Virtumonde.dll!!! Help!!! [Archive] - Safer-Networking Forums

View Full Version : Virtumonde.dll!!! Help!!!

hacim

2008-08-27, 01:06

Tried fixing this virtumonde demon myself... Wasn't very successful to say the least... Here is the HJT log, appreciate any help!!!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:53:28 PM, on 8/26/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\mobsync.exe
C:\Users\Micah\Desktop\HiJackThis.exe
C:\Windows\system32\SearchFilterHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: Shell=
F2 - REG:system.ini: UserInit=
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {67FE9F26-8E23-468C-923C-E4E892597CB7} - C:\Windows\system32\byXNHxxY.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {AE0699B9-FF9D-4B5A-A149-894BBD12D9AA} - (no file)
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [MSServer] rundll32.exe C:\Windows\system32\rqRLeEvV.dll,#1
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JR1916~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JR1916~1.0_0\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O20 - AppInit_DLLs:
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG7 Resident Shield Service (AvgCoreSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 5047 bytes

Shaba

2008-08-28, 10:51

Hi hacim

Please download Malwarebytes' Anti-Malware (http://www.malwaresupport.com/mbam/program/mbam-setup.exe) to your desktop.

Double-click mbam-setup.exe and follow the prompts to install the program.
At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
If an update is found, it will download and install the latest version.
Once the program has loaded, select Perform full scan, then click Scan.
When the scan is complete, click OK, then Show Results to view the results.
Be sure that everything is checked, and click Remove Selected.
When completed, a log will open in Notepad. Please save it to a convenient location. The log can also be found here: C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Please post contents of that file in your next reply.

Download random's system information tool (RSIT) by random/random from here (http://images.malwareremoval.com/random/RSIT.exe) and save it to your desktop.
Double click on RSIT.exe to run RSIT.
Click Continue at the disclaimer screen.
Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)

Post:

- mbam log
- rsit logs (taken after mbam run)

hacim

2008-08-30, 21:08

I appreciate your help so much! Here are the logs as followed in two sections it would not let me post both of them in one reply.

Malwarebytes' Anti-Malware 1.25
Database version: 1062
Windows 6.0.6001 Service Pack 1

1:53:03 PM 8/30/2008
mbam-log-08-30-2008 (13-53-03).txt

Scan type: Full Scan (C:\|D:\|E:\|F:\|G:\|H:\|I:\|K:\|)
Objects scanned: 135489
Time elapsed: 49 minute(s), 53 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 1
Registry Keys Infected: 4
Registry Values Infected: 2
Registry Data Items Infected: 2
Folders Infected: 0
Files Infected: 7

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
C:\Windows\System32\byXNHxxY.dll (Trojan.Vundo.H) -> Delete on reboot.

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{717d3379-eb49-45a5-950a-21d61a4013e2} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_CLASSES_ROOT\CLSID\{717d3379-eb49-45a5-950a-21d61a4013e2} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mpx (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MSServer (Malware.Trace) -> Quarantined and deleted successfully.

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Notification Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\byxnhxxy -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA\Authentication Packages (Trojan.Vundo.H) -> Data: c:\windows\system32\byxnhxxy -> Delete on reboot.

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Windows\System32\byXNHxxY.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\Windows\System32\YxxHNXyb.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Windows\System32\YxxHNXyb.ini2 (Trojan.Vundo.H) -> Quarantined and deleted successfully.
c:\Windows\System32\mpx.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\Micah\AppData\Local\Temp\MediaTubeCodec_ver1.1504.0.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Windows\System32\mpxu.exe (Trojan.Agent) -> Quarantined and deleted successfully.
K:\RSIT.exe (Trojan.Agent) -> Quarantined and deleted successfully.

hacim

2008-08-30, 21:14

RSIT log

Logfile of random's system information tool (written by random/random)
Run by Micah at 2008-08-30 14:00:49
Microsoft® Windows Vista™ Home Basic Service Pack 1
System drive C: has 159 GB (67%) free of 238 GB
Total RAM: 2047 MB (72% free)

HijackThis download failed

Registry dump

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-01-28 1554256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE0699B9-FF9D-4B5A-A149-894BBD12D9AA}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-06-19 352256]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe [2008-02-22 144784]
"Krait"=C:\Program Files\Razer\Krait\razerhid.exe [2007-02-16 126976]
"P17RunE"=RunDll32 P17RunE.dll []
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-03-09 185632]
"NvSvc"=C:\Windows\system32\nvsvc.dll [2007-12-11 86016]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2007-12-11 8530464]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2007-12-11 81920]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-05-27 413696]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-07-10 116040]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-07-30 289064]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ThePrivacyGuard"=C:\PROGRA~1\THEPRI~1\THEPRI~1.EXE /startup []
"RunSpySweeperScheduleAtStartup"=C:\Windows\system32\msfeedssync.exe [2008-01-19 12800]
"ProxyWay"=C:\Program Files\ProxyWay\proxyway.exe []
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC]
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2008-07-30 289064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2008-05-27 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpySweeper]
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
c:\program files\steam\steam.exe [2008-03-29 1271032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{DFAAB7BB-4990-47B1-8F27-6DB9C258D26B}"=C:\Windows\system32\cbXNHBTK.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\K]
shell\AutoRun\command - K:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3c2528f9-6a1b-11dc-b2a9-0016178feb8a}]
shell\AutoRun\command - K:\LaunchU3.exe -a

File associations

.reg - open - regedit.exe "%1" %*
.scr - open - "%1" %*

hacim

2008-08-30, 21:17

RSIT log continued

List of files/folders created in the last three months

2008-08-30 14:00:49 ----D---- C:\rsit
2008-08-30 14:00:49 ----D---- C:\Program Files\trend micro
2008-08-30 12:31:02 ----D---- C:\Users\Micah\AppData\Roaming\Malwarebytes
2008-08-30 12:31:00 ----D---- C:\ProgramData\Malwarebytes
2008-08-30 12:31:00 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-08-26 22:08:48 ----D---- C:\ProgramData\Avg7
2008-08-26 21:27:41 ----A---- C:\Windows\system32\4b0812fe-.txt
2008-08-19 21:09:14 ----D---- C:\ProgramData\Azureus
2008-08-13 11:57:00 ----A---- C:\Windows\system32\tzres.dll
2008-08-13 11:55:04 ----A---- C:\Windows\system32\mshtml.dll
2008-08-13 11:55:04 ----A---- C:\Windows\system32\ieframe.dll
2008-08-13 11:55:03 ----A---- C:\Windows\system32\wininet.dll
2008-08-13 11:55:03 ----A---- C:\Windows\system32\urlmon.dll
2008-08-13 11:55:03 ----A---- C:\Windows\system32\mstime.dll
2008-08-13 11:55:03 ----A---- C:\Windows\system32\jsproxy.dll
2008-08-13 11:54:59 ----A---- C:\Windows\system32\inetcomm.dll
2008-08-13 11:54:59 ----A---- C:\Windows\system32\es.dll
2008-08-13 11:54:58 ----A---- C:\Windows\system32\IPSECSVC.DLL
2008-08-07 20:04:19 ----D---- C:\Program Files\iPod
2008-08-07 20:04:17 ----D---- C:\Program Files\iTunes
2008-08-03 17:39:24 ----A---- C:\Windows\wininit.ini
2008-07-25 03:34:30 ----A---- C:\Windows\system32\DivXCodecVersionChecker.exe
2008-07-22 20:38:43 ----A---- C:\Windows\system32\msshooks.dll
2008-07-22 20:38:42 ----A---- C:\Windows\system32\msscb.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\thawbrkr.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\SearchFilterHost.exe
2008-07-22 20:38:40 ----A---- C:\Windows\system32\propsys.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\propdefs.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\msstrc.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\mssprxy.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\mssitlb.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\msshsq.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\korwbrkr.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\xmlfilter.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\wsepno.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\srchadmin.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\rtffilt.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\offfilt.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\nlhtml.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\msscntrs.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\mimefilt.dll
2008-07-22 20:38:38 ----A---- C:\Windows\system32\tquery.dll
2008-07-22 20:38:38 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2008-07-22 20:38:38 ----A---- C:\Windows\system32\SearchIndexer.exe
2008-07-22 20:38:38 ----A---- C:\Windows\system32\mssrch.dll
2008-07-22 20:38:38 ----A---- C:\Windows\system32\chtbrkr.dll
2008-07-22 20:38:38 ----A---- C:\Windows\system32\chsbrkr.dll
2008-07-22 20:38:37 ----A---- C:\Windows\system32\mssvp.dll
2008-07-22 20:38:37 ----A---- C:\Windows\system32\mssphtb.dll
2008-07-22 20:38:37 ----A---- C:\Windows\system32\mssph.dll
2008-07-21 19:42:32 ----A---- C:\Windows\system32\xfcodec.dll
2008-07-17 02:38:59 ----D---- C:\Users\Micah\AppData\Roaming\BSD
2008-07-17 02:38:57 ----D---- C:\ProgramData\MediaWidget
2008-07-17 02:38:55 ----D---- C:\Program Files\Media Widget
2008-07-17 02:38:55 ----A---- C:\Windows\bsdsetup.dll
2008-07-14 15:35:02 ----A---- C:\Windows\system32\javaws.exe
2008-07-14 15:35:02 ----A---- C:\Windows\system32\javaw.exe
2008-07-14 15:35:02 ----A---- C:\Windows\system32\java.exe
2008-07-12 23:25:49 ----D---- C:\Program Files\Bonjour
2008-07-12 23:25:04 ----D---- C:\Program Files\QuickTime
2008-07-08 14:16:50 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2008-07-08 14:16:47 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2008-07-08 14:16:38 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2008-07-08 14:15:53 ----A---- C:\Windows\system32\shell32.dll
2008-07-08 14:15:48 ----A---- C:\Windows\system32\wshext.dll
2008-07-08 14:15:48 ----A---- C:\Windows\system32\wscript.exe
2008-07-08 14:15:48 ----A---- C:\Windows\system32\vbscript.dll
2008-07-08 14:15:48 ----A---- C:\Windows\system32\scrrun.dll
2008-07-08 14:15:48 ----A---- C:\Windows\system32\scrobj.dll
2008-07-08 14:15:48 ----A---- C:\Windows\system32\jscript.dll
2008-07-08 14:15:48 ----A---- C:\Windows\system32\cscript.exe
2008-07-08 14:15:36 ----A---- C:\Windows\system32\rpcrt4.dll
2008-07-08 14:15:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2008-07-08 14:15:36 ----A---- C:\Windows\system32\ntkrnlpa.exe
2008-07-08 14:15:35 ----A---- C:\Windows\system32\pacerprf.dll
2008-07-08 14:15:35 ----A---- C:\Windows\system32\emdmgmt.dll
2008-07-02 15:34:57 ----D---- C:\Program Files\Common Files\Adobe
2008-07-02 15:34:57 ----D---- C:\Program Files\Adobe
2008-06-29 00:31:03 ----D---- C:\Program Files\Veoh Networks
2008-06-29 00:30:39 ----D---- C:\Windows\Downloaded Installations
2008-06-12 16:04:50 ----D---- C:\Program Files\Microsoft Games
2008-06-12 16:04:49 ----D---- C:\PerfLogs
2008-06-11 19:10:32 ----A---- C:\Windows\system32\SLsvc.exe
2008-06-11 19:10:32 ----A---- C:\Windows\system32\onex.dll
2008-06-11 19:10:20 ----A---- C:\Windows\system32\PSHED.DLL
2008-06-11 19:10:19 ----A---- C:\Windows\system32\imagesp1.dll
2008-06-11 19:10:16 ----A---- C:\Windows\system32\dfsr.exe
2008-06-11 19:10:15 ----A---- C:\Windows\system32\wuaueng.dll
2008-06-11 19:10:15 ----A---- C:\Windows\system32\sstpsvc.dll
2008-06-11 19:10:15 ----A---- C:\Windows\system32\pidgenx.dll
2008-06-11 19:10:14 ----A---- C:\Windows\system32\mstscax.dll
2008-06-11 19:10:13 ----A---- C:\Windows\system32\WsmSvc.dll
2008-06-11 19:10:13 ----A---- C:\Windows\system32\winrscmd.dll
2008-06-11 19:10:12 ----A---- C:\Windows\system32\sysmain.dll
2008-06-11 19:10:11 ----A---- C:\Windows\system32\vssapi.dll
2008-06-11 19:10:11 ----A---- C:\Windows\system32\RMActivate.exe
2008-06-11 19:10:10 ----A---- C:\Windows\system32\VSSVC.exe
2008-06-11 19:10:10 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2008-06-11 19:10:09 ----A---- C:\Windows\system32\secproc.dll
2008-06-11 19:10:09 ----A---- C:\Windows\system32\RMActivate_isv.exe
2008-06-11 19:10:09 ----A---- C:\Windows\system32\iesetup.dll
2008-06-11 19:10:08 ----A---- C:\Windows\system32\secproc_isv.dll
2008-06-11 19:10:07 ----A---- C:\Windows\system32\drmv2clt.dll
2008-06-11 19:10:06 ----A---- C:\Windows\system32\icardres.dll
2008-06-11 19:10:06 ----A---- C:\Windows\system32\icardagt.exe
2008-06-11 19:10:06 ----A---- C:\Windows\system32\blackbox.dll
2008-06-11 19:10:05 ----A---- C:\Windows\system32\xpssvcs.dll
2008-06-11 19:10:03 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2008-06-11 19:10:03 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2008-06-11 19:10:02 ----A---- C:\Windows\system32\spwizimg.dll
2008-06-11 19:10:02 ----A---- C:\Windows\system32\rdpencom.dll
2008-06-11 19:10:02 ----A---- C:\Windows\bfsvc.exe
2008-06-11 19:10:01 ----A---- C:\Windows\system32\msxml6.dll
2008-06-11 19:10:01 ----A---- C:\Windows\system32\msxml3.dll
2008-06-11 19:10:01 ----A---- C:\Windows\system32\lpremove.exe
2008-06-11 19:10:00 ----A---- C:\Windows\system32\ntdll.dll
2008-06-11 19:10:00 ----A---- C:\Windows\system32\msjet40.dll
2008-06-11 19:09:59 ----A---- C:\Windows\system32\qmgr.dll
2008-06-11 19:09:59 ----A---- C:\Windows\system32\lsasrv.dll
2008-06-11 19:09:59 ----A---- C:\Windows\system32\localspl.dll
2008-06-11 19:09:59 ----A---- C:\Windows\system32\IKEEXT.DLL
2008-06-11 19:09:58 ----A---- C:\Windows\system32\wevtsvc.dll
2008-06-11 19:09:58 ----A---- C:\Windows\system32\wcncsvc.dll
2008-06-11 19:09:58 ----A---- C:\Windows\system32\TsWpfWrp.exe
2008-06-11 19:09:58 ----A---- C:\Windows\system32\recdisc.exe
2008-06-11 19:09:58 ----A---- C:\Windows\system32\mscoree.dll
2008-06-11 19:09:58 ----A---- C:\Windows\system32\kernel32.dll
2008-06-11 19:09:56 ----A---- C:\Windows\system32\vds.exe
2008-06-11 19:09:56 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
2008-06-11 19:09:55 ----A---- C:\Windows\system32\wmp.dll
2008-06-11 19:09:54 ----A---- C:\Windows\system32\wcnwiz.dll
2008-06-11 19:09:54 ----A---- C:\Windows\system32\SMBHelperClass.dll
2008-06-11 19:09:54 ----A---- C:\Windows\system32\msvbvm60.dll
2008-06-11 19:09:54 ----A---- C:\Windows\system32\mstsc.exe
2008-06-11 19:09:53 ----A---- C:\Windows\system32\msdtctm.dll
2008-06-11 19:09:53 ----A---- C:\Windows\system32\mf.dll
2008-06-11 19:09:52 ----A---- C:\Windows\system32\termsrv.dll
2008-06-11 19:09:52 ----A---- C:\Windows\system32\kerberos.dll
2008-06-11 19:09:52 ----A---- C:\Windows\system32\IMJP10K.DLL
2008-06-11 19:09:52 ----A---- C:\Windows\system32\advapi32.dll
2008-06-11 19:09:51 ----A---- C:\Windows\system32\mmcndmgr.dll
2008-06-11 19:09:50 ----A---- C:\Windows\system32\wuapi.dll
2008-06-11 19:09:50 ----A---- C:\Windows\system32\Query.dll
2008-06-11 19:09:50 ----A---- C:\Windows\system32\MPSSVC.dll
2008-06-11 19:09:50 ----A---- C:\Windows\system32\CertEnroll.dll
2008-06-11 19:09:49 ----A---- C:\Windows\system32\xolehlp.dll
2008-06-11 19:09:49 ----A---- C:\Windows\system32\ole32.dll
2008-06-11 19:09:49 ----A---- C:\Windows\system32\msdtcprx.dll
2008-06-11 19:09:48 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2008-06-11 19:09:48 ----A---- C:\Windows\system32\SSShim.dll
2008-06-11 19:09:48 ----A---- C:\Windows\system32\netlogon.dll
2008-06-11 19:09:48 ----A---- C:\Windows\system32\msvcrt.dll
2008-06-11 19:09:48 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2008-06-11 19:09:47 ----A---- C:\Windows\system32\schedsvc.dll
2008-06-11 19:09:47 ----A---- C:\Windows\system32\nlmgp.dll
2008-06-11 19:09:47 ----A---- C:\Windows\system32\DfsShlEx.dll
2008-06-11 19:09:46 ----A---- C:\Windows\system32\wer.dll
2008-06-11 19:09:46 ----A---- C:\Windows\system32\user32.dll
2008-06-11 19:09:46 ----A---- C:\Windows\system32\shlwapi.dll
2008-06-11 19:09:46 ----A---- C:\Windows\system32\sdclt.exe
2008-06-11 19:09:46 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2008-06-11 19:09:46 ----A---- C:\Windows\system32\milcore.dll
2008-06-11 19:09:46 ----A---- C:\Windows\system32\IasMigPlugin.dll
2008-06-11 19:09:45 ----A---- C:\Windows\system32\WSDApi.dll
2008-06-11 19:09:45 ----A---- C:\Windows\system32\vdsdyn.dll
2008-06-11 19:09:45 ----A---- C:\Windows\system32\QAGENTRT.DLL
2008-06-11 19:09:45 ----A---- C:\Windows\system32\diagperf.dll
2008-06-11 19:09:45 ----A---- C:\Windows\system32\d3d9.dll
2008-06-11 19:09:45 ----A---- C:\Windows\system32\clusapi.dll
2008-06-11 19:09:44 ----A---- C:\Windows\system32\winrsmgr.dll
2008-06-11 19:09:44 ----A---- C:\Windows\system32\mtxclu.dll
2008-06-11 19:09:44 ----A---- C:\Windows\system32\mmc.exe
2008-06-11 19:09:43 ----A---- C:\Windows\system32\vdsbas.dll
2008-06-11 19:09:43 ----A---- C:\Windows\system32\swprv.dll
2008-06-11 19:09:43 ----A---- C:\Windows\system32\SLC.dll
2008-06-11 19:09:43 ----A---- C:\Windows\system32\msi.dll
2008-06-11 19:09:43 ----A---- C:\Windows\system32\comctl32.dll
2008-06-11 19:09:42 ----A---- C:\Windows\system32\MSVidCtl.dll
2008-06-11 19:09:41 ----A---- C:\Windows\system32\XPSSHHDR.dll
2008-06-11 19:09:41 ----A---- C:\Windows\system32\msdtckrm.dll
2008-06-11 19:09:41 ----A---- C:\Windows\system32\gpsvc.dll
2008-06-11 19:09:40 ----A---- C:\Windows\system32\sbe.dll
2008-06-11 19:09:40 ----A---- C:\Windows\system32\samsrv.dll
2008-06-11 19:09:40 ----A---- C:\Windows\system32\mfc42u.dll
2008-06-11 19:09:40 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2008-06-11 19:09:40 ----A---- C:\Windows\system32\esent.dll
2008-06-11 19:09:39 ----A---- C:\Windows\system32\wecutil.exe
2008-06-11 19:09:39 ----A---- C:\Windows\system32\usp10.dll
2008-06-11 19:09:39 ----A---- C:\Windows\system32\sdengin2.dll
2008-06-11 19:09:35 ----A---- C:\Windows\system32\mfc42.dll
2008-06-11 19:09:35 ----A---- C:\Windows\system32\gacinstall.dll
2008-06-11 19:09:35 ----A---- C:\Windows\system32\cmipnpinstall.dll
2008-06-11 19:09:35 ----A---- C:\Windows\system32\cmicryptinstall.dll
2008-06-11 19:09:34 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2008-06-11 19:09:34 ----A---- C:\Windows\system32\crypt32.dll
2008-06-11 19:09:34 ----A---- C:\Windows\system32\comsvcs.dll
2008-06-11 19:09:34 ----A---- C:\Windows\system32\certutil.exe
2008-06-11 19:09:33 ----A---- C:\Windows\system32\wucltux.dll
2008-06-11 19:09:33 ----A---- C:\Windows\system32\mswsock.dll
2008-06-11 19:09:33 ----A---- C:\Windows\explorer.exe
2008-06-11 19:09:32 ----A---- C:\Windows\system32\wmdrmsdk.dll
2008-06-11 19:09:32 ----A---- C:\Windows\system32\sqlceqp30.dll
2008-06-11 19:09:32 ----A---- C:\Windows\system32\setupapi.dll
2008-06-11 19:09:32 ----A---- C:\Windows\system32\oleaut32.dll
2008-06-11 19:09:32 ----A---- C:\Windows\system32\lsm.exe
2008-06-11 19:09:32 ----A---- C:\Windows\system32\FirewallAPI.dll
2008-06-11 19:09:31 ----A---- C:\Windows\system32\wecsvc.dll
2008-06-11 19:09:31 ----A---- C:\Windows\system32\sdohlp.dll
2008-06-11 19:09:31 ----A---- C:\Windows\system32\schannel.dll
2008-06-11 19:09:31 ----A---- C:\Windows\system32\msv1_0.dll
2008-06-11 19:09:31 ----A---- C:\Windows\system32\iphlpsvc.dll
2008-06-11 19:09:31 ----A---- C:\Windows\system32\bcrypt.dll
2008-06-11 19:09:30 ----A---- C:\Windows\system32\wmpmde.dll
2008-06-11 19:09:30 ----A---- C:\Windows\system32\thumbcache.dll
2008-06-11 19:09:30 ----A---- C:\Windows\system32\riched20.dll
2008-06-11 19:09:30 ----A---- C:\Windows\system32\p2psvc.dll
2008-06-11 19:09:30 ----A---- C:\Windows\system32\netapi32.dll
2008-06-11 19:09:30 ----A---- C:\Windows\system32\eapp3hst.dll
2008-06-11 19:09:29 ----A---- C:\Windows\system32\WinSAT.exe
2008-06-11 19:09:29 ----A---- C:\Windows\system32\vdsutil.dll
2008-06-11 19:09:29 ----A---- C:\Windows\system32\imapi2fs.dll
2008-06-11 19:09:29 ----A---- C:\Windows\system32\d3d10_1.dll
2008-06-11 19:09:29 ----A---- C:\Windows\system32\autofmt.exe
2008-06-11 19:09:29 ----A---- C:\Windows\system32\autoconv.exe
2008-06-11 19:09:29 ----A---- C:\Windows\system32\autochk.exe
2008-06-11 19:09:29 ----A---- C:\Windows\system32\authfwcfg.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\wevtapi.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\dmvdsitf.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\d3d10_1core.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\comuid.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\comdlg32.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\browseui.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\authui.dll
2008-06-11 19:09:27 ----A---- C:\Windows\system32\WSDMon.dll
2008-06-11 19:09:27 ----A---- C:\Windows\system32\mscories.dll
2008-06-11 19:09:27 ----A---- C:\Windows\system32\eapphost.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\wevtfwd.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\untfs.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\uexfat.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\sqlcese30.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\rasmans.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\pcaui.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\iassam.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\eappcfg.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\DfrgNtfs.exe
2008-06-11 19:09:25 ----A---- C:\Windows\system32\wlansvc.dll
2008-06-11 19:09:25 ----A---- C:\Windows\system32\whealogr.dll
2008-06-11 19:09:24 ----A---- C:\Windows\system32\dot3svc.dll
2008-06-11 19:09:22 ----A---- C:\Windows\system32\rdpwsx.dll
2008-06-11 19:09:22 ----A---- C:\Windows\system32\mssha.dll
2008-06-11 19:09:22 ----A---- C:\Windows\system32\msdrm.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\zipfldr.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\WsmAuto.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\winhttp.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\rpcss.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\rasppp.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\nlasvc.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\ncrypt.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\evr.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\dfrgui.exe
2008-06-11 19:09:21 ----A---- C:\Windows\system32\BFE.DLL
2008-06-11 19:09:20 ----A---- C:\Windows\system32\WsmWmiPl.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-06-11 19:09:20 ----A---- C:\Windows\system32\wmdrmdev.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\win32spl.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\printui.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\msrepl40.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\ddraw.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\audiosrv.dll
2008-06-11 19:09:19 ----A---- C:\Windows\system32\WebClnt.dll
2008-06-11 19:09:19 ----A---- C:\Windows\system32\themecpl.dll
2008-06-11 19:09:19 ----A---- C:\Windows\system32\rastls.dll
2008-06-11 19:09:19 ----A---- C:\Windows\system32\QAGENT.DLL
2008-06-11 19:09:19 ----A---- C:\Windows\system32\objsel.dll
2008-06-11 19:09:19 ----A---- C:\Windows\system32\dbghelp.dll
2008-06-11 19:09:18 ----A---- C:\Windows\system32\w32time.dll
2008-06-11 19:09:18 ----A---- C:\Windows\system32\sqlsrv32.dll
2008-06-11 19:09:18 ----A---- C:\Windows\system32\PresentationHost.exe
2008-06-11 19:09:18 ----A---- C:\Windows\system32\ncryptui.dll
2008-06-11 19:09:18 ----A---- C:\Windows\system32\icm32.dll
2008-06-11 19:09:18 ----A---- C:\Windows\system32\iasnap.dll
2008-06-11 19:09:17 ----A---- C:\Windows\system32\wmdrmnet.dll
2008-06-11 19:09:17 ----A---- C:\Windows\system32\WerFaultSecure.exe
2008-06-11 19:09:17 ----A---- C:\Windows\system32\spoolss.dll
2008-06-11 19:09:17 ----A---- C:\Windows\system32\msctf.dll
2008-06-11 19:09:17 ----A---- C:\Windows\system32\iprtrmgr.dll
2008-06-11 19:09:17 ----A---- C:\Windows\system32\infocardapi.dll
2008-06-11 19:09:17 ----A---- C:\Windows\system32\azroles.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\wlangpui.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\winsrv.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\taskschd.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\scksp.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\mstlsapi.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\bcdedit.exe
2008-06-11 19:09:16 ----A---- C:\Windows\system32\basecsp.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\AudioEng.dll
2008-06-11 19:09:15 ----A---- C:\Windows\system32\winsta.dll
2008-06-11 19:09:15 ----A---- C:\Windows\system32\netprofm.dll
2008-06-11 19:09:15 ----A---- C:\Windows\system32\dbgeng.dll
2008-06-11 19:09:14 ----A---- C:\Windows\system32\taskcomp.dll
2008-06-11 19:09:14 ----A---- C:\Windows\system32\rsaenh.dll
2008-06-11 19:09:14 ----A---- C:\Windows\system32\netcfgx.dll
2008-06-11 19:09:13 ----A---- C:\Windows\system32\winlogon.exe
2008-06-11 19:09:13 ----A---- C:\Windows\system32\wercon.exe
2008-06-11 19:09:13 ----A---- C:\Windows\system32\sqmapi.dll
2008-06-11 19:09:13 ----A---- C:\Windows\system32\lpksetup.exe
2008-06-11 19:09:13 ----A---- C:\Windows\system32\cdosys.dll
2008-06-11 19:09:12 ----A---- C:\Windows\system32\wlansec.dll
2008-06-11 19:09:12 ----A---- C:\Windows\system32\msdtcuiu.dll
2008-06-11 19:09:12 ----A---- C:\Windows\system32\mprddm.dll
2008-06-11 19:09:12 ----A---- C:\Windows\system32\dfshim.dll
2008-06-11 19:09:12 ----A---- C:\Windows\system32\certcli.dll
2008-06-11 19:09:12 ----A---- C:\Windows\system32\apds.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\tsgqec.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\shdocvw.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\iasrad.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\eapsvc.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\bcdsrv.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\AUDIOKSE.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\aaclient.dll
2008-06-11 19:09:10 ----A---- C:\Windows\system32\Wldap32.dll
2008-06-11 19:09:10 ----A---- C:\Windows\system32\uDWM.dll
2008-06-11 19:09:10 ----A---- C:\Windows\system32\msidcrl30.dll
2008-06-11 19:09:10 ----A---- C:\Windows\system32\dnsapi.dll
2008-06-11 19:09:10 ----A---- C:\Windows\system32\certmgr.dll
2008-06-11 19:09:09 ----A---- C:\Windows\system32\WMVDECOD.DLL
2008-06-11 19:09:09 ----A---- C:\Windows\system32\umpnpmgr.dll
2008-06-11 19:09:09 ----A---- C:\Windows\system32\pla.dll
2008-06-11 19:09:08 ----A---- C:\Windows\system32\wmicmiplugin.dll
2008-06-11 19:09:08 ----A---- C:\Windows\system32\netshell.dll
2008-06-11 19:09:08 ----A---- C:\Windows\system32\dxgi.dll
2008-06-11 19:09:08 ----A---- C:\Windows\system32\dot3gpui.dll
2008-06-11 19:09:07 ----A---- C:\Windows\system32\shsvcs.dll
2008-06-11 19:09:07 ----A---- C:\Windows\system32\ntprint.dll
2008-06-11 19:09:07 ----A---- C:\Windows\system32\cryptnet.dll
2008-06-11 19:09:07 ----A---- C:\Windows\system32\comsnap.dll
2008-06-11 19:09:06 ----A---- C:\Windows\system32\winmm.dll
2008-06-11 19:09:06 ----A---- C:\Windows\system32\NlsData0009.dll
2008-06-11 19:09:06 ----A---- C:\Windows\system32\MMDevAPI.dll
2008-06-11 19:09:05 ----A---- C:\Windows\system32\wscsvc.dll
2008-06-11 19:09:05 ----A---- C:\Windows\system32\synceng.dll
2008-06-11 19:09:05 ----A---- C:\Windows\system32\services.exe
2008-06-11 19:09:05 ----A---- C:\Windows\system32\pnidui.dll
2008-06-11 19:09:05 ----A---- C:\Windows\system32\cmifw.dll
2008-06-11 19:09:04 ----A---- C:\Windows\system32\wscisvif.dll
2008-06-11 19:09:04 ----A---- C:\Windows\system32\taskeng.exe
2008-06-11 19:09:04 ----A---- C:\Windows\system32\msjtes40.dll
2008-06-11 19:09:04 ----A---- C:\Windows\system32\msconfig.exe
2008-06-11 19:09:04 ----A---- C:\Windows\system32\iassdo.dll
2008-06-11 19:09:04 ----A---- C:\Windows\system32\cipher.exe
2008-06-11 19:09:03 ----A---- C:\Windows\system32\WMVSDECD.DLL
2008-06-11 19:09:03 ----A---- C:\Windows\system32\tdh.dll
2008-06-11 19:09:03 ----A---- C:\Windows\system32\rasapi32.dll
2008-06-11 19:09:03 ----A---- C:\Windows\system32\imapi2.dll
2008-06-11 19:09:02 ----A---- C:\Windows\system32\wersvc.dll
2008-06-11 19:09:02 ----A---- C:\Windows\system32\uxtheme.dll
2008-06-11 19:09:02 ----A---- C:\Windows\system32\SessEnv.dll
2008-06-11 19:09:02 ----A---- C:\Windows\system32\dot3api.dll
2008-06-11 19:09:02 ----A---- C:\Windows\system32\dmdskmgr.dll
2008-06-11 19:09:02 ----A---- C:\Windows\system32\cmd.exe
2008-06-11 19:09:02 ----A---- C:\Windows\system32\cbsra.exe
2008-06-11 19:09:02 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\wuwebv.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\WUDFx.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\wlanmsm.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\wlancfg.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\wkssvc.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\wevtutil.exe
2008-06-11 19:09:01 ----A---- C:\Windows\system32\srvsvc.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\qdvd.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\msscp.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\loadperf.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\rpchttp.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\rdpdd.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\mshtmled.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\localsec.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\fontext.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\diskpart.exe
2008-06-11 19:09:00 ----A---- C:\Windows\system32\comres.dll
2008-06-11 19:08:59 ----A---- C:\Windows\system32\wsqmcons.exe
2008-06-11 19:08:59 ----A---- C:\Windows\system32\wlanapi.dll
2008-06-11 19:08:59 ----A---- C:\Windows\system32\WinSATAPI.dll
2008-06-11 19:08:59 ----A---- C:\Windows\system32\hnetcfg.dll
2008-06-11 19:08:59 ----A---- C:\Windows\system32\dsound.dll
2008-06-11 19:08:58 ----A---- C:\Windows\system32\WMADMOD.DLL
2008-06-11 19:08:58 ----A---- C:\Windows\system32\wlanpref.dll
2008-06-11 19:08:58 ----A---- C:\Windows\system32\RDPENCDD.dll
2008-06-11 19:08:58 ----A---- C:\Windows\system32\profprov.dll
2008-06-11 19:08:58 ----A---- C:\Windows\system32\NAPMONTR.DLL
2008-06-11 19:08:58 ----A---- C:\Windows\system32\filemgmt.dll
2008-06-11 19:08:58 ----A---- C:\Windows\system32\avifil32.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\wsecedit.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2008-06-11 19:08:57 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\tracerpt.exe
2008-06-11 19:08:57 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\SLCommDlg.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\P2PGraph.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\MuiUnattend.exe
2008-06-11 19:08:57 ----A---- C:\Windows\system32\dwmredir.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\dnsrslvr.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\dhcpcsvc.dll
2008-06-11 19:08:56 ----A---- C:\Windows\system32\wininit.exe
2008-06-11 19:08:56 ----A---- C:\Windows\system32\spp.dll
2008-06-11 19:08:56 ----A---- C:\Windows\system32\rasdlg.dll
2008-06-11 19:08:56 ----A---- C:\Windows\system32\QSHVHOST.DLL
2008-06-11 19:08:56 ----A---- C:\Windows\system32\iassvcs.dll
2008-06-11 19:08:56 ----A---- C:\Windows\system32\gpresult.exe
2008-06-11 19:08:56 ----A---- C:\Windows\system32\dwm.exe
2008-06-11 19:08:56 ----A---- C:\Windows\system32\azroleui.dll
2008-06-11 19:08:56 ----A---- C:\Windows\system32\apphelp.dll
2008-06-11 19:08:55 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2008-06-11 19:08:55 ----A---- C:\Windows\system32\mscorier.dll
2008-06-11 19:08:55 ----A---- C:\Windows\system32\mcbuilder.exe
2008-06-11 19:08:55 ----A---- C:\Windows\system32\iashost.exe
2008-06-11 19:08:55 ----A---- C:\Windows\HelpPane.exe
2008-06-11 19:08:54 ----A---- C:\Windows\system32\wecapi.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\unbcl.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\tcpmon.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\srrstr.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\spwizeng.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\SLUI.exe
2008-06-11 19:08:54 ----A---- C:\Windows\system32\shrink.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\rasmontr.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\msra.exe
2008-06-11 19:08:54 ----A---- C:\Windows\system32\lltdsvc.dll
2008-06-11 19:08:53 ----A---- C:\Windows\system32\WMPEncEn.dll
2008-06-11 19:08:53 ----A---- C:\Windows\system32\oleacc.dll
2008-06-11 19:08:53 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2008-06-11 19:08:53 ----A---- C:\Windows\system32\iertutil.dll
2008-06-11 19:08:53 ----A---- C:\Windows\system32\iashlpr.dll
2008-06-11 19:08:53 ----A---- C:\Windows\system32\gpedit.dll
2008-06-11 19:08:53 ----A---- C:\Windows\system32\brcpl.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\regsvc.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\raschap.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\ntvdm.exe
2008-06-11 19:08:52 ----A---- C:\Windows\system32\ipsmsnap.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\framedynos.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\fdWSD.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\Faultrep.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\advpack.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\wpdshext.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\wdc.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\vsstrace.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\ntlanman.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\l2nacp.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\iedkcs32.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\EncDec.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\WlanMM.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\Storprop.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\netman.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\ieapfltr.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\framedyn.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\dssenh.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\certreq.exe
2008-06-11 19:08:50 ----A---- C:\Windows\system32\adsnt.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\WUDFHost.exe
2008-06-11 19:08:49 ----A---- C:\Windows\system32\WsmProv.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\wlanhlp.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\WLanConn.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\tcpipcfg.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\sxs.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\profsvc.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\ncsi.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\KMSVC.DLL
2008-06-11 19:08:49 ----A---- C:\Windows\system32\IPBusEnum.dll
2008-06-11 19:08:48 ----A---- C:\Windows\system32\wusa.exe
2008-06-11 19:08:48 ----A---- C:\Windows\system32\WerFault.exe
2008-06-11 19:08:48 ----A---- C:\Windows\system32\VAN.dll
2008-06-11 19:08:48 ----A---- C:\Windows\system32\userenv.dll
2008-06-11 19:08:48 ----A---- C:\Windows\system32\umb.dll
2008-06-11 19:08:48 ----A---- C:\Windows\system32\ie4uinit.exe
2008-06-11 19:08:48 ----A---- C:\Windows\system32\fundisc.dll
2008-06-11 19:08:48 ----A---- C:\Windows\system32\cryptui.dll
2008-06-11 19:08:48 ----A---- C:\Windows\system32\catsrvut.dll
2008-06-11 19:08:47 ----A---- C:\Windows\system32\puiobj.dll
2008-06-11 19:08:47 ----A---- C:\Windows\system32\NlsData000c.dll
2008-06-11 19:08:47 ----A---- C:\Windows\system32\NlsData0007.dll
2008-06-11 19:08:47 ----A---- C:\Windows\system32\netid.dll
2008-06-11 19:08:47 ----A---- C:\Windows\system32\dps.dll
2008-06-11 19:08:46 ----A---- C:\Windows\system32\photowiz.dll
2008-06-11 19:08:46 ----A---- C:\Windows\system32\NlsData0011.dll
2008-06-11 19:08:46 ----A---- C:\Windows\system32\netcenter.dll
2008-06-11 19:08:46 ----A---- C:\Windows\system32\MdSched.exe
2008-06-11 19:08:46 ----A---- C:\Windows\system32\InkEd.dll
2008-06-11 19:08:45 ----A---- C:\Windows\system32\NlsData004b.dll
2008-06-11 19:08:45 ----A---- C:\Windows\system32\NlsData004a.dll
2008-06-11 19:08:45 ----A---- C:\Windows\system32\NlsData0047.dll
2008-06-11 19:08:45 ----A---- C:\Windows\system32\NlsData0046.dll
2008-06-11 19:08:45 ----A---- C:\Windows\system32\NlsData0045.dll
2008-06-11 19:08:45 ----A---- C:\Windows\system32\ipsecsnp.dll
2008-06-11 19:08:44 ----A---- C:\Windows\system32\WinSCard.dll
2008-06-11 19:08:44 ----A---- C:\Windows\system32\NlsData004e.dll
2008-06-11 19:08:44 ----A---- C:\Windows\system32\NlsData004c.dll
2008-06-11 19:08:44 ----A---- C:\Windows\system32\NlsData0049.dll
2008-06-11 19:08:43 ----A---- C:\Windows\system32\spbcd.dll
2008-06-11 19:08:43 ----A---- C:\Windows\system32\NlsData000a.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\ws2_32.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\ntdsapi.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\NlsData0c1a.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\NlsData0414.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\NlsData001b.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\NlsData001a.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\NlsData0018.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\NlsData000f.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\msinfo32.exe
2008-06-11 19:08:41 ----A---- C:\Windows\system32\secur32.dll
2008-06-11 19:08:41 ----A---- C:\Windows\system32\NlsData0416.dll
2008-06-11 19:08:41 ----A---- C:\Windows\system32\NlsData0039.dll
2008-06-11 19:08:41 ----A---- C:\Windows\system32\NlsData0020.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\winrs.exe
2008-06-11 19:08:40 ----A---- C:\Windows\system32\odbcjt32.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\NlsData0816.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\NlsData003e.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\NlsData002a.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\NlsData0022.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\NlsData0021.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\NAPSTAT.EXE
2008-06-11 19:08:39 ----A---- C:\Windows\system32\NlsData0026.dll
2008-06-11 19:08:39 ----A---- C:\Windows\system32\NlsData001d.dll
2008-06-11 19:08:39 ----A---- C:\Windows\system32\NlsData0019.dll
2008-06-11 19:08:39 ----A---- C:\Windows\system32\NlsData0010.dll
2008-06-11 19:08:38 ----A---- C:\Windows\system32\NlsData0027.dll
2008-06-11 19:08:38 ----A---- C:\Windows\system32\NlsData0024.dll
2008-06-11 19:08:38 ----A---- C:\Windows\system32\NlsData000d.dll
2008-06-11 19:08:38 ----A---- C:\Windows\system32\NlsData0001.dll
2008-06-11 19:08:37 ----A---- C:\Windows\system32\prnntfy.dll
2008-06-11 19:08:37 ----A---- C:\Windows\system32\NlsData081a.dll
2008-06-11 19:08:37 ----A---- C:\Windows\system32\NlsData0013.dll
2008-06-11 19:08:37 ----A---- C:\Windows\system32\NlsData0003.dll
2008-06-11 19:08:37 ----A---- C:\Windows\system32\NlsData0002.dll
2008-06-11 19:08:35 ----A---- C:\Windows\system32\mblctr.exe
2008-06-11 19:08:34 ----A---- C:\Windows\system32\schtasks.exe
2008-06-11 19:08:34 ----A---- C:\Windows\system32\RelMon.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\pdh.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\msfeeds.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\iasacct.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\dmdlgs.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\dhcpsapi.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\cryptsvc.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\activeds.dll
2008-06-11 19:08:33 ----A---- C:\Windows\system32\TSpkg.dll
2008-06-11 19:08:33 ----A---- C:\Windows\system32\netdiagfx.dll
2008-06-11 19:08:33 ----A---- C:\Windows\system32\FirewallControlPanel.exe
2008-06-11 19:08:33 ----A---- C:\Windows\system32\fdWCN.dll
2008-06-11 19:08:33 ----A---- C:\Windows\system32\dfrgfat.exe
2008-06-11 19:08:33 ----A---- C:\Windows\system32\catsrv.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\wvc.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\wow32.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\winrm.vbs
2008-06-11 19:08:32 ----A---- C:\Windows\system32\rastapi.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\qwave.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\netcorehc.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\NAPHLPR.DLL
2008-06-11 19:08:32 ----A---- C:\Windows\system32\msacm32.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\ifmon.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\dot3msm.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\dot3cfg.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\AudioSes.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\wudriver.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\wscntfy.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\shsetup.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\ntshrui.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\msdt.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\els.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\clbcatq.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\adsldp.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\stobject.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\sdrsvc.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\QUTIL.DLL
2008-06-11 19:08:30 ----A---- C:\Windows\system32\psisdecd.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\net1.exe
2008-06-11 19:08:30 ----A---- C:\Windows\system32\ipnathlp.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\iasrecst.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\iasdatastore.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\fdSSDP.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\dsprop.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\wlgpclnt.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\wlanui.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\upnphost.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\systemcpl.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\smss.exe
2008-06-11 19:08:29 ----A---- C:\Windows\system32\rasman.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\nci.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\mprmsg.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\Defrag.exe
2008-06-11 19:08:29 ----A---- C:\Windows\system32\adsldpc.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\ActiveContentWizard.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\Wpc.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\wdigest.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\t2embed.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\setupcl.exe
2008-06-11 19:08:28 ----A---- C:\Windows\system32\rascfg.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\P2P.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\oleprn.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\msftedit.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\MigAutoPlay.exe

hacim

2008-08-30, 21:20

RSIT log continued

2008-06-11 19:08:28 ----A---- C:\Windows\system32\loghours.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\L2SecHC.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\fde.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\dxdiag.exe
2008-06-11 19:08:28 ----A---- C:\Windows\system32\DFDWiz.exe
2008-06-11 19:08:28 ----A---- C:\Windows\system32\CompatUI.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\wiaservc.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\scansetting.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\rtm.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2008-06-11 19:08:27 ----A---- C:\Windows\system32\msutb.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\mprdim.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\gpapi.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\devmgr.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\wdi.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\msihnd.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\kdusb.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\ifsutil.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\dimsroam.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\CertEnrollUI.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\actxprxy.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\wscapi.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\wlandlg.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\WinFXDocObj.exe
2008-06-11 19:08:25 ----A---- C:\Windows\system32\vssadmin.exe
2008-06-11 19:08:25 ----A---- C:\Windows\system32\usbmon.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\SyncCenter.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\spoolsv.exe
2008-06-11 19:08:25 ----A---- C:\Windows\system32\regapi.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\mycomput.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\mswmdm.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\msls31.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\imagehlp.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\BOOTVID.DLL
2008-06-11 19:08:25 ----A---- C:\Windows\system32\audiodg.exe
2008-06-11 19:08:24 ----A---- C:\Windows\system32\uudf.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\sud.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\scecli.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\SCardSvr.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\newdev.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\mstask.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\mspaint.exe
2008-06-11 19:08:24 ----A---- C:\Windows\system32\kdcom.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\termmgr.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\tapisrv.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\ssdpsrv.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\SLUINotify.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\samlib.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\Robocopy.exe
2008-06-11 19:08:23 ----A---- C:\Windows\system32\puiapi.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\mtxoci.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\input.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\inetpp.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\duser.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\cic.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\AzSqlExt.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\adtschema.dll
2008-06-11 19:08:22 ----A---- C:\Windows\system32\wisptis.exe
2008-06-11 19:08:22 ----A---- C:\Windows\system32\sdshext.dll
2008-06-11 19:08:22 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2008-06-11 19:08:22 ----A---- C:\Windows\system32\netiohlp.dll
2008-06-11 19:08:22 ----A---- C:\Windows\system32\iasads.dll
2008-06-11 19:08:22 ----A---- C:\Windows\system32\cscapi.dll
2008-06-11 19:08:22 ----A---- C:\Windows\system32\authz.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\WUDFPlatform.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\wpcsvc.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\webcheck.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\verifier.exe
2008-06-11 19:08:21 ----A---- C:\Windows\system32\themeui.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\slcinst.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\NlsData0000.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\msdtclog.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\msdt.exe
2008-06-11 19:08:21 ----A---- C:\Windows\system32\dxtmsft.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\d3d8.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\cmdial32.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\wpccpl.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\WMPhoto.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\wintrust.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\vdsldr.exe
2008-06-11 19:08:20 ----A---- C:\Windows\system32\SndVol.exe
2008-06-11 19:08:20 ----A---- C:\Windows\system32\rasgcw.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\pnpsetup.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\oledlg.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\ntmarta.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\mmcbase.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\mlang.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\icfupgd.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\icardie.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\clfsw32.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\wpd_ci.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\syssetup.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\slmgr.vbs
2008-06-11 19:08:19 ----A---- C:\Windows\system32\rasqec.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\polstore.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\nslookup.exe
2008-06-11 19:08:19 ----A---- C:\Windows\system32\ncobjapi.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\msrd3x40.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\msaatext.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\mpr.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\ieui.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\diskraid.exe
2008-06-11 19:08:19 ----A---- C:\Windows\system32\accessibilitycpl.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\wtsapi32.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\unlodctr.exe
2008-06-11 19:08:18 ----A---- C:\Windows\system32\ulib.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\sethc.exe
2008-06-11 19:08:18 ----A---- C:\Windows\system32\pnpui.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\oobefldr.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\mscms.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\lodctr.exe
2008-06-11 19:08:18 ----A---- C:\Windows\system32\iaspolcy.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\fontsub.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\extmgr.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\dxdiagn.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\cabinet.dll
2008-06-11 19:08:17 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2008-06-11 19:08:17 ----A---- C:\Windows\system32\Utilman.exe
2008-06-11 19:08:17 ----A---- C:\Windows\system32\unattend.dll
2008-06-11 19:08:17 ----A---- C:\Windows\system32\trkwks.dll
2008-06-11 19:08:17 ----A---- C:\Windows\system32\scesrv.dll
2008-06-11 19:08:17 ----A---- C:\Windows\system32\ogldrv.dll
2008-06-11 19:08:17 ----A---- C:\Windows\system32\occache.dll
2008-06-11 19:08:17 ----A---- C:\Windows\system32\lnkstub.exe
2008-06-11 19:08:17 ----A---- C:\Windows\system32\cabview.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\wups2.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\wpcao.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\wermgr.exe
2008-06-11 19:08:16 ----A---- C:\Windows\system32\sdspres.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\p2pcollab.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\msnetobj.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\iepeers.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\ieaksie.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\eappgnui.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\dsquery.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\drvinst.exe
2008-06-11 19:08:16 ----A---- C:\Windows\system32\dispdiag.exe
2008-06-11 19:08:16 ----A---- C:\Windows\system32\DHCPQEC.DLL
2008-06-11 19:08:16 ----A---- C:\Windows\system32\dfdts.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\bthci.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\basesrv.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\verifier.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\secproc_ssp.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\RstrtMgr.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\mprapi.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\mmcss.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\efsadu.dll
2008-06-11 19:08:14 ----A---- C:\Windows\system32\WPDSp.dll
2008-06-11 19:08:14 ----A---- C:\Windows\system32\WMVENCOD.DLL
2008-06-11 19:08:14 ----A---- C:\Windows\system32\wmpeffects.dll
2008-06-11 19:08:14 ----A---- C:\Windows\system32\wercplsupport.dll
2008-06-11 19:08:14 ----A---- C:\Windows\system32\qedit.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\wiascanprofiles.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\wiaaut.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\setupugc.exe
2008-06-11 19:08:13 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2008-06-11 19:08:13 ----A---- C:\Windows\system32\pnrpnsp.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\pngfilt.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\p2pnetsh.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\networkmap.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\msoeacct.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\iscsiexe.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\icacls.exe
2008-06-11 19:08:13 ----A---- C:\Windows\system32\d3d10core.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\consent.exe
2008-06-11 19:08:12 ----A---- C:\Windows\system32\xactsrv.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\wuauclt.exe
2008-06-11 19:08:12 ----A---- C:\Windows\system32\usercpl.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\PNPXAssoc.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\pcadm.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\msrdc.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\msdmo.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\lsass.exe
2008-06-11 19:08:12 ----A---- C:\Windows\system32\lpk.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\eappprxy.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\drmmgrtn.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\dpapimig.exe
2008-06-11 19:08:12 ----A---- C:\Windows\system32\conime.exe
2008-06-11 19:08:12 ----A---- C:\Windows\system32\autoplay.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\xwizards.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\systeminfo.exe
2008-06-11 19:08:11 ----A---- C:\Windows\system32\resutils.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\netcfg.exe
2008-06-11 19:08:11 ----A---- C:\Windows\system32\msrating.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\mfplat.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\findstr.exe
2008-06-11 19:08:11 ----A---- C:\Windows\system32\DWWIN.EXE
2008-06-11 19:08:11 ----A---- C:\Windows\system32\dssec.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\dot3ui.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\dfrgifc.exe
2008-06-11 19:08:11 ----A---- C:\Windows\system32\cmdl32.exe
2008-06-11 19:08:11 ----A---- C:\Windows\system32\alg.exe
2008-06-11 19:08:10 ----A---- C:\Windows\system32\txflog.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\powercpl.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\odbc32.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\nshhttp.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\netprof.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2008-06-11 19:08:10 ----A---- C:\Windows\system32\imm32.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\feclient.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\dbnetlib.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\btpanui.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\apircl.dll
2008-06-11 19:08:10 ----A---- C:\Windows\regedit.exe
2008-06-11 19:08:09 ----A---- C:\Windows\system32\tbssvc.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\taskkill.exe
2008-06-11 19:08:09 ----A---- C:\Windows\system32\svchost.exe
2008-06-11 19:08:09 ----A---- C:\Windows\system32\RASMM.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\provthrd.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\msieftp.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\iexpress.exe
2008-06-11 19:08:09 ----A---- C:\Windows\system32\dxva2.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\dwmapi.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\d3d10.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\bcdprov.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\ActionQueue.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\syncui.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\slwmi.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\SLCExt.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\slcc.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\shwebsvc.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\networkexplorer.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\EAPQEC.DLL
2008-06-11 19:08:08 ----A---- C:\Windows\system32\dmocx.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\xcopy.exe
2008-06-11 19:08:07 ----A---- C:\Windows\system32\WMASF.DLL
2008-06-11 19:08:07 ----A---- C:\Windows\system32\uxsms.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\taskmgr.exe
2008-06-11 19:08:07 ----A---- C:\Windows\system32\raserver.exe
2008-06-11 19:08:07 ----A---- C:\Windows\system32\PnPUnattend.exe
2008-06-11 19:08:07 ----A---- C:\Windows\system32\olepro32.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\ias.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\dnscacheugc.exe
2008-06-11 19:08:07 ----A---- C:\Windows\system32\connect.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\brcplsdw.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\audiodev.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\aclui.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\wlanext.exe
2008-06-11 19:08:06 ----A---- C:\Windows\system32\upnp.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\UIHub.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\reg.exe
2008-06-11 19:08:06 ----A---- C:\Windows\system32\QCLIPROV.DLL
2008-06-11 19:08:06 ----A---- C:\Windows\system32\perfts.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\NapiNSP.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\msoert2.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\msjetoledb40.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\mountvol.exe
2008-06-11 19:08:06 ----A---- C:\Windows\system32\mmcshext.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\icsfiltr.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\cmstp.exe
2008-06-11 19:08:06 ----A---- C:\Windows\system32\certprop.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\browser.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\AuxiliaryDisplayApi.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\atl.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\appinfo.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\wuapp.exe
2008-06-11 19:08:05 ----A---- C:\Windows\system32\WpdMtpUS.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\WMVXENCD.DLL
2008-06-11 19:08:05 ----A---- C:\Windows\system32\wmpdxm.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\SysFxUI.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\SoundRecorder.exe
2008-06-11 19:08:05 ----A---- C:\Windows\system32\rekeywiz.exe
2008-06-11 19:08:05 ----A---- C:\Windows\system32\qcap.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\qasf.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\PING.EXE
2008-06-11 19:08:05 ----A---- C:\Windows\system32\netplwiz.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\inetmib1.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\ieakeng.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\httpapi.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\dsuiext.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\dskquoui.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\dmusic.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\cewmdm.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\bitsadmin.exe
2008-06-11 19:08:04 ----A---- C:\Windows\system32\xwtpw32.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\WUDFSvc.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\WMVSENCD.DLL
2008-06-11 19:08:04 ----A---- C:\Windows\system32\wmpsrcwp.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\shimgvw.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\Sens.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\SecEdit.exe
2008-06-11 19:08:04 ----A---- C:\Windows\system32\sbeio.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\ndfapi.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\mtstocom.exe
2008-06-11 19:08:04 ----A---- C:\Windows\system32\mscandui.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\makecab.exe
2008-06-11 19:08:04 ----A---- C:\Windows\system32\lsmproxy.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\dot3gpclnt.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\batt.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\auditpol.exe
2008-06-11 19:08:04 ----A---- C:\Windows\system32\adsmsext.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\wzcdlg.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\wscmisetup.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\wiashext.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\wiadefui.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\userinit.exe
2008-06-11 19:08:03 ----A---- C:\Windows\system32\sppnp.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\shacct.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\seclogon.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\printcom.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\p2phost.exe
2008-06-11 19:08:03 ----A---- C:\Windows\system32\msorcl32.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\msdadiag.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\dxtrans.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\apss.dll
2008-06-11 19:08:02 ----A---- C:\Windows\system32\wpdwcn.dll
2008-06-11 19:08:02 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2008-06-11 19:08:02 ----A---- C:\Windows\system32\sxstrace.exe
2008-06-11 19:08:02 ----A---- C:\Windows\system32\perfmon.exe
2008-06-11 19:08:02 ----A---- C:\Windows\system32\napipsec.dll
2008-06-11 19:08:00 ----A---- C:\Windows\system32\HelpPaneProxy.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\wups.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\winrshost.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\UIAutomationCore.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\tasklist.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\TapiMigPlugin.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\rrinstaller.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\prntvpt.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\notepad.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\netiougc.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\msiexec.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\MP4SDECD.DLL
2008-06-11 19:07:59 ----A---- C:\Windows\system32\ktmutil.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\keymgr.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\ftp.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\fmifs.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\d3dim700.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\csrsrv.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\colorui.dll
2008-06-11 19:07:59 ----A---- C:\Windows\notepad.exe
2008-06-11 19:07:58 ----A---- C:\Windows\system32\wscproxystub.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\wpdbusenum.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\wmiprop.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\winethc.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\txfw32.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\takeown.exe
2008-06-11 19:07:58 ----A---- C:\Windows\system32\rasplap.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\powrprof.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\pots.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\PnPutil.exe
2008-06-11 19:07:58 ----A---- C:\Windows\system32\pcasvc.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\nshipsec.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\msimtf.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\mfps.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\logagent.exe
2008-06-11 19:07:58 ----A---- C:\Windows\system32\inseng.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\findnetprinters.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\driverquery.exe
2008-06-11 19:07:58 ----A---- C:\Windows\system32\cryptdll.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\capisp.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\WLanHC.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\wextract.exe
2008-06-11 19:07:57 ----A---- C:\Windows\system32\TMM.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\shrpubw.exe
2008-06-11 19:07:57 ----A---- C:\Windows\system32\shgina.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\sfc_os.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\sendmail.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\runonce.exe
2008-06-11 19:07:57 ----A---- C:\Windows\system32\rshx32.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\RpcPing.exe
2008-06-11 19:07:57 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2008-06-11 19:07:57 ----A---- C:\Windows\system32\perfnet.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\olecli32.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\nsisvc.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\mfpmp.exe
2008-06-11 19:07:57 ----A---- C:\Windows\system32\luainstall.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\ktmw32.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\imapi.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\fsutil.exe
2008-06-11 19:07:57 ----A---- C:\Windows\system32\fdPHost.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\dnshc.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\d3dim.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\compstui.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\cmmon32.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\WMADMOE.DLL
2008-06-11 19:07:56 ----A---- C:\Windows\system32\wiaacmgr.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\w32tm.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\version.dll
2008-06-11 19:07:56 ----A---- C:\Windows\system32\unregmp2.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\UI0Detect.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\tscupgrd.exe

2008-06-11 19:07:56 ----A---- C:\Windows\system32\net.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\msvfw32.dll
2008-06-11 19:07:56 ----A---- C:\Windows\system32\MPG4DECD.DLL
2008-06-11 19:07:56 ----A---- C:\Windows\system32\MP43DECD.DLL
2008-06-11 19:07:56 ----A---- C:\Windows\system32\mdminst.dll
2008-06-11 19:07:56 ----A---- C:\Windows\system32\imgutil.dll
2008-06-11 19:07:56 ----A---- C:\Windows\system32\getmac.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\dsauth.dll
2008-06-11 19:07:56 ----A---- C:\Windows\system32\dimsjob.dll
2008-06-11 19:07:56 ----A---- C:\Windows\system32\cmlua.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\wmpshell.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\sfc.exe
2008-06-11 19:07:55 ----A---- C:\Windows\system32\sdchange.exe
2008-06-11 19:07:55 ----A---- C:\Windows\system32\PortableDeviceWiaCompat.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\pnpts.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\migisol.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\ipconfig.exe
2008-06-11 19:07:55 ----A---- C:\Windows\system32\fdeploy.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\dispci.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\dinput8.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\diantz.exe
2008-06-11 19:07:55 ----A---- C:\Windows\system32\credui.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\comrepl.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\cmutil.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\ACW.exe
2008-06-11 19:07:54 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2008-06-11 19:07:54 ----A---- C:\Windows\system32\wmvdspa.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\wmidx.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\vdmredir.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\utildll.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\TSTheme.exe
2008-06-11 19:07:54 ----A---- C:\Windows\system32\TpmInit.exe
2008-06-11 19:07:54 ----A---- C:\Windows\system32\softkbd.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\remotepg.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\pdhui.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\nlaapi.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\msfeedsbs.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\modemui.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\McxDriv.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\iernonce.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\hlink.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\fwcfg.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\ExplorerFrame.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\expand.exe
2008-06-11 19:07:54 ----A---- C:\Windows\system32\EncDump.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\colbact.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\cfgbkend.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\bridgeunattend.exe
2008-06-11 19:07:54 ----A---- C:\Windows\system32\amstream.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\wsnmp32.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\wpnpinst.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\wmpcm.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\wfapigp.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\waitfor.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\vds_ps.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\tabcal.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\sti_ci.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\shutdown.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\rdrleakdiag.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\rasauto.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\qdv.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\osblprov.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\olethk32.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\olesvr32.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\odbccp32.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\msdtc.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\mfvdsp.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\logman.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\iscsiwmi.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\iscsium.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\esentutl.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\dpnet.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\DpiScaling.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\dmsynth.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\COLORCNV.DLL
2008-06-11 19:07:53 ----A---- C:\Windows\system32\cmcfg32.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\cacls.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\bootcfg.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\admparse.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\xmlprovi.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\WpdConns.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\werdiagcontroller.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\wavemsp.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\ufat.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\ucsvc.exe
2008-06-11 19:07:52 ----A---- C:\Windows\system32\sxproxy.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\SLLUA.exe
2008-06-11 19:07:52 ----A---- C:\Windows\system32\rgb9rast.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\RegCtrl.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\odbctrac.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\networkitemfactory.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\mstext40.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\mshta.exe
2008-06-11 19:07:52 ----A---- C:\Windows\system32\msctfui.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\licmgr10.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\itss.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\convert.exe
2008-06-11 19:07:52 ----A---- C:\Windows\system32\at.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\winnsi.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\unattendedjoin.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\TimeDateMUICallback.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\tbs.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\setupcln.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\rasdiag.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\prevhost.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\ocsetup.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\netbtugc.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\mydocs.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\mobsync.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\l2gpstore.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\iscsied.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\GuidedHelp.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\fphc.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\dskquota.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\dmime.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\csrstub.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\cscdll.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\cmpbk32.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\bitsigd.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\AuthFWGP.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\AtBroker.exe
2008-06-11 19:07:50 ----A---- C:\Windows\system32\wpclsp.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\WINSRPC.DLL
2008-06-11 19:07:50 ----A---- C:\Windows\system32\vss_ps.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\VIDRESZR.DLL
2008-06-11 19:07:50 ----A---- C:\Windows\system32\usbui.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\upnpcont.exe
2008-06-11 19:07:50 ----A---- C:\Windows\system32\srwmi.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\regini.exe
2008-06-11 19:07:50 ----A---- C:\Windows\system32\RacAgent.exe
2008-06-11 19:07:50 ----A---- C:\Windows\system32\odbccu32.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\odbccr32.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\nsi.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\nbtstat.exe
2008-06-11 19:07:50 ----A---- C:\Windows\system32\napdsnap.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\mtxlegih.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\mtxdm.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\msident.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\msdart.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\mfcsubs.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\graftabl.com
2008-06-11 19:07:50 ----A---- C:\Windows\system32\gpupdate.exe
2008-06-11 19:07:50 ----A---- C:\Windows\system32\dsdmo.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\dot3dlg.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\devenum.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\cmstplua.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\avrt.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\apilogen.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\amxread.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\wsock32.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\wiarpc.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\WavDest.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\vfwwdm32.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\syskey.exe
2008-06-11 19:07:49 ----A---- C:\Windows\system32\ROUTE.EXE
2008-06-11 19:07:49 ----A---- C:\Windows\system32\rasphone.exe
2008-06-11 19:07:49 ----A---- C:\Windows\system32\procinst.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\odbcbcp.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\netevent.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\ndfetw.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\msexcl40.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\MP3DMOD.DLL
2008-06-11 19:07:49 ----A---- C:\Windows\system32\extrac32.exe
2008-06-11 19:07:49 ----A---- C:\Windows\system32\eventcls.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\WlanMmHC.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2008-06-11 19:07:48 ----A---- C:\Windows\system32\wiadss.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\TabbtnEx.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\Tabbtn.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\psbase.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\msxbde40.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\inetppui.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\dmscript.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\dmloader.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\d3dxof.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\csrss.exe
2008-06-11 19:07:48 ----A---- C:\Windows\system32\CertEnrollCtrl.exe
2008-06-11 19:07:48 ----A---- C:\Windows\system32\cdd.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\atmfd.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-06-11 19:07:48 ----A---- C:\Windows\fveupdate.exe
2008-06-11 19:07:47 ----A---- C:\Windows\system32\wshcon.dll
2008-06-11 19:07:47 ----A---- C:\Windows\system32\PlaySndSrv.dll
2008-06-11 19:07:47 ----A---- C:\Windows\system32\Netplwiz.exe
2008-06-11 19:07:47 ----A---- C:\Windows\system32\mspbde40.dll
2008-06-11 19:07:47 ----A---- C:\Windows\system32\msltus40.dll
2008-06-11 19:07:47 ----A---- C:\Windows\system32\icsunattend.exe
2008-06-11 19:07:47 ----A---- C:\Windows\system32\credssp.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\WsmRes.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\WSHTCPIP.DLL
2008-06-11 19:07:46 ----A---- C:\Windows\system32\wship6.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\tcpmon.ini
2008-06-11 19:07:46 ----A---- C:\Windows\system32\sxsstore.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\slwga.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\setupSNK.exe
2008-06-11 19:07:46 ----A---- C:\Windows\system32\sbunattend.exe
2008-06-11 19:07:46 ----A---- C:\Windows\system32\OptionalFeatures.exe
2008-06-11 19:07:46 ----A---- C:\Windows\system32\msvidc32.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\localui.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\lltdapi.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\icaapi.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\dmutil.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\ComputerDefaults.exe
2008-06-11 19:07:45 ----A---- C:\Windows\system32\usbperf.dll
2008-06-11 19:07:45 ----A---- C:\Windows\system32\spopk.dll
2008-06-11 19:07:45 ----A---- C:\Windows\system32\serialui.dll
2008-06-11 19:07:45 ----A---- C:\Windows\system32\odbcconf.dll
2008-06-11 19:07:45 ----A---- C:\Windows\system32\NcdProp.dll
2008-06-11 19:07:45 ----A---- C:\Windows\system32\cofiredm.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\rasctrs.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\msobjs.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\msfeedssync.exe
2008-06-11 19:07:44 ----A---- C:\Windows\system32\midimap.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\ieencode.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\hnetmon.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\hbaapi.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\corpol.dll
2008-06-11 19:07:43 ----A---- C:\Windows\system32\winipsec.dll
2008-06-11 19:07:43 ----A---- C:\Windows\system32\vdmdbg.dll
2008-06-11 19:07:43 ----A---- C:\Windows\system32\url.dll
2008-06-11 19:07:43 ----A---- C:\Windows\system32\nlsbres.dll
2008-06-11 19:07:43 ----A---- C:\Windows\system32\LogonUI.exe
2008-06-11 19:07:43 ----A---- C:\Windows\system32\iprtprio.dll
2008-06-11 19:07:43 ----A---- C:\Windows\system32\InfDefaultInstall.exe
2008-06-11 19:07:43 ----A---- C:\Windows\system32\esentprf.dll
2008-06-11 19:07:42 ----A---- C:\Windows\system32\osbaseln.dll
2008-06-11 19:07:42 ----A---- C:\Windows\system32\msisip.dll
2008-06-11 19:07:42 ----A---- C:\Windows\system32\cfgmgr32.dll
2008-06-11 19:07:41 ----A---- C:\Windows\system32\winusb.dll
2008-06-11 19:07:41 ----A---- C:\Windows\system32\rdpcfgex.dll
2008-06-11 19:07:41 ----A---- C:\Windows\system32\msmmsp.dll
2008-06-11 19:07:41 ----A---- C:\Windows\system32\dispex.dll
2008-06-11 19:07:39 ----A---- C:\Windows\system32\riched32.dll
2008-06-11 19:07:39 ----A---- C:\Windows\system32\Nlsdl.dll
2008-06-11 19:07:39 ----A---- C:\Windows\system32\msidle.dll
2008-06-11 19:07:39 ----A---- C:\Windows\system32\idndl.dll
2008-06-11 19:07:38 ----A---- C:\Windows\system32\spwmp.dll
2008-06-11 19:07:37 ----A---- C:\Windows\system32\KBDKOR.DLL
2008-06-11 19:07:37 ----A---- C:\Windows\system32\KBDJPN.DLL
2008-06-11 19:07:37 ----A---- C:\Windows\system32\iscsilog.dll
2008-06-11 19:07:34 ----A---- C:\Windows\system32\WsmCl.dll
2008-06-11 19:07:34 ----A---- C:\Windows\system32\wmploc.DLL
2008-06-11 19:07:34 ----A---- C:\Windows\system32\vga256.dll
2008-06-11 19:07:34 ----A---- C:\Windows\system32\tsddd.dll
2008-06-11 19:07:34 ----A---- C:\Windows\system32\framebuf.dll
2008-06-11 19:07:34 ----A---- C:\Windows\system32\dxmasf.dll
2008-06-11 19:07:33 ----A---- C:\Windows\system32\vga64k.dll
2008-06-11 19:07:33 ----A---- C:\Windows\system32\vga.dll
2008-06-11 19:07:33 ----A---- C:\Windows\system32\spwizres.dll
2008-06-11 19:07:33 ----A---- C:\Windows\system32\f3ahvoas.dll
2008-06-11 19:07:33 ----A---- C:\Windows\system32\dmdskres2.dll
2008-06-11 19:07:33 ----A---- C:\Windows\system32\bootstr.dll
2008-06-11 19:07:31 ----A---- C:\Windows\system32\gatherWiredInfo.vbs
2008-06-11 19:07:30 ----A---- C:\Windows\system32\gatherWirelessInfo.vbs
2008-06-11 19:07:30 ----A---- C:\Windows\system32\fsmgmt.msc
2008-06-11 19:07:27 ----A---- C:\Windows\system32\perfmon.msc
2008-06-11 19:07:26 ----A---- C:\Windows\system32\vsp1cln.exe
2008-06-11 19:06:46 ----A---- C:\Windows\system32\xmllite.dll
2008-06-11 19:06:42 ----A---- C:\Windows\system32\wbemcomn.dll
2008-06-11 19:06:21 ----A---- C:\Windows\system32\SmiInstaller.dll
2008-06-11 19:06:20 ----A---- C:\Windows\system32\SmiEngine.dll
2008-06-11 19:06:08 ----A---- C:\Windows\system32\wdscore.dll
2008-06-11 19:06:08 ----A---- C:\Windows\system32\PkgMgr.exe
2008-06-11 19:05:19 ----A---- C:\Windows\system32\drvstore.dll
2008-06-11 19:05:16 ----A---- C:\Windows\system32\dpx.dll
2008-06-11 19:05:15 ----A---- C:\Windows\system32\mspatcha.dll
2008-06-11 19:05:15 ----A---- C:\Windows\system32\msdelta.dll
2008-06-11 17:02:16 ----A---- C:\Windows\system32\RacEngn.dll
2008-06-11 17:02:07 ----A---- C:\Windows\system32\quartz.dll
2008-06-01 16:20:13 ----A---- C:\Windows\War3Unin.exe
2008-06-01 16:17:43 ----D---- C:\Program Files\Warcraft III

hacim

2008-08-30, 21:22

RSIT log end

List of drivers

R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2008-01-19 95744]
R2 nxsIO32;NextSensor Kernel I/O Driver; \??\C:\Windows\System32\DRIVERS\nxsIO32.sys [2008-02-19 2208]
R3 GEARAspiWDM;GEARAspiWDM; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]
R3 irsir;Microsoft Serial Infrared Driver; C:\Windows\system32\DRIVERS\irsir.sys [2008-01-19 20992]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-11-18 1040544]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2007-12-11 8238688]
R3 P17;SB Live! 24-bit; C:\Windows\system32\drivers\P17.sys [2007-06-13 1131520]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S3 AmdLLD;AMD Low Level Device Driver; C:\Windows\system32\DRIVERS\AmdLLD.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 ENTECH;ENTECH; \??\C:\Windows\system32\DRIVERS\ENTECH.sys [2007-10-11 27672]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 Inspect;Comodo Firewall Network Driver; C:\Windows\system32\DRIVERS\inspect.sys []
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RtkHDAud.sys []
S3 krait03;Razer krait USB Filter Driver; C:\Windows\System32\Drivers\krait.sys [2005-12-07 13324]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2008-07-10 32000]
S3 usbaudio;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2008-01-19 73088]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\system32\drivers\wmiacpi.sys []

List of services

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-07-22 116040]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2007-12-24 66872]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2008-01-28 810320]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-07-30 532264]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2008-08-11 87288]

-----------------EOF-----------------

Shaba

2008-08-30, 21:25

Please post also extras.txt, it is in c:\rsit folder :)

hacim

2008-08-31, 08:16

Sorry, I thought I had all of them. :lip: Here is the requested extra.txt haha

info.txt logfile of random's system information tool 2008-08-30 14:00:52

Uninstall list

-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9 /remove
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA9944C8-7D34-475E-8C90-2788685B2C47}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA9944C8-7D34-475E-8C90-2788685B2C47}\setup.exe" -l0x9 /remove
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AAEF329E-F353-46C9-933D-24A571986093}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AAEF329E-F353-46C9-933D-24A571986093}\setup.exe" -l0x9 /remove
Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81200000003}
Adobe Shockwave Player-->C:\Windows\System32\Macromed\SHOCKW~1\UNWISE.EXE C:\Windows\System32\Macromed\SHOCKW~1\Install.log
Apple Mobile Device Support-->MsiExec.exe /I{49C88E44-1B38-4FC6-824E-2BDA3063B0E3}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Battlefield 1942: Secret Weapons of WWII-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B73B4A99-4173-4747-BBEC-0F05E966F9D2}\setup.exe" -l0x9
Battlefield 1942: The Road To Rome-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D057AA08-8CBF-42E3-9EAB-23B8FED1C279}\setup.exe" -l0x9
Battlefield 1942-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{698D7E61-E4BF-4CA6-8A09-CF6BDBFDEF65}\setup.exe" -l0x9
Battlefield 2(TM)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\setup.exe" -l0x9 -removeonly
Battlefield Vietnam(TM)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E35B3C63-E958-4E31-A178-95D22024109A}\setup.exe" -l0x9
Battlefield Vietnam: WW2 Mod-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F989306B-9287-444F-AE73-E30C7E4AF0F5}\setup.exe" -l0x9
Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}
Call of Duty(R) 2-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{D0A05794-48C2-4424-A15A-9F20FCFDD374} /l1033
Command & Conquer Generals-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{06F80017-8F98-4C94-B868-52358569FC32}
Command and ConquerTM Generals Zero Hour-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}
Counter-Strike: Source-->"C:\Program Files\Steam\steam.exe" steam://uninstall/240
Creative Audio Console-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9 /remove
Day of Defeat: Source-->"C:\Program Files\Steam\steam.exe" steam://uninstall/300
DesertCombat 0.7-->C:\Windows\iun6002.exe "C:\Program Files\EA GAMES\Battlefield 1942\DesertCombat.ini"
FEAR-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2B653229-9854-4989-B780-D978F5F13EAB}\setup.exe" -l0x9 /zU -removeonly
Fraps-->"C:\Fraps\uninstall.exe"
Futuremark SystemInfo-->C:\Program Files\InstallShield Installation Information\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}\setup.exe -runfromtemp -l0x0009 -removeonly
GTK+ Runtime 2.12.1 rev b (remove only)-->C:\Program Files\Common Files\GTK\2.0\uninst.exe
Half-Life 2: Deathmatch-->"C:\Program Files\Steam\steam.exe" steam://uninstall/320
Half-Life 2: Lost Coast-->"C:\Program Files\Steam\steam.exe" steam://uninstall/340
Insurgency ( Remove only)-->"c:\program files\steam\SteamApps\SourceMods\Insurgency\uninstall.exe"
IrfanView (remove only)-->C:\Program Files\IrfanView\iv_uninstall.exe
iTunes-->MsiExec.exe /I{3DE0053C-FD9A-483E-B7C9-B06E4392206E}
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
Java(TM) SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MediaWidget 4.0-->"C:\Program Files\Media Widget\unins000.exe"
Miracle C Shareware Package-->MsiExec.exe /I{08C5E3B0-3402-4AF5-8656-2D76B80FB6ED}
mIRC-->"C:\Program Files\mIRC\mirc.exe" -uninstall
Mozilla Firefox (2.0.0.16)-->C:\PROGRA~1\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (2.0.0.16)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
NVIDIA Drivers-->C:\Windows\system32\nvuninst.exe UninstallGUI
Pidgin-->C:\Program Files\Pidgin\pidgin-uninst.exe
PunkBuster for Battlefield 1942-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{127B684B-A002-44C8-99A7-6CF8F1E26873}\setup.exe" -l0x9
PunkBuster for Battlefield Vietnam-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D07643A3-CE41-4286-8C78-EB9C83E76DDB}\setup.exe" -l0x9
QuickTime-->MsiExec.exe /I{08CA9554-B5FE-4313-938F-D4A417B81175}
Razer Krait-->C:\Program Files\InstallShield Installation Information\{E6DA58C0-4EC5-4F5E-B73E-2F22ED30ACFC}\setup.exe -runfromtemp -l0x0009 -removeonly
RealPlayer-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Ricochet-->"C:\Program Files\Steam\steam.exe" steam://uninstall/60
Source SDK Base-->"C:\Program Files\Steam\steam.exe" steam://uninstall/215
Source SDK-->"C:\Program Files\Steam\steam.exe" steam://uninstall/211
Spybot - Search & Destroy 1.5.2.20-->"C:\Windows\unins000.exe"
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Starcraft-->C:\Windows\SCunin.exe C:\Windows\SCunin.dat
Steam-->C:\PROGRA~1\Steam\UNWISE.EXE C:\PROGRA~1\Steam\INSTALL.LOG
Team Fortress 2-->"C:\Program Files\Steam\steam.exe" steam://uninstall/440
Unlocker 1.8.5-->C:\Program Files\Unlocker\uninst.exe
Ventrilo Client-->MsiExec.exe /I{789289CA-F73A-4A16-A331-54D498CE069F}
VeohTV BETA-->C:\Program Files\InstallShield Installation Information\{0405E51E-9582-4207-8F38-AC44201D3808}\setup.exe -runfromtemp -l0x0409
Vuze-->J:\Vuze\uninstall.exe
Warcraft III-->C:\Windows\War3Unin.exe C:\Windows\War3Unin.dat
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
World of Warcraft-->C:\Program Files\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe
Xfire (remove only)-->"C:\Program Files\Xfire\uninst.exe"

Hosts File

127.0.0.1 babe.the-killer.bz
127.0.0.1 www.babe.the-killer.bz
127.0.0.1 babe.k-lined.com
127.0.0.1 www.babe.k-lined.com
127.0.0.1 did.i-used.cc
127.0.0.1 www.did.i-used.cc
127.0.0.1 coolwwwsearch.com
127.0.0.1 www.coolwwwsearch.com
127.0.0.1 coolwebsearch.com
127.0.0.1 www.coolwebsearch.com

Security center information

FW: COMODO Firewall Pro
AS: Spybot - Search and Destroy (disabled) (outdated)
AS: Windows Defender

Environment variables

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 75 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=4b02
"NUMBER_OF_PROCESSORS"=2
"sourcesdk"=c:\program files\steam\steamapps\invent1337\sourcesdk
"VProject"=c:\program files\steam\steamapps\invent1337\half-life 2 deathmatch\hl2mp
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip

-----------------EOF-----------------

Shaba

2008-08-31, 11:00

IMPORTANT I notice there are signs of one or more P2P (Peer to Peer) File Sharing Programs on your computer.

Vuze

I'd like you to read the this thread (http://forums.spybot.info/showthread.php?t=282).

Please go to Control Panel > Add/Remove Programs and uninstall the programs listed above (in red).

Uninstall also these:

Java(TM) 6 Update 2
Java(TM) 6 Update 3
Java(TM) 6 Update 5
Java(TM) SE Runtime Environment 6 Update 1
Java(TM) SE Runtime Environment 6

Delete this:

C:\ProgramData\Azureus

Delete c:\rsit\extras.txt

Please run a new rsit scan when finished and post the logs back here.

hacim

2008-08-31, 21:26

here is the new rsit log after deleting the data you requested, I had thought I already deleted my p2p programs, sorry :/

Logfile of random's system information tool (written by random/random)
Run by Micah at 2008-08-31 14:21:49
Microsoft® Windows Vista™ Home Basic Service Pack 1
System drive C: has 157 GB (66%) free of 238 GB
Total RAM: 2047 MB (62% free)

HijackThis download failed

Registry dump

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-01-28 1554256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE0699B9-FF9D-4B5A-A149-894BBD12D9AA}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-06-19 352256]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"Krait"=C:\Program Files\Razer\Krait\razerhid.exe [2007-02-16 126976]
"P17RunE"=RunDll32 P17RunE.dll []
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-03-09 185632]
"NvSvc"=C:\Windows\system32\nvsvc.dll [2007-12-11 86016]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2007-12-11 8530464]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2007-12-11 81920]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-05-27 413696]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-07-10 116040]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-07-30 289064]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ThePrivacyGuard"=C:\PROGRA~1\THEPRI~1\THEPRI~1.EXE /startup []
"RunSpySweeperScheduleAtStartup"=C:\Windows\system32\msfeedssync.exe [2008-01-19 12800]
"ProxyWay"=C:\Program Files\ProxyWay\proxyway.exe []
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC]
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2008-07-30 289064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2008-05-27 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpySweeper]
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
c:\program files\steam\steam.exe [2008-03-29 1271032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{DFAAB7BB-4990-47B1-8F27-6DB9C258D26B}"=C:\Windows\system32\cbXNHBTK.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\K]
shell\AutoRun\command - K:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3c2528f9-6a1b-11dc-b2a9-0016178feb8a}]
shell\AutoRun\command - K:\LaunchU3.exe -a

File associations

.reg - open - regedit.exe "%1" %*
.scr - open - "%1" %*

hacim

2008-08-31, 21:28

rsit log continued

List of files/folders created in the last three months

2008-08-30 14:00:49 ----D---- C:\rsit
2008-08-30 14:00:49 ----D---- C:\Program Files\trend micro
2008-08-30 12:31:02 ----D---- C:\Users\Micah\AppData\Roaming\Malwarebytes
2008-08-30 12:31:00 ----D---- C:\ProgramData\Malwarebytes
2008-08-30 12:31:00 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-08-26 22:08:48 ----D---- C:\ProgramData\Avg7
2008-08-26 21:27:41 ----A---- C:\Windows\system32\4b0812fe-.txt
2008-08-13 11:57:00 ----A---- C:\Windows\system32\tzres.dll
2008-08-13 11:55:04 ----A---- C:\Windows\system32\mshtml.dll
2008-08-13 11:55:04 ----A---- C:\Windows\system32\ieframe.dll
2008-08-13 11:55:03 ----A---- C:\Windows\system32\wininet.dll
2008-08-13 11:55:03 ----A---- C:\Windows\system32\urlmon.dll
2008-08-13 11:55:03 ----A---- C:\Windows\system32\mstime.dll
2008-08-13 11:55:03 ----A---- C:\Windows\system32\jsproxy.dll
2008-08-13 11:54:59 ----A---- C:\Windows\system32\inetcomm.dll
2008-08-13 11:54:59 ----A---- C:\Windows\system32\es.dll
2008-08-13 11:54:58 ----A---- C:\Windows\system32\IPSECSVC.DLL
2008-08-07 20:04:19 ----D---- C:\Program Files\iPod
2008-08-07 20:04:17 ----D---- C:\Program Files\iTunes
2008-08-03 17:39:24 ----A---- C:\Windows\wininit.ini
2008-07-25 03:34:30 ----A---- C:\Windows\system32\DivXCodecVersionChecker.exe
2008-07-22 20:38:43 ----A---- C:\Windows\system32\msshooks.dll
2008-07-22 20:38:42 ----A---- C:\Windows\system32\msscb.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\thawbrkr.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\SearchFilterHost.exe
2008-07-22 20:38:40 ----A---- C:\Windows\system32\propsys.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\propdefs.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\msstrc.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\mssprxy.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\mssitlb.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\msshsq.dll
2008-07-22 20:38:40 ----A---- C:\Windows\system32\korwbrkr.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\xmlfilter.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\wsepno.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\srchadmin.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\rtffilt.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\offfilt.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\nlhtml.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\msscntrs.dll
2008-07-22 20:38:39 ----A---- C:\Windows\system32\mimefilt.dll
2008-07-22 20:38:38 ----A---- C:\Windows\system32\tquery.dll
2008-07-22 20:38:38 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2008-07-22 20:38:38 ----A---- C:\Windows\system32\SearchIndexer.exe
2008-07-22 20:38:38 ----A---- C:\Windows\system32\mssrch.dll
2008-07-22 20:38:38 ----A---- C:\Windows\system32\chtbrkr.dll
2008-07-22 20:38:38 ----A---- C:\Windows\system32\chsbrkr.dll
2008-07-22 20:38:37 ----A---- C:\Windows\system32\mssvp.dll
2008-07-22 20:38:37 ----A---- C:\Windows\system32\mssphtb.dll
2008-07-22 20:38:37 ----A---- C:\Windows\system32\mssph.dll
2008-07-21 19:42:32 ----A---- C:\Windows\system32\xfcodec.dll
2008-07-17 02:38:59 ----D---- C:\Users\Micah\AppData\Roaming\BSD
2008-07-17 02:38:57 ----D---- C:\ProgramData\MediaWidget
2008-07-17 02:38:55 ----D---- C:\Program Files\Media Widget
2008-07-17 02:38:55 ----A---- C:\Windows\bsdsetup.dll
2008-07-14 15:35:02 ----A---- C:\Windows\system32\javaws.exe
2008-07-14 15:35:02 ----A---- C:\Windows\system32\javaw.exe
2008-07-14 15:35:02 ----A---- C:\Windows\system32\java.exe
2008-07-12 23:25:49 ----D---- C:\Program Files\Bonjour
2008-07-12 23:25:04 ----D---- C:\Program Files\QuickTime
2008-07-08 14:16:50 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2008-07-08 14:16:47 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2008-07-08 14:16:38 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2008-07-08 14:15:53 ----A---- C:\Windows\system32\shell32.dll
2008-07-08 14:15:48 ----A---- C:\Windows\system32\wshext.dll
2008-07-08 14:15:48 ----A---- C:\Windows\system32\wscript.exe
2008-07-08 14:15:48 ----A---- C:\Windows\system32\vbscript.dll
2008-07-08 14:15:48 ----A---- C:\Windows\system32\scrrun.dll
2008-07-08 14:15:48 ----A---- C:\Windows\system32\scrobj.dll
2008-07-08 14:15:48 ----A---- C:\Windows\system32\jscript.dll
2008-07-08 14:15:48 ----A---- C:\Windows\system32\cscript.exe
2008-07-08 14:15:36 ----A---- C:\Windows\system32\rpcrt4.dll
2008-07-08 14:15:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2008-07-08 14:15:36 ----A---- C:\Windows\system32\ntkrnlpa.exe
2008-07-08 14:15:35 ----A---- C:\Windows\system32\pacerprf.dll
2008-07-08 14:15:35 ----A---- C:\Windows\system32\emdmgmt.dll
2008-07-02 15:34:57 ----D---- C:\Program Files\Common Files\Adobe
2008-07-02 15:34:57 ----D---- C:\Program Files\Adobe
2008-06-29 00:31:03 ----D---- C:\Program Files\Veoh Networks
2008-06-29 00:30:39 ----D---- C:\Windows\Downloaded Installations
2008-06-12 16:04:50 ----D---- C:\Program Files\Microsoft Games
2008-06-12 16:04:49 ----D---- C:\PerfLogs
2008-06-11 19:10:32 ----A---- C:\Windows\system32\SLsvc.exe
2008-06-11 19:10:32 ----A---- C:\Windows\system32\onex.dll
2008-06-11 19:10:20 ----A---- C:\Windows\system32\PSHED.DLL
2008-06-11 19:10:19 ----A---- C:\Windows\system32\imagesp1.dll
2008-06-11 19:10:16 ----A---- C:\Windows\system32\dfsr.exe
2008-06-11 19:10:15 ----A---- C:\Windows\system32\wuaueng.dll
2008-06-11 19:10:15 ----A---- C:\Windows\system32\sstpsvc.dll
2008-06-11 19:10:15 ----A---- C:\Windows\system32\pidgenx.dll
2008-06-11 19:10:14 ----A---- C:\Windows\system32\mstscax.dll
2008-06-11 19:10:13 ----A---- C:\Windows\system32\WsmSvc.dll
2008-06-11 19:10:13 ----A---- C:\Windows\system32\winrscmd.dll
2008-06-11 19:10:12 ----A---- C:\Windows\system32\sysmain.dll
2008-06-11 19:10:11 ----A---- C:\Windows\system32\vssapi.dll
2008-06-11 19:10:11 ----A---- C:\Windows\system32\RMActivate.exe
2008-06-11 19:10:10 ----A---- C:\Windows\system32\VSSVC.exe
2008-06-11 19:10:10 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2008-06-11 19:10:09 ----A---- C:\Windows\system32\secproc.dll
2008-06-11 19:10:09 ----A---- C:\Windows\system32\RMActivate_isv.exe
2008-06-11 19:10:09 ----A---- C:\Windows\system32\iesetup.dll
2008-06-11 19:10:08 ----A---- C:\Windows\system32\secproc_isv.dll
2008-06-11 19:10:07 ----A---- C:\Windows\system32\drmv2clt.dll
2008-06-11 19:10:06 ----A---- C:\Windows\system32\icardres.dll
2008-06-11 19:10:06 ----A---- C:\Windows\system32\icardagt.exe
2008-06-11 19:10:06 ----A---- C:\Windows\system32\blackbox.dll
2008-06-11 19:10:05 ----A---- C:\Windows\system32\xpssvcs.dll
2008-06-11 19:10:03 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2008-06-11 19:10:03 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2008-06-11 19:10:02 ----A---- C:\Windows\system32\spwizimg.dll
2008-06-11 19:10:02 ----A---- C:\Windows\system32\rdpencom.dll
2008-06-11 19:10:02 ----A---- C:\Windows\bfsvc.exe
2008-06-11 19:10:01 ----A---- C:\Windows\system32\msxml6.dll
2008-06-11 19:10:01 ----A---- C:\Windows\system32\msxml3.dll
2008-06-11 19:10:01 ----A---- C:\Windows\system32\lpremove.exe
2008-06-11 19:10:00 ----A---- C:\Windows\system32\ntdll.dll
2008-06-11 19:10:00 ----A---- C:\Windows\system32\msjet40.dll
2008-06-11 19:09:59 ----A---- C:\Windows\system32\qmgr.dll
2008-06-11 19:09:59 ----A---- C:\Windows\system32\lsasrv.dll
2008-06-11 19:09:59 ----A---- C:\Windows\system32\localspl.dll
2008-06-11 19:09:59 ----A---- C:\Windows\system32\IKEEXT.DLL
2008-06-11 19:09:58 ----A---- C:\Windows\system32\wevtsvc.dll
2008-06-11 19:09:58 ----A---- C:\Windows\system32\wcncsvc.dll
2008-06-11 19:09:58 ----A---- C:\Windows\system32\TsWpfWrp.exe
2008-06-11 19:09:58 ----A---- C:\Windows\system32\recdisc.exe
2008-06-11 19:09:58 ----A---- C:\Windows\system32\mscoree.dll
2008-06-11 19:09:58 ----A---- C:\Windows\system32\kernel32.dll
2008-06-11 19:09:56 ----A---- C:\Windows\system32\vds.exe
2008-06-11 19:09:56 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
2008-06-11 19:09:55 ----A---- C:\Windows\system32\wmp.dll
2008-06-11 19:09:54 ----A---- C:\Windows\system32\wcnwiz.dll
2008-06-11 19:09:54 ----A---- C:\Windows\system32\SMBHelperClass.dll
2008-06-11 19:09:54 ----A---- C:\Windows\system32\msvbvm60.dll
2008-06-11 19:09:54 ----A---- C:\Windows\system32\mstsc.exe
2008-06-11 19:09:53 ----A---- C:\Windows\system32\msdtctm.dll
2008-06-11 19:09:53 ----A---- C:\Windows\system32\mf.dll
2008-06-11 19:09:52 ----A---- C:\Windows\system32\termsrv.dll
2008-06-11 19:09:52 ----A---- C:\Windows\system32\kerberos.dll
2008-06-11 19:09:52 ----A---- C:\Windows\system32\IMJP10K.DLL
2008-06-11 19:09:52 ----A---- C:\Windows\system32\advapi32.dll
2008-06-11 19:09:51 ----A---- C:\Windows\system32\mmcndmgr.dll
2008-06-11 19:09:50 ----A---- C:\Windows\system32\wuapi.dll
2008-06-11 19:09:50 ----A---- C:\Windows\system32\Query.dll
2008-06-11 19:09:50 ----A---- C:\Windows\system32\MPSSVC.dll
2008-06-11 19:09:50 ----A---- C:\Windows\system32\CertEnroll.dll
2008-06-11 19:09:49 ----A---- C:\Windows\system32\xolehlp.dll
2008-06-11 19:09:49 ----A---- C:\Windows\system32\ole32.dll
2008-06-11 19:09:49 ----A---- C:\Windows\system32\msdtcprx.dll
2008-06-11 19:09:48 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2008-06-11 19:09:48 ----A---- C:\Windows\system32\SSShim.dll
2008-06-11 19:09:48 ----A---- C:\Windows\system32\netlogon.dll
2008-06-11 19:09:48 ----A---- C:\Windows\system32\msvcrt.dll
2008-06-11 19:09:48 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2008-06-11 19:09:47 ----A---- C:\Windows\system32\schedsvc.dll
2008-06-11 19:09:47 ----A---- C:\Windows\system32\nlmgp.dll
2008-06-11 19:09:47 ----A---- C:\Windows\system32\DfsShlEx.dll
2008-06-11 19:09:46 ----A---- C:\Windows\system32\wer.dll
2008-06-11 19:09:46 ----A---- C:\Windows\system32\user32.dll
2008-06-11 19:09:46 ----A---- C:\Windows\system32\shlwapi.dll
2008-06-11 19:09:46 ----A---- C:\Windows\system32\sdclt.exe
2008-06-11 19:09:46 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2008-06-11 19:09:46 ----A---- C:\Windows\system32\milcore.dll
2008-06-11 19:09:46 ----A---- C:\Windows\system32\IasMigPlugin.dll
2008-06-11 19:09:45 ----A---- C:\Windows\system32\WSDApi.dll
2008-06-11 19:09:45 ----A---- C:\Windows\system32\vdsdyn.dll
2008-06-11 19:09:45 ----A---- C:\Windows\system32\QAGENTRT.DLL
2008-06-11 19:09:45 ----A---- C:\Windows\system32\diagperf.dll
2008-06-11 19:09:45 ----A---- C:\Windows\system32\d3d9.dll
2008-06-11 19:09:45 ----A---- C:\Windows\system32\clusapi.dll
2008-06-11 19:09:44 ----A---- C:\Windows\system32\winrsmgr.dll
2008-06-11 19:09:44 ----A---- C:\Windows\system32\mtxclu.dll
2008-06-11 19:09:44 ----A---- C:\Windows\system32\mmc.exe
2008-06-11 19:09:43 ----A---- C:\Windows\system32\vdsbas.dll
2008-06-11 19:09:43 ----A---- C:\Windows\system32\swprv.dll
2008-06-11 19:09:43 ----A---- C:\Windows\system32\SLC.dll
2008-06-11 19:09:43 ----A---- C:\Windows\system32\msi.dll
2008-06-11 19:09:43 ----A---- C:\Windows\system32\comctl32.dll
2008-06-11 19:09:42 ----A---- C:\Windows\system32\MSVidCtl.dll
2008-06-11 19:09:41 ----A---- C:\Windows\system32\XPSSHHDR.dll
2008-06-11 19:09:41 ----A---- C:\Windows\system32\msdtckrm.dll
2008-06-11 19:09:41 ----A---- C:\Windows\system32\gpsvc.dll
2008-06-11 19:09:40 ----A---- C:\Windows\system32\sbe.dll
2008-06-11 19:09:40 ----A---- C:\Windows\system32\samsrv.dll
2008-06-11 19:09:40 ----A---- C:\Windows\system32\mfc42u.dll
2008-06-11 19:09:40 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2008-06-11 19:09:40 ----A---- C:\Windows\system32\esent.dll
2008-06-11 19:09:39 ----A---- C:\Windows\system32\wecutil.exe
2008-06-11 19:09:39 ----A---- C:\Windows\system32\usp10.dll
2008-06-11 19:09:39 ----A---- C:\Windows\system32\sdengin2.dll
2008-06-11 19:09:35 ----A---- C:\Windows\system32\mfc42.dll
2008-06-11 19:09:35 ----A---- C:\Windows\system32\gacinstall.dll
2008-06-11 19:09:35 ----A---- C:\Windows\system32\cmipnpinstall.dll
2008-06-11 19:09:35 ----A---- C:\Windows\system32\cmicryptinstall.dll
2008-06-11 19:09:34 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2008-06-11 19:09:34 ----A---- C:\Windows\system32\crypt32.dll
2008-06-11 19:09:34 ----A---- C:\Windows\system32\comsvcs.dll
2008-06-11 19:09:34 ----A---- C:\Windows\system32\certutil.exe
2008-06-11 19:09:33 ----A---- C:\Windows\system32\wucltux.dll
2008-06-11 19:09:33 ----A---- C:\Windows\system32\mswsock.dll
2008-06-11 19:09:33 ----A---- C:\Windows\explorer.exe
2008-06-11 19:09:32 ----A---- C:\Windows\system32\wmdrmsdk.dll
2008-06-11 19:09:32 ----A---- C:\Windows\system32\sqlceqp30.dll
2008-06-11 19:09:32 ----A---- C:\Windows\system32\setupapi.dll
2008-06-11 19:09:32 ----A---- C:\Windows\system32\oleaut32.dll
2008-06-11 19:09:32 ----A---- C:\Windows\system32\lsm.exe
2008-06-11 19:09:32 ----A---- C:\Windows\system32\FirewallAPI.dll
2008-06-11 19:09:31 ----A---- C:\Windows\system32\wecsvc.dll
2008-06-11 19:09:31 ----A---- C:\Windows\system32\sdohlp.dll
2008-06-11 19:09:31 ----A---- C:\Windows\system32\schannel.dll
2008-06-11 19:09:31 ----A---- C:\Windows\system32\msv1_0.dll
2008-06-11 19:09:31 ----A---- C:\Windows\system32\iphlpsvc.dll
2008-06-11 19:09:31 ----A---- C:\Windows\system32\bcrypt.dll
2008-06-11 19:09:30 ----A---- C:\Windows\system32\wmpmde.dll
2008-06-11 19:09:30 ----A---- C:\Windows\system32\thumbcache.dll
2008-06-11 19:09:30 ----A---- C:\Windows\system32\riched20.dll
2008-06-11 19:09:30 ----A---- C:\Windows\system32\p2psvc.dll
2008-06-11 19:09:30 ----A---- C:\Windows\system32\netapi32.dll
2008-06-11 19:09:30 ----A---- C:\Windows\system32\eapp3hst.dll
2008-06-11 19:09:29 ----A---- C:\Windows\system32\WinSAT.exe
2008-06-11 19:09:29 ----A---- C:\Windows\system32\vdsutil.dll
2008-06-11 19:09:29 ----A---- C:\Windows\system32\imapi2fs.dll
2008-06-11 19:09:29 ----A---- C:\Windows\system32\d3d10_1.dll
2008-06-11 19:09:29 ----A---- C:\Windows\system32\autofmt.exe
2008-06-11 19:09:29 ----A---- C:\Windows\system32\autoconv.exe
2008-06-11 19:09:29 ----A---- C:\Windows\system32\autochk.exe
2008-06-11 19:09:29 ----A---- C:\Windows\system32\authfwcfg.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\wevtapi.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\dmvdsitf.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\d3d10_1core.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\comuid.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\comdlg32.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\browseui.dll
2008-06-11 19:09:28 ----A---- C:\Windows\system32\authui.dll
2008-06-11 19:09:27 ----A---- C:\Windows\system32\WSDMon.dll
2008-06-11 19:09:27 ----A---- C:\Windows\system32\mscories.dll
2008-06-11 19:09:27 ----A---- C:\Windows\system32\eapphost.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\wevtfwd.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\untfs.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\uexfat.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\sqlcese30.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\rasmans.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\pcaui.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\iassam.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\eappcfg.dll
2008-06-11 19:09:26 ----A---- C:\Windows\system32\DfrgNtfs.exe
2008-06-11 19:09:25 ----A---- C:\Windows\system32\wlansvc.dll
2008-06-11 19:09:25 ----A---- C:\Windows\system32\whealogr.dll
2008-06-11 19:09:24 ----A---- C:\Windows\system32\dot3svc.dll
2008-06-11 19:09:22 ----A---- C:\Windows\system32\rdpwsx.dll
2008-06-11 19:09:22 ----A---- C:\Windows\system32\mssha.dll
2008-06-11 19:09:22 ----A---- C:\Windows\system32\msdrm.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\zipfldr.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\WsmAuto.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\winhttp.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\rpcss.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\rasppp.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\nlasvc.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\ncrypt.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\evr.dll
2008-06-11 19:09:21 ----A---- C:\Windows\system32\dfrgui.exe
2008-06-11 19:09:21 ----A---- C:\Windows\system32\BFE.DLL
2008-06-11 19:09:20 ----A---- C:\Windows\system32\WsmWmiPl.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-06-11 19:09:20 ----A---- C:\Windows\system32\wmdrmdev.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\win32spl.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\printui.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\msrepl40.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\ddraw.dll
2008-06-11 19:09:20 ----A---- C:\Windows\system32\audiosrv.dll
2008-06-11 19:09:19 ----A---- C:\Windows\system32\WebClnt.dll
2008-06-11 19:09:19 ----A---- C:\Windows\system32\themecpl.dll
2008-06-11 19:09:19 ----A---- C:\Windows\system32\rastls.dll
2008-06-11 19:09:19 ----A---- C:\Windows\system32\QAGENT.DLL
2008-06-11 19:09:19 ----A---- C:\Windows\system32\objsel.dll
2008-06-11 19:09:19 ----A---- C:\Windows\system32\dbghelp.dll
2008-06-11 19:09:18 ----A---- C:\Windows\system32\w32time.dll
2008-06-11 19:09:18 ----A---- C:\Windows\system32\sqlsrv32.dll
2008-06-11 19:09:18 ----A---- C:\Windows\system32\PresentationHost.exe
2008-06-11 19:09:18 ----A---- C:\Windows\system32\ncryptui.dll
2008-06-11 19:09:18 ----A---- C:\Windows\system32\icm32.dll
2008-06-11 19:09:18 ----A---- C:\Windows\system32\iasnap.dll
2008-06-11 19:09:17 ----A---- C:\Windows\system32\wmdrmnet.dll
2008-06-11 19:09:17 ----A---- C:\Windows\system32\WerFaultSecure.exe
2008-06-11 19:09:17 ----A---- C:\Windows\system32\spoolss.dll
2008-06-11 19:09:17 ----A---- C:\Windows\system32\msctf.dll
2008-06-11 19:09:17 ----A---- C:\Windows\system32\iprtrmgr.dll
2008-06-11 19:09:17 ----A---- C:\Windows\system32\infocardapi.dll
2008-06-11 19:09:17 ----A---- C:\Windows\system32\azroles.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\wlangpui.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\winsrv.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\taskschd.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\scksp.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\mstlsapi.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\bcdedit.exe
2008-06-11 19:09:16 ----A---- C:\Windows\system32\basecsp.dll
2008-06-11 19:09:16 ----A---- C:\Windows\system32\AudioEng.dll
2008-06-11 19:09:15 ----A---- C:\Windows\system32\winsta.dll
2008-06-11 19:09:15 ----A---- C:\Windows\system32\netprofm.dll
2008-06-11 19:09:15 ----A---- C:\Windows\system32\dbgeng.dll
2008-06-11 19:09:14 ----A---- C:\Windows\system32\taskcomp.dll
2008-06-11 19:09:14 ----A---- C:\Windows\system32\rsaenh.dll
2008-06-11 19:09:14 ----A---- C:\Windows\system32\netcfgx.dll
2008-06-11 19:09:13 ----A---- C:\Windows\system32\winlogon.exe
2008-06-11 19:09:13 ----A---- C:\Windows\system32\wercon.exe
2008-06-11 19:09:13 ----A---- C:\Windows\system32\sqmapi.dll
2008-06-11 19:09:13 ----A---- C:\Windows\system32\lpksetup.exe
2008-06-11 19:09:13 ----A---- C:\Windows\system32\cdosys.dll
2008-06-11 19:09:12 ----A---- C:\Windows\system32\wlansec.dll
2008-06-11 19:09:12 ----A---- C:\Windows\system32\msdtcuiu.dll
2008-06-11 19:09:12 ----A---- C:\Windows\system32\mprddm.dll
2008-06-11 19:09:12 ----A---- C:\Windows\system32\dfshim.dll
2008-06-11 19:09:12 ----A---- C:\Windows\system32\certcli.dll
2008-06-11 19:09:12 ----A---- C:\Windows\system32\apds.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\tsgqec.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\shdocvw.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\iasrad.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\eapsvc.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\bcdsrv.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\AUDIOKSE.dll
2008-06-11 19:09:11 ----A---- C:\Windows\system32\aaclient.dll
2008-06-11 19:09:10 ----A---- C:\Windows\system32\Wldap32.dll
2008-06-11 19:09:10 ----A---- C:\Windows\system32\uDWM.dll
2008-06-11 19:09:10 ----A---- C:\Windows\system32\msidcrl30.dll
2008-06-11 19:09:10 ----A---- C:\Windows\system32\dnsapi.dll
2008-06-11 19:09:10 ----A---- C:\Windows\system32\certmgr.dll
2008-06-11 19:09:09 ----A---- C:\Windows\system32\WMVDECOD.DLL
2008-06-11 19:09:09 ----A---- C:\Windows\system32\umpnpmgr.dll
2008-06-11 19:09:09 ----A---- C:\Windows\system32\pla.dll
2008-06-11 19:09:08 ----A---- C:\Windows\system32\wmicmiplugin.dll
2008-06-11 19:09:08 ----A---- C:\Windows\system32\netshell.dll
2008-06-11 19:09:08 ----A---- C:\Windows\system32\dxgi.dll
2008-06-11 19:09:08 ----A---- C:\Windows\system32\dot3gpui.dll
2008-06-11 19:09:07 ----A---- C:\Windows\system32\shsvcs.dll
2008-06-11 19:09:07 ----A---- C:\Windows\system32\ntprint.dll
2008-06-11 19:09:07 ----A---- C:\Windows\system32\cryptnet.dll
2008-06-11 19:09:07 ----A---- C:\Windows\system32\comsnap.dll
2008-06-11 19:09:06 ----A---- C:\Windows\system32\winmm.dll
2008-06-11 19:09:06 ----A---- C:\Windows\system32\NlsData0009.dll
2008-06-11 19:09:06 ----A---- C:\Windows\system32\MMDevAPI.dll
2008-06-11 19:09:05 ----A---- C:\Windows\system32\wscsvc.dll
2008-06-11 19:09:05 ----A---- C:\Windows\system32\synceng.dll
2008-06-11 19:09:05 ----A---- C:\Windows\system32\services.exe
2008-06-11 19:09:05 ----A---- C:\Windows\system32\pnidui.dll
2008-06-11 19:09:05 ----A---- C:\Windows\system32\cmifw.dll
2008-06-11 19:09:04 ----A---- C:\Windows\system32\wscisvif.dll
2008-06-11 19:09:04 ----A---- C:\Windows\system32\taskeng.exe
2008-06-11 19:09:04 ----A---- C:\Windows\system32\msjtes40.dll
2008-06-11 19:09:04 ----A---- C:\Windows\system32\msconfig.exe
2008-06-11 19:09:04 ----A---- C:\Windows\system32\iassdo.dll
2008-06-11 19:09:04 ----A---- C:\Windows\system32\cipher.exe
2008-06-11 19:09:03 ----A---- C:\Windows\system32\WMVSDECD.DLL
2008-06-11 19:09:03 ----A---- C:\Windows\system32\tdh.dll
2008-06-11 19:09:03 ----A---- C:\Windows\system32\rasapi32.dll
2008-06-11 19:09:03 ----A---- C:\Windows\system32\imapi2.dll
2008-06-11 19:09:02 ----A---- C:\Windows\system32\wersvc.dll
2008-06-11 19:09:02 ----A---- C:\Windows\system32\uxtheme.dll
2008-06-11 19:09:02 ----A---- C:\Windows\system32\SessEnv.dll
2008-06-11 19:09:02 ----A---- C:\Windows\system32\dot3api.dll
2008-06-11 19:09:02 ----A---- C:\Windows\system32\dmdskmgr.dll
2008-06-11 19:09:02 ----A---- C:\Windows\system32\cmd.exe
2008-06-11 19:09:02 ----A---- C:\Windows\system32\cbsra.exe
2008-06-11 19:09:02 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\wuwebv.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\WUDFx.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\wlanmsm.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\wlancfg.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\wkssvc.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\wevtutil.exe
2008-06-11 19:09:01 ----A---- C:\Windows\system32\srvsvc.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\qdvd.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\msscp.dll
2008-06-11 19:09:01 ----A---- C:\Windows\system32\loadperf.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\rpchttp.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\rdpdd.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\mshtmled.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\localsec.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\fontext.dll
2008-06-11 19:09:00 ----A---- C:\Windows\system32\diskpart.exe
2008-06-11 19:09:00 ----A---- C:\Windows\system32\comres.dll
2008-06-11 19:08:59 ----A---- C:\Windows\system32\wsqmcons.exe
2008-06-11 19:08:59 ----A---- C:\Windows\system32\wlanapi.dll
2008-06-11 19:08:59 ----A---- C:\Windows\system32\WinSATAPI.dll
2008-06-11 19:08:59 ----A---- C:\Windows\system32\hnetcfg.dll
2008-06-11 19:08:59 ----A---- C:\Windows\system32\dsound.dll
2008-06-11 19:08:58 ----A---- C:\Windows\system32\WMADMOD.DLL
2008-06-11 19:08:58 ----A---- C:\Windows\system32\wlanpref.dll
2008-06-11 19:08:58 ----A---- C:\Windows\system32\RDPENCDD.dll
2008-06-11 19:08:58 ----A---- C:\Windows\system32\profprov.dll
2008-06-11 19:08:58 ----A---- C:\Windows\system32\NAPMONTR.DLL
2008-06-11 19:08:58 ----A---- C:\Windows\system32\filemgmt.dll
2008-06-11 19:08:58 ----A---- C:\Windows\system32\avifil32.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\wsecedit.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2008-06-11 19:08:57 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\tracerpt.exe
2008-06-11 19:08:57 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\SLCommDlg.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\P2PGraph.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\MuiUnattend.exe
2008-06-11 19:08:57 ----A---- C:\Windows\system32\dwmredir.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\dnsrslvr.dll
2008-06-11 19:08:57 ----A---- C:\Windows\system32\dhcpcsvc.dll
2008-06-11 19:08:56 ----A---- C:\Windows\system32\wininit.exe
2008-06-11 19:08:56 ----A---- C:\Windows\system32\spp.dll
2008-06-11 19:08:56 ----A---- C:\Windows\system32\rasdlg.dll
2008-06-11 19:08:56 ----A---- C:\Windows\system32\QSHVHOST.DLL
2008-06-11 19:08:56 ----A---- C:\Windows\system32\iassvcs.dll
2008-06-11 19:08:56 ----A---- C:\Windows\system32\gpresult.exe
2008-06-11 19:08:56 ----A---- C:\Windows\system32\dwm.exe
2008-06-11 19:08:56 ----A---- C:\Windows\system32\azroleui.dll
2008-06-11 19:08:56 ----A---- C:\Windows\system32\apphelp.dll
2008-06-11 19:08:55 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2008-06-11 19:08:55 ----A---- C:\Windows\system32\mscorier.dll
2008-06-11 19:08:55 ----A---- C:\Windows\system32\mcbuilder.exe
2008-06-11 19:08:55 ----A---- C:\Windows\system32\iashost.exe
2008-06-11 19:08:55 ----A---- C:\Windows\HelpPane.exe
2008-06-11 19:08:54 ----A---- C:\Windows\system32\wecapi.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\unbcl.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\tcpmon.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\srrstr.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\spwizeng.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\SLUI.exe
2008-06-11 19:08:54 ----A---- C:\Windows\system32\shrink.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\rasmontr.dll
2008-06-11 19:08:54 ----A---- C:\Windows\system32\msra.exe
2008-06-11 19:08:54 ----A---- C:\Windows\system32\lltdsvc.dll
2008-06-11 19:08:53 ----A---- C:\Windows\system32\WMPEncEn.dll
2008-06-11 19:08:53 ----A---- C:\Windows\system32\oleacc.dll
2008-06-11 19:08:53 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2008-06-11 19:08:53 ----A---- C:\Windows\system32\iertutil.dll
2008-06-11 19:08:53 ----A---- C:\Windows\system32\iashlpr.dll
2008-06-11 19:08:53 ----A---- C:\Windows\system32\gpedit.dll
2008-06-11 19:08:53 ----A---- C:\Windows\system32\brcpl.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\regsvc.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\raschap.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\ntvdm.exe
2008-06-11 19:08:52 ----A---- C:\Windows\system32\ipsmsnap.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\framedynos.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\fdWSD.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\Faultrep.dll
2008-06-11 19:08:52 ----A---- C:\Windows\system32\advpack.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\wpdshext.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\wdc.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\vsstrace.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\ntlanman.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\l2nacp.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\iedkcs32.dll
2008-06-11 19:08:51 ----A---- C:\Windows\system32\EncDec.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\WlanMM.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\Storprop.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\netman.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\ieapfltr.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\framedyn.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\dssenh.dll
2008-06-11 19:08:50 ----A---- C:\Windows\system32\certreq.exe
2008-06-11 19:08:50 ----A---- C:\Windows\system32\adsnt.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\WUDFHost.exe
2008-06-11 19:08:49 ----A---- C:\Windows\system32\WsmProv.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\wlanhlp.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\WLanConn.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\tcpipcfg.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\sxs.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\profsvc.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\ncsi.dll
2008-06-11 19:08:49 ----A---- C:\Windows\system32\KMSVC.DLL
2008-06-11 19:08:49 ----A---- C:\Windows\system32\IPBusEnum.dll
2008-06-11 19:08:48 ----A---- C:\Windows\system32\wusa.exe
2008-06-11 19:08:48 ----A---- C:\Windows\system32\WerFault.exe
2008-06-11 19:08:48 ----A---- C:\Windows\system32\VAN.dll
2008-06-11 19:08:48 ----A---- C:\Windows\system32\userenv.dll
2008-06-11 19:08:48 ----A---- C:\Windows\system32\umb.dll
2008-06-11 19:08:48 ----A---- C:\Windows\system32\ie4uinit.exe
2008-06-11 19:08:48 ----A---- C:\Windows\system32\fundisc.dll
2008-06-11 19:08:48 ----A---- C:\Windows\system32\cryptui.dll
2008-06-11 19:08:48 ----A---- C:\Windows\system32\catsrvut.dll
2008-06-11 19:08:47 ----A---- C:\Windows\system32\puiobj.dll
2008-06-11 19:08:47 ----A---- C:\Windows\system32\NlsData000c.dll
2008-06-11 19:08:47 ----A---- C:\Windows\system32\NlsData0007.dll
2008-06-11 19:08:47 ----A---- C:\Windows\system32\netid.dll
2008-06-11 19:08:47 ----A---- C:\Windows\system32\dps.dll
2008-06-11 19:08:46 ----A---- C:\Windows\system32\photowiz.dll
2008-06-11 19:08:46 ----A---- C:\Windows\system32\NlsData0011.dll
2008-06-11 19:08:46 ----A---- C:\Windows\system32\netcenter.dll
2008-06-11 19:08:46 ----A---- C:\Windows\system32\MdSched.exe
2008-06-11 19:08:46 ----A---- C:\Windows\system32\InkEd.dll
2008-06-11 19:08:45 ----A---- C:\Windows\system32\NlsData004b.dll
2008-06-11 19:08:45 ----A---- C:\Windows\system32\NlsData004a.dll
2008-06-11 19:08:45 ----A---- C:\Windows\system32\NlsData0047.dll
2008-06-11 19:08:45 ----A---- C:\Windows\system32\NlsData0046.dll
2008-06-11 19:08:45 ----A---- C:\Windows\system32\NlsData0045.dll
2008-06-11 19:08:45 ----A---- C:\Windows\system32\ipsecsnp.dll
2008-06-11 19:08:44 ----A---- C:\Windows\system32\WinSCard.dll
2008-06-11 19:08:44 ----A---- C:\Windows\system32\NlsData004e.dll
2008-06-11 19:08:44 ----A---- C:\Windows\system32\NlsData004c.dll
2008-06-11 19:08:44 ----A---- C:\Windows\system32\NlsData0049.dll
2008-06-11 19:08:43 ----A---- C:\Windows\system32\spbcd.dll
2008-06-11 19:08:43 ----A---- C:\Windows\system32\NlsData000a.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\ws2_32.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\ntdsapi.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\NlsData0c1a.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\NlsData0414.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\NlsData001b.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\NlsData001a.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\NlsData0018.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\NlsData000f.dll
2008-06-11 19:08:42 ----A---- C:\Windows\system32\msinfo32.exe
2008-06-11 19:08:41 ----A---- C:\Windows\system32\secur32.dll
2008-06-11 19:08:41 ----A---- C:\Windows\system32\NlsData0416.dll
2008-06-11 19:08:41 ----A---- C:\Windows\system32\NlsData0039.dll
2008-06-11 19:08:41 ----A---- C:\Windows\system32\NlsData0020.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\winrs.exe
2008-06-11 19:08:40 ----A---- C:\Windows\system32\odbcjt32.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\NlsData0816.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\NlsData003e.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\NlsData002a.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\NlsData0022.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\NlsData0021.dll
2008-06-11 19:08:40 ----A---- C:\Windows\system32\NAPSTAT.EXE
2008-06-11 19:08:39 ----A---- C:\Windows\system32\NlsData0026.dll
2008-06-11 19:08:39 ----A---- C:\Windows\system32\NlsData001d.dll
2008-06-11 19:08:39 ----A---- C:\Windows\system32\NlsData0019.dll
2008-06-11 19:08:39 ----A---- C:\Windows\system32\NlsData0010.dll
2008-06-11 19:08:38 ----A---- C:\Windows\system32\NlsData0027.dll
2008-06-11 19:08:38 ----A---- C:\Windows\system32\NlsData0024.dll
2008-06-11 19:08:38 ----A---- C:\Windows\system32\NlsData000d.dll
2008-06-11 19:08:38 ----A---- C:\Windows\system32\NlsData0001.dll
2008-06-11 19:08:37 ----A---- C:\Windows\system32\prnntfy.dll
2008-06-11 19:08:37 ----A---- C:\Windows\system32\NlsData081a.dll
2008-06-11 19:08:37 ----A---- C:\Windows\system32\NlsData0013.dll
2008-06-11 19:08:37 ----A---- C:\Windows\system32\NlsData0003.dll
2008-06-11 19:08:37 ----A---- C:\Windows\system32\NlsData0002.dll
2008-06-11 19:08:35 ----A---- C:\Windows\system32\mblctr.exe
2008-06-11 19:08:34 ----A---- C:\Windows\system32\schtasks.exe
2008-06-11 19:08:34 ----A---- C:\Windows\system32\RelMon.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\pdh.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\msfeeds.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\iasacct.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\dmdlgs.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\dhcpsapi.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\cryptsvc.dll
2008-06-11 19:08:34 ----A---- C:\Windows\system32\activeds.dll
2008-06-11 19:08:33 ----A---- C:\Windows\system32\TSpkg.dll
2008-06-11 19:08:33 ----A---- C:\Windows\system32\netdiagfx.dll
2008-06-11 19:08:33 ----A---- C:\Windows\system32\FirewallControlPanel.exe
2008-06-11 19:08:33 ----A---- C:\Windows\system32\fdWCN.dll
2008-06-11 19:08:33 ----A---- C:\Windows\system32\dfrgfat.exe
2008-06-11 19:08:33 ----A---- C:\Windows\system32\catsrv.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\wvc.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\wow32.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\winrm.vbs
2008-06-11 19:08:32 ----A---- C:\Windows\system32\rastapi.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\qwave.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\netcorehc.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\NAPHLPR.DLL
2008-06-11 19:08:32 ----A---- C:\Windows\system32\msacm32.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\ifmon.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\dot3msm.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\dot3cfg.dll
2008-06-11 19:08:32 ----A---- C:\Windows\system32\AudioSes.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\wudriver.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\wscntfy.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\shsetup.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\ntshrui.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\msdt.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\els.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\clbcatq.dll
2008-06-11 19:08:31 ----A---- C:\Windows\system32\adsldp.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\stobject.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\sdrsvc.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\QUTIL.DLL
2008-06-11 19:08:30 ----A---- C:\Windows\system32\psisdecd.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\net1.exe
2008-06-11 19:08:30 ----A---- C:\Windows\system32\ipnathlp.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\iasrecst.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\iasdatastore.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\fdSSDP.dll
2008-06-11 19:08:30 ----A---- C:\Windows\system32\dsprop.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\wlgpclnt.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\wlanui.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\upnphost.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\systemcpl.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\smss.exe
2008-06-11 19:08:29 ----A---- C:\Windows\system32\rasman.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\nci.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\mprmsg.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\Defrag.exe
2008-06-11 19:08:29 ----A---- C:\Windows\system32\adsldpc.dll
2008-06-11 19:08:29 ----A---- C:\Windows\system32\ActiveContentWizard.dll

hacim

2008-08-31, 21:29

rsit log continued

2008-06-11 19:08:28 ----A---- C:\Windows\system32\Wpc.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\wdigest.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\t2embed.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\setupcl.exe
2008-06-11 19:08:28 ----A---- C:\Windows\system32\rascfg.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\P2P.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\oleprn.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\msftedit.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\MigAutoPlay.exe
2008-06-11 19:08:28 ----A---- C:\Windows\system32\loghours.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\L2SecHC.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\fde.dll
2008-06-11 19:08:28 ----A---- C:\Windows\system32\dxdiag.exe
2008-06-11 19:08:28 ----A---- C:\Windows\system32\DFDWiz.exe
2008-06-11 19:08:28 ----A---- C:\Windows\system32\CompatUI.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\wiaservc.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\scansetting.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\rtm.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2008-06-11 19:08:27 ----A---- C:\Windows\system32\msutb.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\mprdim.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\gpapi.dll
2008-06-11 19:08:27 ----A---- C:\Windows\system32\devmgr.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\wdi.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\msihnd.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\kdusb.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\ifsutil.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\dimsroam.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\CertEnrollUI.dll
2008-06-11 19:08:26 ----A---- C:\Windows\system32\actxprxy.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\wscapi.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\wlandlg.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\WinFXDocObj.exe
2008-06-11 19:08:25 ----A---- C:\Windows\system32\vssadmin.exe
2008-06-11 19:08:25 ----A---- C:\Windows\system32\usbmon.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\SyncCenter.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\spoolsv.exe
2008-06-11 19:08:25 ----A---- C:\Windows\system32\regapi.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\mycomput.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\mswmdm.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\msls31.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\imagehlp.dll
2008-06-11 19:08:25 ----A---- C:\Windows\system32\BOOTVID.DLL
2008-06-11 19:08:25 ----A---- C:\Windows\system32\audiodg.exe
2008-06-11 19:08:24 ----A---- C:\Windows\system32\uudf.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\sud.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\scecli.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\SCardSvr.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\newdev.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\mstask.dll
2008-06-11 19:08:24 ----A---- C:\Windows\system32\mspaint.exe
2008-06-11 19:08:24 ----A---- C:\Windows\system32\kdcom.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\termmgr.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\tapisrv.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\ssdpsrv.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\SLUINotify.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\samlib.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\Robocopy.exe
2008-06-11 19:08:23 ----A---- C:\Windows\system32\puiapi.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\mtxoci.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\input.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\inetpp.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\duser.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\cic.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\AzSqlExt.dll
2008-06-11 19:08:23 ----A---- C:\Windows\system32\adtschema.dll
2008-06-11 19:08:22 ----A---- C:\Windows\system32\wisptis.exe
2008-06-11 19:08:22 ----A---- C:\Windows\system32\sdshext.dll
2008-06-11 19:08:22 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2008-06-11 19:08:22 ----A---- C:\Windows\system32\netiohlp.dll
2008-06-11 19:08:22 ----A---- C:\Windows\system32\iasads.dll
2008-06-11 19:08:22 ----A---- C:\Windows\system32\cscapi.dll
2008-06-11 19:08:22 ----A---- C:\Windows\system32\authz.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\WUDFPlatform.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\wpcsvc.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\webcheck.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\verifier.exe
2008-06-11 19:08:21 ----A---- C:\Windows\system32\themeui.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\slcinst.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\NlsData0000.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\msdtclog.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\msdt.exe
2008-06-11 19:08:21 ----A---- C:\Windows\system32\dxtmsft.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\d3d8.dll
2008-06-11 19:08:21 ----A---- C:\Windows\system32\cmdial32.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\wpccpl.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\WMPhoto.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\wintrust.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\vdsldr.exe
2008-06-11 19:08:20 ----A---- C:\Windows\system32\SndVol.exe
2008-06-11 19:08:20 ----A---- C:\Windows\system32\rasgcw.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\pnpsetup.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\oledlg.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\ntmarta.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\mmcbase.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\mlang.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\icfupgd.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\icardie.dll
2008-06-11 19:08:20 ----A---- C:\Windows\system32\clfsw32.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\wpd_ci.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\syssetup.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\slmgr.vbs
2008-06-11 19:08:19 ----A---- C:\Windows\system32\rasqec.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\polstore.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\nslookup.exe
2008-06-11 19:08:19 ----A---- C:\Windows\system32\ncobjapi.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\msrd3x40.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\msaatext.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\mpr.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\ieui.dll
2008-06-11 19:08:19 ----A---- C:\Windows\system32\diskraid.exe
2008-06-11 19:08:19 ----A---- C:\Windows\system32\accessibilitycpl.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\wtsapi32.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\unlodctr.exe
2008-06-11 19:08:18 ----A---- C:\Windows\system32\ulib.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\sethc.exe
2008-06-11 19:08:18 ----A---- C:\Windows\system32\pnpui.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\oobefldr.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\mscms.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\lodctr.exe
2008-06-11 19:08:18 ----A---- C:\Windows\system32\iaspolcy.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\fontsub.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\extmgr.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\dxdiagn.dll
2008-06-11 19:08:18 ----A---- C:\Windows\system32\cabinet.dll
2008-06-11 19:08:17 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2008-06-11 19:08:17 ----A---- C:\Windows\system32\Utilman.exe
2008-06-11 19:08:17 ----A---- C:\Windows\system32\unattend.dll
2008-06-11 19:08:17 ----A---- C:\Windows\system32\trkwks.dll
2008-06-11 19:08:17 ----A---- C:\Windows\system32\scesrv.dll
2008-06-11 19:08:17 ----A---- C:\Windows\system32\ogldrv.dll
2008-06-11 19:08:17 ----A---- C:\Windows\system32\occache.dll
2008-06-11 19:08:17 ----A---- C:\Windows\system32\lnkstub.exe
2008-06-11 19:08:17 ----A---- C:\Windows\system32\cabview.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\wups2.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\wpcao.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\wermgr.exe
2008-06-11 19:08:16 ----A---- C:\Windows\system32\sdspres.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\p2pcollab.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\msnetobj.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\iepeers.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\ieaksie.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\eappgnui.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\dsquery.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\drvinst.exe
2008-06-11 19:08:16 ----A---- C:\Windows\system32\dispdiag.exe
2008-06-11 19:08:16 ----A---- C:\Windows\system32\DHCPQEC.DLL
2008-06-11 19:08:16 ----A---- C:\Windows\system32\dfdts.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\bthci.dll
2008-06-11 19:08:16 ----A---- C:\Windows\system32\basesrv.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\verifier.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\secproc_ssp.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\RstrtMgr.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\mprapi.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\mmcss.dll
2008-06-11 19:08:15 ----A---- C:\Windows\system32\efsadu.dll
2008-06-11 19:08:14 ----A---- C:\Windows\system32\WPDSp.dll
2008-06-11 19:08:14 ----A---- C:\Windows\system32\WMVENCOD.DLL
2008-06-11 19:08:14 ----A---- C:\Windows\system32\wmpeffects.dll
2008-06-11 19:08:14 ----A---- C:\Windows\system32\wercplsupport.dll
2008-06-11 19:08:14 ----A---- C:\Windows\system32\qedit.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\wiascanprofiles.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\wiaaut.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\setupugc.exe
2008-06-11 19:08:13 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2008-06-11 19:08:13 ----A---- C:\Windows\system32\pnrpnsp.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\pngfilt.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\p2pnetsh.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\networkmap.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\msoeacct.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\iscsiexe.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\icacls.exe
2008-06-11 19:08:13 ----A---- C:\Windows\system32\d3d10core.dll
2008-06-11 19:08:13 ----A---- C:\Windows\system32\consent.exe
2008-06-11 19:08:12 ----A---- C:\Windows\system32\xactsrv.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\wuauclt.exe
2008-06-11 19:08:12 ----A---- C:\Windows\system32\usercpl.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\PNPXAssoc.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\pcadm.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\msrdc.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\msdmo.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\lsass.exe
2008-06-11 19:08:12 ----A---- C:\Windows\system32\lpk.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\eappprxy.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\drmmgrtn.dll
2008-06-11 19:08:12 ----A---- C:\Windows\system32\dpapimig.exe
2008-06-11 19:08:12 ----A---- C:\Windows\system32\conime.exe
2008-06-11 19:08:12 ----A---- C:\Windows\system32\autoplay.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\xwizards.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\systeminfo.exe
2008-06-11 19:08:11 ----A---- C:\Windows\system32\resutils.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\netcfg.exe
2008-06-11 19:08:11 ----A---- C:\Windows\system32\msrating.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\mfplat.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\findstr.exe
2008-06-11 19:08:11 ----A---- C:\Windows\system32\DWWIN.EXE
2008-06-11 19:08:11 ----A---- C:\Windows\system32\dssec.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\dot3ui.dll
2008-06-11 19:08:11 ----A---- C:\Windows\system32\dfrgifc.exe
2008-06-11 19:08:11 ----A---- C:\Windows\system32\cmdl32.exe
2008-06-11 19:08:11 ----A---- C:\Windows\system32\alg.exe
2008-06-11 19:08:10 ----A---- C:\Windows\system32\txflog.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\powercpl.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\odbc32.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\nshhttp.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\netprof.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2008-06-11 19:08:10 ----A---- C:\Windows\system32\imm32.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\feclient.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\dbnetlib.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\btpanui.dll
2008-06-11 19:08:10 ----A---- C:\Windows\system32\apircl.dll
2008-06-11 19:08:10 ----A---- C:\Windows\regedit.exe
2008-06-11 19:08:09 ----A---- C:\Windows\system32\tbssvc.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\taskkill.exe
2008-06-11 19:08:09 ----A---- C:\Windows\system32\svchost.exe
2008-06-11 19:08:09 ----A---- C:\Windows\system32\RASMM.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\provthrd.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\msieftp.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\iexpress.exe
2008-06-11 19:08:09 ----A---- C:\Windows\system32\dxva2.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\dwmapi.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\d3d10.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\bcdprov.dll
2008-06-11 19:08:09 ----A---- C:\Windows\system32\ActionQueue.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\syncui.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\slwmi.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\SLCExt.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\slcc.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\shwebsvc.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\networkexplorer.dll
2008-06-11 19:08:08 ----A---- C:\Windows\system32\EAPQEC.DLL
2008-06-11 19:08:08 ----A---- C:\Windows\system32\dmocx.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\xcopy.exe
2008-06-11 19:08:07 ----A---- C:\Windows\system32\WMASF.DLL
2008-06-11 19:08:07 ----A---- C:\Windows\system32\uxsms.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\taskmgr.exe
2008-06-11 19:08:07 ----A---- C:\Windows\system32\raserver.exe
2008-06-11 19:08:07 ----A---- C:\Windows\system32\PnPUnattend.exe
2008-06-11 19:08:07 ----A---- C:\Windows\system32\olepro32.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\ias.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\dnscacheugc.exe
2008-06-11 19:08:07 ----A---- C:\Windows\system32\connect.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\brcplsdw.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\audiodev.dll
2008-06-11 19:08:07 ----A---- C:\Windows\system32\aclui.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\wlanext.exe
2008-06-11 19:08:06 ----A---- C:\Windows\system32\upnp.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\UIHub.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\reg.exe
2008-06-11 19:08:06 ----A---- C:\Windows\system32\QCLIPROV.DLL
2008-06-11 19:08:06 ----A---- C:\Windows\system32\perfts.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\NapiNSP.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\msoert2.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\msjetoledb40.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\mountvol.exe
2008-06-11 19:08:06 ----A---- C:\Windows\system32\mmcshext.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\icsfiltr.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\cmstp.exe
2008-06-11 19:08:06 ----A---- C:\Windows\system32\certprop.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\browser.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\AuxiliaryDisplayApi.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\atl.dll
2008-06-11 19:08:06 ----A---- C:\Windows\system32\appinfo.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\wuapp.exe
2008-06-11 19:08:05 ----A---- C:\Windows\system32\WpdMtpUS.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\WMVXENCD.DLL
2008-06-11 19:08:05 ----A---- C:\Windows\system32\wmpdxm.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\SysFxUI.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\SoundRecorder.exe
2008-06-11 19:08:05 ----A---- C:\Windows\system32\rekeywiz.exe
2008-06-11 19:08:05 ----A---- C:\Windows\system32\qcap.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\qasf.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\PING.EXE
2008-06-11 19:08:05 ----A---- C:\Windows\system32\netplwiz.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\inetmib1.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\ieakeng.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\httpapi.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\dsuiext.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\dskquoui.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\dmusic.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\cewmdm.dll
2008-06-11 19:08:05 ----A---- C:\Windows\system32\bitsadmin.exe
2008-06-11 19:08:04 ----A---- C:\Windows\system32\xwtpw32.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\WUDFSvc.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\WMVSENCD.DLL
2008-06-11 19:08:04 ----A---- C:\Windows\system32\wmpsrcwp.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\shimgvw.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\Sens.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\SecEdit.exe
2008-06-11 19:08:04 ----A---- C:\Windows\system32\sbeio.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\ndfapi.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\mtstocom.exe
2008-06-11 19:08:04 ----A---- C:\Windows\system32\mscandui.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\makecab.exe
2008-06-11 19:08:04 ----A---- C:\Windows\system32\lsmproxy.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\dot3gpclnt.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\batt.dll
2008-06-11 19:08:04 ----A---- C:\Windows\system32\auditpol.exe
2008-06-11 19:08:04 ----A---- C:\Windows\system32\adsmsext.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\wzcdlg.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\wscmisetup.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\wiashext.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\wiadefui.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\userinit.exe
2008-06-11 19:08:03 ----A---- C:\Windows\system32\sppnp.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\shacct.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\seclogon.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\printcom.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\p2phost.exe
2008-06-11 19:08:03 ----A---- C:\Windows\system32\msorcl32.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\msdadiag.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\dxtrans.dll
2008-06-11 19:08:03 ----A---- C:\Windows\system32\apss.dll
2008-06-11 19:08:02 ----A---- C:\Windows\system32\wpdwcn.dll
2008-06-11 19:08:02 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2008-06-11 19:08:02 ----A---- C:\Windows\system32\sxstrace.exe
2008-06-11 19:08:02 ----A---- C:\Windows\system32\perfmon.exe
2008-06-11 19:08:02 ----A---- C:\Windows\system32\napipsec.dll
2008-06-11 19:08:00 ----A---- C:\Windows\system32\HelpPaneProxy.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\wups.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\winrshost.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\UIAutomationCore.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\tasklist.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\TapiMigPlugin.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\rrinstaller.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\prntvpt.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\notepad.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\netiougc.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\msiexec.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\MP4SDECD.DLL
2008-06-11 19:07:59 ----A---- C:\Windows\system32\ktmutil.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\keymgr.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\ftp.exe
2008-06-11 19:07:59 ----A---- C:\Windows\system32\fmifs.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\d3dim700.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\csrsrv.dll
2008-06-11 19:07:59 ----A---- C:\Windows\system32\colorui.dll
2008-06-11 19:07:59 ----A---- C:\Windows\notepad.exe
2008-06-11 19:07:58 ----A---- C:\Windows\system32\wscproxystub.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\wpdbusenum.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\wmiprop.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\winethc.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\txfw32.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\takeown.exe
2008-06-11 19:07:58 ----A---- C:\Windows\system32\rasplap.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\powrprof.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\pots.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\PnPutil.exe
2008-06-11 19:07:58 ----A---- C:\Windows\system32\pcasvc.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\nshipsec.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\msimtf.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\mfps.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\logagent.exe
2008-06-11 19:07:58 ----A---- C:\Windows\system32\inseng.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\findnetprinters.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\driverquery.exe
2008-06-11 19:07:58 ----A---- C:\Windows\system32\cryptdll.dll
2008-06-11 19:07:58 ----A---- C:\Windows\system32\capisp.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\WLanHC.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\wextract.exe
2008-06-11 19:07:57 ----A---- C:\Windows\system32\TMM.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\shrpubw.exe
2008-06-11 19:07:57 ----A---- C:\Windows\system32\shgina.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\sfc_os.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\sendmail.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\runonce.exe
2008-06-11 19:07:57 ----A---- C:\Windows\system32\rshx32.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\RpcPing.exe
2008-06-11 19:07:57 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2008-06-11 19:07:57 ----A---- C:\Windows\system32\perfnet.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\olecli32.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\nsisvc.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\mfpmp.exe
2008-06-11 19:07:57 ----A---- C:\Windows\system32\luainstall.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\ktmw32.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\imapi.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\fsutil.exe
2008-06-11 19:07:57 ----A---- C:\Windows\system32\fdPHost.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\dnshc.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\d3dim.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\compstui.dll
2008-06-11 19:07:57 ----A---- C:\Windows\system32\cmmon32.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\WMADMOE.DLL
2008-06-11 19:07:56 ----A---- C:\Windows\system32\wiaacmgr.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\w32tm.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\version.dll
2008-06-11 19:07:56 ----A---- C:\Windows\system32\unregmp2.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\UI0Detect.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\tscupgrd.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\net.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\msvfw32.dll
2008-06-11 19:07:56 ----A---- C:\Windows\system32\MPG4DECD.DLL
2008-06-11 19:07:56 ----A---- C:\Windows\system32\MP43DECD.DLL
2008-06-11 19:07:56 ----A---- C:\Windows\system32\mdminst.dll
2008-06-11 19:07:56 ----A---- C:\Windows\system32\imgutil.dll
2008-06-11 19:07:56 ----A---- C:\Windows\system32\getmac.exe
2008-06-11 19:07:56 ----A---- C:\Windows\system32\dsauth.dll
2008-06-11 19:07:56 ----A---- C:\Windows\system32\dimsjob.dll
2008-06-11 19:07:56 ----A---- C:\Windows\system32\cmlua.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\wmpshell.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\sfc.exe
2008-06-11 19:07:55 ----A---- C:\Windows\system32\sdchange.exe
2008-06-11 19:07:55 ----A---- C:\Windows\system32\PortableDeviceWiaCompat.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\pnpts.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\migisol.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\ipconfig.exe
2008-06-11 19:07:55 ----A---- C:\Windows\system32\fdeploy.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\dispci.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\dinput8.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\diantz.exe
2008-06-11 19:07:55 ----A---- C:\Windows\system32\credui.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\comrepl.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\cmutil.dll
2008-06-11 19:07:55 ----A---- C:\Windows\system32\ACW.exe
2008-06-11 19:07:54 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2008-06-11 19:07:54 ----A---- C:\Windows\system32\wmvdspa.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\wmidx.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\vdmredir.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\utildll.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\TSTheme.exe
2008-06-11 19:07:54 ----A---- C:\Windows\system32\TpmInit.exe
2008-06-11 19:07:54 ----A---- C:\Windows\system32\softkbd.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\remotepg.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\pdhui.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\nlaapi.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\msfeedsbs.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\modemui.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\McxDriv.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\iernonce.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\hlink.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\fwcfg.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\ExplorerFrame.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\expand.exe
2008-06-11 19:07:54 ----A---- C:\Windows\system32\EncDump.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\colbact.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\cfgbkend.dll
2008-06-11 19:07:54 ----A---- C:\Windows\system32\bridgeunattend.exe
2008-06-11 19:07:54 ----A---- C:\Windows\system32\amstream.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\wsnmp32.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\wpnpinst.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\wmpcm.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\wfapigp.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\waitfor.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\vds_ps.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\tabcal.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\sti_ci.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\shutdown.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\rdrleakdiag.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\rasauto.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\qdv.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\osblprov.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\olethk32.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\olesvr32.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\odbccp32.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\msdtc.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\mfvdsp.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\logman.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\iscsiwmi.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\iscsium.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\esentutl.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\dpnet.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\DpiScaling.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\dmsynth.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\COLORCNV.DLL
2008-06-11 19:07:53 ----A---- C:\Windows\system32\cmcfg32.dll
2008-06-11 19:07:53 ----A---- C:\Windows\system32\cacls.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\bootcfg.exe
2008-06-11 19:07:53 ----A---- C:\Windows\system32\admparse.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\xmlprovi.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\WpdConns.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\werdiagcontroller.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\wavemsp.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\ufat.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\ucsvc.exe
2008-06-11 19:07:52 ----A---- C:\Windows\system32\sxproxy.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\SLLUA.exe
2008-06-11 19:07:52 ----A---- C:\Windows\system32\rgb9rast.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\RegCtrl.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\odbctrac.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\networkitemfactory.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\mstext40.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\mshta.exe
2008-06-11 19:07:52 ----A---- C:\Windows\system32\msctfui.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\licmgr10.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\itss.dll
2008-06-11 19:07:52 ----A---- C:\Windows\system32\convert.exe
2008-06-11 19:07:52 ----A---- C:\Windows\system32\at.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\winnsi.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\unattendedjoin.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\TimeDateMUICallback.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\tbs.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\setupcln.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\rasdiag.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\prevhost.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\ocsetup.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\netbtugc.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\mydocs.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\mobsync.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\l2gpstore.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\iscsied.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\GuidedHelp.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\fphc.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\dskquota.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\dmime.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\csrstub.exe
2008-06-11 19:07:51 ----A---- C:\Windows\system32\cscdll.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\cmpbk32.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\bitsigd.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\AuthFWGP.dll
2008-06-11 19:07:51 ----A---- C:\Windows\system32\AtBroker.exe
2008-06-11 19:07:50 ----A---- C:\Windows\system32\wpclsp.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\WINSRPC.DLL
2008-06-11 19:07:50 ----A---- C:\Windows\system32\vss_ps.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\VIDRESZR.DLL
2008-06-11 19:07:50 ----A---- C:\Windows\system32\usbui.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\upnpcont.exe
2008-06-11 19:07:50 ----A---- C:\Windows\system32\srwmi.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\regini.exe
2008-06-11 19:07:50 ----A---- C:\Windows\system32\RacAgent.exe
2008-06-11 19:07:50 ----A---- C:\Windows\system32\odbccu32.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\odbccr32.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\nsi.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\nbtstat.exe
2008-06-11 19:07:50 ----A---- C:\Windows\system32\napdsnap.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\mtxlegih.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\mtxdm.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\msident.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\msdart.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\mfcsubs.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\graftabl.com
2008-06-11 19:07:50 ----A---- C:\Windows\system32\gpupdate.exe
2008-06-11 19:07:50 ----A---- C:\Windows\system32\dsdmo.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\dot3dlg.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\devenum.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\cmstplua.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\avrt.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\apilogen.dll
2008-06-11 19:07:50 ----A---- C:\Windows\system32\amxread.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\wsock32.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\wiarpc.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\WavDest.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\vfwwdm32.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\syskey.exe
2008-06-11 19:07:49 ----A---- C:\Windows\system32\ROUTE.EXE
2008-06-11 19:07:49 ----A---- C:\Windows\system32\rasphone.exe
2008-06-11 19:07:49 ----A---- C:\Windows\system32\procinst.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\odbcbcp.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\netevent.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\ndfetw.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\msexcl40.dll
2008-06-11 19:07:49 ----A---- C:\Windows\system32\MP3DMOD.DLL
2008-06-11 19:07:49 ----A---- C:\Windows\system32\extrac32.exe
2008-06-11 19:07:49 ----A---- C:\Windows\system32\eventcls.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\WlanMmHC.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2008-06-11 19:07:48 ----A---- C:\Windows\system32\wiadss.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\TabbtnEx.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\Tabbtn.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\psbase.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\msxbde40.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\inetppui.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\dmscript.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\dmloader.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\d3dxof.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\csrss.exe
2008-06-11 19:07:48 ----A---- C:\Windows\system32\CertEnrollCtrl.exe
2008-06-11 19:07:48 ----A---- C:\Windows\system32\cdd.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\atmfd.dll
2008-06-11 19:07:48 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-06-11 19:07:48 ----A---- C:\Windows\fveupdate.exe
2008-06-11 19:07:47 ----A---- C:\Windows\system32\wshcon.dll
2008-06-11 19:07:47 ----A---- C:\Windows\system32\PlaySndSrv.dll
2008-06-11 19:07:47 ----A---- C:\Windows\system32\Netplwiz.exe
2008-06-11 19:07:47 ----A---- C:\Windows\system32\mspbde40.dll
2008-06-11 19:07:47 ----A---- C:\Windows\system32\msltus40.dll
2008-06-11 19:07:47 ----A---- C:\Windows\system32\icsunattend.exe
2008-06-11 19:07:47 ----A---- C:\Windows\system32\credssp.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\WsmRes.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\WSHTCPIP.DLL
2008-06-11 19:07:46 ----A---- C:\Windows\system32\wship6.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\tcpmon.ini
2008-06-11 19:07:46 ----A---- C:\Windows\system32\sxsstore.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\slwga.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\setupSNK.exe
2008-06-11 19:07:46 ----A---- C:\Windows\system32\sbunattend.exe
2008-06-11 19:07:46 ----A---- C:\Windows\system32\OptionalFeatures.exe
2008-06-11 19:07:46 ----A---- C:\Windows\system32\msvidc32.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\localui.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\lltdapi.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\icaapi.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\dmutil.dll
2008-06-11 19:07:46 ----A---- C:\Windows\system32\ComputerDefaults.exe
2008-06-11 19:07:45 ----A---- C:\Windows\system32\usbperf.dll
2008-06-11 19:07:45 ----A---- C:\Windows\system32\spopk.dll
2008-06-11 19:07:45 ----A---- C:\Windows\system32\serialui.dll
2008-06-11 19:07:45 ----A---- C:\Windows\system32\odbcconf.dll
2008-06-11 19:07:45 ----A---- C:\Windows\system32\NcdProp.dll
2008-06-11 19:07:45 ----A---- C:\Windows\system32\cofiredm.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\rasctrs.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\msobjs.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\msfeedssync.exe
2008-06-11 19:07:44 ----A---- C:\Windows\system32\midimap.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\ieencode.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\hnetmon.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\hbaapi.dll
2008-06-11 19:07:44 ----A---- C:\Windows\system32\corpol.dll
2008-06-11 19:07:43 ----A---- C:\Windows\system32\winipsec.dll
2008-06-11 19:07:43 ----A---- C:\Windows\system32\vdmdbg.dll
2008-06-11 19:07:43 ----A---- C:\Windows\system32\url.dll
2008-06-11 19:07:43 ----A---- C:\Windows\system32\nlsbres.dll
2008-06-11 19:07:43 ----A---- C:\Windows\system32\LogonUI.exe
2008-06-11 19:07:43 ----A---- C:\Windows\system32\iprtprio.dll
2008-06-11 19:07:43 ----A---- C:\Windows\system32\InfDefaultInstall.exe
2008-06-11 19:07:43 ----A---- C:\Windows\system32\esentprf.dll
2008-06-11 19:07:42 ----A---- C:\Windows\system32\osbaseln.dll
2008-06-11 19:07:42 ----A---- C:\Windows\system32\msisip.dll
2008-06-11 19:07:42 ----A---- C:\Windows\system32\cfgmgr32.dll
2008-06-11 19:07:41 ----A---- C:\Windows\system32\winusb.dll
2008-06-11 19:07:41 ----A---- C:\Windows\system32\rdpcfgex.dll
2008-06-11 19:07:41 ----A---- C:\Windows\system32\msmmsp.dll
2008-06-11 19:07:41 ----A---- C:\Windows\system32\dispex.dll
2008-06-11 19:07:39 ----A---- C:\Windows\system32\riched32.dll
2008-06-11 19:07:39 ----A---- C:\Windows\system32\Nlsdl.dll
2008-06-11 19:07:39 ----A---- C:\Windows\system32\msidle.dll
2008-06-11 19:07:39 ----A---- C:\Windows\system32\idndl.dll
2008-06-11 19:07:38 ----A---- C:\Windows\system32\spwmp.dll
2008-06-11 19:07:37 ----A---- C:\Windows\system32\KBDKOR.DLL
2008-06-11 19:07:37 ----A---- C:\Windows\system32\KBDJPN.DLL
2008-06-11 19:07:37 ----A---- C:\Windows\system32\iscsilog.dll
2008-06-11 19:07:34 ----A---- C:\Windows\system32\WsmCl.dll
2008-06-11 19:07:34 ----A---- C:\Windows\system32\wmploc.DLL
2008-06-11 19:07:34 ----A---- C:\Windows\system32\vga256.dll
2008-06-11 19:07:34 ----A---- C:\Windows\system32\tsddd.dll
2008-06-11 19:07:34 ----A---- C:\Windows\system32\framebuf.dll
2008-06-11 19:07:34 ----A---- C:\Windows\system32\dxmasf.dll
2008-06-11 19:07:33 ----A---- C:\Windows\system32\vga64k.dll
2008-06-11 19:07:33 ----A---- C:\Windows\system32\vga.dll
2008-06-11 19:07:33 ----A---- C:\Windows\system32\spwizres.dll
2008-06-11 19:07:33 ----A---- C:\Windows\system32\f3ahvoas.dll
2008-06-11 19:07:33 ----A---- C:\Windows\system32\dmdskres2.dll
2008-06-11 19:07:33 ----A---- C:\Windows\system32\bootstr.dll
2008-06-11 19:07:31 ----A---- C:\Windows\system32\gatherWiredInfo.vbs
2008-06-11 19:07:30 ----A---- C:\Windows\system32\gatherWirelessInfo.vbs
2008-06-11 19:07:30 ----A---- C:\Windows\system32\fsmgmt.msc
2008-06-11 19:07:27 ----A---- C:\Windows\system32\perfmon.msc
2008-06-11 19:07:26 ----A---- C:\Windows\system32\vsp1cln.exe
2008-06-11 19:06:46 ----A---- C:\Windows\system32\xmllite.dll
2008-06-11 19:06:42 ----A---- C:\Windows\system32\wbemcomn.dll
2008-06-11 19:06:21 ----A---- C:\Windows\system32\SmiInstaller.dll
2008-06-11 19:06:20 ----A---- C:\Windows\system32\SmiEngine.dll
2008-06-11 19:06:08 ----A---- C:\Windows\system32\wdscore.dll
2008-06-11 19:06:08 ----A---- C:\Windows\system32\PkgMgr.exe
2008-06-11 19:05:19 ----A---- C:\Windows\system32\drvstore.dll
2008-06-11 19:05:16 ----A---- C:\Windows\system32\dpx.dll
2008-06-11 19:05:15 ----A---- C:\Windows\system32\mspatcha.dll
2008-06-11 19:05:15 ----A---- C:\Windows\system32\msdelta.dll
2008-06-11 17:02:16 ----A---- C:\Windows\system32\RacEngn.dll
2008-06-11 17:02:07 ----A---- C:\Windows\system32\quartz.dll
2008-06-01 16:20:13 ----A---- C:\Windows\War3Unin.exe
2008-06-01 16:17:43 ----D---- C:\Program Files\Warcraft III

hacim

2008-08-31, 21:32

rsit log final

List of drivers

R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2008-01-19 95744]
R2 nxsIO32;NextSensor Kernel I/O Driver; \??\C:\Windows\System32\DRIVERS\nxsIO32.sys [2008-02-19 2208]
R3 GEARAspiWDM;GEARAspiWDM; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]
R3 irsir;Microsoft Serial Infrared Driver; C:\Windows\system32\DRIVERS\irsir.sys [2008-01-19 20992]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-11-18 1040544]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2007-12-11 8238688]
R3 P17;SB Live! 24-bit; C:\Windows\system32\drivers\P17.sys [2007-06-13 1131520]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S3 AmdLLD;AMD Low Level Device Driver; C:\Windows\system32\DRIVERS\AmdLLD.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 ENTECH;ENTECH; \??\C:\Windows\system32\DRIVERS\ENTECH.sys [2007-10-11 27672]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 Inspect;Comodo Firewall Network Driver; C:\Windows\system32\DRIVERS\inspect.sys []
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RtkHDAud.sys []
S3 krait03;Razer krait USB Filter Driver; C:\Windows\System32\Drivers\krait.sys [2005-12-07 13324]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2008-07-10 32000]
S3 usbaudio;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2008-01-19 73088]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\system32\drivers\wmiacpi.sys []

List of services

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-07-22 116040]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2007-12-24 66872]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2008-01-28 810320]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-07-30 532264]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2008-08-11 87288]

-----------------EOF-----------------

info.txt logfile of random's system information tool 2008-08-31 14:21:52

Uninstall list

-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9 /remove
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA9944C8-7D34-475E-8C90-2788685B2C47}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA9944C8-7D34-475E-8C90-2788685B2C47}\setup.exe" -l0x9 /remove
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AAEF329E-F353-46C9-933D-24A571986093}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AAEF329E-F353-46C9-933D-24A571986093}\setup.exe" -l0x9 /remove
Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81200000003}
Adobe Shockwave Player-->C:\Windows\System32\Macromed\SHOCKW~1\UNWISE.EXE C:\Windows\System32\Macromed\SHOCKW~1\Install.log
Apple Mobile Device Support-->MsiExec.exe /I{49C88E44-1B38-4FC6-824E-2BDA3063B0E3}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Battlefield 1942: Secret Weapons of WWII-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B73B4A99-4173-4747-BBEC-0F05E966F9D2}\setup.exe" -l0x9
Battlefield 1942: The Road To Rome-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D057AA08-8CBF-42E3-9EAB-23B8FED1C279}\setup.exe" -l0x9
Battlefield 1942-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{698D7E61-E4BF-4CA6-8A09-CF6BDBFDEF65}\setup.exe" -l0x9
Battlefield 2(TM)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\setup.exe" -l0x9 -removeonly
Battlefield Vietnam(TM)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E35B3C63-E958-4E31-A178-95D22024109A}\setup.exe" -l0x9
Battlefield Vietnam: WW2 Mod-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F989306B-9287-444F-AE73-E30C7E4AF0F5}\setup.exe" -l0x9
Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}
Call of Duty(R) 2-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{D0A05794-48C2-4424-A15A-9F20FCFDD374} /l1033
Command & Conquer Generals-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{06F80017-8F98-4C94-B868-52358569FC32}
Command and ConquerTM Generals Zero Hour-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}
Counter-Strike: Source-->"C:\Program Files\Steam\steam.exe" steam://uninstall/240
Creative Audio Console-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9 /remove
Day of Defeat: Source-->"C:\Program Files\Steam\steam.exe" steam://uninstall/300
DesertCombat 0.7-->C:\Windows\iun6002.exe "C:\Program Files\EA GAMES\Battlefield 1942\DesertCombat.ini"
FEAR-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2B653229-9854-4989-B780-D978F5F13EAB}\setup.exe" -l0x9 /zU -removeonly
Fraps-->"C:\Fraps\uninstall.exe"
Futuremark SystemInfo-->C:\Program Files\InstallShield Installation Information\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}\setup.exe -runfromtemp -l0x0009 -removeonly
GTK+ Runtime 2.12.1 rev b (remove only)-->C:\Program Files\Common Files\GTK\2.0\uninst.exe
Half-Life 2: Deathmatch-->"C:\Program Files\Steam\steam.exe" steam://uninstall/320
Half-Life 2: Lost Coast-->"C:\Program Files\Steam\steam.exe" steam://uninstall/340
Insurgency ( Remove only)-->"c:\program files\steam\SteamApps\SourceMods\Insurgency\uninstall.exe"
IrfanView (remove only)-->C:\Program Files\IrfanView\iv_uninstall.exe
iTunes-->MsiExec.exe /I{3DE0053C-FD9A-483E-B7C9-B06E4392206E}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MediaWidget 4.0-->"C:\Program Files\Media Widget\unins000.exe"
Miracle C Shareware Package-->MsiExec.exe /I{08C5E3B0-3402-4AF5-8656-2D76B80FB6ED}
mIRC-->"C:\Program Files\mIRC\mirc.exe" -uninstall
Mozilla Firefox (2.0.0.16)-->C:\PROGRA~1\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (2.0.0.16)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
NVIDIA Drivers-->C:\Windows\system32\nvuninst.exe UninstallGUI
Pidgin-->C:\Program Files\Pidgin\pidgin-uninst.exe
PunkBuster for Battlefield 1942-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{127B684B-A002-44C8-99A7-6CF8F1E26873}\setup.exe" -l0x9
PunkBuster for Battlefield Vietnam-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D07643A3-CE41-4286-8C78-EB9C83E76DDB}\setup.exe" -l0x9
QuickTime-->MsiExec.exe /I{08CA9554-B5FE-4313-938F-D4A417B81175}
Razer Krait-->C:\Program Files\InstallShield Installation Information\{E6DA58C0-4EC5-4F5E-B73E-2F22ED30ACFC}\setup.exe -runfromtemp -l0x0009 -removeonly
RealPlayer-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Ricochet-->"C:\Program Files\Steam\steam.exe" steam://uninstall/60
Source SDK Base-->"C:\Program Files\Steam\steam.exe" steam://uninstall/215
Source SDK-->"C:\Program Files\Steam\steam.exe" steam://uninstall/211
Spybot - Search & Destroy 1.5.2.20-->"C:\Windows\unins000.exe"
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Starcraft-->C:\Windows\SCunin.exe C:\Windows\SCunin.dat
Steam-->C:\PROGRA~1\Steam\UNWISE.EXE C:\PROGRA~1\Steam\INSTALL.LOG
Team Fortress 2-->"C:\Program Files\Steam\steam.exe" steam://uninstall/440
Unlocker 1.8.5-->C:\Program Files\Unlocker\uninst.exe
Ventrilo Client-->MsiExec.exe /I{789289CA-F73A-4A16-A331-54D498CE069F}
VeohTV BETA-->C:\Program Files\InstallShield Installation Information\{0405E51E-9582-4207-8F38-AC44201D3808}\setup.exe -runfromtemp -l0x0409
Warcraft III-->C:\Windows\War3Unin.exe C:\Windows\War3Unin.dat
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
World of Warcraft-->C:\Program Files\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe
Xfire (remove only)-->"C:\Program Files\Xfire\uninst.exe"

Hosts File

127.0.0.1 babe.the-killer.bz
127.0.0.1 www.babe.the-killer.bz
127.0.0.1 babe.k-lined.com
127.0.0.1 www.babe.k-lined.com
127.0.0.1 did.i-used.cc
127.0.0.1 www.did.i-used.cc
127.0.0.1 coolwwwsearch.com
127.0.0.1 www.coolwwwsearch.com
127.0.0.1 coolwebsearch.com
127.0.0.1 www.coolwebsearch.com

Security center information

FW: COMODO Firewall Pro
AS: Spybot - Search and Destroy (disabled) (outdated)
AS: Windows Defender

Environment variables

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 75 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=4b02
"NUMBER_OF_PROCESSORS"=2
"sourcesdk"=c:\program files\steam\steamapps\invent1337\sourcesdk
"VProject"=c:\program files\steam\steamapps\invent1337\half-life 2 deathmatch\hl2mp
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip

-----------------EOF-----------------

Shaba

2008-09-01, 09:14

Please go to Kaspersky website (http://www.kaspersky.com/kos/eng/partner/default/kavwebscan.html) and perform an online antivirus scan.

Read through the requirements and privacy statement and click on Accept button.
It will start downloading and installing the scanner and virus definitions. You will be prompted to install an application from Kaspersky. Click Run.
When the downloads have finished, click on Settings.
Make sure these boxes are checked (ticked). If they are not, please tick them and click on the Save button: Spyware, Adware, Dialers, and other potentially dangerous programs
Archives
Click on My Computer under Scan.
Once the scan is complete, it will display the results. Click on View Scan Report.
You will see a list of infected items there. Click on Save Report As....
Save this report to a convenient place. Change the Files of type to Text file (.txt) before clicking on the Save button.
Please post this log in your next reply along with a fresh HijackThis log.

Shaba

2008-09-06, 11:36

Due to the lack of feedback this Topic is closed.

If it has been five days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh HijackThis log and a link to your previous thread.

If it has been less than five days since your last response and you need the thread re-opened, please send a private message (pm). A valid, working link to the closed topic is required.

Everyone else please begin a New Topic.