.
((((((((((((((((((((((((( Files Created from 2010-03-22 to 2010-04-22 )))))))))))))))))))))))))))))))
.

2010-04-21 14:27 . 2010-04-21 14:27 -------- d-----w- c:\documents and settings\TM\Local Settings\Application Data\Yahoo!
2010-04-21 14:27 . 2010-04-21 14:27 -------- d-----w- c:\documents and settings\All Users\Application Data\Yahoo! Companion
2010-04-21 14:27 . 2010-04-21 14:27 -------- d-----w- c:\documents and settings\TM\Application Data\Yahoo!
2010-04-21 14:26 . 2010-04-21 14:36 -------- d-----w- c:\documents and settings\All Users\Application Data\Yahoo!
2010-04-21 14:25 . 2010-04-21 14:36 -------- d-----w- c:\program files\Yahoo!
2010-04-20 21:29 . 2010-04-20 21:29 -------- d-----w- c:\program files\Trend Micro
2010-04-20 21:03 . 2010-04-20 21:03 -------- d-----w- c:\windows\system32\wbem\Repository
2010-04-20 21:00 . 2010-04-20 21:02 -------- d-----w- c:\documents and settings\Administrator.CELESTIC-07BD4A\Local Settings\Application Data\Microsoft
2010-04-20 21:00 . 2010-04-20 21:02 -------- d-s---w- c:\documents and settings\Administrator.CELESTIC-07BD4A
2010-04-20 18:43 . 2010-04-20 21:02 -------- d-s---w- c:\documents and settings\Administrator
2010-04-20 16:21 . 2001-08-17 17:57 16128 ----a-w- c:\windows\system32\drivers\MODEMCSA.sys
2010-04-20 15:50 . 2010-04-20 15:51 -------- d-----w- c:\documents and settings\TM\Local Settings\Application Data\Temp
2010-04-20 15:50 . 2010-04-20 15:51 -------- d-----w- c:\documents and settings\TM\Local Settings\Application Data\Google

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-21 00:56 . 2003-01-04 14:20 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-03-11 00:28 . 2010-03-11 00:28 -------- d-----w- c:\documents and settings\TM\Application Data\Musicmatch
2010-03-11 00:28 . 2010-03-11 00:28 -------- d-----w- c:\program files\MUSICMATCH
2010-03-11 00:26 . 2003-01-04 14:19 -------- d-----w- c:\program files\Common Files\InstallShield
2010-03-10 16:46 . 2010-03-10 16:46 -------- d-----w- c:\program files\NewTech Infosystems
2010-03-10 16:45 . 2010-03-10 16:45 -------- d-----w- c:\program files\DFX
2010-03-10 16:45 . 2010-03-10 16:45 -------- d-----w- c:\program files\Common Files\xing shared
2010-03-10 16:45 . 2010-03-10 16:45 -------- d-----w- c:\program files\Common Files\Real
2010-03-10 16:45 . 2010-03-10 16:45 -------- d-----w- c:\program files\Real
2010-03-10 08:02 . 2004-08-03 22:56 417792 ----a-w- c:\windows\system32\vbscript.dll
2010-02-26 06:12 . 2004-08-03 22:56 662016 ----a-w- c:\windows\system32\wininet.dll
2010-02-26 06:12 . 2004-08-03 22:56 81920 ----a-w- c:\windows\system32\ieencode.dll
2010-02-24 12:31 . 2004-08-03 21:15 454016 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-02-16 13:19 . 2004-08-03 21:20 2181376 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-02-16 12:39 . 2004-08-03 22:59 2058368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-12 04:47 . 2004-08-03 22:56 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-11 12:01 . 2004-08-03 21:07 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
.

------- Sigcheck -------

[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\atapi.sys
[-] 2004-08-04 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\atapi.sys
[-] 2004-08-04 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\drivers\atapi.sys
[-] 2004-08-04 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0006\DriverFiles\i386\atapi.sys
[-] 2004-08-04 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0008\DriverFiles\i386\atapi.sys
[-] 2004-08-04 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0009\DriverFiles\i386\atapi.sys

[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\asyncmac.sys
[-] 2004-08-03 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\asyncmac.sys
[-] 2004-08-03 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\system32\drivers\asyncmac.sys

[-] 2001-08-23 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\beep.sys
[-] 2001-08-23 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys

[-] 2008-04-13 . 463C1EC80CD17420A542B7F36A36F128 . 24576 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\kbdclass.sys
[-] 2004-08-04 . EBDEE8A2EE5393890A1ACEE971C4C246 . 24576 . . [5.1.2600.2180] . . c:\windows\system32\drivers\kbdclass.sys
[-] 2004-08-04 . EBDEE8A2EE5393890A1ACEE971C4C246 . 24576 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0011\DriverFiles\i386\kbdclass.sys

[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ndis.sys
[-] 2004-08-03 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ndis.sys
[-] 2004-08-03 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\system32\drivers\ndis.sys

[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ntfs.sys
[-] 2004-08-03 . B78BE402C3F63DD55521F73876951CDD . 574592 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ntfs.sys
[-] 2004-08-03 . B78BE402C3F63DD55521F73876951CDD . 574592 . . [5.1.2600.2180] . . c:\windows\system32\drivers\ntfs.sys

[-] 2001-08-23 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\null.sys
[-] 2001-08-23 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys

[-] 2008-04-14 . A06CE3399D16DB864F55FAEB1F1927A9 . 77824 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\browser.dll
[-] 2004-08-03 . E3CFCCDDA4EDD1D0DC9168B2E18F27B8 . 77312 . . [5.1.2600.2180] . . c:\windows\system32\browser.dll
[-] 2004-08-03 . E3CFCCDDA4EDD1D0DC9168B2E18F27B8 . 77312 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\browser.dll

[-] 2008-04-14 . BF2466B3E18E970D8A976FB95FC1CA85 . 13312 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\lsass.exe
[-] 2004-08-03 . 84885F9B82F4D55C6146EBF6065D75D2 . 13312 . . [5.1.2600.2180] . . c:\windows\system32\lsass.exe
[-] 2004-08-03 . 84885F9B82F4D55C6146EBF6065D75D2 . 13312 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\lsass.exe

[-] 2008-04-14 . 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE . 198144 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\netman.dll
[-] 2004-08-03 . DAB9E6C7105D2EF49876FE92C524F565 . 198144 . . [5.1.2600.2180] . . c:\windows\system32\netman.dll
[-] 2004-08-03 . DAB9E6C7105D2EF49876FE92C524F565 . 198144 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\netman.dll

[-] 2008-04-14 . 574738F61FCA2935F5265DC4E5691314 . 409088 . . [6.7.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\qmgr.dll
[-] 2004-08-03 . 2C69EC7E5A311334D10DD95F338FCCEA . 382464 . . [6.6.2600.2180] . . c:\windows\system32\qmgr.dll
[-] 2004-08-03 . 2C69EC7E5A311334D10DD95F338FCCEA . 382464 . . [6.6.2600.2180] . . c:\windows\system32\dllcache\qmgr.dll

[-] 2008-04-14 . D8E14A61ACC1D4A6CD0D38AEBAC7FA3B . 57856 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\spoolsv.exe
[-] 2004-08-03 . 7435B108B935E42EA92CA94F59C8E717 . 57856 . . [5.1.2600.2180] . . c:\windows\system32\spoolsv.exe
[-] 2004-08-03 . 7435B108B935E42EA92CA94F59C8E717 . 57856 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\spoolsv.exe

[-] 2008-04-14 . ED0EF0A136DEC83DF69F04118870003E . 507904 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\winlogon.exe
[-] 2004-08-03 . 01C3346C241652F43AED8E2149881BFE . 502272 . . [5.1.2600.2180] . . c:\windows\system32\winlogon.exe
[-] 2004-08-03 . 01C3346C241652F43AED8E2149881BFE . 502272 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\winlogon.exe

[-] 2008-04-14 . BD38D1EBE24A46BD3EDA059560AFBA12 . 1054208 . . [6.0] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\asms\60\msft\windows\common\controls\comctl32.dll
[-] 2008-04-14 . 06F247492BC786CE5C24A23E178C711A . 617472 . . [5.82] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\comctl32.dll
[-] 2004-08-03 . A77DFB85FAEE49D66C74DA6024EBC69B . 611328 . . [5.82] . . c:\windows\system32\comctl32.dll
[-] 2004-08-03 . A77DFB85FAEE49D66C74DA6024EBC69B . 611328 . . [5.82] . . c:\windows\system32\dllcache\comctl32.dll

[-] 2008-04-14 . 3D4E199942E29207970E04315D02AD3B . 62464 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\cryptsvc.dll
[-] 2004-08-03 . 10654F9DDCEA9C46CFB77554231BE73B . 60416 . . [5.1.2600.2180] . . c:\windows\system32\cryptsvc.dll
[-] 2004-08-03 . 10654F9DDCEA9C46CFB77554231BE73B . 60416 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\cryptsvc.dll

[-] 2008-04-14 . 0DA85218E92526972A821587E6A8BF8F . 110080 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\imm32.dll
[-] 2004-08-03 . 87CA7CE6469577F059297B9D6556D66D . 110080 . . [5.1.2600.2180] . . c:\windows\system32\imm32.dll
[-] 2004-08-03 . 87CA7CE6469577F059297B9D6556D66D . 110080 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\imm32.dll

[-] 2008-04-14 . 2DC5A8019E2387987905F77C664E4BE2 . 19968 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\linkinfo.dll
[-] 2004-08-03 . C2BBD044C741EA4292016C36F718D2E4 . 18944 . . [5.1.2600.2180] . . c:\windows\system32\linkinfo.dll
[-] 2004-08-03 . C2BBD044C741EA4292016C36F718D2E4 . 18944 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\linkinfo.dll

[-] 2008-04-14 . 012DF358CEBAA23ACB26D82077820817 . 22016 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\lpk.dll
[-] 2004-08-03 . 74D66B3DE265E8789153414E75175F26 . 22016 . . [5.1.2600.2180] . . c:\windows\system32\lpk.dll
[-] 2004-08-03 . 74D66B3DE265E8789153414E75175F26 . 22016 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\lpk.dll

[-] 2008-04-14 . D7075E95AA599EE77B7A89D39296BD3D . 343040 . . [7.0.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\asms\70\msft\windows\mswincrt\msvcrt.dll
[-] 2008-04-14 . 355EDBB4D412B01F1740C17E3F50FA00 . 343040 . . [7.0.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\msvcrt.dll
[-] 2004-08-03 . B0FEFA816D61EC66AA765DDF534EAB5E . 343040 . . [7.0.2600.2180] . . c:\windows\system32\msvcrt.dll
[-] 2004-08-03 . B0FEFA816D61EC66AA765DDF534EAB5E . 343040 . . [7.0.2600.2180] . . c:\windows\system32\dllcache\msvcrt.dll

[7] 2009-02-06 . 6C476D33D82F1054849790181E8F7772 . 408064 . . [5.1.2600.3520] . . c:\windows\$hf_mig$\KB968389\SP2QFE\netlogon.dll
[7] 2009-02-06 . 6C476D33D82F1054849790181E8F7772 . 408064 . . [5.1.2600.3520] . . c:\windows\$hf_mig$\KB975467\SP2QFE\netlogon.dll
[-] 2008-04-14 . 1B7F071C51B77C272875C3A23E1E4550 . 407040 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\netlogon.dll
[-] 2004-08-03 . 96353FCECBA774BB8DA74A1C6507015A . 407040 . . [5.1.2600.2180] . . c:\windows\system32\netlogon.dll
[-] 2004-08-03 . 96353FCECBA774BB8DA74A1C6507015A . 407040 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\netlogon.dll


[-] 2008-04-14 . A86BB5E61BF3E39B62AB4C7E7085A084 . 181248 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\scecli.dll
[-] 2004-08-03 . 0F78E27F563F2AAF74B91A49E2ABF19A . 180224 . . [5.1.2600.2180] . . c:\windows\system32\scecli.dll
[-] 2004-08-03 . 0F78E27F563F2AAF74B91A49E2ABF19A . 180224 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\scecli.dll

[-] 2008-04-14 . 96E1C926F22EE1BFBAE82901A35F6BF3 . 5120 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\sfc.dll
[-] 2004-08-03 . E8A12A12EA9088B4327D49EDCA3ADD3E . 5120 . . [5.1.2600.2180] . . c:\windows\system32\sfc.dll
[-] 2004-08-03 . E8A12A12EA9088B4327D49EDCA3ADD3E . 5120 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\sfc.dll

[-] 2008-04-14 . 27C6D03BCDB8CFEB96B716F3D8BE3E18 . 14336 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\svchost.exe
[-] 2004-08-03 . 8F078AE4ED187AAABC0A305146DE6716 . 14336 . . [5.1.2600.2180] . . c:\windows\system32\svchost.exe
[-] 2004-08-03 . 8F078AE4ED187AAABC0A305146DE6716 . 14336 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\svchost.exe

[-] 2008-04-14 . 3CB78C17BB664637787C9A1C98F79C38 . 249856 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\tapisrv.dll
[-] 2004-08-03 . EB4A4187D74A8EFDCBEA3EA2CB1BDFBD . 246272 . . [5.1.2600.2180] . . c:\windows\system32\tapisrv.dll
[-] 2004-08-03 . EB4A4187D74A8EFDCBEA3EA2CB1BDFBD . 246272 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\tapisrv.dll

[-] 2008-04-14 . B26B135FF1B9F60C9388B4A7D16F600B . 578560 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\user32.dll
[-] 2004-08-03 . C72661F8552ACE7C5C85E16A3CF505C4 . 577024 . . [5.1.2600.2180] . . c:\windows\system32\user32.dll
[-] 2004-08-03 . C72661F8552ACE7C5C85E16A3CF505C4 . 577024 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\user32.dll

[-] 2008-04-14 . A93AEE1928A9D7CE3E16D24EC7380F89 . 26112 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\userinit.exe
[-] 2004-08-03 . 39B1FFB03C2296323832ACBAE50D2AFF . 24576 . . [5.1.2600.2180] . . c:\windows\system32\userinit.exe
[-] 2004-08-03 . 39B1FFB03C2296323832ACBAE50D2AFF . 24576 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\userinit.exe

[-] 2008-04-14 . 2CCC474EB85CEAA3E1FA1726580A3E5A . 82432 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ws2_32.dll
[-] 2004-08-03 . 2ED0B7F12A60F90092081C50FA0EC2B2 . 82944 . . [5.1.2600.2180] . . c:\windows\system32\ws2_32.dll
[-] 2004-08-03 . 2ED0B7F12A60F90092081C50FA0EC2B2 . 82944 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ws2_32.dll

[-] 2008-04-14 . 12896823FB95BFB3DC9B46BCAEDC9923 . 1033728 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\explorer.exe
[-] 2004-08-03 . A0732187050030AE399B241436565E64 . 1032192 . . [6.00.2900.2180] . . c:\windows\explorer.exe
[-] 2004-08-03 . A0732187050030AE399B241436565E64 . 1032192 . . [6.00.2900.2180] . . c:\windows\system32\dllcache\explorer.exe

[-] 2008-04-14 . 3805DF0AC4296A34BA4BF93B346CC378 . 171008 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\srsvc.dll
[-] 2004-08-03 . 92BDF74F12D6CBEC43C94D4B7F804838 . 170496 . . [5.1.2600.2180] . . c:\windows\system32\srsvc.dll
[-] 2004-08-03 . 92BDF74F12D6CBEC43C94D4B7F804838 . 170496 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\srsvc.dll

[-] 2008-04-14 . F92E1076C42FCD6DB3D72D8CFE9816D5 . 13824 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\wscntfy.exe
[-] 2004-08-03 . 49911DD39E023BB6C45E4E436CFBD297 . 13824 . . [5.1.2600.2180] . . c:\windows\system32\wscntfy.exe
[-] 2004-08-03 . 49911DD39E023BB6C45E4E436CFBD297 . 13824 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\wscntfy.exe

[-] 2008-04-14 . 295D21F14C335B53CB8154E5B1F892B9 . 129024 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\xmlprov.dll
[-] 2004-08-03 . EEF46DAB68229A14DA3D8E73C99E2959 . 129536 . . [5.1.2600.2180] . . c:\windows\system32\xmlprov.dll
[-] 2004-08-03 . EEF46DAB68229A14DA3D8E73C99E2959 . 129536 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\xmlprov.dll

[-] 2008-04-14 . 6D4FEB43EE538FC5428CC7F0565AA656 . 56320 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\eventlog.dll
[-] 2004-08-03 . 82B24CB70E5944E6E34662205A2A5B78 . 55808 . . [5.1.2600.2180] . . c:\windows\system32\eventlog.dll
 
[-] 2004-08-03 . 82B24CB70E5944E6E34662205A2A5B78 . 55808 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\eventlog.dll

[-] 2008-04-14 . 9DD07AF82244867CA36681EA2D29CE79 . 1614848 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\sfcfiles.dll
[-] 2004-08-03 . 30A609E00BD1D4FFC49D6B5A432BE7F2 . 1580544 . . [5.1.2600.2180] . . c:\windows\system32\sfcfiles.dll
[-] 2004-08-03 . 30A609E00BD1D4FFC49D6B5A432BE7F2 . 1580544 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\sfcfiles.dll

[-] 2008-04-14 . 5F1D5F88303D4A4DBC8E5F97BA967CC3 . 15360 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ctfmon.exe
[-] 2004-08-03 . 24232996A38C0B0CF151C2140AE29FC8 . 15360 . . [5.1.2600.2180] . . c:\windows\system32\ctfmon.exe
[-] 2004-08-03 . 24232996A38C0B0CF151C2140AE29FC8 . 15360 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ctfmon.exe

[-] 2008-04-14 . 1926899BF9FFE2602B63074971700412 . 135168 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\shsvcs.dll
[-] 2004-08-03 . E7518DC542D3EBDCB80EDD98462C7821 . 134656 . . [6.00.2900.2180] . . c:\windows\system32\shsvcs.dll
[-] 2004-08-03 . E7518DC542D3EBDCB80EDD98462C7821 . 134656 . . [6.00.2900.2180] . . c:\windows\system32\dllcache\shsvcs.dll

[-] 2008-04-14 . 5B19B557B0C188210A56A6B699D90B8F . 59904 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\regsvc.dll
[-] 2004-08-03 . 3151427DB7D87107D1C5BE58FAC53960 . 59904 . . [5.1.2600.2180] . . c:\windows\system32\regsvc.dll
[-] 2004-08-03 . 3151427DB7D87107D1C5BE58FAC53960 . 59904 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\regsvc.dll

[-] 2008-04-14 . 0A9A7365A1CA4319AA7C1D6CD8E4EAFA . 192512 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\schedsvc.dll
[-] 2004-08-03 . 92360854316611F6CC471612213C3D92 . 190976 . . [5.1.2600.2180] . . c:\windows\system32\schedsvc.dll
[-] 2004-08-03 . 92360854316611F6CC471612213C3D92 . 190976 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\schedsvc.dll

[-] 2008-04-14 . 0A5679B3714EDAB99E357057EE88FCA6 . 71680 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ssdpsrv.dll
[-] 2004-08-03 . 4B8D61792F7175BED48859CC18CE4E38 . 71680 . . [5.1.2600.2180] . . c:\windows\system32\ssdpsrv.dll
[-] 2004-08-03 . 4B8D61792F7175BED48859CC18CE4E38 . 71680 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ssdpsrv.dll

[-] 2008-04-14 . FF3477C03BE7201C294C35F684B3479F . 295424 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\termsrv.dll
[-] 2004-08-03 . B60C877D16D9C880B952FDA04ADF16E6 . 295424 . . [5.1.2600.2180] . . c:\windows\system32\termsrv.dll
[-] 2004-08-03 . B60C877D16D9C880B952FDA04ADF16E6 . 295424 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\termsrv.dll

[-] 2008-04-14 . D8849F77C0B66226335A59D26CB4EDC6 . 167936 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\appmgmts.dll
[-] 2004-08-03 . 9C3C12975C97119412802B181FBEEFFE . 167936 . . [5.1.2600.2180] . . c:\windows\system32\appmgmts.dll
[-] 2004-08-03 . 9C3C12975C97119412802B181FBEEFFE . 167936 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\appmgmts.dll

[-] 2001-08-23 . 9859C0F6936E723E4892D7141B1327D5 . 11648 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys

[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\aec.sys
[-] 2004-08-03 23:05 . 841F385C6CFAF66B58FBD898722BB4F0 . 142464 . . [5.1.2601.2078] . . c:\windows\system32\drivers\aec.sys

[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\agp440.sys
[-] 2004-08-03 . 2C428FA0C3E3A01ED93C9B2A27D8D4BB . 42368 . . [5.1.2600.2180] . . c:\windows\system32\drivers\agp440.sys

[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ip6fw.sys
[-] 2004-08-03 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\ip6fw.sys
[-] 2004-08-03 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\system32\drivers\ip6fw.sys

[-] 2008-04-14 00:11 . CDDD4416B2B4C7295FE3FDB6DDE57E4E . 927504 . . [4.1.0.61] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\mfc40u.dll
[-] 2001-08-23 12:00 . DDF8D47ACF8FC3FE5F7F2B95C4D4D136 . 924432 . . [4.1.6140] . . c:\windows\system32\mfc40u.dll
[-] 2001-08-23 12:00 . DDF8D47ACF8FC3FE5F7F2B95C4D4D136 . 924432 . . [4.1.6140] . . c:\windows\system32\dllcache\mfc40u.dll

[-] 2008-04-14 . 986B1FF5814366D71E0AC5755C88F2D3 . 33792 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\msgsvc.dll
[-] 2004-08-03 . 95FD808E4AC22ABA025A7B3EAC0375D2 . 33792 . . [5.1.2600.2180] . . c:\windows\system32\msgsvc.dll
[-] 2004-08-03 . 95FD808E4AC22ABA025A7B3EAC0375D2 . 33792 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\msgsvc.dll

[-] 2008-04-14 00:12 . 156F64A3345BD23C600655FB4D10BC08 . 435200 . . [5.1.2400.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ntmssvc.dll
[-] 2004-08-03 22:56 . B62F29C00AC55A761B2E45877D85EA0F . 435200 . . [5.1.2400.2180] . . c:\windows\system32\ntmssvc.dll
[-] 2004-08-03 22:56 . B62F29C00AC55A761B2E45877D85EA0F . 435200 . . [5.1.2400.2180] . . c:\windows\system32\dllcache\ntmssvc.dll

[-] 2008-04-14 . 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 . 185856 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\upnphost.dll
[-] 2004-08-03 . 0546477BDE979E33294FE97F6B3DE84A . 185344 . . [5.1.2600.2180] . . c:\windows\system32\upnphost.dll
[-] 2004-08-03 . 0546477BDE979E33294FE97F6B3DE84A . 185344 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\upnphost.dll

[-] 2008-04-14 . 4D83ED8BDDEC431FC8AD907B47CFB6E3 . 367616 . . [5.3.2600.5512] . . c:\windows\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\dsound.dll
[-] 2004-08-03 . 55E148C01296696588EAFA425782C3E8 . 367616 . . [5.3.2600.2180] . . c:\windows\system32\dsound.dll
[-] 2004-08-03 . 55E148C01296696588EAFA425782C3E8 . 367616 . . [5.3.2600.2180] . . c:\windows\system32\dllcache\dsound.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="c:\documents and settings\TM\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2010-04-20 136176]
"Search Protection"="c:\program files\Yahoo!\Search Protection\SearchProtection.exe" [2009-02-23 111856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"YSearchProtection"="c:\program files\Yahoo!\Search Protection\SearchProtection.exe" [2009-02-23 111856]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\evntsvc.exe" [2010-03-10 146432]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
.
Contents of the 'Scheduled Tasks' folder

2010-04-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1275210071-1979792683-682003330-1003Core.job
- c:\documents and settings\TM\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-04-20 15:50]

2010-04-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1275210071-1979792683-682003330-1003UA.job
- c:\documents and settings\TM\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-04-20 15:50]

2010-04-22 c:\windows\Tasks\WGASetup.job
- c:\windows\system32\KB905474\wgasetup.exe [2010-03-12 03:18]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.com
mStart Page = hxxp://www.yahoo.com
uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ycomp/defaults/su/*Yahoo!
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2010-04-22 17:11
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2010-04-22 17:13:22
ComboFix-quarantined-files.txt 2010-04-22 21:13

Pre-Run: 13,793,538,048 bytes free
Post-Run: 13,830,692,864 bytes free

WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - B7D7BE4868D3C6F07764B9F9933376AE
 
So give me the run down again. Are the same symptoms happening? Or different? Any changes since running these programs?
 
I will re-post another log on Sat night after re-plugging salve drive,too. Its working so far, using Chrome Browser only.
The problem happens at restart when I need to press F8 key etc to restart first in safe mode then in normal mode, sometimes I need to run XP Cd.
 
Status
Not open for further replies.

Similar threads

XWrench3
hijack this scan
Replies
6
Views
2K
XWrench3
XWrench3
G
Computer slow and work in background
Replies
0
Views
2K
grecycle99
G
N
Laptop slowing down in function (internet and general apps)
Replies
1
Views
3K
Trotter
Trotter
N
Your computer appears to be correctly configured, but the device or resource (DNS server) is not responding"
Replies
0
Views
4K
nev
N
C
Hacked by malware
2
Replies
10
Views
8K
PP Mguire
PP Mguire
Back
Top Bottom