wingman -
1. Any problem executing the instructions?
the only problem was with the .txt files in #4
2. Did you set up the $~$Sys0$.job ?
i did not set this up
3. MBAM log
Malwarebytes' Anti-Malware 1.40
Database version: 2748
Windows 5.1.2600 Service Pack 3
9/6/2009 3:56:36 PM
mbam-log-2009-09-06 (15-56-36).txt
Scan type: Full Scan (C:\|)
Objects scanned: 216457
Time elapsed: 53 minute(s), 18 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 2
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\WINDOWS\system32\ESQULqurvutdyodjeddlomlqnlwhlijctpoux.dll (Trojan.Alureon) -> Delete on reboot.
C:\WINDOWS\system32\drivers\ESQULewvyejtlsuvpuonotxeapxxlrxnwjogw.sys (Trojan.TDSS) -> Delete on reboot.
4. Contents of (3) files: job.txt, lywep.txt and ubuly.txt
all 3 .txt files are binaries. they will not copy as .txt files
job.txt is a binary file - size 374 bytes
c:windows\tasks\$~$Sys0$.job wants to run c;\windows\system32\SchedSvc.dll",SPUninstallCallback
lywep.bat is a binary file - size 18,534 bytes
ubuly.bat is a binary file - size 19,416 bytes
5. New RSIT log.txt file contents.
Logfile of random's system information tool 1.06 (written by random/random)
Run by admin at 2009-09-06 16:25:24
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 68 GB (46%) free of 149 GB
Total RAM: 510 MB (53% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:25:42 PM, on 9/6/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\admin\Application Data\mjusbsp\magicJack.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Documents and Settings\admin\Desktop\RSIT.exe
C:\Program Files\trend micro\admin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.dell4me.com/mywaybizR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O4 - HKLM\..\Run: [DLBXCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLBXtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [cdloader] "C:\Documents and Settings\admin\Application Data\mjusbsp\cdloader2.exe" MAGICJACK
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) -
http://cdn.scan.onecare.live.com/resour ... se1140.cabO20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: avp - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe
O23 - Service: dlbx_device - Dell - C:\WINDOWS\system32\dlbxcoms.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
--
End of file - 5024 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\$~$Sys0$.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\Norton Internet Security - Run Full System Scan - admin.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll [2009-07-03 68112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll [2009-08-28 264720]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DLBXCATS"=rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLBXtime.dll,_RunDLLEntry@16 []
"MSConfig"=C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe [2008-04-14 169984]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [2009-07-03 303376]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"cdloader"=C:\Documents and Settings\admin\Application Data\mjusbsp\cdloader2.exe [2009-08-01 50520]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2005-03-29 339968]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bneyibe]
C:\WINDOWS\oxemimesu.dll,e []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BrStsWnd]
C:\Program Files\Brownie\BrstsWnd.exe [2007-07-31 815104]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cdloader]
C:\Documents and Settings\admin\Application Data\mjusbsp\cdloader2.exe [2009-08-01 50520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ClocX]
C:\Program Files\ClocX\ClocX.exe [2005-01-26 270336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupportCenter]
C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2008-08-13 206064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dlbxmon.exe]
C:\Program Files\Dell Photo AIO Printer 962\dlbxmon.exe [2005-01-18 425984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dscactivate]
C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe [2007-11-15 16384]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2005-04-25 139264]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISTray]
C:\Program Files\Spyware Doctor\pctsTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\pp]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SigmatelSysTrayApp]
C:\WINDOWS\stsystra.exe [2005-03-23 339968]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-08-18 68856]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\sysldtray]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
C:\Program Files\Common Files\Real\Update_OB\realsched.exe -osboot []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_8 -reboot 1 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^PolderbitS Audio Driver Monitor.lnk]
C:\PROGRA~1\POLDER~1\Recorder\Driver\PBDRIV~1.EXE [2009-08-01 157728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"LiveUpdate Notice Service"=3
"LiveUpdate Notice Ex"=3
"LiveUpdate"=3
"Automatic LiveUpdate Scheduler"=2
"ose"=3
"odserv"=3
"MotoConnect Service"=2
"idsvc"=3
"IDriverT"=3
"gusvc"=3
"gupdate1ca105c13ac1bc4"=2
"DSBrokerService"=3
"Ati HotKey Poller"=3
"sprtsvc_dellsupportcenter"=2
"WMPNetworkSvc"=3
"getPlus(R) Helper"=3
"FontCache3.0.0.0"=3
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2009-07-03 219664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2006-06-19 702768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"NoDispScrSavPage"=0
"NoDispCPL"=0
"NoDispAppearancePage"=0
"DisableTaskmgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideShutdownScripts"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=4
"NoClose"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=
"NoDeletePrinter"=
"NoAddPrinter"=
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\dlbxcoms.exe"="C:\WINDOWS\system32\dlbxcoms.exe:*:Enabled:Dell Communication System"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"C:\Program Files\Demo\Compass6EInterface.exe"="C:\Program Files\Demo\Compass6EInterface.exe:*:Disabled: "
"C:\Program Files\Demo\Compass6E.exe"="C:\Program Files\Demo\Compass6E.exe:*:Disabled: "
"C:\Compass6E\WSInterface\Compass.WSInterface.GUI.exe"="C:\Compass6E\WSInterface\Compass.WSInterface.GUI.exe:*:Disabled: "
"C:\Compass6E\Compass.Module.Console.exe"="C:\Compass6E\Compass.Module.Console.exe:*:Disabled: "
"C:\WINDOWS\LMI19.tmp\lmi_rescue.exe"="C:\WINDOWS\LMI19.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue"
"C:\Documents and Settings\admin\Application Data\mjusbsp\magicJack.exe"="C:\Documents and Settings\admin\Application Data\mjusbsp\magicJack.exe:*:Enabled:magicJack"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\##Owldell#zznewton]
shell\AutoRun\command - Z:\newton.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\J]
shell\AutoRun\command - J:\autorun.exe
shell\phone\command - J:\autorun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{cc308496-5362-11db-b943-00123f6f9464}]
shell\AutoRun\command - F:\system\viewer\Viewer.exe
shell\View your videos\command - F:\system\viewer\Viewer.exe
======List of files/folders created in the last 1 months======
2010-03-12 13:09:10 ----D---- C:\Documents and Settings\All Users\Application Data\PKWARE
2010-03-12 13:09:10 ----D---- C:\Documents and Settings\admin\Application Data\PKWARE
2010-03-12 12:27:09 ----D---- C:\WINDOWS\ZipItFree
2010-03-12 12:27:09 ----D---- C:\Program Files\ZipItFree
2010-03-12 12:26:37 ----A---- C:\WINDOWS\ZipItFree Setup Log.txt
2009-09-04 14:40:08 ----D---- C:\Documents and Settings\admin\Application Data\Free Spider TreeCardGames
2009-09-04 14:39:50 ----D---- C:\Program Files\Free Spider
2009-09-04 09:59:17 ----D---- C:\Documents and Settings\admin\Application Data\Malwarebytes
2009-09-04 09:59:07 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-09-04 09:59:07 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-09-03 10:45:30 ----D---- C:\Program Files\Watchtower
2009-08-31 02:26:11 ----A---- C:\Rooter_1.txt
2009-08-31 02:25:48 ----D---- C:\Rooter$
2009-08-31 02:21:57 ----D---- C:\Program Files\trend micro
2009-08-31 02:21:55 ----D---- C:\rsit
2009-08-25 06:58:28 ----D---- C:\Program Files\Hijackthis
2009-08-25 01:31:02 ----D---- C:\Program Files\Windows Live Safety Center
2009-08-24 17:04:04 ----D---- C:\Documents and Settings\All Users\Application Data\SecTaskMan
2009-08-24 17:04:00 ----D---- C:\Program Files\Security Task Manager
2009-08-24 10:45:46 ----A---- C:\WINDOWS\wininit.ini
2009-08-24 10:18:14 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-08-24 10:18:14 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-08-18 12:49:42 ----D---- C:\Program Files\Panda Security
2009-08-17 15:38:28 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2009-08-17 15:38:10 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2009-08-17 15:37:18 ----D---- C:\WINDOWS\ie8updates
2009-08-17 15:36:20 ----HDC---- C:\WINDOWS\ie8
2009-08-17 15:33:04 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-08-17 15:32:48 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-08-17 09:29:28 ----D---- C:\Program Files\Kaspersky Lab
2009-08-17 09:29:28 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2009-08-17 08:53:56 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2009-08-15 15:36:51 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-08-15 14:45:13 ----A---- C:\WINDOWS\system32\MRT.INI
2009-08-15 10:57:45 ----D---- C:\install
2009-08-15 03:42:15 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2009-08-15 03:40:55 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2009-08-15 03:39:33 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2009-08-15 03:38:15 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2009-08-15 03:36:46 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2009-08-15 03:35:28 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2009-08-15 03:34:07 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2009-08-15 03:32:42 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2009-08-15 03:31:29 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
2009-08-15 03:30:05 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-08-15 03:28:34 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2009-08-15 03:27:18 ----HDC---- C:\WINDOWS\$NtUninstallKB961371-v2$
2009-08-15 03:25:54 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2009-08-15 03:24:43 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2009-08-15 03:23:26 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2009-08-15 03:22:08 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-08-15 03:20:44 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2009-08-15 03:19:25 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-08-15 03:18:01 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-08-15 03:16:49 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-08-15 03:15:22 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-08-15 03:14:07 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-08-15 03:12:47 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-08-15 03:11:11 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2009-08-15 03:09:59 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-08-15 03:08:35 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-08-15 03:07:20 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2009-08-15 03:06:06 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-08-15 03:04:41 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-08-15 03:03:24 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2009-08-15 03:02:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-08-15 03:00:47 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-08-15 02:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-08-15 02:58:10 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-08-15 02:56:51 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-08-15 02:55:35 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-08-15 02:54:21 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-08-15 02:52:51 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2009-08-15 02:51:01 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2009-08-15 02:47:56 ----A---- C:\WINDOWS\setuplog.txt
2009-08-15 02:44:27 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2009-08-15 02:44:27 ----N---- C:\WINDOWS\system32\aaclient.dll
2009-08-15 02:44:26 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2009-08-15 02:44:25 ----N---- C:\WINDOWS\system32\azroles.dll
2009-08-15 02:44:25 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2009-08-15 02:44:24 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2009-08-15 02:44:23 ----N---- C:\WINDOWS\system32\credssp.dll
2009-08-15 02:44:22 ----N---- C:\WINDOWS\system32\dot3msm.dll
2009-08-15 02:44:22 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2009-08-15 02:44:22 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2009-08-15 02:44:22 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2009-08-15 02:44:22 ----N---- C:\WINDOWS\system32\dot3api.dll
2009-08-15 02:44:22 ----N---- C:\WINDOWS\system32\dimsroam.dll
2009-08-15 02:44:22 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2009-08-15 02:44:22 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2009-08-15 02:44:21 ----N---- C:\WINDOWS\system32\eapolqec.dll
2009-08-15 02:44:21 ----N---- C:\WINDOWS\system32\dot3ui.dll
2009-08-15 02:44:21 ----N---- C:\WINDOWS\system32\dot3svc.dll
2009-08-15 02:44:20 ----N---- C:\WINDOWS\system32\eapqec.dll
2009-08-15 02:44:20 ----N---- C:\WINDOWS\system32\eappprxy.dll
2009-08-15 02:44:20 ----N---- C:\WINDOWS\system32\eapphost.dll
2009-08-15 02:44:20 ----N---- C:\WINDOWS\system32\eappgnui.dll
2009-08-15 02:44:20 ----N---- C:\WINDOWS\system32\eappcfg.dll
2009-08-15 02:44:20 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2009-08-15 02:44:19 ----N---- C:\WINDOWS\system32\eapsvc.dll
2009-08-15 02:44:18 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2009-08-15 02:44:15 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2009-08-15 02:44:15 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2009-08-15 02:44:14 ----N---- C:\WINDOWS\system32\kbdpash.dll
2009-08-15 02:44:14 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2009-08-15 02:44:13 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2009-08-15 02:44:13 ----N---- C:\WINDOWS\system32\kmsvc.dll
2009-08-15 02:44:12 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2009-08-15 02:44:11 ----N---- C:\WINDOWS\system32\mmcperf.exe
2009-08-15 02:44:11 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2009-08-15 02:44:11 ----N---- C:\WINDOWS\system32\mmcex.dll
2009-08-15 02:44:11 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2009-08-15 02:44:09 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2009-08-15 02:44:09 ----N---- C:\WINDOWS\system32\mssha.dll
2009-08-15 02:44:08 ----N---- C:\WINDOWS\system32\napstat.exe
2009-08-15 02:44:08 ----N---- C:\WINDOWS\system32\napmontr.dll
2009-08-15 02:44:08 ----N---- C:\WINDOWS\system32\napipsec.dll
2009-08-15 02:44:08 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2009-08-15 02:44:05 ----N---- C:\WINDOWS\system32\onex.dll
2009-08-15 02:44:01 ----N---- C:\WINDOWS\system32\qagent.dll
2009-08-15 02:44:00 ----N---- C:\WINDOWS\system32\rasqec.dll
2009-08-15 02:44:00 ----N---- C:\WINDOWS\system32\qutil.dll
2009-08-15 02:44:00 ----N---- C:\WINDOWS\system32\qcliprov.dll
2009-08-15 02:44:00 ----N---- C:\WINDOWS\system32\qagentrt.dll
2009-08-15 02:43:59 ----N---- C:\WINDOWS\system32\s3gnb.dll
2009-08-15 02:43:59 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2009-08-15 02:43:58 ----N---- C:\WINDOWS\system32\slcoinst.dll
2009-08-15 02:43:58 ----N---- C:\WINDOWS\system32\setupn.exe
2009-08-15 02:43:57 ----N---- C:\WINDOWS\system32\slserv.exe
2009-08-15 02:43:57 ----N---- C:\WINDOWS\system32\slrundll.exe
2009-08-15 02:43:57 ----N---- C:\WINDOWS\system32\slgen.dll
2009-08-15 02:43:57 ----N---- C:\WINDOWS\system32\slextspk.dll
2009-08-15 02:43:56 ----N---- C:\WINDOWS\system32\tspkg.dll
2009-08-15 02:43:56 ----N---- C:\WINDOWS\system32\tsgqec.dll
2009-08-15 02:43:54 ----N---- C:\WINDOWS\system32\wlanapi.dll
2009-08-15 02:43:51 ----N---- C:\WINDOWS\slrundll.exe
2009-08-15 02:35:16 ----A---- C:\WINDOWS\000001_.tmp
2009-08-15 00:48:43 ----D---- C:\WINDOWS\system32\scripting
2009-08-15 00:48:43 ----D---- C:\WINDOWS\l2schemas
2009-08-15 00:48:42 ----D---- C:\WINDOWS\system32\en
2009-08-15 00:48:41 ----D---- C:\WINDOWS\system32\bits
2009-08-15 00:42:38 ----A---- C:\WINDOWS\system32\sprecovr.exe
2009-08-15 00:41:55 ----A---- C:\WINDOWS\002956_.tmp
2009-08-15 00:40:52 ----A---- C:\WINDOWS\system32\proxycfg.exe
2009-08-15 00:40:52 ----A---- C:\WINDOWS\system32\msxml6r.dll
2009-08-15 00:40:52 ----A---- C:\WINDOWS\system32\logman.exe
2009-08-15 00:40:50 ----A---- C:\WINDOWS\system32\dxdiagn.dll
2009-08-15 00:40:50 ----A---- C:\WINDOWS\system32\dsprpres.dll
2009-08-15 00:40:50 ----A---- C:\WINDOWS\system32\d3d9.dll
2009-08-15 00:40:50 ----A---- C:\WINDOWS\system32\cmsetacl.dll
2009-08-15 00:40:50 ----A---- C:\WINDOWS\system32\btpanui.dll
2009-08-15 00:40:50 ----A---- C:\WINDOWS\system32\bthserv.dll
2009-08-15 00:40:50 ----A---- C:\WINDOWS\system32\bthci.dll
2009-08-15 00:40:50 ----A---- C:\WINDOWS\system32\blastcln.exe
2009-08-15 00:40:50 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2009-08-15 00:40:50 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2009-08-15 00:40:50 ----A---- C:\WINDOWS\system32\auditusr.exe
2009-08-15 00:40:49 ----A---- C:\WINDOWS\system32\kbdfi1.dll
2009-08-15 00:40:49 ----A---- C:\WINDOWS\system32\ir50_qcx.dll
2009-08-15 00:40:49 ----A---- C:\WINDOWS\system32\ir50_qc.dll
2009-08-15 00:40:49 ----A---- C:\WINDOWS\system32\ir50_32.dll
2009-08-15 00:40:49 ----A---- C:\WINDOWS\system32\ir41_qcx.dll
2009-08-15 00:40:49 ----A---- C:\WINDOWS\system32\ir41_qc.dll
2009-08-15 00:40:49 ----A---- C:\WINDOWS\system32\httpapi.dll
2009-08-15 00:40:49 ----A---- C:\WINDOWS\system32\hccoin.dll
2009-08-15 00:40:49 ----A---- C:\WINDOWS\system32\fwcfg.dll
2009-08-15 00:40:49 ----A---- C:\WINDOWS\system32\fsquirt.exe
2009-08-15 00:40:49 ----A---- C:\WINDOWS\system32\encdec.dll
2009-08-15 00:40:49 ----A---- C:\WINDOWS\system32\encapi.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\powercfg.exe
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\pnrpnsp.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\photometadatahandler.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\p2psvc.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\p2pgraph.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\p2pgasvc.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\p2p.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\mstsc.exe
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\mssap.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\msdadiag.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\kbdukx.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\kbdsmsno.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\kbdsmsfi.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\kbdno1.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\kbdmlt48.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\kbdmlt47.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\kbdmaori.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\kbdinmal.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\kbdinben.dll
2009-08-15 00:40:48 ----A---- C:\WINDOWS\system32\kbdinbe1.dll
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\wshbth.dll
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\wscsvc.dll
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\wscntfy.exe
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\wmphoto.dll
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\winshfhc.dll
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\windowscodecsext.dll
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\windowscodecs.dll
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\winbrand.dll
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\w3ssl.dll
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\verclsid.exe
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\tzchange.exe
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\twext.dll
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\strmfilt.dll
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\spnpinst.exe
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\smbinst.exe
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\sdhcinst.dll
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\sbeio.dll
2009-08-15 00:40:47 ----A---- C:\WINDOWS\system32\sbe.dll
2009-08-15 00:40:46 ----A---- C:\WINDOWS\system32\xpsp3res.dll
2009-08-15 00:40:46 ----A---- C:\WINDOWS\system32\xpsp1res.dll
2009-08-15 00:40:46 ----A---- C:\WINDOWS\system32\xpob2res.dll
2009-08-15 00:40:46 ----A---- C:\WINDOWS\system32\xmlprovi.dll
2009-08-15 00:40:46 ----A---- C:\WINDOWS\system32\xmlprov.dll
2009-08-15 00:40:46 ----A---- C:\WINDOWS\system32\xmllite.dll
2009-08-15 00:40:46 ----A---- C:\WINDOWS\system32\wuauserv.dll
2009-08-15 00:40:41 ----A---- C:\WINDOWS\system32\xpsp2res.dll
2009-08-15 00:40:41 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-08-15 00:40:40 ----A---- C:\WINDOWS\system32\dpcdll.dll
2009-08-15 00:40:39 ----A---- C:\WINDOWS\system32\pidgen.dll
2009-08-15 00:40:36 ----A---- C:\WINDOWS\system32\msftedit.dll
2009-08-15 00:40:36 ----A---- C:\WINDOWS\system32\fltlib.dll
2009-08-15 00:40:35 ----A---- C:\WINDOWS\system32\winhttp.dll
2009-08-15 00:40:35 ----A---- C:\WINDOWS\system32\fltmc.exe
2009-08-15 00:40:20 ----A---- C:\WINDOWS\winhlp32.exe
2009-08-15 00:40:20 ----A---- C:\WINDOWS\twain_32.dll
2009-08-15 00:40:20 ----A---- C:\WINDOWS\regedit.exe
2009-08-15 00:40:20 ----A---- C:\WINDOWS\hh.exe
2009-08-15 00:40:20 ----A---- C:\WINDOWS\explorer.exe
2009-08-15 00:40:12 ----A---- C:\WINDOWS\system32\6to4svc.dll
2009-08-15 00:40:11 ----A---- C:\WINDOWS\system32\aclui.dll
2009-08-15 00:40:11 ----A---- C:\WINDOWS\system32\accwiz.exe
2009-08-15 00:40:10 ----A---- C:\WINDOWS\system32\actxprxy.dll
2009-08-15 00:40:10 ----A---- C:\WINDOWS\system32\actmovie.exe
2009-08-15 00:40:10 ----A---- C:\WINDOWS\system32\activeds.dll
2009-08-15 00:40:09 ----A---- C:\WINDOWS\system32\adsldpc.dll
2009-08-15 00:40:09 ----A---- C:\WINDOWS\system32\adsldp.dll
2009-08-15 00:40:08 ----A---- C:\WINDOWS\system32\adsnt.dll
2009-08-15 00:40:08 ----A---- C:\WINDOWS\system32\adsmsext.dll
2009-08-15 00:40:07 ----A---- C:\WINDOWS\system32\alg.exe
2009-08-15 00:40:07 ----A---- C:\WINDOWS\system32\ahui.exe
2009-08-15 00:40:06 ----A---- C:\WINDOWS\system32\apphelp.dll
2009-08-15 00:40:06 ----A---- C:\WINDOWS\system32\amstream.dll
2009-08-15 00:40:06 ----A---- C:\WINDOWS\system32\alrsvc.dll
2009-08-15 00:40:05 ----A---- C:\WINDOWS\system32\audiosrv.dll
2009-08-15 00:40:05 ----A---- C:\WINDOWS\system32\attrib.exe
2009-08-15 00:40:05 ----A---- C:\WINDOWS\system32\atmlib.dll
2009-08-15 00:40:05 ----A---- C:\WINDOWS\system32\atmfd.dll
2009-08-15 00:40:05 ----A---- C:\WINDOWS\system32\atmadm.exe
2009-08-15 00:40:05 ----A---- C:\WINDOWS\system32\at.exe
2009-08-15 00:40:05 ----A---- C:\WINDOWS\system32\asycfilt.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\cdosys.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\cdfview.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\catsrvut.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\catsrvps.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\catsrv.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\capesnpn.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\camocx.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\cabview.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\cabinet.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\browsewm.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\browseui.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\browser.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\browselc.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\bidispl.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\batt.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\batmeter.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\basesrv.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\avifil32.dll
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\autolfn.exe
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\autofmt.exe
2009-08-15 00:40:04 ----A---- C:\WINDOWS\system32\authz.dll
2009-08-15 00:40:03 ----A---- C:\WINDOWS\system32\cliconfg.exe
2009-08-15 00:40:03 ----A---- C:\WINDOWS\system32\cliconfg.dll
2009-08-15 00:40:03 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2009-08-15 00:40:03 ----A---- C:\WINDOWS\system32\clbcatq.dll
2009-08-15 00:40:03 ----A---- C:\WINDOWS\system32\clbcatex.dll
2009-08-15 00:40:03 ----A---- C:\WINDOWS\system32\cisvc.exe
2009-08-15 00:40:03 ----A---- C:\WINDOWS\system32\ciodm.dll
2009-08-15 00:40:03 ----A---- C:\WINDOWS\system32\cic.dll
2009-08-15 00:40:03 ----A---- C:\WINDOWS\system32\cfgmgr32.dll
2009-08-15 00:40:03 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2009-08-15 00:40:03 ----A---- C:\WINDOWS\system32\certmgr.dll
2009-08-15 00:40:03 ----A---- C:\WINDOWS\system32\certcli.dll
2009-08-15 00:40:02 ----A---- C:\WINDOWS\system32\cmmon32.exe
2009-08-15 00:40:02 ----A---- C:\WINDOWS\system32\cmdl32.exe
2009-08-15 00:40:02 ----A---- C:\WINDOWS\system32\cmdial32.dll
2009-08-15 00:40:02 ----A---- C:\WINDOWS\system32\cmcfg32.dll
2009-08-15 00:40:02 ----A---- C:\WINDOWS\system32\clusapi.dll
2009-08-15 00:40:02 ----A---- C:\WINDOWS\system32\clipsrv.exe
2009-08-15 00:40:02 ----A---- C:\WINDOWS\system32\clipbrd.exe
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\confmsp.dll
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\comuid.dll
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\comsvcs.dll
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\comsnap.dll
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\comres.dll
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\comrepl.dll
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\compstui.dll
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\compatui.dll
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\comaddin.dll
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\colbact.dll
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\cnbjmon.dll
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\cmutil.dll
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\cmstp.exe
2009-08-15 00:40:01 ----A---- C:\WINDOWS\system32\cmprops.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\d3dim700.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\d3d8.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\ctfmon.exe
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\csrss.exe
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\cscui.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\cscript.exe
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\cscdll.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\cryptui.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\cryptnet.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\cryptext.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\cryptdll.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\crypt32.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\credui.dll
2009-08-15 00:40:00 ----A---- C:\WINDOWS\system32\conime.exe
2009-08-15 00:39:59 ----A---- C:\WINDOWS\system32\ddraw.dll
2009-08-15 00:39:59 ----A---- C:\WINDOWS\system32\ddeshare.exe
2009-08-15 00:39:59 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2009-08-15 00:39:59 ----A---- C:\WINDOWS\system32\dciman32.dll
2009-08-15 00:39:59 ----A---- C:\WINDOWS\system32\dbnmpntw.dll
2009-08-15 00:39:59 ----A---- C:\WINDOWS\system32\dbnetlib.dll
2009-08-15 00:39:59 ----A---- C:\WINDOWS\system32\dbmsrpcn.dll
2009-08-15 00:39:59 ----A---- C:\WINDOWS\system32\dbghelp.dll
2009-08-15 00:39:59 ----A---- C:\WINDOWS\system32\davclnt.dll
2009-08-15 00:39:59 ----A---- C:\WINDOWS\system32\datime.dll
2009-08-15 00:39:59 ----A---- C:\WINDOWS\system32\dataclen.dll
2009-08-15 00:39:59 ----A---- C:\WINDOWS\system32\danim.dll
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\diskcopy.dll
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\dinput8.dll
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\dinput.dll
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\digest.dll
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\diantz.exe
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\dhcpmon.dll
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\dgnet.dll
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\dfsshlex.dll
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\dfrgui.dll
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\dfrgsnap.dll
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\dfrgntfs.exe
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\dfrgfat.exe
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\devmgr.dll
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\devenum.dll
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\defrag.exe
2009-08-15 00:39:58 ----A---- C:\WINDOWS\system32\ddrawex.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dpnet.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dplayx.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\docprop2.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dnsapi.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmutil.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmusic.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmsynth.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmstyle.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmserver.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmscript.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmremote.exe
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmloader.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmime.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmdlgs.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmcompos.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmband.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dmadmin.exe
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dllhost.exe
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\dispex.dll
2009-08-15 00:39:57 ----A---- C:\WINDOWS\system32\diskpart.exe
2009-08-15 00:39:56 ----A---- C:\WINDOWS\system32\dsdmo.dll
2009-08-15 00:39:56 ----A---- C:\WINDOWS\system32\ds32gt.dll
2009-08-15 00:39:56 ----A---- C:\WINDOWS\system32\drprov.dll
2009-08-15 00:39:56 ----A---- C:\WINDOWS\system32\dpwsockx.dll
2009-08-15 00:39:56 ----A---- C:\WINDOWS\system32\dpvvox.dll
2009-08-15 00:39:56 ----A---- C:\WINDOWS\system32\dpvsetup.exe
2009-08-15 00:39:56 ----A---- C:\WINDOWS\system32\dpvoice.dll
2009-08-15 00:39:56 ----A---- C:\WINDOWS\system32\dpvacm.dll
2009-08-15 00:39:56 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2009-08-15 00:39:56 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2009-08-15 00:39:56 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2009-08-15 00:39:56 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2009-08-15 00:39:55 ----A---- C:\WINDOWS\system32\dsquery.dll
2009-08-15 00:39:55 ----A---- C:\WINDOWS\system32\dsprop.dll
2009-08-15 00:39:55 ----A---- C:\WINDOWS\system32\dsound3d.dll
2009-08-15 00:39:55 ----A---- C:\WINDOWS\system32\dsound.dll
2009-08-15 00:39:55 ----A---- C:\WINDOWS\system32\dskquoui.dll
2009-08-15 00:39:55 ----A---- C:\WINDOWS\system32\dskquota.dll
2009-08-15 00:39:55 ----A---- C:\WINDOWS\system32\dsdmoprp.dll
2009-08-15 00:39:54 ----A---- C:\WINDOWS\system32\dvdupgrd.exe
2009-08-15 00:39:54 ----A---- C:\WINDOWS\system32\duser.dll
2009-08-15 00:39:54 ----A---- C:\WINDOWS\system32\dumprep.exe
2009-08-15 00:39:54 ----A---- C:\WINDOWS\system32\dswave.dll
2009-08-15 00:39:54 ----A---- C:\WINDOWS\system32\dsuiext.dll
2009-08-15 00:39:54 ----A---- C:\WINDOWS\system32\dssenh.dll
2009-08-15 00:39:54 ----A---- C:\WINDOWS\system32\dssec.dll
2009-08-15 00:39:53 ----A---- C:\WINDOWS\system32\expsrv.dll
2009-08-15 00:39:53 ----A---- C:\WINDOWS\system32\eventlog.dll
2009-08-15 00:39:53 ----A---- C:\WINDOWS\system32\eudcedit.exe
2009-08-15 00:39:53 ----A---- C:\WINDOWS\system32\esent.dll
2009-08-15 00:39:53 ----A---- C:\WINDOWS\system32\es.dll
2009-08-15 00:39:53 ----A---- C:\WINDOWS\system32\ersvc.dll
2009-08-15 00:39:53 ----A---- C:\WINDOWS\system32\els.dll
2009-08-15 00:39:53 ----A---- C:\WINDOWS\system32\dxmasf.dll
2009-08-15 00:39:53 ----A---- C:\WINDOWS\system32\dxdiag.exe
2009-08-15 00:39:53 ----A---- C:\WINDOWS\system32\dx8vb.dll
2009-08-15 00:39:53 ----A---- C:\WINDOWS\system32\dx7vb.dll
2009-08-15 00:39:53 ----A---- C:\WINDOWS\system32\dwwin.exe
2009-08-15 00:39:52 ----A---- C:\WINDOWS\system32\framebuf.dll
2009-08-15 00:39:52 ----A---- C:\WINDOWS\system32\forcedos.exe
2009-08-15 00:39:52 ----A---- C:\WINDOWS\system32\fontview.exe
2009-08-15 00:39:52 ----A---- C:\WINDOWS\system32\fontsub.dll
2009-08-15 00:39:52 ----A---- C:\WINDOWS\system32\fontext.dll
2009-08-15 00:39:52 ----A---- C:\WINDOWS\system32\fldrclnr.dll
2009-08-15 00:39:52 ----A---- C:\WINDOWS\system32\findstr.exe
2009-08-15 00:39:52 ----A---- C:\WINDOWS\system32\filemgmt.dll
2009-08-15 00:39:52 ----A---- C:\WINDOWS\system32\feclient.dll
2009-08-15 00:39:52 ----A---- C:\WINDOWS\system32\faultrep.dll
2009-08-15 00:39:52 ----A---- C:\WINDOWS\system32\exts.dll
2009-08-15 00:39:52 ----A---- C:\WINDOWS\system32\extrac32.exe
2009-08-15 00:39:51 ----A---- C:\WINDOWS\system32\gdi32.dll
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\hypertrm.dll
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\htui.dll
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\hotplug.dll
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\hnetwiz.dll
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\hlink.dll
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\hidserv.dll
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\hid.dll
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\hhsetup.dll
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\help.exe
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\h323msp.dll
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\grpconv.exe
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\gpkrsrc.dll
2009-08-15 00:39:50 ----A---- C:\WINDOWS\system32\glu32.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\iphlpapi.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\ipconfig.exe
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\input.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\initpki.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\inetres.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\inetppui.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\inetpp.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\inetmib1.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\inetcomm.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\inetcfg.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\imm32.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\imeshare.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\imapi.exe
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\ils.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\igmpagnt.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\ifmon.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\iexpress.exe
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\idq.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\icwphbk.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\icwdial.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\icmp.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\icm32.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\iccvid.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\icaapi.dll
2009-08-15 00:39:49 ----A---- C:\WINDOWS\system32\iasrad.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\jgpl400.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\jgdw400.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\iyuv_32.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\ixsso.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\itss.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\itircl.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\isign32.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\ipxwan.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\ipxroute.exe
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\ipv6mon.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\ipv6.exe
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\ipsmsnap.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\ipsecsvc.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\ipsecsnp.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\ippromon.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2009-08-15 00:39:48 ----A---- C:\WINDOWS\system32\ipmontr.dll
2009-08-15 00:39:47 ----A---- C:\WINDOWS\system32\linkinfo.dll
2009-08-15 00:39:47 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-08-15 00:39:47 ----A---- C:\WINDOWS\system32\licdll.dll
2009-08-15 00:39:47 ----A---- C:\WINDOWS\system32\ksuser.dll
2009-08-15 00:39:47 ----A---- C:\WINDOWS\system32\keymgr.dll
2009-08-15 00:39:47 ----A---- C:\WINDOWS\system32\kerberos.dll
2009-08-15 00:39:47 ----A---- C:\WINDOWS\system32\kd1394.dll
2009-08-15 00:39:47 ----A---- C:\WINDOWS\system32\kbdnec.dll
2009-08-15 00:39:47 ----A---- C:\WINDOWS\system32\jscript.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\mfc40u.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\mf3216.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\mdminst.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\mciwave.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\mciseq.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\mciqtz32.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\mciavi32.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\mcastmib.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\makecab.exe
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\magnify.exe
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\lsass.exe
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\lprhelp.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\lpk.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\logonui.exe
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\localui.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\localsec.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\loadperf.dll
2009-08-15 00:39:46 ----A---- C:\WINDOWS\system32\lmrt.dll
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\more.com
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\modemui.dll
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\mobsync.exe
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\mobsync.dll
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\mnmdd.dll
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\mmfutil.dll
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\mmcshext.dll
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\mmcbase.dll
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\mmc.exe
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\mlang.dll
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\mimefilt.dll
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\miglibnt.dll
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\midimap.dll
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\mfcsubs.dll
2009-08-15 00:39:45 ----A---- C:\WINDOWS\system32\mfc42.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\msdtclog.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\msdtc.exe
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\msdmo.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\msdart.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\msctfp.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\msctf.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\mscpxl32.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\mscpx32r.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\msconf.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\mscms.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\msasn1.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\msapsspc.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\msafd.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\msacm32.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\mprdim.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\mprapi.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\mpr.dll
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\mplay32.exe
2009-08-15 00:39:44 ----A---- C:\WINDOWS\system32\moricons.dll
2009-08-15 00:39:43 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2009-08-15 00:39:43 ----A---- C:\WINDOWS\system32\msdtctm.dll
2009-08-15 00:39:43 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2009-08-15 00:39:42 ----A---- C:\WINDOWS\system32\msgina.dll
2009-08-15 00:39:42 ----A---- C:\WINDOWS\system32\msexcl40.dll
2009-08-15 00:39:42 ----A---- C:\WINDOWS\system32\msexch40.dll
2009-08-15 00:39:42 ----A---- C:\WINDOWS\system32\msdxmlc.dll
2009-08-15 00:39:40 ----A---- C:\WINDOWS\system32\msieftp.dll
2009-08-15 00:39:40 ----A---- C:\WINDOWS\system32\msidle.dll
2009-08-15 00:39:40 ----A---- C:\WINDOWS\system32\msident.dll
2009-08-15 00:39:40 ----A---- C:\WINDOWS\system32\msi.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msoeacct.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msnsspc.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msltus40.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\mslbui.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msjtes40.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msjter40.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msjint40.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msjetoledb40.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msjet40.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msisip.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msimtf.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msimsg.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msimg32.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msihnd.dll
2009-08-15 00:39:39 ----A---- C:\WINDOWS\system32\msiexec.exe
2009-08-15 00:39:38 ----A---- C:\WINDOWS\system32\mstask.dll
2009-08-15 00:39:38 ----A---- C:\WINDOWS\system32\msrle32.dll
2009-08-15 00:39:38 ----A---- C:\WINDOWS\system32\msrepl40.dll
2009-08-15 00:39:38 ----A---- C:\WINDOWS\system32\msrd3x40.dll
2009-08-15 00:39:38 ----A---- C:\WINDOWS\system32\msrd2x40.dll
2009-08-15 00:39:38 ----A---- C:\WINDOWS\system32\msprivs.dll
2009-08-15 00:39:38 ----A---- C:\WINDOWS\system32\mspbde40.dll
2009-08-15 00:39:38 ----A---- C:\WINDOWS\system32\mspatcha.dll
2009-08-15 00:39:38 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-08-15 00:39:38 ----A---- C:\WINDOWS\system32\msorcl32.dll
2009-08-15 00:39:38 ----A---- C:\WINDOWS\system32\msorc32r.dll
2009-08-15 00:39:38 ----A---- C:\WINDOWS\system32\msoert2.dll
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\mswebdvd.dll
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\mswdat10.dll
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\msw3prt.dll
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\msvidctl.dll
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\msvfw32.dll
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\msvcrt40.dll
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\msvcrt.dll
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\msvcp60.dll
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\msvcirt.dll
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\msvbvm60.dll
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\msutb.dll
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\mstlsapi.dll
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\mstinit.exe
2009-08-15 00:39:37 ----A---- C:\WINDOWS\system32\mstext40.dll
2009-08-15 00:39:36 ----A---- C:\WINDOWS\system32\narrator.exe
2009-08-15 00:39:36 ----A---- C:\WINDOWS\system32\mydocs.dll
2009-08-15 00:39:36 ----A---- C:\WINDOWS\system32\mtxoci.dll
2009-08-15 00:39:36 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2009-08-15 00:39:36 ----A---- C:\WINDOWS\system32\mtxex.dll
2009-08-15 00:39:36 ----A---- C:\WINDOWS\system32\mtxdm.dll
2009-08-15 00:39:36 ----A---- C:\WINDOWS\system32\mtxclu.dll
2009-08-15 00:39:36 ----A---- C:\WINDOWS\system32\msyuv.dll
2009-08-15 00:39:36 ----A---- C:\WINDOWS\system32\msxml2.dll
2009-08-15 00:39:36 ----A---- C:\WINDOWS\system32\msxml.dll
2009-08-15 00:39:36 ----A---- C:\WINDOWS\system32\msxbde40.dll
2009-08-15 00:39:36 ----A---- C:\WINDOWS\system32\mswstr10.dll
2009-08-15 00:39:36 ----A---- C:\WINDOWS\system32\mswsock.dll
2009-08-15 00:39:35 ----A---- C:\WINDOWS\system32\netman.dll
2009-08-15 00:39:35 ----A---- C:\WINDOWS\system32\netlogon.dll
2009-08-15 00:39:35 ----A---- C:\WINDOWS\system32\netid.dll
2009-08-15 00:39:35 ----A---- C:\WINDOWS\system32\netdde.exe
2009-08-15 00:39:35 ----A---- C:\WINDOWS\system32\netcfgx.dll
2009-08-15 00:39:35 ----A---- C:\WINDOWS\system32\netapi32.dll
2009-08-15 00:39:35 ----A---- C:\WINDOWS\system32\net1.exe
2009-08-15 00:39:35 ----A---- C:\WINDOWS\system32\net.exe
2009-08-15 00:39:35 ----A---- C:\WINDOWS\system32\nddenb32.dll
2009-08-15 00:39:35 ----A---- C:\WINDOWS\system32\nddeapir.exe
2009-08-15 00:39:35 ----A---- C:\WINDOWS\system32\nddeapi.dll
2009-08-15 00:39:35 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\ntvdmd.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\ntshrui.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\ntmssvc.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\ntmsmgr.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\ntmsdba.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\ntmsapi.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\ntmarta.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\ntlanman.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\ntdsapi.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\npptools.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\notepad.exe
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\nlhtml.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\newdev.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\netui1.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\netui0.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\netstat.exe
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\netshell.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\netsh.exe
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\netsetup.exe
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\netrap.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\system32\netplwiz.dll
2009-08-15 00:39:34 ----A---- C:\WINDOWS\notepad.exe
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\odbcp32r.dll
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\odbcjt32.dll
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\odbcji32.dll
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\odbcint.dll
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\odbccu32.dll
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\odbccr32.dll
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\odbccp32.dll
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\odbcconf.exe
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\odbcconf.dll
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\odbcbcp.dll
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\odbcad32.exe
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\odbc32gt.dll
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\odbc32.dll
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\ocmanage.dll
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\objsel.dll
2009-08-15 00:39:33 ----A---- C:\WINDOWS\system32\oakley.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\packager.exe
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\osuninst.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\osk.exe
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\opengl32.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\olepro32.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\oleprn.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\oledlg.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\olecli32.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\ole32.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\offfilt.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\odtext32.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\odpdx32.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\odfox32.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\odexl32.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\oddbse32.dll
2009-08-15 00:39:32 ----A---- C:\WINDOWS\system32\odbctrac.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\psbase.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\psapi.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\proquota.exe
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\progman.exe
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\profmap.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\powrprof.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\polstore.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\pjlmon.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\ping.exe
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\pid.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\photowiz.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\perfproc.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\perfos.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\perfnet.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\perfmon.exe
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\perfdisk.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\pdh.dll
2009-08-15 00:39:31 ----A---- C:\WINDOWS\system32\pautoenr.dll
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\raschap.dll
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\racpldlg.dll
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\query.dll
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\quartz.dll
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\qprocess.exe
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\qedwipes.dll
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\qedit.dll
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\qdvd.dll
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\qdv.dll
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\qcap.dll
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\pstorsvc.dll
2009-08-15 00:39:30 ----A---- C:\WINDOWS\system32\pstorec.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rexec.exe
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\resutils.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\remotepg.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\regwizc.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\regsvr32.exe
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\regsvc.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\regapi.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\reg.exe
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rdshost.exe
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rdpdd.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rdpclip.exe
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rdchost.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rcp.exe
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rcimlby.exe
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rcbdyctl.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rastls.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rassapi.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rasppp.dll
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rasphone.exe
2009-08-15 00:39:29 ----A---- C:\WINDOWS\system32\rasmans.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\scrobj.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\sclgntfy.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\schedsvc.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\scesrv.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\scecli.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\sccsccp.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\scarddlg.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\safrslv.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\safrdm.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\runonce.exe
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\rundll32.exe
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\rtutils.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\rtipxmib.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\rtcshare.exe
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\rsvpsp.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\rsmps.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\rsh.exe
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\rsaenh.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\rpcss.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2009-08-15 00:39:28 ----A---- C:\WINDOWS\system32\riched20.dll
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\sfcfiles.dll
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\sfc_os.dll
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\sfc.dll
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\setup.exe
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\sethc.exe
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\servdeps.dll
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\sensapi.dll
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\sens.dll
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\sendmail.dll
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\sendcmsg.dll
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\security.dll
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\secur32.dll
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\seclogon.dll
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\sdbinst.exe
2009-08-15 00:39:27 ----A---- C:\WINDOWS\system32\scrrun.dll
2009-08-15 00:39:25 ----A---- C:\WINDOWS\system32\shdoclc.dll
2009-08-15 00:39:24 ----A---- C:\WINDOWS\system32\shrpubw.exe
2009-08-15 00:39:24 ----A---- C:\WINDOWS\system32\shmgrate.exe
2009-08-15 00:39:24 ----A---- C:\WINDOWS\system32\shmedia.dll
2009-08-15 00:39:24 ----A---- C:\WINDOWS\system32\shlwapi.dll
2009-08-15 00:39:24 ----A---- C:\WINDOWS\system32\shimgvw.dll
2009-08-15 00:39:24 ----A---- C:\WINDOWS\system32\shimeng.dll
2009-08-15 00:39:24 ----A---- C:\WINDOWS\system32\shgina.dll
2009-08-15 00:39:24 ----A---- C:\WINDOWS\system32\shfolder.dll
2009-08-15 00:39:24 ----A---- C:\WINDOWS\system32\shell32.dll
2009-08-15 00:39:24 ----A---- C:\WINDOWS\system32\shdocvw.dll
2009-08-15 00:39:23 ----A---- C:\WINDOWS\system32\smlogsvc.exe
2009-08-15 00:39:23 ----A---- C:\WINDOWS\system32\smlogcfg.dll
2009-08-15 00:39:23 ----A---- C:\WINDOWS\system32\slbiop.dll
2009-08-15 00:39:23 ----A---- C:\WINDOWS\system32\slayerxp.dll
2009-08-15 00:39:23 ----A---- C:\WINDOWS\system32\skeys.exe
2009-08-15 00:39:23 ----A---- C:\WINDOWS\system32\sigverif.exe
2009-08-15 00:39:23 ----A---- C:\WINDOWS\system32\sigtab.dll
2009-08-15 00:39:23 ----A---- C:\WINDOWS\system32\shutdown.exe
2009-08-15 00:39:23 ----A---- C:\WINDOWS\system32\shsvcs.dll
2009-08-15 00:39:23 ----A---- C:\WINDOWS\system32\shscrap.dll
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\srsvc.dll
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\srrstr.dll
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\srclient.dll
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\sqlunirl.dll
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\sqlsrv32.dll
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\spoolsv.exe
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\spoolss.dll
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\spider.exe
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\sort.exe
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\snmpsnap.dll
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\snmpapi.dll
2009-08-15 00:39:22 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-08-15 00:39:21 ----A---- C:\WINDOWS\system32\syncui.dll
2009-08-15 00:39:21 ----A---- C:\WINDOWS\system32\synceng.dll
2009-08-15 00:39:21 ----A---- C:\WINDOWS\system32\sxs.dll
2009-08-15 00:39:21 ----A---- C:\WINDOWS\system32\svchost.exe
2009-08-15 00:39:21 ----A---- C:\WINDOWS\system32\storprop.dll
2009-08-15 00:39:21 ----A---- C:\WINDOWS\system32\stobject.dll
2009-08-15 00:39:21 ----A---- C:\WINDOWS\system32\stimon.exe
2009-08-15 00:39:21 ----A---- C:\WINDOWS\system32\sti_ci.dll
2009-08-15 00:39:21 ----A---- C:\WINDOWS\system32\sti.dll
2009-08-15 00:39:21 ----A---- C:\WINDOWS\system32\stclient.dll
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\trkwks.dll
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\tree.com
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\tracert.exe
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\tourstart.exe
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\themeui.dll
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\termsrv.dll
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\termmgr.dll
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\telnet.exe
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\tcpmon.dll
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\tcpmib.dll
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\taskmgr.exe
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\tapisrv.dll
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\tapi32.dll
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\tapi3.dll
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\t2embed.dll
2009-08-15 00:39:20 ----A---- C:\WINDOWS\system32\sysocmgr.exe
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\usbui.dll
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\usbmon.dll
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\ups.exe
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\upnpui.dll
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\upnphost.dll
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\upnpcont.exe
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\upnp.dll
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\uniplat.dll
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\unimdmat.dll
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\umandlg.dll
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\udhisapi.dll
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\txflog.dll
2009-08-15 00:39:19 ----A---- C:\WINDOWS\system32\tsddd.dll
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\vssvc.exe
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\vssapi.dll
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\version.dll
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\verifier.dll
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\vdmredir.dll
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\vdmdbg.dll
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\vbscript.dll
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\vbajet32.dll
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\uxtheme.dll
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\utilman.exe
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\usp10.dll
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\userenv.dll
2009-08-15 00:39:18 ----A---- C:\WINDOWS\system32\user32.dll
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\winlogon.exe
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\winipsec.dll
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\wiavideo.dll
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\wiashext.dll
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\wiaservc.dll
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\wiascr.dll
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\wiadss.dll
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\wiadefui.dll
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\wiaacmgr.exe
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\wextract.exe
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\webvw.dll
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\webclnt.dll
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\wdigest.dll
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\wavemsp.dll
2009-08-15 00:39:17 ----A---- C:\WINDOWS\system32\w32time.dll
2009-08-15 00:39:16 ----A---- C:\WINDOWS\system32\wmstream.dll
2009-08-15 00:39:16 ----A---- C:\WINDOWS\system32\wmsdmoe.dll
2009-08-15 00:39:16 ----A---- C:\WINDOWS\system32\wmi.dll
2009-08-15 00:39:16 ----A---- C:\WINDOWS\system32\wlnotify.dll
2009-08-15 00:39:16 ----A---- C:\WINDOWS\system32\wldap32.dll
2009-08-15 00:39:16 ----A---- C:\WINDOWS\system32\winver.exe
2009-08-15 00:39:16 ----A---- C:\WINDOWS\system32\wintrust.dll
2009-08-15 00:39:16 ----A---- C:\WINDOWS\system32\winsta.dll
2009-08-15 00:39:16 ----A---- C:\WINDOWS\system32\winsrv.dll
2009-08-15 00:39:16 ----A---- C:\WINDOWS\system32\winscard.dll
2009-08-15 00:39:16 ----A---- C:\WINDOWS\system32\winrnr.dll
2009-08-15 00:39:16 ----A---- C:\WINDOWS\system32\winntbbu.dll
2009-08-15 00:39:16 ----A---- C:\WINDOWS\system32\winmm.dll
2009-08-15 00:39:15 ----A---- C:\WINDOWS\system32\wsnmp32.dll
2009-08-15 00:39:15 ----A---- C:\WINDOWS\system32\wshtcpip.dll
2009-08-15 00:39:15 ----A---- C:\WINDOWS\system32\wshrm.dll
2009-08-15 00:39:15 ----A---- C:\WINDOWS\system32\wship6.dll
2009-08-15 00:39:15 ----A---- C:\WINDOWS\system32\wshext.dll
2009-08-15 00:39:15 ----A---- C:\WINDOWS\system32\wshcon.dll
2009-08-15 00:39:15 ----A---- C:\WINDOWS\system32\wscript.exe
2009-08-15 00:39:15 ----A---- C:\WINDOWS\system32\ws2help.dll
2009-08-15 00:39:15 ----A---- C:\WINDOWS\system32\ws2_32.dll
2009-08-15 00:39:15 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2009-08-15 00:39:15 ----A---- C:\WINDOWS\system32\wpabaln.exe
2009-08-15 00:39:15 ----A---- C:\WINDOWS\system32\wow32.dll
2009-08-15 00:39:14 ----A---- C:\WINDOWS\system32\zipfldr.dll
2009-08-15 00:39:14 ----A---- C:\WINDOWS\system32\xolehlp.dll
2009-08-15 00:39:14 ----A---- C:\WINDOWS\system32\xcopy.exe
2009-08-15 00:39:14 ----A---- C:\WINDOWS\system32\xactsrv.dll
2009-08-15 00:39:14 ----A---- C:\WINDOWS\system32\wzcsvc.dll
2009-08-15 00:39:14 ----A---- C:\WINDOWS\system32\wzcsapi.dll
2009-08-15 00:39:14 ----A---- C:\WINDOWS\system32\wzcdlg.dll
2009-08-15 00:39:14 ----A---- C:\WINDOWS\system32\wtsapi32.dll
2009-08-15 00:39:14 ----A---- C:\WINDOWS\system32\wstdecod.dll
2009-08-15 00:39:14 ----A---- C:\WINDOWS\system32\wsock32.dll
2009-08-15 00:39:12 ----A---- C:\WINDOWS\system32\format.com
2009-08-15 00:39:12 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2009-08-15 00:39:12 ----A---- C:\WINDOWS\system32\csrsrv.dll
2009-08-15 00:39:12 ----A---- C:\WINDOWS\system32\comdlg32.dll
2009-08-15 00:39:12 ----A---- C:\WINDOWS\system32\comctl32.dll
2009-08-15 00:39:12 ----A---- C:\WINDOWS\system32\cmd.exe
2009-08-15 00:39:12 ----A---- C:\WINDOWS\system32\cacls.exe
2009-08-15 00:39:12 ----A---- C:\WINDOWS\system32\autoconv.exe
2009-08-15 00:39:12 ----A---- C:\WINDOWS\system32\autochk.exe
2009-08-15 00:39:12 ----A---- C:\WINDOWS\system32\advapi32.dll
2009-08-15 00:39:11 ----A---- C:\WINDOWS\system32\nslookup.exe
2009-08-15 00:39:11 ----A---- C:\WINDOWS\system32\msv1_0.dll
2009-08-15 00:39:11 ----A---- C:\WINDOWS\system32\msgsvc.dll
2009-08-15 00:39:11 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2009-08-15 00:39:11 ----A---- C:\WINDOWS\system32\lsasrv.dll
2009-08-15 00:39:11 ----A---- C:\WINDOWS\system32\locator.exe
2009-08-15 00:39:11 ----A---- C:\WINDOWS\system32\localspl.dll
2009-08-15 00:39:11 ----A---- C:\WINDOWS\system32\lmhsvc.dll
2009-08-15 00:39:11 ----A---- C:\WINDOWS\system32\kernel32.dll
2009-08-15 00:39:11 ----A---- C:\WINDOWS\system32\imagehlp.dll
2009-08-15 00:39:11 ----A---- C:\WINDOWS\system32\ftp.exe
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\samlib.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\rshx32.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\rastapi.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\rasman.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\rasdlg.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\rasauto.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\rasapi32.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\printui.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\perfctrs.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\olecnv32.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\oleaut32.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\nwprovau.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\ntvdm.exe
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\ntprint.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\ntlsapi.dll
2009-08-15 00:39:10 ----A---- C:\WINDOWS\system32\ntdll.dll
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\win32spl.dll
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\userinit.exe
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\untfs.dll
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\ulib.dll
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\tcpmonui.dll
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\syssetup.dll
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\srvsvc.dll
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\smss.exe
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\setupapi.dll
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\services.exe
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\schannel.dll
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\scardsvr.exe
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\savedump.exe
2009-08-15 00:39:09 ----A---- C:\WINDOWS\system32\samsrv.dll
2009-08-15 00:39:08 ----A---- C:\WINDOWS\system32\wkssvc.dll
2009-08-15 00:39:04 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2009-08-15 00:39:04 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2009-08-15 00:39:04 ----A---- C:\WINDOWS\system32\HAL.DLL
2009-08-15 00:36:47 ----D---- C:\WINDOWS\EHome
2009-08-13 21:56:58 ----HDC---- C:\WINDOWS\$NtUninstallKB959426_0$
2009-08-13 21:56:47 ----HDC---- C:\WINDOWS\$NtUninstallKB960859_0$
2009-08-13 21:55:50 ----HDC---- C:\WINDOWS\$NtUninstallKB961371-v2_0$
2009-08-13 21:55:44 ----HDC---- C:\WINDOWS\$NtUninstallKB971657_0$
2009-08-13 21:55:19 ----HDC---- C:\WINDOWS\$NtUninstallKB961118_0$
2009-08-13 21:55:06 ----HDC---- C:\WINDOWS\$NtUninstallKB971557_0$
2009-08-13 21:54:56 ----HDC---- C:\WINDOWS\$NtUninstallKB960225_0$
2009-08-13 21:53:35 ----HDC---- C:\WINDOWS\$NtUninstallKB973346$
2009-08-13 21:53:06 ----HDC---- C:\WINDOWS\$NtUninstallKB956572_0$
2009-08-13 21:51:00 ----HDC---- C:\WINDOWS\$NtUninstallKB961501_0$
2009-08-13 21:50:53 ----HDC---- C:\WINDOWS\$NtUninstallKB971633_0$
2009-08-13 21:50:41 ----HDC---- C:\WINDOWS\$NtUninstallKB973869_0$
2009-08-13 21:50:24 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2009-08-13 21:50:08 ----HDC---- C:\WINDOWS\$NtUninstallKB952004_0$
2009-08-13 21:47:56 ----HDC---- C:\WINDOWS\$NtUninstallKB973507_0$
2009-08-13 21:46:11 ----HDC---- C:\WINDOWS\$NtUninstallKB973354_0$
2009-08-13 21:45:58 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$
2009-08-13 21:44:16 ----HDC---- C:\WINDOWS\$NtUninstallKB970238_0$
2009-08-13 21:43:43 ----D---- C:\WINDOWS\ServicePackFiles
2009-08-13 21:43:35 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2009-08-13 21:43:07 ----HDC---- C:\WINDOWS\$NtUninstallKB960803_0$
2009-08-13 21:42:38 ----HDC---- C:\WINDOWS\$NtUninstallKB973815_0$
2009-08-13 21:41:44 ----HDC---- C:\WINDOWS\$NtUninstallKB968537_0$
2009-08-13 21:29:20 ----HDC---- C:\WINDOWS\$NtUninstallKB923561_0$
2009-08-13 20:25:55 ----N---- C:\WINDOWS\system32\xpsp4res.dll
2009-08-13 16:02:35 ----A---- C:\Support-LogMeInRescue.exe
2009-08-13 14:27:18 ----D---- C:\N360_BACKUP
2009-08-13 13:50:52 ----A---- C:\WINDOWS\system32\GEARAspi.dll
2009-08-13 13:50:40 ----D---- C:\Documents and Settings\All Users\Application Data\{7B6BA59A-FB0E-4499-8536-A7420338BF3B}
2009-08-13 13:31:11 ----D---- C:\Documents and Settings\All Users\Application Data\PCSettings
2009-08-13 13:31:04 ----D---- C:\Documents and Settings\All Users\Application Data\Norton
2009-08-13 13:30:50 ----D---- C:\Documents and Settings\All Users\Application Data\NortonInstaller
2009-08-13 12:06:57 ----A---- C:\WINDOWS\pocufoxun.dll
2009-08-13 12:06:57 ----A---- C:\Program Files\Common Files\lywep.bat
2009-08-13 12:06:56 ----A---- C:\Documents and Settings\All Users\Application Data\ubuly.bat
2009-08-13 10:05:02 ----N---- C:\WINDOWS\system32\ESQULifsrapmtaumiwciufohakmikbprhylsp.dll
2009-08-12 23:40:20 ----A---- C:\WINDOWS\cdplayer.ini
2009-08-07 12:47:20 ----D---- C:\audio book
======List of files/folders modified in the last 1 months======
2009-09-06 16:21:18 ----A---- C:\WINDOWS\WORDPAD.INI
2009-09-06 16:03:48 ----D---- C:\WINDOWS\Temp
2009-09-06 16:03:16 ----D---- C:\Documents and Settings\admin\Application Data\mjusbsp
2009-09-06 15:59:06 ----D---- C:\WINDOWS
2009-09-06 15:58:39 ----D---- C:\WINDOWS\system32
2009-09-06 15:57:21 ----D---- C:\WINDOWS\system32\drivers
2009-09-05 12:01:06 ----A---- C:\WINDOWS\BRWMARK.INI
2009-09-04 14:39:50 ----D---- C:\Program Files
2009-09-04 12:06:52 ----D---- C:\WINDOWS\system32\CatRoot2
2009-08-28 10:46:21 ----ASH---- C:\boot.ini
2009-08-28 10:46:21 ----A---- C:\WINDOWS\win.ini
2009-08-28 10:46:21 ----A---- C:\WINDOWS\system.ini
2009-08-28 03:22:16 ----A---- C:\WINDOWS\NeroDigital.ini
2009-08-26 17:30:46 ----D---- C:\@
2009-08-26 14:31:23 ----HD---- C:\WINDOWS\inf
2009-08-25 06:20:08 ----SHD---- C:\WINDOWS\Installer
2009-08-25 01:31:03 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-08-25 01:08:04 ----SHD---- C:\Config.Msi
2009-08-25 01:05:23 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-08-25 01:02:58 ----D---- C:\WINDOWS\Fonts
2009-08-25 01:02:46 ----D---- C:\Program Files\Common Files\Microsoft Shared
2009-08-25 01:01:56 ----D---- C:\Program Files\Microsoft Works
2009-08-24 10:45:46 ----SD---- C:\WINDOWS\Tasks
2009-08-21 12:15:22 ----D---- C:\WINDOWS\system32\CatRoot
2009-08-20 08:45:57 ----D---- C:\Program Files\Google
2009-08-18 14:15:11 ----D---- C:\Program Files\Common Files
2009-08-18 13:43:08 ----HD---- C:\WINDOWS\$hf_mig$
2009-08-18 08:42:12 ----A---- C:\WINDOWS\ntbtlog.txt
2009-08-18 07:55:54 ----SHD---- C:\RECYCLER
2009-08-18 07:37:30 ----D---- C:\Documents and Settings
2009-08-17 16:22:01 ----D---- C:\WINDOWS\Microsoft.NET
2009-08-17 15:42:45 ----D---- C:\WINDOWS\system32\en-US
2009-08-17 15:42:44 ----RSHD---- C:\WINDOWS\system32\dllcache
2009-08-17 15:42:44 ----D---- C:\WINDOWS\Media
2009-08-17 15:42:44 ----D---- C:\WINDOWS\Help
2009-08-17 15:42:44 ----D---- C:\Program Files\Internet Explorer
2009-08-17 15:38:34 ----A---- C:\WINDOWS\imsins.BAK
2009-08-17 14:58:47 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-08-17 09:20:54 ----SHD---- C:\System Volume Information
2009-08-17 09:19:11 ----D---- C:\Program Files\Common Files\Symantec Shared
2009-08-15 16:26:58 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-08-15 16:26:52 ----D---- C:\WINDOWS\addins
2009-08-15 15:36:52 ----D---- C:\WINDOWS\WinSxS
2009-08-15 14:57:20 ----RSD---- C:\WINDOWS\assembly
2009-08-15 14:13:32 ----D---- C:\fuse
2009-08-15 11:49:32 ----D---- C:\JW info
2009-08-15 11:45:26 ----D---- C:\readers
2009-08-15 11:02:10 ----D---- C:\PDF'S
2009-08-15 10:57:34 ----D---- C:\phone
2009-08-15 10:56:53 ----D---- C:\Point & Shoot Videos
2009-08-15 10:55:44 ----D---- C:\pix
2009-08-15 10:47:14 ----D---- C:\av
2009-08-15 10:39:57 ----D---- C:\WINDOWS\Registration
2009-08-15 10:33:23 ----HD---- C:\Program Files\InstallShield Installation Information
2009-08-15 10:33:23 ----D---- C:\Program Files\egames
2009-08-15 10:19:59 ----D---- C:\Program Files\Real
2009-08-15 10:16:36 ----D---- C:\Program Files\Common Files\Real
2009-08-15 10:13:03 ----D---- C:\Documents and Settings\admin\Application Data\Real
2009-08-15 10:11:06 ----D---- C:\Program Files\ReadPlease 2003
2009-08-15 09:56:23 ----D---- C:\Documents and Settings\All Users\Application Data\iWin Games
2009-08-15 09:54:04 ----D---- C:\Program Files\ContMedia
2009-08-15 09:54:04 ----A---- C:\WINDOWS\GKM303DS.ini
2009-08-15 09:17:07 ----D---- C:\Program Files\Coupons
2009-08-15 09:04:26 ----D---- C:\Program Files\Abbyy FineReader 6.0 Sprint
2009-08-15 04:50:05 ----D---- C:\WINDOWS\system32\wbem
2009-08-15 04:50:05 ----D---- C:\WINDOWS\AppPatch
2009-08-15 03:38:49 ----D---- C:\Program Files\Outlook Express
2009-08-15 02:56:25 ----D---- C:\WINDOWS\security
2009-08-15 02:54:53 ----D---- C:\Program Files\Messenger
2009-08-15 02:44:43 ----D---- C:\WINDOWS\system32\Setup
2009-08-15 02:44:41 ----D---- C:\WINDOWS\network diagnostic
2009-08-15 02:44:40 ----D---- C:\WINDOWS\ime
2009-08-15 02:43:51 ----D---- C:\WINDOWS\system32\usmt
2009-08-15 02:43:40 ----D---- C:\WINDOWS\PeerNet
2009-08-15 02:43:40 ----D---- C:\Program Files\Movie Maker
2009-08-15 02:38:01 ----D---- C:\WINDOWS\system32\Restore
2009-08-15 02:38:00 ----D---- C:\WINDOWS\system32\npp
2009-08-15 02:37:59 ----D---- C:\WINDOWS\msagent
2009-08-15 02:37:57 ----D---- C:\WINDOWS\srchasst
2009-08-15 02:37:55 ----D---- C:\Program Files\NetMeeting
2009-08-15 02:37:54 ----D---- C:\WINDOWS\system32\Com
2009-08-15 02:37:53 ----D---- C:\Program Files\Windows NT
2009-08-15 02:37:53 ----D---- C:\Program Files\Windows Media Player
2009-08-15 02:37:51 ----D---- C:\Program Files\Common Files\System
2009-08-15 02:37:41 ----D---- C:\WINDOWS\system32\oobe
2009-08-15 02:37:39 ----D---- C:\WINDOWS\system
2009-08-15 00:41:49 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-08-13 21:48:17 ----D---- C:\WINDOWS\ie7updates
2009-08-13 20:07:39 ----A---- C:\WINDOWS\Brownie.ini
2009-08-13 17:49:56 ----D---- C:\WINDOWS\pss
2009-08-13 16:45:14 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
2009-08-13 13:50:52 ----DC---- C:\WINDOWS\system32\DRVSTORE
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 omci;OMCI WDM Device Driver; C:\WINDOWS\system32\DRIVERS\omci.sys [2002-11-08 17217]
R2 Aspi32;Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [2002-07-17 16877]
R2 dsunidrv;DellSupport UniDriver; C:\WINDOWS\system32\DRIVERS\dsunidrv.sys [2007-02-25 5376]
R2 MaVctrl;MaVctrl; C:\WINDOWS\system32\DRIVERS\MaVc2K.sys [2005-08-17 11473]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-03-30 1035264]
R3 E100B;Intel(R) PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2004-10-14 155648]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-01-15 23848]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 PbsAuDrv;PolderbitS Audio Driver; C:\WINDOWS\system32\drivers\pbsaudrv.sys [2009-08-01 110752]
R3 STHDA;High Definition Audio Driver (WDM) - SigmaTel CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2005-03-31 180096]
R3 usbaudio;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Microsoft USB Standard Hub Driver; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 ADM8511;ADMtek ADM8511/AN986 USB To Fast Ethernet Converter; C:\WINDOWS\system32\DRIVERS\ADM8511.SYS [2001-08-17 20160]
S3 CAM1690;USB PC Camera; C:\WINDOWS\System32\Drivers\cam1690.sys [2007-11-21 181888]
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024]
S3 DSproct;DSproct; \??\C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys []
S3 ionwpvvc;Watchport/V2 USB Camera; C:\WINDOWS\system32\DRIVERS\ionwpvvc.sys [2008-02-14 38656]
S3 MaRdPnp;MaRdPnp; C:\WINDOWS\system32\DRIVERS\MaRdP2K.sys [2005-08-17 49867]
S3 motmodem;Motorola USB CDC ACM Driver; C:\WINDOWS\system32\DRIVERS\motmodem.sys [2009-01-29 23680]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880]
S3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-08-03 1897408]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232]
S3 U2SP;OEM USB to Serial Converter Driver(Philips); C:\WINDOWS\system32\DRIVERS\u2s2kxp.sys [2004-05-05 23296]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 usbser;MOTOROLA Modem Driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-14 26112]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200]
S4 agp440;Intel AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
S4 agpCPQ;Compaq AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-14 44928]
S4 alim1541;ALI AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-14 42752]
S4 amdagp;AMD AGP Bus Filter Driver; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-14 43008]
S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-17 13952]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\DRIVERS\intelide.sys [2008-04-14 5504]
S4 sisagp;SIS AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-14 40960]
S4 viaagp;VIA AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avp;avp; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [2009-07-03 303376]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 IAANTMon;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe [2005-04-25 86142]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 dlbx_device;dlbx_device; C:\WINDOWS\system32\dlbxcoms.exe [2004-12-16 462848]
S4 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2005-03-30 360448]
S4 DSBrokerService;DSBrokerService; C:\Program Files\DellSupport\brkrsvc.exe [2007-03-07 76848]
S4 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S4 getPlus(R) Helper;getPlus(R) Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe []
S4 gupdate1ca105c13ac1bc4;Google Update Service (gupdate1ca105c13ac1bc4); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-29 133104]
S4 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-01-19 137200]
S4 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S4 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 MotoConnect Service;MotoConnect Service; C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe []
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S4 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 sprtsvc_dellsupportcenter;SupportSoft Sprocket Service (dellsupportcenter); C:\Program Files\Dell Support Center\bin\sprtsvc.exe [2008-08-13 201968]
S4 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
-----------------EOF-----------------