Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Comp slow, runit error, cant delete avast, what to remove

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Absalom1987 » January 25th, 2009, 12:00 am

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Home Basic ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Celeron(R) CPU 420 @ 1.60GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : rac ( Administrator )
BOOT : Normal boot
Antivirus : AVG Anti-Virus Free 8.0 (Activated)
C:\ (Local Disk) - NTFS - Total:138 Go (Free:96 Go)
D:\ (Local Disk) - NTFS - Total:9 Go (Free:6 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( Sat 01/24/2009|17:53 )

[ UAC => 1 ]

--------------------\\ Listing folders in Local

[01/11/2009|12:34] C:\Users\rac\AppData\Local\<DIR> Adobe
[01/12/2009|09:52] C:\Users\rac\AppData\Local\<DIR> Apple
[01/11/2009|11:00] C:\Users\rac\AppData\Local\<DIR> Apple Computer
[12/29/2008|05:56] C:\Users\rac\AppData\Local\<JUNCTION> Application Data
[01/22/2009|04:14] C:\Users\rac\AppData\Local\5,216 d3d9caps.dat
[01/24/2009|01:35] C:\Users\rac\AppData\Local\8,704 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[01/11/2009|11:25] C:\Users\rac\AppData\Local\<DIR> FullTiltPoker
[12/29/2008|05:57] C:\Users\rac\AppData\Local\65,800 GDIPFONTCACHEV1.DAT
[01/18/2009|06:51] C:\Users\rac\AppData\Local\<DIR> Google
[12/29/2008|05:56] C:\Users\rac\AppData\Local\<JUNCTION> History
[01/11/2009|03:59] C:\Users\rac\AppData\Local\<DIR> hlidrqls
[01/24/2009|09:13] C:\Users\rac\AppData\Local\1,874,051 IconCache.db
[01/19/2009|06:38] C:\Users\rac\AppData\Local\<DIR> Microsoft
[01/08/2009|01:22] C:\Users\rac\AppData\Local\<DIR> Microsoft Games
[01/12/2009|10:02] C:\Users\rac\AppData\Local\<DIR> Mozilla
[12/29/2008|05:57] C:\Users\rac\AppData\Local\<DIR> PowerDVD DX
[01/08/2009|02:03] C:\Users\rac\AppData\Local\<DIR> SupportSoft
[01/24/2009|05:52] C:\Users\rac\AppData\Local\<DIR> Temp
[12/29/2008|05:56] C:\Users\rac\AppData\Local\<JUNCTION> Temporary Internet Files
[01/19/2009|06:59] C:\Users\rac\AppData\Local\<DIR> VirtualStore
[01/19/2009|06:59] C:\Users\rac\AppData\Local\<DIR> Yahoo

--------------------\\ Scheduled Tasks located in C:\Windows\Tasks

[01/23/2009 06:47 PM][--ah-----] C:\Windows\tasks\SA.DAT
[01/23/2009 06:46 PM][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing Folders in C:\ProgramData

[01/09/2009|07:09] C:\ProgramData\<DIR> {3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[01/12/2009|07:13] C:\ProgramData\<DIR> {F22FBFBD-4029-4FBE-8BF6-C4CA61982D6C}
[01/23/2009|08:39] C:\ProgramData\<DIR> Adobe
[01/08/2009|11:42] C:\ProgramData\<DIR> Apple
[01/08/2009|11:48] C:\ProgramData\<DIR> Apple Computer
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Application Data
[01/19/2009|06:38] C:\ProgramData\<DIR> avg8
[01/23/2009|06:47] C:\ProgramData\<DIR> CanonBJ
[01/18/2009|09:00] C:\ProgramData\<DIR> CheckPoint
[01/22/2009|07:24] C:\ProgramData\<DIR> coal first peak
[01/10/2009|11:45] C:\ProgramData\<DIR> CyberLink
[01/18/2009|06:41] C:\ProgramData\<DIR> DAEMON Tools Lite
[04/09/2008|10:49] C:\ProgramData\<DIR> Dell
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Desktop
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Documents
[01/12/2009|12:35] C:\ProgramData\<DIR> Downloaded Installations
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Favorites
[01/23/2009|10:50] C:\ProgramData\<DIR> Google Updater
[01/22/2009|07:24] C:\ProgramData\61,456 hide bird frag.53fiv
[04/09/2008|10:57] C:\ProgramData\<DIR> InstallShield
[01/18/2009|06:47] C:\ProgramData\<DIR> Lavasoft
[01/22/2009|07:24] C:\ProgramData\213,008 Lies ping ping.mlxwd
[01/22/2009|07:24] C:\ProgramData\8,208 Lies ping ping.tkxo6x
[01/10/2009|07:29] C:\ProgramData\<DIR> McAfee
[01/12/2009|09:34] C:\ProgramData\<DIR> Microsoft
[01/12/2009|12:36] C:\ProgramData\<DIR> ParetoLogic
[01/18/2009|06:38] C:\ProgramData\<DIR> SITEguard
[04/09/2008|10:58] C:\ProgramData\<DIR> Sonic
[01/23/2009|10:17] C:\ProgramData\<DIR> Spybot - Search & Destroy
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Start Menu
[01/18/2009|07:34] C:\ProgramData\<DIR> STOPzilla!
[04/09/2008|10:55] C:\ProgramData\<DIR> SupportSoft
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Templates
[01/16/2009|09:31] C:\ProgramData\63 Ts_infos.ini
[04/09/2008|10:59] C:\ProgramData\<DIR> Uninstall
[01/22/2009|07:24] C:\ProgramData\<DIR> way rdr ford mpeg
[04/09/2008|10:52] C:\ProgramData\<DIR> YAHOO
[01/08/2009|06:37] C:\ProgramData\<DIR> Yahoo!

--------------------\\ Listing Folders in C:\Program Files

[01/23/2009|08:39] C:\Program Files\<DIR> Adobe
[01/18/2009|07:50] C:\Program Files\<DIR> Alwil Software
[04/09/2008|11:01] C:\Program Files\<DIR> AOL Install
[01/08/2009|11:44] C:\Program Files\<DIR> Apple Software Update
[01/18/2009|09:07] C:\Program Files\<DIR> AskBarDis
[01/19/2009|03:01] C:\Program Files\<DIR> AVG
[01/12/2009|12:38] C:\Program Files\<DIR> BillP Studios
[01/08/2009|11:46] C:\Program Files\<DIR> Bonjour
[01/12/2009|10:15] C:\Program Files\<DIR> CCleaner
[01/18/2009|07:15] C:\Program Files\<DIR> Common Files
[01/19/2009|04:14] C:\Program Files\<DIR> CONEXANT
[04/09/2008|10:48] C:\Program Files\<DIR> CyberLink
[01/24/2009|03:51] C:\Program Files\<DIR> DAEMON Tools Toolbar
[01/18/2009|06:45] C:\Program Files\<DIR> Dell
[04/09/2008|10:55] C:\Program Files\<DIR> Dell Support Center
[04/09/2008|10:48] C:\Program Files\<DIR> Digital Line Detect
[01/13/2009|05:12] C:\Program Files\<DIR> DivX
[01/18/2009|06:37] C:\Program Files\<DIR> Eco Ads
[01/11/2009|03:58] C:\Program Files\<DIR> f3setupinstall
[01/16/2009|11:49] C:\Program Files\<DIR> Full Tilt Poker
[01/18/2009|06:51] C:\Program Files\<DIR> Google
[01/12/2009|07:10] C:\Program Files\<DIR> Hawkes Learning Systems
[01/11/2009|03:59] C:\Program Files\<DIR> IEToolbar
[01/16/2009|09:44] C:\Program Files\<DIR> InstallShield Installation Information
[04/09/2008|10:47] C:\Program Files\<DIR> Intel
[01/19/2009|07:03] C:\Program Files\<DIR> Internet Explorer
[01/09/2009|07:09] C:\Program Files\<DIR> iPod
[01/13/2009|10:32] C:\Program Files\<DIR> iTunes
[04/09/2008|10:44] C:\Program Files\<DIR> Java
[01/24/2009|03:52] C:\Program Files\<DIR> LimeWire
[11/02/2006|02:35] C:\Program Files\<DIR> Microsoft Games
[04/09/2008|10:57] C:\Program Files\<DIR> Microsoft Office
[01/20/2009|10:32] C:\Program Files\<DIR> Microsoft Silverlight
[04/09/2008|10:56] C:\Program Files\<DIR> Microsoft Works
[04/09/2008|10:46] C:\Program Files\<DIR> Modem Diagnostic Tool
[01/10/2009|03:40] C:\Program Files\<DIR> Movie Maker
[01/19/2009|09:50] C:\Program Files\<DIR> Mozilla Firefox
[11/02/2006|02:35] C:\Program Files\<DIR> MSBuild
[01/22/2009|08:51] C:\Program Files\<DIR> MSN Messenger
[01/17/2009|11:40] C:\Program Files\<DIR> MySpace
[04/09/2008|10:48] C:\Program Files\<DIR> NetWaiting
[01/13/2009|10:17] C:\Program Files\<DIR> Ocucom
[01/08/2009|11:46] C:\Program Files\<DIR> QuickTime
[11/02/2006|02:35] C:\Program Files\<DIR> Reference Assemblies
[04/09/2008|10:59] C:\Program Files\<DIR> Roxio
[01/11/2009|03:58] C:\Program Files\<DIR> runit
[01/16/2009|09:44] C:\Program Files\<DIR> Serif
[01/18/2009|08:01] C:\Program Files\<DIR> Setup Wizard
[01/12/2009|10:18] C:\Program Files\<DIR> Spybot - Search & Destroy
[01/19/2009|04:14] C:\Program Files\<DIR> Trend Micro
[11/02/2006|02:58] C:\Program Files\<DIR> Uninstall Information
[01/15/2009|09:45] C:\Program Files\<DIR> vghd
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Calendar
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Collaboration
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Defender
[01/13/2009|05:38] C:\Program Files\<DIR> Windows Mail
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Media Player
[11/02/2006|02:35] C:\Program Files\<DIR> Windows NT
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Photo Gallery
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Sidebar
[01/13/2009|05:59] C:\Program Files\<DIR> Xaya3D
[01/09/2009|06:21] C:\Program Files\<DIR> Yahoo!

--------------------\\ Listing Folders in C:\Program Files\Common Files

[01/23/2009|08:39] C:\Program Files\Common Files\<DIR> Adobe
[01/09/2009|07:09] C:\Program Files\Common Files\<DIR> Apple
[04/09/2008|10:57] C:\Program Files\Common Files\<DIR> InstallShield
[01/18/2009|06:15] C:\Program Files\Common Files\<DIR> iS3
[04/09/2008|10:44] C:\Program Files\Common Files\<DIR> Java
[01/08/2009|06:46] C:\Program Files\Common Files\<DIR> microsoft shared
[01/12/2009|10:25] C:\Program Files\Common Files\<DIR> PX Storage Engine
[04/09/2008|10:58] C:\Program Files\Common Files\<DIR> Roxio Shared
[11/02/2006|01:18] C:\Program Files\Common Files\<DIR> Services
[04/09/2008|10:58] C:\Program Files\Common Files\<DIR> Sonic Shared
[11/02/2006|01:18] C:\Program Files\Common Files\<DIR> SpeechEngines
[04/09/2008|10:55] C:\Program Files\Common Files\<DIR> supportsoft
[04/09/2008|10:59] C:\Program Files\Common Files\<DIR> SureThing Shared
[01/10/2009|03:40] C:\Program Files\Common Files\<DIR> System

--------------------\\ Process

( 67 Processes )

... OK !

--------------------\\ Searching with S_Lop

C:\ProgramData\hide bird frag.53fiv
C:\ProgramData\Lies ping ping.mlxwd
C:\ProgramData\Lies ping ping.tkxo6x

--------------------\\ Searching for Lop Files - Folders

C:\ProgramData\way rdr ford mpeg
C:\ProgramData\way rdr ford mpeg\once byte.dat
C:\ProgramData\way rdr ford mpeg\once byte.exe
C:\Users\rac\AppData\Local\Temp\nsiD563.tmp
C:\Users\rac\AppData\Local\Temp\nsk1061.tmp

--------------------\\ Searching within the Registry

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------\\ Checking the Hosts file

Hosts file CLEAN


--------------------\\ Searching for hidden files with Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-24 17:54:26
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Searching for other infections


No other infections found !

[F:41][D:9]-> C:\Users\rac\AppData\Local\Temp
[F:9][D:1]-> C:\Users\rac\AppData\Roaming\MICROS~1\Windows\Cookies
[F:79][D:4]-> C:\Users\rac\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:39][D:9]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - Sat 01/24/2009|17:55 - Option : [1]

--------------------\\ Scan completed at 17:55:41
[ UAC => 1 ]
Absalom1987
Regular Member
 
Posts: 19
Joined: January 19th, 2009, 1:30 am
Advertisement
Register to Remove

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Shaba » January 25th, 2009, 5:54 am

Restart Lop S&D

This time choose Option 3 (Fix - Hosts)
Don't close the window during suppression!
Post the log which is created: (C:\lopR.txt)
User avatar
Shaba
Admin/Teacher Emeritus
 
Posts: 26974
Joined: March 24th, 2006, 4:42 am
Location: Finland

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Absalom1987 » January 25th, 2009, 7:16 am

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Home Basic ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Celeron(R) CPU 420 @ 1.60GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : rac ( Administrator )
BOOT : Normal boot
Antivirus : AVG Anti-Virus Free 8.0 (Activated)
C:\ (Local Disk) - NTFS - Total:138 Go (Free:96 Go)
D:\ (Local Disk) - NTFS - Total:9 Go (Free:6 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [3] ( Sun 01/25/2009| 1:07 )

[ UAC => 1 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ FIX

Deleted! - C:\ProgramData\way rdr ford mpeg\once byte.dat
Deleted! - C:\ProgramData\way rdr ford mpeg\once byte.exe
Deleted! - C:\ProgramData\hide bird frag.53fiv
Deleted! - C:\ProgramData\Lies ping ping.mlxwd
Deleted! - C:\ProgramData\Lies ping ping.tkxo6x
Deleted! - C:\ProgramData\way rdr ford mpeg

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing folders in Local

[01/11/2009|12:34] C:\Users\rac\AppData\Local\<DIR> Adobe
[01/12/2009|09:52] C:\Users\rac\AppData\Local\<DIR> Apple
[01/11/2009|11:00] C:\Users\rac\AppData\Local\<DIR> Apple Computer
[12/29/2008|05:56] C:\Users\rac\AppData\Local\<JUNCTION> Application Data
[01/22/2009|04:14] C:\Users\rac\AppData\Local\5,216 d3d9caps.dat
[01/24/2009|01:35] C:\Users\rac\AppData\Local\8,704 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[01/11/2009|11:25] C:\Users\rac\AppData\Local\<DIR> FullTiltPoker
[12/29/2008|05:57] C:\Users\rac\AppData\Local\65,800 GDIPFONTCACHEV1.DAT
[01/18/2009|06:51] C:\Users\rac\AppData\Local\<DIR> Google
[12/29/2008|05:56] C:\Users\rac\AppData\Local\<JUNCTION> History
[01/11/2009|03:59] C:\Users\rac\AppData\Local\<DIR> hlidrqls
[01/25/2009|12:50] C:\Users\rac\AppData\Local\1,874,731 IconCache.db
[01/19/2009|06:38] C:\Users\rac\AppData\Local\<DIR> Microsoft
[01/08/2009|01:22] C:\Users\rac\AppData\Local\<DIR> Microsoft Games
[01/12/2009|10:02] C:\Users\rac\AppData\Local\<DIR> Mozilla
[12/29/2008|05:57] C:\Users\rac\AppData\Local\<DIR> PowerDVD DX
[01/08/2009|02:03] C:\Users\rac\AppData\Local\<DIR> SupportSoft
[01/25/2009|01:07] C:\Users\rac\AppData\Local\<DIR> Temp
[12/29/2008|05:56] C:\Users\rac\AppData\Local\<JUNCTION> Temporary Internet Files
[01/19/2009|06:59] C:\Users\rac\AppData\Local\<DIR> VirtualStore
[01/19/2009|06:59] C:\Users\rac\AppData\Local\<DIR> Yahoo

--------------------\\ Scheduled Tasks located in C:\Windows\Tasks

[01/25/2009 12:59 AM][--ah-----] C:\Windows\tasks\SA.DAT
[01/25/2009 12:51 AM][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing Folders in C:\ProgramData

[01/09/2009|07:09] C:\ProgramData\<DIR> {3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[01/12/2009|07:13] C:\ProgramData\<DIR> {F22FBFBD-4029-4FBE-8BF6-C4CA61982D6C}
[01/23/2009|08:39] C:\ProgramData\<DIR> Adobe
[01/08/2009|11:42] C:\ProgramData\<DIR> Apple
[01/08/2009|11:48] C:\ProgramData\<DIR> Apple Computer
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Application Data
[01/19/2009|06:38] C:\ProgramData\<DIR> avg8
[01/23/2009|06:47] C:\ProgramData\<DIR> CanonBJ
[01/18/2009|09:00] C:\ProgramData\<DIR> CheckPoint
[01/22/2009|07:24] C:\ProgramData\<DIR> coal first peak
[01/10/2009|11:45] C:\ProgramData\<DIR> CyberLink
[01/18/2009|06:41] C:\ProgramData\<DIR> DAEMON Tools Lite
[04/09/2008|10:49] C:\ProgramData\<DIR> Dell
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Desktop
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Documents
[01/12/2009|12:35] C:\ProgramData\<DIR> Downloaded Installations
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Favorites
[01/24/2009|11:50] C:\ProgramData\<DIR> Google Updater
[04/09/2008|10:57] C:\ProgramData\<DIR> InstallShield
[01/18/2009|06:47] C:\ProgramData\<DIR> Lavasoft
[01/10/2009|07:29] C:\ProgramData\<DIR> McAfee
[01/12/2009|09:34] C:\ProgramData\<DIR> Microsoft
[01/12/2009|12:36] C:\ProgramData\<DIR> ParetoLogic
[01/18/2009|06:38] C:\ProgramData\<DIR> SITEguard
[04/09/2008|10:58] C:\ProgramData\<DIR> Sonic
[01/23/2009|10:17] C:\ProgramData\<DIR> Spybot - Search & Destroy
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Start Menu
[01/18/2009|07:34] C:\ProgramData\<DIR> STOPzilla!
[04/09/2008|10:55] C:\ProgramData\<DIR> SupportSoft
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Templates
[01/16/2009|09:31] C:\ProgramData\63 Ts_infos.ini
[04/09/2008|10:59] C:\ProgramData\<DIR> Uninstall
[04/09/2008|10:52] C:\ProgramData\<DIR> YAHOO
[01/08/2009|06:37] C:\ProgramData\<DIR> Yahoo!

--------------------\\ Listing Folders in C:\Program Files

[01/23/2009|08:39] C:\Program Files\<DIR> Adobe
[01/18/2009|07:50] C:\Program Files\<DIR> Alwil Software
[04/09/2008|11:01] C:\Program Files\<DIR> AOL Install
[01/08/2009|11:44] C:\Program Files\<DIR> Apple Software Update
[01/18/2009|09:07] C:\Program Files\<DIR> AskBarDis
[01/19/2009|03:01] C:\Program Files\<DIR> AVG
[01/12/2009|12:38] C:\Program Files\<DIR> BillP Studios
[01/08/2009|11:46] C:\Program Files\<DIR> Bonjour
[01/12/2009|10:15] C:\Program Files\<DIR> CCleaner
[01/18/2009|07:15] C:\Program Files\<DIR> Common Files
[01/19/2009|04:14] C:\Program Files\<DIR> CONEXANT
[04/09/2008|10:48] C:\Program Files\<DIR> CyberLink
[01/24/2009|03:51] C:\Program Files\<DIR> DAEMON Tools Toolbar
[01/18/2009|06:45] C:\Program Files\<DIR> Dell
[04/09/2008|10:55] C:\Program Files\<DIR> Dell Support Center
[04/09/2008|10:48] C:\Program Files\<DIR> Digital Line Detect
[01/13/2009|05:12] C:\Program Files\<DIR> DivX
[01/18/2009|06:37] C:\Program Files\<DIR> Eco Ads
[01/11/2009|03:58] C:\Program Files\<DIR> f3setupinstall
[01/16/2009|11:49] C:\Program Files\<DIR> Full Tilt Poker
[01/18/2009|06:51] C:\Program Files\<DIR> Google
[01/12/2009|07:10] C:\Program Files\<DIR> Hawkes Learning Systems
[01/11/2009|03:59] C:\Program Files\<DIR> IEToolbar
[01/16/2009|09:44] C:\Program Files\<DIR> InstallShield Installation Information
[04/09/2008|10:47] C:\Program Files\<DIR> Intel
[01/19/2009|07:03] C:\Program Files\<DIR> Internet Explorer
[01/09/2009|07:09] C:\Program Files\<DIR> iPod
[01/13/2009|10:32] C:\Program Files\<DIR> iTunes
[04/09/2008|10:44] C:\Program Files\<DIR> Java
[01/24/2009|03:52] C:\Program Files\<DIR> LimeWire
[11/02/2006|02:35] C:\Program Files\<DIR> Microsoft Games
[04/09/2008|10:57] C:\Program Files\<DIR> Microsoft Office
[01/20/2009|10:32] C:\Program Files\<DIR> Microsoft Silverlight
[04/09/2008|10:56] C:\Program Files\<DIR> Microsoft Works
[04/09/2008|10:46] C:\Program Files\<DIR> Modem Diagnostic Tool
[01/10/2009|03:40] C:\Program Files\<DIR> Movie Maker
[01/19/2009|09:50] C:\Program Files\<DIR> Mozilla Firefox
[11/02/2006|02:35] C:\Program Files\<DIR> MSBuild
[01/22/2009|08:51] C:\Program Files\<DIR> MSN Messenger
[01/17/2009|11:40] C:\Program Files\<DIR> MySpace
[04/09/2008|10:48] C:\Program Files\<DIR> NetWaiting
[01/13/2009|10:17] C:\Program Files\<DIR> Ocucom
[01/08/2009|11:46] C:\Program Files\<DIR> QuickTime
[11/02/2006|02:35] C:\Program Files\<DIR> Reference Assemblies
[04/09/2008|10:59] C:\Program Files\<DIR> Roxio
[01/11/2009|03:58] C:\Program Files\<DIR> runit
[01/16/2009|09:44] C:\Program Files\<DIR> Serif
[01/18/2009|08:01] C:\Program Files\<DIR> Setup Wizard
[01/12/2009|10:18] C:\Program Files\<DIR> Spybot - Search & Destroy
[01/19/2009|04:14] C:\Program Files\<DIR> Trend Micro
[11/02/2006|02:58] C:\Program Files\<DIR> Uninstall Information
[01/15/2009|09:45] C:\Program Files\<DIR> vghd
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Calendar
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Collaboration
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Defender
[01/13/2009|05:38] C:\Program Files\<DIR> Windows Mail
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Media Player
[11/02/2006|02:35] C:\Program Files\<DIR> Windows NT
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Photo Gallery
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Sidebar
[01/13/2009|05:59] C:\Program Files\<DIR> Xaya3D
[01/09/2009|06:21] C:\Program Files\<DIR> Yahoo!

--------------------\\ Listing Folders in C:\Program Files\Common Files

[01/23/2009|08:39] C:\Program Files\Common Files\<DIR> Adobe
[01/09/2009|07:09] C:\Program Files\Common Files\<DIR> Apple
[04/09/2008|10:57] C:\Program Files\Common Files\<DIR> InstallShield
[01/18/2009|06:15] C:\Program Files\Common Files\<DIR> iS3
[04/09/2008|10:44] C:\Program Files\Common Files\<DIR> Java
[01/08/2009|06:46] C:\Program Files\Common Files\<DIR> microsoft shared
[01/12/2009|10:25] C:\Program Files\Common Files\<DIR> PX Storage Engine
[04/09/2008|10:58] C:\Program Files\Common Files\<DIR> Roxio Shared
[11/02/2006|01:18] C:\Program Files\Common Files\<DIR> Services
[04/09/2008|10:58] C:\Program Files\Common Files\<DIR> Sonic Shared
[11/02/2006|01:18] C:\Program Files\Common Files\<DIR> SpeechEngines
[04/09/2008|10:55] C:\Program Files\Common Files\<DIR> supportsoft
[04/09/2008|10:59] C:\Program Files\Common Files\<DIR> SureThing Shared
[01/10/2009|03:40] C:\Program Files\Common Files\<DIR> System

--------------------\\ Process

( 67 Processes )

... OK !

--------------------\\ Searching with S_Lop

No Lop folder found !

--------------------\\ Searching for Lop Files - Folders

No Lop folder found !

--------------------\\ Searching within the Registry

..... OK !

--------------------\\ Checking the Hosts file

Hosts file CLEAN


--------------------\\ Searching for hidden files with Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-25 01:07:53
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Searching for other infections


No other infections found !

[F:48][D:5]-> C:\Users\rac\AppData\Local\Temp
[F:13][D:1]-> C:\Users\rac\AppData\Roaming\MICROS~1\Windows\Cookies
[F:21][D:5]-> C:\Users\rac\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:41][D:9]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - Sat 01/24/2009|17:55 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - Sun 01/25/2009| 1:08 - Option : [3]

--------------------\\ Scan completed at 1:08:41
[ UAC => 1 ]
Absalom1987
Regular Member
 
Posts: 19
Joined: January 19th, 2009, 1:30 am

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Shaba » January 25th, 2009, 7:29 am

Select the entire area below, then right-click and choose Copy
C:\Users\rac\AppData\Local\hlidrqls
C:\ProgramData\coal first peak
C:\Program Files\AskBarDis
C:\Program Files\Eco Ads
C:\Program Files\IEToolbar
C:\Program Files\LimeWire
C:\Windows\nmpif8414.exe
C:\Windows\oonpj58446.exe
C:\Program Files\runit
C:\Windows\oqwv72278.exe
C:\Windows\vgcv3007.exe
C:\Windows\qhllk81270.exe
C:\Windows\hgrdo3581.exe
C:\Windows\ujls35305.exe
C:\Windows\mdhhh0816.exe
C:\Windows\kitf76802.exe
C:\Windows\kdiue732.txt
C:\Program Files\f3setupinstall
C:\Users\rac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\runit_32.lnk


Restart Lop S&D
Choose Option 4 (LopScript)
A blank page will be opened, right-click it and choose Paste
Close the page, you'll be asked to save it, click [Save]
Don't close the windows during suppression!
Post the log which is created: (C:\lopR.txt)
User avatar
Shaba
Admin/Teacher Emeritus
 
Posts: 26974
Joined: March 24th, 2006, 4:42 am
Location: Finland

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Absalom1987 » January 25th, 2009, 5:30 pm

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Home Basic ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Celeron(R) CPU 420 @ 1.60GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : rac ( Administrator )
BOOT : Normal boot
Antivirus : AVG Anti-Virus Free 8.0 (Activated)
C:\ (Local Disk) - NTFS - Total:138 Go (Free:96 Go)
D:\ (Local Disk) - NTFS - Total:9 Go (Free:6 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [3] ( Sun 01/25/2009| 1:07 )

[ UAC => 1 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ FIX

Deleted! - C:\ProgramData\way rdr ford mpeg\once byte.dat
Deleted! - C:\ProgramData\way rdr ford mpeg\once byte.exe
Deleted! - C:\ProgramData\hide bird frag.53fiv
Deleted! - C:\ProgramData\Lies ping ping.mlxwd
Deleted! - C:\ProgramData\Lies ping ping.tkxo6x
Deleted! - C:\ProgramData\way rdr ford mpeg

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing folders in Local

[01/11/2009|12:34] C:\Users\rac\AppData\Local\<DIR> Adobe
[01/12/2009|09:52] C:\Users\rac\AppData\Local\<DIR> Apple
[01/11/2009|11:00] C:\Users\rac\AppData\Local\<DIR> Apple Computer
[12/29/2008|05:56] C:\Users\rac\AppData\Local\<JUNCTION> Application Data
[01/22/2009|04:14] C:\Users\rac\AppData\Local\5,216 d3d9caps.dat
[01/24/2009|01:35] C:\Users\rac\AppData\Local\8,704 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[01/11/2009|11:25] C:\Users\rac\AppData\Local\<DIR> FullTiltPoker
[12/29/2008|05:57] C:\Users\rac\AppData\Local\65,800 GDIPFONTCACHEV1.DAT
[01/18/2009|06:51] C:\Users\rac\AppData\Local\<DIR> Google
[12/29/2008|05:56] C:\Users\rac\AppData\Local\<JUNCTION> History
[01/11/2009|03:59] C:\Users\rac\AppData\Local\<DIR> hlidrqls
[01/25/2009|12:50] C:\Users\rac\AppData\Local\1,874,731 IconCache.db
[01/19/2009|06:38] C:\Users\rac\AppData\Local\<DIR> Microsoft
[01/08/2009|01:22] C:\Users\rac\AppData\Local\<DIR> Microsoft Games
[01/12/2009|10:02] C:\Users\rac\AppData\Local\<DIR> Mozilla
[12/29/2008|05:57] C:\Users\rac\AppData\Local\<DIR> PowerDVD DX
[01/08/2009|02:03] C:\Users\rac\AppData\Local\<DIR> SupportSoft
[01/25/2009|01:07] C:\Users\rac\AppData\Local\<DIR> Temp
[12/29/2008|05:56] C:\Users\rac\AppData\Local\<JUNCTION> Temporary Internet Files
[01/19/2009|06:59] C:\Users\rac\AppData\Local\<DIR> VirtualStore
[01/19/2009|06:59] C:\Users\rac\AppData\Local\<DIR> Yahoo

--------------------\\ Scheduled Tasks located in C:\Windows\Tasks

[01/25/2009 12:59 AM][--ah-----] C:\Windows\tasks\SA.DAT
[01/25/2009 12:51 AM][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing Folders in C:\ProgramData

[01/09/2009|07:09] C:\ProgramData\<DIR> {3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[01/12/2009|07:13] C:\ProgramData\<DIR> {F22FBFBD-4029-4FBE-8BF6-C4CA61982D6C}
[01/23/2009|08:39] C:\ProgramData\<DIR> Adobe
[01/08/2009|11:42] C:\ProgramData\<DIR> Apple
[01/08/2009|11:48] C:\ProgramData\<DIR> Apple Computer
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Application Data
[01/19/2009|06:38] C:\ProgramData\<DIR> avg8
[01/23/2009|06:47] C:\ProgramData\<DIR> CanonBJ
[01/18/2009|09:00] C:\ProgramData\<DIR> CheckPoint
[01/22/2009|07:24] C:\ProgramData\<DIR> coal first peak
[01/10/2009|11:45] C:\ProgramData\<DIR> CyberLink
[01/18/2009|06:41] C:\ProgramData\<DIR> DAEMON Tools Lite
[04/09/2008|10:49] C:\ProgramData\<DIR> Dell
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Desktop
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Documents
[01/12/2009|12:35] C:\ProgramData\<DIR> Downloaded Installations
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Favorites
[01/24/2009|11:50] C:\ProgramData\<DIR> Google Updater
[04/09/2008|10:57] C:\ProgramData\<DIR> InstallShield
[01/18/2009|06:47] C:\ProgramData\<DIR> Lavasoft
[01/10/2009|07:29] C:\ProgramData\<DIR> McAfee
[01/12/2009|09:34] C:\ProgramData\<DIR> Microsoft
[01/12/2009|12:36] C:\ProgramData\<DIR> ParetoLogic
[01/18/2009|06:38] C:\ProgramData\<DIR> SITEguard
[04/09/2008|10:58] C:\ProgramData\<DIR> Sonic
[01/23/2009|10:17] C:\ProgramData\<DIR> Spybot - Search & Destroy
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Start Menu
[01/18/2009|07:34] C:\ProgramData\<DIR> STOPzilla!
[04/09/2008|10:55] C:\ProgramData\<DIR> SupportSoft
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Templates
[01/16/2009|09:31] C:\ProgramData\63 Ts_infos.ini
[04/09/2008|10:59] C:\ProgramData\<DIR> Uninstall
[04/09/2008|10:52] C:\ProgramData\<DIR> YAHOO
[01/08/2009|06:37] C:\ProgramData\<DIR> Yahoo!

--------------------\\ Listing Folders in C:\Program Files

[01/23/2009|08:39] C:\Program Files\<DIR> Adobe
[01/18/2009|07:50] C:\Program Files\<DIR> Alwil Software
[04/09/2008|11:01] C:\Program Files\<DIR> AOL Install
[01/08/2009|11:44] C:\Program Files\<DIR> Apple Software Update
[01/18/2009|09:07] C:\Program Files\<DIR> AskBarDis
[01/19/2009|03:01] C:\Program Files\<DIR> AVG
[01/12/2009|12:38] C:\Program Files\<DIR> BillP Studios
[01/08/2009|11:46] C:\Program Files\<DIR> Bonjour
[01/12/2009|10:15] C:\Program Files\<DIR> CCleaner
[01/18/2009|07:15] C:\Program Files\<DIR> Common Files
[01/19/2009|04:14] C:\Program Files\<DIR> CONEXANT
[04/09/2008|10:48] C:\Program Files\<DIR> CyberLink
[01/24/2009|03:51] C:\Program Files\<DIR> DAEMON Tools Toolbar
[01/18/2009|06:45] C:\Program Files\<DIR> Dell
[04/09/2008|10:55] C:\Program Files\<DIR> Dell Support Center
[04/09/2008|10:48] C:\Program Files\<DIR> Digital Line Detect
[01/13/2009|05:12] C:\Program Files\<DIR> DivX
[01/18/2009|06:37] C:\Program Files\<DIR> Eco Ads
[01/11/2009|03:58] C:\Program Files\<DIR> f3setupinstall
[01/16/2009|11:49] C:\Program Files\<DIR> Full Tilt Poker
[01/18/2009|06:51] C:\Program Files\<DIR> Google
[01/12/2009|07:10] C:\Program Files\<DIR> Hawkes Learning Systems
[01/11/2009|03:59] C:\Program Files\<DIR> IEToolbar
[01/16/2009|09:44] C:\Program Files\<DIR> InstallShield Installation Information
[04/09/2008|10:47] C:\Program Files\<DIR> Intel
[01/19/2009|07:03] C:\Program Files\<DIR> Internet Explorer
[01/09/2009|07:09] C:\Program Files\<DIR> iPod
[01/13/2009|10:32] C:\Program Files\<DIR> iTunes
[04/09/2008|10:44] C:\Program Files\<DIR> Java
[01/24/2009|03:52] C:\Program Files\<DIR> LimeWire
[11/02/2006|02:35] C:\Program Files\<DIR> Microsoft Games
[04/09/2008|10:57] C:\Program Files\<DIR> Microsoft Office
[01/20/2009|10:32] C:\Program Files\<DIR> Microsoft Silverlight
[04/09/2008|10:56] C:\Program Files\<DIR> Microsoft Works
[04/09/2008|10:46] C:\Program Files\<DIR> Modem Diagnostic Tool
[01/10/2009|03:40] C:\Program Files\<DIR> Movie Maker
[01/19/2009|09:50] C:\Program Files\<DIR> Mozilla Firefox
[11/02/2006|02:35] C:\Program Files\<DIR> MSBuild
[01/22/2009|08:51] C:\Program Files\<DIR> MSN Messenger
[01/17/2009|11:40] C:\Program Files\<DIR> MySpace
[04/09/2008|10:48] C:\Program Files\<DIR> NetWaiting
[01/13/2009|10:17] C:\Program Files\<DIR> Ocucom
[01/08/2009|11:46] C:\Program Files\<DIR> QuickTime
[11/02/2006|02:35] C:\Program Files\<DIR> Reference Assemblies
[04/09/2008|10:59] C:\Program Files\<DIR> Roxio
[01/11/2009|03:58] C:\Program Files\<DIR> runit
[01/16/2009|09:44] C:\Program Files\<DIR> Serif
[01/18/2009|08:01] C:\Program Files\<DIR> Setup Wizard
[01/12/2009|10:18] C:\Program Files\<DIR> Spybot - Search & Destroy
[01/19/2009|04:14] C:\Program Files\<DIR> Trend Micro
[11/02/2006|02:58] C:\Program Files\<DIR> Uninstall Information
[01/15/2009|09:45] C:\Program Files\<DIR> vghd
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Calendar
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Collaboration
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Defender
[01/13/2009|05:38] C:\Program Files\<DIR> Windows Mail
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Media Player
[11/02/2006|02:35] C:\Program Files\<DIR> Windows NT
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Photo Gallery
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Sidebar
[01/13/2009|05:59] C:\Program Files\<DIR> Xaya3D
[01/09/2009|06:21] C:\Program Files\<DIR> Yahoo!

--------------------\\ Listing Folders in C:\Program Files\Common Files

[01/23/2009|08:39] C:\Program Files\Common Files\<DIR> Adobe
[01/09/2009|07:09] C:\Program Files\Common Files\<DIR> Apple
[04/09/2008|10:57] C:\Program Files\Common Files\<DIR> InstallShield
[01/18/2009|06:15] C:\Program Files\Common Files\<DIR> iS3
[04/09/2008|10:44] C:\Program Files\Common Files\<DIR> Java
[01/08/2009|06:46] C:\Program Files\Common Files\<DIR> microsoft shared
[01/12/2009|10:25] C:\Program Files\Common Files\<DIR> PX Storage Engine
[04/09/2008|10:58] C:\Program Files\Common Files\<DIR> Roxio Shared
[11/02/2006|01:18] C:\Program Files\Common Files\<DIR> Services
[04/09/2008|10:58] C:\Program Files\Common Files\<DIR> Sonic Shared
[11/02/2006|01:18] C:\Program Files\Common Files\<DIR> SpeechEngines
[04/09/2008|10:55] C:\Program Files\Common Files\<DIR> supportsoft
[04/09/2008|10:59] C:\Program Files\Common Files\<DIR> SureThing Shared
[01/10/2009|03:40] C:\Program Files\Common Files\<DIR> System

--------------------\\ Process

( 67 Processes )

... OK !

--------------------\\ Searching with S_Lop

No Lop folder found !

--------------------\\ Searching for Lop Files - Folders

No Lop folder found !

--------------------\\ Searching within the Registry

..... OK !

--------------------\\ Checking the Hosts file

Hosts file CLEAN


--------------------\\ Searching for hidden files with Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-25 01:07:53
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Searching for other infections


No other infections found !

[F:48][D:5]-> C:\Users\rac\AppData\Local\Temp
[F:13][D:1]-> C:\Users\rac\AppData\Roaming\MICROS~1\Windows\Cookies
[F:21][D:5]-> C:\Users\rac\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:41][D:9]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - Sat 01/24/2009|17:55 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - Sun 01/25/2009| 1:08 - Option : [3]

--------------------\\ Scan completed at 1:08:41
[ UAC => 1 ]
Absalom1987
Regular Member
 
Posts: 19
Joined: January 19th, 2009, 1:30 am

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Absalom1987 » January 25th, 2009, 5:36 pm

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Home Basic ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Celeron(R) CPU 420 @ 1.60GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : rac ( Administrator )
BOOT : Normal boot
Antivirus : AVG Anti-Virus Free 8.0 (Activated)
C:\ (Local Disk) - NTFS - Total:138 Go (Free:95 Go)
D:\ (Local Disk) - NTFS - Total:9 Go (Free:6 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [4] ( Sun 01/25/2009|11:29 )

[ UAC => 1 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Lop Script

C:\Users\rac\AppData\Local\hlidrqls
C:\ProgramData\coal first peak
C:\Program Files\AskBarDis
C:\Program Files\Eco Ads
C:\Program Files\IEToolbar
C:\Program Files\LimeWire
C:\Windows\nmpif8414.exe
C:\Windows\oonpj58446.exe
C:\Program Files\runit
C:\Windows\oqwv72278.exe
C:\Windows\vgcv3007.exe
C:\Windows\qhllk81270.exe
C:\Windows\hgrdo3581.exe
C:\Windows\ujls35305.exe
C:\Windows\mdhhh0816.exe
C:\Windows\kitf76802.exe
C:\Windows\kdiue732.txt
C:\Program Files\f3setupinstall
C:\Users\rac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\runit_32.lnk


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ FIX

Deleted! - C:\Windows\nmpif8414.exe
Deleted! - C:\Windows\oonpj58446.exe
Deleted! - C:\Windows\oqwv72278.exe
Deleted! - C:\Windows\vgcv3007.exe
Deleted! - C:\Windows\qhllk81270.exe
Deleted! - C:\Windows\hgrdo3581.exe
Deleted! - C:\Windows\ujls35305.exe
Deleted! - C:\Windows\mdhhh0816.exe
Deleted! - C:\Windows\kitf76802.exe
Deleted! - C:\Windows\kdiue732.txt
Deleted! - C:\Users\rac\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\runit_32.lnk
Deleted! - C:\Users\rac\AppData\Local\hlidrqls
Deleted! - C:\ProgramData\coal first peak
Deleted! - C:\Program Files\AskBarDis
Deleted! - C:\Program Files\Eco Ads
Deleted! - C:\Program Files\IEToolbar
Deleted! - C:\Program Files\LimeWire
Deleted! - C:\Program Files\runit
Deleted! - C:\Program Files\f3setupinstall
-
[ Hosts file ] .. Restored!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing folders in Local

[01/11/2009|12:34] C:\Users\rac\AppData\Local\<DIR> Adobe
[01/12/2009|09:52] C:\Users\rac\AppData\Local\<DIR> Apple
[01/11/2009|11:00] C:\Users\rac\AppData\Local\<DIR> Apple Computer
[12/29/2008|05:56] C:\Users\rac\AppData\Local\<JUNCTION> Application Data
[01/22/2009|04:14] C:\Users\rac\AppData\Local\5,216 d3d9caps.dat
[01/24/2009|01:35] C:\Users\rac\AppData\Local\8,704 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[01/11/2009|11:25] C:\Users\rac\AppData\Local\<DIR> FullTiltPoker
[12/29/2008|05:57] C:\Users\rac\AppData\Local\65,800 GDIPFONTCACHEV1.DAT
[01/18/2009|06:51] C:\Users\rac\AppData\Local\<DIR> Google
[12/29/2008|05:56] C:\Users\rac\AppData\Local\<JUNCTION> History
[01/25/2009|12:50] C:\Users\rac\AppData\Local\1,874,731 IconCache.db
[01/19/2009|06:38] C:\Users\rac\AppData\Local\<DIR> Microsoft
[01/08/2009|01:22] C:\Users\rac\AppData\Local\<DIR> Microsoft Games
[01/12/2009|10:02] C:\Users\rac\AppData\Local\<DIR> Mozilla
[12/29/2008|05:57] C:\Users\rac\AppData\Local\<DIR> PowerDVD DX
[01/08/2009|02:03] C:\Users\rac\AppData\Local\<DIR> SupportSoft
[01/25/2009|11:29] C:\Users\rac\AppData\Local\<DIR> Temp
[12/29/2008|05:56] C:\Users\rac\AppData\Local\<JUNCTION> Temporary Internet Files
[01/19/2009|06:59] C:\Users\rac\AppData\Local\<DIR> VirtualStore
[01/19/2009|06:59] C:\Users\rac\AppData\Local\<DIR> Yahoo

--------------------\\ Scheduled Tasks located in C:\Windows\Tasks

[01/25/2009 12:59 AM][--ah-----] C:\Windows\tasks\SA.DAT
[01/25/2009 12:51 AM][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing Folders in C:\ProgramData

[01/09/2009|07:09] C:\ProgramData\<DIR> {3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[01/12/2009|07:13] C:\ProgramData\<DIR> {F22FBFBD-4029-4FBE-8BF6-C4CA61982D6C}
[01/23/2009|08:39] C:\ProgramData\<DIR> Adobe
[01/08/2009|11:42] C:\ProgramData\<DIR> Apple
[01/08/2009|11:48] C:\ProgramData\<DIR> Apple Computer
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Application Data
[01/19/2009|06:38] C:\ProgramData\<DIR> avg8
[01/23/2009|06:47] C:\ProgramData\<DIR> CanonBJ
[01/18/2009|09:00] C:\ProgramData\<DIR> CheckPoint
[01/10/2009|11:45] C:\ProgramData\<DIR> CyberLink
[01/18/2009|06:41] C:\ProgramData\<DIR> DAEMON Tools Lite
[04/09/2008|10:49] C:\ProgramData\<DIR> Dell
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Desktop
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Documents
[01/12/2009|12:35] C:\ProgramData\<DIR> Downloaded Installations
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Favorites
[01/24/2009|11:50] C:\ProgramData\<DIR> Google Updater
[04/09/2008|10:57] C:\ProgramData\<DIR> InstallShield
[01/18/2009|06:47] C:\ProgramData\<DIR> Lavasoft
[01/10/2009|07:29] C:\ProgramData\<DIR> McAfee
[01/12/2009|09:34] C:\ProgramData\<DIR> Microsoft
[01/12/2009|12:36] C:\ProgramData\<DIR> ParetoLogic
[01/18/2009|06:38] C:\ProgramData\<DIR> SITEguard
[04/09/2008|10:58] C:\ProgramData\<DIR> Sonic
[01/23/2009|10:17] C:\ProgramData\<DIR> Spybot - Search & Destroy
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Start Menu
[01/18/2009|07:34] C:\ProgramData\<DIR> STOPzilla!
[04/09/2008|10:55] C:\ProgramData\<DIR> SupportSoft
[12/29/2008|05:51] C:\ProgramData\<JUNCTION> Templates
[01/16/2009|09:31] C:\ProgramData\63 Ts_infos.ini
[04/09/2008|10:59] C:\ProgramData\<DIR> Uninstall
[04/09/2008|10:52] C:\ProgramData\<DIR> YAHOO
[01/08/2009|06:37] C:\ProgramData\<DIR> Yahoo!

--------------------\\ Listing Folders in C:\Program Files

[01/23/2009|08:39] C:\Program Files\<DIR> Adobe
[01/18/2009|07:50] C:\Program Files\<DIR> Alwil Software
[04/09/2008|11:01] C:\Program Files\<DIR> AOL Install
[01/08/2009|11:44] C:\Program Files\<DIR> Apple Software Update
[01/19/2009|03:01] C:\Program Files\<DIR> AVG
[01/12/2009|12:38] C:\Program Files\<DIR> BillP Studios
[01/08/2009|11:46] C:\Program Files\<DIR> Bonjour
[01/12/2009|10:15] C:\Program Files\<DIR> CCleaner
[01/18/2009|07:15] C:\Program Files\<DIR> Common Files
[01/19/2009|04:14] C:\Program Files\<DIR> CONEXANT
[04/09/2008|10:48] C:\Program Files\<DIR> CyberLink
[01/24/2009|03:51] C:\Program Files\<DIR> DAEMON Tools Toolbar
[01/18/2009|06:45] C:\Program Files\<DIR> Dell
[04/09/2008|10:55] C:\Program Files\<DIR> Dell Support Center
[04/09/2008|10:48] C:\Program Files\<DIR> Digital Line Detect
[01/13/2009|05:12] C:\Program Files\<DIR> DivX
[01/16/2009|11:49] C:\Program Files\<DIR> Full Tilt Poker
[01/18/2009|06:51] C:\Program Files\<DIR> Google
[01/12/2009|07:10] C:\Program Files\<DIR> Hawkes Learning Systems
[01/16/2009|09:44] C:\Program Files\<DIR> InstallShield Installation Information
[04/09/2008|10:47] C:\Program Files\<DIR> Intel
[01/19/2009|07:03] C:\Program Files\<DIR> Internet Explorer
[01/09/2009|07:09] C:\Program Files\<DIR> iPod
[01/13/2009|10:32] C:\Program Files\<DIR> iTunes
[04/09/2008|10:44] C:\Program Files\<DIR> Java
[11/02/2006|02:35] C:\Program Files\<DIR> Microsoft Games
[04/09/2008|10:57] C:\Program Files\<DIR> Microsoft Office
[01/20/2009|10:32] C:\Program Files\<DIR> Microsoft Silverlight
[04/09/2008|10:56] C:\Program Files\<DIR> Microsoft Works
[04/09/2008|10:46] C:\Program Files\<DIR> Modem Diagnostic Tool
[01/10/2009|03:40] C:\Program Files\<DIR> Movie Maker
[01/19/2009|09:50] C:\Program Files\<DIR> Mozilla Firefox
[11/02/2006|02:35] C:\Program Files\<DIR> MSBuild
[01/22/2009|08:51] C:\Program Files\<DIR> MSN Messenger
[01/17/2009|11:40] C:\Program Files\<DIR> MySpace
[04/09/2008|10:48] C:\Program Files\<DIR> NetWaiting
[01/13/2009|10:17] C:\Program Files\<DIR> Ocucom
[01/08/2009|11:46] C:\Program Files\<DIR> QuickTime
[11/02/2006|02:35] C:\Program Files\<DIR> Reference Assemblies
[04/09/2008|10:59] C:\Program Files\<DIR> Roxio
[01/16/2009|09:44] C:\Program Files\<DIR> Serif
[01/18/2009|08:01] C:\Program Files\<DIR> Setup Wizard
[01/12/2009|10:18] C:\Program Files\<DIR> Spybot - Search & Destroy
[01/19/2009|04:14] C:\Program Files\<DIR> Trend Micro
[11/02/2006|02:58] C:\Program Files\<DIR> Uninstall Information
[01/15/2009|09:45] C:\Program Files\<DIR> vghd
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Calendar
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Collaboration
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Defender
[01/13/2009|05:38] C:\Program Files\<DIR> Windows Mail
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Media Player
[11/02/2006|02:35] C:\Program Files\<DIR> Windows NT
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Photo Gallery
[01/10/2009|03:40] C:\Program Files\<DIR> Windows Sidebar
[01/13/2009|05:59] C:\Program Files\<DIR> Xaya3D
[01/09/2009|06:21] C:\Program Files\<DIR> Yahoo!

--------------------\\ Listing Folders in C:\Program Files\Common Files

[01/23/2009|08:39] C:\Program Files\Common Files\<DIR> Adobe
[01/09/2009|07:09] C:\Program Files\Common Files\<DIR> Apple
[04/09/2008|10:57] C:\Program Files\Common Files\<DIR> InstallShield
[01/18/2009|06:15] C:\Program Files\Common Files\<DIR> iS3
[04/09/2008|10:44] C:\Program Files\Common Files\<DIR> Java
[01/08/2009|06:46] C:\Program Files\Common Files\<DIR> microsoft shared
[01/12/2009|10:25] C:\Program Files\Common Files\<DIR> PX Storage Engine
[04/09/2008|10:58] C:\Program Files\Common Files\<DIR> Roxio Shared
[11/02/2006|01:18] C:\Program Files\Common Files\<DIR> Services
[04/09/2008|10:58] C:\Program Files\Common Files\<DIR> Sonic Shared
[11/02/2006|01:18] C:\Program Files\Common Files\<DIR> SpeechEngines
[04/09/2008|10:55] C:\Program Files\Common Files\<DIR> supportsoft
[04/09/2008|10:59] C:\Program Files\Common Files\<DIR> SureThing Shared
[01/10/2009|03:40] C:\Program Files\Common Files\<DIR> System

--------------------\\ Process

( 63 Processes )

... OK !

--------------------\\ Searching with S_Lop

No Lop folder found !

--------------------\\ Searching for Lop Files - Folders

No Lop folder found !

--------------------\\ Searching within the Registry

..... OK !

--------------------\\ Checking the Hosts file

Hosts file CLEAN


--------------------\\ Searching for hidden files with Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-25 11:32:35
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Searching for other infections


No other infections found !

[F:39][D:4]-> C:\Users\rac\AppData\Local\Temp
[F:14][D:1]-> C:\Users\rac\AppData\Roaming\MICROS~1\Windows\Cookies
[F:38][D:5]-> C:\Users\rac\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:41][D:9]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - Sat 01/24/2009|17:55 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - Sun 01/25/2009| 1:08 - Option : [3]
3 - "C:\Lop SD\LopR_3.txt" - Sun 01/25/2009|11:33 - Option : [4]

--------------------\\ Scan completed at 11:33:36
[ UAC => 1 ]
Absalom1987
Regular Member
 
Posts: 19
Joined: January 19th, 2009, 1:30 am

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Shaba » January 26th, 2009, 5:32 am

That looks better :)

Please rerun rsit and post back its log next.
User avatar
Shaba
Admin/Teacher Emeritus
 
Posts: 26974
Joined: March 24th, 2006, 4:42 am
Location: Finland

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Absalom1987 » January 26th, 2009, 6:46 am

Thanks :)

Logfile of random's system information tool 1.05 (written by random/random)
Run by rac at 2009-01-26 00:44:56
Microsoft® Windows Vista™ Home Basic Service Pack 1
System drive C: has 97 GB (68%) free of 142 GB
Total RAM: 2036 MB (44% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:45:28 AM, on 1/26/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Users\rac\AppData\Local\hlidrqls\hlidrqls.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\MySpace\IM\MySpaceIM.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Ocucom\PreCast\tmon.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\MySpace\IM\MySpaceIM.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\iTunes\iTunes.exe
C:\PROGRA~1\MICROS~2\WksWP.exe
C:\PROGRA~1\MICROS~2\WkDStore.exe
C:\PROGRA~1\MICROS~2\wkgdcach.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\rac\Downloads\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\rac.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {6c7ba842-1864-43d5-47fe-6dddccc13f50} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [hlidrqls] "C:\Users\rac\AppData\Local\hlidrqls\hlidrqls.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O4 - Global Startup: PreCast Monitor.lnk = C:\Program Files\Ocucom\PreCast\tmon.exe
O8 - Extra context menu item: &Search - ?p=ZKfox000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O15 - Trusted Zone: http://*.mcafee.com
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL,C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL,avgrsstx.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 8225 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-01-19 455960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6c7ba842-1864-43d5-47fe-6dddccc13f50}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0\bin\ssv.dll [2008-04-09 501384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-01-19 2055960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll [2009-01-08 657904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA6319C0-31B7-401E-A518-A07C3DB8F777}]
CBrowserHelperObject Object - C:\Program Files\Dell\BAE\BAE.dll [2006-11-09 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
SITEguard
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2009-01-19 2055960]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-18 1008184]
"ECenter"=C:\Dell\E-Center\EULALauncher.exe [2008-01-18 17920]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-05-11 4452352]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2007-09-25 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2007-09-25 154136]
"Persistence"=C:\Windows\system32\igfxpers.exe [2007-09-25 129560]
"PDVDDXSrv"=C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [2007-09-17 124200]
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2009-01-08 29744]
"dscactivate"=C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe [2008-02-13 16384]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-11-04 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-11-20 290088]
"hlidrqls"=C:\Users\rac\AppData\Local\hlidrqls\hlidrqls.exe []
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-11-26 81000]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-01-19 1261336]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MySpaceIM"=C:\Program Files\MySpace\IM\MySpaceIM.exe [2008-12-12 9555968]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-09-16 1833296]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2008-12-19 1434864]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-18 202240]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Digital Line Detect.lnk - C:\Program Files\Digital Line Detect\DLG.exe
PreCast Monitor.lnk - C:\Program Files\Ocucom\PreCast\tmon.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL,C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL,avgrsstx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2007-09-25 204800]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2009-01-24 17:53:53 ----A---- C:\lopR.txt
2009-01-24 17:53:14 ----D---- C:\Lop SD
2009-01-24 04:28:04 ----D---- C:\rsit
2009-01-23 20:39:02 ----D---- C:\Program Files\Adobe
2009-01-23 20:38:24 ----SHD---- C:\Config.Msi
2009-01-23 19:42:25 ----D---- C:\Users\rac\AppData\Roaming\Template
2009-01-23 18:47:16 ----HD---- C:\ProgramData\CanonBJ
2009-01-23 18:46:17 ----A---- C:\Windows\system32\CNMLM90.DLL
2009-01-20 10:32:40 ----D---- C:\Program Files\Microsoft Silverlight
2009-01-19 19:03:01 ----A---- C:\Windows\wininit.ini
2009-01-19 18:40:00 ----A---- C:\Windows\system32\avgrsstx.dll
2009-01-19 15:01:01 ----D---- C:\Program Files\AVG
2009-01-18 21:49:43 ----D---- C:\Users\rac\AppData\Roaming\DAEMON Tools
2009-01-18 21:49:42 ----D---- C:\Users\rac\AppData\Roaming\DAEMON Tools Pro
2009-01-18 21:00:32 ----D---- C:\ProgramData\CheckPoint
2009-01-18 21:00:19 ----D---- C:\Windows\Internet Logs
2009-01-18 20:34:06 ----D---- C:\Program Files\CONEXANT
2009-01-18 19:50:08 ----A---- C:\Windows\system32\aswBoot.exe
2009-01-18 19:50:05 ----D---- C:\Program Files\Alwil Software
2009-01-18 19:23:39 ----D---- C:\Program Files\Trend Micro
2009-01-18 18:41:32 ----D---- C:\ProgramData\DAEMON Tools Lite
2009-01-18 18:41:06 ----D---- C:\Program Files\DAEMON Tools Toolbar
2009-01-18 18:25:42 ----D---- C:\Users\rac\AppData\Roaming\DAEMON Tools Lite
2009-01-18 18:16:46 ----D---- C:\ProgramData\SITEguard
2009-01-18 18:15:06 ----D---- C:\ProgramData\STOPzilla!
2009-01-18 18:15:06 ----D---- C:\Program Files\Common Files\iS3
2009-01-17 12:22:33 ----D---- C:\Windows\Sun
2009-01-16 21:44:53 ----N---- C:\Windows\pcdlib32.dll
2009-01-16 21:44:40 ----D---- C:\Program Files\Serif
2009-01-16 21:36:34 ----D---- C:\Users\rac\AppData\Roaming\DriveHQ
2009-01-16 21:24:24 ----H---- C:\ProgramData\Ts_infos.ini
2009-01-14 08:59:02 ----D---- C:\Program Files\vghd
2009-01-14 08:59:00 ----D---- C:\Users\rac\AppData\Roaming\vghd
2009-01-13 22:19:35 ----D---- C:\Users\rac\AppData\Roaming\PreCast
2009-01-13 22:17:46 ----D---- C:\Users\rac\AppData\Roaming\Terrapin
2009-01-13 22:17:34 ----D---- C:\Program Files\Ocucom
2009-01-13 17:59:58 ----D---- C:\Program Files\Xaya3D
2009-01-12 22:25:50 ----D---- C:\Users\rac\AppData\Roaming\DivX
2009-01-12 22:16:31 ----D---- C:\ProgramData\Spybot - Search & Destroy
2009-01-12 22:16:31 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-01-12 22:15:35 ----D---- C:\Program Files\CCleaner
2009-01-12 22:02:54 ----D---- C:\Users\rac\AppData\Roaming\Mozilla
2009-01-12 19:18:36 ----D---- C:\Program Files\Mozilla Firefox
2009-01-12 19:10:24 ----D---- C:\Program Files\Hawkes Learning Systems
2009-01-12 19:06:41 ----HD---- C:\ProgramData\{F22FBFBD-4029-4FBE-8BF6-C4CA61982D6C}
2009-01-12 03:21:01 ----D---- C:\Users\rac\AppData\Roaming\ParetoLogic
2009-01-12 00:56:46 ----D---- C:\ProgramData\Lavasoft
2009-01-12 00:39:04 ----D---- C:\Users\rac\AppData\Roaming\WinPatrol
2009-01-12 00:38:54 ----D---- C:\Program Files\BillP Studios
2009-01-12 00:36:47 ----D---- C:\ProgramData\ParetoLogic
2009-01-12 00:35:59 ----D---- C:\ProgramData\Downloaded Installations
2009-01-11 16:30:01 ----A---- C:\Windows\system32\msshooks.dll
2009-01-11 16:30:00 ----A---- C:\Windows\system32\msscb.dll
2009-01-11 16:29:58 ----A---- C:\Windows\system32\thawbrkr.dll
2009-01-11 16:29:58 ----A---- C:\Windows\system32\srchadmin.dll
2009-01-11 16:29:58 ----A---- C:\Windows\system32\SearchFilterHost.exe
2009-01-11 16:29:58 ----A---- C:\Windows\system32\propsys.dll
2009-01-11 16:29:58 ----A---- C:\Windows\system32\propdefs.dll
2009-01-11 16:29:58 ----A---- C:\Windows\system32\msstrc.dll
2009-01-11 16:29:58 ----A---- C:\Windows\system32\mssprxy.dll
2009-01-11 16:29:58 ----A---- C:\Windows\system32\mssitlb.dll
2009-01-11 16:29:58 ----A---- C:\Windows\system32\msshsq.dll
2009-01-11 16:29:58 ----A---- C:\Windows\system32\korwbrkr.dll
2009-01-11 16:29:57 ----A---- C:\Windows\system32\xmlfilter.dll
2009-01-11 16:29:57 ----A---- C:\Windows\system32\wsepno.dll
2009-01-11 16:29:57 ----A---- C:\Windows\system32\rtffilt.dll
2009-01-11 16:29:57 ----A---- C:\Windows\system32\offfilt.dll
2009-01-11 16:29:57 ----A---- C:\Windows\system32\nlhtml.dll
2009-01-11 16:29:57 ----A---- C:\Windows\system32\msscntrs.dll
2009-01-11 16:29:57 ----A---- C:\Windows\system32\mimefilt.dll
2009-01-11 16:29:57 ----A---- C:\Windows\system32\chsbrkr.dll
2009-01-11 16:29:56 ----A---- C:\Windows\system32\tquery.dll
2009-01-11 16:29:56 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2009-01-11 16:29:56 ----A---- C:\Windows\system32\SearchIndexer.exe
2009-01-11 16:29:56 ----A---- C:\Windows\system32\mssvp.dll
2009-01-11 16:29:56 ----A---- C:\Windows\system32\mssrch.dll
2009-01-11 16:29:56 ----A---- C:\Windows\system32\mssphtb.dll
2009-01-11 16:29:56 ----A---- C:\Windows\system32\mssph.dll
2009-01-11 16:29:56 ----A---- C:\Windows\system32\chtbrkr.dll
2009-01-11 15:58:34 ----D---- C:\Program Files\Setup Wizard
2009-01-11 12:36:47 ----D---- C:\Program Files\Full Tilt Poker
2009-01-11 11:59:31 ----HD---- C:\$AVG8.VAULT$
2009-01-11 11:47:24 ----D---- C:\Program Files\DivX
2009-01-11 10:22:55 ----A---- C:\Windows\system32\rpcrt4.dll
2009-01-11 10:22:54 ----A---- C:\Windows\system32\pacerprf.dll
2009-01-11 10:22:42 ----A---- C:\Windows\system32\wersvc.dll
2009-01-11 10:22:42 ----A---- C:\Windows\system32\Faultrep.dll
2009-01-11 10:22:39 ----A---- C:\Windows\system32\emdmgmt.dll
2009-01-11 10:22:39 ----A---- C:\Windows\system32\dataclen.dll
2009-01-11 10:22:39 ----A---- C:\Windows\system32\cdd.dll
2009-01-11 10:22:38 ----A---- C:\Windows\system32\vbscript.dll
2009-01-11 10:22:38 ----A---- C:\Windows\system32\jscript.dll
2009-01-11 10:22:37 ----A---- C:\Windows\system32\wshext.dll
2009-01-11 10:22:37 ----A---- C:\Windows\system32\wscript.exe
2009-01-11 10:22:37 ----A---- C:\Windows\system32\scrrun.dll
2009-01-11 10:22:37 ----A---- C:\Windows\system32\scrobj.dll
2009-01-11 10:22:37 ----A---- C:\Windows\system32\cscript.exe
2009-01-10 19:16:37 ----D---- C:\ProgramData\avg8
2009-01-10 18:46:01 ----D---- C:\Users\rac\AppData\Roaming\McAfee
2009-01-10 15:36:48 ----D---- C:\PerfLogs
2009-01-10 11:50:52 ----D---- C:\MDT
2009-01-10 11:45:55 ----D---- C:\ProgramData\CyberLink
2009-01-10 10:33:09 ----A---- C:\Windows\system32\SLsvc.exe
2009-01-10 10:33:09 ----A---- C:\Windows\system32\onex.dll
2009-01-10 10:32:57 ----A---- C:\Windows\system32\PSHED.DLL
2009-01-10 10:32:56 ----A---- C:\Windows\system32\imagesp1.dll
2009-01-10 10:32:54 ----A---- C:\Windows\system32\dfsr.exe
2009-01-10 10:32:53 ----A---- C:\Windows\system32\pidgenx.dll
2009-01-10 10:32:51 ----A---- C:\Windows\system32\sstpsvc.dll
2009-01-10 10:32:51 ----A---- C:\Windows\system32\mstscax.dll
2009-01-10 10:32:48 ----A---- C:\Windows\system32\WsmSvc.dll
2009-01-10 10:32:48 ----A---- C:\Windows\system32\winrscmd.dll
2009-01-10 10:32:47 ----A---- C:\Windows\system32\sysmain.dll
2009-01-10 10:32:46 ----A---- C:\Windows\system32\RMActivate.exe
2009-01-10 10:32:45 ----A---- C:\Windows\system32\VSSVC.exe
2009-01-10 10:32:45 ----A---- C:\Windows\system32\vssapi.dll
2009-01-10 10:32:45 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2009-01-10 10:32:44 ----A---- C:\Windows\system32\secproc.dll
2009-01-10 10:32:44 ----A---- C:\Windows\system32\RMActivate_isv.exe
2009-01-10 10:32:44 ----A---- C:\Windows\system32\iesetup.dll
2009-01-10 10:32:42 ----A---- C:\Windows\system32\secproc_isv.dll
2009-01-10 10:32:41 ----A---- C:\Windows\system32\drmv2clt.dll
2009-01-10 10:32:40 ----A---- C:\Windows\system32\icardres.dll
2009-01-10 10:32:40 ----A---- C:\Windows\system32\icardagt.exe
2009-01-10 10:32:39 ----A---- C:\Windows\system32\xpssvcs.dll
2009-01-10 10:32:39 ----A---- C:\Windows\system32\blackbox.dll
2009-01-10 10:32:37 ----A---- C:\Windows\system32\RacEngn.dll
2009-01-10 10:32:36 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2009-01-10 10:32:36 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2009-01-10 10:32:35 ----A---- C:\Windows\system32\spwizimg.dll
2009-01-10 10:32:35 ----A---- C:\Windows\system32\rdpencom.dll
2009-01-10 10:32:35 ----A---- C:\Windows\system32\lpremove.exe
2009-01-10 10:32:35 ----A---- C:\Windows\bfsvc.exe
2009-01-10 10:32:33 ----A---- C:\Windows\system32\qmgr.dll
2009-01-10 10:32:33 ----A---- C:\Windows\system32\ntdll.dll
2009-01-10 10:32:33 ----A---- C:\Windows\system32\msjet40.dll
2009-01-10 10:32:33 ----A---- C:\Windows\system32\lsasrv.dll
2009-01-10 10:32:32 ----A---- C:\Windows\system32\localspl.dll
2009-01-10 10:32:31 ----A---- C:\Windows\system32\wevtsvc.dll
2009-01-10 10:32:31 ----A---- C:\Windows\system32\wcncsvc.dll
2009-01-10 10:32:31 ----A---- C:\Windows\system32\mscoree.dll
2009-01-10 10:32:31 ----A---- C:\Windows\system32\kernel32.dll
2009-01-10 10:32:31 ----A---- C:\Windows\system32\IKEEXT.DLL
2009-01-10 10:32:30 ----A---- C:\Windows\system32\TsWpfWrp.exe
2009-01-10 10:32:30 ----A---- C:\Windows\system32\recdisc.exe
2009-01-10 10:32:29 ----A---- C:\Windows\system32\vds.exe
2009-01-10 10:32:29 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
2009-01-10 10:32:27 ----A---- C:\Windows\system32\wmp.dll
2009-01-10 10:32:26 ----A---- C:\Windows\system32\wcnwiz.dll
2009-01-10 10:32:26 ----A---- C:\Windows\system32\SMBHelperClass.dll
2009-01-10 10:32:26 ----A---- C:\Windows\system32\msvbvm60.dll
2009-01-10 10:32:26 ----A---- C:\Windows\system32\mstsc.exe
2009-01-10 10:32:24 ----A---- C:\Windows\system32\termsrv.dll
2009-01-10 10:32:24 ----A---- C:\Windows\system32\msdtctm.dll
2009-01-10 10:32:24 ----A---- C:\Windows\system32\advapi32.dll
2009-01-10 10:32:23 ----A---- C:\Windows\system32\kerberos.dll
2009-01-10 10:32:23 ----A---- C:\Windows\system32\IMJP10K.DLL
2009-01-10 10:32:22 ----A---- C:\Windows\system32\mmcndmgr.dll
2009-01-10 10:32:21 ----A---- C:\Windows\system32\MPSSVC.dll
2009-01-10 10:32:21 ----A---- C:\Windows\system32\CertEnroll.dll
2009-01-10 10:32:20 ----A---- C:\Windows\system32\xolehlp.dll
2009-01-10 10:32:20 ----A---- C:\Windows\system32\Query.dll
2009-01-10 10:32:20 ----A---- C:\Windows\system32\ole32.dll
2009-01-10 10:32:20 ----A---- C:\Windows\system32\msdtcprx.dll
2009-01-10 10:32:19 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2009-01-10 10:32:19 ----A---- C:\Windows\system32\netlogon.dll
2009-01-10 10:32:18 ----A---- C:\Windows\system32\SSShim.dll
2009-01-10 10:32:18 ----A---- C:\Windows\system32\msvcrt.dll
2009-01-10 10:32:18 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2009-01-10 10:32:17 ----A---- C:\Windows\system32\schedsvc.dll
2009-01-10 10:32:17 ----A---- C:\Windows\system32\nlmgp.dll
2009-01-10 10:32:17 ----A---- C:\Windows\system32\DfsShlEx.dll
2009-01-10 10:32:16 ----A---- C:\Windows\system32\shlwapi.dll
2009-01-10 10:32:16 ----A---- C:\Windows\system32\sdclt.exe
2009-01-10 10:32:16 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-01-10 10:32:16 ----A---- C:\Windows\system32\milcore.dll
2009-01-10 10:32:16 ----A---- C:\Windows\system32\IasMigPlugin.dll
2009-01-10 10:32:15 ----A---- C:\Windows\system32\wer.dll
2009-01-10 10:32:15 ----A---- C:\Windows\system32\user32.dll
2009-01-10 10:32:15 ----A---- C:\Windows\system32\clusapi.dll
2009-01-10 10:32:14 ----A---- C:\Windows\system32\WSDApi.dll
2009-01-10 10:32:14 ----A---- C:\Windows\system32\vdsdyn.dll
2009-01-10 10:32:14 ----A---- C:\Windows\system32\QAGENTRT.DLL
2009-01-10 10:32:14 ----A---- C:\Windows\system32\diagperf.dll
2009-01-10 10:32:14 ----A---- C:\Windows\system32\d3d9.dll
2009-01-10 10:32:13 ----A---- C:\Windows\system32\winrsmgr.dll
2009-01-10 10:32:13 ----A---- C:\Windows\system32\mmc.exe
2009-01-10 10:32:12 ----A---- C:\Windows\system32\SLC.dll
2009-01-10 10:32:12 ----A---- C:\Windows\system32\mtxclu.dll
2009-01-10 10:32:11 ----A---- C:\Windows\system32\vdsbas.dll
2009-01-10 10:32:11 ----A---- C:\Windows\system32\swprv.dll
2009-01-10 10:32:11 ----A---- C:\Windows\system32\msi.dll
2009-01-10 10:32:11 ----A---- C:\Windows\system32\comctl32.dll
2009-01-10 10:32:09 ----A---- C:\Windows\system32\MSVidCtl.dll
2009-01-10 10:32:09 ----A---- C:\Windows\system32\gpsvc.dll
2009-01-10 10:32:08 ----A---- C:\Windows\system32\XPSSHHDR.dll
2009-01-10 10:32:08 ----A---- C:\Windows\system32\msdtckrm.dll
2009-01-10 10:32:08 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2009-01-10 10:32:07 ----A---- C:\Windows\system32\sbe.dll
2009-01-10 10:32:07 ----A---- C:\Windows\system32\samsrv.dll
2009-01-10 10:32:07 ----A---- C:\Windows\system32\mfc42u.dll
2009-01-10 10:32:07 ----A---- C:\Windows\system32\esent.dll
2009-01-10 10:32:06 ----A---- C:\Windows\system32\wecutil.exe
2009-01-10 10:32:06 ----A---- C:\Windows\system32\usp10.dll
2009-01-10 10:32:06 ----A---- C:\Windows\system32\sdengin2.dll
2009-01-10 10:32:05 ----A---- C:\Windows\system32\mfc42.dll
2009-01-10 10:32:05 ----A---- C:\Windows\system32\gacinstall.dll
2009-01-10 10:32:05 ----A---- C:\Windows\system32\cmipnpinstall.dll
2009-01-10 10:32:05 ----A---- C:\Windows\system32\cmicryptinstall.dll
2009-01-10 10:32:04 ----A---- C:\Windows\system32\comsvcs.dll
2009-01-10 10:32:03 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2009-01-10 10:32:03 ----A---- C:\Windows\system32\crypt32.dll
2009-01-10 10:32:03 ----A---- C:\Windows\system32\certutil.exe
2009-01-10 10:32:02 ----A---- C:\Windows\system32\mswsock.dll
2009-01-10 10:32:01 ----A---- C:\Windows\system32\wmdrmsdk.dll
2009-01-10 10:32:01 ----A---- C:\Windows\system32\oleaut32.dll
2009-01-10 10:32:01 ----A---- C:\Windows\system32\FirewallAPI.dll
2009-01-10 10:32:00 ----A---- C:\Windows\system32\sqlceqp30.dll
2009-01-10 10:32:00 ----A---- C:\Windows\system32\setupapi.dll
2009-01-10 10:32:00 ----A---- C:\Windows\system32\lsm.exe
2009-01-10 10:32:00 ----A---- C:\Windows\system32\bcrypt.dll
2009-01-10 10:31:59 ----A---- C:\Windows\system32\wecsvc.dll
2009-01-10 10:31:59 ----A---- C:\Windows\system32\sdohlp.dll
2009-01-10 10:31:59 ----A---- C:\Windows\system32\schannel.dll
2009-01-10 10:31:59 ----A---- C:\Windows\system32\msv1_0.dll
2009-01-10 10:31:59 ----A---- C:\Windows\system32\iphlpsvc.dll
2009-01-10 10:31:58 ----A---- C:\Windows\system32\wmpmde.dll
2009-01-10 10:31:58 ----A---- C:\Windows\system32\thumbcache.dll
2009-01-10 10:31:58 ----A---- C:\Windows\system32\p2psvc.dll
2009-01-10 10:31:58 ----A---- C:\Windows\system32\eapp3hst.dll
2009-01-10 10:31:57 ----A---- C:\Windows\system32\riched20.dll
2009-01-10 10:31:56 ----A---- C:\Windows\system32\autofmt.exe
2009-01-10 10:31:56 ----A---- C:\Windows\system32\autoconv.exe
2009-01-10 10:31:56 ----A---- C:\Windows\system32\autochk.exe
2009-01-10 10:31:55 ----A---- C:\Windows\system32\WinSAT.exe
2009-01-10 10:31:55 ----A---- C:\Windows\system32\vdsutil.dll
2009-01-10 10:31:55 ----A---- C:\Windows\system32\imapi2fs.dll
2009-01-10 10:31:55 ----A---- C:\Windows\system32\d3d10_1.dll
2009-01-10 10:31:55 ----A---- C:\Windows\system32\authfwcfg.dll
2009-01-10 10:31:54 ----A---- C:\Windows\system32\authui.dll
2009-01-10 10:31:53 ----A---- C:\Windows\system32\wevtapi.dll
2009-01-10 10:31:53 ----A---- C:\Windows\system32\dmvdsitf.dll
2009-01-10 10:31:53 ----A---- C:\Windows\system32\d3d10_1core.dll
2009-01-10 10:31:53 ----A---- C:\Windows\system32\comdlg32.dll
2009-01-10 10:31:53 ----A---- C:\Windows\system32\browseui.dll
2009-01-10 10:31:52 ----A---- C:\Windows\system32\mscories.dll
2009-01-10 10:31:52 ----A---- C:\Windows\system32\comuid.dll
2009-01-10 10:31:51 ----A---- C:\Windows\system32\WSDMon.dll
2009-01-10 10:31:51 ----A---- C:\Windows\system32\eapphost.dll
2009-01-10 10:31:49 ----A---- C:\Windows\system32\wevtfwd.dll
2009-01-10 10:31:49 ----A---- C:\Windows\system32\uexfat.dll
2009-01-10 10:31:48 ----A---- C:\Windows\system32\untfs.dll
2009-01-10 10:31:48 ----A---- C:\Windows\system32\rasmans.dll
2009-01-10 10:31:48 ----A---- C:\Windows\system32\eappcfg.dll
2009-01-10 10:31:47 ----A---- C:\Windows\system32\iassam.dll
2009-01-10 10:31:47 ----A---- C:\Windows\system32\DfrgNtfs.exe
2009-01-10 10:31:46 ----A---- C:\Windows\system32\sqlcese30.dll
2009-01-10 10:31:46 ----A---- C:\Windows\system32\pcaui.dll
2009-01-10 10:31:45 ----A---- C:\Windows\system32\wlansvc.dll
2009-01-10 10:31:45 ----A---- C:\Windows\system32\whealogr.dll
2009-01-10 10:31:35 ----A---- C:\Windows\system32\dot3svc.dll
2009-01-10 10:31:32 ----A---- C:\Windows\system32\rdpwsx.dll
2009-01-10 10:31:31 ----A---- C:\Windows\system32\mssha.dll
2009-01-10 10:31:31 ----A---- C:\Windows\system32\msdrm.dll
2009-01-10 10:31:30 ----A---- C:\Windows\system32\winhttp.dll
2009-01-10 10:31:28 ----A---- C:\Windows\system32\zipfldr.dll
2009-01-10 10:31:28 ----A---- C:\Windows\system32\evr.dll
2009-01-10 10:31:28 ----A---- C:\Windows\system32\dfrgui.exe
2009-01-10 10:31:27 ----A---- C:\Windows\system32\WsmAuto.dll
2009-01-10 10:31:26 ----A---- C:\Windows\system32\rpcss.dll
2009-01-10 10:31:26 ----A---- C:\Windows\system32\nlasvc.dll
2009-01-10 10:31:24 ----A---- C:\Windows\system32\BFE.DLL
2009-01-10 10:31:23 ----A---- C:\Windows\system32\rasppp.dll
2009-01-10 10:31:22 ----A---- C:\Windows\system32\ncrypt.dll
2009-01-10 10:31:20 ----A---- C:\Windows\system32\audiosrv.dll
2009-01-10 10:31:19 ----A---- C:\Windows\system32\msrepl40.dll
2009-01-10 10:31:18 ----A---- C:\Windows\system32\wmdrmdev.dll
2009-01-10 10:31:15 ----A---- C:\Windows\system32\ddraw.dll
2009-01-10 10:31:14 ----A---- C:\Windows\system32\printui.dll
2009-01-10 10:31:13 ----A---- C:\Windows\system32\WsmWmiPl.dll
2009-01-10 10:31:12 ----A---- C:\Windows\system32\rastls.dll
2009-01-10 10:31:12 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2009-01-10 10:31:11 ----A---- C:\Windows\system32\WebClnt.dll
2009-01-10 10:31:10 ----A---- C:\Windows\system32\themecpl.dll
2009-01-10 10:31:10 ----A---- C:\Windows\system32\objsel.dll
2009-01-10 10:31:07 ----A---- C:\Windows\system32\dbghelp.dll
2009-01-10 10:31:05 ----A---- C:\Windows\system32\QAGENT.DLL
2009-01-10 10:31:03 ----A---- C:\Windows\system32\iasnap.dll
2009-01-10 10:31:02 ----A---- C:\Windows\system32\sqlsrv32.dll
2009-01-10 10:31:00 ----A---- C:\Windows\system32\w32time.dll
2009-01-10 10:30:58 ----A---- C:\Windows\system32\PresentationHost.exe
2009-01-10 10:30:58 ----A---- C:\Windows\system32\ncryptui.dll
2009-01-10 10:30:58 ----A---- C:\Windows\system32\icm32.dll
2009-01-10 10:30:57 ----A---- C:\Windows\system32\wmdrmnet.dll
2009-01-10 10:30:57 ----A---- C:\Windows\system32\azroles.dll
2009-01-10 10:30:56 ----A---- C:\Windows\system32\WerFaultSecure.exe
2009-01-10 10:30:56 ----A---- C:\Windows\system32\iprtrmgr.dll
2009-01-10 10:30:55 ----A---- C:\Windows\system32\spoolss.dll
2009-01-10 10:30:55 ----A---- C:\Windows\system32\infocardapi.dll
2009-01-10 10:30:54 ----A---- C:\Windows\system32\msctf.dll
2009-01-10 10:30:54 ----A---- C:\Windows\system32\basecsp.dll
2009-01-10 10:30:53 ----A---- C:\Windows\system32\winsrv.dll
2009-01-10 10:30:53 ----A---- C:\Windows\system32\taskschd.dll
2009-01-10 10:30:53 ----A---- C:\Windows\system32\bcdedit.exe
2009-01-10 10:30:52 ----A---- C:\Windows\system32\wlangpui.dll
2009-01-10 10:30:52 ----A---- C:\Windows\system32\mstlsapi.dll
2009-01-10 10:30:51 ----A---- C:\Windows\system32\scksp.dll
2009-01-10 10:30:51 ----A---- C:\Windows\system32\AudioEng.dll
2009-01-10 10:30:50 ----A---- C:\Windows\system32\winsta.dll
2009-01-10 10:30:50 ----A---- C:\Windows\system32\netprofm.dll
2009-01-10 10:30:50 ----A---- C:\Windows\system32\hcrstco.dll
2009-01-10 10:30:50 ----A---- C:\Windows\system32\dbgeng.dll
2009-01-10 10:30:49 ----A---- C:\Windows\system32\rsaenh.dll
2009-01-10 10:30:49 ----A---- C:\Windows\system32\netcfgx.dll
2009-01-10 10:30:47 ----A---- C:\Windows\system32\taskcomp.dll
2009-01-10 10:30:46 ----A---- C:\Windows\system32\winlogon.exe
2009-01-10 10:30:46 ----A---- C:\Windows\system32\lpksetup.exe
2009-01-10 10:30:46 ----A---- C:\Windows\system32\cdosys.dll
2009-01-10 10:30:45 ----A---- C:\Windows\system32\wercon.exe
2009-01-10 10:30:45 ----A---- C:\Windows\system32\dfshim.dll
2009-01-10 10:30:44 ----A---- C:\Windows\system32\wlansec.dll
2009-01-10 10:30:44 ----A---- C:\Windows\system32\msdtcuiu.dll
2009-01-10 10:30:44 ----A---- C:\Windows\system32\apds.dll
2009-01-10 10:30:43 ----A---- C:\Windows\system32\mprddm.dll
2009-01-10 10:30:43 ----A---- C:\Windows\system32\iasrad.dll
2009-01-10 10:30:43 ----A---- C:\Windows\system32\certcli.dll
2009-01-10 10:30:42 ----A---- C:\Windows\system32\tsgqec.dll
2009-01-10 10:30:42 ----A---- C:\Windows\system32\eapsvc.dll
2009-01-10 10:30:42 ----A---- C:\Windows\system32\AUDIOKSE.dll
2009-01-10 10:30:42 ----A---- C:\Windows\system32\aaclient.dll
2009-01-10 10:30:41 ----A---- C:\Windows\system32\shdocvw.dll
2009-01-10 10:30:41 ----A---- C:\Windows\system32\certmgr.dll
2009-01-10 10:30:41 ----A---- C:\Windows\system32\bcdsrv.dll
2009-01-10 10:30:40 ----A---- C:\Windows\system32\Wldap32.dll
2009-01-10 10:30:40 ----A---- C:\Windows\system32\uDWM.dll
2009-01-10 10:30:40 ----A---- C:\Windows\system32\msidcrl30.dll
2009-01-10 10:30:40 ----A---- C:\Windows\system32\dnsapi.dll
2009-01-10 10:30:39 ----A---- C:\Windows\system32\umpnpmgr.dll
2009-01-10 10:30:38 ----A---- C:\Windows\system32\WMVDECOD.DLL
2009-01-10 10:30:38 ----A---- C:\Windows\system32\pla.dll
2009-01-10 10:30:37 ----A---- C:\Windows\system32\netshell.dll
2009-01-10 10:30:37 ----A---- C:\Windows\system32\dxgi.dll
2009-01-10 10:30:37 ----A---- C:\Windows\system32\dot3gpui.dll
2009-01-10 10:30:36 ----A---- C:\Windows\system32\wmicmiplugin.dll
2009-01-10 10:30:35 ----A---- C:\Windows\system32\shsvcs.dll
2009-01-10 10:30:35 ----A---- C:\Windows\system32\ntprint.dll
2009-01-10 10:30:35 ----A---- C:\Windows\system32\MMDevAPI.dll
2009-01-10 10:30:35 ----A---- C:\Windows\system32\cryptnet.dll
2009-01-10 10:30:35 ----A---- C:\Windows\system32\comsnap.dll
2009-01-10 10:30:34 ----A---- C:\Windows\system32\winmm.dll
2009-01-10 10:30:33 ----A---- C:\Windows\system32\wscsvc.dll
2009-01-10 10:30:33 ----A---- C:\Windows\system32\services.exe
2009-01-10 10:30:32 ----A---- C:\Windows\system32\wscisvif.dll
2009-01-10 10:30:32 ----A---- C:\Windows\system32\synceng.dll
2009-01-10 10:30:32 ----A---- C:\Windows\system32\pnidui.dll
2009-01-10 10:30:32 ----A---- C:\Windows\system32\cmifw.dll
2009-01-10 10:30:31 ----A---- C:\Windows\system32\taskeng.exe
2009-01-10 10:30:31 ----A---- C:\Windows\system32\msconfig.exe
2009-01-10 10:30:31 ----A---- C:\Windows\system32\iassdo.dll
2009-01-10 10:30:31 ----A---- C:\Windows\system32\cipher.exe
2009-01-10 10:30:30 ----A---- C:\Windows\system32\WMVSDECD.DLL
2009-01-10 10:30:30 ----A---- C:\Windows\system32\msjtes40.dll
2009-01-10 10:30:29 ----A---- C:\Windows\system32\imapi2.dll
2009-01-10 10:30:28 ----A---- C:\Windows\system32\uxtheme.dll
2009-01-10 10:30:28 ----A---- C:\Windows\system32\tdh.dll
2009-01-10 10:30:28 ----A---- C:\Windows\system32\SessEnv.dll
2009-01-10 10:30:28 ----A---- C:\Windows\system32\rasapi32.dll
2009-01-10 10:30:28 ----A---- C:\Windows\system32\dmdskmgr.dll
2009-01-10 10:30:27 ----A---- C:\Windows\system32\dot3api.dll
2009-01-10 10:30:27 ----A---- C:\Windows\system32\cmd.exe
2009-01-10 10:30:27 ----A---- C:\Windows\system32\cbsra.exe
2009-01-10 10:30:26 ----A---- C:\Windows\system32\qdvd.dll
2009-01-10 10:30:26 ----A---- C:\Windows\system32\msscp.dll
2009-01-10 10:30:26 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2009-01-10 10:30:25 ----A---- C:\Windows\system32\wlanmsm.dll
2009-01-10 10:30:25 ----A---- C:\Windows\system32\wkssvc.dll
2009-01-10 10:30:25 ----A---- C:\Windows\system32\wevtutil.exe
2009-01-10 10:30:25 ----A---- C:\Windows\system32\srvsvc.dll
2009-01-10 10:30:24 ----A---- C:\Windows\system32\WUDFx.dll
2009-01-10 10:30:24 ----A---- C:\Windows\system32\wlancfg.dll
2009-01-10 10:30:24 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2009-01-10 10:30:24 ----A---- C:\Windows\system32\loadperf.dll
2009-01-10 10:30:24 ----A---- C:\Windows\system32\comres.dll
2009-01-10 10:30:23 ----A---- C:\Windows\system32\mshtmled.dll
2009-01-10 10:30:23 ----A---- C:\Windows\system32\localsec.dll
2009-01-10 10:30:23 ----A---- C:\Windows\system32\diskpart.exe
2009-01-10 10:30:22 ----A---- C:\Windows\system32\rpchttp.dll
2009-01-10 10:30:22 ----A---- C:\Windows\system32\rdpdd.dll
2009-01-10 10:30:22 ----A---- C:\Windows\system32\fontext.dll
2009-01-10 10:30:20 ----A---- C:\Windows\system32\wlanapi.dll
2009-01-10 10:30:20 ----A---- C:\Windows\system32\hnetcfg.dll
2009-01-10 10:30:19 ----A---- C:\Windows\system32\wsqmcons.exe
2009-01-10 10:30:19 ----A---- C:\Windows\system32\WMADMOD.DLL
2009-01-10 10:30:19 ----A---- C:\Windows\system32\WinSATAPI.dll
2009-01-10 10:30:19 ----A---- C:\Windows\system32\dsound.dll
2009-01-10 10:30:18 ----A---- C:\Windows\system32\wlanpref.dll
2009-01-10 10:30:18 ----A---- C:\Windows\system32\NAPMONTR.DLL
2009-01-10 10:30:18 ----A---- C:\Windows\system32\avifil32.dll
2009-01-10 10:30:17 ----A---- C:\Windows\system32\RDPENCDD.dll
2009-01-10 10:30:17 ----A---- C:\Windows\system32\profprov.dll
2009-01-10 10:30:17 ----A---- C:\Windows\system32\filemgmt.dll
2009-01-10 10:30:15 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2009-01-10 10:30:15 ----A---- C:\Windows\system32\MuiUnattend.exe
2009-01-10 10:30:15 ----A---- C:\Windows\system32\dnsrslvr.dll
2009-01-10 10:30:14 ----A---- C:\Windows\system32\wsecedit.dll
2009-01-10 10:30:14 ----A---- C:\Windows\system32\tracerpt.exe
2009-01-10 10:30:14 ----A---- C:\Windows\system32\SLCommDlg.dll
2009-01-10 10:30:13 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2009-01-10 10:30:13 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2009-01-10 10:30:13 ----A---- C:\Windows\system32\P2PGraph.dll
2009-01-10 10:30:13 ----A---- C:\Windows\system32\dwmredir.dll
2009-01-10 10:30:13 ----A---- C:\Windows\system32\dwm.exe
2009-01-10 10:30:13 ----A---- C:\Windows\system32\dhcpcsvc.dll
2009-01-10 10:30:13 ----A---- C:\Windows\system32\apphelp.dll
2009-01-10 10:30:12 ----A---- C:\Windows\system32\wininit.exe
2009-01-10 10:30:12 ----A---- C:\Windows\system32\QSHVHOST.DLL
2009-01-10 10:30:12 ----A---- C:\Windows\system32\iassvcs.dll
2009-01-10 10:30:12 ----A---- C:\Windows\system32\gpresult.exe
2009-01-10 10:30:11 ----A---- C:\Windows\system32\spp.dll
2009-01-10 10:30:11 ----A---- C:\Windows\system32\rasdlg.dll
2009-01-10 10:30:11 ----A---- C:\Windows\system32\azroleui.dll
2009-01-10 10:30:10 ----A---- C:\Windows\system32\mscorier.dll
2009-01-10 10:30:10 ----A---- C:\Windows\system32\iashost.exe
2009-01-10 10:30:10 ----A---- C:\Windows\HelpPane.exe
2009-01-10 10:30:09 ----A---- C:\Windows\system32\mcbuilder.exe
2009-01-10 10:30:08 ----A---- C:\Windows\system32\spwizeng.dll
2009-01-10 10:30:08 ----A---- C:\Windows\system32\SLUI.exe
2009-01-10 10:30:07 ----A---- C:\Windows\system32\wecapi.dll
2009-01-10 10:30:07 ----A---- C:\Windows\system32\srrstr.dll
2009-01-10 10:30:07 ----A---- C:\Windows\system32\rasmontr.dll
2009-01-10 10:30:07 ----A---- C:\Windows\system32\lltdsvc.dll
2009-01-10 10:30:06 ----A---- C:\Windows\system32\unbcl.dll
2009-01-10 10:30:06 ----A---- C:\Windows\system32\tcpmon.dll
2009-01-10 10:30:06 ----A---- C:\Windows\system32\shrink.dll
2009-01-10 10:30:06 ----A---- C:\Windows\system32\msra.exe
2009-01-10 10:30:06 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2009-01-10 10:30:06 ----A---- C:\Windows\system32\gpedit.dll
2009-01-10 10:30:06 ----A---- C:\Windows\system32\brcpl.dll
2009-01-10 10:30:05 ----A---- C:\Windows\system32\WMPEncEn.dll
2009-01-10 10:30:05 ----A---- C:\Windows\system32\oleacc.dll
2009-01-10 10:30:05 ----A---- C:\Windows\system32\iashlpr.dll
2009-01-10 10:30:04 ----A---- C:\Windows\system32\raschap.dll
2009-01-10 10:30:03 ----A---- C:\Windows\system32\regsvc.dll
2009-01-10 10:30:03 ----A---- C:\Windows\system32\framedynos.dll
2009-01-10 10:30:03 ----A---- C:\Windows\system32\advpack.dll
2009-01-10 10:30:02 ----A---- C:\Windows\system32\vsstrace.dll
2009-01-10 10:30:02 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2009-01-10 10:30:02 ----A---- C:\Windows\system32\ntvdm.exe
2009-01-10 10:30:02 ----A---- C:\Windows\system32\ipsmsnap.dll
2009-01-10 10:30:02 ----A---- C:\Windows\system32\fdWSD.dll
2009-01-10 10:30:01 ----A---- C:\Windows\system32\wpdshext.dll
2009-01-10 10:30:01 ----A---- C:\Windows\system32\wdc.dll
2009-01-10 10:30:01 ----A---- C:\Windows\system32\ntlanman.dll
2009-01-10 10:30:01 ----A---- C:\Windows\system32\iedkcs32.dll
2009-01-10 10:30:01 ----A---- C:\Windows\system32\EncDec.dll
2009-01-10 10:30:00 ----A---- C:\Windows\system32\Storprop.dll
2009-01-10 10:30:00 ----A---- C:\Windows\system32\netman.dll
2009-01-10 10:30:00 ----A---- C:\Windows\system32\l2nacp.dll
2009-01-10 10:30:00 ----A---- C:\Windows\system32\dssenh.dll
2009-01-10 10:29:59 ----A---- C:\Windows\system32\ieapfltr.dll
2009-01-10 10:29:59 ----A---- C:\Windows\system32\framedyn.dll
2009-01-10 10:29:59 ----A---- C:\Windows\system32\certreq.exe
2009-01-10 10:29:59 ----A---- C:\Windows\system32\adsnt.dll
2009-01-10 10:29:58 ----A---- C:\Windows\system32\WlanMM.dll
2009-01-10 10:29:58 ----A---- C:\Windows\system32\tcpipcfg.dll
2009-01-10 10:29:58 ----A---- C:\Windows\system32\sxs.dll
2009-01-10 10:29:58 ----A---- C:\Windows\system32\profsvc.dll
2009-01-10 10:29:58 ----A---- C:\Windows\system32\KMSVC.DLL
2009-01-10 10:29:57 ----A---- C:\Windows\system32\WsmProv.dll
2009-01-10 10:29:57 ----A---- C:\Windows\system32\wlanhlp.dll
2009-01-10 10:29:57 ----A---- C:\Windows\system32\WLanConn.dll
2009-01-10 10:29:57 ----A---- C:\Windows\system32\IPBusEnum.dll
2009-01-10 10:29:56 ----A---- C:\Windows\system32\wusa.exe
2009-01-10 10:29:56 ----A---- C:\Windows\system32\WUDFHost.exe
2009-01-10 10:29:56 ----A---- C:\Windows\system32\WerFault.exe
2009-01-10 10:29:56 ----A---- C:\Windows\system32\VAN.dll
2009-01-10 10:29:56 ----A---- C:\Windows\system32\userenv.dll
2009-01-10 10:29:56 ----A---- C:\Windows\system32\umb.dll
2009-01-10 10:29:56 ----A---- C:\Windows\system32\ncsi.dll
2009-01-10 10:29:55 ----A---- C:\Windows\system32\ie4uinit.exe
2009-01-10 10:29:55 ----A---- C:\Windows\system32\fundisc.dll
2009-01-10 10:29:54 ----A---- C:\Windows\system32\cryptui.dll
2009-01-10 10:29:54 ----A---- C:\Windows\system32\catsrvut.dll
2009-01-10 10:29:53 ----A---- C:\Windows\system32\puiobj.dll
2009-01-10 10:29:53 ----A---- C:\Windows\system32\photowiz.dll
2009-01-10 10:29:53 ----A---- C:\Windows\system32\netid.dll
2009-01-10 10:29:53 ----A---- C:\Windows\system32\InkEd.dll
2009-01-10 10:29:53 ----A---- C:\Windows\system32\dps.dll
2009-01-10 10:29:52 ----A---- C:\Windows\system32\WinSCard.dll
2009-01-10 10:29:52 ----A---- C:\Windows\system32\tcpmon.ini
2009-01-10 10:29:52 ----A---- C:\Windows\system32\spbcd.dll
2009-01-10 10:29:52 ----A---- C:\Windows\system32\netcenter.dll
2009-01-10 10:29:52 ----A---- C:\Windows\system32\MdSched.exe
2009-01-10 10:29:52 ----A---- C:\Windows\system32\ipsecsnp.dll
2009-01-10 10:29:51 ----A---- C:\Windows\system32\ws2_32.dll
2009-01-10 10:29:51 ----A---- C:\Windows\system32\winrs.exe
2009-01-10 10:29:51 ----A---- C:\Windows\system32\secur32.dll
2009-01-10 10:29:51 ----A---- C:\Windows\system32\odbcjt32.dll
2009-01-10 10:29:51 ----A---- C:\Windows\system32\ntdsapi.dll
2009-01-10 10:29:51 ----A---- C:\Windows\system32\msinfo32.exe
2009-01-10 10:29:50 ----A---- C:\Windows\system32\prnntfy.dll
2009-01-10 10:29:50 ----A---- C:\Windows\system32\NAPSTAT.EXE
2009-01-10 10:29:49 ----A---- C:\Windows\system32\mblctr.exe
2009-01-10 10:29:48 ----A---- C:\Windows\system32\cryptsvc.dll
2009-01-10 10:29:47 ----A---- C:\Windows\system32\schtasks.exe
2009-01-10 10:29:47 ----A---- C:\Windows\system32\RelMon.dll
2009-01-10 10:29:47 ----A---- C:\Windows\system32\pdh.dll
2009-01-10 10:29:47 ----A---- C:\Windows\system32\msfeeds.dll
2009-01-10 10:29:47 ----A---- C:\Windows\system32\iasacct.dll
2009-01-10 10:29:47 ----A---- C:\Windows\system32\dmdlgs.dll
2009-01-10 10:29:47 ----A---- C:\Windows\system32\dhcpsapi.dll
2009-01-10 10:29:47 ----A---- C:\Windows\system32\activeds.dll
2009-01-10 10:29:46 ----A---- C:\Windows\system32\TSpkg.dll
2009-01-10 10:29:46 ----A---- C:\Windows\system32\netdiagfx.dll
2009-01-10 10:29:46 ----A---- C:\Windows\system32\dfrgfat.exe
2009-01-10 10:29:46 ----A---- C:\Windows\system32\catsrv.dll
2009-01-10 10:29:45 ----A---- C:\Windows\system32\wvc.dll
2009-01-10 10:29:45 ----A---- C:\Windows\system32\winrm.vbs
2009-01-10 10:29:45 ----A---- C:\Windows\system32\qwave.dll
2009-01-10 10:29:45 ----A---- C:\Windows\system32\FirewallControlPanel.exe
2009-01-10 10:29:45 ----A---- C:\Windows\system32\fdWCN.dll
2009-01-10 10:29:44 ----A---- C:\Windows\system32\dot3msm.dll
2009-01-10 10:29:44 ----A---- C:\Windows\system32\dot3cfg.dll
2009-01-10 10:29:44 ----A---- C:\Windows\system32\AudioSes.dll
2009-01-10 10:29:43 ----A---- C:\Windows\system32\rastapi.dll
2009-01-10 10:29:43 ----A---- C:\Windows\system32\netcorehc.dll
2009-01-10 10:29:43 ----A---- C:\Windows\system32\NAPHLPR.DLL
2009-01-10 10:29:43 ----A---- C:\Windows\system32\msacm32.dll
2009-01-10 10:29:43 ----A---- C:\Windows\system32\ifmon.dll
2009-01-10 10:29:42 ----A---- C:\Windows\system32\wow32.dll
2009-01-10 10:29:42 ----A---- C:\Windows\system32\shsetup.dll
2009-01-10 10:29:42 ----A---- C:\Windows\system32\adsldp.dll
2009-01-10 10:29:40 ----A---- C:\Windows\system32\wscntfy.dll
2009-01-10 10:29:40 ----A---- C:\Windows\system32\ntshrui.dll
2009-01-10 10:29:40 ----A---- C:\Windows\system32\msdt.dll
2009-01-10 10:29:40 ----A---- C:\Windows\system32\iasdatastore.dll
2009-01-10 10:29:40 ----A---- C:\Windows\system32\els.dll
2009-01-10 10:29:40 ----A---- C:\Windows\system32\clbcatq.dll
2009-01-10 10:29:39 ----A---- C:\Windows\system32\stobject.dll
2009-01-10 10:29:39 ----A---- C:\Windows\system32\QUTIL.DLL
2009-01-10 10:29:39 ----A---- C:\Windows\system32\iasrecst.dll
2009-01-10 10:29:39 ----A---- C:\Windows\system32\fdSSDP.dll
2009-01-10 10:29:38 ----A---- C:\Windows\system32\sdrsvc.dll
2009-01-10 10:29:38 ----A---- C:\Windows\system32\net1.exe
2009-01-10 10:29:38 ----A---- C:\Windows\system32\ipnathlp.dll
2009-01-10 10:29:37 ----A---- C:\Windows\system32\wlanui.dll
2009-01-10 10:29:37 ----A---- C:\Windows\system32\psisdecd.dll
2009-01-10 10:29:37 ----A---- C:\Windows\system32\dsprop.dll
2009-01-10 10:29:37 ----A---- C:\Windows\system32\Defrag.exe
2009-01-10 10:29:36 ----A---- C:\Windows\system32\wlgpclnt.dll
2009-01-10 10:29:36 ----A---- C:\Windows\system32\upnphost.dll
2009-01-10 10:29:36 ----A---- C:\Windows\system32\smss.exe
2009-01-10 10:29:36 ----A---- C:\Windows\system32\nci.dll
2009-01-10 10:29:36 ----A---- C:\Windows\system32\mprmsg.dll
2009-01-10 10:29:36 ----A---- C:\Windows\system32\adsldpc.dll
2009-01-10 10:29:35 ----A---- C:\Windows\system32\systemcpl.dll
2009-01-10 10:29:35 ----A---- C:\Windows\system32\rasman.dll
2009-01-10 10:29:35 ----A---- C:\Windows\system32\ActiveContentWizard.dll
2009-01-10 10:29:34 ----A---- C:\Windows\system32\t2embed.dll
2009-01-10 10:29:34 ----A---- C:\Windows\system32\rascfg.dll
2009-01-10 10:29:34 ----A---- C:\Windows\system32\P2P.dll
2009-01-10 10:29:34 ----A---- C:\Windows\system32\oleprn.dll
2009-01-10 10:29:34 ----A---- C:\Windows\system32\msftedit.dll
2009-01-10 10:29:34 ----A---- C:\Windows\system32\loghours.dll
2009-01-10 10:29:34 ----A---- C:\Windows\system32\fde.dll
2009-01-10 10:29:34 ----A---- C:\Windows\system32\CompatUI.dll
2009-01-10 10:29:33 ----A---- C:\Windows\system32\Wpc.dll
2009-01-10 10:29:33 ----A---- C:\Windows\system32\MigAutoPlay.exe
2009-01-10 10:29:33 ----A---- C:\Windows\system32\L2SecHC.dll
2009-01-10 10:29:33 ----A---- C:\Windows\system32\dxdiag.exe
2009-01-10 10:29:32 ----A---- C:\Windows\system32\wdigest.dll
2009-01-10 10:29:32 ----A---- C:\Windows\system32\setupcl.exe
2009-01-10 10:29:32 ----A---- C:\Windows\system32\mprdim.dll
2009-01-10 10:29:32 ----A---- C:\Windows\system32\gpapi.dll
2009-01-10 10:29:32 ----A---- C:\Windows\system32\DFDWiz.exe
2009-01-10 10:29:31 ----A---- C:\Windows\system32\msutb.dll
2009-01-10 10:29:30 ----A---- C:\Windows\system32\scansetting.dll
2009-01-10 10:29:30 ----A---- C:\Windows\system32\rtm.dll
2009-01-10 10:29:30 ----A---- C:\Windows\system32\devmgr.dll
2009-01-10 10:29:29 ----A---- C:\Windows\system32\wiaservc.dll
2009-01-10 10:29:29 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2009-01-10 10:29:28 ----A---- C:\Windows\system32\msihnd.dll
2009-01-10 10:29:28 ----A---- C:\Windows\system32\CertEnrollUI.dll
2009-01-10 10:29:27 ----A---- C:\Windows\system32\ifsutil.dll
2009-01-10 10:29:27 ----A---- C:\Windows\system32\actxprxy.dll
2009-01-10 10:29:26 ----A---- C:\Windows\system32\wscapi.dll
2009-01-10 10:29:26 ----A---- C:\Windows\system32\wdi.dll
2009-01-10 10:29:26 ----A---- C:\Windows\system32\kdusb.dll
2009-01-10 10:29:26 ----A---- C:\Windows\system32\dimsroam.dll
2009-01-10 10:29:25 ----A---- C:\Windows\system32\WinFXDocObj.exe
2009-01-10 10:29:25 ----A---- C:\Windows\system32\usbmon.dll
2009-01-10 10:29:25 ----A---- C:\Windows\system32\spoolsv.exe
2009-01-10 10:29:25 ----A---- C:\Windows\system32\mswmdm.dll
2009-01-10 10:29:25 ----A---- C:\Windows\system32\imagehlp.dll
2009-01-10 10:29:25 ----A---- C:\Windows\system32\BOOTVID.DLL
2009-01-10 10:29:25 ----A---- C:\Windows\system32\audiodg.exe
2009-01-10 10:29:24 ----A---- C:\Windows\system32\wlandlg.dll
2009-01-10 10:29:24 ----A---- C:\Windows\system32\vssadmin.exe
2009-01-10 10:29:24 ----A---- C:\Windows\system32\SyncCenter.dll
2009-01-10 10:29:24 ----A---- C:\Windows\system32\regapi.dll
2009-01-10 10:29:24 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2009-01-10 10:29:24 ----A---- C:\Windows\system32\mycomput.dll
2009-01-10 10:29:24 ----A---- C:\Windows\system32\msls31.dll
2009-01-10 10:29:23 ----A---- C:\Windows\system32\uudf.dll
2009-01-10 10:29:23 ----A---- C:\Windows\system32\scecli.dll
2009-01-10 10:29:23 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-01-10 10:29:22 ----A---- C:\Windows\system32\newdev.dll
2009-01-10 10:29:22 ----A---- C:\Windows\system32\mspaint.exe
2009-01-10 10:29:21 ----A---- C:\Windows\system32\sud.dll
2009-01-10 10:29:21 ----A---- C:\Windows\system32\SCardSvr.dll
2009-01-10 10:29:21 ----A---- C:\Windows\system32\samlib.dll
2009-01-10 10:29:21 ----A---- C:\Windows\system32\puiapi.dll
2009-01-10 10:29:21 ----A---- C:\Windows\system32\mstask.dll
2009-01-10 10:29:21 ----A---- C:\Windows\system32\kdcom.dll
2009-01-10 10:29:20 ----A---- C:\Windows\system32\termmgr.dll
2009-01-10 10:29:20 ----A---- C:\Windows\system32\ssdpsrv.dll
2009-01-10 10:29:20 ----A---- C:\Windows\system32\mtxoci.dll
2009-01-10 10:29:20 ----A---- C:\Windows\system32\duser.dll
2009-01-10 10:29:20 ----A---- C:\Windows\system32\adtschema.dll
2009-01-10 10:29:19 ----A---- C:\Windows\system32\tapisrv.dll
2009-01-10 10:29:19 ----A---- C:\Windows\system32\inetpp.dll
2009-01-10 10:29:19 ----A---- C:\Windows\system32\cic.dll
2009-01-10 10:29:18 ----A---- C:\Windows\system32\SLUINotify.dll
2009-01-10 10:29:18 ----A---- C:\Windows\system32\Robocopy.exe
2009-01-10 10:29:18 ----A---- C:\Windows\system32\input.dll
2009-01-10 10:29:18 ----A---- C:\Windows\system32\AzSqlExt.dll
2009-01-10 10:29:17 ----A---- C:\Windows\system32\wisptis.exe
2009-01-10 10:29:17 ----A---- C:\Windows\system32\iasads.dll
2009-01-10 10:29:17 ----A---- C:\Windows\system32\cscapi.dll
2009-01-10 10:29:16 ----A---- C:\Windows\system32\netiohlp.dll
2009-01-10 10:29:16 ----A---- C:\Windows\system32\authz.dll
2009-01-10 10:29:15 ----A---- C:\Windows\system32\WUDFPlatform.dll
2009-01-10 10:29:15 ----A---- C:\Windows\system32\sdshext.dll
2009-01-10 10:29:15 ----A---- C:\Windows\system32\msdt.exe
2009-01-10 10:29:14 ----A---- C:\Windows\system32\webcheck.dll
2009-01-10 10:29:14 ----A---- C:\Windows\system32\verifier.exe
2009-01-10 10:29:14 ----A---- C:\Windows\system32\msdtclog.dll
2009-01-10 10:29:14 ----A---- C:\Windows\system32\d3d8.dll
2009-01-10 10:29:14 ----A---- C:\Windows\system32\cmdial32.dll
2009-01-10 10:29:13 ----A---- C:\Windows\system32\wpcsvc.dll
2009-01-10 10:29:13 ----A---- C:\Windows\system32\themeui.dll
2009-01-10 10:29:13 ----A---- C:\Windows\system32\slcinst.dll
2009-01-10 10:29:12 ----A---- C:\Windows\system32\wintrust.dll
2009-01-10 10:29:12 ----A---- C:\Windows\system32\oledlg.dll
2009-01-10 10:29:12 ----A---- C:\Windows\system32\dxtmsft.dll
2009-01-10 10:29:12 ----A---- C:\Windows\system32\clfsw32.dll
2009-01-10 10:29:11 ----A---- C:\Windows\system32\wpccpl.dll
2009-01-10 10:29:11 ----A---- C:\Windows\system32\vdsldr.exe
2009-01-10 10:29:11 ----A---- C:\Windows\system32\SndVol.exe
2009-01-10 10:29:11 ----A---- C:\Windows\system32\rasgcw.dll
2009-01-10 10:29:11 ----A---- C:\Windows\system32\ntmarta.dll
2009-01-10 10:29:11 ----A---- C:\Windows\system32\mmcbase.dll
2009-01-10 10:29:11 ----A---- C:\Windows\system32\icardie.dll
2009-01-10 10:29:10 ----A---- C:\Windows\system32\WMPhoto.dll
2009-01-10 10:29:10 ----A---- C:\Windows\system32\rasqec.dll
2009-01-10 10:29:10 ----A---- C:\Windows\system32\pnpsetup.dll
2009-01-10 10:29:10 ----A---- C:\Windows\system32\ncobjapi.dll
2009-01-10 10:29:10 ----A---- C:\Windows\system32\msaatext.dll
2009-01-10 10:29:10 ----A---- C:\Windows\system32\mpr.dll
2009-01-10 10:29:10 ----A---- C:\Windows\system32\mlang.dll
2009-01-10 10:29:10 ----A---- C:\Windows\system32\icfupgd.dll
2009-01-10 10:29:09 ----A---- C:\Windows\system32\nslookup.exe
2009-01-10 10:29:09 ----A---- C:\Windows\system32\msrd3x40.dll
2009-01-10 10:29:09 ----A---- C:\Windows\system32\diskraid.exe
2009-01-10 10:29:08 ----A---- C:\Windows\system32\wtsapi32.dll
2009-01-10 10:29:08 ----A---- C:\Windows\system32\wpd_ci.dll
2009-01-10 10:29:08 ----A---- C:\Windows\system32\unlodctr.exe
2009-01-10 10:29:08 ----A---- C:\Windows\system32\syssetup.dll
2009-01-10 10:29:08 ----A---- C:\Windows\system32\slmgr.vbs
2009-01-10 10:29:08 ----A---- C:\Windows\system32\lodctr.exe
2009-01-10 10:29:08 ----A---- C:\Windows\system32\accessibilitycpl.dll
2009-01-10 10:29:07 ----A---- C:\Windows\system32\pnpui.dll
2009-01-10 10:29:07 ----A---- C:\Windows\system32\mscms.dll
2009-01-10 10:29:07 ----A---- C:\Windows\system32\iaspolcy.dll
2009-01-10 10:29:07 ----A---- C:\Windows\system32\extmgr.dll
2009-01-10 10:29:06 ----A---- C:\Windows\system32\ulib.dll
2009-01-10 10:29:06 ----A---- C:\Windows\system32\sethc.exe
2009-01-10 10:29:06 ----A---- C:\Windows\system32\oobefldr.dll
2009-01-10 10:29:06 ----A---- C:\Windows\system32\fontsub.dll
2009-01-10 10:29:06 ----A---- C:\Windows\system32\dxdiagn.dll
2009-01-10 10:29:06 ----A---- C:\Windows\system32\cabinet.dll
2009-01-10 10:29:05 ----A---- C:\Windows\system32\Utilman.exe
2009-01-10 10:29:05 ----A---- C:\Windows\system32\trkwks.dll
2009-01-10 10:29:05 ----A---- C:\Windows\system32\scesrv.dll
2009-01-10 10:29:04 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2009-01-10 10:29:04 ----A---- C:\Windows\system32\unattend.dll
2009-01-10 10:29:04 ----A---- C:\Windows\system32\occache.dll
2009-01-10 10:29:04 ----A---- C:\Windows\system32\lnkstub.exe
2009-01-10 10:29:03 ----A---- C:\Windows\system32\wermgr.exe
2009-01-10 10:29:03 ----A---- C:\Windows\system32\ogldrv.dll
2009-01-10 10:29:03 ----A---- C:\Windows\system32\dfdts.dll
2009-01-10 10:29:03 ----A---- C:\Windows\system32\cabview.dll
2009-01-10 10:29:02 ----A---- C:\Windows\system32\wpcao.dll
2009-01-10 10:29:02 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-01-10 10:29:02 ----A---- C:\Windows\system32\p2pcollab.dll
2009-01-10 10:29:02 ----A---- C:\Windows\system32\msnetobj.dll
2009-01-10 10:29:02 ----A---- C:\Windows\system32\iepeers.dll
2009-01-10 10:29:02 ----A---- C:\Windows\system32\eappgnui.dll
2009-01-10 10:29:02 ----A---- C:\Windows\system32\bthci.dll
2009-01-10 10:29:01 ----A---- C:\Windows\system32\sdspres.dll
2009-01-10 10:29:01 ----A---- C:\Windows\system32\ieaksie.dll
2009-01-10 10:29:01 ----A---- C:\Windows\system32\DHCPQEC.DLL
2009-01-10 10:29:01 ----A---- C:\Windows\system32\basesrv.dll
2009-01-10 10:29:00 ----A---- C:\Windows\system32\mmcss.dll
2009-01-10 10:29:00 ----A---- C:\Windows\system32\dsquery.dll
2009-01-10 10:29:00 ----A---- C:\Windows\system32\drvinst.exe
2009-01-10 10:29:00 ----A---- C:\Windows\system32\dispdiag.exe
2009-01-10 10:28:59 ----A---- C:\Windows\system32\verifier.dll
2009-01-10 10:28:59 ----A---- C:\Windows\system32\RstrtMgr.dll
2009-01-10 10:28:59 ----A---- C:\Windows\system32\efsadu.dll
2009-01-10 10:28:57 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2009-01-10 10:28:57 ----A---- C:\Windows\system32\secproc_ssp.dll
2009-01-10 10:28:57 ----A---- C:\Windows\system32\qedit.dll
2009-01-10 10:28:57 ----A---- C:\Windows\system32\mprapi.dll
2009-01-10 10:28:56 ----A---- C:\Windows\system32\WPDSp.dll
2009-01-10 10:28:56 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2009-01-10 10:28:56 ----A---- C:\Windows\system32\WMVENCOD.DLL
2009-01-10 10:28:56 ----A---- C:\Windows\system32\wercplsupport.dll
2009-01-10 10:28:56 ----A---- C:\Windows\system32\msoeacct.dll
2009-01-10 10:28:56 ----A---- C:\Windows\system32\d3d10core.dll
2009-01-10 10:28:55 ----A---- C:\Windows\system32\wiascanprofiles.dll
2009-01-10 10:28:55 ----A---- C:\Windows\system32\setupugc.exe
2009-01-10 10:28:55 ----A---- C:\Windows\system32\pnrpnsp.dll
2009-01-10 10:28:55 ----A---- C:\Windows\system32\networkmap.dll
2009-01-10 10:28:55 ----A---- C:\Windows\system32\iscsiexe.dll
2009-01-10 10:28:55 ----A---- C:\Windows\system32\icacls.exe
2009-01-10 10:28:55 ----A---- C:\Windows\system32\consent.exe
2009-01-10 10:28:54 ----A---- C:\Windows\system32\wiaaut.dll
2009-01-10 10:28:54 ----A---- C:\Windows\system32\usercpl.dll
2009-01-10 10:28:54 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2009-01-10 10:28:54 ----A---- C:\Windows\system32\pngfilt.dll
2009-01-10 10:28:54 ----A---- C:\Windows\system32\p2pnetsh.dll
2009-01-10 10:28:54 ----A---- C:\Windows\system32\msdmo.dll
2009-01-10 10:28:53 ----A---- C:\Windows\system32\xactsrv.dll
2009-01-10 10:28:53 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
2009-01-10 10:28:53 ----A---- C:\Windows\system32\PNPXAssoc.dll
2009-01-10 10:28:53 ----A---- C:\Windows\system32\msrdc.dll
2009-01-10 10:28:53 ----A---- C:\Windows\system32\lsass.exe
2009-01-10 10:28:53 ----A---- C:\Windows\system32\conime.exe
2009-01-10 10:28:52 ----A---- C:\Windows\system32\autoplay.dll
2009-01-10 10:28:51 ----A---- C:\Windows\system32\eappprxy.dll
2009-01-10 10:28:51 ----A---- C:\Windows\system32\drmmgrtn.dll
2009-01-10 10:28:50 ----A---- C:\Windows\system32\pcadm.dll
2009-01-10 10:28:50 ----A---- C:\Windows\system32\lpk.dll
2009-01-10 10:28:50 ----A---- C:\Windows\system32\dpapimig.exe
2009-01-10 10:28:49 ----A---- C:\Windows\system32\systeminfo.exe
2009-01-10 10:28:49 ----A---- C:\Windows\system32\netcfg.exe
2009-01-10 10:28:49 ----A---- C:\Windows\system32\findstr.exe
2009-01-10 10:28:48 ----A---- C:\Windows\system32\xwizards.dll
2009-01-10 10:28:48 ----A---- C:\Windows\system32\resutils.dll
2009-01-10 10:28:48 ----A---- C:\Windows\system32\msrating.dll
2009-01-10 10:28:48 ----A---- C:\Windows\system32\mfplat.dll
2009-01-10 10:28:48 ----A---- C:\Windows\system32\DWWIN.EXE
2009-01-10 10:28:48 ----A---- C:\Windows\system32\cmdl32.exe
2009-01-10 10:28:47 ----A---- C:\Windows\system32\dssec.dll
2009-01-10 10:28:47 ----A---- C:\Windows\system32\dot3ui.dll
2009-01-10 10:28:47 ----A---- C:\Windows\system32\dfrgifc.exe
2009-01-10 10:28:47 ----A---- C:\Windows\system32\alg.exe
2009-01-10 10:28:46 ----A---- C:\Windows\system32\powercpl.dll
2009-01-10 10:28:46 ----A---- C:\Windows\system32\netprof.dll
2009-01-10 10:28:46 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2009-01-10 10:28:46 ----A---- C:\Windows\system32\dbnetlib.dll
2009-01-10 10:28:45 ----A---- C:\Windows\system32\odbc32.dll
2009-01-10 10:28:45 ----A---- C:\Windows\system32\nshhttp.dll
2009-01-10 10:28:45 ----A---- C:\Windows\system32\imm32.dll
2009-01-10 10:28:45 ----A---- C:\Windows\system32\btpanui.dll
2009-01-10 10:28:45 ----A---- C:\Windows\regedit.exe
2009-01-10 10:28:44 ----A---- C:\Windows\system32\txflog.dll
2009-01-10 10:28:44 ----A---- C:\Windows\system32\feclient.dll
2009-01-10 10:28:44 ----A---- C:\Windows\system32\apircl.dll
2009-01-10 10:28:43 ----A---- C:\Windows\system32\taskkill.exe
2009-01-10 10:28:43 ----A---- C:\Windows\system32\iexpress.exe
2009-01-10 10:28:42 ----A---- C:\Windows\system32\tbssvc.dll
2009-01-10 10:28:42 ----A---- C:\Windows\system32\dxva2.dll
2009-01-10 10:28:42 ----A---- C:\Windows\system32\dwmapi.dll
2009-01-10 10:28:42 ----A---- C:\Windows\system32\bcdprov.dll
2009-01-10 10:28:41 ----A---- C:\Windows\system32\msieftp.dll
2009-01-10 10:28:41 ----A---- C:\Windows\system32\d3d10.dll
2009-01-10 10:28:41 ----A---- C:\Windows\system32\ActionQueue.dll
2009-01-10 10:28:40 ----A---- C:\Windows\system32\svchost.exe
2009-01-10 10:28:40 ----A---- C:\Windows\system32\RASMM.dll
2009-01-10 10:28:40 ----A---- C:\Windows\system32\provthrd.dll
2009-01-10 10:28:40 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2009-01-10 10:28:39 ----A---- C:\Windows\system32\shwebsvc.dll
2009-01-10 10:28:39 ----A---- C:\Windows\system32\EAPQEC.DLL
2009-01-10 10:28:39 ----A---- C:\Windows\system32\dmocx.dll
2009-01-10 10:28:38 ----A---- C:\Windows\system32\syncui.dll
2009-01-10 10:28:38 ----A---- C:\Windows\system32\slwmi.dll
2009-01-10 10:28:38 ----A---- C:\Windows\system32\slcc.dll
2009-01-10 10:28:37 ----A---- C:\Windows\system32\SLCExt.dll
2009-01-10 10:28:37 ----A---- C:\Windows\system32\networkexplorer.dll
2009-01-10 10:28:37 ----A---- C:\Windows\system32\aclui.dll
2009-01-10 10:28:36 ----A---- C:\Windows\system32\WMASF.DLL
2009-01-10 10:28:36 ----A---- C:\Windows\system32\raserver.exe
2009-01-10 10:28:36 ----A---- C:\Windows\system32\PnPUnattend.exe
2009-01-10 10:28:36 ----A---- C:\Windows\system32\olepro32.dll
2009-01-10 10:28:35 ----A---- C:\Windows\system32\dnscacheugc.exe
2009-01-10 10:28:35 ----A---- C:\Windows\system32\brcplsdw.dll
2009-01-10 10:28:35 ----A---- C:\Windows\system32\audiodev.dll
2009-01-10 10:28:34 ----A---- C:\Windows\system32\xcopy.exe
2009-01-10 10:28:34 ----A---- C:\Windows\system32\uxsms.dll
2009-01-10 10:28:34 ----A---- C:\Windows\system32\UIHub.dll
2009-01-10 10:28:34 ----A---- C:\Windows\system32\taskmgr.exe
2009-01-10 10:28:34 ----A---- C:\Windows\system32\ias.dll
2009-01-10 10:28:33 ----A---- C:\Windows\system32\upnp.dll
2009-01-10 10:28:33 ----A---- C:\Windows\system32\reg.exe
2009-01-10 10:28:33 ----A---- C:\Windows\system32\QCLIPROV.DLL
2009-01-10 10:28:33 ----A---- C:\Windows\system32\icsfiltr.dll
2009-01-10 10:28:33 ----A---- C:\Windows\system32\atl.dll
2009-01-10 10:28:33 ----A---- C:\Windows\system32\appinfo.dll
2009-01-10 10:28:32 ----A---- C:\Windows\system32\NapiNSP.dll
2009-01-10 10:28:32 ----A---- C:\Windows\system32\msoert2.dll
2009-01-10 10:28:32 ----A---- C:\Windows\system32\mmcshext.dll
2009-01-10 10:28:32 ----A---- C:\Windows\system32\cmstp.exe
2009-01-10 10:28:31 ----A---- C:\Windows\system32\wlanext.exe
2009-01-10 10:28:31 ----A---- C:\Windows\system32\msjetoledb40.dll
2009-01-10 10:28:31 ----A---- C:\Windows\system32\mountvol.exe
2009-01-10 10:28:31 ----A---- C:\Windows\system32\browser.dll
2009-01-10 10:28:30 ----A---- C:\Windows\system32\wmpdxm.dll
2009-01-10 10:28:30 ----A---- C:\Windows\system32\perfts.dll
2009-01-10 10:28:30 ----A---- C:\Windows\system32\netplwiz.dll
2009-01-10 10:28:30 ----A---- C:\Windows\system32\dskquoui.dll
2009-01-10 10:28:30 ----A---- C:\Windows\system32\certprop.dll
2009-01-10 10:28:30 ----A---- C:\Windows\system32\AuxiliaryDisplayApi.dll
2009-01-10 10:28:29 ----A---- C:\Windows\system32\PING.EXE
2009-01-10 10:28:29 ----A---- C:\Windows\system32\inetmib1.dll
2009-01-10 10:28:29 ----A---- C:\Windows\system32\cewmdm.dll
2009-01-10 10:28:29 ----A---- C:\Windows\system32\bitsadmin.exe
2009-01-10 10:28:28 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2009-01-10 10:28:28 ----A---- C:\Windows\system32\WMVXENCD.DLL
2009-01-10 10:28:28 ----A---- C:\Windows\system32\SoundRecorder.exe
2009-01-10 10:28:28 ----A---- C:\Windows\system32\qcap.dll
2009-01-10 10:28:28 ----A---- C:\Windows\system32\ieakeng.dll
2009-01-10 10:28:28 ----A---- C:\Windows\system32\httpapi.dll
2009-01-10 10:28:27 ----A---- C:\Windows\system32\rekeywiz.exe
2009-01-10 10:28:27 ----A---- C:\Windows\system32\qasf.dll
2009-01-10 10:28:27 ----A---- C:\Windows\system32\dsuiext.dll
2009-01-10 10:28:27 ----A---- C:\Windows\system32\dmusic.dll
2009-01-10 10:28:26 ----A---- C:\Windows\system32\WUDFSvc.dll
2009-01-10 10:28:26 ----A---- C:\Windows\system32\wmpsrcwp.dll
2009-01-10 10:28:26 ----A---- C:\Windows\system32\SysFxUI.dll
2009-01-10 10:28:26 ----A---- C:\Windows\system32\SecEdit.exe
2009-01-10 10:28:26 ----A---- C:\Windows\system32\mscandui.dll
2009-01-10 10:28:26 ----A---- C:\Windows\system32\auditpol.exe
2009-01-10 10:28:26 ----A---- C:\Windows\system32\adsmsext.dll
2009-01-10 10:28:25 ----A---- C:\Windows\system32\Sens.dll
2009-01-10 10:28:25 ----A---- C:\Windows\system32\mtstocom.exe
2009-01-10 10:28:25 ----A---- C:\Windows\system32\makecab.exe
2009-01-10 10:28:25 ----A---- C:\Windows\system32\lsmproxy.dll
2009-01-10 10:28:24 ----A---- C:\Windows\system32\WMVSENCD.DLL
2009-01-10 10:28:24 ----A---- C:\Windows\system32\shimgvw.dll
2009-01-10 10:28:24 ----A---- C:\Windows\system32\dot3gpclnt.dll
2009-01-10 10:28:24 ----A---- C:\Windows\system32\batt.dll
2009-01-10 10:28:23 ----A---- C:\Windows\system32\xwtpw32.dll
2009-01-10 10:28:23 ----A---- C:\Windows\system32\wzcdlg.dll
2009-01-10 10:28:23 ----A---- C:\Windows\system32\sppnp.dll
2009-01-10 10:28:23 ----A---- C:\Windows\system32\seclogon.dll
2009-01-10 10:28:23 ----A---- C:\Windows\system32\sbeio.dll
2009-01-10 10:28:23 ----A---- C:\Windows\system32\ndfapi.dll
2009-01-10 10:28:23 ----A---- C:\Windows\system32\msdadiag.dll
2009-01-10 10:28:22 ----A---- C:\Windows\system32\wiashext.dll
2009-01-10 10:28:22 ----A---- C:\Windows\system32\wiadefui.dll
2009-01-10 10:28:22 ----A---- C:\Windows\system32\msorcl32.dll
2009-01-10 10:28:22 ----A---- C:\Windows\system32\dxtrans.dll
2009-01-10 10:28:22 ----A---- C:\Windows\system32\apss.dll
2009-01-10 10:28:21 ----A---- C:\Windows\system32\wscmisetup.dll
2009-01-10 10:28:21 ----A---- C:\Windows\system32\userinit.exe
2009-01-10 10:28:21 ----A---- C:\Windows\system32\shacct.dll
2009-01-10 10:28:21 ----A---- C:\Windows\system32\p2phost.exe
2009-01-10 10:28:21 ----A---- C:\Windows\system32\napipsec.dll
2009-01-10 10:28:20 ----A---- C:\Windows\system32\wpdwcn.dll
2009-01-10 10:28:20 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2009-01-10 10:28:20 ----A---- C:\Windows\system32\sxstrace.exe
2009-01-10 10:28:20 ----A---- C:\Windows\system32\perfmon.exe
2009-01-10 10:28:20 ----A---- C:\Windows\system32\keymgr.dll
2009-01-10 10:28:20 ----A---- C:\Windows\system32\HelpPaneProxy.dll
2009-01-10 10:28:19 ----A---- C:\Windows\system32\winrshost.exe
2009-01-10 10:28:19 ----A---- C:\Windows\system32\ktmutil.exe
2009-01-10 10:28:19 ----A---- C:\Windows\system32\csrsrv.dll
2009-01-10 10:28:18 ----A---- C:\Windows\system32\tasklist.exe
2009-01-10 10:28:18 ----A---- C:\Windows\system32\TapiMigPlugin.dll
2009-01-10 10:28:17 ----A---- C:\Windows\system32\prntvpt.dll
2009-01-10 10:28:17 ----A---- C:\Windows\system32\notepad.exe
2009-01-10 10:28:17 ----A---- C:\Windows\system32\MP4SDECD.DLL
2009-01-10 10:28:17 ----A---- C:\Windows\system32\ftp.exe
2009-01-10 10:28:17 ----A---- C:\Windows\system32\fmifs.dll
2009-01-10 10:28:17 ----A---- C:\Windows\system32\colorui.dll
2009-01-10 10:28:17 ----A---- C:\Windows\notepad.exe
2009-01-10 10:28:16 ----A---- C:\Windows\system32\UIAutomationCore.dll
2009-01-10 10:28:16 ----A---- C:\Windows\system32\msiexec.exe
2009-01-10 10:28:16 ----A---- C:\Windows\system32\d3dim700.dll
2009-01-10 10:28:15 ----A---- C:\Windows\system32\netiougc.exe
2009-01-10 10:28:15 ----A---- C:\Windows\system32\cryptdll.dll
2009-01-10 10:28:14 ----A---- C:\Windows\system32\wscproxystub.dll
2009-01-10 10:28:14 ----A---- C:\Windows\system32\winethc.dll
2009-01-10 10:28:14 ----A---- C:\Windows\system32\takeown.exe
2009-01-10 10:28:14 ----A---- C:\Windows\system32\PnPutil.exe
2009-01-10 10:28:14 ----A---- C:\Windows\system32\pcasvc.dll
2009-01-10 10:28:14 ----A---- C:\Windows\system32\nshipsec.dll
2009-01-10 10:28:14 ----A---- C:\Windows\system32\msimtf.dll
2009-01-10 10:28:14 ----A---- C:\Windows\system32\driverquery.exe
2009-01-10 10:28:13 ----A---- C:\Windows\system32\wmiprop.dll
2009-01-10 10:28:13 ----A---- C:\Windows\system32\txfw32.dll
2009-01-10 10:28:13 ----A---- C:\Windows\system32\pots.dll
2009-01-10 10:28:13 ----A---- C:\Windows\system32\inseng.dll
2009-01-10 10:28:12 ----A---- C:\Windows\system32\wpdbusenum.dll
2009-01-10 10:28:12 ----A---- C:\Windows\system32\powrprof.dll
2009-01-10 10:28:12 ----A---- C:\Windows\system32\findnetprinters.dll
2009-01-10 10:28:12 ----A---- C:\Windows\system32\capisp.dll
2009-01-10 10:28:11 ----A---- C:\Windows\system32\rasplap.dll
2009-01-10 10:28:11 ----A---- C:\Windows\system32\fsutil.exe
2009-01-10 10:28:11 ----A---- C:\Windows\system32\dnshc.dll
2009-01-10 10:28:10 ----A---- C:\Windows\system32\shrpubw.exe
2009-01-10 10:28:10 ----A---- C:\Windows\system32\sendmail.dll
2009-01-10 10:28:10 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2009-01-10 10:28:10 ----A---- C:\Windows\system32\perfnet.dll
2009-01-10 10:28:10 ----A---- C:\Windows\system32\nsisvc.dll
2009-01-10 10:28:09 ----A---- C:\Windows\system32\WLanHC.dll
2009-01-10 10:28:09 ----A---- C:\Windows\system32\wextract.exe
2009-01-10 10:28:09 ----A---- C:\Windows\system32\shgina.dll
2009-01-10 10:28:09 ----A---- C:\Windows\system32\sfc_os.dll
2009-01-10 10:28:09 ----A---- C:\Windows\system32\olecli32.dll
2009-01-10 10:28:09 ----A---- C:\Windows\system32\luainstall.dll
2009-01-10 10:28:09 ----A---- C:\Windows\system32\imapi.dll
2009-01-10 10:28:09 ----A---- C:\Windows\system32\fdPHost.dll
2009-01-10 10:28:09 ----A---- C:\Windows\system32\cmmon32.exe
2009-01-10 10:28:08 ----A---- C:\Windows\system32\TMM.dll
2009-01-10 10:28:08 ----A---- C:\Windows\system32\rshx32.dll
2009-01-10 10:28:08 ----A---- C:\Windows\system32\RpcPing.exe
2009-01-10 10:28:08 ----A---- C:\Windows\system32\ktmw32.dll
2009-01-10 10:28:08 ----A---- C:\Windows\system32\d3dim.dll
2009-01-10 10:28:08 ----A---- C:\Windows\system32\compstui.dll
2009-01-10 10:28:07 ----A---- C:\Windows\system32\WMADMOE.DLL
2009-01-10 10:28:07 ----A---- C:\Windows\system32\wiaacmgr.exe
2009-01-10 10:28:07 ----A---- C:\Windows\system32\version.dll
2009-01-10 10:28:07 ----A---- C:\Windows\system32\runonce.exe
2009-01-10 10:28:07 ----A---- C:\Windows\system32\dimsjob.dll
2009-01-10 10:28:06 ----A---- C:\Windows\system32\unregmp2.exe
2009-01-10 10:28:06 ----A---- C:\Windows\system32\UI0Detect.exe
2009-01-10 10:28:06 ----A---- C:\Windows\system32\getmac.exe
2009-01-10 10:28:06 ----A---- C:\Windows\system32\cmlua.dll
2009-01-10 10:28:05 ----A---- C:\Windows\system32\net.exe
2009-01-10 10:28:05 ----A---- C:\Windows\system32\msvfw32.dll
2009-01-10 10:28:05 ----A---- C:\Windows\system32\mdminst.dll
2009-01-10 10:28:05 ----A---- C:\Windows\system32\dsauth.dll
2009-01-10 10:28:04 ----A---- C:\Windows\system32\w32tm.exe
2009-01-10 10:28:04 ----A---- C:\Windows\system32\MPG4DECD.DLL
2009-01-10 10:28:04 ----A---- C:\Windows\system32\MP43DECD.DLL
2009-01-10 10:28:04 ----A---- C:\Windows\system32\imgutil.dll
2009-01-10 10:28:03 ----A---- C:\Windows\system32\wmpshell.dll
2009-01-10 10:28:03 ----A---- C:\Windows\system32\tscupgrd.exe
2009-01-10 10:28:02 ----A---- C:\Windows\system32\sdchange.exe
2009-01-10 10:28:02 ----A---- C:\Windows\system32\migisol.dll
2009-01-10 10:28:02 ----A---- C:\Windows\system32\ipconfig.exe
2009-01-10 10:28:02 ----A---- C:\Windows\system32\fdeploy.dll
2009-01-10 10:28:02 ----A---- C:\Windows\system32\credui.dll
2009-01-10 10:28:02 ----A---- C:\Windows\system32\ACW.exe
2009-01-10 10:28:01 ----A---- C:\Windows\system32\PortableDeviceWiaCompat.dll
2009-01-10 10:28:01 ----A---- C:\Windows\system32\pnpts.dll
2009-01-10 10:28:01 ----A---- C:\Windows\system32\dispci.dll
2009-01-10 10:28:01 ----A---- C:\Windows\system32\diantz.exe
2009-01-10 10:28:01 ----A---- C:\Windows\system32\comrepl.dll
2009-01-10 10:28:01 ----A---- C:\Windows\system32\cmutil.dll
2009-01-10 10:28:00 ----A---- C:\Windows\system32\sfc.exe
2009-01-10 10:28:00 ----A---- C:\Windows\system32\dinput8.dll
2009-01-10 10:27:59 ----A---- C:\Windows\system32\TSTheme.exe
2009-01-10 10:27:58 ----A---- C:\Windows\system32\remotepg.dll
2009-01-10 10:27:58 ----A---- C:\Windows\system32\pdhui.dll
2009-01-10 10:27:58 ----A---- C:\Windows\system32\nlaapi.dll
2009-01-10 10:27:58 ----A---- C:\Windows\system32\ExplorerFrame.dll
2009-01-10 10:27:58 ----A---- C:\Windows\system32\EncDump.dll
2009-01-10 10:27:58 ----A---- C:\Windows\system32\cfgbkend.dll
2009-01-10 10:27:57 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2009-01-10 10:27:57 ----A---- C:\Windows\system32\wmidx.dll
2009-01-10 10:27:57 ----A---- C:\Windows\system32\vdmredir.dll
2009-01-10 10:27:57 ----A---- C:\Windows\system32\utildll.dll
2009-01-10 10:27:57 ----A---- C:\Windows\system32\softkbd.dll
2009-01-10 10:27:57 ----A---- C:\Windows\system32\fwcfg.dll
2009-01-10 10:27:57 ----A---- C:\Windows\system32\expand.exe
2009-01-10 10:27:57 ----A---- C:\Windows\system32\colbact.dll
2009-01-10 10:27:56 ----A---- C:\Windows\system32\TpmInit.exe
2009-01-10 10:27:56 ----A---- C:\Windows\system32\modemui.dll
2009-01-10 10:27:56 ----A---- C:\Windows\system32\hlink.dll
2009-01-10 10:27:56 ----A---- C:\Windows\system32\bridgeunattend.exe
2009-01-10 10:27:55 ----A---- C:\Windows\system32\msfeedsbs.dll
2009-01-10 10:27:55 ----A---- C:\Windows\system32\McxDriv.dll
2009-01-10 10:27:55 ----A---- C:\Windows\system32\iernonce.dll
2009-01-10 10:27:55 ----A---- C:\Windows\system32\amstream.dll
2009-01-10 10:27:54 ----A---- C:\Windows\system32\wmvdspa.dll
2009-01-10 10:27:54 ----A---- C:\Windows\system32\sti_ci.dll
2009-01-10 10:27:54 ----A---- C:\Windows\system32\bootcfg.exe
2009-01-10 10:27:53 ----A---- C:\Windows\system32\wsnmp32.dll
2009-01-10 10:27:53 ----A---- C:\Windows\system32\rdrleakdiag.exe
2009-01-10 10:27:53 ----A---- C:\Windows\system32\esentutl.exe
2009-01-10 10:27:52 ----A---- C:\Windows\system32\waitfor.exe
2009-01-10 10:27:52 ----A---- C:\Windows\system32\vds_ps.dll
2009-01-10 10:27:52 ----A---- C:\Windows\system32\logman.exe
2009-01-10 10:27:52 ----A---- C:\Windows\system32\cmcfg32.dll
2009-01-10 10:27:52 ----A---- C:\Windows\system32\admparse.dll
2009-01-10 10:27:51 ----A---- C:\Windows\system32\tabcal.exe
2009-01-10 10:27:51 ----A---- C:\Windows\system32\qdv.dll
2009-01-10 10:27:51 ----A---- C:\Windows\system32\osblprov.dll
2009-01-10 10:27:51 ----A---- C:\Windows\system32\odbccp32.dll
2009-01-10 10:27:51 ----A---- C:\Windows\system32\iscsium.dll
2009-01-10 10:27:51 ----A---- C:\Windows\system32\dpnet.dll
2009-01-10 10:27:49 ----A---- C:\Windows\system32\wfapigp.dll
2009-01-10 10:27:49 ----A---- C:\Windows\system32\shutdown.exe
2009-01-10 10:27:49 ----A---- C:\Windows\system32\msdtc.exe
2009-01-10 10:27:49 ----A---- C:\Windows\system32\cacls.exe
2009-01-10 10:27:48 ----A---- C:\Windows\system32\wmpcm.dll
2009-01-10 10:27:48 ----A---- C:\Windows\system32\DpiScaling.exe
2009-01-10 10:27:47 ----A---- C:\Windows\system32\olesvr32.dll
2009-01-10 10:27:47 ----A---- C:\Windows\system32\dmsynth.dll
2009-01-10 10:27:47 ----A---- C:\Windows\system32\COLORCNV.DLL
2009-01-10 10:27:46 ----A---- C:\Windows\system32\rasauto.dll
2009-01-10 10:27:46 ----A---- C:\Windows\system32\olethk32.dll
2009-01-10 10:27:45 ----A---- C:\Windows\system32\wpnpinst.exe
2009-01-10 10:27:45 ----A---- C:\Windows\system32\werdiagcontroller.dll
2009-01-10 10:27:45 ----A---- C:\Windows\system32\mfvdsp.dll
2009-01-10 10:27:45 ----A---- C:\Windows\system32\iscsiwmi.dll
2009-01-10 10:27:44 ----A---- C:\Windows\system32\mstext40.dll
2009-01-10 10:27:43 ----A---- C:\Windows\system32\wavemsp.dll
2009-01-10 10:27:43 ----A---- C:\Windows\system32\ufat.dll
2009-01-10 10:27:43 ----A---- C:\Windows\system32\SLLUA.exe
2009-01-10 10:27:42 ----A---- C:\Windows\system32\sxproxy.dll
2009-01-10 10:27:42 ----A---- C:\Windows\system32\at.exe
2009-01-10 10:27:41 ----A---- C:\Windows\system32\rgb9rast.dll
2009-01-10 10:27:41 ----A---- C:\Windows\system32\odbctrac.dll
2009-01-10 10:27:41 ----A---- C:\Windows\system32\networkitemfactory.dll
2009-01-10 10:27:41 ----A---- C:\Windows\system32\msctfui.dll
2009-01-10 10:27:40 ----A---- C:\Windows\system32\ucsvc.exe
2009-01-10 10:27:40 ----A---- C:\Windows\system32\mshta.exe
2009-01-10 10:27:40 ----A---- C:\Windows\system32\convert.exe
2009-01-10 10:27:39 ----A---- C:\Windows\system32\xmlprovi.dll
2009-01-10 10:27:39 ----A---- C:\Windows\system32\RegCtrl.dll
2009-01-10 10:27:39 ----A---- C:\Windows\system32\licmgr10.dll
2009-01-10 10:27:39 ----A---- C:\Windows\system32\itss.dll
2009-01-10 10:27:38 ----A---- C:\Windows\system32\csrstub.exe
2009-01-10 10:27:37 ----A---- C:\Windows\system32\TimeDateMUICallback.dll
2009-01-10 10:27:37 ----A---- C:\Windows\system32\mobsync.exe
2009-01-10 10:27:37 ----A---- C:\Windows\system32\bitsigd.dll
2009-01-10 10:27:36 ----A---- C:\Windows\system32\prevhost.exe
2009-01-10 10:27:36 ----A---- C:\Windows\system32\netbtugc.exe
2009-01-10 10:27:36 ----A---- C:\Windows\system32\iscsied.dll
2009-01-10 10:27:36 ----A---- C:\Windows\system32\AuthFWGP.dll
2009-01-10 10:27:35 ----A---- C:\Windows\system32\tbs.dll
2009-01-10 10:27:35 ----A---- C:\Windows\system32\rasdiag.dll
2009-01-10 10:27:35 ----A---- C:\Windows\system32\dskquota.dll
2009-01-10 10:27:35 ----A---- C:\Windows\system32\AtBroker.exe
2009-01-10 10:27:34 ----A---- C:\Windows\system32\unattendedjoin.exe
2009-01-10 10:27:34 ----A---- C:\Windows\system32\ocsetup.exe
2009-01-10 10:27:34 ----A---- C:\Windows\system32\GuidedHelp.dll
2009-01-10 10:27:34 ----A---- C:\Windows\system32\cscdll.dll
2009-01-10 10:27:33 ----A---- C:\Windows\system32\setupcln.dll
2009-01-10 10:27:33 ----A---- C:\Windows\system32\fphc.dll
2009-01-10 10:27:33 ----A---- C:\Windows\system32\dmime.dll
2009-01-10 10:27:32 ----A---- C:\Windows\system32\winnsi.dll
2009-01-10 10:27:32 ----A---- C:\Windows\system32\mydocs.dll
2009-01-10 10:27:32 ----A---- C:\Windows\system32\l2gpstore.dll
2009-01-10 10:27:32 ----A---- C:\Windows\system32\cmpbk32.dll
2009-01-10 10:27:30 ----A---- C:\Windows\system32\regini.exe
2009-01-10 10:27:30 ----A---- C:\Windows\system32\napdsnap.dll
2009-01-10 10:27:30 ----A---- C:\Windows\system32\dsdmo.dll
2009-01-10 10:27:29 ----A---- C:\Windows\system32\usbui.dll
2009-01-10 10:27:29 ----A---- C:\Windows\system32\odbccu32.dll
2009-01-10 10:27:29 ----A---- C:\Windows\system32\odbccr32.dll
2009-01-10 10:27:29 ----A---- C:\Windows\system32\msident.dll
2009-01-10 10:27:29 ----A---- C:\Windows\system32\msdart.dll
2009-01-10 10:27:29 ----A---- C:\Windows\system32\dot3dlg.dll
2009-01-10 10:27:29 ----A---- C:\Windows\system32\devenum.dll
2009-01-10 10:27:29 ----A---- C:\Windows\system32\apilogen.dll
2009-01-10 10:27:29 ----A---- C:\Windows\system32\amxread.dll
2009-01-10 10:27:28 ----A---- C:\Windows\system32\VIDRESZR.DLL
2009-01-10 10:27:28 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2009-01-10 10:27:28 ----A---- C:\Windows\system32\cmstplua.dll
2009-01-10 10:27:27 ----A---- C:\Windows\system32\wpclsp.dll
2009-01-10 10:27:27 ----A---- C:\Windows\system32\WINSRPC.DLL
2009-01-10 10:27:27 ----A---- C:\Windows\system32\RacAgent.exe
2009-01-10 10:27:27 ----A---- C:\Windows\system32\mtxlegih.dll
2009-01-10 10:27:27 ----A---- C:\Windows\system32\mtxdm.dll
2009-01-10 10:27:27 ----A---- C:\Windows\system32\gpupdate.exe
2009-01-10 10:27:27 ----A---- C:\Windows\system32\avrt.dll
2009-01-10 10:27:26 ----A---- C:\Windows\system32\vss_ps.dll
2009-01-10 10:27:26 ----A---- C:\Windows\system32\upnpcont.exe
2009-01-10 10:27:26 ----A---- C:\Windows\system32\srwmi.dll
2009-01-10 10:27:26 ----A---- C:\Windows\system32\nsi.dll
2009-01-10 10:27:26 ----A---- C:\Windows\system32\nbtstat.exe
2009-01-10 10:27:25 ----A---- C:\Windows\system32\mfcsubs.dll
2009-01-10 10:27:25 ----A---- C:\Windows\system32\graftabl.com
2009-01-10 10:27:24 ----A---- C:\Windows\system32\rasphone.exe
2009-01-10 10:27:24 ----A---- C:\Windows\system32\netevent.dll
2009-01-10 10:27:23 ----A---- C:\Windows\system32\wsock32.dll
2009-01-10 10:27:23 ----A---- C:\Windows\system32\WavDest.dll
2009-01-10 10:27:23 ----A---- C:\Windows\system32\vfwwdm32.dll
2009-01-10 10:27:23 ----A---- C:\Windows\system32\syskey.exe
2009-01-10 10:27:22 ----A---- C:\Windows\system32\wiarpc.dll
2009-01-10 10:27:22 ----A---- C:\Windows\system32\ROUTE.EXE
2009-01-10 10:27:22 ----A---- C:\Windows\system32\odbcbcp.dll
2009-01-10 10:27:22 ----A---- C:\Windows\system32\ndfetw.dll
2009-01-10 10:27:22 ----A---- C:\Windows\system32\msexcl40.dll
2009-01-10 10:27:22 ----A---- C:\Windows\system32\MP3DMOD.DLL
2009-01-10 10:27:22 ----A---- C:\Windows\system32\extrac32.exe
2009-01-10 10:27:22 ----A---- C:\Windows\system32\eventcls.dll
2009-01-10 10:27:21 ----A---- C:\Windows\system32\procinst.dll
2009-01-10 10:27:21 ----A---- C:\Windows\system32\csrss.exe
2009-01-10 10:27:20 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2009-01-10 10:27:20 ----A---- C:\Windows\system32\wiadss.dll
2009-01-10 10:27:20 ----A---- C:\Windows\system32\TabbtnEx.dll
2009-01-10 10:27:20 ----A---- C:\Windows\system32\d3dxof.dll
2009-01-10 10:27:20 ----A---- C:\Windows\system32\atmfd.dll
2009-01-10 10:27:19 ----A---- C:\Windows\system32\WlanMmHC.dll
2009-01-10 10:27:19 ----A---- C:\Windows\system32\psbase.dll
2009-01-10 10:27:19 ----A---- C:\Windows\system32\inetppui.dll
2009-01-10 10:27:19 ----A---- C:\Windows\system32\dmscript.dll
2009-01-10 10:27:18 ----A---- C:\Windows\system32\Tabbtn.dll
2009-01-10 10:27:18 ----A---- C:\Windows\system32\CertEnrollCtrl.exe
2009-01-10 10:27:18 ----A---- C:\Windows\fveupdate.exe
2009-01-10 10:27:17 ----A---- C:\Windows\system32\msxbde40.dll
2009-01-10 10:27:17 ----A---- C:\Windows\system32\dmloader.dll
2009-01-10 10:27:15 ----A---- C:\Windows\system32\wshcon.dll
2009-01-10 10:27:15 ----A---- C:\Windows\system32\Netplwiz.exe
2009-01-10 10:27:15 ----A---- C:\Windows\system32\msltus40.dll
2009-01-10 10:27:15 ----A---- C:\Windows\system32\credssp.dll
2009-01-10 10:27:14 ----A---- C:\Windows\system32\mspbde40.dll
2009-01-10 10:27:13 ----A---- C:\Windows\system32\icsunattend.exe
2009-01-10 10:27:12 ----A---- C:\Windows\system32\WsmRes.dll
2009-01-10 10:27:12 ----A---- C:\Windows\system32\PlaySndSrv.dll
2009-01-10 10:27:11 ----A---- C:\Windows\system32\WSHTCPIP.DLL
2009-01-10 10:27:11 ----A---- C:\Windows\system32\wship6.dll
2009-01-10 10:27:11 ----A---- C:\Windows\system32\sxsstore.dll
2009-01-10 10:27:11 ----A---- C:\Windows\system32\lltdapi.dll
2009-01-10 10:27:11 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2009-01-10 10:27:10 ----A---- C:\Windows\system32\msvidc32.dll
2009-01-10 10:27:10 ----A---- C:\Windows\system32\localui.dll
2009-01-10 10:27:10 ----A---- C:\Windows\system32\ComputerDefaults.exe
2009-01-10 10:27:09 ----A---- C:\Windows\system32\setupSNK.exe
2009-01-10 10:27:09 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2009-01-10 10:27:09 ----A---- C:\Windows\system32\icaapi.dll
2009-01-10 10:27:08 ----A---- C:\Windows\system32\slwga.dll
2009-01-10 10:27:08 ----A---- C:\Windows\system32\OptionalFeatures.exe
2009-01-10 10:27:07 ----A---- C:\Windows\system32\sbunattend.exe
2009-01-10 10:27:06 ----A---- C:\Windows\system32\dmutil.dll
2009-01-10 10:27:05 ----A---- C:\Windows\system32\spopk.dll
2009-01-10 10:27:05 ----A---- C:\Windows\system32\serialui.dll
2009-01-10 10:27:04 ----A---- C:\Windows\system32\usbperf.dll
2009-01-10 10:27:04 ----A---- C:\Windows\system32\NcdProp.dll
2009-01-10 10:27:02 ----A---- C:\Windows\system32\cofiredm.dll
2009-01-10 10:27:01 ----A---- C:\Windows\system32\odbcconf.dll
2009-01-10 10:27:01 ----A---- C:\Windows\system32\msfeedssync.exe
2009-01-10 10:27:00 ----A---- C:\Windows\system32\hbaapi.dll
2009-01-10 10:26:59 ----A---- C:\Windows\system32\ieencode.dll
2009-01-10 10:26:58 ----A---- C:\Windows\system32\rasctrs.dll
2009-01-10 10:26:58 ----A---- C:\Windows\system32\msobjs.dll
2009-01-10 10:26:57 ----A---- C:\Windows\system32\corpol.dll
2009-01-10 10:26:56 ----A---- C:\Windows\system32\hnetmon.dll
2009-01-10 10:26:55 ----A---- C:\Windows\system32\midimap.dll
2009-01-10 10:26:54 ----A---- C:\Windows\system32\vdmdbg.dll
2009-01-10 10:26:54 ----A---- C:\Windows\system32\InfDefaultInstall.exe
2009-01-10 10:26:54 ----A---- C:\Windows\system32\esentprf.dll
2009-01-10 10:26:53 ----A---- C:\Windows\system32\url.dll
2009-01-10 10:26:53 ----A---- C:\Windows\system32\nlsbres.dll
2009-01-10 10:26:53 ----A---- C:\Windows\system32\LogonUI.exe
2009-01-10 10:26:53 ----A---- C:\Windows\system32\iprtprio.dll
2009-01-10 10:26:45 ----A---- C:\Windows\system32\osbaseln.dll
2009-01-10 10:26:45 ----A---- C:\Windows\system32\cfgmgr32.dll
2009-01-10 10:26:42 ----A---- C:\Windows\system32\msisip.dll
2009-01-10 10:26:40 ----A---- C:\Windows\system32\msmmsp.dll
2009-01-10 10:26:36 ----A---- C:\Windows\system32\winusb.dll
2009-01-10 10:26:36 ----A---- C:\Windows\system32\dispex.dll
2009-01-10 10:26:35 ----A---- C:\Windows\system32\rdpcfgex.dll
2009-01-10 10:26:27 ----A---- C:\Windows\system32\Nlsdl.dll
2009-01-10 10:26:25 ----A---- C:\Windows\system32\riched32.dll
2009-01-10 10:26:25 ----A---- C:\Windows\system32\msidle.dll
2009-01-10 10:26:24 ----A---- C:\Windows\system32\spwmp.dll
2009-01-10 10:26:24 ----A---- C:\Windows\system32\idndl.dll
2009-01-10 10:26:20 ----A---- C:\Windows\system32\KBDKOR.DLL
2009-01-10 10:26:20 ----A---- C:\Windows\system32\KBDJPN.DLL
2009-01-10 10:26:17 ----A---- C:\Windows\system32\iscsilog.dll
2009-01-10 10:26:13 ----A---- C:\Windows\system32\WsmCl.dll
2009-01-10 10:26:12 ----A---- C:\Windows\system32\vga256.dll
2009-01-10 10:26:12 ----A---- C:\Windows\system32\dxmasf.dll
2009-01-10 10:26:11 ----A---- C:\Windows\system32\wmploc.DLL
2009-01-10 10:26:11 ----A---- C:\Windows\system32\tsddd.dll
2009-01-10 10:26:11 ----A---- C:\Windows\system32\framebuf.dll
2009-01-10 10:26:10 ----A---- C:\Windows\system32\vga64k.dll
2009-01-10 10:26:09 ----A---- C:\Windows\system32\vga.dll
2009-01-10 10:26:08 ----A---- C:\Windows\system32\bootstr.dll
2009-01-10 10:26:07 ----A---- C:\Windows\system32\dmdskres2.dll
2009-01-10 10:26:06 ----A---- C:\Windows\system32\spwizres.dll
2009-01-10 10:26:06 ----A---- C:\Windows\system32\f3ahvoas.dll
2009-01-10 10:25:58 ----A---- C:\Windows\system32\gatherWiredInfo.vbs
2009-01-10 10:25:55 ----A---- C:\Windows\system32\gatherWirelessInfo.vbs
2009-01-10 10:25:54 ----A---- C:\Windows\system32\fsmgmt.msc
2009-01-10 10:25:38 ----A---- C:\Windows\system32\perfmon.msc
2009-01-10 10:25:37 ----A---- C:\Windows\system32\vsp1cln.exe
2009-01-10 10:24:20 ----A---- C:\Windows\system32\xmllite.dll
2009-01-10 10:24:19 ----A---- C:\Windows\system32\wbemcomn.dll
2009-01-10 10:24:12 ----A---- C:\Windows\system32\sqmapi.dll
2009-01-10 10:24:12 ----A---- C:\Windows\system32\SmiInstaller.dll
2009-01-10 10:24:12 ----A---- C:\Windows\system32\SmiEngine.dll
2009-01-10 10:24:05 ----A---- C:\Windows\system32\wdscore.dll
2009-01-10 10:24:05 ----A---- C:\Windows\system32\PkgMgr.exe
2009-01-10 10:23:42 ----A---- C:\Windows\system32\drvstore.dll
2009-01-10 10:23:41 ----A---- C:\Windows\system32\mspatcha.dll
2009-01-10 10:23:41 ----A---- C:\Windows\system32\msdelta.dll
2009-01-10 10:23:41 ----A---- C:\Windows\system32\dpx.dll
2009-01-09 19:09:07 ----D---- C:\Program Files\iPod
2009-01-09 19:09:04 ----D---- C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2009-01-09 19:09:04 ----D---- C:\Program Files\iTunes
2009-01-09 17:12:53 ----D---- C:\Users\rac\AppData\Roaming\Apple Computer
2009-01-09 17:03:02 ----A---- C:\Windows\system32\es.dll
2009-01-09 16:48:55 ----D---- C:\Users\rac\AppData\Roaming\MySpace
2009-01-09 15:39:48 ----D---- C:\Program Files\MySpace
2009-01-08 23:48:45 ----DC---- C:\Windows\system32\DRVSTORE
2009-01-08 23:48:45 ----A---- C:\Windows\system32\GEARAspi.dll
2009-01-08 23:46:55 ----D---- C:\Program Files\Bonjour
2009-01-08 23:44:55 ----D---- C:\Program Files\QuickTime
2009-01-08 23:44:53 ----D---- C:\ProgramData\Apple Computer
2009-01-08 23:44:03 ----D---- C:\Program Files\Apple Software Update
2009-01-08 23:42:22 ----D---- C:\Program Files\Common Files\Apple
2009-01-08 23:42:21 ----D---- C:\ProgramData\Apple
2009-01-08 18:59:23 ----D---- C:\Users\rac\AppData\Roaming\Yahoo!
2009-01-08 18:45:40 ----D---- C:\Windows\PCHEALTH
2009-01-08 18:45:40 ----D---- C:\Program Files\MSN Messenger
2009-01-08 18:34:46 ----D---- C:\ProgramData\Yahoo!
2009-01-08 18:02:00 ----A---- C:\Windows\system32\winipsec.dll
2009-01-08 18:02:00 ----A---- C:\Windows\system32\polstore.dll
2009-01-08 18:02:00 ----A---- C:\Windows\system32\IPSECSVC.DLL
2009-01-08 18:02:00 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2009-01-08 18:01:10 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2009-01-08 18:01:10 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2009-01-08 18:01:10 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2009-01-08 17:58:15 ----A---- C:\Windows\system32\gdi32.dll
2009-01-08 17:55:20 ----A---- C:\Windows\system32\mshtml.dll
2009-01-08 17:52:58 ----A---- C:\Windows\system32\Apphlpdm.dll
2009-01-08 17:52:55 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2009-01-08 17:52:55 ----A---- C:\Windows\system32\gameux.dll
2009-01-08 17:52:22 ----D---- C:\Users\rac\AppData\Roaming\LimeWire
2009-01-08 17:51:31 ----A---- C:\Windows\system32\wmpeffects.dll
2009-01-08 17:49:35 ----A---- C:\Windows\system32\msxml3.dll
2009-01-08 17:49:34 ----A---- C:\Windows\system32\msxml3r.dll
2009-01-08 17:48:41 ----A---- C:\Windows\system32\netapi32.dll
2009-01-08 17:47:46 ----A---- C:\Windows\system32\tzres.dll
2009-01-08 17:43:42 ----A---- C:\Windows\system32\shell32.dll
2009-01-08 17:42:04 ----A---- C:\Windows\explorer.exe
2009-01-08 17:40:09 ----A---- C:\Windows\system32\wininet.dll
2009-01-08 17:40:09 ----A---- C:\Windows\system32\jsproxy.dll
2009-01-08 17:40:08 ----A---- C:\Windows\system32\ieui.dll
2009-01-08 17:40:08 ----A---- C:\Windows\system32\ieframe.dll
2009-01-08 17:40:04 ----A---- C:\Windows\system32\mstime.dll
2009-01-08 17:40:03 ----A---- C:\Windows\system32\urlmon.dll
2009-01-08 17:40:03 ----A---- C:\Windows\system32\iertutil.dll
2009-01-08 17:37:17 ----A---- C:\Windows\system32\NlsLexicons0045.dll
2009-01-08 17:37:16 ----A---- C:\Windows\system32\NlsLexicons0049.dll
2009-01-08 17:37:16 ----A---- C:\Windows\system32\NlsLexicons0047.dll
2009-01-08 17:37:16 ----A---- C:\Windows\system32\NlsLexicons0046.dll
2009-01-08 17:37:15 ----A---- C:\Windows\system32\NlsLexicons0039.dll
2009-01-08 17:37:15 ----A---- C:\Windows\system32\NlsLexicons0021.dll
2009-01-08 17:37:15 ----A---- C:\Windows\system32\NlsLexicons0020.dll
2009-01-08 17:37:14 ----A---- C:\Windows\system32\NlsLexicons0022.dll
2009-01-08 17:37:13 ----A---- C:\Windows\system32\NlsLexicons0024.dll
2009-01-08 17:37:11 ----A---- C:\Windows\system32\NlsLexicons0027.dll
2009-01-08 17:37:11 ----A---- C:\Windows\system32\NlsLexicons0026.dll
2009-01-08 17:37:10 ----A---- C:\Windows\system32\NlsLexicons0010.dll
2009-01-08 17:37:09 ----A---- C:\Windows\system32\NlsLexicons0011.dll
2009-01-08 17:37:08 ----A---- C:\Windows\system32\NlsLexicons0013.dll
2009-01-08 17:37:06 ----A---- C:\Windows\system32\NlsLexicons0019.dll
2009-01-08 17:37:06 ----A---- C:\Windows\system32\NlsLexicons0018.dll
2009-01-08 17:37:04 ----A---- C:\Windows\system32\NlsLexicons0001.dll
2009-01-08 17:37:03 ----A---- C:\Windows\system32\NlsLexicons0002.dll
2009-01-08 17:37:02 ----A---- C:\Windows\system32\NlsLexicons0003.dll
2009-01-08 17:37:00 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2009-01-08 17:36:59 ----A---- C:\Windows\system32\NlsLexicons004b.dll
2009-01-08 17:36:59 ----A---- C:\Windows\system32\NlsLexicons004a.dll
2009-01-08 17:36:59 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2009-01-08 17:36:58 ----A---- C:\Windows\system32\NlsLexicons004c.dll
2009-01-08 17:36:57 ----A---- C:\Windows\system32\NlsLexicons004e.dll
2009-01-08 17:36:57 ----A---- C:\Windows\system32\NlsLexicons003e.dll
2009-01-08 17:36:57 ----A---- C:\Windows\system32\NlsLexicons002a.dll
2009-01-08 17:36:55 ----A---- C:\Windows\system32\NlsLexicons001a.dll
2009-01-08 17:36:54 ----A---- C:\Windows\system32\NlsLexicons001b.dll
2009-01-08 17:36:53 ----A---- C:\Windows\system32\NlsLexicons001d.dll
2009-01-08 17:36:51 ----A---- C:\Windows\system32\NlsLexicons000a.dll
2009-01-08 17:36:50 ----A---- C:\Windows\system32\NlsLexicons000d.dll
2009-01-08 17:36:50 ----A---- C:\Windows\system32\NlsLexicons000c.dll
2009-01-08 17:36:49 ----A---- C:\Windows\system32\NlsLexicons000f.dll
2009-01-08 17:36:48 ----A---- C:\Windows\system32\NlsLexicons0414.dll
2009-01-08 17:36:47 ----A---- C:\Windows\system32\NlsLexicons0816.dll
2009-01-08 17:36:47 ----A---- C:\Windows\system32\NlsLexicons0416.dll
2009-01-08 17:36:46 ----A---- C:\Windows\system32\NlsLexicons081a.dll
2009-01-08 17:36:45 ----A---- C:\Windows\system32\NlsModels0011.dll
2009-01-08 17:36:45 ----A---- C:\Windows\system32\NlsData0045.dll
2009-01-08 17:36:44 ----A---- C:\Windows\system32\NlsData0047.dll
2009-01-08 17:36:44 ----A---- C:\Windows\system32\NlsData0046.dll
2009-01-08 17:36:43 ----A---- C:\Windows\system32\NlsData0049.dll
2009-01-08 17:36:43 ----A---- C:\Windows\system32\NlsData0039.dll
2009-01-08 17:36:42 ----A---- C:\Windows\system32\NlsData0021.dll
2009-01-08 17:36:42 ----A---- C:\Windows\system32\NlsData0020.dll
2009-01-08 17:36:41 ----A---- C:\Windows\system32\NlsData0027.dll
2009-01-08 17:36:41 ----A---- C:\Windows\system32\NlsData0026.dll
2009-01-08 17:36:41 ----A---- C:\Windows\system32\NlsData0024.dll
2009-01-08 17:36:41 ----A---- C:\Windows\system32\NlsData0022.dll
2009-01-08 17:36:40 ----A---- C:\Windows\system32\NlsData0010.dll
2009-01-08 17:36:39 ----A---- C:\Windows\system32\NlsData0013.dll
2009-01-08 17:36:39 ----A---- C:\Windows\system32\NlsData0011.dll
2009-01-08 17:36:38 ----A---- C:\Windows\system32\NlsData0018.dll
2009-01-08 17:36:38 ----A---- C:\Windows\system32\NlsData0000.dll
2009-01-08 17:36:37 ----A---- C:\Windows\system32\NlsData0019.dll
2009-01-08 17:36:37 ----A---- C:\Windows\system32\NlsData0001.dll
2009-01-08 17:36:36 ----A---- C:\Windows\system32\NlsData0007.dll
2009-01-08 17:36:36 ----A---- C:\Windows\system32\NlsData0003.dll
2009-01-08 17:36:36 ----A---- C:\Windows\system32\NlsData0002.dll
2009-01-08 17:36:34 ----A---- C:\Windows\system32\NlsData004b.dll
2009-01-08 17:36:34 ----A---- C:\Windows\system32\NlsData004a.dll
2009-01-08 17:36:34 ----A---- C:\Windows\system32\NlsData0009.dll
2009-01-08 17:36:33 ----A---- C:\Windows\system32\NlsData004c.dll
2009-01-08 17:36:32 ----A---- C:\Windows\system32\NlsData004e.dll
2009-01-08 17:36:32 ----A---- C:\Windows\system32\NlsData003e.dll
2009-01-08 17:36:32 ----A---- C:\Windows\system32\NlsData002a.dll
2009-01-08 17:36:31 ----A---- C:\Windows\system32\NlsData001b.dll
2009-01-08 17:36:31 ----A---- C:\Windows\system32\NlsData001a.dll
2009-01-08 17:36:30 ----A---- C:\Windows\system32\NlsData001d.dll
2009-01-08 17:36:29 ----A---- C:\Windows\system32\NlsData000d.dll
2009-01-08 17:36:29 ----A---- C:\Windows\system32\NlsData000c.dll
2009-01-08 17:36:29 ----A---- C:\Windows\system32\NlsData000a.dll
2009-01-08 17:36:28 ----A---- C:\Windows\system32\NlsData000f.dll
2009-01-08 17:36:27 ----A---- C:\Windows\system32\NlsData0416.dll
2009-01-08 17:36:27 ----A---- C:\Windows\system32\NlsData0414.dll
2009-01-08 17:36:27 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2009-01-08 17:36:26 ----A---- C:\Windows\system32\NlsData081a.dll
2009-01-08 17:36:26 ----A---- C:\Windows\system32\NlsData0816.dll
2009-01-08 17:36:25 ----A---- C:\Windows\system32\NlsLexicons0c1a.dll
2009-01-08 17:36:24 ----A---- C:\Windows\system32\NlsData0c1a.dll
2009-01-08 17:32:18 ----A---- C:\Windows\system32\kbd106n.dll
2009-01-08 17:32:10 ----A---- C:\Windows\system32\winresume.exe
2009-01-08 17:32:10 ----A---- C:\Windows\system32\winload.exe
2009-01-08 17:32:09 ----A---- C:\Windows\system32\srdelayed.exe
2009-01-08 17:32:09 ----A---- C:\Windows\system32\srcore.dll
2009-01-08 17:32:09 ----A---- C:\Windows\system32\srclient.dll
2009-01-08 17:32:09 ----A---- C:\Windows\system32\rstrui.exe
2009-01-08 17:32:09 ----A---- C:\Windows\system32\kd1394.dll
2009-01-08 17:32:08 ----A---- C:\Windows\system32\setbcdlocale.dll
2009-01-08 17:32:07 ----A---- C:\Windows\system32\ci.dll
2009-01-08 17:29:52 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2009-01-08 17:29:51 ----A---- C:\Windows\system32\WindowsCodecs.dll
2009-01-08 17:29:50 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2009-01-08 17:29:24 ----A---- C:\Windows\system32\win32spl.dll
2009-01-08 17:29:24 ----A---- C:\Windows\system32\printcom.dll
2009-01-08 17:29:07 ----A---- C:\Windows\system32\wshrm.dll
2009-01-08 17:28:24 ----A---- C:\Windows\system32\rrinstaller.exe
2009-01-08 17:28:24 ----A---- C:\Windows\system32\mfps.dll
2009-01-08 17:28:24 ----A---- C:\Windows\system32\mfpmp.exe
2009-01-08 17:28:24 ----A---- C:\Windows\system32\mferror.dll
2009-01-08 17:28:24 ----A---- C:\Windows\system32\mf.dll
2009-01-08 17:28:22 ----A---- C:\Windows\system32\WMNetMgr.dll
2009-01-08 17:28:22 ----A---- C:\Windows\system32\logagent.exe
2009-01-08 17:28:21 ----A---- C:\Windows\system32\WMVCORE.DLL
2009-01-08 17:27:52 ----A---- C:\Windows\system32\INETRES.dll
2009-01-08 17:27:52 ----A---- C:\Windows\system32\inetcomm.dll
2009-01-08 17:27:21 ----A---- C:\Windows\system32\connect.dll
2009-01-08 17:27:01 ----A---- C:\Windows\system32\quartz.dll
2009-01-08 17:24:34 ----A---- C:\Windows\system32\ntoskrnl.exe
2009-01-08 17:24:34 ----A---- C:\Windows\system32\ntkrnlpa.exe
2009-01-08 17:23:39 ----A---- C:\Windows\system32\msxml6r.dll
2009-01-08 17:23:39 ----A---- C:\Windows\system32\msxml6.dll
2009-01-08 16:25:51 ----D---- C:\Users\rac\AppData\Roaming\Macromedia
2009-01-08 14:08:47 ----D---- C:\ProgramData\Google Updater
2009-01-08 14:08:46 ----A---- C:\Windows\system32\wups2.dll
2009-01-08 14:08:46 ----A---- C:\Windows\system32\wucltux.dll
2009-01-08 14:08:46 ----A---- C:\Windows\system32\wuaueng.dll
2009-01-08 14:08:46 ----A---- C:\Windows\system32\wuauclt.exe
2009-01-08 14:07:16 ----A---- C:\Windows\system32\wudriver.dll
2009-01-08 14:07:15 ----A---- C:\Windows\system32\wups.dll
2009-01-08 14:07:15 ----A---- C:\Windows\system32\wuapi.dll
2009-01-08 14:06:23 ----A---- C:\Windows\system32\wuwebv.dll
2009-01-08 14:06:23 ----A---- C:\Windows\system32\wuapp.exe
2009-01-08 14:04:14 ----D---- C:\Users\rac\AppData\Roaming\Adobe
2009-01-08 11:21:33 ----D---- C:\Users\rac\AppData\Roaming\MusicNet
2008-12-30 12:16:22 ----D---- C:\Users\rac\AppData\Roaming\Google
2008-12-29 17:57:47 ----D---- C:\Intel
2008-12-29 17:57:00 ----D---- C:\Users\rac\AppData\Roaming\Identities
2008-12-29 17:56:05 ----SD---- C:\Users\rac\AppData\Roaming\Microsoft
2008-12-29 17:51:22 ----SHD---- C:\ProgramData\Templates
2008-12-29 17:51:22 ----SHD---- C:\ProgramData\Start Menu
2008-12-29 17:51:22 ----SHD---- C:\ProgramData\Favorites
2008-12-29 17:51:22 ----SHD---- C:\ProgramData\Documents
2008-12-29 17:51:22 ----SHD---- C:\ProgramData\Desktop
2008-12-29 17:51:22 ----SHD---- C:\ProgramData\Application Data
2008-12-29 17:51:22 ----SHD---- C:\Documents and Settings
2008-12-29 13:50:01 ----SHD---- C:\System Volume Information

======List of files/folders modified in the last 1 months======

2009-01-26 00:45:28 ----D---- C:\Windows\Temp
2009-01-26 00:45:12 ----D---- C:\Windows\Prefetch
2009-01-25 13:51:41 ----SHD---- C:\$Recycle.Bin
2009-01-25 11:32:14 ----RD---- C:\Program Files
2009-01-25 11:31:46 ----HD---- C:\ProgramData
2009-01-25 11:31:36 ----D---- C:\Windows
2009-01-25 01:04:37 ----D---- C:\Windows\System32
2009-01-25 01:04:37 ----D---- C:\Windows\inf
2009-01-25 01:04:37 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-01-23 23:22:33 ----D---- C:\Windows\system32\LogFiles
2009-01-23 20:39:48 ----SHD---- C:\Windows\Installer
2009-01-23 20:39:16 ----D---- C:\Program Files\Common Files\Adobe
2009-01-23 20:39:10 ----D---- C:\ProgramData\Adobe
2009-01-23 18:49:16 ----D---- C:\Windows\system32\catroot
2009-01-23 18:44:00 ----RSD---- C:\Windows\Media
2009-01-23 18:44:00 ----D---- C:\Windows\system32\drivers
2009-01-23 18:43:57 ----D---- C:\Windows\twain_32
2009-01-23 18:43:55 ----D---- C:\Windows\system32\catroot2
2009-01-22 19:24:24 ----D---- C:\Windows\system32\Tasks
2009-01-19 19:03:50 ----D---- C:\Program Files\Internet Explorer
2009-01-19 16:14:19 ----D---- C:\Windows\system32\config
2009-01-19 16:14:11 ----D---- C:\Windows\Tasks
2009-01-19 16:14:11 ----D---- C:\Windows\system32\wbem
2009-01-19 16:14:10 ----D---- C:\Windows\system32\spool
2009-01-19 16:14:10 ----D---- C:\Windows\system32\Msdtc
2009-01-19 16:14:10 ----D---- C:\Windows\system32\CodeIntegrity
2009-01-19 16:14:07 ----D---- C:\Windows\registration
2009-01-18 21:06:05 ----D---- C:\Windows\winsxs
2009-01-18 21:03:31 ----D---- C:\Windows\SoftwareDistribution
2009-01-18 19:15:41 ----D---- C:\Program Files\Common Files
2009-01-18 18:51:50 ----D---- C:\Program Files\Google
2009-01-18 18:45:51 ----D---- C:\Program Files\Dell
2009-01-16 21:44:53 ----RSD---- C:\Windows\Fonts
2009-01-16 21:44:51 ----HD---- C:\Program Files\InstallShield Installation Information
2009-01-16 16:52:47 ----RD---- C:\Users
2009-01-13 17:43:35 ----D---- C:\Windows\Debug
2009-01-13 17:38:11 ----D---- C:\Program Files\Windows Mail
2009-01-12 22:25:24 ----D---- C:\Program Files\Common Files\PX Storage Engine
2009-01-12 21:34:10 ----SD---- C:\ProgramData\Microsoft
2009-01-12 04:06:06 ----D---- C:\Windows\Logs
2009-01-11 17:04:53 ----D---- C:\Windows\rescache
2009-01-11 16:33:11 ----D---- C:\Windows\system32\en-US
2009-01-11 16:33:11 ----D---- C:\Windows\PolicyDefinitions
2009-01-10 19:29:31 ----D---- C:\ProgramData\McAfee
2009-01-10 19:28:28 ----SD---- C:\Windows\Downloaded Program Files
2009-01-10 15:56:56 ----D---- C:\Windows\Microsoft.NET
2009-01-10 15:56:51 ----RSD---- C:\Windows\assembly
2009-01-10 15:50:02 ----SHD---- C:\Boot
2009-01-10 15:49:51 ----ASH---- C:\Program Files\desktop.ini
2009-01-10 15:40:51 ----D---- C:\Program Files\Windows Calendar
2009-01-10 15:40:50 ----D---- C:\Program Files\Windows Sidebar
2009-01-10 15:40:49 ----D---- C:\Program Files\Movie Maker
2009-01-10 15:40:48 ----D---- C:\Program Files\Windows Media Player
2009-01-10 15:40:47 ----D---- C:\Program Files\Windows Collaboration
2009-01-10 15:40:46 ----D---- C:\Program Files\Windows Photo Gallery
2009-01-10 15:40:39 ----D---- C:\Program Files\Windows Defender
2009-01-10 15:40:39 ----D---- C:\Program Files\Common Files\System
2009-01-10 15:40:37 ----D---- C:\Windows\servicing
2009-01-10 15:40:23 ----D---- C:\Windows\MSAgent
2009-01-10 15:40:19 ----D---- C:\Windows\L2Schemas
2009-01-10 15:40:19 ----D---- C:\Windows\IME
2009-01-10 15:40:19 ----D---- C:\Windows\DigitalLocker
2009-01-10 15:40:17 ----D---- C:\Windows\system32\XPSViewer
2009-01-10 15:40:17 ----D---- C:\Windows\system32\ko-KR
2009-01-10 15:40:17 ----D---- C:\Windows\system32\da-DK
2009-01-10 15:40:17 ----D---- C:\Windows\system32\com
2009-01-10 15:40:03 ----D---- C:\Windows\system32\de-DE
2009-01-10 15:40:02 ----D---- C:\Windows\system32\oobe
2009-01-10 15:40:02 ----D---- C:\Windows\system32\it-IT
2009-01-10 15:40:02 ----D---- C:\Windows\system32\el-GR
2009-01-10 15:40:00 ----D---- C:\Windows\system32\sysprep
2009-01-10 15:40:00 ----D---- C:\Windows\system32\migration
2009-01-10 15:39:51 ----D---- C:\Windows\system32\AdvancedInstallers
2009-01-10 15:39:50 ----D---- C:\Windows\system32\sv-SE
2009-01-10 15:39:50 ----D---- C:\Windows\system32\setup
2009-01-10 15:39:50 ----D---- C:\Windows\system32\ru-RU
2009-01-10 15:39:50 ----D---- C:\Windows\system32\ias
2009-01-10 15:39:50 ----D---- C:\Windows\system32\he-IL
2009-01-10 15:39:50 ----D---- C:\Windows\system32\fr-FR
2009-01-10 15:39:49 ----D---- C:\Windows\system32\SLUI
2009-01-10 15:39:49 ----D---- C:\Windows\system32\pt-PT
2009-01-10 15:39:49 ----D---- C:\Windows\system32\hu-HU
2009-01-10 15:39:49 ----D---- C:\Windows\system32\fi-FI
2009-01-10 15:39:49 ----D---- C:\Windows\system32\cs-CZ
2009-01-10 15:39:46 ----D---- C:\Windows\system32\zh-TW
2009-01-10 15:39:46 ----D---- C:\Windows\system32\zh-CN
2009-01-10 15:39:46 ----D---- C:\Windows\system32\pl-PL
2009-01-10 15:39:46 ----D---- C:\Windows\system32\manifeststore
2009-01-10 15:39:46 ----D---- C:\Windows\system32\es-ES
2009-01-10 15:39:46 ----D---- C:\Windows\system32\en
2009-01-10 15:39:45 ----D---- C:\Windows\system32\ro-RO
2009-01-10 15:39:45 ----D---- C:\Windows\system32\ja-JP
2009-01-10 15:39:36 ----D---- C:\Windows\system32\tr-TR
2009-01-10 15:39:30 ----D---- C:\Windows\system32\nl-NL
2009-01-10 15:39:30 ----D---- C:\Windows\system32\nb-NO
2009-01-10 15:39:30 ----D---- C:\Windows\system32\ar-SA
2009-01-10 15:39:25 ----D---- C:\Windows\system32\migwiz
2009-01-10 15:39:24 ----D---- C:\Windows\system32\pt-BR
2009-01-10 15:37:07 ----D---- C:\Windows\AppPatch
2009-01-10 15:36:59 ----D---- C:\Windows\Boot
2009-01-10 15:36:52 ----D---- C:\Windows\system32\Boot
2009-01-10 15:27:01 ----D---- C:\Windows\system32\RTCOM
2009-01-10 15:02:45 ----A---- C:\Windows\system32\ifxcardm.dll
2009-01-10 15:02:43 ----A---- C:\Windows\system32\axaltocm.dll
2009-01-09 18:21:14 ----D---- C:\Program Files\Yahoo!
2009-01-09 17:43:40 ----D---- C:\Windows\system32\WDI
2009-01-09 15:35:28 ----A---- C:\Windows\system32\mrt.exe
2009-01-08 21:25:31 ----D---- C:\Windows\Downloaded Installations
2009-01-08 19:29:47 ----D---- C:\Windows\system32\NDF
2009-01-08 18:46:54 ----D---- C:\Program Files\Common Files\microsoft shared
2009-01-08 12:32:43 ----D---- C:\DELL

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2008-11-26 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2008-11-26 111184]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2008-11-26 50864]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\Windows\System32\Drivers\avgldx86.sys [2009-01-19 97928]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\Windows\System32\Drivers\avgmfx86.sys [2009-01-19 26824]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2008-11-26 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2008-11-26 51792]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-04 8192]
R3 AvgWfpX;AVG Free8 Firewall Driver x86; C:\Windows\System32\Drivers\avgwfpx.sys [2009-01-19 69128]
R3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\Windows\system32\DRIVERS\e1e6032.sys [2007-04-28 228224]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-10-18 986624]
R3 HSXHWBS2;HSXHWBS2; C:\Windows\system32\DRIVERS\HSXHWBS2.sys [2006-10-18 258048]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-09-25 1899008]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-05-11 1773536]
R3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-18 35328]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-10-18 659968]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-18 83328]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-18 5632]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-18 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-18 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-18 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-18 6016]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2006-11-01 2028032]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2008-11-07 32000]
S4 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iastor.sys [2007-04-26 304920]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-04-10 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-11-26 18752]
R2 avg8emc;AVG Free8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2009-01-19 875288]
R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-01-19 231704]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-01-08 168432]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-04 386560]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-11-20 536872]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-11-26 155160]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-11-26 254040]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-11-26 352920]
S3 GoogleDesktopManager-061008-081103;Google Desktop Manager 5.7.806.10245; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2009-01-08 29744]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-12-02 74384]
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]

-----------------EOF-----------------
Absalom1987
Regular Member
 
Posts: 19
Joined: January 19th, 2009, 1:30 am

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Shaba » January 26th, 2009, 6:49 am

We need first to disable TeaTimer that it doesn't interfere with fixes. You can re-enable it when you're clean again:

1. Run Spybot-S&D in Advanced Mode.
2. If it is not already set to do this Go to the Mode menu select "Advanced Mode"
3. On the left hand side, Click on Tools
4. Then click on the Resident Icon in the List
5. Uncheck "Resident TeaTimer" and OK any prompts.
6. Restart your computer.

Open HijackThis, click do a system scan only and checkmark these:

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: (no name) - {6c7ba842-1864-43d5-47fe-6dddccc13f50} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [hlidrqls] "C:\Users\rac\AppData\Local\hlidrqls\hlidrqls.exe"


Close all windows including browser and press fix checked.

Reboot.

Attempt now to uninstall avast.

Post back a fresh HijackThis log.
User avatar
Shaba
Admin/Teacher Emeritus
 
Posts: 26974
Joined: March 24th, 2006, 4:42 am
Location: Finland

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Absalom1987 » January 26th, 2009, 9:13 am

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:56:29 AM, on 1/26/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\MySpace\IM\MySpaceIM.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Ocucom\PreCast\tmon.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\MySpace\IM\MySpaceIM.exe
C:\Windows\system32\NOTEPAD.EXE

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O4 - Global Startup: PreCast Monitor.lnk = C:\Program Files\Ocucom\PreCast\tmon.exe
O8 - Extra context menu item: &Search - ?p=ZKfox000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O15 - Trusted Zone: http://*.mcafee.com
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL,C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL,avgrsstx.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 7116 bytes
Absalom1987
Regular Member
 
Posts: 19
Joined: January 19th, 2009, 1:30 am

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Shaba » January 26th, 2009, 9:38 am

Looks like it was partially successful.

Open HijackThis, click do a system scan only and checkmark this:

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

Close all windows including browser and press fix checked.

Reboot.

Delete if present:

C:\Program Files\Alwil Software

Post back a fresh HijackThis log.
User avatar
Shaba
Admin/Teacher Emeritus
 
Posts: 26974
Joined: March 24th, 2006, 4:42 am
Location: Finland

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Absalom1987 » January 26th, 2009, 3:25 pm

this file still want delete, not even with ownership or anything
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:22:31 AM, on 1/26/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\MySpace\IM\MySpaceIM.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Ocucom\PreCast\tmon.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\MySpace\IM\MySpaceIM.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O4 - Global Startup: PreCast Monitor.lnk = C:\Program Files\Ocucom\PreCast\tmon.exe
O8 - Extra context menu item: &Search - ?p=ZKfox000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O15 - Trusted Zone: http://*.mcafee.com
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL,C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL,avgrsstx.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 6998 bytes
Absalom1987
Regular Member
 
Posts: 19
Joined: January 19th, 2009, 1:30 am

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Shaba » January 26th, 2009, 3:36 pm

Yes because service is still running.

Please download the OTMoveIt3 by OldTimer.
  • Save it to your desktop.
  • Please double-click OTMoveIt3.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
  • Copy the lines in the codebox below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):

    Code: Select all
    :files
    C:\Program Files\Alwil Software
    
    :services
    aswUpdSv
    
    :commands
    [EmptyTemp]
    [reboot]
    

  • Return to OTMoveIt3, right click in the "Paste List of Files/Folders to Move" window (under the yellow bar) and choose Paste.
  • Click the red Moveit! button.
  • Copy everything in the Results window (under the green bar) to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTMoveIt3
Note: If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes. In this case, after the reboot, open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTMoveIt\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.

Post:

- otmoveit3 log
- a fresh hijackthis log
User avatar
Shaba
Admin/Teacher Emeritus
 
Posts: 26974
Joined: March 24th, 2006, 4:42 am
Location: Finland

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Absalom1987 » January 26th, 2009, 9:51 pm

========== FILES ==========
C:\Program Files\Alwil Software\Avast4 moved successfully.
C:\Program Files\Alwil Software moved successfully.
========== SERVICES/DRIVERS ==========
Unable to stop service aswUpdSv .
========== COMMANDS ==========
File delete failed. C:\Users\rac\AppData\Local\Temp\etilqs_2dhiyUTvjBHdvyKinCXB scheduled to be deleted on reboot.
File delete failed. C:\Users\rac\AppData\Local\Temp\~DF6BE4.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\rac\AppData\Local\Temp\~DFC041.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
File delete failed. C:\Users\rac\AppData\Local\Mozilla\Firefox\Profiles\4dbzyhsq.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Users\rac\AppData\Local\Mozilla\Firefox\Profiles\4dbzyhsq.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Users\rac\AppData\Local\Mozilla\Firefox\Profiles\4dbzyhsq.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Users\rac\AppData\Local\Mozilla\Firefox\Profiles\4dbzyhsq.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Users\rac\AppData\Local\Mozilla\Firefox\Profiles\4dbzyhsq.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.

OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 01262009_100118


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:50:53 PM, on 1/26/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\MySpace\IM\MySpaceIM.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Ocucom\PreCast\tmon.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\MySpace\IM\MySpaceIM.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-179532886-3552328375-2642555243-1001\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'Deanna')
O4 - HKUS\S-1-5-21-179532886-3552328375-2642555243-1001\..\Run: [errorsupport] "C:\ProgramData\Lies ping ping.tkxo6x" (User 'Deanna')
O4 - HKUS\S-1-5-21-179532886-3552328375-2642555243-1001\..\Run: [Ford mpeg road draw] "C:\ProgramData\hide bird frag.53fiv" (User 'Deanna')
O4 - HKUS\S-1-5-21-179532886-3552328375-2642555243-1001\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (User 'Deanna')
O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O4 - Global Startup: PreCast Monitor.lnk = C:\Program Files\Ocucom\PreCast\tmon.exe
O8 - Extra context menu item: &Search - ?p=ZKfox000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O15 - Trusted Zone: http://*.mcafee.com
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL,C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL,avgrsstx.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (file missing)
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 7636 bytes
Absalom1987
Regular Member
 
Posts: 19
Joined: January 19th, 2009, 1:30 am

Re: Comp slow, runit error, cant delete avast, what to remove

Unread postby Shaba » January 27th, 2009, 2:10 am

OK, folder is gone but not service.

Did you run otmoveit3 as admin?
User avatar
Shaba
Admin/Teacher Emeritus
 
Posts: 26974
Joined: March 24th, 2006, 4:42 am
Location: Finland
Advertisement
Register to Remove

PreviousNext

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 40 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware