click.giftload and defender disabler and more! Help?

**KNS777** · 2011-04-17, 00:20

Hi there,

I seem to be having trouble with my current infection, this seems close to what made me wipe my primary drive and start over last time.

My log.txt file is too big to attach or copy in one post, so I'm posting it in two parts.

Any help you can provide is appreciated.

The First Half of log.txt
----------------------------------------------------------------------
Logfile of random's system information tool 1.08 (written by random/random)
Run by Chris at 2011-04-16 17:42:02
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 42 GB (73%) free of 57 GB
Total RAM: 2038 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 5:42:30 PM, on 4/16/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Power Mixer\pwmixer.exe
C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\taskhost.exe
C:\Windows\explorer.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\taskeng.exe
C:\Users\Chris\AppData\Local\Temp\Pv1.exe
C:\Users\Chris\Desktop\RSIT.exe
C:\Program Files\trend micro\Chris.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Power Mixer] "C:\Program Files\Power Mixer\pwmixer.exe" /m
O4 - HKCU\..\Run: [Google] C:\Users\Chris\AppData\Roaming\GD1.exe
O4 - HKCU\..\Run: [0ESKOMO9JO] C:\Users\Chris\AppData\Local\Temp\Pv1.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 4708 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Actgjvlmfm.job
C:\Windows\tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job
C:\Windows\tasks\{810401E2-DDE0-454e-B0E2-AA89C9E5967C}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NPSStartup"= []
"PWRISOVM.EXE"=C:\Program Files\PowerISO\PWRISOVM.EXE [2007-08-06 200704]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2009-09-23 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2009-09-23 173592]
"Persistence"=C:\Windows\system32\igfxpers.exe [2009-09-23 150552]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-28 1045800]
"itype"=C:\Program Files\Microsoft IntelliType Pro\itype.exe [2010-07-21 1778064]
"IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2011-01-07 1797488]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"AdobeCS5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AutoStartNPSAgent"=C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [2010-07-08 95576]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2011-04-05 399736]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
"Power Mixer"=C:\Program Files\Power Mixer\pwmixer.exe [2011-02-08 371345]
"Google"=C:\Users\Chris\AppData\Roaming\GD1.exe [2011-04-12 32768]
"0ESKOMO9JO"=C:\Users\Chris\AppData\Local\Temp\Pv1.exe [2011-04-16 174080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2009-09-23 218112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2011-04-16 17:30:49 ----D---- C:\Program Files\trend micro
2011-04-16 17:30:48 ----D---- C:\rsit
2011-04-16 16:21:17 ----D---- C:\Windows\Minidump
2011-04-16 16:21:03 ----A---- C:\Windows\ntbtlog.txt
2011-04-16 15:37:39 ----D---- C:\Users\Chris\AppData\Roaming\Media Player Classic
2011-04-16 15:35:48 ----A---- C:\Windows\Pwuhaa.exe
2011-04-16 15:35:35 ----RASH---- C:\Windows\system32\bootv.dll
2011-04-16 15:34:48 ----A---- C:\Windows\system32\unrar.dll
2011-04-16 15:34:47 ----A---- C:\Windows\avisplitter.ini
2011-04-16 15:34:46 ----A---- C:\Windows\system32\yv12vfw.dll
2011-04-16 15:34:46 ----A---- C:\Windows\system32\xvidvfw.dll
2011-04-16 15:34:46 ----A---- C:\Windows\system32\xvidcore.dll
2011-04-16 15:34:45 ----A---- C:\Windows\system32\ff_vfw.dll.manifest
2011-04-16 15:34:45 ----A---- C:\Windows\system32\ff_vfw.dll
2011-04-16 15:34:41 ----D---- C:\Program Files\K-Lite Codec Pack
2011-04-16 15:34:35 ----D---- C:\Users\Chris\AppData\Roaming\doctor
2011-04-16 14:48:21 ----D---- C:\ProgramData\Apple Computer
2011-04-16 14:48:19 ----A---- C:\Windows\system32\QTCF.dll
2011-04-16 14:48:16 ----D---- C:\Program Files\QT Lite
2011-04-14 06:58:17 ----D---- C:\Users\Chris\AppData\Roaming\Power Mixer
2011-04-14 06:58:16 ----D---- C:\Program Files\Power Mixer
2011-04-14 03:51:28 ----D---- C:\Program Files\Microsoft Silverlight
2011-04-12 19:28:30 ----A---- C:\Users\Chris\AppData\Roaming\GD1.exe
2011-04-10 03:52:09 ----A---- C:\psapi.dll
2011-04-09 12:42:06 ----D---- C:\Users\Chris\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2011-04-08 10:06:22 ----D---- C:\ProgramData\ALM
2011-04-08 05:13:26 ----D---- C:\ProgramData\Spybot - Search & Destroy
2011-04-08 05:13:26 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-04-05 03:40:19 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2011-04-05 03:16:17 ----D---- C:\Program Files\Adobe Media Player
2011-04-05 03:14:24 ----D---- C:\Program Files\Common Files\Adobe AIR
2011-04-05 03:14:21 ----D---- C:\Program Files\Adobe
2011-04-05 01:10:37 ----D---- C:\ProgramData\Adobe
2011-04-05 01:07:17 ----D---- C:\Program Files\Common Files\Adobe
2011-04-05 00:52:00 ----D---- C:\Program Files\uTorrent
2011-04-05 00:51:11 ----D---- C:\Users\Chris\AppData\Roaming\uTorrent
2011-04-04 07:09:59 ----D---- C:\Windows\system32\SPReview
2011-04-04 07:09:00 ----D---- C:\Windows\system32\EventProviders
2011-04-04 07:07:02 ----A---- C:\Windows\system32\dfshim.dll
2011-04-04 07:06:58 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2011-04-04 07:06:58 ----A---- C:\Windows\system32\LSCSHostPolicy.dll
2011-04-04 07:06:58 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2011-04-04 07:06:57 ----A---- C:\Windows\system32\mstscax.dll
2011-04-04 07:06:54 ----A---- C:\Windows\system32\d3d10warp.dll
2011-04-04 07:06:53 ----A---- C:\Windows\system32\tssrvlic.dll
2011-04-04 07:06:53 ----A---- C:\Windows\system32\RDVGHelper.exe
2011-04-04 07:06:53 ----A---- C:\Windows\system32\rdpcorets.dll
2011-04-04 07:06:53 ----A---- C:\Windows\system32\mfc40u.dll
2011-04-04 07:06:53 ----A---- C:\Windows\system32\mfc40.dll
2011-04-04 07:06:52 ----A---- C:\Windows\system32\sysmain.dll
2011-04-04 07:06:51 ----A---- C:\Windows\system32\shell32.dll
2011-04-04 07:06:51 ----A---- C:\Windows\system32\secproc_isv.dll
2011-04-04 07:06:50 ----A---- C:\Windows\system32\RMActivate_isv.exe
2011-04-04 07:06:49 ----A---- C:\Windows\system32\secproc.dll
2011-04-04 07:06:49 ----A---- C:\Windows\system32\ieframe.dll
2011-04-04 07:06:48 ----A---- C:\Windows\system32\RMActivate.exe
2011-04-04 07:06:47 ----A---- C:\Windows\system32\spwizui.dll
2011-04-04 07:06:47 ----A---- C:\Windows\system32\mscoree.dll
2011-04-04 07:06:45 ----A---- C:\Windows\system32\ntkrnlpa.exe
2011-04-04 07:06:45 ----A---- C:\Windows\system32\mf.dll
2011-04-04 07:06:44 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2011-04-04 07:06:44 ----A---- C:\Windows\system32\iertutil.dll
2011-04-04 07:06:44 ----A---- C:\Windows\system32\CertEnroll.dll
2011-04-04 07:06:43 ----A---- C:\Windows\system32\wmp.dll
2011-04-04 07:06:43 ----A---- C:\Windows\system32\mssrch.dll
2011-04-04 07:06:42 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2011-04-04 07:06:42 ----A---- C:\Windows\system32\PresentationHost.exe
2011-04-04 07:06:42 ----A---- C:\Windows\system32\esent.dll
2011-04-04 07:06:42 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2011-04-04 07:06:41 ----A---- C:\Windows\system32\tquery.dll
2011-04-04 07:06:41 ----A---- C:\Windows\system32\schedsvc.dll
2011-04-04 07:06:41 ----A---- C:\Windows\system32\ntoskrnl.exe
2011-04-04 07:06:41 ----A---- C:\Windows\system32\drivers\hwpolicy.sys
2011-04-04 07:06:40 ----A---- C:\Windows\system32\RacEngn.dll
2011-04-04 07:06:39 ----A---- C:\Windows\system32\ntdll.dll
2011-04-04 07:06:39 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2011-04-04 07:06:38 ----A---- C:\Windows\system32\rdpudd.dll
2011-04-04 07:06:38 ----A---- C:\Windows\system32\rdpdd.dll
2011-04-04 07:06:38 ----A---- C:\Windows\system32\qmgr.dll
2011-04-04 07:06:37 ----A---- C:\Windows\system32\wininet.dll
2011-04-04 07:06:37 ----A---- C:\Windows\system32\ole32.dll
2011-04-04 07:06:37 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-04-04 07:06:36 ----A---- C:\Windows\system32\wevtsvc.dll
2011-04-04 07:06:36 ----A---- C:\Windows\system32\vssapi.dll
2011-04-04 07:06:36 ----A---- C:\Windows\system32\urlmon.dll
2011-04-04 07:06:36 ----A---- C:\Windows\system32\drivers\tcpip.sys
2011-04-04 07:06:35 ----A---- C:\Windows\system32\SearchFolder.dll
2011-04-04 07:06:35 ----A---- C:\Windows\system32\d3d9.dll
2011-04-04 07:06:35 ----A---- C:\Windows\explorer.exe
2011-04-04 07:06:34 ----A---- C:\Windows\system32\taskschd.dll
2011-04-04 07:06:34 ----A---- C:\Windows\system32\kernel32.dll
2011-04-04 07:06:34 ----A---- C:\Windows\system32\IKEEXT.DLL
2011-04-04 07:06:34 ----A---- C:\Windows\system32\crypt32.dll
2011-04-04 07:06:33 ----A---- C:\Windows\system32\wer.dll
2011-04-04 07:06:33 ----A---- C:\Windows\system32\termsrv.dll
2011-04-04 07:06:33 ----A---- C:\Windows\system32\spreview.exe
2011-04-04 07:06:33 ----A---- C:\Windows\system32\spinstall.exe
2011-04-04 07:06:33 ----A---- C:\Windows\system32\PushPrinterConnections.exe
2011-04-04 07:06:33 ----A---- C:\Windows\system32\mstsc.exe
2011-04-04 07:06:33 ----A---- C:\Windows\system32\drivers\ntfs.sys
2011-04-04 07:06:33 ----A---- C:\Windows\system32\certcli.dll
2011-04-04 07:06:32 ----A---- C:\Windows\system32\rpcrt4.dll
2011-04-04 07:06:32 ----A---- C:\Windows\system32\msxml6.dll
2011-04-04 07:06:32 ----A---- C:\Windows\system32\lsasrv.dll
2011-04-04 07:06:32 ----A---- C:\Windows\system32\gpsvc.dll
2011-04-04 07:06:32 ----A---- C:\Windows\system32\dwmcore.dll
2011-04-04 07:06:31 ----A---- C:\Windows\system32\WinSAT.exe
2011-04-04 07:06:31 ----A---- C:\Windows\system32\wbengine.exe
2011-04-04 07:06:31 ----A---- C:\Windows\system32\scavengeui.dll
2011-04-04 07:06:31 ----A---- C:\Windows\system32\odbc32.dll
2011-04-04 07:06:31 ----A---- C:\Windows\system32\mstime.dll
2011-04-04 07:06:31 ----A---- C:\Windows\system32\MPSSVC.dll
2011-04-04 07:06:31 ----A---- C:\Windows\system32\diagperf.dll
2011-04-04 07:06:30 ----A---- C:\Windows\system32\umrdp.dll
2011-04-04 07:06:30 ----A---- C:\Windows\system32\TSWorkspace.dll
2011-04-04 07:06:30 ----A---- C:\Windows\system32\tsmf.dll
2011-04-04 07:06:30 ----A---- C:\Windows\system32\quartz.dll
2011-04-04 07:06:30 ----A---- C:\Windows\system32\localspl.dll
2011-04-04 07:06:30 ----A---- C:\Windows\system32\dot3api.dll
2011-04-04 07:06:29 ----A---- C:\Windows\system32\winhttp.dll
2011-04-04 07:06:29 ----A---- C:\Windows\system32\setupapi.dll
2011-04-04 07:06:29 ----A---- C:\Windows\system32\MSVidCtl.dll
2011-04-04 07:06:29 ----A---- C:\Windows\system32\msfeeds.dll
2011-04-04 07:06:29 ----A---- C:\Windows\system32\iedkcs32.dll
2011-04-04 07:06:29 ----A---- C:\Windows\system32\drivers\nvstor.sys
2011-04-04 07:06:29 ----A---- C:\Windows\system32\apphelp.dll
2011-04-04 07:06:28 ----A---- C:\Windows\system32\WindowsCodecs.dll
2011-04-04 07:06:28 ----A---- C:\Windows\system32\VSSVC.exe
2011-04-04 07:06:28 ----A---- C:\Windows\system32\rdpshell.exe
2011-04-04 07:06:28 ----A---- C:\Windows\system32\netlogon.dll
2011-04-04 07:06:28 ----A---- C:\Windows\system32\netcfgx.dll
2011-04-04 07:06:28 ----A---- C:\Windows\system32\dbgeng.dll
2011-04-04 07:06:28 ----A---- C:\Windows\system32\d3d11.dll
2011-04-04 07:06:27 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-04-04 07:06:27 ----A---- C:\Windows\system32\winlogon.exe
2011-04-04 07:06:27 ----A---- C:\Windows\system32\webio.dll
2011-04-04 07:06:27 ----A---- C:\Windows\system32\user32.dll
2011-04-04 07:06:27 ----A---- C:\Windows\system32\Query.dll
2011-04-04 07:06:27 ----A---- C:\Windows\system32\gpprefcl.dll
2011-04-04 07:06:27 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2011-04-04 07:06:26 ----A---- C:\Windows\system32\WsmSvc.dll
2011-04-04 07:06:26 ----A---- C:\Windows\system32\upnp.dll
2011-04-04 07:06:26 ----A---- C:\Windows\system32\schannel.dll
2011-04-04 07:06:26 ----A---- C:\Windows\system32\DShowRdpFilter.dll
2011-04-04 07:06:26 ----A---- C:\Windows\system32\drivers\srv.sys
2011-04-04 07:06:26 ----A---- C:\Windows\system32\drivers\nvraid.sys
2011-04-04 07:06:26 ----A---- C:\Windows\system32\advapi32.dll
2011-04-04 07:06:25 ----A---- C:\Windows\system32\mmcndmgr.dll
2011-04-04 07:06:25 ----A---- C:\Windows\system32\drivers\srv2.sys
2011-04-04 07:06:24 ----A---- C:\Windows\system32\netfxperf.dll
2011-04-04 07:06:24 ----A---- C:\Windows\system32\msv1_0.dll
2011-04-04 07:06:24 ----A---- C:\Windows\system32\lsm.exe
2011-04-04 07:06:24 ----A---- C:\Windows\system32\drivers\csc.sys
2011-04-04 07:06:23 ----A---- C:\Windows\system32\sppobjs.dll
2011-04-04 07:06:23 ----A---- C:\Windows\system32\shlwapi.dll
2011-04-04 07:06:23 ----A---- C:\Windows\system32\SessEnv.dll
2011-04-04 07:06:23 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2011-04-04 07:06:23 ----A---- C:\Windows\system32\msdrm.dll
2011-04-04 07:06:23 ----A---- C:\Windows\system32\imapi2fs.dll
2011-04-04 07:06:23 ----A---- C:\Windows\system32\authui.dll
2011-04-04 07:06:22 ----A---- C:\Windows\system32\usp10.dll
2011-04-04 07:06:22 ----A---- C:\Windows\system32\userenv.dll
2011-04-04 07:06:22 ----A---- C:\Windows\system32\mcbuilder.exe
2011-04-04 07:06:22 ----A---- C:\Windows\system32\KernelBase.dll
2011-04-04 07:06:22 ----A---- C:\Windows\system32\certmgr.dll
2011-04-04 07:06:21 ----A---- C:\Windows\system32\xpsservices.dll
2011-04-04 07:06:21 ----A---- C:\Windows\system32\winload.exe
2011-04-04 07:06:21 ----A---- C:\Windows\system32\WebClnt.dll
2011-04-04 07:06:21 ----A---- C:\Windows\system32\umpnpmgr.dll
2011-04-04 07:06:21 ----A---- C:\Windows\system32\sppwinob.dll
2011-04-04 07:06:21 ----A---- C:\Windows\system32\iphlpsvc.dll
2011-04-04 07:06:21 ----A---- C:\Windows\system32\comdlg32.dll
2011-04-04 07:06:21 ----A---- C:\Windows\system32\audiosrv.dll
2011-04-04 07:06:20 ----A---- C:\Windows\system32\win32spl.dll
2011-04-04 07:06:20 ----A---- C:\Windows\system32\rpcss.dll
2011-04-04 07:06:20 ----A---- C:\Windows\system32\framedynos.dll
2011-04-04 07:06:20 ----A---- C:\Windows\system32\dnsapi.dll
2011-04-04 07:06:20 ----A---- C:\Windows\system32\cmd.exe
2011-04-04 07:06:20 ----A---- C:\Windows\system32\BFE.DLL
2011-04-04 07:06:19 ----A---- C:\Windows\system32\wuaueng.dll
2011-04-04 07:06:19 ----A---- C:\Windows\system32\Wldap32.dll
2011-04-04 07:06:19 ----A---- C:\Windows\system32\samsrv.dll
2011-04-04 07:06:19 ----A---- C:\Windows\system32\rdpendp.dll
2011-04-04 07:06:19 ----A---- C:\Windows\system32\propsys.dll
2011-04-04 07:06:19 ----A---- C:\Windows\system32\nlasvc.dll
2011-04-04 07:06:19 ----A---- C:\Windows\system32\mfds.dll
2011-04-04 07:06:19 ----A---- C:\Windows\system32\drivers\volsnap.sys
2011-04-04 07:06:19 ----A---- C:\Windows\system32\drivers\netio.sys
2011-04-04 07:06:19 ----A---- C:\Windows\system32\drivers\ndis.sys
2011-04-04 07:06:19 ----A---- C:\Windows\system32\cscsvc.dll
2011-04-04 07:06:18 ----A---- C:\Windows\system32\wucltux.dll
2011-04-04 07:06:18 ----A---- C:\Windows\system32\winresume.exe
2011-04-04 07:06:18 ----A---- C:\Windows\system32\werconcpl.dll
2011-04-04 07:06:18 ----A---- C:\Windows\system32\rdpclip.exe
2011-04-04 07:06:18 ----A---- C:\Windows\system32\profsvc.dll
2011-04-04 07:06:18 ----A---- C:\Windows\system32\ncsi.dll
2011-04-04 07:06:18 ----A---- C:\Windows\system32\azroles.dll
2011-04-04 07:06:18 ----A---- C:\Windows\system32\appmgr.dll
2011-04-04 07:06:17 ----A---- C:\Windows\system32\themeui.dll
2011-04-04 07:06:17 ----A---- C:\Windows\system32\taskeng.exe
2011-04-04 07:06:17 ----A---- C:\Windows\system32\spp.dll
2011-04-04 07:06:17 ----A---- C:\Windows\system32\mswsock.dll
2011-04-04 07:06:17 ----A---- C:\Windows\system32\inetcomm.dll
2011-04-04 07:06:17 ----A---- C:\Windows\system32\drivers\storport.sys
2011-04-04 07:06:17 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2011-04-04 07:06:17 ----A---- C:\Windows\system32\drivers\http.sys
2011-04-04 07:06:17 ----A---- C:\Windows\system32\dhcpcore.dll
2011-04-04 07:06:17 ----A---- C:\Windows\system32\credui.dll
2011-04-04 07:06:16 ----A---- C:\Windows\system32\wintrust.dll
2011-04-04 07:06:16 ----A---- C:\Windows\system32\taskcomp.dll
2011-04-04 07:06:16 ----A---- C:\Windows\system32\rdpinit.exe
2011-04-04 07:06:16 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2011-04-04 07:06:16 ----A---- C:\Windows\system32\msxml3.dll
2011-04-04 07:06:16 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-04-04 07:06:16 ----A---- C:\Windows\system32\evr.dll
2011-04-04 07:06:16 ----A---- C:\Windows\system32\dxgi.dll
2011-04-04 07:06:16 ----A---- C:\Windows\system32\dbghelp.dll
2011-04-04 07:06:16 ----A---- C:\Windows\system32\basecsp.dll
2011-04-04 07:06:15 ----A---- C:\Windows\system32\WinSATAPI.dll
2011-04-04 07:06:15 ----A---- C:\Windows\system32\sqlsrv32.dll
2011-04-04 07:06:15 ----A---- C:\Windows\system32\spoolsv.exe
2011-04-04 07:06:15 ----A---- C:\Windows\system32\QAGENTRT.DLL
2011-04-04 07:06:15 ----A---- C:\Windows\system32\gdi32.dll
2011-04-04 07:06:15 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2011-04-04 07:06:15 ----A---- C:\Windows\system32\drivers\amdsata.sys
2011-04-04 07:06:15 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2011-04-04 07:06:15 ----A---- C:\Windows\system32\calc.exe
2011-04-04 07:06:14 ----A---- C:\Windows\system32\vpnike.dll
2011-04-04 07:06:14 ----A---- C:\Windows\system32\UIRibbon.dll
2011-04-04 07:06:14 ----A---- C:\Windows\system32\srvsvc.dll
2011-04-04 07:06:14 ----A---- C:\Windows\system32\lpksetup.exe
2011-04-04 07:06:14 ----A---- C:\Windows\system32\fveapi.dll
2011-04-04 07:06:13 ----A---- C:\Windows\system32\ws2_32.dll
2011-04-04 07:06:13 ----A---- C:\Windows\system32\tspubwmi.dll
2011-04-04 07:06:13 ----A---- C:\Windows\system32\sxs.dll
2011-04-04 07:06:13 ----A---- C:\Windows\system32\netshell.dll
2011-04-04 07:06:13 ----A---- C:\Windows\system32\ie4uinit.exe
2011-04-04 07:06:13 ----A---- C:\Windows\system32\hgprint.dll
2011-04-04 07:06:13 ----A---- C:\Windows\system32\drivers\fvevol.sys
2011-04-04 07:06:13 ----A---- C:\Windows\system32\cryptsvc.dll
2011-04-04 07:06:12 ----A---- C:\Windows\system32\stobject.dll
2011-04-04 07:06:12 ----A---- C:\Windows\system32\prncache.dll
2011-04-04 07:06:12 ----A---- C:\Windows\system32\printui.dll
2011-04-04 07:06:12 ----A---- C:\Windows\system32\msi.dll
2011-04-04 07:06:12 ----A---- C:\Windows\system32\inetpp.dll
2011-04-04 07:06:12 ----A---- C:\Windows\system32\drivers\rdbss.sys
2011-04-04 07:06:12 ----A---- C:\Windows\system32\drivers\msdsm.sys
2011-04-04 07:06:12 ----A---- C:\Windows\system32\comctl32.dll
2011-04-04 07:06:11 ----A---- C:\Windows\system32\WSDApi.dll
2011-04-04 07:06:11 ----A---- C:\Windows\system32\wmpeffects.dll
2011-04-04 07:06:11 ----A---- C:\Windows\system32\rpchttp.dll
2011-04-04 07:06:11 ----A---- C:\Windows\system32\net1.exe
2011-04-04 07:06:11 ----A---- C:\Windows\system32\dps.dll
2011-04-04 07:06:11 ----A---- C:\Windows\system32\dnsrslvr.dll
2011-04-04 07:06:11 ----A---- C:\Windows\system32\ci.dll
2011-04-04 07:06:11 ----A---- C:\Windows\system32\aitagent.exe
2011-04-04 07:06:11 ----A---- C:\Windows\system32\aepdu.dll
2011-04-04 07:06:10 ----A---- C:\Windows\system32\vds.exe
2011-04-04 07:06:10 ----A---- C:\Windows\system32\scansetting.dll
2011-04-04 07:06:10 ----A---- C:\Windows\system32\MMDevAPI.dll
2011-04-04 07:06:10 ----A---- C:\Windows\system32\mfc42u.dll
2011-04-04 07:06:10 ----A---- C:\Windows\system32\FXSSVC.exe
2011-04-04 07:06:10 ----A---- C:\Windows\system32\drivers\vmbus.sys
2011-04-04 07:06:10 ----A---- C:\Windows\system32\drivers\pci.sys
2011-04-04 07:06:10 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2011-04-04 07:06:10 ----A---- C:\Windows\system32\davclnt.dll
2011-04-04 07:06:09 ----A---- C:\Windows\system32\WMVCORE.DLL
2011-04-04 07:06:09 ----A---- C:\Windows\system32\wlangpui.dll
2011-04-04 07:06:09 ----A---- C:\Windows\system32\QSHVHOST.DLL
2011-04-04 07:06:09 ----A---- C:\Windows\system32\pnidui.dll
2011-04-04 07:06:09 ----A---- C:\Windows\system32\IPSECSVC.DLL
2011-04-04 07:06:09 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2011-04-04 07:06:09 ----A---- C:\Windows\system32\consent.exe
2011-04-04 07:06:09 ----A---- C:\Windows\system32\aaclient.dll
2011-04-04 07:06:08 ----A---- C:\Windows\system32\wpdshext.dll
2011-04-04 07:06:08 ----A---- C:\Windows\system32\webservices.dll
2011-04-04 07:06:08 ----A---- C:\Windows\system32\tscfgwmi.dll
2011-04-04 07:06:08 ----A---- C:\Windows\system32\t2embed.dll
2011-04-04 07:06:08 ----A---- C:\Windows\system32\SyncCenter.dll
2011-04-04 07:06:08 ----A---- C:\Windows\system32\scrptadm.dll
2011-04-04 07:06:08 ----A---- C:\Windows\system32\netdiagfx.dll
2011-04-04 07:06:08 ----A---- C:\Windows\system32\fde.dll
2011-04-04 07:06:08 ----A---- C:\Windows\system32\drivers\termdd.sys
2011-04-04 07:06:08 ----A---- C:\Windows\system32\drivers\sbp2port.sys
2011-04-04 07:06:08 ----A---- C:\Windows\system32\drivers\rdpdr.sys
2011-04-04 07:06:08 ----A---- C:\Windows\system32\drivers\amdxata.sys
2011-04-04 07:06:07 ----A---- C:\Windows\system32\wuapi.dll
2011-04-04 07:06:07 ----A---- C:\Windows\system32\wscapi.dll
2011-04-04 07:06:07 ----A---- C:\Windows\system32\vmicsvc.exe
2011-04-04 07:06:07 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2011-04-04 07:06:07 ----A---- C:\Windows\system32\sdengin2.dll
2011-04-04 07:06:06 ----A---- C:\Windows\system32\wisptis.exe
2011-04-04 07:06:06 ----A---- C:\Windows\system32\WinSCard.dll
2011-04-04 07:06:06 ----A---- C:\Windows\system32\WFS.exe
2011-04-04 07:06:06 ----A---- C:\Windows\system32\rdpcore.dll
2011-04-04 07:06:06 ----A---- C:\Windows\system32\pla.dll
2011-04-04 07:06:06 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2011-04-04 07:06:06 ----A---- C:\Windows\system32\msasn1.dll
2011-04-04 07:06:06 ----A---- C:\Windows\system32\mcmde.dll
2011-04-04 07:06:06 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2011-04-04 07:06:06 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2011-04-04 07:06:06 ----A---- C:\Windows\system32\cscobj.dll
2011-04-04 07:06:05 ----A---- C:\Windows\system32\WUDFSvc.dll
2011-04-04 07:06:05 ----A---- C:\Windows\system32\winsta.dll
2011-04-04 07:06:05 ----A---- C:\Windows\system32\wiaservc.dll
2011-04-04 07:06:05 ----A---- C:\Windows\system32\setupcl.exe
2011-04-04 07:06:05 ----A---- C:\Windows\system32\ntshrui.dll
2011-04-04 07:06:05 ----A---- C:\Windows\system32\imapi2.dll
2011-04-04 07:06:05 ----A---- C:\Windows\system32\iepeers.dll
2011-04-04 07:06:05 ----A---- C:\Windows\system32\gameux.dll
2011-04-04 07:06:05 ----A---- C:\Windows\system32\DXPTaskRingtone.dll
2011-04-04 07:06:05 ----A---- C:\Windows\system32\drivers\msahci.sys
2011-04-04 07:06:05 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2011-04-04 07:06:05 ----A---- C:\Windows\system32\conhost.exe
2011-04-04 07:06:05 ----A---- C:\Windows\system32\aeinv.dll
2011-04-04 07:06:04 ----A---- C:\Windows\system32\WMPEncEn.dll
2011-04-04 07:06:04 ----A---- C:\Windows\system32\onex.dll
2011-04-04 07:06:04 ----A---- C:\Windows\system32\dwmredir.dll
2011-04-04 07:06:03 ----A---- C:\Windows\system32\winmm.dll
2011-04-04 07:06:03 ----A---- C:\Windows\system32\vaultsvc.dll
2011-04-04 07:06:03 ----A---- C:\Windows\system32\TabSvc.dll
2011-04-04 07:06:03 ----A---- C:\Windows\system32\shsvcs.dll
2011-04-04 07:06:03 ----A---- C:\Windows\system32\rasmans.dll
2011-04-04 07:06:03 ----A---- C:\Windows\system32\Narrator.exe
2011-04-04 07:06:03 ----A---- C:\Windows\system32\mssvp.dll
2011-04-04 07:06:03 ----A---- C:\Windows\system32\hbaapi.dll
2011-04-04 07:06:03 ----A---- C:\Windows\system32\drivers\udfs.sys
2011-04-04 07:06:03 ----A---- C:\Windows\system32\drivers\acpi.sys
2011-04-04 07:06:03 ----A---- C:\Windows\system32\bootres.dll
2011-04-04 07:06:03 ----A---- C:\Windows\system32\autofmt.exe
2011-04-04 07:06:02 ----A---- C:\Windows\system32\thumbcache.dll
2011-04-04 07:06:02 ----A---- C:\Windows\system32\samcli.dll
2011-04-04 07:06:02 ----A---- C:\Windows\system32\proquota.exe
2011-04-04 07:06:02 ----A---- C:\Windows\system32\netiohlp.dll
2011-04-04 07:06:02 ----A---- C:\Windows\system32\msutb.dll
2011-04-04 07:06:02 ----A---- C:\Windows\system32\msinfo32.exe
2011-04-04 07:06:02 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2011-04-04 07:06:02 ----A---- C:\Windows\system32\halmacpi.dll
2011-04-04 07:06:02 ----A---- C:\Windows\system32\hal.dll
2011-04-04 07:06:02 ----A---- C:\Windows\system32\autoconv.exe
2011-04-04 07:06:02 ----A---- C:\Windows\system32\autochk.exe
2011-04-04 07:06:02 ----A---- C:\Windows\system32\AudioSes.dll
2011-04-04 07:06:02 ----A---- C:\Windows\system32\audiodg.exe
2011-04-04 07:06:01 ----A---- C:\Windows\system32\wcncsvc.dll
2011-04-04 07:06:01 ----A---- C:\Windows\system32\tcpipcfg.dll
2011-04-04 07:06:01 ----A---- C:\Windows\system32\srchadmin.dll
2011-04-04 07:06:01 ----A---- C:\Windows\system32\schtasks.exe
2011-04-04 07:06:01 ----A---- C:\Windows\system32\regapi.dll
2011-04-04 07:06:01 ----A---- C:\Windows\system32\powercpl.dll
2011-04-04 07:06:01 ----A---- C:\Windows\system32\msihnd.dll
2011-04-04 07:06:01 ----A---- C:\Windows\system32\mimefilt.dll
2011-04-04 07:06:01 ----A---- C:\Windows\system32\ipsmsnap.dll
2011-04-04 07:06:01 ----A---- C:\Windows\system32\framedyn.dll
2011-04-04 07:06:01 ----A---- C:\Windows\system32\eapphost.dll
2011-04-04 07:06:01 ----A---- C:\Windows\system32\drivers\winusb.sys
2011-04-04 07:06:00 ----A---- C:\Windows\system32\sspicli.dll
2011-04-04 07:06:00 ----A---- C:\Windows\system32\mscorier.dll
2011-04-04 07:06:00 ----A---- C:\Windows\system32\FXSCOVER.exe
2011-04-04 07:06:00 ----A---- C:\Windows\system32\drivers\volmgr.sys
2011-04-04 07:06:00 ----A---- C:\Windows\system32\drivers\srvnet.sys
2011-04-04 07:05:59 ----A---- C:\Windows\system32\wdc.dll
2011-04-04 07:05:59 ----A---- C:\Windows\system32\umpo.dll
2011-04-04 07:05:59 ----A---- C:\Windows\system32\StructuredQuery.dll
2011-04-04 07:05:59 ----A---- C:\Windows\system32\QAGENT.DLL
2011-04-04 07:05:59 ----A---- C:\Windows\system32\netid.dll
2011-04-04 07:05:59 ----A---- C:\Windows\system32\DXP.dll
2011-04-04 07:05:59 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2011-04-04 07:05:59 ----A---- C:\Windows\system32\drivers\partmgr.sys
2011-04-04 07:05:59 ----A---- C:\Windows\system32\drivers\netbt.sys
2011-04-04 07:05:59 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2011-04-04 07:05:59 ----A---- C:\Windows\system32\actxprxy.dll
2011-04-04 07:05:58 ----A---- C:\Windows\system32\wlanpref.dll
2011-04-04 07:05:58 ----A---- C:\Windows\system32\Vault.dll
2011-04-04 07:05:58 ----A---- C:\Windows\system32\untfs.dll
2011-04-04 07:05:58 ----A---- C:\Windows\system32\sppsvc.exe
2011-04-04 07:05:58 ----A---- C:\Windows\system32\sdclt.exe
2011-04-04 07:05:58 ----A---- C:\Windows\system32\scesrv.dll
2011-04-04 07:05:58 ----A---- C:\Windows\system32\RpcRtRemote.dll
2011-04-04 07:05:58 ----A---- C:\Windows\system32\rastls.dll
2011-04-04 07:05:58 ----A---- C:\Windows\system32\oleaut32.dll
2011-04-04 07:05:58 ----A---- C:\Windows\system32\nci.dll
2011-04-04 07:05:58 ----A---- C:\Windows\system32\ListSvc.dll
2011-04-04 07:05:58 ----A---- C:\Windows\system32\drivers\ataport.sys
2011-04-04 07:05:57 ----A---- C:\Windows\system32\WMNetMgr.dll
2011-04-04 07:05:57 ----A---- C:\Windows\system32\Robocopy.exe
2011-04-04 07:05:57 ----A---- C:\Windows\system32\licmgr10.dll
2011-04-04 07:05:57 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2011-04-04 07:05:56 ----A---- C:\Windows\system32\taskmgr.exe
2011-04-04 07:05:56 ----A---- C:\Windows\system32\mtxclu.dll
2011-04-04 07:05:56 ----A---- C:\Windows\system32\mssphtb.dll
2011-04-04 07:05:56 ----A---- C:\Windows\system32\msdri.dll
2011-04-04 07:05:56 ----A---- C:\Windows\system32\DxpTaskSync.dll
2011-04-04 07:05:56 ----A---- C:\Windows\system32\drivers\mpio.sys
2011-04-04 07:05:56 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2011-04-04 07:05:56 ----A---- C:\Windows\system32\Display.dll
2011-04-04 07:05:55 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-04-04 07:05:55 ----A---- C:\Windows\system32\userinit.exe
2011-04-04 07:05:55 ----A---- C:\Windows\system32\termmgr.dll
2011-04-04 07:05:55 ----A---- C:\Windows\system32\sharemediacpl.dll
2011-04-04 07:05:55 ----A---- C:\Windows\system32\puiobj.dll
2011-04-04 07:05:55 ----A---- C:\Windows\system32\eudcedit.exe
2011-04-04 07:05:55 ----A---- C:\Windows\system32\drivers\winhv.sys
2011-04-04 07:05:55 ----A---- C:\Windows\system32\drivers\scsiport.sys
2011-04-04 07:05:55 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2011-04-04 07:05:55 ----A---- C:\Windows\system32\DiagCpl.dll
2011-04-04 07:05:55 ----A---- C:\Windows\system32\cscui.dll
2011-04-04 07:05:54 ----A---- C:\Windows\system32\wiadefui.dll
2011-04-04 07:05:54 ----A---- C:\Windows\system32\sppcomapi.dll
2011-04-04 07:05:54 ----A---- C:\Windows\system32\shsetup.dll
2011-04-04 07:05:54 ----A---- C:\Windows\system32\rasppp.dll
2011-04-04 07:05:54 ----A---- C:\Windows\system32\msdtctm.dll
2011-04-04 07:05:54 ----A---- C:\Windows\system32\msconfig.exe
2011-04-04 07:05:54 ----A---- C:\Windows\system32\logoncli.dll
2011-04-04 07:05:54 ----A---- C:\Windows\system32\FirewallControlPanel.dll
2011-04-04 07:05:54 ----A---- C:\Windows\system32\drivers\vmstorfl.sys
2011-04-04 07:05:54 ----A---- C:\Windows\system32\drivers\storvsc.sys
2011-04-04 07:05:54 ----A---- C:\Windows\system32\cabview.dll
2011-04-04 07:05:54 ----A---- C:\Windows\system32\biocpl.dll
2011-04-04 07:05:53 ----A---- C:\Windows\system32\wpccpl.dll
2011-04-04 07:05:53 ----A---- C:\Windows\system32\themecpl.dll
2011-04-04 07:05:53 ----A---- C:\Windows\system32\SensorsCpl.dll
2011-04-04 07:05:53 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2011-04-04 07:05:53 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2011-04-04 07:05:53 ----A---- C:\Windows\system32\dnscmmc.dll
2011-04-04 07:05:52 ----A---- C:\Windows\system32\winsrv.dll
2011-04-04 07:05:52 ----A---- C:\Windows\system32\tapisrv.dll
2011-04-04 07:05:52 ----A---- C:\Windows\system32\scecli.dll
2011-04-04 07:05:52 ----A---- C:\Windows\system32\mscories.dll
2011-04-04 07:05:52 ----A---- C:\Windows\system32\mscms.dll
2011-04-04 07:05:52 ----A---- C:\Windows\system32\localsec.dll
2011-04-04 07:05:52 ----A---- C:\Windows\system32\hgcpl.dll
2011-04-04 07:05:52 ----A---- C:\Windows\system32\fontext.dll
2011-04-04 07:05:52 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2011-04-04 07:05:51 ----A---- C:\Windows\system32\wlanui.dll
2011-04-04 07:05:51 ----A---- C:\Windows\system32\wkssvc.dll
2011-04-04 07:05:51 ----A---- C:\Windows\system32\VAN.dll
2011-04-04 07:05:51 ----A---- C:\Windows\system32\usercpl.dll
2011-04-04 07:05:51 ----A---- C:\Windows\system32\srcore.dll
2011-04-04 07:05:51 ----A---- C:\Windows\system32\SndVolSSO.dll
2011-04-04 07:05:51 ----A---- C:\Windows\system32\qedit.dll
2011-04-04 07:05:51 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2011-04-04 07:05:51 ----A---- C:\Windows\system32\mprddm.dll
2011-04-04 07:05:51 ----A---- C:\Windows\system32\KMSVC.DLL
2011-04-04 07:05:51 ----A---- C:\Windows\system32\iasacct.dll
2011-04-04 07:05:51 ----A---- C:\Windows\system32\drivers\usbhub.sys
2011-04-04 07:05:51 ----A---- C:\Windows\system32\bcdsrv.dll
2011-04-04 07:05:50 ----A---- C:\Windows\system32\wpdbusenum.dll
2011-04-04 07:05:50 ----A---- C:\Windows\system32\wksprt.exe
2011-04-04 07:05:50 ----A---- C:\Windows\system32\w32tm.exe
2011-04-04 07:05:50 ----A---- C:\Windows\system32\spwizeng.dll
2011-04-04 07:05:50 ----A---- C:\Windows\system32\SndVol.exe
2011-04-04 07:05:50 ----A---- C:\Windows\system32\qdvd.dll
2011-04-04 07:05:50 ----A---- C:\Windows\system32\prntvpt.dll
2011-04-04 07:05:50 ----A---- C:\Windows\system32\netcenter.dll
2011-04-04 07:05:50 ----A---- C:\Windows\system32\mblctr.exe
2011-04-04 07:05:50 ----A---- C:\Windows\system32\batmeter.dll
2011-04-04 07:05:50 ----A---- C:\Windows\system32\azroleui.dll
2011-04-04 07:05:50 ----A---- C:\Windows\system32\accessibilitycpl.dll
2011-04-04 07:05:49 ----A---- C:\Windows\system32\zipfldr.dll
2011-04-04 07:05:49 ----A---- C:\Windows\system32\netjoin.dll
2011-04-04 07:05:49 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2011-04-04 07:05:49 ----A---- C:\Windows\system32\fdeploy.dll
2011-04-04 07:05:49 ----A---- C:\Windows\system32\drivers\ks.sys
2011-04-04 07:05:49 ----A---- C:\Windows\system32\drivers\afd.sys
2011-04-04 07:05:49 ----A---- C:\Windows\system32\cryptui.dll
2011-04-04 07:05:49 ----A---- C:\Windows\system32\adsldp.dll
2011-04-04 07:05:48 ----A---- C:\Windows\system32\wusa.exe
2011-04-04 07:05:48 ----A---- C:\Windows\system32\networkmap.dll
2011-04-04 07:05:48 ----A---- C:\Windows\system32\mspbda.dll
2011-04-04 07:05:48 ----A---- C:\Windows\system32\MCEWMDRMNDBootstrap.dll
2011-04-04 07:05:48 ----A---- C:\Windows\system32\Faultrep.dll
2011-04-04 07:05:48 ----A---- C:\Windows\system32\cfgmgr32.dll
2011-04-04 07:05:47 ----A---- C:\Windows\system32\taskbarcpl.dll
2011-04-04 07:05:47 ----A---- C:\Windows\system32\sud.dll
2011-04-04 07:05:47 ----A---- C:\Windows\system32\prnfldr.dll
2011-04-04 07:05:47 ----A---- C:\Windows\system32\photowiz.dll
2011-04-04 07:05:47 ----A---- C:\Windows\system32\OnLineIDCpl.dll
2011-04-04 07:05:47 ----A---- C:\Windows\system32\msieftp.dll
2011-04-04 07:05:47 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2011-04-04 07:05:47 ----A---- C:\Windows\system32\ActionCenter.dll
2011-04-04 07:05:46 ----A---- C:\Windows\system32\taskhost.exe
2011-04-04 07:05:46 ----A---- C:\Windows\system32\slui.exe
2011-04-04 07:05:46 ----A---- C:\Windows\system32\rdpcorekmts.dll
2011-04-04 07:05:46 ----A---- C:\Windows\system32\iprtrmgr.dll
2011-04-04 07:05:46 ----A---- C:\Windows\system32\iasrad.dll
2011-04-04 07:05:46 ----A---- C:\Windows\system32\drivers\hidclass.sys
2011-04-04 07:05:46 ----A---- C:\Windows\system32\dot3cfg.dll
2011-04-04 07:05:46 ----A---- C:\Windows\system32\defaultlocationcpl.dll
2011-04-04 07:05:46 ----A---- C:\Windows\system32\credssp.dll
2011-04-04 07:05:45 ----A---- C:\Windows\system32\wpd_ci.dll
2011-04-04 07:05:45 ----A---- C:\Windows\system32\syncui.dll
2011-04-04 07:05:45 ----A---- C:\Windows\system32\sisbkup.dll
2011-04-04 07:05:45 ----A---- C:\Windows\system32\shwebsvc.dll
2011-04-04 07:05:45 ----A---- C:\Windows\system32\sdcpl.dll
2011-04-04 07:05:45 ----A---- C:\Windows\system32\recovery.dll
2011-04-04 07:05:45 ----A---- C:\Windows\system32\odbcjt32.dll
2011-04-04 07:05:45 ----A---- C:\Windows\system32\ifsutil.dll
2011-04-04 07:05:45 ----A---- C:\Windows\system32\ieUnatt.exe
2011-04-04 07:05:45 ----A---- C:\Windows\system32\iesysprep.dll
2011-04-04 07:05:45 ----A---- C:\Windows\system32\halacpi.dll
2011-04-04 07:05:45 ----A---- C:\Windows\system32\ftp.exe
2011-04-04 07:05:45 ----A---- C:\Windows\system32\efscore.dll
2011-04-04 07:05:45 ----A---- C:\Windows\system32\autoplay.dll
2011-04-04 07:05:45 ----A---- C:\Windows\system32\ActionCenterCPL.dll

---------TO BE CONTINUED--------------------

**KNS777** · 2011-04-17, 00:22

-----------------AND HERE'S PART II --------------------------------
----------------------------------------------------------------------
2011-04-04 07:05:44 ----A---- C:\Windows\system32\wmpmde.dll
2011-04-04 07:05:44 ----A---- C:\Windows\system32\vdsutil.dll
2011-04-04 07:05:44 ----A---- C:\Windows\system32\sppnp.dll
2011-04-04 07:05:44 ----A---- C:\Windows\system32\rtutils.dll
2011-04-04 07:05:44 ----A---- C:\Windows\system32\rdpwsx.dll
2011-04-04 07:05:44 ----A---- C:\Windows\system32\OobeFldr.dll
2011-04-04 07:05:44 ----A---- C:\Windows\system32\ntlanman.dll
2011-04-04 07:05:44 ----A---- C:\Windows\system32\dskquoui.dll
2011-04-04 07:05:44 ----A---- C:\Windows\system32\DeviceCenter.dll
2011-04-04 07:05:44 ----A---- C:\Windows\system32\bcdedit.exe
2011-04-04 07:05:43 ----A---- C:\Windows\system32\systemcpl.dll
2011-04-04 07:05:43 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2011-04-04 07:05:43 ----A---- C:\Windows\system32\sethc.exe
2011-04-04 07:05:43 ----A---- C:\Windows\system32\rstrui.exe
2011-04-04 07:05:43 ----A---- C:\Windows\system32\riched20.dll
2011-04-04 07:05:43 ----A---- C:\Windows\system32\recdisc.exe
2011-04-04 07:05:43 ----A---- C:\Windows\system32\rdpsign.exe
2011-04-04 07:05:43 ----A---- C:\Windows\system32\ntprint.dll
2011-04-04 07:05:43 ----A---- C:\Windows\system32\nshwfp.dll
2011-04-04 07:05:43 ----A---- C:\Windows\system32\netplwiz.dll
2011-04-04 07:05:43 ----A---- C:\Windows\system32\NAPHLPR.DLL
2011-04-04 07:05:43 ----A---- C:\Windows\system32\fvecpl.dll
2011-04-04 07:05:43 ----A---- C:\Windows\system32\fms.dll
2011-04-04 07:05:43 ----A---- C:\Windows\system32\drivers\tdx.sys
2011-04-04 07:05:43 ----A---- C:\Windows\system32\blackbox.dll
2011-04-04 07:05:43 ----A---- C:\Windows\system32\bcdboot.exe
2011-04-04 07:05:43 ----A---- C:\Windows\system32\AxInstSv.dll
2011-04-04 07:05:43 ----A---- C:\Windows\system32\activeds.dll
2011-04-04 07:05:42 ----A---- C:\Windows\system32\wsqmcons.exe
2011-04-04 07:05:42 ----A---- C:\Windows\system32\wmpsrcwp.dll
2011-04-04 07:05:42 ----A---- C:\Windows\system32\wavemsp.dll
2011-04-04 07:05:42 ----A---- C:\Windows\system32\ReAgent.dll
2011-04-04 07:05:42 ----A---- C:\Windows\system32\nshipsec.dll
2011-04-04 07:05:42 ----A---- C:\Windows\system32\nlaapi.dll
2011-04-04 07:05:42 ----A---- C:\Windows\system32\msftedit.dll
2011-04-04 07:05:42 ----A---- C:\Windows\system32\migisol.dll
2011-04-04 07:05:42 ----A---- C:\Windows\system32\isoburn.exe
2011-04-04 07:05:42 ----A---- C:\Windows\system32\httpapi.dll
2011-04-04 07:05:42 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2011-04-04 07:05:42 ----A---- C:\Windows\system32\dot3svc.dll
2011-04-04 07:05:42 ----A---- C:\Windows\system32\cdosys.dll
2011-04-04 07:05:42 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2011-04-04 07:05:42 ----A---- C:\Windows\system32\asycfilt.dll
2011-04-04 07:05:41 ----A---- C:\Windows\system32\wvc.dll
2011-04-04 07:05:41 ----A---- C:\Windows\system32\wuwebv.dll
2011-04-04 07:05:41 ----A---- C:\Windows\system32\wtsapi32.dll
2011-04-04 07:05:41 ----A---- C:\Windows\system32\wlanmsm.dll
2011-04-04 07:05:41 ----A---- C:\Windows\system32\wimgapi.dll
2011-04-04 07:05:41 ----A---- C:\Windows\system32\tzutil.exe
2011-04-04 07:05:41 ----A---- C:\Windows\system32\sysclass.dll
2011-04-04 07:05:41 ----A---- C:\Windows\system32\provsvc.dll
2011-04-04 07:05:41 ----A---- C:\Windows\system32\ocsetup.exe
2011-04-04 07:05:41 ----A---- C:\Windows\system32\dsuiext.dll
2011-04-04 07:05:41 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2011-04-04 07:05:41 ----A---- C:\Windows\system32\dot3ui.dll
2011-04-04 07:05:41 ----A---- C:\Windows\system32\dfrgui.exe
2011-04-04 07:05:41 ----A---- C:\Windows\system32\appinfo.dll
2011-04-04 07:05:40 ----A---- C:\Windows\system32\twext.dll
2011-04-04 07:05:40 ----A---- C:\Windows\system32\mstask.dll
2011-04-04 07:05:40 ----A---- C:\Windows\system32\certprop.dll
2011-04-04 07:05:40 ----A---- C:\Windows\system32\AdmTmpl.dll
2011-04-04 07:05:39 ----A---- C:\Windows\twain_32.dll
2011-04-04 07:05:39 ----A---- C:\Windows\system32\webcheck.dll
2011-04-04 07:05:39 ----A---- C:\Windows\system32\uxlib.dll
2011-04-04 07:05:39 ----A---- C:\Windows\system32\slwga.dll
2011-04-04 07:05:39 ----A---- C:\Windows\system32\shdocvw.dll
2011-04-04 07:05:39 ----A---- C:\Windows\system32\setupugc.exe
2011-04-04 07:05:39 ----A---- C:\Windows\system32\qcap.dll
2011-04-04 07:05:39 ----A---- C:\Windows\system32\qasf.dll
2011-04-04 07:05:39 ----A---- C:\Windows\system32\PresentationSettings.exe
2011-04-04 07:05:39 ----A---- C:\Windows\system32\occache.dll
2011-04-04 07:05:39 ----A---- C:\Windows\system32\msrating.dll
2011-04-04 07:05:39 ----A---- C:\Windows\system32\msfeedsbs.dll
2011-04-04 07:05:39 ----A---- C:\Windows\system32\imm32.dll
2011-04-04 07:05:38 ----A---- C:\Windows\system32\wwanconn.dll
2011-04-04 07:05:38 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2011-04-04 07:05:38 ----A---- C:\Windows\system32\wmdrmsdk.dll
2011-04-04 07:05:38 ----A---- C:\Windows\system32\srrstr.dll
2011-04-04 07:05:38 ----A---- C:\Windows\system32\nslookup.exe
2011-04-04 07:05:38 ----A---- C:\Windows\system32\msvfw32.dll
2011-04-04 07:05:38 ----A---- C:\Windows\system32\mciavi32.dll
2011-04-04 07:05:38 ----A---- C:\Windows\system32\imgutil.dll
2011-04-04 07:05:38 ----A---- C:\Windows\system32\DevicePairingFolder.dll
2011-04-04 07:05:38 ----A---- C:\Windows\system32\clusapi.dll
2011-04-04 07:05:38 ----A---- C:\Windows\system32\audiodev.dll
2011-04-04 07:05:37 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeResults.exe
2011-04-04 07:05:37 ----A---- C:\Windows\system32\wimserv.exe
2011-04-04 07:05:37 ----A---- C:\Windows\system32\TSpkg.dll
2011-04-04 07:05:37 ----A---- C:\Windows\system32\sdrsvc.dll
2011-04-04 07:05:37 ----A---- C:\Windows\system32\remotepg.dll
2011-04-04 07:05:37 ----A---- C:\Windows\system32\rdpencom.dll
2011-04-04 07:05:37 ----A---- C:\Windows\system32\raschap.dll
2011-04-04 07:05:37 ----A---- C:\Windows\system32\QUTIL.DLL
2011-04-04 07:05:37 ----A---- C:\Windows\system32\perfmon.exe
2011-04-04 07:05:37 ----A---- C:\Windows\system32\odbccp32.dll
2011-04-04 07:05:37 ----A---- C:\Windows\system32\ocsetapi.dll
2011-04-04 07:05:37 ----A---- C:\Windows\system32\networkexplorer.dll
2011-04-04 07:05:37 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2011-04-04 07:05:37 ----A---- C:\Windows\system32\msscp.dll
2011-04-04 07:05:37 ----A---- C:\Windows\system32\input.dll
2011-04-04 07:05:37 ----A---- C:\Windows\system32\drmmgrtn.dll
2011-04-04 07:05:37 ----A---- C:\Windows\system32\diskraid.exe
2011-04-04 07:05:37 ----A---- C:\Windows\system32\browser.dll
2011-04-04 07:05:37 ----A---- C:\Windows\system32\acppage.dll
2011-04-04 07:05:36 ----A---- C:\Windows\system32\wpdwcn.dll
2011-04-04 07:05:36 ----A---- C:\Windows\system32\wmpdxm.dll
2011-04-04 07:05:36 ----A---- C:\Windows\system32\vpnikeapi.dll
2011-04-04 07:05:36 ----A---- C:\Windows\system32\vdsbas.dll
2011-04-04 07:05:36 ----A---- C:\Windows\system32\UserAccountControlSettings.dll
2011-04-04 07:05:36 ----A---- C:\Windows\system32\runonce.exe
2011-04-04 07:05:36 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2011-04-04 07:05:36 ----A---- C:\Windows\system32\onexui.dll
2011-04-04 07:05:36 ----A---- C:\Windows\system32\olepro32.dll
2011-04-04 07:05:36 ----A---- C:\Windows\system32\nltest.exe
2011-04-04 07:05:36 ----A---- C:\Windows\system32\Mcx2Svc.dll
2011-04-04 07:05:36 ----A---- C:\Windows\system32\logagent.exe
2011-04-04 07:05:36 ----A---- C:\Windows\system32\iTVData.dll
2011-04-04 07:05:36 ----A---- C:\Windows\system32\inseng.dll
2011-04-04 07:05:36 ----A---- C:\Windows\system32\dxdiagn.dll
2011-04-04 07:05:36 ----A---- C:\Windows\system32\drivers\sdbus.sys
2011-04-04 07:05:36 ----A---- C:\Windows\bfsvc.exe
2011-04-04 07:05:35 ----A---- C:\Windows\system32\sspisrv.dll
2011-04-04 07:05:35 ----A---- C:\Windows\system32\PnPUnattend.exe
2011-04-04 07:05:35 ----A---- C:\Windows\system32\msvidc32.dll
2011-04-04 07:05:35 ----A---- C:\Windows\system32\msiexec.exe
2011-04-04 07:05:35 ----A---- C:\Windows\system32\MFPlay.dll
2011-04-04 07:05:35 ----A---- C:\Windows\system32\eapp3hst.dll
2011-04-04 07:05:35 ----A---- C:\Windows\system32\drivers\rmcast.sys
2011-04-04 07:05:35 ----A---- C:\Windows\system32\d3d10level9.dll
2011-04-04 07:05:34 ----A---- C:\Windows\system32\wudriver.dll
2011-04-04 07:05:34 ----A---- C:\Windows\system32\wmpshell.dll
2011-04-04 07:05:34 ----A---- C:\Windows\system32\wmdrmdev.dll
2011-04-04 07:05:34 ----A---- C:\Windows\system32\unimdmat.dll
2011-04-04 07:05:34 ----A---- C:\Windows\system32\tabcal.exe
2011-04-04 07:05:34 ----A---- C:\Windows\system32\sqlcese30.dll
2011-04-04 07:05:34 ----A---- C:\Windows\system32\shacct.dll
2011-04-04 07:05:34 ----A---- C:\Windows\system32\rdpd3d.dll
2011-04-04 07:05:34 ----A---- C:\Windows\system32\mprapi.dll
2011-04-04 07:05:34 ----A---- C:\Windows\system32\lsmproxy.dll
2011-04-04 07:05:34 ----A---- C:\Windows\system32\iscsium.dll
2011-04-04 07:05:34 ----A---- C:\Windows\system32\bitsadmin.exe
2011-04-04 07:05:33 ----A---- C:\Windows\system32\wwanprotdim.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\WUDFPlatform.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\WPDSp.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\tsgqec.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\srvcli.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2011-04-04 07:05:33 ----A---- C:\Windows\system32\PortableDeviceSyncProvider.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\PortableDeviceStatus.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\pdh.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\OpcServices.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\olethk32.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\odbctrac.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\ncryptui.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\MdSched.exe
2011-04-04 07:05:33 ----A---- C:\Windows\system32\lpremove.exe
2011-04-04 07:05:33 ----A---- C:\Windows\system32\logman.exe
2011-04-04 07:05:33 ----A---- C:\Windows\system32\djoin.exe
2011-04-04 07:05:33 ----A---- C:\Windows\system32\CscMig.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\cscapi.dll
2011-04-04 07:05:33 ----A---- C:\Windows\system32\ActionQueue.dll
2011-04-04 07:05:32 ----A---- C:\Windows\system32\WMPhoto.dll
2011-04-04 07:05:32 ----A---- C:\Windows\system32\WMADMOD.DLL
2011-04-04 07:05:32 ----A---- C:\Windows\system32\wiavideo.dll
2011-04-04 07:05:32 ----A---- C:\Windows\system32\utildll.dll
2011-04-04 07:05:32 ----A---- C:\Windows\system32\takeown.exe
2011-04-04 07:05:32 ----A---- C:\Windows\system32\mshtmled.dll
2011-04-04 07:05:32 ----A---- C:\Windows\system32\mapistub.dll
2011-04-04 07:05:32 ----A---- C:\Windows\system32\mapi32.dll
2011-04-04 07:05:32 ----A---- C:\Windows\system32\fphc.dll
2011-04-04 07:05:32 ----A---- C:\Windows\system32\dot3msm.dll
2011-04-04 07:05:32 ----A---- C:\Windows\system32\avifil32.dll
2011-04-04 07:05:31 ----A---- C:\Windows\system32\WMVSDECD.DLL
2011-04-04 07:05:31 ----A---- C:\Windows\system32\wmdrmnet.dll
2011-04-04 07:05:31 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2011-04-04 07:05:31 ----A---- C:\Windows\system32\sqmapi.dll
2011-04-04 07:05:31 ----A---- C:\Windows\system32\sppinst.dll
2011-04-04 07:05:31 ----A---- C:\Windows\system32\qdv.dll
2011-04-04 07:05:31 ----A---- C:\Windows\system32\QCLIPROV.DLL
2011-04-04 07:05:31 ----A---- C:\Windows\system32\msyuv.dll
2011-04-04 07:05:31 ----A---- C:\Windows\system32\msnetobj.dll
2011-04-04 07:05:31 ----A---- C:\Windows\system32\iyuv_32.dll
2011-04-04 07:05:31 ----A---- C:\Windows\system32\imagehlp.dll
2011-04-04 07:05:31 ----A---- C:\Windows\system32\EhStorAPI.dll
2011-04-04 07:05:30 ----A---- C:\Windows\system32\WUDFx.dll
2011-04-04 07:05:30 ----A---- C:\Windows\system32\WUDFHost.exe
2011-04-04 07:05:30 ----A---- C:\Windows\system32\wsnmp32.dll
2011-04-04 07:05:30 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2011-04-04 07:05:30 ----A---- C:\Windows\system32\vfwwdm32.dll
2011-04-04 07:05:30 ----A---- C:\Windows\system32\unattend.dll
2011-04-04 07:05:30 ----A---- C:\Windows\system32\RelPost.exe
2011-04-04 07:05:30 ----A---- C:\Windows\system32\qprocess.exe
2011-04-04 07:05:30 ----A---- C:\Windows\system32\pdhui.dll
2011-04-04 07:05:30 ----A---- C:\Windows\system32\MuiUnattend.exe
2011-04-04 07:05:30 ----A---- C:\Windows\system32\msrle32.dll
2011-04-04 07:05:30 ----A---- C:\Windows\system32\cmstp.exe
2011-04-04 07:05:30 ----A---- C:\Windows\system32\cca.dll
2011-04-04 07:05:30 ----A---- C:\Windows\system32\basesrv.dll
2011-04-04 07:05:29 ----A---- C:\Windows\system32\wuauclt.exe
2011-04-04 07:05:29 ----A---- C:\Windows\system32\umb.dll
2011-04-04 07:05:29 ----A---- C:\Windows\system32\tsbyuv.dll
2011-04-04 07:05:29 ----A---- C:\Windows\system32\setupcln.dll
2011-04-04 07:05:29 ----A---- C:\Windows\system32\qwinsta.exe
2011-04-04 07:05:29 ----A---- C:\Windows\system32\msorcl32.dll
2011-04-04 07:05:29 ----A---- C:\Windows\system32\msg.exe
2011-04-04 07:05:29 ----A---- C:\Windows\system32\iasrecst.dll
2011-04-04 07:05:29 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2011-04-04 07:05:29 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2011-04-04 07:05:29 ----A---- C:\Windows\system32\chglogon.exe
2011-04-04 07:05:29 ----A---- C:\Windows\system32\AzSqlExt.dll
2011-04-04 07:05:28 ----A---- C:\Windows\system32\wkscli.dll
2011-04-04 07:05:28 ----A---- C:\Windows\system32\WavDest.dll
2011-04-04 07:05:28 ----A---- C:\Windows\system32\sppuinotify.dll
2011-04-04 07:05:28 ----A---- C:\Windows\system32\spbcd.dll
2011-04-04 07:05:28 ----A---- C:\Windows\system32\relog.exe
2011-04-04 07:05:28 ----A---- C:\Windows\system32\PrintIsolationProxy.dll
2011-04-04 07:05:28 ----A---- C:\Windows\system32\netiougc.exe
2011-04-04 07:05:28 ----A---- C:\Windows\system32\iscsicli.exe
2011-04-04 07:05:28 ----A---- C:\Windows\system32\BdeHdCfg.exe
2011-04-04 07:05:27 ----A---- C:\Windows\system32\syssetup.dll
2011-04-04 07:05:27 ----A---- C:\Windows\system32\setbcdlocale.dll
2011-04-04 07:05:27 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2011-04-04 07:05:27 ----A---- C:\Windows\system32\secproc_ssp.dll
2011-04-04 07:05:27 ----A---- C:\Windows\system32\resutils.dll
2011-04-04 07:05:27 ----A---- C:\Windows\system32\rastapi.dll
2011-04-04 07:05:27 ----A---- C:\Windows\system32\quser.exe
2011-04-04 07:05:27 ----A---- C:\Windows\system32\nrpsrv.dll
2011-04-04 07:05:27 ----A---- C:\Windows\system32\netbtugc.exe
2011-04-04 07:05:27 ----A---- C:\Windows\system32\mydocs.dll
2011-04-04 07:05:27 ----A---- C:\Windows\system32\MultiDigiMon.exe
2011-04-04 07:05:27 ----A---- C:\Windows\system32\itircl.dll
2011-04-04 07:05:27 ----A---- C:\Windows\system32\diskpart.exe
2011-04-04 07:05:27 ----A---- C:\Windows\system32\CertPolEng.dll
2011-04-04 07:05:27 ----A---- C:\Windows\system32\amstream.dll
2011-04-04 07:05:26 ----A---- C:\Windows\system32\wuapp.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\wmpps.dll
2011-04-04 07:05:26 ----A---- C:\Windows\system32\wiarpc.dll
2011-04-04 07:05:26 ----A---- C:\Windows\system32\WerFaultSecure.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\tskill.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\tsdiscon.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\tscon.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\tlscsp.dll
2011-04-04 07:05:26 ----A---- C:\Windows\system32\secur32.dll
2011-04-04 07:05:26 ----A---- C:\Windows\system32\rwinsta.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\ReAgentc.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\qappsrv.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\PrintBrmUi.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\netutils.dll
2011-04-04 07:05:26 ----A---- C:\Windows\system32\mciqtz32.dll
2011-04-04 07:05:26 ----A---- C:\Windows\system32\logoff.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\FXSTIFF.dll
2011-04-04 07:05:26 ----A---- C:\Windows\system32\findstr.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\eappgnui.dll
2011-04-04 07:05:26 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2011-04-04 07:05:26 ----A---- C:\Windows\system32\dnscacheugc.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\chgusr.exe
2011-04-04 07:05:26 ----A---- C:\Windows\system32\chgport.exe
2011-04-04 07:05:25 ----A---- C:\Windows\system32\wdiasqmmodule.dll
2011-04-04 07:05:25 ----A---- C:\Windows\system32\unlodctr.exe
2011-04-04 07:05:25 ----A---- C:\Windows\system32\sppc.dll
2011-04-04 07:05:25 ----A---- C:\Windows\system32\spopk.dll
2011-04-04 07:05:25 ----A---- C:\Windows\system32\shimgvw.dll
2011-04-04 07:05:25 ----A---- C:\Windows\system32\shadow.exe
2011-04-04 07:05:25 ----A---- C:\Windows\system32\repair-bde.exe
2011-04-04 07:05:25 ----A---- C:\Windows\system32\prevhost.exe
2011-04-04 07:05:25 ----A---- C:\Windows\system32\netcfg.exe
2011-04-04 07:05:25 ----A---- C:\Windows\system32\netapi32.dll
2011-04-04 07:05:25 ----A---- C:\Windows\system32\muifontsetup.dll
2011-04-04 07:05:25 ----A---- C:\Windows\system32\msdmo.dll
2011-04-04 07:05:25 ----A---- C:\Windows\system32\mobsync.exe
2011-04-04 07:05:25 ----A---- C:\Windows\system32\manage-bde.exe
2011-04-04 07:05:25 ----A---- C:\Windows\system32\luainstall.dll
2011-04-04 07:05:25 ----A---- C:\Windows\system32\iccvid.dll
2011-04-04 07:05:25 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2011-04-04 07:05:25 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2011-04-04 07:05:25 ----A---- C:\Windows\system32\drivers\tdi.sys
2011-04-04 07:05:25 ----A---- C:\Windows\system32\drivers\CompositeBus.sys
2011-04-04 07:05:25 ----A---- C:\Windows\system32\dosx.exe
2011-04-04 07:05:25 ----A---- C:\Windows\system32\cabinet.dll
2011-04-04 07:05:24 ----A---- C:\Windows\system32\wups.dll
2011-04-04 07:05:24 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2011-04-04 07:05:24 ----A---- C:\Windows\system32\vmstorfltres.dll
2011-04-04 07:05:24 ----A---- C:\Windows\system32\vmicres.dll
2011-04-04 07:05:24 ----A---- C:\Windows\system32\vmbusres.dll
2011-04-04 07:05:24 ----A---- C:\Windows\system32\UIRibbonRes.dll
2011-04-04 07:05:24 ----A---- C:\Windows\system32\reset.exe
2011-04-04 07:05:24 ----A---- C:\Windows\system32\rdprefdrvapi.dll
2011-04-04 07:05:24 ----A---- C:\Windows\system32\query.exe
2011-04-04 07:05:24 ----A---- C:\Windows\system32\profprov.dll
2011-04-04 07:05:24 ----A---- C:\Windows\system32\odbcconf.dll
2011-04-04 07:05:24 ----A---- C:\Windows\system32\inetmib1.dll
2011-04-04 07:05:24 ----A---- C:\Windows\system32\drivers\cdrom.sys
2011-04-04 07:05:24 ----A---- C:\Windows\system32\change.exe
2011-04-04 07:05:24 ----A---- C:\Windows\system32\browcli.dll
2011-04-04 07:05:23 ----A---- C:\Windows\system32\perfts.dll
2011-04-04 07:05:23 ----A---- C:\Windows\system32\msfeedssync.exe
2011-04-04 07:05:23 ----A---- C:\Windows\system32\icaapi.dll
2011-04-04 07:05:23 ----A---- C:\Windows\system32\FXSMON.dll
2011-04-04 07:05:23 ----A---- C:\Windows\system32\elsTrans.dll
2011-04-04 07:05:23 ----A---- C:\Windows\system32\drivers\tunnel.sys
2011-04-04 07:05:23 ----A---- C:\Windows\system32\drivers\dfsc.sys
2011-04-04 07:05:22 ----A---- C:\Windows\system32\wshbth.dll
2011-04-04 07:05:22 ----A---- C:\Windows\system32\TRAPI.dll
2011-04-04 07:05:22 ----A---- C:\Windows\system32\schedcli.dll
2011-04-04 07:05:22 ----A---- C:\Windows\system32\RDPENCDD.dll
2011-04-04 07:05:22 ----A---- C:\Windows\system32\napdsnap.dll
2011-04-04 07:05:22 ----A---- C:\Windows\system32\LogonUI.exe
2011-04-04 07:05:22 ----A---- C:\Windows\system32\dsauth.dll
2011-04-04 07:05:22 ----A---- C:\Windows\system32\cscdll.dll
2011-04-04 07:05:22 ----A---- C:\Windows\system32\bitsperf.dll
2011-04-04 07:05:21 ----A---- C:\Windows\system32\sscore.dll
2011-04-04 07:05:21 ----A---- C:\Windows\system32\drivers\acpipmi.sys
2011-04-04 07:05:20 ----A---- C:\Windows\system32\wups2.dll
2011-04-04 07:05:20 ----A---- C:\Windows\system32\wsdchngr.dll
2011-04-04 07:05:20 ----A---- C:\Windows\system32\shgina.dll
2011-04-04 07:05:20 ----A---- C:\Windows\system32\riched32.dll
2011-04-04 07:05:20 ----A---- C:\Windows\system32\drivers\ndiswan.sys
2011-04-04 07:05:19 ----A---- C:\Windows\system32\rdpcfgex.dll
2011-04-04 07:05:19 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2011-04-04 07:05:19 ----A---- C:\Windows\system32\drivers\VMBusHID.sys
2011-04-04 07:05:19 ----A---- C:\Windows\system32\drivers\hidusb.sys
2011-04-04 07:05:19 ----A---- C:\Windows\system32\drivers\appid.sys
2011-04-04 07:05:18 ----A---- C:\Windows\system32\wshirda.dll
2011-04-04 07:05:18 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2011-04-04 07:05:17 ----A---- C:\Windows\system32\vmictimeprovider.dll
2011-04-04 07:05:17 ----A---- C:\Windows\system32\VmdCoinstall.dll
2011-04-04 07:05:17 ----A---- C:\Windows\system32\vmbuspipe.dll
2011-04-04 07:05:17 ----A---- C:\Windows\system32\VmbusCoinstaller.dll
2011-04-04 07:05:17 ----A---- C:\Windows\system32\spwmp.dll
2011-04-04 07:05:17 ----A---- C:\Windows\system32\IcCoinstall.dll
2011-04-04 07:05:17 ----A---- C:\Windows\system32\drivers\USBCAMD2.sys
2011-04-04 07:05:17 ----A---- C:\Windows\system32\drivers\USBCAMD.sys
2011-04-04 07:05:17 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2011-04-04 07:05:17 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2011-04-04 07:05:17 ----A---- C:\Windows\system32\browseui.dll
2011-04-04 07:05:16 ----A---- C:\Windows\system32\shunimpl.dll
2011-04-04 07:05:16 ----A---- C:\Windows\system32\RDPREFDD.dll
2011-04-04 07:05:16 ----A---- C:\Windows\system32\dxmasf.dll
2011-04-04 07:05:16 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2011-04-04 07:05:16 ----A---- C:\Windows\system32\drivers\wanarp.sys
2011-04-04 07:05:16 ----A---- C:\Windows\system32\drivers\umbus.sys
2011-04-04 07:05:16 ----A---- C:\Windows\system32\drivers\tdpipe.sys
2011-04-04 07:05:16 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2011-04-04 07:05:16 ----A---- C:\Windows\system32\drivers\scfilter.sys
2011-04-04 07:05:16 ----A---- C:\Windows\system32\drivers\RDPCDD.sys
2011-04-04 07:05:16 ----A---- C:\Windows\system32\drivers\HdAudio.sys
2011-04-04 07:05:16 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2011-04-04 07:05:16 ----A---- C:\Windows\system32\C_ISCII.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\wmploc.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\tzres.dll
2011-04-04 07:05:15 ----A---- C:\Windows\system32\nlsbres.dll
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDUS.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDUGHR1.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDTURME.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDTUQ.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDTUF.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDTAJIK.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDSG.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDSF.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDPO.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDNEPR.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDMON.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDMAORI.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDLT1.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\kbdlk41a.dll
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDINTEL.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDINTAM.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDINORI.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDINMAR.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDINKAN.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDINHIN.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDINBEN.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDGR1.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDGKL.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDGEO.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDCZ1.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDBULG.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDBLR.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\KBDBASH.DLL
2011-04-04 07:05:15 ----A---- C:\Windows\system32\drivers\vms3cap.sys
2011-04-04 07:05:15 ----A---- C:\Windows\system32\dpnaddr.dll
2011-04-04 07:05:14 ----A---- C:\Windows\system32\spwizres.dll
2011-04-04 07:05:14 ----A---- C:\Windows\system32\pifmgr.dll
2011-04-04 07:05:14 ----A---- C:\Windows\system32\BlbEvents.dll
2011-04-04 07:04:51 ----A---- C:\Windows\system32\wmicmiplugin.dll
2011-04-04 07:04:51 ----A---- C:\Windows\system32\wbemcomn.dll
2011-04-04 07:04:43 ----A---- C:\Windows\system32\SmiEngine.dll
2011-04-04 07:04:37 ----A---- C:\Windows\system32\wdscore.dll
2011-04-04 07:04:37 ----A---- C:\Windows\system32\PkgMgr.exe
2011-04-04 07:04:08 ----A---- C:\Windows\system32\drvstore.dll
2011-04-04 07:04:07 ----A---- C:\Windows\system32\dpx.dll
2011-04-04 06:48:07 ----A---- C:\Windows\system32\FntCache.dll
2011-04-04 06:48:07 ----A---- C:\Windows\system32\DWrite.dll
2011-04-04 06:48:07 ----A---- C:\Windows\system32\d2d1.dll
2011-04-04 06:40:45 ----D---- C:\Program Files\Microsoft IntelliPoint
2011-04-04 06:37:47 ----D---- C:\Program Files\Microsoft IntelliType Pro
2011-04-04 06:37:38 ----D---- C:\Windows\PCHEALTH
2011-04-04 06:32:17 ----A---- C:\Windows\system32\PROUnstl.exe
2011-04-04 06:31:28 ----D---- C:\Program Files\Synaptics
2011-04-04 06:30:33 ----D---- C:\Program Files\CONEXANT
2011-04-04 06:29:57 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-04-04 06:29:57 ----A---- C:\Windows\system32\d3d10_1.dll
2011-04-04 03:01:25 ----D---- C:\Program Files\Microsoft.NET
2011-04-04 00:24:17 ----A---- C:\Windows\system32\MRT.exe
2011-04-04 00:13:38 ----D---- C:\Windows\system32\Wat
2011-04-03 10:32:38 ----D---- C:\Program Files\MSXML 4.0
2011-04-03 04:03:53 ----A---- C:\Windows\system32\win32k.sys
2011-04-03 04:00:12 ----A---- C:\Windows\system32\kerberos.dll
2011-04-03 03:55:55 ----A---- C:\Windows\system32\vbscript.dll
2011-04-03 03:55:55 ----A---- C:\Windows\system32\jscript.dll
2011-04-03 03:53:24 ----A---- C:\Windows\system32\mshtml.dll
2011-04-03 03:51:39 ----A---- C:\Windows\system32\CPFilters.dll
2011-04-03 03:51:38 ----A---- C:\Windows\system32\sbe.dll
2011-04-03 03:51:38 ----A---- C:\Windows\system32\EncDec.dll
2011-04-03 03:49:32 ----A---- C:\Windows\system32\XpsPrint.dll
2011-04-03 03:49:32 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-04-03 03:49:01 ----A---- C:\Windows\system32\fontsub.dll
2011-04-03 03:49:01 ----A---- C:\Windows\system32\atmlib.dll
2011-04-03 03:49:01 ----A---- C:\Windows\system32\atmfd.dll
2011-04-03 03:41:45 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-04-03 03:41:45 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-04-03 03:41:45 ----A---- C:\Windows\system32\cdd.dll
2011-04-02 23:45:35 ----D---- C:\Windows\system32\x64
2011-04-02 23:45:35 ----A---- C:\Windows\system32\igxpun.exe
2011-04-02 23:38:47 ----D---- C:\Users\Chris\AppData\Roaming\WinRAR
2011-04-02 23:33:24 ----D---- C:\Program Files\WinRAR
2011-04-02 23:19:13 ----D---- C:\Program Files\PowerISO
2011-04-02 22:43:31 ----A---- C:\Windows\system32\drivers\sscdwhnt.sys
2011-04-02 22:43:31 ----A---- C:\Windows\system32\drivers\sscdwh.sys
2011-04-02 22:43:31 ----A---- C:\Windows\system32\drivers\sscdserd.sys
2011-04-02 22:43:31 ----A---- C:\Windows\system32\drivers\sscdmdm.sys
2011-04-02 22:43:31 ----A---- C:\Windows\system32\drivers\sscdmdfl.sys
2011-04-02 22:43:31 ----A---- C:\Windows\system32\drivers\sscdcmnt.sys
2011-04-02 22:43:31 ----A---- C:\Windows\system32\drivers\sscdcm.sys
2011-04-02 22:43:31 ----A---- C:\Windows\system32\drivers\sscdbus.sys
2011-04-02 22:43:17 ----D---- C:\ProgramData\Samsung
2011-04-02 22:43:02 ----A---- C:\Windows\system32\FsUsbExService.Exe
2011-04-02 22:43:02 ----A---- C:\Windows\system32\FsUsbExDisk.Sys
2011-04-02 22:43:02 ----A---- C:\Windows\system32\FsUsbExDevice.Dll
2011-04-02 22:42:54 ----D---- C:\Users\Chris\AppData\Roaming\Samsung
2011-04-02 22:42:37 ----D---- C:\Program Files\InstallShield Installation Information
2011-04-02 22:41:48 ----D---- C:\Program Files\MarkAny
2011-04-02 22:41:38 ----D---- C:\Program Files\Samsung
2011-04-02 22:40:23 ----SHD---- C:\Windows\Installer
2011-04-02 22:20:06 ----D---- C:\Windows\Panther
2011-04-02 22:19:54 ----RASH---- C:\BOOTSECT.BAK
2011-04-02 22:19:51 ----SHD---- C:\Boot
2011-04-02 21:24:19 ----D---- C:\Windows\SoftwareDistribution
2011-04-02 21:22:03 ----D---- C:\Windows\Prefetch
2011-04-02 21:21:14 ----ASH---- C:\pagefile.sys
2011-04-02 21:21:02 ----SHD---- C:\System Volume Information
2011-04-02 21:21:02 ----ASH---- C:\hiberfil.sys
2011-04-02 19:30:32 ----D---- C:\Users\Chris\AppData\Roaming\Macromedia
2011-04-02 19:30:32 ----D---- C:\Users\Chris\AppData\Roaming\Adobe
2011-04-02 19:30:25 ----D---- C:\Windows\system32\Macromed
2011-04-02 19:30:03 ----N---- C:\Windows\system32\MpSigStub.exe
2011-04-02 19:10:17 ----D---- C:\Users\Chris\AppData\Roaming\Mozilla
2011-04-02 19:10:11 ----D---- C:\Program Files\Mozilla Firefox
2011-04-02 18:34:06 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-04-02 18:32:51 ----D---- C:\Users\Chris\AppData\Roaming\Identities
2011-04-02 18:32:38 ----SD---- C:\Users\Chris\AppData\Roaming\Microsoft
2011-04-02 18:32:38 ----D---- C:\Users\Chris\AppData\Roaming\Media Center Programs
2011-04-02 18:32:28 ----SHD---- C:\Recovery

======List of files/folders modified in the last 1 months======

2011-04-16 17:34:02 ----D---- C:\Windows\Tasks
2011-04-16 17:30:49 ----RD---- C:\Program Files
2011-04-16 17:22:25 ----D---- C:\Windows\system32\Tasks
2011-04-16 17:01:18 ----D---- C:\Windows\System32
2011-04-16 17:01:18 ----D---- C:\Windows\inf
2011-04-16 16:55:32 ----D---- C:\Windows\Temp
2011-04-16 16:54:47 ----D---- C:\Windows
2011-04-16 16:50:57 ----D---- C:\Windows\system32\drivers\etc
2011-04-16 16:04:57 ----D---- C:\Windows\Logs
2011-04-16 14:48:21 ----HD---- C:\ProgramData
2011-04-16 14:35:17 ----D---- C:\Program Files\Common Files\microsoft shared
2011-04-16 00:52:34 ----D---- C:\Windows\system32\config
2011-04-14 03:51:32 ----SD---- C:\ProgramData\Microsoft
2011-04-14 02:07:35 ----RSD---- C:\Windows\Fonts
2011-04-07 14:47:31 ----D---- C:\Windows\system32\drivers
2011-04-07 14:47:29 ----D---- C:\Windows\system32\drivers\UMDF
2011-04-07 00:39:05 ----D---- C:\Windows\system32\wdi
2011-04-05 03:14:24 ----D---- C:\Program Files\Common Files
2011-04-05 03:13:07 ----D---- C:\Windows\winsxs
2011-04-04 10:11:59 ----D---- C:\Windows\rescache
2011-04-04 09:55:18 ----D---- C:\Windows\system32\LogFiles
2011-04-04 09:35:39 ----D---- C:\Windows\Microsoft.NET
2011-04-04 09:35:15 ----RSD---- C:\Windows\assembly
2011-04-04 09:21:19 ----D---- C:\Windows\system32\DriverStore
2011-04-04 09:21:15 ----D---- C:\Windows\system32\catroot2
2011-04-04 09:18:49 ----D---- C:\Windows\system32\catroot
2011-04-04 09:17:40 ----D---- C:\Program Files\Windows Sidebar
2011-04-04 09:17:40 ----D---- C:\Program Files\Windows Portable Devices
2011-04-04 09:17:40 ----D---- C:\Program Files\Windows Media Player
2011-04-04 09:17:40 ----D---- C:\Program Files\Windows Mail
2011-04-04 09:17:40 ----D---- C:\Program Files\Internet Explorer
2011-04-04 09:17:40 ----D---- C:\Program Files\DVD Maker
2011-04-04 09:17:39 ----D---- C:\Program Files\Windows Photo Viewer
2011-04-04 09:17:39 ----D---- C:\Program Files\Windows Journal
2011-04-04 09:17:39 ----D---- C:\Program Files\Windows Defender
2011-04-04 09:17:38 ----D---- C:\Windows\servicing
2011-04-04 09:17:38 ----D---- C:\Windows\ehome
2011-04-04 09:17:37 ----SHD---- C:\Windows\BitLockerDiscoveryVolumeContents
2011-04-04 09:17:33 ----D---- C:\Windows\system32\da-DK
2011-04-04 09:17:33 ----D---- C:\Windows\PolicyDefinitions
2011-04-04 09:17:32 ----D---- C:\Windows\system32\sysprep
2011-04-04 09:17:32 ----D---- C:\Windows\system32\oobe
2011-04-04 09:17:32 ----D---- C:\Windows\system32\migration
2011-04-04 09:17:32 ----D---- C:\Windows\system32\en-US
2011-04-04 09:17:31 ----D---- C:\Windows\system32\sppui
2011-04-04 09:17:31 ----D---- C:\Windows\system32\Setup
2011-04-04 09:17:31 ----D---- C:\Windows\system32\manifeststore
2011-04-04 09:17:31 ----D---- C:\Windows\system32\es-ES
2011-04-04 09:17:31 ----D---- C:\Windows\system32\en
2011-04-04 09:17:31 ----D---- C:\Windows\system32\cs-CZ
2011-04-04 09:17:31 ----D---- C:\Windows\system32\AdvancedInstallers
2011-04-04 09:17:30 ----D---- C:\Windows\system32\wbem
2011-04-04 09:17:30 ----D---- C:\Windows\system32\migwiz
2011-04-04 09:17:30 ----D---- C:\Windows\system32\drivers\en-US
2011-04-04 09:17:30 ----D---- C:\Windows\system32\Dism
2011-04-04 09:17:16 ----D---- C:\Windows\AppPatch
2011-04-04 09:17:07 ----D---- C:\Windows\system32\Boot
2011-04-04 07:15:19 ----A---- C:\Windows\system32\msclmd.dll
2011-04-04 00:24:20 ----D---- C:\Windows\debug
2011-04-02 21:21:54 ----D---- C:\Windows\CSC
2011-04-02 19:29:46 ----D---- C:\Windows\system32\restore
2011-04-02 18:46:53 ----D---- C:\Windows\system32\CodeIntegrity
2011-04-02 18:32:48 ----SHD---- C:\$Recycle.Bin
2011-04-02 18:32:37 ----RD---- C:\Users
2011-04-02 18:32:28 ----D---- C:\Windows\system32\Recovery

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2007-08-06 33052]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-18 12672]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-14 37376]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2007-07-10 8704]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2009-07-08 2506232]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT32.sys [2008-03-03 182272]
R3 dc3d;MS Hardware Device Detection Driver (USB); C:\Windows\system32\DRIVERS\dc3d.sys [2011-01-06 44416]
R3 E100B;Intel(R) PRO Network Connection Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2007-11-16 165496]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2010-07-05 36608]
R3 HBtnKey;HP Hotkey Device; C:\Windows\system32\DRIVERS\cpqbttn.sys [2010-02-25 15544]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2007-06-20 984064]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2007-06-20 208896]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-09-23 4808192]
R3 NuidFltr;NUID filter driver; C:\Windows\system32\DRIVERS\NuidFltr.sys [2010-06-30 21520]
R3 Point32;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point32.sys [2011-01-07 40800]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-03-28 199472]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2007-06-20 660480]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-13 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-13 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-13 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-13 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-13 52304]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-04-26 104648]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-04-26 14920]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-04-26 132424]
S3 sscdserd;SAMSUNG Mobile Modem Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\sscdserd.sys [2010-04-26 110280]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-13 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-13 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-13 20992]
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2010-07-08 238952]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2007-07-10 386560]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-13 20992]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-13 20992]
S3 SwitchBoard;Adobe SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-13 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-04-03 1343400]

-----------------EOF-----------------

**Blade81** · 2011-04-20, 07:41

Hi

I think you missed BEFORE you POST (READ this Procedure BEFORE Requesting Assistance). Please follow the steps there to create DDS logs. Copy paste their contents back into this topic

**Blade81** · 2011-04-26, 08:30

Due to inactivity, this thread will now be closed.

Note:If it has been three days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh DDS log and a link to your previous thread. Please do not add any logs that might have been requested in the closed topic, you would be starting fresh.

If it has been less than three days since your last response and you need the thread re-opened, please send me or other MOD a private message (pm). A valid, working link to the closed topic is required.

Thread: click.giftload and defender disabler and more! Help?

Thread Tools

Display

click.giftload and defender disabler and more! Help?

Posting Permissions