vulrftpl.dll keeps popping up in my runonce registry even after I delete it.

benraines · Sep 7, 2008

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:09:16, on 9/7/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Linksys\Network Storage\Network Drive Mapping Utility.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9c.exe
C:\Windows\regedit.exe
C:\Windows\Explorer.exe
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.defaulthomepage.info
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [OutpostFeedBack] "C:\Program Files\Agnitum\Outpost Security Suite Pro\feedback.exe" /dump

s_startup
O4 - HKLM\..\Run: [Network Drive Mapping Utility] "C:\Program Files\Linksys\Network Storage\Network Drive Mapping Utility.exe" Z
O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NVHotkey] rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
O4 - HKLM\..\Run: [OutpostMonitor] C:\Program Files\Agnitum\Outpost Security Suite Pro\op_mon.exe /tray /noservice
O4 - HKLM\..\RunOnce: [suite20] C:\Windows\system32\rundll32.exe "C:\Program Files\Agnitum\Outpost Security Suite Pro\op_install.dll",update_done32 1 C:\Program Files\Agnitum\Outpost Security Suite Pro
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Network Drive Mapping Utility] "C:\Program Files\Linksys\Network Storage\Network Drive Mapping Utility.exe"
O4 - HKCU\..\Run: [f82ced8b] rundll32.exe "C:\Users\BENRAI~1\AppData\Local\Temp\vulrftpl.dll",b
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - Global Startup: QuickSet.lnk = C:\Program Files\Dell\QuickSet\quickset.exe
O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Customize Menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Fill Forms - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O8 - Extra context menu item: RoboForm Toolbar - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: Save Forms - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O15 - Trusted Zone: http://linktrader.cyberspacehq.com
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD44/J...4a/&filename=jinstall-6u7-windows-i586-jc.cab
O20 - AppInit_DLLs: c:\progra~1\google\google~3\goec62~1.dll,"c:\progra~1\kasper~1\kasper~1.0\adialhk.dll" c:\progra~1\google\google~3\goec62~1.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe

--
End of file - 10329 bytes

Shaba · Sep 9, 2008

Hi benraines

Please download Malwarebytes Anti-Malware and save it to your desktop.
alternate download link 1
alternate download link 2

Make sure you are connected to the Internet.
Double-click on mbam-setup.exe to install the application.
When the installation begins, follow the prompts and do not make any changes to default settings.
When installation has finished, make sure you leave both of these checked:
- Update Malwarebytes' Anti-Malware
- Launch Malwarebytes' Anti-Malware
Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan. If an update is found, the program will automatically update itself. Press the OK button to close that box and continue. If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.
On the Scanner tab:
- Make sure the "Perform Full Scan" option is selected.
- Then click on the Scan button.
If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen, click on the Show Results button to see a list of any malware that was found.
Make sure that everything is checked, and click Remove Selected.
When removal is completed, a log report will open in Notepad and you may be prompted to restart your computer. (see Note below)
The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
Copy and paste the contents of that report in your next reply and exit MBAM.

Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.

Download random's system information tool (RSIT) by random/random from here and save it to your desktop.
Double click on RSIT.exe to run RSIT.
Click Continue at the disclaimer screen.
Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)

Post:

- mbam report
- rsit log (taken after mbam run)

benraines · Sep 11, 2008

Malwarebytes' Anti-Malware 1.27
Database version: 1133
Windows 6.0.6001 Service Pack 1

9/10/2008 21:13:50
mbam-log-2008-09-10 (21-13-50).txt

Scan type: Full Scan (C:\|F:\|)
Objects scanned: 204254
Time elapsed: 2 hour(s), 14 minute(s), 42 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 3
Registry Values Infected: 5
Registry Data Items Infected: 0
Folders Infected: 1
Files Infected: 3

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\MS Juan (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Software Notifier (Rogue.Multiple) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\f82ced8b (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Control Panel\Desktop\wallpaper (Hijack.Wallpaper) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Control Panel\Desktop\originalwallpaper (Hijack.Wallpaper) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Control Panel\Desktop\convertedwallpaper (Hijack.Wallpaper) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Control Panel\Desktop\scrnsave.exe (Hijack.Wallpaper) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
C:\Users\BenRaines\AppData\Roaming\Microsoft\dtsc (Trojan.Agent) -> Quarantined and deleted successfully.

Files Infected:
C:\Users\BenRaines\Desktop\roxio-10-.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Users\BenRaines\AppData\Roaming\Microsoft\dtsc\5635.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Users\BenRaines\AppData\Roaming\Microsoft\dtsc\s (Trojan.Agent) -> Quarantined and deleted successfully.

Shaba · Sep 11, 2008

Please post also RSIT logs

benraines · Sep 13, 2008

RSIT Log Part 1

Logfile of random's system information tool (written by random/random)
Run by BenRaines at 2008-09-10 21:17:56
Microsoft® Windows Vista™ Ultimate Service Pack 1
System drive C: has 7 GB (23%) free of 30 GB
Total RAM: 3325 MB (52% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:18:28, on 9/10/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Agnitum\Outpost Security Suite Pro\op_mon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Linksys\Network Storage\Network Drive Mapping Utility.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files\Agnitum\Outpost Security Suite Pro\plugins\anti-spam\asp_srv.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\BENRAI~1\AppData\Local\Temp\Rar$EX00.769\BayGenie eBay Auction Sniper Pro Edition 3.17\eBay.Auction.Sniper.exe
C:\Users\BENRAI~1\AppData\Local\Temp\is-VP28N.tmp\eBay.Auction.Sniper.tmp
C:\Users\BENRAI~1\AppData\Local\Temp\Rar$EX00.769\BayGenie eBay Auction Sniper Pro Edition 3.17\eBay.Auction.Sniper.exe
C:\Users\BENRAI~1\AppData\Local\Temp\is-9APMV.tmp\eBay.Auction.Sniper.tmp
C:\Windows\Explorer.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Siber Systems\AI RoboForm\Passcards.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\BenRaines\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\BenRaines.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.defaulthomepage.info
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\kb127\Dealio.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb127\Dealio.dll
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [OutpostFeedBack] "C:\Program Files\Agnitum\Outpost Security Suite Pro\feedback.exe" /dump

s_startup
O4 - HKLM\..\Run: [Network Drive Mapping Utility] "C:\Program Files\Linksys\Network Storage\Network Drive Mapping Utility.exe" Z
O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NVHotkey] rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
O4 - HKLM\..\Run: [OutpostMonitor] C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe /tray /noservice
O4 - HKLM\..\Run: [au] C:\Program Files\Dealio\DealioAU.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Network Drive Mapping Utility] "C:\Program Files\Linksys\Network Storage\Network Drive Mapping Utility.exe"
O4 - HKCU\..\Run: [f82ced8b] rundll32.exe "C:\Users\BENRAI~1\AppData\Local\Temp\vulrftpl.dll",b
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - Global Startup: QuickSet.lnk = C:\Program Files\Dell\QuickSet\quickset.exe
O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Customize Menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Fill Forms - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O8 - Extra context menu item: RoboForm Toolbar - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: Save Forms - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O13 - Gopher Prefix:
O15 - Trusted Zone: http://linktrader.cyberspacehq.com
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD44/J...4a/&filename=jinstall-6u7-windows-i586-jc.cab
O20 - AppInit_DLLs: c:\progra~1\agnitum\outpos~1\wl_hook.dll c:\progra~1\google\google~3\goec62~1.dll,"c:\progra~1\kasper~1\kasper~1.0\adialhk.dll" c:\progra~1\google\google~3\goec62~1.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe

--
End of file - 11284 bytes

Scheduled tasks folder

C:\Windows\tasks\Spybot - Search & Destroy - Scheduled Task.job
C:\Windows\tasks\XoftSpySE 2.job
C:\Windows\tasks\XoftSpySE.job

Registry dump

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
FGCatchUrl - C:\Program Files\FlashGet\jccatch.dll [2007-09-11 94308]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-07-07 1562448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6A87B991-A31F-4130-AE72-6D0C294BF082}]
DealioBHO Class - C:\Program Files\Dealio\kb127\Dealio.dll [2008-05-26 3170144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2008-08-04 5751624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar2.dll [2007-01-19 2403392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-03-29 321120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}]
FlashGet GetFlash Class - C:\Program Files\FlashGet\getflash.dll [2007-09-11 163840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-03-29 321120]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar2.dll [2007-01-19 2403392]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll [2008-08-04 5751624]
{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - Dealio - C:\Program Files\Dealio\kb127\Dealio.dll [2008-05-26 3170144]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PWRISOVM.EXE"=C:\Program Files\PowerISO\PWRISOVM.EXE [2006-01-31 180224]
"OutpostFeedBack"=C:\Program Files\Agnitum\Outpost Security Suite Pro\feedback.exe [2008-07-15 435544]
"Network Drive Mapping Utility"=C:\Program Files\Linksys\Network Storage\Network Drive Mapping Utility.exe [2007-06-08 278144]
"SigmatelSysTrayApp"=C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [2007-09-13 405504]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-11-15 815104]
"NvSvc"=C:\Windows\system32\nvsvc.dll [2007-10-04 86016]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2007-10-04 8497696]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2007-10-04 81920]
"NVHotkey"=C:\Windows\system32\nvHotkey.dll [2007-10-04 86016]
"OutpostMonitor"=C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe [2008-07-15 1207128]
"au"=C:\Program Files\Dealio\DealioAU.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe [2008-08-02 171448]
"RoboForm"=C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [2008-08-04 160592]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-08-18 1832272]
"Network Drive Mapping Utility"=C:\Program Files\Linksys\Network Storage\Network Drive Mapping Utility.exe [2007-06-08 278144]
"f82ced8b"=C:\Users\BENRAI~1\AppData\Local\Temp\vulrftpl.dll []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [2007-03-29 624248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent DNA]
C:\Users\BenRaines\Program Files\DNA\btdna.exe [2008-08-13 341824]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cmds]
C:\Users\BENRAI~1\AppData\Local\Temp\fccbXnMf.dll []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DMXLauncher]
C:\Program Files\Roxio\CinePlayer\DMXLauncher.exe [2007-08-14 113136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Flashget]
C:\Program Files\FlashGet\FlashGet.exe [2007-09-25 2007088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Kernel and Hardware Abstraction Layer]
C:\Windows\KHALMNPR.EXE [2008-02-29 76304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxdfamon]
C:\Program Files\Lexmark 6500 Series\lxdfamon.exe [2007-06-01 20480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxdfmon.exe]
C:\Program Files\Lexmark 6500 Series\lxdfmon.exe [2007-06-11 455600]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray]
C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatchTray10.exe [2007-08-24 240112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2008-01-18 1008184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Logitech SetPoint.lnk]
C:\PROGRA~1\Logitech\SetPoint\SetPoint.exe [2008-05-02 805392]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
QuickSet.lnk - C:\Program Files\Dell\QuickSet\quickset.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="c:\progra~1\agnitum\outpos~1\wl_hook.dll c:\progra~1\google\google~3\goec62~1.dll,"c:\progra~1\kasper~1\kasper~1.0\adialhk.dll" c:\progra~1\google\google~3\goec62~1.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll [2008-07-11 233888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{F6A9C779-4730-42F7-9142-432860D0B778}"= []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdcoreservice]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"NoDispScrSavPage"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fbdc2a72-504d-11dd-9e6a-00188bb6ee24}]
shell\AutoRun\command - G:\PortableRoboForm.exe
shell\RoboForm2Go\command - G:\PortableRoboForm.exe

List of files/folders created in the last three months

2008-09-10 21:17:56 ----D---- C:\rsit
2008-09-10 21:09:53 ----D---- C:\Program Files\Dealio
2008-09-10 21:09:14 ----D---- C:\Program Files\Fotosizer
2008-09-09 23:31:45 ----A---- C:\Windows\system32\uuddc32.dll
2008-09-09 23:31:44 ----D---- C:\Program Files\BayGenie
2008-09-09 17:17:40 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-09-09 17:17:39 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-09-09 17:17:36 ----A---- C:\Windows\system32\wmpeffects.dll
2008-09-09 17:17:32 ----A---- C:\Windows\system32\emdmgmt.dll
2008-09-09 17:17:32 ----A---- C:\Windows\system32\dataclen.dll
2008-09-09 17:17:32 ----A---- C:\Windows\system32\cdd.dll
2008-09-07 23:42:26 ----D---- C:\Program Files\Common Files\Real
2008-09-07 23:41:49 ----DC---- C:\Users\BenRaines\AppData\Roaming\Real
2008-09-07 23:41:41 ----D---- C:\Program Files\Real
2008-09-07 23:40:30 ----D---- C:\Program Files\V CAST Music with Rhapsody
2008-09-07 23:35:18 ----D---- C:\Program Files\LG Electronics
2008-09-07 23:33:48 ----D---- C:\Program Files\Verizon Wireless
2008-09-07 20:57:45 ----D---- C:\Downloads
2008-09-07 12:08:40 ----D---- C:\Program Files\Trend Micro
2008-09-06 11:14:29 ----DC---- C:\Users\BenRaines\AppData\Roaming\Malwarebytes
2008-09-06 11:14:20 ----D---- C:\ProgramData\Malwarebytes
2008-09-06 11:14:19 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-09-06 02:31:18 ----D---- C:\Program Files\Common Files\PC Tools
2008-09-06 02:31:09 ----DC---- C:\Users\BenRaines\AppData\Roaming\PC Tools
2008-09-06 02:31:09 ----D---- C:\ProgramData\PC Tools
2008-09-06 02:31:09 ----D---- C:\Program Files\Spyware Doctor
2008-08-28 22:12:21 ----D---- C:\Program Files\Panasonic
2008-08-27 21:22:40 ----D---- C:\ProgramData\WindowsSearch
2008-08-27 16:53:44 ----A---- C:\Windows\system32\wups2.dll
2008-08-27 16:53:44 ----A---- C:\Windows\system32\wucltux.dll
2008-08-27 16:53:44 ----A---- C:\Windows\system32\wuauclt.exe
2008-08-27 16:53:43 ----A---- C:\Windows\system32\wuaueng.dll
2008-08-27 16:53:28 ----A---- C:\Windows\system32\wups.dll
2008-08-27 16:53:28 ----A---- C:\Windows\system32\wudriver.dll
2008-08-27 16:53:28 ----A---- C:\Windows\system32\wuapi.dll
2008-08-27 16:53:13 ----A---- C:\Windows\system32\wuwebv.dll
2008-08-27 16:53:12 ----A---- C:\Windows\system32\wuapp.exe
2008-08-26 21:14:25 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-08-24 23:22:04 ----A---- C:\Windows\wininit.ini
2008-08-24 22:58:05 ----D---- C:\VundoFix Backups
2008-08-24 21:28:46 ----A---- C:\Windows\system32\tmp.txt
2008-08-24 21:28:44 ----A---- C:\rapport.txt
2008-08-24 21:28:26 ----A---- C:\Windows\system32\WS2Fix.exe
2008-08-24 21:28:26 ----A---- C:\Windows\system32\VACFix.exe
2008-08-24 21:28:26 ----A---- C:\Windows\system32\IEDFix.exe
2008-08-24 21:28:26 ----A---- C:\Windows\system32\IEDFix.C.exe
2008-08-24 21:28:26 ----A---- C:\Windows\system32\404Fix.exe
2008-08-24 21:28:25 ----A---- C:\Windows\system32\VCCLSID.exe
2008-08-24 21:28:25 ----A---- C:\Windows\system32\swxcacls.exe
2008-08-24 21:28:25 ----A---- C:\Windows\system32\swsc.exe
2008-08-24 21:28:25 ----A---- C:\Windows\system32\SrchSTS.exe
2008-08-24 21:28:25 ----A---- C:\Windows\system32\dumphive.exe
2008-08-24 21:28:24 ----A---- C:\Windows\system32\swreg.exe
2008-08-24 21:19:54 ----D---- C:\Program Files\XoftSpySE
2008-08-24 12:46:44----A----C:\ProgramData\pskt.ini
2008-08-24 12:46:44----A----C:\ProgramData\BMfb1fde17.txt
2008-08-24 12:42:23 ----D---- C:\Program Files\uTorrent
2008-08-24 12:42:20 ----D---- C:\ProgramData\Spybot - Search & Destroy
2008-08-23 22:54:01 ----D---- C:\Program Files\Symantec
2008-08-23 22:53:55 ----D---- C:\ProgramData\Symantec Shared
2008-08-20 18:02:33 ----RA---- C:\Windows\system32\AdobePDF.dll
2008-08-19 23:15:04 ----DC---- C:\Users\BenRaines\AppData\Roaming\CoreFTP
2008-08-17 23:49:36 ----DC---- C:\Users\BenRaines\AppData\Roaming\Intel
2008-08-17 23:49:33 ----D---- C:\ProgramData\Roaming
2008-08-17 23:49:00 ----D---- C:\ProgramData\Intel
2008-08-17 23:48:48 ----D---- C:\Program Files\Cisco
2008-08-17 23:39:10 ----D---- C:\Program Files\O2Micro OZ776 SCR Driver
2008-08-17 23:37:14 ----D---- C:\Program Files\Intel
2008-08-17 23:36:05 ----D---- C:\Program Files\Synaptics
2008-08-17 23:35:19 ----A---- C:\Windows\system32\WdfCoInstaller01000.dll
2008-08-17 23:35:18 ----A---- C:\Windows\system32\SynTPCo4.dll
2008-08-17 23:35:18 ----A---- C:\Windows\system32\SynTPAPI.dll
2008-08-17 23:35:17 ----A---- C:\Windows\system32\SynCtrl.dll
2008-08-17 23:35:17 ----A---- C:\Windows\system32\SynCOM.dll
2008-08-17 23:33:23 ----DC---- C:\Users\BenRaines\AppData\Roaming\Dell
2008-08-17 23:33:16 ----D---- C:\ProgramData\Dell
2008-08-17 23:32:57 ----D---- C:\Program Files\Dell
2008-08-17 23:29:25 ----A---- C:\Windows\system32\stlang.dll
2008-08-17 23:29:25 ----A---- C:\Windows\system32\stacsv.exe
2008-08-17 23:28:43 ----A---- C:\Windows\system32\stcplx.dll
2008-08-17 23:28:43 ----A---- C:\Windows\system32\stapo.dll

2008-08-17 23:28:43 ----A---- C:\Windows\system32\stapi32.dll
2008-08-17 23:28:43 ----A---- C:\Windows\system32\st325614.dll
2008-08-17 23:28:43 ----A---- C:\Windows\system32\ctppld.dll
2008-08-17 23:28:43 ----A---- C:\Windows\system32\ctapo32.dll
2008-08-17 23:28:42 ----D---- C:\Program Files\SigmaTel
2008-08-17 23:20:41 ----D---- C:\dell
2008-08-17 22:43:33 ----D---- C:\Program Files\CoreFTP
2008-08-17 21:42:32 ----D---- C:\Windows\pss
2008-08-14 19:55:19 ----D---- C:\Program Files\MSXML 4.0
2008-08-13 22:00:48 ----D---- C:\ProgramData\LogiShrd
2008-08-13 22:00:47 ----DC---- C:\Users\BenRaines\AppData\Roaming\Logitech
2008-08-13 21:57:47 ----A---- C:\Windows\system32\BtCoreIf.dll
2008-08-13 21:57:39 ----A---- C:\Windows\system32\KemXML.dll
2008-08-13 21:57:39 ----A---- C:\Windows\system32\KemWnd.dll
2008-08-13 21:57:39 ----A---- C:\Windows\system32\KemUtil.dll
2008-08-13 21:57:39 ----A---- C:\Windows\system32\kemutb.dll
2008-08-13 21:56:56 ----D---- C:\ProgramData\Logitech
2008-08-13 21:56:48 ----D---- C:\Program Files\Common Files\Logishrd
2008-08-13 21:56:45 ----D---- C:\Program Files\Logitech
2008-08-13 00:16:13 ----DC---- C:\Users\BenRaines\AppData\Roaming\Roxio
2008-08-13 00:13:57 ----D---- C:\Program Files\InterActual
2008-08-12 23:33:24 ----D---- C:\ProgramData\Sonic
2008-08-12 23:30:15 ----D---- C:\ProgramData\Roxio
2008-08-12 23:28:10 ----D---- C:\Program Files\Common Files\PX Storage Engine
2008-08-12 23:28:08 ----D---- C:\Program Files\Common Files\Sonic Shared
2008-08-12 23:27:34 ----D---- C:\Program Files\Common Files\Roxio Shared
2008-08-12 23:27:14 ----D---- C:\ProgramData\InstallShield
2008-08-12 23:27:07 ----ASHC---- C:\Users\BenRaines\AppData\Roaming\desktop.ini
2008-08-12 23:27:04 ----D---- C:\Program Files\Roxio
2008-08-12 23:26:07 ----A---- C:\Windows\system32\d3dx10_33.dll
2008-08-12 23:26:06 ----A---- C:\Windows\system32\d3dx9_33.dll
2008-08-12 23:26:06 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2008-08-12 23:24:41 ----D---- C:\Windows\system32\URTTEMP
2008-08-12 18:13:45 ----DC---- C:\Users\BenRaines\AppData\Roaming\Media Player Classic
2008-08-12 18:12:44 ----A---- C:\Windows\system32\unrar.dll
2008-08-12 18:12:42 ----A---- C:\Windows\avisplitter.ini
2008-08-12 18:12:40 ----A---- C:\Windows\system32\yv12vfw.dll
2008-08-12 18:12:40 ----A---- C:\Windows\system32\xvidvfw.dll
2008-08-12 18:12:40 ----A---- C:\Windows\system32\xvidcore.dll
2008-08-12 18:12:39 ----A---- C:\Windows\system32\qt-dx331.dll
2008-08-12 18:12:39 ----A---- C:\Windows\system32\dpl100.dll
2008-08-12 18:12:39 ----A---- C:\Windows\system32\divx.dll
2008-08-12 18:12:38 ----A---- C:\Windows\system32\ff_vfw.dll.manifest
2008-08-12 18:12:38 ----A---- C:\Windows\system32\ff_vfw.dll
2008-08-12 18:12:37 ----D---- C:\Program Files\K-Lite Codec Pack
2008-08-12 15:45:37 ----A---- C:\Windows\system32\tzres.dll
2008-08-12 15:39:33 ----A---- C:\Windows\system32\mshtml.dll
2008-08-12 15:39:32 ----A---- C:\Windows\system32\ieframe.dll
2008-08-12 15:39:31 ----A---- C:\Windows\system32\wininet.dll
2008-08-12 15:39:31 ----A---- C:\Windows\system32\urlmon.dll
2008-08-12 15:39:30 ----A---- C:\Windows\system32\mstime.dll
2008-08-12 15:39:30 ----A---- C:\Windows\system32\jsproxy.dll
2008-08-12 15:38:53 ----A---- C:\Windows\system32\IPSECSVC.DLL
2008-08-12 15:37:54 ----A---- C:\Windows\system32\es.dll
2008-08-12 15:37:25 ----A---- C:\Windows\system32\inetcomm.dll
2008-08-12 13:24:56 ----DC---- C:\Users\BenRaines\AppData\Roaming\BitTorrent
2008-08-12 13:24:36 ----DC---- C:\Users\BenRaines\AppData\Roaming\DNA
2008-08-12 13:24:36 ----D---- C:\Program Files\DNA
2008-08-12 13:24:35 ----D---- C:\Program Files\BitTorrent
2008-08-10 15:55:34 ----A---- C:\Windows\system32\javaws.exe
2008-08-10 15:55:34 ----A---- C:\Windows\system32\javaw.exe
2008-08-10 15:55:34 ----A---- C:\Windows\system32\java.exe
2008-08-10 15:54:35 ----D---- C:\Program Files\Java
2008-08-10 15:53:17 ----D---- C:\Program Files\Common Files\Java
2008-08-10 05:20:14 ----D---- C:\Program Files\NewTech Infosystems
2008-08-10 00:56:01 ----D---- C:\Program Files\Linksys
2008-08-10 00:55:33 ----D---- C:\Program Files\Common Files\InstallShield
2008-08-09 14:04:50 ----DC---- C:\Users\BenRaines\AppData\Roaming\OPHD
2008-08-09 09:37:01 ----DC---- C:\Users\BenRaines\AppData\Roaming\FlashGet
2008-08-09 09:36:44 ----D---- C:\Program Files\FlashGet
2008-08-08 17:58:12 ----D---- C:\Windows\Minidump
2008-08-04 21:46:49 ----AD---- C:\ProgramData\TEMP
2008-08-04 21:46:43 ----D---- C:\Program Files\Ace Utilities
2008-08-04 19:52:11 ----D---- C:\ProgramData\OPHD
2008-08-04 19:47:55 ----D---- C:\logs
2008-08-04 19:45:05 ----A---- C:\Windows\system32\gdiplus.dll
2008-08-04 19:44:46 ----A---- C:\Windows\system32\lxdfinst.dll
2008-08-04 19:44:46 ----A---- C:\Windows\system32\lxdfhcp.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfutil.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfusb1.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfserv.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfprox.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfpmui.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdflmpm.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfjswr.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfinsr.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfinsb.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfins.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfinpa.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfih.exe
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfiesc.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfhbn3.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfgrd.dll
2008-08-04 19:44:45 ----A---- C:\Windows\system32\lxdfgf.dll
2008-08-04 19:44:44 ----A---- C:\Windows\system32\lxdfcur.dll
2008-08-04 19:44:44 ----A---- C:\Windows\system32\lxdfcub.dll
2008-08-04 19:44:44 ----A---- C:\Windows\system32\lxdfcu.dll
2008-08-04 19:44:44 ----A---- C:\Windows\system32\lxdfcoms.exe
2008-08-04 19:44:44 ----A---- C:\Windows\system32\lxdfcomm.dll
2008-08-04 19:44:44 ----A---- C:\Windows\system32\lxdfcomc.dll
2008-08-04 19:44:44 ----A---- C:\Windows\system32\lxdfcfg.exe
2008-08-04 19:44:44 ----A---- C:\Windows\system32\lxdfcfg.dll
2008-08-04 19:43:30 ----D---- C:\lexmark
2008-08-04 19:42:42 ----D---- C:\Program Files\Lexmark 6500 Series
2008-08-04 19:35:30 ----A---- C:\Windows\system32\OPUSBEXT.DLL
2008-08-04 19:35:30 ----A---- C:\Windows\system32\OPUSB020.DLL
2008-08-04 19:35:30 ----A---- C:\Windows\system32\OPSLD020.DLL
2008-08-04 19:35:30 ----A---- C:\Windows\system32\OPDVA022.DLL
2008-08-04 19:35:30 ----A---- C:\Windows\system32\OPDMN024.DLL
2008-08-04 19:35:30 ----A---- C:\Windows\system32\OPCLB020.DLL
2008-08-04 19:35:29 ----D---- C:\OKIDATA
2008-08-04 19:35:29 ----A---- C:\Windows\system32\OPS02LOC.DLL
2008-08-04 19:35:29 ----A---- C:\Windows\system32\OPM02LOC.DLL
2008-08-04 19:35:29 ----A---- C:\Windows\system32\OPEXTUAC.DLL
2008-08-04 19:34:57 ----DC---- C:\Users\BenRaines\AppData\Roaming\InstallShield
2008-08-04 01:21:42 ----D---- C:\ProgramData\RoboForm
2008-08-04 01:20:46 ----D---- C:\Program Files\Siber Systems
2008-08-04 01:09:34 ----DC---- C:\Users\BenRaines\AppData\Roaming\Agnitum
2008-08-03 18:31:39 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-08-03 17:10:50 ----A---- C:\Windows\system32\mdimon.dll
2008-08-03 17:09:29 ----D---- C:\Program Files\Microsoft Works
2008-08-03 17:08:35 ----D---- C:\Program Files\Microsoft Visual Studio
2008-08-03 17:08:35 ----D---- C:\Program Files\Common Files\DESIGNER
2008-08-03 17:07:28 ----D---- C:\Windows\PCHEALTH
2008-08-03 17:07:28 ----D---- C:\Program Files\Microsoft.NET
2008-08-03 17:01:07 ----D---- C:\Program Files\Microsoft Visual Studio 8
2008-08-03 16:59:47 ----D---- C:\Program Files\Microsoft Office
2008-08-03 16:59:46 ----D---- C:\ProgramData\Microsoft Help
2008-08-03 16:59:00 ----RHD---- C:\MSOCache
2008-08-03 01:03:21 ----SH---- C:\Windows\desktop.ini
2008-08-03 00:18:15 ----D---- C:\Program Files\7-Zip
2008-08-02 23:48:53 ----D---- C:\Program Files\Microsoft Silverlight
2008-08-02 21:45:35 ----A---- C:\Windows\system32\rpcrt4.dll
2008-08-02 21:45:35 ----A---- C:\Windows\system32\ntkrnlpa.exe
2008-08-02 21:45:34 ----A---- C:\Windows\system32\pacerprf.dll
2008-08-02 21:45:34 ----A---- C:\Windows\system32\ntoskrnl.exe
2008-08-02 21:44:44 ----A---- C:\Windows\system32\wshext.dll
2008-08-02 21:44:44 ----A---- C:\Windows\system32\wscript.exe
2008-08-02 21:44:44 ----A---- C:\Windows\system32\vbscript.dll
2008-08-02 21:44:44 ----A---- C:\Windows\system32\scrrun.dll
2008-08-02 21:44:44 ----A---- C:\Windows\system32\scrobj.dll
2008-08-02 21:44:44 ----A---- C:\Windows\system32\jscript.dll
2008-08-02 21:44:44 ----A---- C:\Windows\system32\cscript.exe
2008-08-02 20:56:02 ----DC---- C:\Users\BenRaines\AppData\Roaming\Google
2008-08-02 20:55:50 ----D---- C:\ProgramData\Google
2008-08-02 20:55:49 ----D---- C:\Program Files\Google
2008-08-02 18:35:51 ----A---- C:\Windows\system32\msshooks.dll
2008-08-02 18:35:50 ----A---- C:\Windows\system32\msscb.dll
2008-08-02 18:35:48 ----A---- C:\Windows\system32\thawbrkr.dll
2008-08-02 18:35:48 ----A---- C:\Windows\system32\srchadmin.dll
2008-08-02 18:35:48 ----A---- C:\Windows\system32\SearchFilterHost.exe
2008-08-02 18:35:48 ----A---- C:\Windows\system32\propsys.dll
2008-08-02 18:35:48 ----A---- C:\Windows\system32\propdefs.dll
2008-08-02 18:35:48 ----A---- C:\Windows\system32\msstrc.dll
2008-08-02 18:35:48 ----A---- C:\Windows\system32\mssprxy.dll
2008-08-02 18:35:48 ----A---- C:\Windows\system32\mssitlb.dll
2008-08-02 18:35:48 ----A---- C:\Windows\system32\msshsq.dll
2008-08-02 18:35:48 ----A---- C:\Windows\system32\korwbrkr.dll
2008-08-02 18:35:47 ----A---- C:\Windows\system32\wsepno.dll
2008-08-02 18:35:47 ----A---- C:\Windows\system32\rtffilt.dll
2008-08-02 18:35:47 ----A---- C:\Windows\system32\offfilt.dll
2008-08-02 18:35:47 ----A---- C:\Windows\system32\nlhtml.dll
2008-08-02 18:35:47 ----A---- C:\Windows\system32\mimefilt.dll
2008-08-02 18:35:46 ----A---- C:\Windows\system32\xmlfilter.dll
2008-08-02 18:35:46 ----A---- C:\Windows\system32\tquery.dll
2008-08-02 18:35:46 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2008-08-02 18:35:46 ----A---- C:\Windows\system32\SearchIndexer.exe
2008-08-02 18:35:46 ----A---- C:\Windows\system32\mssvp.dll
2008-08-02 18:35:46 ----A---- C:\Windows\system32\mssrch.dll
2008-08-02 18:35:46 ----A---- C:\Windows\system32\mssph.dll
2008-08-02 18:35:46 ----A---- C:\Windows\system32\msscntrs.dll
2008-08-02 18:35:46 ----A---- C:\Windows\system32\chtbrkr.dll
2008-08-02 18:35:46 ----A---- C:\Windows\system32\chsbrkr.dll
2008-08-02 18:35:45 ----A---- C:\Windows\system32\mssphtb.dll
2008-08-02 18:13:27 ----A---- C:\Windows\ntbtlog.txt
2008-07-28 22:19:33 ----DC---- C:\Users\BenRaines\AppData\Roaming\Mozilla
2008-07-28 22:19:24 ----D---- C:\Program Files\Mozilla Firefox
2008-07-27 01:09:05 ----D---- C:\PerfLogs
2008-07-27 00:33:25 ----HD---- C:\Program Files\InstallShield Installation Information
2008-07-27 00:33:25 ----D---- C:\Program Files\NETGEAR
2008-07-27 00:33:25 ----A---- C:\Windows\system32\ZSANCoInst.dll
2008-07-27 00:32:51 ----A---- C:\Windows\system32\NGRepairLog2B.txt
2008-07-27 00:21:11 ----A---- C:\Windows\system32\SPWizUI.dll
2008-07-27 00:21:11 ----A---- C:\Windows\system32\SPReview.exe
2008-07-27 00:06:16 ----A---- C:\Windows\system32\recdisc.exe
2008-07-27 00:06:09 ----A---- C:\Windows\system32\sdspres.dll
2008-07-27 00:05:26 ----A---- C:\Windows\system32\vsp1cln.exe
2008-07-27 00:05:26 ----A---- C:\Windows\system32\NGRepairLog.txt
2008-07-27 00:05:12 ----A---- C:\Windows\system32\sxproxy.dll
2008-07-27 00:05:08 ----A---- C:\Windows\system32\spp.dll
2008-07-27 00:04:29 ----A---- C:\Windows\system32\mssha.dll
2008-07-27 00:04:29 ----A---- C:\Windows\system32\msrepl40.dll
2008-07-27 00:04:28 ----A---- C:\Windows\system32\mstask.dll
2008-07-27 00:04:28 ----A---- C:\Windows\system32\msscp.dll
2008-07-27 00:04:28 ----A---- C:\Windows\system32\msrdc.dll
2008-07-27 00:04:28 ----A---- C:\Windows\system32\msrd3x40.dll
2008-07-27 00:04:28 ----A---- C:\Windows\system32\msrating.dll
2008-07-27 00:04:28 ----A---- C:\Windows\system32\msra.exe
2008-07-27 00:04:27 ----A---- C:\Windows\system32\mtxoci.dll
2008-07-27 00:04:27 ----A---- C:\Windows\system32\mtxdm.dll
2008-07-27 00:04:27 ----A---- C:\Windows\system32\mtxclu.dll
2008-07-27 00:04:27 ----A---- C:\Windows\system32\mtstocom.exe
2008-07-27 00:04:26 ----A---- C:\Windows\system32\NAPMONTR.DLL
2008-07-27 00:04:26 ----A---- C:\Windows\system32\napipsec.dll
2008-07-27 00:04:26 ----A---- C:\Windows\system32\NapiNSP.dll
2008-07-27 00:04:26 ----A---- C:\Windows\system32\NAPHLPR.DLL
2008-07-27 00:04:26 ----A---- C:\Windows\system32\napdsnap.dll
2008-07-27 00:04:26 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2008-07-27 00:04:26 ----A---- C:\Windows\system32\mydocs.dll
2008-07-27 00:04:26 ----A---- C:\Windows\system32\mycomput.dll
2008-07-27 00:04:26 ----A---- C:\Windows\system32\MuiUnattend.exe
2008-07-27 00:04:26 ----A---- C:\Windows\system32\mtxlegih.dll
2008-07-27 00:04:26 ----A---- C:\Windows\system32\msv1_0.dll
2008-07-27 00:04:26 ----A---- C:\Windows\system32\msutb.dll
2008-07-27 00:04:25 ----A---- C:\Windows\system32\msxml3.dll
2008-07-27 00:04:25 ----A---- C:\Windows\system32\msxbde40.dll
2008-07-27 00:04:25 ----A---- C:\Windows\system32\mswsock.dll
2008-07-27 00:04:25 ----A---- C:\Windows\system32\msvbvm60.dll
2008-07-27 00:04:25 ----A---- C:\Windows\system32\mstscax.dll
2008-07-27 00:04:25 ----A---- C:\Windows\system32\mstsc.exe
2008-07-27 00:04:25 ----A---- C:\Windows\system32\mstlsapi.dll
2008-07-27 00:04:25 ----A---- C:\Windows\system32\mstext40.dll
2008-07-27 00:04:24 ----A---- C:\Windows\system32\msxml6.dll
2008-07-27 00:04:24 ----A---- C:\Windows\system32\msvfw32.dll
2008-07-27 00:04:24 ----A---- C:\Windows\system32\msvcrt.dll
2008-07-27 00:04:20 ----A---- C:\Windows\system32\mswmdm.dll
2008-07-27 00:04:20 ----A---- C:\Windows\system32\MSVidCtl.dll
2008-07-27 00:04:20 ----A---- C:\Windows\system32\msvidc32.dll
2008-07-27 00:04:20 ----A---- C:\Windows\system32\msftedit.dll
2008-07-27 00:04:20 ----A---- C:\Windows\system32\msfeedssync.exe
2008-07-27 00:04:20 ----A---- C:\Windows\system32\msfeedsbs.dll
2008-07-27 00:04:20 ----A---- C:\Windows\system32\msfeeds.dll
2008-07-27 00:04:20 ----A---- C:\Windows\system32\msexcl40.dll
2008-07-27 00:04:19 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2008-07-27 00:04:19 ----A---- C:\Windows\system32\msdtcuiu.dll
2008-07-27 00:04:19 ----A---- C:\Windows\system32\msdtctm.dll
2008-07-27 00:04:18 ----A---- C:\Windows\system32\mshtmled.dll
2008-07-27 00:04:18 ----A---- C:\Windows\system32\mshta.exe
2008-07-27 00:04:18 ----A---- C:\Windows\system32\msg.exe
2008-07-27 00:04:18 ----A---- C:\Windows\system32\msdtclog.dll
2008-07-27 00:04:18 ----A---- C:\Windows\system32\msdtckrm.dll
2008-07-27 00:04:18 ----A---- C:\Windows\system32\msdtc.exe
2008-07-27 00:04:18 ----A---- C:\Windows\system32\msdt.exe
2008-07-27 00:04:18 ----A---- C:\Windows\system32\msdelta.dll
2008-07-27 00:04:18 ----A---- C:\Windows\system32\msdart.dll
2008-07-27 00:04:18 ----A---- C:\Windows\system32\msdadiag.dll
2008-07-27 00:04:18 ----A---- C:\Windows\system32\msctfui.dll
2008-07-27 00:04:18 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2008-07-27 00:04:17 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2008-07-27 00:04:17 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL
2008-07-27 00:04:17 ----A---- C:\Windows\system32\msmmsp.dll
2008-07-27 00:04:17 ----A---- C:\Windows\system32\msltus40.dll
2008-07-27 00:04:17 ----A---- C:\Windows\system32\msls31.dll
2008-07-27 00:04:17 ----A---- C:\Windows\system32\msjtes40.dll
2008-07-27 00:04:17 ----A---- C:\Windows\system32\msdtcprx.dll
2008-07-27 00:04:17 ----A---- C:\Windows\system32\msdt.dll
2008-07-27 00:04:17 ----A---- C:\Windows\system32\msdrm.dll
2008-07-27 00:04:17 ----A---- C:\Windows\system32\msdri.dll
2008-07-27 00:04:17 ----A---- C:\Windows\system32\msdmo.dll
2008-07-27 00:04:16 ----A---- C:\Windows\system32\mspbde40.dll
2008-07-27 00:04:16 ----A---- C:\Windows\system32\mspatcha.dll
2008-07-27 00:04:16 ----A---- C:\Windows\system32\mspaint.exe
2008-07-27 00:04:16 ----A---- C:\Windows\system32\msorcl32.dll
2008-07-27 00:04:16 ----A---- C:\Windows\system32\msoert2.dll
2008-07-27 00:04:16 ----A---- C:\Windows\system32\msoeacct.dll
2008-07-27 00:04:16 ----A---- C:\Windows\system32\msobjs.dll
2008-07-27 00:04:16 ----A---- C:\Windows\system32\msnetobj.dll
2008-07-27 00:04:16 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2008-07-27 00:04:16 ----A---- C:\Windows\system32\msidle.dll
2008-07-27 00:04:16 ----A---- C:\Windows\system32\msident.dll
2008-07-27 00:04:15 ----A---- C:\Windows\system32\msihnd.dll
2008-07-27 00:04:15 ----A---- C:\Windows\system32\msiexec.exe
2008-07-27 00:04:15 ----A---- C:\Windows\system32\msieftp.dll
2008-07-27 00:04:15 ----A---- C:\Windows\system32\msidcrl30.dll
2008-07-27 00:04:15 ----A---- C:\Windows\system32\msi.dll
2008-07-27 00:04:14 ----A---- C:\Windows\system32\msjetoledb40.dll
2008-07-27 00:04:14 ----A---- C:\Windows\system32\msjet40.dll
2008-07-27 00:04:14 ----A---- C:\Windows\system32\msisip.dll
2008-07-27 00:04:14 ----A---- C:\Windows\system32\msinfo32.exe
2008-07-27 00:04:14 ----A---- C:\Windows\system32\msimtf.dll
2008-07-27 00:04:13 ----A---- C:\Windows\system32\notepad.exe
2008-07-27 00:04:13 ----A---- C:\Windows\system32\Nlsdl.dll
2008-07-27 00:04:13 ----A---- C:\Windows\notepad.exe
2008-07-27 00:04:12 ----A---- C:\Windows\system32\nlmgp.dll
2008-07-27 00:04:11 ----A---- C:\Windows\system32\nlsbres.dll
2008-07-27 00:04:10 ----A---- C:\Windows\system32\ocsetup.exe
2008-07-27 00:04:10 ----A---- C:\Windows\system32\occache.dll
2008-07-27 00:04:10 ----A---- C:\Windows\system32\objsel.dll
2008-07-27 00:04:09 ----A---- C:\Windows\system32\odbctrac.dll
2008-07-27 00:04:09 ----A---- C:\Windows\system32\odbccu32.dll
2008-07-27 00:04:09 ----A---- C:\Windows\system32\odbccr32.dll
2008-07-27 00:04:09 ----A---- C:\Windows\system32\odbccp32.dll
2008-07-27 00:04:09 ----A---- C:\Windows\system32\odbcconf.dll
2008-07-27 00:04:09 ----A---- C:\Windows\system32\odbcbcp.dll
2008-07-27 00:04:09 ----A---- C:\Windows\system32\odbc32.dll
2008-07-27 00:04:08 ----A---- C:\Windows\system32\odbcjt32.dll
2008-07-27 00:04:08 ----A---- C:\Windows\system32\ntvdm.exe
2008-07-27 00:04:08 ----A---- C:\Windows\system32\ntshrui.dll
2008-07-27 00:04:08 ----A---- C:\Windows\system32\ntdsapi.dll
2008-07-27 00:04:08 ----A---- C:\Windows\system32\ntdll.dll
2008-07-27 00:04:08 ----A---- C:\Windows\system32\nslookup.exe
2008-07-27 00:04:08 ----A---- C:\Windows\system32\nsisvc.dll
2008-07-27 00:04:08 ----A---- C:\Windows\system32\nsi.dll
2008-07-27 00:04:08 ----A---- C:\Windows\system32\nshipsec.dll
2008-07-27 00:04:08 ----A---- C:\Windows\system32\nshhttp.dll
2008-07-27 00:04:07 ----A---- C:\Windows\system32\ntprint.dll
2008-07-27 00:04:07 ----A---- C:\Windows\system32\ntmarta.dll
2008-07-27 00:04:07 ----A---- C:\Windows\system32\ntlanman.dll
2008-07-27 00:04:07 ----A---- C:\Windows\system32\netiohlp.dll
2008-07-27 00:04:07 ----A---- C:\Windows\system32\netdiagfx.dll
2008-07-27 00:04:07 ----A---- C:\Windows\system32\netcorehc.dll
2008-07-27 00:04:07 ----A---- C:\Windows\system32\netcfgx.dll
2008-07-27 00:04:07 ----A---- C:\Windows\system32\netcfg.exe
2008-07-27 00:04:07 ----A---- C:\Windows\system32\netcenter.dll
2008-07-27 00:04:07 ----A---- C:\Windows\system32\netbtugc.exe
2008-07-27 00:04:07 ----A---- C:\Windows\system32\netapi32.dll
2008-07-27 00:04:06 ----A---- C:\Windows\system32\netiougc.exe
2008-07-27 00:04:06 ----A---- C:\Windows\system32\netid.dll
2008-07-27 00:04:06 ----A---- C:\Windows\system32\netevent.dll
2008-07-27 00:04:06 ----A---- C:\Windows\system32\ncsi.dll
2008-07-27 00:04:06 ----A---- C:\Windows\system32\ncryptui.dll
2008-07-27 00:04:06 ----A---- C:\Windows\system32\ncrypt.dll
2008-07-27 00:04:06 ----A---- C:\Windows\system32\ncobjapi.dll
2008-07-27 00:04:06 ----A---- C:\Windows\system32\nci.dll
2008-07-27 00:04:05 ----A---- C:\Windows\system32\net1.exe
2008-07-27 00:04:05 ----A---- C:\Windows\system32\net.exe
2008-07-27 00:04:05 ----A---- C:\Windows\system32\ndfetw.dll
2008-07-27 00:04:05 ----A---- C:\Windows\system32\ndfapi.dll
2008-07-27 00:04:05 ----A---- C:\Windows\system32\NcdProp.dll
2008-07-27 00:04:05 ----A---- C:\Windows\system32\nbtstat.exe
2008-07-27 00:04:05 ----A---- C:\Windows\system32\NAPSTAT.EXE
2008-07-27 00:04:04 ----A---- C:\Windows\system32\newdev.dll
2008-07-27 00:04:04 ----A---- C:\Windows\system32\networkmap.dll
2008-07-27 00:04:02 ----A---- C:\Windows\system32\networkitemfactory.dll
2008-07-27 00:04:02 ----A---- C:\Windows\system32\networkexplorer.dll
2008-07-27 00:04:01 ----A---- C:\Windows\system32\nlasvc.dll
2008-07-27 00:04:01 ----A---- C:\Windows\system32\nlaapi.dll
2008-07-27 00:04:01 ----A---- C:\Windows\system32\netshell.dll
2008-07-27 00:04:01 ----A---- C:\Windows\system32\NetProjW.dll
2008-07-27 00:04:01 ----A---- C:\Windows\system32\netprofm.dll
2008-07-27 00:04:01 ----A---- C:\Windows\system32\netprof.dll
2008-07-27 00:04:01 ----A---- C:\Windows\system32\Netplwiz.exe
2008-07-27 00:04:01 ----A---- C:\Windows\system32\netplwiz.dll
2008-07-27 00:04:01 ----A---- C:\Windows\system32\netman.dll
2008-07-27 00:04:01 ----A---- C:\Windows\system32\netlogon.dll
2008-07-27 00:04:00 ----A---- C:\Windows\system32\manage-bde.wsf
2008-07-27 00:04:00 ----A---- C:\Windows\system32\makecab.exe
2008-07-27 00:04:00 ----A---- C:\Windows\system32\lsmproxy.dll
2008-07-27 00:04:00 ----A---- C:\Windows\system32\lsm.exe
2008-07-27 00:04:00 ----A---- C:\Windows\system32\lsass.exe
2008-07-27 00:04:00 ----A---- C:\Windows\system32\lsasrv.dll
2008-07-27 00:03:59 ----A---- C:\Windows\system32\mblctr.exe
2008-07-27 00:03:59 ----A---- C:\Windows\system32\manage-bde.ini.en
2008-07-27 00:03:59 ----A---- C:\Windows\system32\luainstall.dll
2008-07-27 00:03:59 ----A---- C:\Windows\system32\lpksetup.exe
2008-07-27 00:03:59 ----A---- C:\Windows\system32\lpk.dll
2008-07-27 00:03:59 ----A---- C:\Windows\system32\logman.exe
2008-07-27 00:03:59 ----A---- C:\Windows\system32\loghours.dll
2008-07-27 00:03:59 ----A---- C:\Windows\system32\logagent.exe
2008-07-27 00:03:59 ----A---- C:\Windows\system32\lodctr.exe
2008-07-27 00:03:59 ----A---- C:\Windows\system32\localui.dll
2008-07-27 00:03:59 ----A---- C:\Windows\system32\localspl.dll
2008-07-27 00:03:59 ----A---- C:\Windows\system32\localsec.dll
2008-07-27 00:03:58 ----A---- C:\Windows\system32\mfvdsp.dll
2008-07-27 00:03:58 ----A---- C:\Windows\system32\mfpmp.exe
2008-07-27 00:03:58 ----A---- C:\Windows\system32\mfplat.dll
2008-07-27 00:03:58 ----A---- C:\Windows\system32\mfcsubs.dll
2008-07-27 00:03:58 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2008-07-27 00:03:58 ----A---- C:\Windows\system32\lpremove.exe
2008-07-27 00:03:58 ----A---- C:\Windows\system32\LogonUI.exe
2008-07-27 00:03:58 ----A---- C:\Windows\system32\logoff.exe
2008-07-27 00:03:57 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2008-07-27 00:03:57 ----A---- C:\Windows\system32\mfps.dll
2008-07-27 00:03:57 ----A---- C:\Windows\system32\mfc42u.dll
2008-07-27 00:03:57 ----A---- C:\Windows\system32\mfc42.dll
2008-07-27 00:03:57 ----A---- C:\Windows\system32\mf.dll
2008-07-27 00:03:57 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2008-07-27 00:03:57 ----A---- C:\Windows\system32\mcmde.dll
2008-07-27 00:03:57 ----A---- C:\Windows\system32\mcbuilder.exe
2008-07-27 00:03:56 ----A---- C:\Windows\system32\MdSched.exe
2008-07-27 00:03:56 ----A---- C:\Windows\system32\mdminst.dll
2008-07-27 00:03:56 ----A---- C:\Windows\system32\McxDriv.dll
2008-07-27 00:03:56 ----A---- C:\Windows\system32\Mcx2Svc.dll
2008-07-27 00:03:56 ----A---- C:\Windows\system32\itss.dll
2008-07-27 00:03:56 ----A---- C:\Windows\system32\iscsiwmi.dll
2008-07-27 00:03:56 ----A---- C:\Windows\system32\ipsmsnap.dll
2008-07-27 00:03:55 ----A---- C:\Windows\system32\iscsium.dll
2008-07-27 00:03:55 ----A---- C:\Windows\system32\iscsilog.dll
2008-07-27 00:03:55 ----A---- C:\Windows\system32\iscsiexe.dll
2008-07-27 00:03:55 ----A---- C:\Windows\system32\iscsied.dll
2008-07-27 00:03:55 ----A---- C:\Windows\system32\ipsecsnp.dll
2008-07-27 00:03:55 ----A---- C:\Windows\system32\iprtrmgr.dll
2008-07-27 00:03:55 ----A---- C:\Windows\system32\iprtprio.dll
2008-07-27 00:03:55 ----A---- C:\Windows\system32\ipnathlp.dll
2008-07-27 00:03:55 ----A---- C:\Windows\system32\IPBusEnum.dll
2008-07-27 00:03:55 ----A---- C:\Windows\system32\inseng.dll

2008-07-27 00:03:54 ----A---- C:\Windows\system32\L2SecHC.dll
2008-07-27 00:03:54 ----A---- C:\Windows\system32\l2nacp.dll
2008-07-27 00:03:54 ----A---- C:\Windows\system32\l2gpstore.dll
2008-07-27 00:03:54 ----A---- C:\Windows\system32\ktmw32.dll
2008-07-27 00:03:54 ----A---- C:\Windows\system32\ktmutil.exe
2008-07-27 00:03:54 ----A---- C:\Windows\system32\KMSVC.DLL
2008-07-27 00:03:54 ----A---- C:\Windows\system32\keymgr.dll
2008-07-27 00:03:54 ----A---- C:\Windows\system32\iphlpsvc.dll
2008-07-27 00:03:54 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2008-07-27 00:03:54 ----A---- C:\Windows\system32\ipconfig.exe
2008-07-27 00:03:53 ----A---- C:\Windows\system32\loadperf.dll
2008-07-27 00:03:53 ----A---- C:\Windows\system32\lnkstub.exe
2008-07-27 00:03:53 ----A---- C:\Windows\system32\lltdsvc.dll
2008-07-27 00:03:53 ----A---- C:\Windows\system32\lltdapi.dll
2008-07-27 00:03:53 ----A---- C:\Windows\system32\licmgr10.dll
2008-07-27 00:03:53 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2008-07-27 00:03:52 ----A---- C:\Windows\system32\mprmsg.dll
2008-07-27 00:03:52 ----A---- C:\Windows\system32\mprdim.dll
2008-07-27 00:03:52 ----A---- C:\Windows\system32\kernel32.dll
2008-07-27 00:03:52 ----A---- C:\Windows\system32\kerberos.dll
2008-07-27 00:03:52 ----A---- C:\Windows\system32\kdusb.dll
2008-07-27 00:03:52 ----A---- C:\Windows\system32\kdcom.dll
2008-07-27 00:03:52 ----A---- C:\Windows\system32\KBDKOR.DLL
2008-07-27 00:03:52 ----A---- C:\Windows\system32\KBDJPN.DLL
2008-07-27 00:03:51 ----A---- C:\Windows\system32\MPSSVC.dll
2008-07-27 00:03:51 ----A---- C:\Windows\system32\mprddm.dll
2008-07-27 00:03:51 ----A---- C:\Windows\system32\mprapi.dll
2008-07-27 00:03:51 ----A---- C:\Windows\system32\mpr.dll
2008-07-27 00:03:50 ----A---- C:\Windows\system32\mountvol.exe
2008-07-27 00:03:49 ----A---- C:\Windows\system32\mscorier.dll
2008-07-27 00:03:49 ----A---- C:\Windows\system32\MPG4DECD.DLL
2008-07-27 00:03:49 ----A---- C:\Windows\system32\MP4SDECD.DLL
2008-07-27 00:03:49 ----A---- C:\Windows\system32\MP43DECD.DLL
2008-07-27 00:03:49 ----A---- C:\Windows\system32\MP3DMOD.DLL
2008-07-27 00:03:48 ----A---- C:\Windows\system32\msctf.dll
2008-07-27 00:03:48 ----A---- C:\Windows\system32\mscories.dll
2008-07-27 00:03:48 ----A---- C:\Windows\system32\mscoree.dll
2008-07-27 00:03:48 ----A---- C:\Windows\system32\msconfig.exe
2008-07-27 00:03:48 ----A---- C:\Windows\system32\mscms.dll
2008-07-27 00:03:48 ----A---- C:\Windows\system32\mscandui.dll
2008-07-27 00:03:48 ----A---- C:\Windows\system32\msaatext.dll
2008-07-27 00:03:47 ----A---- C:\Windows\system32\msacm32.dll
2008-07-27 00:03:47 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2008-07-27 00:03:46 ----A---- C:\Windows\system32\mmcshext.dll
2008-07-27 00:03:46 ----A---- C:\Windows\system32\mmcndmgr.dll
2008-07-27 00:03:46 ----A---- C:\Windows\system32\mmcbase.dll
2008-07-27 00:03:46 ----A---- C:\Windows\system32\mmc.exe
2008-07-27 00:03:45 ----A---- C:\Windows\system32\modemui.dll
2008-07-27 00:03:45 ----A---- C:\Windows\system32\mobsync.exe
2008-07-27 00:03:45 ----A---- C:\Windows\system32\MMDevAPI.dll
2008-07-27 00:03:45 ----A---- C:\Windows\system32\mmcss.dll
2008-07-27 00:03:45 ----A---- C:\Windows\system32\mlang.dll
2008-07-27 00:03:42 ----A---- C:\Windows\system32\milcore.dll
2008-07-27 00:03:42 ----A---- C:\Windows\system32\midimap.dll
2008-07-27 00:03:41 ----A---- C:\Windows\system32\migisol.dll
2008-07-27 00:03:41 ----A---- C:\Windows\system32\MigAutoPlay.exe
2008-07-27 00:03:39 ----A---- C:\Windows\system32\secur32.dll
2008-07-27 00:03:39 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2008-07-27 00:03:39 ----A---- C:\Windows\system32\secproc_ssp.dll
2008-07-27 00:03:39 ----A---- C:\Windows\system32\secproc_isv.dll
2008-07-27 00:03:39 ----A---- C:\Windows\system32\secproc.dll
2008-07-27 00:03:39 ----A---- C:\Windows\system32\secpol.msc
2008-07-27 00:03:39 ----A---- C:\Windows\system32\seclogon.dll
2008-07-27 00:03:39 ----A---- C:\Windows\system32\SecEdit.exe
2008-07-27 00:03:39 ----A---- C:\Windows\system32\sdshext.dll
2008-07-27 00:03:39 ----A---- C:\Windows\system32\sdrsvc.dll
2008-07-27 00:03:39 ----A---- C:\Windows\system32\sdohlp.dll
2008-07-27 00:03:38 ----A---- C:\Windows\system32\shrink.dll
2008-07-27 00:03:38 ----A---- C:\Windows\system32\shlwapi.dll
2008-07-27 00:03:38 ----A---- C:\Windows\system32\shimgvw.dll
2008-07-27 00:03:38 ----A---- C:\Windows\system32\shgina.dll
2008-07-27 00:03:37 ----A---- C:\Windows\system32\shwebsvc.dll
2008-07-27 00:03:37 ----A---- C:\Windows\system32\shutdown.exe
2008-07-27 00:03:37 ----A---- C:\Windows\system32\shsvcs.dll
2008-07-27 00:03:37 ----A---- C:\Windows\system32\shsetup.dll
2008-07-27 00:03:37 ----A---- C:\Windows\system32\shrpubw.exe
2008-07-27 00:03:37 ----A---- C:\Windows\system32\shacct.dll
2008-07-27 00:03:36 ----A---- C:\Windows\system32\softkbd.dll
2008-07-27 00:03:36 ----A---- C:\Windows\system32\SnippingTool.exe
2008-07-27 00:03:36 ----A---- C:\Windows\system32\SndVol.exe
2008-07-27 00:03:36 ----A---- C:\Windows\system32\smss.exe
2008-07-27 00:03:36 ----A---- C:\Windows\system32\SmiInstaller.dll
2008-07-27 00:03:36 ----A---- C:\Windows\system32\shdocvw.dll
2008-07-27 00:03:36 ----A---- C:\Windows\system32\shadow.exe
2008-07-27 00:03:35 ----A---- C:\Windows\system32\SmiEngine.dll
2008-07-27 00:03:35 ----A---- C:\Windows\system32\SMBHelperClass.dll
2008-07-27 00:03:35 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2008-07-27 00:03:35 ----A---- C:\Windows\system32\slwmi.dll
2008-07-27 00:03:35 ----A---- C:\Windows\system32\slwga.dll
2008-07-27 00:03:35 ----A---- C:\Windows\system32\SLUINotify.dll
2008-07-27 00:03:35 ----A---- C:\Windows\system32\SLUI.exe
2008-07-27 00:03:35 ----A---- C:\Windows\system32\SLsvc.exe
2008-07-27 00:03:35 ----A---- C:\Windows\system32\slmgr.vbs
2008-07-27 00:03:35 ----A---- C:\Windows\system32\SLLUA.exe
2008-07-27 00:03:35 ----A---- C:\Windows\system32\SLCommDlg.dll
2008-07-27 00:03:35 ----A---- C:\Windows\system32\slcinst.dll
2008-07-27 00:03:35 ----A---- C:\Windows\system32\SLCExt.dll
2008-07-27 00:03:35 ----A---- C:\Windows\system32\slcc.dll
2008-07-27 00:03:35 ----A---- C:\Windows\system32\SLC.dll
2008-07-27 00:03:34 ----A---- C:\Windows\system32\SessEnv.dll
2008-07-27 00:03:34 ----A---- C:\Windows\system32\services.exe
2008-07-27 00:03:34 ----A---- C:\Windows\system32\serialui.dll
2008-07-27 00:03:33 ----A---- C:\Windows\system32\sfc_os.dll
2008-07-27 00:03:33 ----A---- C:\Windows\system32\sfc.exe
2008-07-27 00:03:33 ----A---- C:\Windows\system32\setupugc.exe
2008-07-27 00:03:33 ----A---- C:\Windows\system32\setupSNK.exe
2008-07-27 00:03:33 ----A---- C:\Windows\system32\setupcln.dll
2008-07-27 00:03:33 ----A---- C:\Windows\system32\setupcl.exe
2008-07-27 00:03:33 ----A---- C:\Windows\system32\setupapi.dll
2008-07-27 00:03:33 ----A---- C:\Windows\system32\sethc.exe
2008-07-27 00:03:33 ----A---- C:\Windows\system32\Sens.dll
2008-07-27 00:03:33 ----A---- C:\Windows\system32\sendmail.dll
2008-07-27 00:03:33 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2008-07-27 00:03:32 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2008-07-27 00:03:32 ----A---- C:\Windows\system32

benraines · Sep 13, 2008

RSIT Log Part 2

\PresentationHostProxy.dll
2008-07-27 00:03:32 ----A---- C:\Windows\system32\PresentationHost.exe
2008-07-27 00:03:32 ----A---- C:\Windows\system32\ppcsnap.dll
2008-07-27 00:03:32 ----A---- C:\Windows\system32\powrprof.dll
2008-07-27 00:03:32 ----A---- C:\Windows\system32\pnrpnsp.dll
2008-07-27 00:03:32 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
2008-07-27 00:03:32 ----A---- C:\Windows\system32\PNPXAssoc.dll
2008-07-27 00:03:32 ----A---- C:\Windows\system32\PnPutil.exe
2008-07-27 00:03:32 ----A---- C:\Windows\system32\PnPUnattend.exe
2008-07-27 00:03:32 ----A---- C:\Windows\system32\pnpui.dll
2008-07-27 00:03:31 ----A---- C:\Windows\system32\PSHED.DLL
2008-07-27 00:03:31 ----A---- C:\Windows\system32\psbase.dll
2008-07-27 00:03:31 ----A---- C:\Windows\system32\powercpl.dll
2008-07-27 00:03:31 ----A---- C:\Windows\system32\pots.dll
2008-07-27 00:03:31 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2008-07-27 00:03:31 ----A---- C:\Windows\system32\PortableDeviceWiaCompat.dll
2008-07-27 00:03:31 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2008-07-27 00:03:31 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2008-07-27 00:03:31 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2008-07-27 00:03:31 ----A---- C:\Windows\system32\polstore.dll
2008-07-27 00:03:31 ----A---- C:\Windows\system32\pnpts.dll
2008-07-27 00:03:31 ----A---- C:\Windows\system32\pnpsetup.dll
2008-07-27 00:03:31 ----A---- C:\Windows\system32\pnidui.dll
2008-07-27 00:03:31 ----A---- C:\Windows\system32\pngfilt.dll
2008-07-27 00:03:30 ----A---- C:\Windows\system32\QAGENT.DLL
2008-07-27 00:03:30 ----A---- C:\Windows\system32\PushPrinterConnections.exe
2008-07-27 00:03:30 ----A---- C:\Windows\system32\puiobj.dll
2008-07-27 00:03:30 ----A---- C:\Windows\system32\puiapi.dll
2008-07-27 00:03:30 ----A---- C:\Windows\system32\provthrd.dll
2008-07-27 00:03:29 ----A---- C:\Windows\system32\profsvc.dll
2008-07-27 00:03:29 ----A---- C:\Windows\system32\profprov.dll
2008-07-27 00:03:29 ----A---- C:\Windows\system32\procinst.dll
2008-07-27 00:03:29 ----A---- C:\Windows\system32\prntvpt.dll
2008-07-27 00:03:29 ----A---- C:\Windows\system32\prnntfy.dll
2008-07-27 00:03:29 ----A---- C:\Windows\system32\printui.dll
2008-07-27 00:03:29 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2008-07-27 00:03:29 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2008-07-27 00:03:29 ----A---- C:\Windows\system32\printcom.dll
2008-07-27 00:03:29 ----A---- C:\Windows\system32\PrintBrmUi.exe
2008-07-27 00:03:29 ----A---- C:\Windows\system32\prevhost.exe
2008-07-27 00:03:29 ----A---- C:\Windows\system32\PresentationSettings.exe
2008-07-27 00:03:29 ----A---- C:\Windows\system32\p2psvc.dll
2008-07-27 00:03:29 ----A---- C:\Windows\system32\P2P.dll
2008-07-27 00:03:28 ----A---- C:\Windows\system32\pcaui.dll
2008-07-27 00:03:28 ----A---- C:\Windows\system32\pcasvc.dll
2008-07-27 00:03:28 ----A---- C:\Windows\system32\pcadm.dll
2008-07-27 00:03:28 ----A---- C:\Windows\system32\p2pnetsh.dll
2008-07-27 00:03:28 ----A---- C:\Windows\system32\p2phost.exe
2008-07-27 00:03:28 ----A---- C:\Windows\system32\P2PGraph.dll
2008-07-27 00:03:28 ----A---- C:\Windows\system32\p2pcollab.dll
2008-07-27 00:03:28 ----A---- C:\Windows\system32\olethk32.dll
2008-07-27 00:03:28 ----A---- C:\Windows\system32\olesvr32.dll
2008-07-27 00:03:28 ----A---- C:\Windows\system32\olepro32.dll
2008-07-27 00:03:28 ----A---- C:\Windows\system32\oleprn.dll
2008-07-27 00:03:28 ----A---- C:\Windows\system32\oledlg.dll
2008-07-27 00:03:28 ----A---- C:\Windows\system32\olecli32.dll
2008-07-27 00:03:28 ----A---- C:\Windows\system32\ogldrv.dll
2008-07-27 00:03:27 ----A---- C:\Windows\system32\osblprov.dll
2008-07-27 00:03:27 ----A---- C:\Windows\system32\osbaseln.dll
2008-07-27 00:03:27 ----A---- C:\Windows\system32\OptionalFeatures.exe
2008-07-27 00:03:27 ----A---- C:\Windows\system32\oobefldr.dll
2008-07-27 00:03:27 ----A---- C:\Windows\system32\oleaut32.dll
2008-07-27 00:03:27 ----A---- C:\Windows\system32\oleacc.dll
2008-07-27 00:03:27 ----A---- C:\Windows\system32\ole32.dll
2008-07-27 00:03:26 ----A---- C:\Windows\system32\PING.EXE
2008-07-27 00:03:26 ----A---- C:\Windows\system32\pidgenx.dll
2008-07-27 00:03:26 ----A---- C:\Windows\system32\photowiz.dll
2008-07-27 00:03:26 ----A---- C:\Windows\system32\onex.dll
2008-07-27 00:03:25 ----A---- C:\Windows\system32\PkgMgr.exe
2008-07-27 00:03:25 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2008-07-27 00:03:24 ----A---- C:\Windows\system32\pmcsnap.dll
2008-07-27 00:03:24 ----A---- C:\Windows\system32\PlaySndSrv.dll
2008-07-27 00:03:24 ----A---- C:\Windows\system32\pla.dll
2008-07-27 00:03:22 ----A---- C:\Windows\system32\pdhui.dll
2008-07-27 00:03:22 ----A---- C:\Windows\system32\pdh.dll
2008-07-27 00:03:21 ----A---- C:\Windows\system32\RstrtMgr.dll
2008-07-27 00:03:21 ----A---- C:\Windows\system32\rshx32.dll
2008-07-27 00:03:21 ----A---- C:\Windows\system32\rrinstaller.exe
2008-07-27 00:03:21 ----A---- C:\Windows\system32\rpcss.dll
2008-07-27 00:03:21 ----A---- C:\Windows\system32\perfts.dll
2008-07-27 00:03:21 ----A---- C:\Windows\system32\perfnet.dll
2008-07-27 00:03:21 ----A---- C:\Windows\system32\perfmon.msc
2008-07-27 00:03:21 ----A---- C:\Windows\system32\perfmon.exe
2008-07-27 00:03:21 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2008-07-27 00:03:20 ----A---- C:\Windows\system32\samsrv.dll
2008-07-27 00:03:20 ----A---- C:\Windows\system32\samlib.dll
2008-07-27 00:03:20 ----A---- C:\Windows\system32\rwinsta.exe
2008-07-27 00:03:20 ----A---- C:\Windows\system32\runonce.exe
2008-07-27 00:03:20 ----A---- C:\Windows\system32\rtm.dll
2008-07-27 00:03:20 ----A---- C:\Windows\system32\rsaenh.dll
2008-07-27 00:03:20 ----A---- C:\Windows\system32\RMActivate_isv.exe
2008-07-27 00:03:20 ----A---- C:\Windows\system32\RMActivate.exe
2008-07-27 00:03:20 ----A---- C:\Windows\system32\riched32.dll
2008-07-27 00:03:20 ----A---- C:\Windows\system32\riched20.dll
2008-07-27 00:03:20 ----A---- C:\Windows\system32\rgb9rast.dll
2008-07-27 00:03:20 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2008-07-27 00:03:19 ----A---- C:\Windows\system32\schtasks.exe
2008-07-27 00:03:19 ----A---- C:\Windows\system32\schedsvc.dll
2008-07-27 00:03:19 ----A---- C:\Windows\system32\schannel.dll
2008-07-27 00:03:19 ----A---- C:\Windows\system32\RpcPing.exe
2008-07-27 00:03:19 ----A---- C:\Windows\system32\rpchttp.dll
2008-07-27 00:03:19 ----A---- C:\Windows\system32\ROUTE.EXE
2008-07-27 00:03:19 ----A---- C:\Windows\system32\Robocopy.exe
2008-07-27 00:03:19 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2008-07-27 00:03:19 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2008-07-27 00:03:19 ----A---- C:\Windows\system32\resutils.dll
2008-07-27 00:03:19 ----A---- C:\Windows\system32\reset.exe
2008-07-27 00:03:18 ----A---- C:\Windows\system32\sdengin2.dll
2008-07-27 00:03:18 ----A---- C:\Windows\system32\sdclt.exe
2008-07-27 00:03:18 ----A---- C:\Windows\system32\sdchange.exe
2008-07-27 00:03:18 ----A---- C:\Windows\system32\scrptadm.dll
2008-07-27 00:03:18 ----A---- C:\Windows\system32\scksp.dll
2008-07-27 00:03:18 ----A---- C:\Windows\system32\scesrv.dll
2008-07-27 00:03:18 ----A---- C:\Windows\system32\scecli.dll
2008-07-27 00:03:18 ----A---- C:\Windows\system32\SCardSvr.dll
2008-07-27 00:03:18 ----A---- C:\Windows\system32\scansetting.dll
2008-07-27 00:03:18 ----A---- C:\Windows\system32\sbunattend.exe
2008-07-27 00:03:17 ----A---- C:\Windows\system32\sbeio.dll
2008-07-27 00:03:17 ----A---- C:\Windows\system32\sbe.dll
2008-07-27 00:03:16 ----A---- C:\Windows\system32\rasdlg.dll
2008-07-27 00:03:16 ----A---- C:\Windows\system32\rasdiag.dll
2008-07-27 00:03:16 ----A---- C:\Windows\system32\rasctrs.dll
2008-07-27 00:03:16 ----A---- C:\Windows\system32\raschap.dll
2008-07-27 00:03:16 ----A---- C:\Windows\system32\rascfg.dll
2008-07-27 00:03:16 ----A---- C:\Windows\system32\rasauto.dll
2008-07-27 00:03:16 ----A---- C:\Windows\system32\rasapi32.dll
2008-07-27 00:03:16 ----A---- C:\Windows\system32\RacEngn.dll
2008-07-27 00:03:16 ----A---- C:\Windows\system32\RacAgent.exe
2008-07-27 00:03:16 ----A---- C:\Windows\system32\qwinsta.exe
2008-07-27 00:03:16 ----A---- C:\Windows\system32\qedit.dll
2008-07-27 00:03:16 ----A---- C:\Windows\system32\qdvd.dll
2008-07-27 00:03:15 ----A---- C:\Windows\system32\rdrleakdiag.exe
2008-07-27 00:03:15 ----A---- C:\Windows\system32\rdpwsx.dll
2008-07-27 00:03:15 ----A---- C:\Windows\system32\qwave.dll
2008-07-27 00:03:15 ----A---- C:\Windows\system32\QUTIL.DLL
2008-07-27 00:03:15 ----A---- C:\Windows\system32\quser.exe
2008-07-27 00:03:15 ----A---- C:\Windows\system32\query.exe
2008-07-27 00:03:15 ----A---- C:\Windows\system32\Query.dll
2008-07-27 00:03:15 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2008-07-27 00:03:15 ----A---- C:\Windows\system32\QSHVHOST.DLL
2008-07-27 00:03:15 ----A---- C:\Windows\system32\qprocess.exe
2008-07-27 00:03:15 ----A---- C:\Windows\system32\qmgr.dll
2008-07-27 00:03:15 ----A---- C:\Windows\system32\qdv.dll
2008-07-27 00:03:15 ----A---- C:\Windows\system32\QCLIPROV.DLL
2008-07-27 00:03:15 ----A---- C:\Windows\system32\qcap.dll
2008-07-27 00:03:15 ----A---- C:\Windows\system32\qasf.dll
2008-07-27 00:03:15 ----A---- C:\Windows\system32\qappsrv.exe
2008-07-27 00:03:15 ----A---- C:\Windows\system32\QAGENTRT.DLL
2008-07-27 00:03:14 ----A---- C:\Windows\system32\remotepg.dll
2008-07-27 00:03:14 ----A---- C:\Windows\system32\RelMon.dll
2008-07-27 00:03:14 ----A---- C:\Windows\system32\rekeywiz.exe
2008-07-27 00:03:14 ----A---- C:\Windows\system32\regsvc.dll
2008-07-27 00:03:14 ----A---- C:\Windows\system32\regini.exe
2008-07-27 00:03:14 ----A---- C:\Windows\system32\RegCtrl.dll
2008-07-27 00:03:14 ----A---- C:\Windows\system32\regapi.dll
2008-07-27 00:03:14 ----A---- C:\Windows\system32\reg.exe
2008-07-27 00:03:14 ----A---- C:\Windows\system32\rdpendp.dll
2008-07-27 00:03:14 ----A---- C:\Windows\system32\rdpencom.dll
2008-07-27 00:03:14 ----A---- C:\Windows\system32\RDPENCDD.dll
2008-07-27 00:03:14 ----A---- C:\Windows\system32\rasppp.dll
2008-07-27 00:03:14 ----A---- C:\Windows\system32\rasplap.dll
2008-07-27 00:03:14 ----A---- C:\Windows\system32\rasphone.exe
2008-07-27 00:03:14 ----A---- C:\Windows\system32\rasmontr.dll
2008-07-27 00:03:14 ----A---- C:\Windows\system32\RASMM.dll
2008-07-27 00:03:14 ----A---- C:\Windows\system32\rasgcw.dll
2008-07-27 00:03:14 ----A---- C:\Windows\system32\raserver.exe
2008-07-27 00:03:14 ----A---- C:\Windows\regedit.exe
2008-07-27 00:03:13 ----A---- C:\Windows\system32\rdpdd.dll
2008-07-27 00:03:13 ----A---- C:\Windows\system32\rdpclip.exe
2008-07-27 00:03:13 ----A---- C:\Windows\system32\rdpcfgex.dll
2008-07-27 00:03:13 ----A---- C:\Windows\system32\rastls.dll
2008-07-27 00:03:13 ----A---- C:\Windows\system32\rastapi.dll
2008-07-27 00:03:13 ----A---- C:\Windows\system32\rasqec.dll
2008-07-27 00:03:13 ----A---- C:\Windows\system32\rasmans.dll
2008-07-27 00:03:13 ----A---- C:\Windows\system32\rasman.dll
2008-07-27 00:03:13 ----A---- C:\Windows\system32\d3dim700.dll
2008-07-27 00:03:13 ----A---- C:\Windows\system32\d3dim.dll
2008-07-27 00:03:13 ----A---- C:\Windows\system32\d3d9.dll
2008-07-27 00:03:13 ----A---- C:\Windows\system32\d3d8.dll
2008-07-27 00:03:13 ----A---- C:\Windows\system32\d3d10core.dll
2008-07-27 00:03:13 ----A---- C:\Windows\system32\d3d10_1core.dll
2008-07-27 00:03:13 ----A---- C:\Windows\system32\d3d10_1.dll
2008-07-27 00:03:12 ----A---- C:\Windows\system32\devenum.dll
2008-07-27 00:03:12 ----A---- C:\Windows\system32\Defrag.exe
2008-07-27 00:03:12 ----A---- C:\Windows\system32\ddraw.dll
2008-07-27 00:03:12 ----A---- C:\Windows\system32\dbnetlib.dll
2008-07-27 00:03:12 ----A---- C:\Windows\system32\dbghelp.dll
2008-07-27 00:03:12 ----A---- C:\Windows\system32\dbgeng.dll
2008-07-27 00:03:12 ----A---- C:\Windows\system32\d3dxof.dll
2008-07-27 00:03:12 ----A---- C:\Windows\system32\d3d10.dll
2008-07-27 00:03:12 ----A---- C:\Windows\system32\cryptui.dll
2008-07-27 00:03:12 ----A---- C:\Windows\system32\cryptsvc.dll
2008-07-27 00:03:12 ----A---- C:\Windows\system32\cryptnet.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\dinput8.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\dimsroam.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\dimsjob.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\csrstub.exe
2008-07-27 00:03:11 ----A---- C:\Windows\system32\csrss.exe
2008-07-27 00:03:11 ----A---- C:\Windows\system32\csrsrv.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\cscui.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\cscsvc.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\cscobj.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\CscMig.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\cscdll.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\cscapi.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\cryptdll.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\crypt32.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\credui.dll
2008-07-27 00:03:11 ----A---- C:\Windows\system32\credssp.dll
2008-07-27 00:03:10 ----A---- C:\Windows\system32\dispex.dll
2008-07-27 00:03:10 ----A---- C:\Windows\system32\dispdiag.exe
2008-07-27 00:03:10 ----A---- C:\Windows\system32\dispci.dll
2008-07-27 00:03:10 ----A---- C:\Windows\system32\diskraid.exe
2008-07-27 00:03:10 ----A---- C:\Windows\system32\diskpart.exe
2008-07-27 00:03:10 ----A---- C:\Windows\system32\diantz.exe
2008-07-27 00:03:10 ----A---- C:\Windows\system32\DfrgNtfs.exe
2008-07-27 00:03:09 ----A---- C:\Windows\system32\diagperf.dll
2008-07-27 00:03:09 ----A---- C:\Windows\system32\dhcpsapi.dll
2008-07-27 00:03:09 ----A---- C:\Windows\system32\DHCPQEC.DLL
2008-07-27 00:03:09 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2008-07-27 00:03:09 ----A---- C:\Windows\system32\dhcpcsvc.dll
2008-07-27 00:03:09 ----A---- C:\Windows\system32\DfsShlEx.dll
2008-07-27 00:03:09 ----A---- C:\Windows\system32\dfsr.exe
2008-07-27 00:03:09 ----A---- C:\Windows\system32\dfshim.dll
2008-07-27 00:03:09 ----A---- C:\Windows\system32\dfrgui.exe
2008-07-27 00:03:09 ----A---- C:\Windows\system32\dfrgifc.exe
2008-07-27 00:03:09 ----A---- C:\Windows\system32\dfrgfat.exe
2008-07-27 00:03:09 ----A---- C:\Windows\system32\DFDWiz.exe
2008-07-27 00:03:09 ----A---- C:\Windows\system32\dfdts.dll
2008-07-27 00:03:09 ----A---- C:\Windows\system32\devmgr.dll
2008-07-27 00:03:09 ----A---- C:\Windows\system32\cmdial32.dll
2008-07-27 00:03:09 ----A---- C:\Windows\system32\cmcfg32.dll
2008-07-27 00:03:08 ----A---- C:\Windows\system32\cmmon32.exe
2008-07-27 00:03:08 ----A---- C:\Windows\system32\cmlua.dll
2008-07-27 00:03:08 ----A---- C:\Windows\system32\cmipnpinstall.dll
2008-07-27 00:03:08 ----A---- C:\Windows\system32\cmifw.dll
2008-07-27 00:03:08 ----A---- C:\Windows\system32\cmicryptinstall.dll
2008-07-27 00:03:08 ----A---- C:\Windows\system32\cmdl32.exe
2008-07-27 00:03:08 ----A---- C:\Windows\system32\cmd.exe
2008-07-27 00:03:08 ----A---- C:\Windows\system32\clusapi.dll
2008-07-27 00:03:08 ----A---- C:\Windows\system32\cipher.exe
2008-07-27 00:03:08 ----A---- C:\Windows\system32\cic.dll
2008-07-27 00:03:07 ----A---- C:\Windows\system32\corpol.dll
2008-07-27 00:03:07 ----A---- C:\Windows\system32\convert.exe
2008-07-27 00:03:07 ----A---- C:\Windows\system32\comuid.dll
2008-07-27 00:03:07 ----A---- C:\Windows\system32\comsnap.dll
2008-07-27 00:03:07 ----A---- C:\Windows\system32\comres.dll
2008-07-27 00:03:07 ----A---- C:\Windows\system32\comrepl.dll
2008-07-27 00:03:07 ----A---- C:\Windows\system32\ComputerDefaults.exe
2008-07-27 00:03:07 ----A---- C:\Windows\system32\compstui.dll
2008-07-27 00:03:07 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
2008-07-27 00:03:07 ----A---- C:\Windows\system32\CompatUI.dll
2008-07-27 00:03:07 ----A---- C:\Windows\system32\clfsw32.dll
2008-07-27 00:03:07 ----A---- C:\Windows\system32\clbcatq.dll
2008-07-27 00:03:06 ----A---- C:\Windows\system32\consent.exe
2008-07-27 00:03:06 ----A---- C:\Windows\system32\connect.dll
2008-07-27 00:03:06 ----A---- C:\Windows\system32\conime.exe
2008-07-27 00:03:06 ----A---- C:\Windows\system32\comsvcs.dll
2008-07-27 00:03:06 ----A---- C:\Windows\system32\colorui.dll
2008-07-27 00:03:06 ----A---- C:\Windows\system32\COLORCNV.DLL
2008-07-27 00:03:06 ----A---- C:\Windows\system32\colbact.dll
2008-07-27 00:03:06 ----A---- C:\Windows\system32\cofiredm.dll
2008-07-27 00:03:06 ----A---- C:\Windows\system32\cmutil.dll
2008-07-27 00:03:06 ----A---- C:\Windows\system32\cmstplua.dll
2008-07-27 00:03:06 ----A---- C:\Windows\system32\cmstp.exe
2008-07-27 00:03:06 ----A---- C:\Windows\system32\cmpbk32.dll
2008-07-27 00:03:05 ----A---- C:\Windows\system32\els.dll
2008-07-27 00:03:05 ----A---- C:\Windows\system32\comdlg32.dll
2008-07-27 00:03:05 ----A---- C:\Windows\system32\comctl32.dll
2008-07-27 00:03:02 ----A---- C:\Windows\system32\esentutl.exe
2008-07-27 00:03:02 ----A---- C:\Windows\system32\esentprf.dll
2008-07-27 00:03:01 ----A---- C:\Windows\system32\feclient.dll
2008-07-27 00:03:01 ----A---- C:\Windows\system32\esent.dll
2008-07-27 00:03:01 ----A---- C:\Windows\system32\EncDump.dll
2008-07-27 00:03:01 ----A---- C:\Windows\system32\efsadu.dll
2008-07-27 00:03:01 ----A---- C:\Windows\system32\eapsvc.dll
2008-07-27 00:03:01 ----A---- C:\Windows\system32\EAPQEC.DLL
2008-07-27 00:03:01 ----A---- C:\Windows\system32\eappprxy.dll
2008-07-27 00:03:00 ----A---- C:\Windows\system32\fontsub.dll
2008-07-27 00:03:00 ----A---- C:\Windows\system32\fontext.dll
2008-07-27 00:03:00 ----A---- C:\Windows\system32\fmifs.dll
2008-07-27 00:03:00 ----A---- C:\Windows\system32\FirewallControlPanel.exe
2008-07-27 00:03:00 ----A---- C:\Windows\system32\FirewallAPI.dll
2008-07-27 00:03:00 ----A---- C:\Windows\system32\findstr.exe
2008-07-27 00:03:00 ----A---- C:\Windows\system32\findnetprinters.dll
2008-07-27 00:03:00 ----A---- C:\Windows\system32\filemgmt.dll
2008-07-27 00:03:00 ----A---- C:\Windows\system32\fdWSD.dll
2008-07-27 00:03:00 ----A---- C:\Windows\system32\fdWCN.dll
2008-07-27 00:03:00 ----A---- C:\Windows\system32\fdSSDP.dll
2008-07-27 00:03:00 ----A---- C:\Windows\system32\fdPHost.dll
2008-07-27 00:03:00 ----A---- C:\Windows\system32\fdeploy.dll
2008-07-27 00:03:00 ----A---- C:\Windows\system32\fde.dll
2008-07-27 00:03:00 ----A---- C:\Windows\system32\evr.dll
2008-07-27 00:02:59 ----A---- C:\Windows\system32\Faultrep.dll
2008-07-27 00:02:59 ----A---- C:\Windows\system32\f3ahvoas.dll
2008-07-27 00:02:59 ----A---- C:\Windows\system32\extrac32.exe
2008-07-27 00:02:59 ----A---- C:\Windows\system32\extmgr.dll
2008-07-27 00:02:59 ----A---- C:\Windows\system32\ExplorerFrame.dll
2008-07-27 00:02:59 ----A---- C:\Windows\system32\expand.exe
2008-07-27 00:02:59 ----A---- C:\Windows\system32\eventcls.dll

2008-07-27 00:02:59 ----A---- C:\Windows\system32\dot3ui.dll
2008-07-27 00:02:59 ----A---- C:\Windows\system32\dot3svc.dll
2008-07-27 00:02:59 ----A---- C:\Windows\system32\dot3cfg.dll
2008-07-27 00:02:59 ----A---- C:\Windows\explorer.exe
2008-07-27 00:02:58 ----A---- C:\Windows\system32\drmv2clt.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\drmmgrtn.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\driverquery.exe
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dpx.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dps.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dpnet.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\DpiScaling.exe
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dpapimig.exe
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dot3msm.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dot3gpui.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dot3gpclnt.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dot3dlg.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dot3api.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dnshc.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dmsynth.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dmscript.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dmocx.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dmloader.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dmime.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dmdskres2.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dmdskmgr.dll
2008-07-27 00:02:58 ----A---- C:\Windows\system32\dmdlgs.dll
2008-07-27 00:02:57 ----A---- C:\Windows\system32\eapphost.dll
2008-07-27 00:02:57 ----A---- C:\Windows\system32\eappgnui.dll
2008-07-27 00:02:57 ----A---- C:\Windows\system32\eappcfg.dll
2008-07-27 00:02:57 ----A---- C:\Windows\system32\eapp3hst.dll
2008-07-27 00:02:57 ----A---- C:\Windows\system32\dxgi.dll
2008-07-27 00:02:57 ----A---- C:\Windows\system32\dxdiagn.dll
2008-07-27 00:02:57 ----A---- C:\Windows\system32\dxdiag.exe
2008-07-27 00:02:57 ----A---- C:\Windows\system32\DWWIN.EXE
2008-07-27 00:02:57 ----A---- C:\Windows\system32\dwmredir.dll
2008-07-27 00:02:57 ----A---- C:\Windows\system32\dwmapi.dll
2008-07-27 00:02:57 ----A---- C:\Windows\system32\dwm.exe
2008-07-27 00:02:57 ----A---- C:\Windows\system32\dnsrslvr.dll
2008-07-27 00:02:57 ----A---- C:\Windows\system32\dnscacheugc.exe
2008-07-27 00:02:57 ----A---- C:\Windows\system32\dnsapi.dll
2008-07-27 00:02:57 ----A---- C:\Windows\system32\dmvdsitf.dll
2008-07-27 00:02:57 ----A---- C:\Windows\system32\dmutil.dll
2008-07-27 00:02:57 ----A---- C:\Windows\system32\dmusic.dll
2008-07-27 00:02:56 ----A---- C:\Windows\system32\dxva2.dll
2008-07-27 00:02:56 ----A---- C:\Windows\system32\dxtrans.dll
2008-07-27 00:02:56 ----A---- C:\Windows\system32\dxtmsft.dll
2008-07-27 00:02:56 ----A---- C:\Windows\system32\dxmasf.dll
2008-07-27 00:02:56 ----A---- C:\Windows\system32\dsuiext.dll
2008-07-27 00:02:56 ----A---- C:\Windows\system32\dssenh.dll
2008-07-27 00:02:56 ----A---- C:\Windows\system32\dsound.dll
2008-07-27 00:02:56 ----A---- C:\Windows\system32\dskquoui.dll
2008-07-27 00:02:56 ----A---- C:\Windows\system32\dskquota.dll
2008-07-27 00:02:56 ----A---- C:\Windows\system32\dsdmo.dll
2008-07-27 00:02:56 ----A---- C:\Windows\system32\dsauth.dll
2008-07-27 00:02:56 ----A---- C:\Windows\system32\drvstore.dll
2008-07-27 00:02:56 ----A---- C:\Windows\system32\drvinst.exe
2008-07-27 00:02:55 ----A---- C:\Windows\system32\duser.dll
2008-07-27 00:02:55 ----A---- C:\Windows\system32\dssec.dll
2008-07-27 00:02:55 ----A---- C:\Windows\system32\dsquery.dll
2008-07-27 00:02:55 ----A---- C:\Windows\system32\dsprop.dll
2008-07-27 00:02:55 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2008-07-27 00:02:55 ----A---- C:\Windows\system32\AuthFWGP.dll
2008-07-27 00:02:55 ----A---- C:\Windows\system32\authfwcfg.dll
2008-07-27 00:02:55 ----A---- C:\Windows\system32\audiosrv.dll
2008-07-27 00:02:55 ----A---- C:\Windows\system32\AudioSes.dll
2008-07-27 00:02:55 ----A---- C:\Windows\system32\AudioEng.dll
2008-07-27 00:02:55 ----A---- C:\Windows\system32\audiodg.exe
2008-07-27 00:02:55 ----A---- C:\Windows\system32\audiodev.dll
2008-07-27 00:02:55 ----A---- C:\Windows\system32\atmfd.dll
2008-07-27 00:02:55 ----A---- C:\Windows\system32\atl.dll
2008-07-27 00:02:55 ----A---- C:\Windows\system32\AtBroker.exe
2008-07-27 00:02:55 ----A---- C:\Windows\system32\at.exe
2008-07-27 00:02:54 ----A---- C:\Windows\system32\auditpol.exe
2008-07-27 00:02:54 ----A---- C:\Windows\system32\AUDIOKSE.dll
2008-07-27 00:02:53 ----A---- C:\Windows\system32\bcdedit.exe
2008-07-27 00:02:50 ----A---- C:\Windows\system32\bitsadmin.exe
2008-07-27 00:02:50 ----A---- C:\Windows\system32\BFE.DLL
2008-07-27 00:02:50 ----A---- C:\Windows\system32\bcrypt.dll
2008-07-27 00:02:50 ----A---- C:\Windows\system32\bcdsrv.dll
2008-07-27 00:02:50 ----A---- C:\Windows\system32\bcdprov.dll
2008-07-27 00:02:50 ----A---- C:\Windows\system32\batt.dll
2008-07-27 00:02:50 ----A---- C:\Windows\system32\basesrv.dll
2008-07-27 00:02:50 ----A---- C:\Windows\system32\basecsp.dll
2008-07-27 00:02:50 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2008-07-27 00:02:50 ----A---- C:\Windows\system32\AuxiliaryDisplayApi.dll
2008-07-27 00:02:50 ----A---- C:\Windows\system32\autoplay.dll
2008-07-27 00:02:50 ----A---- C:\Windows\system32\autofmt.exe
2008-07-27 00:02:50 ----A---- C:\Windows\bfsvc.exe
2008-07-27 00:02:49 ----A---- C:\Windows\system32\AzSqlExt.dll
2008-07-27 00:02:49 ----A---- C:\Windows\system32\azroleui.dll
2008-07-27 00:02:49 ----A---- C:\Windows\system32\azroles.dll
2008-07-27 00:02:49 ----A---- C:\Windows\system32\avrt.dll
2008-07-27 00:02:49 ----A---- C:\Windows\system32\avifil32.dll
2008-07-27 00:02:49 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2008-07-27 00:02:49 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2008-07-27 00:02:49 ----A---- C:\Windows\system32\autoconv.exe
2008-07-27 00:02:49 ----A---- C:\Windows\system32\autochk.exe
2008-07-27 00:02:49 ----A---- C:\Windows\system32\authz.dll
2008-07-27 00:02:49 ----A---- C:\Windows\system32\authui.dll
2008-07-27 00:02:49 ----A---- C:\Windows\system32\ACW.exe
2008-07-27 00:02:49 ----A---- C:\Windows\system32\ActiveContentWizard.dll
2008-07-27 00:02:49 ----A---- C:\Windows\system32\ActionQueue.dll
2008-07-27 00:02:48 ----A---- C:\Windows\system32\admparse.dll
2008-07-27 00:02:48 ----A---- C:\Windows\system32\actxprxy.dll
2008-07-27 00:02:48 ----A---- C:\Windows\system32\activeds.dll
2008-07-27 00:02:48 ----A---- C:\Windows\system32\aclui.dll
2008-07-27 00:02:47 ----A---- C:\Windows\system32\apircl.dll
2008-07-27 00:02:47 ----A---- C:\Windows\system32\apilogen.dll
2008-07-27 00:02:47 ----A---- C:\Windows\system32\apds.dll
2008-07-27 00:02:47 ----A---- C:\Windows\system32\amxread.dll
2008-07-27 00:02:47 ----A---- C:\Windows\system32\amstream.dll
2008-07-27 00:02:47 ----A---- C:\Windows\system32\accessibilitycpl.dll
2008-07-27 00:02:47 ----A---- C:\Windows\system32\aaclient.dll
2008-07-27 00:02:46 ----A---- C:\Windows\system32\apss.dll
2008-07-27 00:02:46 ----A---- C:\Windows\system32\appmgr.dll
2008-07-27 00:02:46 ----A---- C:\Windows\system32\appmgmts.dll
2008-07-27 00:02:46 ----A---- C:\Windows\system32\appinfo.dll
2008-07-27 00:02:46 ----A---- C:\Windows\system32\apphelp.dll
2008-07-27 00:02:46 ----A---- C:\Windows\system32\advpack.dll
2008-07-27 00:02:46 ----A---- C:\Windows\system32\advapi32.dll
2008-07-27 00:02:46 ----A---- C:\Windows\system32\adtschema.dll
2008-07-27 00:02:46 ----A---- C:\Windows\system32\adsnt.dll
2008-07-27 00:02:46 ----A---- C:\Windows\system32\adsmsext.dll
2008-07-27 00:02:46 ----A---- C:\Windows\system32\adsldpc.dll
2008-07-27 00:02:46 ----A---- C:\Windows\system32\adsldp.dll
2008-07-27 00:02:45 ----A---- C:\Windows\system32\catsrvut.dll
2008-07-27 00:02:45 ----A---- C:\Windows\system32\catsrv.dll
2008-07-27 00:02:45 ----A---- C:\Windows\system32\cacls.exe
2008-07-27 00:02:45 ----A---- C:\Windows\system32\cabview.dll
2008-07-27 00:02:45 ----A---- C:\Windows\system32\cabinet.dll
2008-07-27 00:02:45 ----A---- C:\Windows\system32\btpanui.dll
2008-07-27 00:02:45 ----A---- C:\Windows\system32\alg.exe
2008-07-27 00:02:44 ----A---- C:\Windows\system32\capisp.dll
2008-07-27 00:02:44 ----A---- C:\Windows\system32\bthci.dll
2008-07-27 00:02:44 ----A---- C:\Windows\system32\brcplsiw.dll
2008-07-27 00:02:44 ----A---- C:\Windows\system32\brcplsdw.dll
2008-07-27 00:02:44 ----A---- C:\Windows\system32\brcpl.dll
2008-07-27 00:02:44 ----A---- C:\Windows\system32\BOOTVID.DLL
2008-07-27 00:02:44 ----A---- C:\Windows\system32\bootstr.dll
2008-07-27 00:02:43 ----A---- C:\Windows\system32\chgusr.exe
2008-07-27 00:02:43 ----A---- C:\Windows\system32\chgport.exe
2008-07-27 00:02:43 ----A---- C:\Windows\system32\chglogon.exe
2008-07-27 00:02:43 ----A---- C:\Windows\system32\change.exe
2008-07-27 00:02:43 ----A---- C:\Windows\system32\cewmdm.dll
2008-07-27 00:02:43 ----A---- C:\Windows\system32\certutil.exe
2008-07-27 00:02:43 ----A---- C:\Windows\system32\certreq.exe
2008-07-27 00:02:43 ----A---- C:\Windows\system32\certprop.dll
2008-07-27 00:02:43 ----A---- C:\Windows\system32\certmgr.dll
2008-07-27 00:02:43 ----A---- C:\Windows\system32\CertEnrollUI.dll
2008-07-27 00:02:43 ----A---- C:\Windows\system32\CertEnrollCtrl.exe
2008-07-27 00:02:43 ----A---- C:\Windows\system32\CertEnroll.dll
2008-07-27 00:02:43 ----A---- C:\Windows\system32\certcli.dll
2008-07-27 00:02:43 ----A---- C:\Windows\system32\browseui.dll
2008-07-27 00:02:43 ----A---- C:\Windows\system32\browser.dll
2008-07-27 00:02:43 ----A---- C:\Windows\system32\bridgeunattend.exe
2008-07-27 00:02:42 ----A---- C:\Windows\system32\cfgmgr32.dll
2008-07-27 00:02:42 ----A---- C:\Windows\system32\cfgbkend.dll
2008-07-27 00:02:42 ----A---- C:\Windows\system32\cdosys.dll
2008-07-27 00:02:41 ----A---- C:\Windows\system32\bootcfg.exe
2008-07-27 00:02:41 ----A---- C:\Windows\system32\BlbEvents.dll
2008-07-27 00:02:41 ----A---- C:\Windows\system32\blb_ps.dll
2008-07-27 00:02:41 ----A---- C:\Windows\system32\blackbox.dll
2008-07-27 00:02:41 ----A---- C:\Windows\system32\bitsigd.dll
2008-07-27 00:02:33 ----A---- C:\Windows\system32\IMJP10K.DLL
2008-07-27 00:02:33 ----A---- C:\Windows\system32\imgutil.dll
2008-07-27 00:02:32 ----A---- C:\Windows\system32\imapi2fs.dll
2008-07-27 00:02:32 ----A---- C:\Windows\system32\imapi2.dll
2008-07-27 00:02:32 ----A---- C:\Windows\system32\imapi.dll
2008-07-27 00:02:32 ----A---- C:\Windows\system32\imagesp1.dll
2008-07-27 00:02:32 ----A---- C:\Windows\system32\imagehlp.dll
2008-07-27 00:02:31 ----A---- C:\Windows\system32\InkEd.dll
2008-07-27 00:02:31 ----A---- C:\Windows\system32\inetppui.dll
2008-07-27 00:02:31 ----A---- C:\Windows\system32\inetpp.dll
2008-07-27 00:02:31 ----A---- C:\Windows\system32\inetmib1.dll
2008-07-27 00:02:31 ----A---- C:\Windows\system32\IKEEXT.DLL
2008-07-27 00:02:30 ----A---- C:\Windows\system32\input.dll
2008-07-27 00:02:30 ----A---- C:\Windows\system32\infocardapi.dll
2008-07-27 00:02:30 ----A---- C:\Windows\system32\InfDefaultInstall.exe
2008-07-27 00:02:29 ----A---- C:\Windows\system32\imm32.dll
2008-07-27 00:02:29 ----A---- C:\Windows\system32\iassvcs.dll
2008-07-27 00:02:29 ----A---- C:\Windows\system32\iassdo.dll
2008-07-27 00:02:29 ----A---- C:\Windows\system32\iassam.dll
2008-07-27 00:02:29 ----A---- C:\Windows\system32\iasrecst.dll
2008-07-27 00:02:29 ----A---- C:\Windows\system32\iashost.exe
2008-07-27 00:02:29 ----A---- C:\Windows\system32\iashlpr.dll
2008-07-27 00:02:29 ----A---- C:\Windows\system32\iasdatastore.dll
2008-07-27 00:02:29 ----A---- C:\Windows\system32\iasads.dll
2008-07-27 00:02:29 ----A---- C:\Windows\system32\iasacct.dll
2008-07-27 00:02:29 ----A---- C:\Windows\system32\ias.dll
2008-07-27 00:02:28 ----A---- C:\Windows\system32\icaapi.dll
2008-07-27 00:02:28 ----A---- C:\Windows\system32\iasrad.dll
2008-07-27 00:02:28 ----A---- C:\Windows\system32\iaspolcy.dll
2008-07-27 00:02:28 ----A---- C:\Windows\system32\iasnap.dll
2008-07-27 00:02:28 ----A---- C:\Windows\system32\IasMigPlugin.dll
2008-07-27 00:02:28 ----A---- C:\Windows\system32\httpapi.dll
2008-07-27 00:02:27 ----A---- C:\Windows\system32\ifsutil.dll
2008-07-27 00:02:27 ----A---- C:\Windows\system32\ifmon.dll
2008-07-27 00:02:27 ----A---- C:\Windows\system32\iexpress.exe
2008-07-27 00:02:27 ----A---- C:\Windows\system32\ieui.dll
2008-07-27 00:02:27 ----A---- C:\Windows\system32\iesetup.dll
2008-07-27 00:02:27 ----A---- C:\Windows\system32\iertutil.dll
2008-07-27 00:02:27 ----A---- C:\Windows\system32\iernonce.dll
2008-07-27 00:02:27 ----A---- C:\Windows\system32\iepeers.dll
2008-07-27 00:02:26 ----A---- C:\Windows\system32\ieencode.dll
2008-07-27 00:02:26 ----A---- C:\Windows\system32\iedkcs32.dll
2008-07-27 00:02:26 ----A---- C:\Windows\system32\ieapfltr.dll
2008-07-27 00:02:26 ----A---- C:\Windows\system32\ieaksie.dll
2008-07-27 00:02:26 ----A---- C:\Windows\system32\ieakeng.dll
2008-07-27 00:02:26 ----A---- C:\Windows\system32\ie4uinit.exe
2008-07-27 00:02:26 ----A---- C:\Windows\system32\idndl.dll
2008-07-27 00:02:26 ----A---- C:\Windows\system32\icsunattend.exe
2008-07-27 00:02:26 ----A---- C:\Windows\system32\icsfiltr.dll
2008-07-27 00:02:26 ----A---- C:\Windows\system32\icm32.dll
2008-07-27 00:02:26 ----A---- C:\Windows\system32\icfupgd.dll
2008-07-27 00:02:26 ----A---- C:\Windows\system32\icardres.dll
2008-07-27 00:02:26 ----A---- C:\Windows\system32\icardie.dll
2008-07-27 00:02:26 ----A---- C:\Windows\system32\icardagt.exe
2008-07-27 00:02:26 ----A---- C:\Windows\system32\icacls.exe
2008-07-27 00:02:25 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2008-07-27 00:02:25 ----A---- C:\Windows\system32\hnetmon.dll
2008-07-27 00:02:25 ----A---- C:\Windows\system32\hnetcfg.dll
2008-07-27 00:02:25 ----A---- C:\Windows\system32\hlink.dll
2008-07-27 00:02:24 ----A---- C:\Windows\system32\FXSMON.dll
2008-07-27 00:02:24 ----A---- C:\Windows\system32\FXSEXT32.dll
2008-07-27 00:02:24 ----A---- C:\Windows\system32\FXSCOVER.exe
2008-07-27 00:02:24 ----A---- C:\Windows\system32\FXSCOMPOSE.dll
2008-07-27 00:02:24 ----A---- C:\Windows\system32\FXSCOMEX.dll
2008-07-27 00:02:24 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2008-07-27 00:02:23 ----A---- C:\Windows\system32\FXSXP32.dll
2008-07-27 00:02:23 ----A---- C:\Windows\system32\FXSUTILITY.dll
2008-07-27 00:02:23 ----A---- C:\Windows\system32\FXSUNATD.exe
2008-07-27 00:02:23 ----A---- C:\Windows\system32\FXSTIFF.dll
2008-07-27 00:02:23 ----A---- C:\Windows\system32\FXST30.dll
2008-07-27 00:02:23 ----A---- C:\Windows\system32\FXSSVC.exe
2008-07-27 00:02:23 ----A---- C:\Windows\system32\FXSST.dll
2008-07-27 00:02:23 ----A---- C:\Windows\system32\FXSROUTE.dll
2008-07-27 00:02:23 ----A---- C:\Windows\system32\FXSRESM.dll
2008-07-27 00:02:23 ----A---- C:\Windows\system32\FXSCOM.dll
2008-07-27 00:02:23 ----A---- C:\Windows\system32\FXSAPI.dll
2008-07-27 00:02:23 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2008-07-27 00:02:23 ----A---- C:\Windows\system32\fsmgmt.msc
2008-07-27 00:02:22 ----A---- C:\Windows\system32\hbaapi.dll
2008-07-27 00:02:22 ----A---- C:\Windows\system32\fwcfg.dll
2008-07-27 00:02:22 ----A---- C:\Windows\system32\fveui.dll
2008-07-27 00:02:22 ----A---- C:\Windows\system32\fveRecover.dll
2008-07-27 00:02:22 ----A---- C:\Windows\system32\fvenotify.exe
2008-07-27 00:02:22 ----A---- C:\Windows\system32\fvecpl.dll
2008-07-27 00:02:22 ----A---- C:\Windows\system32\fveapi.dll
2008-07-27 00:02:22 ----A---- C:\Windows\system32\fundisc.dll
2008-07-27 00:02:22 ----A---- C:\Windows\system32\ftp.exe
2008-07-27 00:02:22 ----A---- C:\Windows\system32\fsutil.exe
2008-07-27 00:02:22 ----A---- C:\Windows\system32\framedynos.dll
2008-07-27 00:02:22 ----A---- C:\Windows\system32\framedyn.dll
2008-07-27 00:02:22 ----A---- C:\Windows\system32\framebuf.dll
2008-07-27 00:02:22 ----A---- C:\Windows\system32\fphc.dll
2008-07-27 00:02:22 ----A---- C:\Windows\fveupdate.exe
2008-07-27 00:02:21 ----A---- C:\Windows\system32\HelpPaneProxy.dll
2008-07-27 00:02:21 ----A---- C:\Windows\system32\GuidedHelp.dll
2008-07-27 00:02:21 ----A---- C:\Windows\system32\getmac.exe
2008-07-27 00:02:21 ----A---- C:\Windows\system32\gatherWirelessInfo.vbs
2008-07-27 00:02:21 ----A---- C:\Windows\system32\gacinstall.dll
2008-07-27 00:02:21 ----A---- C:\Windows\HelpPane.exe
2008-07-27 00:02:20 ----A---- C:\Windows\system32\graftabl.com
2008-07-27 00:02:20 ----A---- C:\Windows\system32\gpupdate.exe
2008-07-27 00:02:20 ----A---- C:\Windows\system32\gpsvc.dll
2008-07-27 00:02:20 ----A---- C:\Windows\system32\gpscript.exe
2008-07-27 00:02:20 ----A---- C:\Windows\system32\gpscript.dll
2008-07-27 00:02:20 ----A---- C:\Windows\system32\gpresult.exe
2008-07-27 00:02:20 ----A---- C:\Windows\system32\gpprnext.dll
2008-07-27 00:02:20 ----A---- C:\Windows\system32\gpedit.msc
2008-07-27 00:02:20 ----A---- C:\Windows\system32\gpedit.dll
2008-07-27 00:02:20 ----A---- C:\Windows\system32\gpapi.dll
2008-07-27 00:02:20 ----A---- C:\Windows\system32\gatherWiredInfo.vbs
2008-07-27 00:02:17 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2008-07-27 00:02:17 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-07-27 00:02:16 ----A---- C:\Windows\system32\win32spl.dll
2008-07-27 00:02:16 ----A---- C:\Windows\system32\wiascanprofiles.dll
2008-07-27 00:02:16 ----A---- C:\Windows\system32\wiarpc.dll
2008-07-27 00:02:16 ----A---- C:\Windows\system32\wiafbdrv.dll
2008-07-27 00:02:16 ----A---- C:\Windows\system32\wiadss.dll
2008-07-27 00:02:16 ----A---- C:\Windows\system32\wiadefui.dll
2008-07-27 00:02:16 ----A---- C:\Windows\system32\wiaaut.dll
2008-07-27 00:02:16 ----A---- C:\Windows\system32\wiaacmgr.exe
2008-07-27 00:02:16 ----A---- C:\Windows\system32\whealogr.dll
2008-07-27 00:02:16 ----A---- C:\Windows\system32\WFS.exe
2008-07-27 00:02:16 ----A---- C:\Windows\system32\wfapigp.dll
2008-07-27 00:02:16 ----A---- C:\Windows\system32\wextract.exe
2008-07-27 00:02:16 ----A---- C:\Windows\system32\wevtutil.exe
2008-07-27 00:02:16 ----A---- C:\Windows\system32\wevtsvc.dll
2008-07-27 00:02:16 ----A---- C:\Windows\system32\wevtfwd.dll
2008-07-27 00:02:15 ----A---- C:\Windows\system32\WLanConn.dll
2008-07-27 00:02:15 ----A---- C:\Windows\system32\wlancfg.dll
2008-07-27 00:02:15 ----A---- C:\Windows\system32\wlanapi.dll
2008-07-27 00:02:15 ----A---- C:\Windows\system32\winusb.dll
2008-07-27 00:02:15 ----A---- C:\Windows\system32\wintrust.dll
2008-07-27 00:02:15 ----A---- C:\Windows\system32\winsta.dll
2008-07-27 00:02:15 ----A---- C:\Windows\system32\winsrv.dll
2008-07-27 00:02:15 ----A---- C:\Windows\system32\WINSRPC.DLL
2008-07-27 00:02:15 ----A---- C:\Windows\system32\WinSCard.dll
2008-07-27 00:02:15 ----A---- C:\Windows\system32\WinSATAPI.dll
2008-07-27 00:02:15 ----A---- C:\Windows\system32\WinSAT.exe
2008-07-27 00:02:15 ----A---- C:\Windows\system32\winrsmgr.dll
2008-07-27 00:02:15 ----A---- C:\Windows\system32\wiashext.dll
2008-07-27 00:02:15 ----A---- C:\Windows\system32\wiaservc.dll
2008-07-27 00:02:14 ----A---- C:\Windows\system32\wkssvc.dll
2008-07-27 00:02:14 ----A---- C:\Windows\system32\wisptis.exe
2008-07-27 00:02:14 ----A---- C:\Windows\system32\winipsec.dll
2008-07-27 00:02:14 ----A---- C:\Windows\system32\wininit.exe
2008-07-27 00:02:12 ----A---- C:\Windows\system32\winethc.dll
2008-07-27 00:02:12 ----A---- C:\Windows\system32\WindowsUltimateExtrasCPL.dll
2008-07-27 00:02:11 ----A---- C:\Windows\system32\winrshost.exe
2008-07-27 00:02:11 ----A---- C:\Windows\system32\winrscmd.dll
2008-07-27 00:02:11 ----A---- C:\Windows\system32\winrs.exe
2008-07-27 00:02:11 ----A---- C:\Windows\system32\winrm.vbs
2008-07-27 00:02:11 ----A---- C:\Windows\system32\winnsi.dll
2008-07-27 00:02:11 ----A---- C:\Windows\system32\winmm.dll
2008-07-27 00:02:11 ----A---- C:\Windows\system32\winlogon.exe
2008-07-27 00:02:11 ----A---- C:\Windows\system32\winhttp.dll
2008-07-27 00:02:11 ----A---- C:\Windows\system32\WinFXDocObj.exe
2008-07-27 00:02:11 ----A---- C:\Windows\system32\WinFax.dll
2008-07-27 00:02:10 ----A---- C:\Windows\system32\wbemcomn.dll
2008-07-27 00:02:10 ----A---- C:\Windows\system32\wbadmin.exe
2008-07-27 00:02:10 ----A---- C:\Windows\system32\wavemsp.dll
2008-07-27 00:02:10 ----A---- C:\Windows\system32\WavDest.dll
2008-07-27 00:02:10 ----A---- C:\Windows\system32\w32tm.exe
2008-07-27 00:02:10 ----A---- C:\Windows\system32\w32time.dll
2008-07-27 00:02:09 ----A---- C:\Windows\system32\waitfor.exe
2008-07-27 00:02:09 ----A---- C:\Windows\system32\VSSVC.exe
2008-07-27 00:02:09 ----A---- C:\Windows\system32\vsstrace.dll
2008-07-27 00:02:09 ----A---- C:\Windows\system32\vssadmin.exe
2008-07-27 00:02:09 ----A---- C:\Windows\system32\vss_ps.dll
2008-07-27 00:02:08 ----A---- C:\Windows\system32\WebClnt.dll
2008-07-27 00:02:08 ----A---- C:\Windows\system32\webcheck.dll
2008-07-27 00:02:08 ----A---- C:\Windows\system32\vssapi.dll
2008-07-27 00:02:07 ----A---- C:\Windows\system32\wevtapi.dll
2008-07-27 00:02:07 ----A---- C:\Windows\system32\wersvc.dll
2008-07-27 00:02:07 ----A---- C:\Windows\system32\wermgr.exe
2008-07-27 00:02:07 ----A---- C:\Windows\system32\WerFaultSecure.exe
2008-07-27 00:02:07 ----A---- C:\Windows\system32\WerFault.exe
2008-07-27 00:02:07 ----A---- C:\Windows\system32\werdiagcontroller.dll
2008-07-27 00:02:07 ----A---- C:\Windows\system32\wercon.exe
2008-07-27 00:02:07 ----A---- C:\Windows\system32\wecutil.exe
2008-07-27 00:02:07 ----A---- C:\Windows\system32\wecsvc.dll
2008-07-27 00:02:07 ----A---- C:\Windows\system32\wecapi.dll
2008-07-27 00:02:07 ----A---- C:\Windows\system32\wdscore.dll
2008-07-27 00:02:06 ----A---- C:\Windows\system32\wercplsupport.dll
2008-07-27 00:02:06 ----A---- C:\Windows\system32\wer.dll
2008-07-27 00:02:06 ----A---- C:\Windows\system32\wbengine.exe
2008-07-27 00:02:05 ----A---- C:\Windows\system32\WSDMon.dll
2008-07-27 00:02:05 ----A---- C:\Windows\system32\WSDApi.dll
2008-07-27 00:02:05 ----A---- C:\Windows\system32\wscsvc.dll
2008-07-27 00:02:05 ----A---- C:\Windows\system32\wscproxystub.dll
2008-07-27 00:02:05 ----A---- C:\Windows\system32\wscntfy.dll
2008-07-27 00:02:05 ----A---- C:\Windows\system32\wdigest.dll
2008-07-27 00:02:05 ----A---- C:\Windows\system32\wdi.dll
2008-07-27 00:02:05 ----A---- C:\Windows\system32\wdc.dll
2008-07-27 00:02:05 ----A---- C:\Windows\system32\wcnwiz.dll
2008-07-27 00:02:05 ----A---- C:\Windows\system32\wcncsvc.dll
2008-07-27 00:02:04 ----A---- C:\Windows\system32\wship6.dll
2008-07-27 00:02:04 ----A---- C:\Windows\system32\wshcon.dll
2008-07-27 00:02:04 ----A---- C:\Windows\system32\wsecedit.dll
2008-07-27 00:02:04 ----A---- C:\Windows\system32\wscmisetup.dll
2008-07-27 00:02:04 ----A---- C:\Windows\system32\wscisvif.dll
2008-07-27 00:02:04 ----A---- C:\Windows\system32\wscapi.dll
2008-07-27 00:02:04 ----A---- C:\Windows\system32\WpdMtp.dll
2008-07-27 00:02:04 ----A---- C:\Windows\system32\WpdConns.dll
2008-07-27 00:02:04 ----A---- C:\Windows\system32\wpdbusenum.dll
2008-07-27 00:02:04 ----A---- C:\Windows\system32\wpcsvc.dll
2008-07-27 00:02:04 ----A---- C:\Windows\system32\wpccpl.dll
2008-07-27 00:02:04 ----A---- C:\Windows\system32\wpcao.dll
2008-07-27 00:02:04 ----A---- C:\Windows\system32\Wpc.dll
2008-07-27 00:02:03 ----A---- C:\Windows\system32\xcopy.exe
2008-07-27 00:02:03 ----A---- C:\Windows\system32\xactsrv.dll
2008-07-27 00:02:03 ----A---- C:\Windows\system32\ws2_32.dll
2008-07-27 00:02:03 ----A---- C:\Windows\system32\wpnpinst.exe
2008-07-27 00:02:03 ----A---- C:\Windows\system32\wpdwcn.dll
2008-07-27 00:02:03 ----A---- C:\Windows\system32\WPDSp.dll
2008-07-27 00:02:03 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2008-07-27 00:02:03 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2008-07-27 00:02:03 ----A---- C:\Windows\system32\wpdshext.dll
2008-07-27 00:02:03 ----A---- C:\Windows\system32\WpdMtpUS.dll
2008-07-27 00:02:03 ----A---- C:\Windows\system32\wpd_ci.dll
2008-07-27 00:02:03 ----A---- C:\Windows\system32\wpclsp.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\XPSSHHDR.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\xolehlp.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\xmlprovi.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\xmllite.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\wzcdlg.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\wvc.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\wusa.exe
2008-07-27 00:02:02 ----A---- C:\Windows\system32\WUDFx.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\WUDFSvc.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\WUDFPlatform.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\wsqmcons.exe
2008-07-27 00:02:02 ----A---- C:\Windows\system32\wsock32.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\wsnmp32.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\WsmWmiPl.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\WsmSvc.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\WsmRes.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\WsmCl.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32

benraines · Sep 13, 2008

RSIT Log Part 3

\WSManMigrationPlugin.dll
2008-07-27 00:02:02 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2008-07-27 00:02:02 ----A---- C:\Windows\system32\WSHTCPIP.DLL
2008-07-27 00:02:01 ----A---- C:\Windows\system32\xwizards.dll
2008-07-27 00:02:01 ----A---- C:\Windows\system32\xpssvcs.dll
2008-07-27 00:02:01 ----A---- C:\Windows\system32\WUDFHost.exe
2008-07-27 00:02:01 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2008-07-27 00:02:01 ----A---- C:\Windows\system32\wtsapi32.dll
2008-07-27 00:02:01 ----A---- C:\Windows\system32\WsmProv.dll
2008-07-27 00:02:01 ----A---- C:\Windows\system32\WsmAuto.dll
2008-07-27 00:02:01 ----A---- C:\Windows\system32\wmicmiplugin.dll
2008-07-27 00:02:00 ----A---- C:\Windows\system32\wmidx.dll
2008-07-27 00:02:00 ----A---- C:\Windows\system32\Wldap32.dll
2008-07-27 00:02:00 ----A---- C:\Windows\system32\wlanui.dll
2008-07-27 00:02:00 ----A---- C:\Windows\system32\wlansec.dll
2008-07-27 00:02:00 ----A---- C:\Windows\system32\wlanpref.dll
2008-07-27 00:02:00 ----A---- C:\Windows\system32\wlanmsm.dll
2008-07-27 00:02:00 ----A---- C:\Windows\system32\WlanMmHC.dll
2008-07-27 00:01:59 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2008-07-27 00:01:59 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2008-07-27 00:01:59 ----A---- C:\Windows\system32\wmpsrcwp.dll
2008-07-27 00:01:59 ----A---- C:\Windows\system32\wmpshell.dll
2008-07-27 00:01:59 ----A---- C:\Windows\system32\wmpmde.dll
2008-07-27 00:01:59 ----A---- C:\Windows\system32\wmdrmsdk.dll
2008-07-27 00:01:59 ----A---- C:\Windows\system32\wmdrmnet.dll
2008-07-27 00:01:59 ----A---- C:\Windows\system32\wmdrmdev.dll
2008-07-27 00:01:59 ----A---- C:\Windows\system32\WMASF.DLL
2008-07-27 00:01:59 ----A---- C:\Windows\system32\WMADMOE.DLL
2008-07-27 00:01:59 ----A---- C:\Windows\system32\WMADMOD.DLL
2008-07-27 00:01:59 ----A---- C:\Windows\system32\wlgpclnt.dll
2008-07-27 00:01:59 ----A---- C:\Windows\system32\wlansvc.dll
2008-07-27 00:01:59 ----A---- C:\Windows\system32\WlanMM.dll
2008-07-27 00:01:59 ----A---- C:\Windows\system32\wlanhlp.dll
2008-07-27 00:01:59 ----A---- C:\Windows\system32\WLanHC.dll
2008-07-27 00:01:59 ----A---- C:\Windows\system32\wlangpui.dll
2008-07-27 00:01:59 ----A---- C:\Windows\system32\wlanext.exe
2008-07-27 00:01:59 ----A---- C:\Windows\system32\wlandlg.dll
2008-07-27 00:01:58 ----A---- C:\Windows\system32\wow32.dll
2008-07-27 00:01:58 ----A---- C:\Windows\system32\WMVXENCD.DLL
2008-07-27 00:01:58 ----A---- C:\Windows\system32\WMVSENCD.DLL
2008-07-27 00:01:58 ----A---- C:\Windows\system32\WMVSDECD.DLL
2008-07-27 00:01:58 ----A---- C:\Windows\system32\WMVENCOD.DLL
2008-07-27 00:01:58 ----A---- C:\Windows\system32\wmvdspa.dll
2008-07-27 00:01:58 ----A---- C:\Windows\system32\WMVDECOD.DLL
2008-07-27 00:01:58 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-07-27 00:01:58 ----A---- C:\Windows\system32\wmploc.DLL
2008-07-27 00:01:57 ----A---- C:\Windows\system32\WMPhoto.dll
2008-07-27 00:01:57 ----A---- C:\Windows\system32\WMPEncEn.dll
2008-07-27 00:01:57 ----A---- C:\Windows\system32\wmpdxm.dll
2008-07-27 00:01:57 ----A---- C:\Windows\system32\wmiprop.dll
2008-07-27 00:01:56 ----A---- C:\Windows\system32\wmpcm.dll
2008-07-27 00:01:56 ----A---- C:\Windows\system32\wmp.dll
2008-07-27 00:01:56 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-07-27 00:01:56 ----A---- C:\Windows\system32\systeminfo.exe
2008-07-27 00:01:55 ----A---- C:\Windows\system32\Tabbtn.dll
2008-07-27 00:01:55 ----A---- C:\Windows\system32\t2embed.dll
2008-07-27 00:01:55 ----A---- C:\Windows\system32\systemcpl.dll
2008-07-27 00:01:53 ----A---- C:\Windows\system32\tdh.dll
2008-07-27 00:01:53 ----A---- C:\Windows\system32\tcpmon.ini
2008-07-27 00:01:53 ----A---- C:\Windows\system32\tcpmon.dll
2008-07-27 00:01:53 ----A---- C:\Windows\system32\tcpipcfg.dll
2008-07-27 00:01:53 ----A---- C:\Windows\system32\tbssvc.dll
2008-07-27 00:01:53 ----A---- C:\Windows\system32\tbs.dll
2008-07-27 00:01:53 ----A---- C:\Windows\system32\taskschd.dll
2008-07-27 00:01:53 ----A---- C:\Windows\system32\taskmgr.exe
2008-07-27 00:01:53 ----A---- C:\Windows\system32\tasklist.exe
2008-07-27 00:01:53 ----A---- C:\Windows\system32\taskkill.exe
2008-07-27 00:01:52 ----A---- C:\Windows\system32\tabcal.exe
2008-07-27 00:01:52 ----A---- C:\Windows\system32\TabbtnEx.dll
2008-07-27 00:01:51 ----A---- C:\Windows\system32\taskeng.exe
2008-07-27 00:01:51 ----A---- C:\Windows\system32\taskcomp.dll
2008-07-27 00:01:51 ----A---- C:\Windows\system32\tapisrv.dll
2008-07-27 00:01:51 ----A---- C:\Windows\system32\TapiMigPlugin.dll
2008-07-27 00:01:51 ----A---- C:\Windows\system32\takeown.exe
2008-07-27 00:01:51 ----A---- C:\Windows\system32\srrstr.dll
2008-07-27 00:01:51 ----A---- C:\Windows\system32\sqmapi.dll
2008-07-27 00:01:51 ----A---- C:\Windows\system32\sqlcese30.dll
2008-07-27 00:01:50 ----A---- C:\Windows\system32\sstpsvc.dll
2008-07-27 00:01:50 ----A---- C:\Windows\system32\SSShim.dll
2008-07-27 00:01:50 ----A---- C:\Windows\system32\ssdpsrv.dll
2008-07-27 00:01:50 ----A---- C:\Windows\system32\srwmi.dll
2008-07-27 00:01:50 ----A---- C:\Windows\system32\srvsvc.dll
2008-07-27 00:01:50 ----A---- C:\Windows\system32\sqlsrv32.dll
2008-07-27 00:01:50 ----A---- C:\Windows\system32\sqlceqp30.dll
2008-07-27 00:01:49 ----A---- C:\Windows\system32\spwmp.dll
2008-07-27 00:01:49 ----A---- C:\Windows\system32\spwizres.dll
2008-07-27 00:01:49 ----A---- C:\Windows\system32\spwizimg.dll
2008-07-27 00:01:49 ----A---- C:\Windows\system32\spwizeng.dll
2008-07-27 00:01:49 ----A---- C:\Windows\system32\sppnp.dll
2008-07-27 00:01:49 ----A---- C:\Windows\system32\spopk.dll
2008-07-27 00:01:49 ----A---- C:\Windows\system32\spoolsv.exe
2008-07-27 00:01:49 ----A---- C:\Windows\system32\spoolss.dll
2008-07-27 00:01:49 ----A---- C:\Windows\system32\spbcd.dll
2008-07-27 00:01:49 ----A---- C:\Windows\system32\SoundRecorder.exe
2008-07-27 00:01:48 ----A---- C:\Windows\system32\sysmain.dll
2008-07-27 00:01:48 ----A---- C:\Windows\system32\SysFxUI.dll
2008-07-27 00:01:48 ----A---- C:\Windows\system32\syncui.dll
2008-07-27 00:01:48 ----A---- C:\Windows\system32\synceng.dll
2008-07-27 00:01:48 ----A---- C:\Windows\system32\SyncCenter.dll
2008-07-27 00:01:48 ----A---- C:\Windows\system32\sxstrace.exe
2008-07-27 00:01:48 ----A---- C:\Windows\system32\sxsstore.dll
2008-07-27 00:01:48 ----A---- C:\Windows\system32\sxs.dll
2008-07-27 00:01:48 ----A---- C:\Windows\system32\swprv.dll
2008-07-27 00:01:47 ----A---- C:\Windows\system32\syssetup.dll
2008-07-27 00:01:47 ----A---- C:\Windows\system32\syskey.exe
2008-07-27 00:01:47 ----A---- C:\Windows\system32\svchost.exe
2008-07-27 00:01:47 ----A---- C:\Windows\system32\sud.dll
2008-07-27 00:01:47 ----A---- C:\Windows\system32\Storprop.dll
2008-07-27 00:01:47 ----A---- C:\Windows\system32\stobject.dll
2008-07-27 00:01:47 ----A---- C:\Windows\system32\sti_ci.dll
2008-07-27 00:01:46 ----A---- C:\Windows\system32\zipfldr.dll
2008-07-27 00:01:46 ----A---- C:\Windows\system32\usp10.dll
2008-07-27 00:01:46 ----A---- C:\Windows\system32\userinit.exe
2008-07-27 00:01:46 ----A---- C:\Windows\system32\userenv.dll
2008-07-27 00:01:46 ----A---- C:\Windows\system32\usercpl.dll
2008-07-27 00:01:46 ----A---- C:\Windows\system32\user32.dll
2008-07-27 00:01:46 ----A---- C:\Windows\system32\usbui.dll
2008-07-27 00:01:46 ----A---- C:\Windows\system32\usbperf.dll
2008-07-27 00:01:46 ----A---- C:\Windows\system32\usbmon.dll
2008-07-27 00:01:46 ----A---- C:\Windows\system32\url.dll
2008-07-27 00:01:46 ----A---- C:\Windows\system32\upnphost.dll
2008-07-27 00:01:46 ----A---- C:\Windows\system32\upnpcont.exe
2008-07-27 00:01:46 ----A---- C:\Windows\system32\upnp.dll
2008-07-27 00:01:46 ----A---- C:\Windows\system32\untfs.dll
2008-07-27 00:01:45 ----A---- C:\Windows\system32\xwtpw32.dll
2008-07-27 00:01:45 ----A---- C:\Windows\system32\vga64k.dll
2008-07-27 00:01:45 ----A---- C:\Windows\system32\vga256.dll
2008-07-27 00:01:45 ----A---- C:\Windows\system32\vga.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\VIDRESZR.DLL
2008-07-27 00:01:44 ----A---- C:\Windows\system32\vfwwdm32.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\version.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\verifier.exe
2008-07-27 00:01:44 ----A---- C:\Windows\system32\verifier.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\vdsutil.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\vdsldr.exe
2008-07-27 00:01:44 ----A---- C:\Windows\system32\vdsdyn.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\vdsbas.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\vds_ps.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\vds.exe
2008-07-27 00:01:44 ----A---- C:\Windows\system32\vdmredir.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\vdmdbg.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\VAN.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\uxtheme.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\uxsms.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\uudf.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\Utilman.exe
2008-07-27 00:01:44 ----A---- C:\Windows\system32\utildll.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\tscfgwmi.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\trkwks.dll
2008-07-27 00:01:44 ----A---- C:\Windows\system32\tracerpt.exe
2008-07-27 00:01:43 ----A---- C:\Windows\system32\TSTheme.exe
2008-07-27 00:01:43 ----A---- C:\Windows\system32\TSpkg.dll
2008-07-27 00:01:43 ----A---- C:\Windows\system32\tskill.exe
2008-07-27 00:01:43 ----A---- C:\Windows\system32\tsgqec.dll
2008-07-27 00:01:43 ----A---- C:\Windows\system32\tsdiscon.exe
2008-07-27 00:01:43 ----A---- C:\Windows\system32\tsddd.dll
2008-07-27 00:01:43 ----A---- C:\Windows\system32\tscupgrd.exe
2008-07-27 00:01:43 ----A---- C:\Windows\system32\tscon.exe
2008-07-27 00:01:43 ----A---- C:\Windows\system32\TpmInit.exe
2008-07-27 00:01:43 ----A---- C:\Windows\system32\TMM.dll
2008-07-27 00:01:42 ----A---- C:\Windows\system32\umb.dll
2008-07-27 00:01:42 ----A---- C:\Windows\system32\ulib.dll
2008-07-27 00:01:42 ----A---- C:\Windows\system32\UIHub.dll
2008-07-27 00:01:42 ----A---- C:\Windows\system32\TimeDateMUICallback.dll
2008-07-27 00:01:42 ----A---- C:\Windows\system32\thumbcache.dll
2008-07-27 00:01:42 ----A---- C:\Windows\system32\themeui.dll
2008-07-27 00:01:42 ----A---- C:\Windows\system32\themecpl.dll
2008-07-27 00:01:42 ----A---- C:\Windows\system32\termsrv.dll
2008-07-27 00:01:42 ----A---- C:\Windows\system32\termmgr.dll
2008-07-27 00:01:41 ----A---- C:\Windows\system32\unregmp2.exe
2008-07-27 00:01:41 ----A---- C:\Windows\system32\unlodctr.exe
2008-07-27 00:01:41 ----A---- C:\Windows\system32\unbcl.dll
2008-07-27 00:01:41 ----A---- C:\Windows\system32\unattendedjoin.exe
2008-07-27 00:01:41 ----A---- C:\Windows\system32\umrdp.dll
2008-07-27 00:01:41 ----A---- C:\Windows\system32\umpnpmgr.dll
2008-07-27 00:01:40 ----A---- C:\Windows\system32\unattend.dll
2008-07-27 00:01:40 ----A---- C:\Windows\system32\UIAutomationCore.dll
2008-07-27 00:01:40 ----A---- C:\Windows\system32\ufat.dll
2008-07-27 00:01:40 ----A---- C:\Windows\system32\uexfat.dll
2008-07-27 00:01:40 ----A---- C:\Windows\system32\uDWM.dll
2008-07-27 00:01:40 ----A---- C:\Windows\system32\ucsvc.exe
2008-07-27 00:01:40 ----A---- C:\Windows\system32\txfw32.dll
2008-07-27 00:01:40 ----A---- C:\Windows\system32\txflog.dll
2008-07-27 00:01:40 ----A---- C:\Windows\system32\twext.dll
2008-07-27 00:01:40 ----A---- C:\Windows\system32\TsWpfWrp.exe
2008-07-27 00:01:39 ----A---- C:\Windows\system32\UI0Detect.exe
2008-07-27 00:00:22 ----A---- C:\Windows\system32\cbsra.exe
2008-07-12 22:27:25 ----A---- C:\Windows\system32\kbd106n.dll
2008-07-12 22:27:23 ----A---- C:\Windows\system32\winresume.exe
2008-07-12 22:27:23 ----A---- C:\Windows\system32\winload.exe
2008-07-12 22:27:23 ----A---- C:\Windows\system32\srdelayed.exe
2008-07-12 22:27:23 ----A---- C:\Windows\system32\srcore.dll
2008-07-12 22:27:23 ----A---- C:\Windows\system32\srclient.dll
2008-07-12 22:27:23 ----A---- C:\Windows\system32\setbcdlocale.dll
2008-07-12 22:27:23 ----A---- C:\Windows\system32\rstrui.exe
2008-07-12 22:27:23 ----A---- C:\Windows\system32\kd1394.dll
2008-07-12 22:27:23 ----A---- C:\Windows\system32\ci.dll
2008-07-12 22:18:30 ----DC---- C:\Users\BenRaines\AppData\Roaming\WinRAR
2008-07-12 22:18:20 ----D---- C:\Program Files\WinRAR
2008-07-12 22:13:31 ----DC---- C:\Users\BenRaines\AppData\Roaming\Macromedia
2008-07-12 22:12:46 ----D---- C:\Windows\system32\Filt
2008-07-12 22:12:46 ----D---- C:\Program Files\Agnitum
2008-07-12 22:11:44 ----D---- C:\ProgramData\Agnitum
2008-07-12 16:08:00 ----D---- C:\ProgramData\FLEXnet
2008-07-12 16:01:57 ----D---- C:\Program Files\Common Files\Control Panels
2008-07-12 16:00:45 ----D---- C:\ProgramData\ALM
2008-07-12 15:01:41 ----A---- C:\Windows\system32\NPSWF32_FlashUtil.exe
2008-07-12 15:01:41 ----A---- C:\Windows\system32\NPSWF32.dll
2008-07-12 14:59:26 ----D---- C:\ProgramData\Adobe
2008-07-12 14:57:12 ----D---- C:\Program Files\Bonjour
2008-07-12 14:56:40 ----D---- C:\Windows\system32\Macromed
2008-07-12 14:55:43 ----D---- C:\Program Files\Adobe
2008-07-12 14:54:35 ----D---- C:\Program Files\Common Files\Macrovision Shared
2008-07-12 14:54:18 ----DC---- C:\Users\BenRaines\AppData\Roaming\Adobe
2008-07-12 14:52:27 ----SHD---- C:\Windows\Installer
2008-07-12 14:52:27 ----D---- C:\Program Files\Common Files\Adobe
2008-07-12 01:08:53 ----D---- C:\Program Files\PowerISO
2008-07-12 00:03:06 ----D---- C:\Program Files\BitLocker
2008-07-12 00:02:30 ----A---- C:\Windows\system32\SecureKeyBackupCPL.dll
2008-07-11 23:55:58 ----D---- C:\ProgramData\NVIDIA
2008-07-11 23:04:01 ----A---- C:\Windows\system32\DreamScene.dll
2008-07-11 23:03:20 ----A---- C:\Windows\system32\nvexpbar.dll
2008-07-11 23:03:20 ----A---- C:\Windows\system32\nvcpluir.dll
2008-07-11 23:03:20 ----A---- C:\Windows\system32\nvcplui.exe
2008-07-11 23:02:06 ----A---- C:\Windows\system32\gpprefcl.dll
2008-07-11 22:33:56 ----A---- C:\Windows\system32\shell32.dll
2008-07-11 22:26:44 ----A---- C:\Windows\system32\hcrstco.dll
2008-07-11 22:26:44 ----A---- C:\Windows\system32\hccoin.dll
2008-07-11 22:24:23 ----A---- C:\Windows\system32\NlsLexicons0046.dll
2008-07-11 22:24:23 ----A---- C:\Windows\system32\NlsLexicons0045.dll
2008-07-11 22:24:22 ----A---- C:\Windows\system32\NlsLexicons0049.dll
2008-07-11 22:24:22 ----A---- C:\Windows\system32\NlsLexicons0047.dll
2008-07-11 22:24:22 ----A---- C:\Windows\system32\NlsLexicons0039.dll
2008-07-11 22:24:22 ----A---- C:\Windows\system32\NlsLexicons0020.dll
2008-07-11 22:24:21 ----A---- C:\Windows\system32\NlsLexicons0022.dll
2008-07-11 22:24:21 ----A---- C:\Windows\system32\NlsLexicons0021.dll
2008-07-11 22:24:20 ----A---- C:\Windows\system32\NlsLexicons0026.dll
2008-07-11 22:24:20 ----A---- C:\Windows\system32\NlsLexicons0024.dll
2008-07-11 22:24:19 ----A---- C:\Windows\system32\NlsLexicons0027.dll
2008-07-11 22:24:19 ----A---- C:\Windows\system32\NlsLexicons0013.dll
2008-07-11 22:24:19 ----A---- C:\Windows\system32\NlsLexicons0011.dll
2008-07-11 22:24:19 ----A---- C:\Windows\system32\NlsLexicons0010.dll
2008-07-11 22:24:18 ----A---- C:\Windows\system32\NlsLexicons0019.dll
2008-07-11 22:24:18 ----A---- C:\Windows\system32\NlsLexicons0018.dll
2008-07-11 22:24:17 ----A---- C:\Windows\system32\NlsLexicons0003.dll
2008-07-11 22:24:17 ----A---- C:\Windows\system32\NlsLexicons0002.dll
2008-07-11 22:24:17 ----A---- C:\Windows\system32\NlsLexicons0001.dll
2008-07-11 22:24:16 ----A---- C:\Windows\system32\NlsLexicons004a.dll
2008-07-11 22:24:16 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2008-07-11 22:24:16 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2008-07-11 22:24:15 ----A---- C:\Windows\system32\NlsLexicons004e.dll
2008-07-11 22:24:15 ----A---- C:\Windows\system32\NlsLexicons004c.dll
2008-07-11 22:24:15 ----A---- C:\Windows\system32\NlsLexicons004b.dll
2008-07-11 22:24:15 ----A---- C:\Windows\system32\NlsLexicons003e.dll
2008-07-11 22:24:14 ----A---- C:\Windows\system32\NlsLexicons002a.dll
2008-07-11 22:24:14 ----A---- C:\Windows\system32\NlsLexicons001b.dll
2008-07-11 22:24:14 ----A---- C:\Windows\system32\NlsLexicons001a.dll
2008-07-11 22:24:13 ----A---- C:\Windows\system32\NlsLexicons001d.dll
2008-07-11 22:24:13 ----A---- C:\Windows\system32\NlsLexicons000a.dll
2008-07-11 22:24:12 ----A---- C:\Windows\system32\NlsLexicons0416.dll
2008-07-11 22:24:12 ----A---- C:\Windows\system32\NlsLexicons0414.dll
2008-07-11 22:24:12 ----A---- C:\Windows\system32\NlsLexicons000f.dll
2008-07-11 22:24:12 ----A---- C:\Windows\system32\NlsLexicons000d.dll
2008-07-11 22:24:12 ----A---- C:\Windows\system32\NlsLexicons000c.dll
2008-07-11 22:24:11 ----A---- C:\Windows\system32\NlsModels0011.dll
2008-07-11 22:24:11 ----A---- C:\Windows\system32\NlsLexicons081a.dll
2008-07-11 22:24:11 ----A---- C:\Windows\system32\NlsLexicons0816.dll
2008-07-11 22:24:10 ----A---- C:\Windows\system32\NlsData0046.dll
2008-07-11 22:24:10 ----A---- C:\Windows\system32\NlsData0045.dll
2008-07-11 22:24:09 ----A---- C:\Windows\system32\NlsData0049.dll
2008-07-11 22:24:09 ----A---- C:\Windows\system32\NlsData0047.dll
2008-07-11 22:24:09 ----A---- C:\Windows\system32\NlsData0039.dll
2008-07-11 22:24:08 ----A---- C:\Windows\system32\NlsData0026.dll
2008-07-11 22:24:08 ----A---- C:\Windows\system32\NlsData0024.dll
2008-07-11 22:24:08 ----A---- C:\Windows\system32\NlsData0022.dll
2008-07-11 22:24:08 ----A---- C:\Windows\system32\NlsData0021.dll
2008-07-11 22:24:08 ----A---- C:\Windows\system32\NlsData0020.dll
2008-07-11 22:24:07 ----A---- C:\Windows\system32\NlsData0027.dll
2008-07-11 22:24:07 ----A---- C:\Windows\system32\NlsData0018.dll
2008-07-11 22:24:07 ----A---- C:\Windows\system32\NlsData0013.dll
2008-07-11 22:24:07 ----A---- C:\Windows\system32\NlsData0011.dll
2008-07-11 22:24:07 ----A---- C:\Windows\system32\NlsData0010.dll
2008-07-11 22:24:06 ----A---- C:\Windows\system32\NlsData0019.dll
2008-07-11 22:24:06 ----A---- C:\Windows\system32\NlsData0001.dll
2008-07-11 22:24:06 ----A---- C:\Windows\system32\NlsData0000.dll
2008-07-11 22:24:05 ----A---- C:\Windows\system32\NlsData0009.dll
2008-07-11 22:24:05 ----A---- C:\Windows\system32\NlsData0007.dll
2008-07-11 22:24:05 ----A---- C:\Windows\system32\NlsData0003.dll
2008-07-11 22:24:05 ----A---- C:\Windows\system32\NlsData0002.dll
2008-07-11 22:24:04 ----A---- C:\Windows\system32\NlsData004e.dll
2008-07-11 22:24:04 ----A---- C:\Windows\system32\NlsData004c.dll
2008-07-11 22:24:04 ----A---- C:\Windows\system32\NlsData004b.dll
2008-07-11 22:24:04 ----A---- C:\Windows\system32\NlsData004a.dll
2008-07-11 22:24:04 ----A---- C:\Windows\system32\NlsData003e.dll
2008-07-11 22:24:03 ----A---- C:\Windows\system32\NlsData002a.dll
2008-07-11 22:24:03 ----A---- C:\Windows\system32\NlsData001d.dll
2008-07-11 22:24:03 ----A---- C:\Windows\system32\NlsData001b.dll
2008-07-11 22:24:03 ----A---- C:\Windows\system32\NlsData001a.dll
2008-07-11 22:24:02 ----A---- C:\Windows\system32\NlsData000c.dll
2008-07-11 22:24:02 ----A---- C:\Windows\system32\NlsData000a.dll
2008-07-11 22:24:01 ----A---- C:\Windows\system32\NlsData0414.dll
2008-07-11 22:24:01 ----A---- C:\Windows\system32\NlsData000f.dll
2008-07-11 22:24:01 ----A---- C:\Windows\system32\NlsData000d.dll
2008-07-11 22:24:00 ----A---- C:\Windows\system32\NlsData081a.dll
2008-07-11 22:24:00 ----A---- C:\Windows\system32\NlsData0816.dll
2008-07-11 22:24:00 ----A---- C:\Windows\system32\NlsData0416.dll
2008-07-11 22:24:00 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2008-07-11 22:23:59 ----A---- C:\Windows\system32\NlsLexicons0c1a.dll
2008-07-11 22:23:59 ----A---- C:\Windows\system32\NlsData0c1a.dll
2008-07-11 22:21:32 ----A---- C:\Windows\system32\gdi32.dll
2008-07-11 22:18:58 ----A---- C:\Windows\system32\wshrm.dll
2008-07-11 22:18:11 ----D---- C:\Windows\Panther
2008-07-11 22:17:58 ----RAS---- C:\BOOTSECT.BAK
2008-07-11 22:17:56 ----SHD---- C:\Boot
2008-07-11 22:17:53 ----A---- C:\Windows\system32\gameux.dll
2008-07-11 22:15:40 ----A---- C:\Windows\system32\quartz.dll
2008-07-11 22:15:12 ----A---- C:\Windows\system32\psisdecd.dll
2008-07-11 22:15:12 ----A---- C:\Windows\system32\EncDec.dll
2008-07-11 21:22:15 ----D---- C:\Windows\SoftwareDistribution
2008-07-11 21:20:31 ----D---- C:\Windows\Debug
2008-07-11 21:20:30 ----D---- C:\Windows\CSC
2008-07-11 21:18:53 ----D---- C:\Windows\Prefetch
2008-07-11 21:18:47 ----SHD---- C:\System Volume Information
2008-07-11 18:32:43 ----DC---- C:\Users\BenRaines\AppData\Roaming\Identities
2008-07-11 18:32:37 ----SDC---- C:\Users\BenRaines\AppData\Roaming\Microsoft
2008-07-11 18:32:37 ----DC---- C:\Users\BenRaines\AppData\Roaming\Media Center Programs

List of drivers

R1 afw;Agnitum Firewall Driver; C:\Windows\system32\DRIVERS\afw.sys [2008-06-30 28688]
R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2008-01-18 350720]
R1 pctfw2;pctfw2; \??\C:\Windows\System32\drivers\pctfw2.sys [2008-07-28 160792]
R1 SandBox;SandBox; C:\Windows\system32\DRIVERS\SandBox.sys [2008-07-11 673920]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2006-01-31 25900]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2006-11-15 32256]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2006-11-14 43520]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-14 37376]
R2 SFSZ;DataPlow SFS for Zetera Storage Devices; C:\Windows\system32\system32\drivers\sfsz.sys []
R3 afwcore;afwcore; C:\Windows\system32\drivers\afwcore.sys [2008-06-30 242704]
R3 ASWFilt;ASWFilt; C:\Windows\system32\Filt\ASWFilt.dll [2008-07-11 33408]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\Windows\system32\DRIVERS\b57xp32.sys [2005-10-26 142720]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-18 14208]
R3 guardian2;guardian2; C:\Windows\System32\Drivers\oz776.sys [2007-03-26 62208]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2006-11-02 987648]
R3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-09-26 2251776]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2007-10-04 7628608]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-18 88576]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\Windows\system32\drivers\stwrt.sys [2007-09-13 330240]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2006-11-15 179256]
R3 VBEngNT;VBEngNT; C:\Windows\system32\DRIVERS\VBEngNT.sys [2008-06-04 1072722]
R3 VBFilt;VBFilt; C:\Windows\system32\Filt\VBFilt.dll [2008-07-11 158816]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2006-11-02 654336]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-18 11264]
R3 ZetBus;Zetera Virtual Bus; C:\Windows\system32\DRIVERS\ZetBus.sys [2007-08-08 15488]
S2 MCSTRM;MCSTRM; C:\Windows\system32\drivers\MCSTRM.sys []
S3 b57nd60x;%SvcDispName%; C:\Windows\system32\DRIVERS\b57nd60x.sys [2008-01-18 179712]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 IKFileSec;File Security Driver; C:\Windows\system32\system32\drivers\ikfilesec.sys []
S3 IKSysFlt;System Filter Driver; C:\Windows\system32\drivers\iksysflt.sys [2008-08-25 66952]
S3 IKSysSec;System Security Driver; C:\Windows\system32\drivers\iksyssec.sys [2008-08-25 81288]
S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]
S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2008-02-29 36880]
S3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2008-02-29 28944]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016]
S3 NETw3v32;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-11-02 1781760]
S3 usbbus;LGE CDMA Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys [2007-04-09 12672]
S3 USBCCID;USB Smart Card reader; C:\Windows\system32\DRIVERS\usbccid.sys [2008-01-18 30208]
S3 UsbDiag;LGE CDMA USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys [2007-04-09 21248]
S3 USBModem;LGE CDMA USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys [2007-04-09 22912]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-18 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-18 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-18 83328]
S3 ZetMPD;ZetMPD; C:\Windows\system32\DRIVERS\ZetMPD.sys [2007-08-08 6656]
S4 RxFilter;RxFilter; C:\Windows\system32\DRIVERS\RxFilter.sys [2007-08-18 57328]

List of services

R2 acssrv;Agnitum Client Security Service; C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe [2008-07-15 1570136]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2008-01-18 21504]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-10-08 794624]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-10-08 483328]
R2 STacSV;SigmaTel Audio Service; C:\Windows\system32\STacSV.exe [2007-09-13 102400]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2008-01-18 21504]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-01-05 33800]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2008-01-18 523776]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-08-02 138168]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 sdAuxService;PC Tools Auxiliary Service; C:\Program Files\Spyware Doctor\pctsAuxs.exe [2008-06-13 356920]
S3 sdCoreService;PC Tools Security Service; C:\Program Files\Spyware Doctor\pctsSvc.exe [2008-08-25 1077640]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2008-01-18 21504]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2008-01-18 917504]
S4 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
S4 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-07-12 654848]
S4 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2008-05-02 121360]
S4 lxdf_device;lxdf_device; C:\Windows\system32\lxdfcoms.exe [2007-05-29 598960]
S4 nicconfigsvc;Dell Internal Network Card Power Management; C:\Program Files\Dell\QuickSet\NicConfigSvc.exe [2007-07-20 390424]
S4 Roxio UPnP Renderer 10;Roxio UPnP Renderer 10; C:\Program Files\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [2007-08-24 72176]
S4 Roxio Upnp Server 10;Roxio Upnp Server 10; C:\Program Files\Roxio\Digital Home 10\RoxioUpnpService10.exe [2007-08-24 362992]
S4 RoxLiveShare10;LiveShare P2P Server 10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe [2007-08-24 309744]
S4 RoxMediaDB10;RoxMediaDB10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2007-08-24 1083888]
S4 RoxWatch10;Roxio Hard Drive Watcher 10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe [2007-08-24 166384]
S4 Z-SANService;Z-SAN Service; C:\Program Files\NETGEAR\NETGEAR Storage Central Manager Utility\Z-SANService.exe [2007-08-08 376891]

-----------------EOF-----------------

info.txt logfile of random's system information tool 2008-09-10 21:18:33

Uninstall list

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
7-Zip 4.58 beta-->"C:\Program Files\7-Zip\Uninstall.exe"
Ace Utilities-->"C:\Program Files\Ace Utilities\uninstall.exe"
Add or Remove Adobe Creative Suite 3 Master Collection-->C:\Program Files\Common Files\Adobe\Installers\8bb24e071e5922899698c2105557bd2\Setup.exe
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe After Effects CS3 Presets-->MsiExec.exe /I{185D0A67-E066-44AE-926D-F6305813301C}
Adobe After Effects CS3-->MsiExec.exe /I{0A3D355B-4FCC-41AF-8C61-A2BA15D26237}
Adobe Anchor Service CS3-->MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
Adobe Asset Services CS3-->MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
Adobe Bridge CS3-->MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
Adobe BridgeTalk Plugin CS3-->MsiExec.exe /I{B73CFB12-C814-4638-AFFD-7E3AAFAF0B4E}
Adobe Camera Raw 4.0-->MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
Adobe CMaps-->MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
Adobe Color - Photoshop Specific-->MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
Adobe Color Common Settings-->C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\Setup.exe
Adobe Color Common Settings-->MsiExec.exe /I{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}
Adobe Color EU Extra Settings-->MsiExec.exe /I{51846830-E7B2-4218-8968-B77F0FF475B8}
Adobe Color JA Extra Settings-->MsiExec.exe /I{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}
Adobe Color NA Recommended Settings-->MsiExec.exe /I{95655ED4-7CA5-46DF-907F-7144877A32E5}
Adobe Creative Suite 3 Master Collection-->MsiExec.exe /I{7162AC2C-733F-4127-ACAD-C5F0F27D123D}
Adobe Default Language CS3-->MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}
Adobe Device Central CS3-->MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
Adobe Dreamweaver CS3-->MsiExec.exe /I{7C10F5C7-F00F-4BD3-A110-C7D240D2DD25}
Adobe ExtendScript Toolkit 2-->C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\Setup.exe
Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}
Adobe Extension Manager CS3-->MsiExec.exe /I{BE5F3842-8309-4754-92D5-83E02E6077A3}
Adobe Flash Player 9 ActiveX-->MsiExec.exe /X{BC4F8E84-5E29-49EC-B4E7-E6F9CB50986C}
Adobe Flash Player Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Fonts All-->MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
Adobe Help Viewer CS3-->MsiExec.exe /I{7ACFB90E-8FD0-4397-AD3A-5195412623A3}
Adobe Illustrator CS3-->MsiExec.exe /I{F08E8D2E-F132-4742-9C87-D5FF223A016A}
Adobe InDesign CS3 Icon Handler-->MsiExec.exe /I{EA7B3CC4-366D-4CF6-8350-FD7A7034116E}
Adobe InDesign CS3-->MsiExec.exe /I{CB3F8375-B600-4B9F-83C9-238ED1E583FD}
Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
Adobe MotionPicture Color Files-->MsiExec.exe /I{6B708481-748A-4EB4-97C1-CD386244FF77}
Adobe PDF Library Files-->MsiExec.exe /I{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}
Adobe Photoshop CS3-->MsiExec.exe /I{0046FA01-C5B9-4985-BACB-398DC480FC05}
Adobe Premiere Pro CS3 Functional Content-->MsiExec.exe /I{50F102CA-4BE2-41A9-9810-5BB05EB91B9A}
Adobe Premiere Pro CS3-->MsiExec.exe /I{A6CDBEB9-2DF5-4455-A647-F3DF0441D5C3}
Adobe Setup-->MsiExec.exe /I{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}
Adobe Setup-->MsiExec.exe /I{9BA4F9C5-7CB4-492C-9B97-89E36AFA0AB9}
Adobe Setup-->MsiExec.exe /I{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}
Adobe SING CS3-->MsiExec.exe /I{B671CBFD-4109-4D35-9252-3062D3CCB7B2}
Adobe Soundbooth CS3-->MsiExec.exe /I{64B7E533-21EC-4DB3-95DE-6D2DDE81F855}
Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
Adobe Type Support-->MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
Adobe Update Manager CS3-->MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8}
Adobe Version Cue CS3 Client-->MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5}
Adobe Video Profiles-->MsiExec.exe /I{845A8DB9-8802-4FD3-9FE3-938A6C46A2EC}
Adobe WAS CS3-->MsiExec.exe /I{C5BD220A-EFE8-48A5-B70E-9503D535FACE}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
Adobe XMP DVA Panels CS3-->MsiExec.exe /I{0224CACC-994D-45F8-B973-D65056EA9C2F}
Adobe XMP Panels CS3-->MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
Agnitum Outpost Security Suite Pro-->"C:\Program Files\Agnitum\Outpost Security Suite Pro\unins000.exe"
AHV content for Acrobat and Flash-->MsiExec.exe /I{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}
AI RoboForm (All Users)-->"C:\Program Files\Siber Systems\AI RoboForm\rfwipeout.exe"
BayGenie eBay Auction Sniper Pro Edition 3.1.7.0-->"C:\Program Files\BayGenie\ProEdition\unins000.exe"
C5500n - C5800Ldn Series GDI Driver from OKI® Printing Solutions for Windows Vista-->C:\Program Files\InstallShield Installation Information\{E327C2A5-E236-44C4-A410-B899403A49A9}\setup.exe -runfromtemp -l0x0009 -removeonly
CDDRV_Installer-->MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A}
Core FTP LE 2.1-->C:\PROGRA~1\CoreFTP\UNWISE.EXE C:\PROGRA~1\CoreFTP\INSTALL.LOG
Dealio Toolbar 3.4-->MsiExec.exe /X{6105648C-0C3C-481D-8C11-1F4952D6FB53}
DirectXInstallService-->MsiExec.exe /X{098122AB-C605-4853-B441-C0A4EB359B75}
FlashGet 1.9.6.1073-->C:\Program Files\FlashGet\uninst.exe
Fotosizer 1.17-->C:\Program Files\Fotosizer\uninst.exe
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Intel(R) PROSet/Wireless Software-->C:\Windows\Installer\iProInst.exe
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
KhalInstallWrapper-->MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355}
K-Lite Codec Pack 4.1.4 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Lexmark 6500 Series-->C:\Program Files\Lexmark 6500 Series\Install\x86\Uninst.exe
LG USB Modem driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C3ABE126-2BB2-4246-BFE1-6797679B3579}\Setup.exe" -l0x9 LG
Logitech SetPoint-->C:\Program Files\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe -runfromtemp -l0x0009 -removeonly
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
mCorev32.ism_new-->MsiExec.exe /I{A945BD16-4774-4A1F-96A7-118BEC004881}
mCPlug-->MsiExec.exe /I{F32ED8B1-2442-4B0E-8DEC-3F3BFC1C2B7F}
mDriver-->MsiExec.exe /I{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}
mHelp-->MsiExec.exe /I{8C6BB412-D3A8-4AAE-A01B-35B681789D68}
Microsoft .NET Framework 1.1 Hotfix (KB929729)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M929729\M929729Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
Microsoft Office Access Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (English) 2007-->MsiExec.exe /X{90120000-0044-0409-0000-0000000FF1CE}
Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Publisher MUI (English) 2007-->MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
mMHouse-->MsiExec.exe /I{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}
Mozilla Firefox (3.0.1)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
mPfMgr-->MsiExec.exe /I{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}
mWMI-->MsiExec.exe /I{63DB9CCD-2B56-4217-9A3D-507AC78320CA}
NETGEAR Storage Central Manager Utility-->"C:\Program Files\InstallShield Installation Information\{A3672E1B-021F-4F50-A891-609471CCF941}\setup.exe" -runfromtemp -l0x0009 -removeonly
Network Camera Recorder-->MsiExec.exe /I{8B0527BE-427B-459B-93B1-D30ED8CB4F93}
Network Drive Mapping Utility-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C7325E7B-6844-4D46-9515-365BCE0DC185}\setup.exe" -l0x9 REMOVE -removeonly
NTI Shadow-->"C:\Program Files\InstallShield Installation Information\{B4C671A6-4922-4C5C-9FDC-0059AC68088D}\setup.exe" -removeonly
NVIDIA Drivers-->C:\Windows\system32\NVUNINST.EXE UninstallGUI
Oz776 SCR Driver V1.1.4.2-->C:\Program Files\InstallShield Installation Information\{C336A3DB-FA32-42BE-97D0-FFD42D807FD6}\setup.exe -runfromtemp -l0x0409
PDF Settings-->MsiExec.exe /I{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}
PowerISO-->"C:\Program Files\PowerISO\uninstall.exe"
QuickSet-->MsiExec.exe /I{0F95AA42-0FF6-4D48-9CA1-64C8D0777500}
Rhapsody Player Engine-->MsiExec.exe /I{2DFF31F9-7893-4922-AF66-C9A1EB4EBB31}
Roxio Activation Module-->MsiExec.exe /I{EC877639-07AB-495C-BFD1-D63AF9140810}
Roxio Central Audio-->MsiExec.exe /I{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}
Roxio Central Copy-->MsiExec.exe /I{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}
Roxio Central Core-->MsiExec.exe /I{ED439A64-F018-4DD4-8BA5-328D85AB09AB}
Roxio Central Data-->MsiExec.exe /I{08E81ABD-79F7-49C2-881F-FD6CB0975693}
Roxio CinePlayer Decoder Pack-->MsiExec.exe /I{8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}
Roxio CinePlayer-->MsiExec.exe /I{1B683082-8791-4D00-8ADE-6C8986FCCC68}
Roxio Easy Media Creator 10 Suite-->MsiExec.exe /I{BF83EFE2-C9F0-40D4-841C-2066668C1D7A}
Roxio Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
Security Update for 2007 Microsoft Office System (KB951596)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {1AFF2298-CC00-4A3B-866A-C62B8373794E}
Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Microsoft Office Excel 2007 (KB951546)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {7399DD71-8E24-4E60-B6A8-6CED89C0AC26}
Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
Security Update for Microsoft Office system 2007 (KB951808)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {8F375E11-4FD6-4B89-9E2B-A76D48B51E00}
Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
Security Update for Microsoft Office Word 2007 (KB950113)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {AD72BABE-C733-4FCF-9674-4314466191B9}
SigmaTel Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe" -l0x9 -remove -removeonly
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Spyware Doctor 6.0-->C:\Program Files\Spyware Doctor\unins000.exe /LOG
Symantec Ghost AI Snapshot-->MsiExec.exe /I{FA9B0F6B-AC6D-401C-0099-00000628D82A}
Symantec User Migration Wizard-->MsiExec.exe /X{23C05558-555C-4786-0B9D-000009E66378}
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}
Update for Office 2007 (KB946691)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
Update for Outlook 2007 Junk Email Filter (kb956080)-->msiexec /package {90120000-0011-0000-0000-0000000FF1CE} /uninstall {96CC215F-3F22-4E1E-A101-F0041934A456}
V CAST Music with Rhapsody-->C:\PROGRA~1\VCASTM~1\Unwise32.exe /A C:\PROGRA~1\VCASTM~1\install.log
VZAccess Manager-->C:\PROGRA~1\VERIZO~1\VZACCE~1\UNWISE.EXE C:\PROGRA~1\VERIZO~1\VZACCE~1\INSTALL.LOG
Windows Sound Schemes-->RunDll32 advpack.dll,LaunchINFSection C:\Windows\INF\UltSound.inf,Uninstall
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
XoftSpySE-->C:\Program Files\XoftSpySE\uninstall.exe

Security center information

AV: Outpost Security Suite Pro
FW: Outpost Security Suite Pro
AS: Windows Defender (outdated)
AS: Outpost Security Suite Pro

Environment variables

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 6, GenuineIntel
"PROCESSOR_REVISION"=0f06
"NUMBER_OF_PROCESSORS"=2
"RoxioCentral"=C:\Program Files\Common Files\Roxio Shared\10.0\Roxio Central36\

-----------------EOF-----------------

benraines · Sep 13, 2008

* Download random's system information tool (RSIT) by random/random from here and save it to your desktop.
* Double click on RSIT.exe to run RSIT.
* Click Continue at the disclaimer screen.
* Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)

Per your instructions, I ran the RSIT.exe

But it did not produce an info.txt, only a log.txt.

I ran it twice to make sure..

Shaba · Sep 13, 2008

It did

Please click this link-->Jotti

Copy/paste the first file on the list into the white Upload a file box and click Submit/Send (depends on which one you are using Jotti or VirusTotal).

C:\Windows\system32\uuddc32.dll

Please post back the results of the scan in your next post.

If Jotti is busy, try the same at Virustotal: http://www.virustotal.com/

Shaba · Sep 19, 2008

Due to the lack of feedback this Topic is closed.

If it has been five days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh HijackThis log and a link to your previous thread.

If it has been less than five days since your last response and you need the thread re-opened, please send a private message (pm). A valid, working link to the closed topic is required.

Everyone else please begin a New Topic.

vulrftpl.dll keeps popping up in my runonce registry even after I delete it.

benraines

New member

Shaba

Security Expert: Emeritus

benraines

New member

Shaba

Security Expert: Emeritus

benraines

New member

benraines

New member

benraines

New member

benraines

New member

Shaba

Security Expert: Emeritus

Shaba

Security Expert: Emeritus