Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

trojan downloader zlob

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

trojan downloader zlob

Unread postby leebonfiglio » October 2nd, 2008, 11:11 am

This is my hijackthis report.

Thanks for the help.
Lee

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:47:31, on 10/2/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Users\lee bonfiglio\Program Files\DNA\btdna.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Users\lee bonfiglio\AppData\Local\Temp\pwrmgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\Rhapsody\rhaphlpr.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9e.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\lee bonfiglio\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\lee bonfiglio.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com/ig?hl=en&gl=us
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Google Update Helper - {77D7E795-33C5-4323-974D-A2A49AB75517} - C:\Program Files\Google\Update\1.2.131.11\GoopdateBho.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [ECenter] c:\dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\lee bonfiglio\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [IUpd704] C:\Users\LEEBON~1\AppData\Local\Temp\pwrmgr.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: palmOne Registration.lnk = C:\Program Files\palmOne\register.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: QuickSet.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O13 - Gopher Prefix:
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/binFrameWork/v10/St ... b55579.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v ... b56649.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (MSN Games – Game Communicator) - http://zone.msn.com/binframework/v10/St ... b55579.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-l ... cfscan.cab
O16 - DPF: {F773E7B2-62A9-4524-9109-87D2F0BEFAA4} (ChessControl Class) - http://zone.msn.com/bingame/zpagames/zp ... b56961.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate1c8c134749512b0) (gupdate1c8c134749512b0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 12808 bytes
leebonfiglio
Regular Member
 
Posts: 32
Joined: October 2nd, 2008, 11:05 am
Advertisement
Register to Remove

Re: trojan downloader zlob

Unread postby Shaba » October 3rd, 2008, 3:49 am

Hi leebonfiglio

To access the Uninstall Manager you would do the following:

1. Start HijackThis
2. Click on the Config button
3. Click on the Misc Tools button
4. Click on the Open Uninstall Manager button.

You will now be presented with a screen similar to the one below:

Image

5. Click on the Save list... button and specify where you would like to save this file. When you press Save button a notepad will open with the contents of that file. Simply copy and paste the contents of that notepad here on your next reply.
User avatar
Shaba
Admin/Teacher Emeritus
 
Posts: 26974
Joined: March 24th, 2006, 4:42 am
Location: Finland

Re: trojan downloader zlob

Unread postby leebonfiglio » October 3rd, 2008, 8:57 am

32 Bit HP CIO Components Installer
Ad-Aware
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)
Adobe Flash Player 9 ActiveX
Adobe Flash Player ActiveX
Adobe Flash Player Plugin
Adobe Photoshop CS
Adobe Photoshop Lightroom 2
Adobe Reader 8.1.2
Apple Mobile Device Support
Apple Software Update
Broadcom Management Programs
CAM UnZip 4.42
Canon G.726 WMP-Decoder
Canon MovieEdit Task for ZoomBrowser EX
Canon RAW Image Task for ZoomBrowser EX
Canon Utilities CameraWindow
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX
Canon Utilities MyCamera
Canon Utilities RemoteCapture Task for ZoomBrowser EX
Canon Utilities ZoomBrowser EX
Canon ZoomBrowser EX Memory Card Utility
CCleaner (remove only)
Conexant HDA D330 MDC V.92 Modem
ConTEXT
Dell Support Center (Support Software)
Dell System Customization Wizard
Dell Touchpad
DellSupport
Digital Line Detect
DivX Codec
DivX Converter
DivX Player
DivX Web Player
Epocrates Essentials for Pocket PC
Games, Music, & Photos Launcher
Garmin nRoute
Garmin Trip and Waypoint Manager v4
GDR 3068 for SQL Server Database Services 2005 ENU (KB948109)
Google Desktop
Google Earth
Google Earth Plugin
Google Toolbar for Internet Explorer
Google Toolbar for Internet Explorer
Google Update
HijackThis 2.0.2
HP Customer Participation Program 10.0
HP Document Manager 1.0
HP Imaging Device Functions 10.0
HP iPAQ Setup Assistant v1.3.11.0
HP Officejet J4500 Series
HP Photosmart Essential 2.5
HP Smart Web Printing
HP Solution Center 10.0
HP Update
iTunes
Java(TM) 6 Update 3
Java(TM) 6 Update 5
Java(TM) 6 Update 6
Java(TM) 6 Update 7
Java(TM) SE Runtime Environment 6
LBMaps Baja Navigator V1.10
Logitech QuickCam
Logitech QuickCam Driver Package
Malwarebytes' Anti-Malware
MediaDirect
Microsoft Office Excel Viewer 2003
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (SONY_MEDIAMGR2)
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files (English)
Microsoft SQL Server VSS Writer
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
Modem Diagnostic Tool
Mozilla Firefox (3.0.3)
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB941833)
My Sirius Studio
Netflix Movie Viewer
NetWaiting
OCR Software by I.R.I.S. 10.0
OpenOffice.org 2.3
Opera 9.52
OutlookAddinSetup
Product Documentation Launcher
QuickSet
QuickTime
Rhapsody
Rhapsody Player Engine
Roxio Creator Audio
Roxio Creator BDAV Plugin
Roxio Creator Copy
Roxio Creator Data
Roxio Creator DE
Roxio Creator Tools
Roxio Express Labeler
Roxio MyDVD DE
Roxio Update Manager
Security Update for CAPICOM (KB931906)
Security Update for CAPICOM (KB931906)
Shop for HP Supplies
Skype™ 3.5
Sonic Activation Module
Sony Media Manager 2.3
Sony Vegas Pro 8.0
Spyware Doctor 6.0
SUPERAntiSpyware Free Edition
URL Assistant
User's Guides
Visual Link Spanish Level I v4.0
Visual Link Spanish(tm) - Level II Verb Module
WIDCOMM Bluetooth Software 6.0.1.3100
Windows Live installer
Windows Live Mail
Windows Live Sign-in Assistant
Windows Media Player Firefox Plugin
Windows Mobile Device Center
Windows Mobile Device Center Driver Update
WinRAR archiver
WinZip 11.2
Xvid 1.1.3 final uninstall
Yahoo! Install Manager
Yahoo! Music Jukebox
Yahoo! Toolbar

Thanks,
Lee
leebonfiglio
Regular Member
 
Posts: 32
Joined: October 2nd, 2008, 11:05 am

Re: trojan downloader zlob

Unread postby Shaba » October 3rd, 2008, 11:42 am

I see that you have also posted here

In which forum you want to continue?
User avatar
Shaba
Admin/Teacher Emeritus
 
Posts: 26974
Joined: March 24th, 2006, 4:42 am
Location: Finland

Re: trojan downloader zlob

Unread postby leebonfiglio » October 3rd, 2008, 1:30 pm

This Forum.

Thanks
Lee
leebonfiglio
Regular Member
 
Posts: 32
Joined: October 2nd, 2008, 11:05 am

Re: trojan downloader zlob

Unread postby Shaba » October 3rd, 2008, 1:49 pm

Please then post a fresh HijackThis log next :)
User avatar
Shaba
Admin/Teacher Emeritus
 
Posts: 26974
Joined: March 24th, 2006, 4:42 am
Location: Finland

Re: trojan downloader zlob

Unread postby leebonfiglio » October 3rd, 2008, 2:48 pm

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:47:31, on 10/2/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Users\lee bonfiglio\Program Files\DNA\btdna.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Users\lee bonfiglio\AppData\Local\Temp\pwrmgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\Rhapsody\rhaphlpr.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9e.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\lee bonfiglio\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\lee bonfiglio.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com/ig?hl=en&gl=us
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Google Update Helper - {77D7E795-33C5-4323-974D-A2A49AB75517} - C:\Program Files\Google\Update\1.2.131.11\GoopdateBho.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [ECenter] c:\dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\lee bonfiglio\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [IUpd704] C:\Users\LEEBON~1\AppData\Local\Temp\pwrmgr.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: palmOne Registration.lnk = C:\Program Files\palmOne\register.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: QuickSet.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O13 - Gopher Prefix:
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/binFrameWork/v10/St ... b55579.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v ... b56649.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (MSN Games – Game Communicator) - http://zone.msn.com/binframework/v10/St ... b55579.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-l ... cfscan.cab
O16 - DPF: {F773E7B2-62A9-4524-9109-87D2F0BEFAA4} (ChessControl Class) - http://zone.msn.com/bingame/zpagames/zp ... b56961.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate1c8c134749512b0) (gupdate1c8c134749512b0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 12808 bytes
leebonfiglio
Regular Member
 
Posts: 32
Joined: October 2nd, 2008, 11:05 am

Re: trojan downloader zlob

Unread postby Shaba » October 3rd, 2008, 2:52 pm

IMPORTANT I notice there are signs of one or more P2P (Peer to Peer) File Sharing Programs on your computer.

BitTorrent DNA

I'd like you to read the MRU policy for P2P Programs.

Please go to Control Panel > Add/Remove Programs and uninstall the programs listed above (in red).

Delete this afterwards:

C:\Users\lee bonfiglio\Program Files\DNA

Empty Recycle Bin.

Delete info.txt in RSIT folder.

Please run a new RSIT scan when finished and post logs back here.
User avatar
Shaba
Admin/Teacher Emeritus
 
Posts: 26974
Joined: March 24th, 2006, 4:42 am
Location: Finland

Re: trojan downloader zlob

Unread postby leebonfiglio » October 3rd, 2008, 8:32 pm

Logfile of random's system information tool 1.04 (written by random/random)
Run by lee bonfiglio at 2008-10-03 19:31:27
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 62 GB (45%) free of 140 GB
Total RAM: 2037 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:31:33, on 10/3/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Users\lee bonfiglio\Program Files\DNA\btdna.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Users\lee bonfiglio\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\lee bonfiglio.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com/ig?hl=en&gl=us
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Google Update Helper - {77D7E795-33C5-4323-974D-A2A49AB75517} - C:\Program Files\Google\Update\1.2.131.11\GoopdateBho.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [ECenter] c:\dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\lee bonfiglio\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [IUpd704] C:\Users\LEEBON~1\AppData\Local\Temp\pwrmgr.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: palmOne Registration.lnk = C:\Program Files\palmOne\register.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: QuickSet.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O13 - Gopher Prefix:
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/binFrameWork/v10/St ... b55579.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v ... b56649.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (MSN Games – Game Communicator) - http://zone.msn.com/binframework/v10/St ... b55579.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-l ... cfscan.cab
O16 - DPF: {F773E7B2-62A9-4524-9109-87D2F0BEFAA4} (ChessControl Class) - http://zone.msn.com/bingame/zpagames/zp ... b56961.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate1c8c134749512b0) (gupdate1c8c134749512b0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 12675 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachine.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-11-29 436288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2007-09-13 1312040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{77D7E795-33C5-4323-974D-A2A49AB75517}]
Google Update Helper - C:\Program Files\Google\Update\1.2.131.11\GoopdateBho.dll [2008-08-29 133616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2007-09-12 2193280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA6319C0-31B7-401E-A518-A07C3DB8F777}]
CBrowserHelperObject Object - C:\Program Files\BAE\BAE.dll [2007-03-16 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2007-11-06 542016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2007-09-12 2193280]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-11-29 436288]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2007-05-21 159744]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2007-05-21 138008]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2007-05-21 154392]
"Persistence"=C:\Windows\system32\igfxpers.exe [2007-05-21 133912]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-10-03 81920]
""= []
"PCMService"=C:\Program Files\Dell\MediaDirect\PCMService.exe [2007-04-16 184320]
"dscactivate"=C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe [2007-11-15 16384]
"ECenter"=c:\dell\E-Center\EULALauncher.exe [2007-03-16 17920]
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-08-06 29744]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2006-10-03 221184]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-03-29 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-03-30 267048]
"DellSupportCenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2008-08-13 206064]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
"hpqSRMon"=C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2007-08-22 80896]
"SigmatelSysTrayApp"=C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [2007-06-25 405504]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdSync.exe [2006-11-02 215552]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2008-09-10 1253040]
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DellSupport"=C:\Program Files\DellSupport\DSAgnt.exe [2007-03-15 460784]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"DellSupportCenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2008-08-13 206064]
"BitTorrent DNA"=C:\Users\lee bonfiglio\Program Files\DNA\btdna.exe [2008-09-17 289088]
"IUpd704"=C:\Users\LEEBON~1\AppData\Local\Temp\pwrmgr.exe [2008-09-30 408576]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2008-09-03 1576176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-12 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-10-14 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [2007-10-25 563984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
C:\Program Files\Logitech\QuickCam\Quickcam.exe [2007-10-25 2178832]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2006-11-03 703280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Digital Line Detect.lnk]
C:\PROGRA~1\DIGITA~1\DLG.exe [2006-11-03 50688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2007-10-14 214360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Quick Pick.lnk]
C:\PROGRA~1\WinZip\WZQKPICK.EXE [2008-04-28 415072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^lee bonfiglio^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 2.3.lnk]
C:\PROGRA~1\OPENOF~1.3\program\QUICKS~1.EXE [2007-08-17 393216]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
QuickSet.lnk - C:\Windows\Installer\{7F0C4457-8E64-491B-8D7B-991504365D1E}\NewShortcut2_53A01CC614B04512A2E710D39BF83DC4.exe

C:\Users\lee bonfiglio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
palmOne Registration.lnk - C:\Program Files\palmOne\register.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-07-23 352256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2007-05-21 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdcoreservice]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2008-10-02 09:47:21 ----D---- C:\rsit
2008-10-02 09:34:19 ----D---- C:\ProgramData\Avira
2008-10-02 09:34:19 ----D---- C:\Program Files\Avira
2008-10-02 07:49:56 ----SHD---- C:\Config.Msi
2008-10-01 13:44:04 ----D---- C:\Program Files\Trend Micro
2008-10-01 07:12:49 ----D---- C:\Windows\SQL9_KB948109_ENU
2008-09-30 20:11:14 ----D---- C:\Avenger
2008-09-30 20:11:13 ----A---- C:\avenger.txt
2008-09-30 19:55:41 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\Malwarebytes
2008-09-30 19:55:33 ----D---- C:\ProgramData\Malwarebytes
2008-09-30 19:55:33 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-09-30 18:07:59 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2008-09-30 18:07:02 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\SUPERAntiSpyware.com
2008-09-30 18:07:02 ----D---- C:\Program Files\SUPERAntiSpyware
2008-09-30 17:19:09 ----A---- C:\Windows\ntbtlog.txt
2008-09-30 13:13:16 ----D---- C:\ProgramData\Yahoo! Companion
2008-09-30 13:13:05 ----D---- C:\Program Files\Enigma Software Group
2008-09-30 09:38:40 ----D---- C:\Program Files\CCleaner
2008-09-29 13:44:58 ----D---- C:\Program Files\Vstplugins
2008-09-29 08:57:43 ----D---- C:\Program Files\Microsoft.NET
2008-09-29 08:56:39 ----D---- C:\Windows\PCHEALTH
2008-09-29 08:56:28 ----D---- C:\Program Files\Microsoft SQL Server
2008-09-29 08:53:28 ----D---- C:\ProgramData\Sony
2008-09-29 08:53:18 ----D---- C:\Program Files\Sony
2008-09-29 07:43:27 ----D---- C:\Program Files\Lavasoft
2008-09-29 07:43:25 ----D---- C:\ProgramData\Lavasoft
2008-09-29 07:41:49 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-09-29 07:19:42 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\PC Tools
2008-09-29 07:19:42 ----D---- C:\Program Files\Spyware Doctor
2008-09-28 18:42:43 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\WinRAR
2008-09-28 18:42:31 ----D---- C:\Program Files\WinRAR
2008-09-28 17:42:57 ----D---- C:\Program Files\ConTEXT
2008-09-28 17:01:04 ----D---- C:\Program Files\CAM Development
2008-09-22 03:03:10 ----A---- C:\Windows\system32\msshooks.dll
2008-09-22 03:03:09 ----A---- C:\Windows\system32\msscb.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\thawbrkr.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\srchadmin.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\SearchFilterHost.exe
2008-09-22 03:03:07 ----A---- C:\Windows\system32\propsys.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\propdefs.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\msstrc.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\mssprxy.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\mssitlb.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\msshsq.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\korwbrkr.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\xmlfilter.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\wsepno.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\tquery.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2008-09-22 03:03:06 ----A---- C:\Windows\system32\SearchIndexer.exe
2008-09-22 03:03:06 ----A---- C:\Windows\system32\rtffilt.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\offfilt.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\nlhtml.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\mssvp.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\mssrch.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\mssphtb.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\mssph.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\msscntrs.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\mimefilt.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\chtbrkr.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\chsbrkr.dll
2008-09-21 03:31:25 ----A---- C:\Windows\system32\rpcrt4.dll
2008-09-21 03:31:25 ----A---- C:\Windows\system32\ntkrnlpa.exe
2008-09-21 03:31:24 ----A---- C:\Windows\system32\pacerprf.dll
2008-09-21 03:31:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2008-09-21 03:31:15 ----A---- C:\Windows\system32\wshext.dll
2008-09-21 03:31:15 ----A---- C:\Windows\system32\wscript.exe
2008-09-21 03:31:15 ----A---- C:\Windows\system32\vbscript.dll
2008-09-21 03:31:15 ----A---- C:\Windows\system32\scrrun.dll
2008-09-21 03:31:15 ----A---- C:\Windows\system32\scrobj.dll
2008-09-21 03:31:15 ----A---- C:\Windows\system32\jscript.dll
2008-09-21 03:31:15 ----A---- C:\Windows\system32\cscript.exe
2008-09-21 03:31:13 ----A---- C:\Windows\system32\emdmgmt.dll
2008-09-21 03:31:13 ----A---- C:\Windows\system32\dataclen.dll
2008-09-21 03:31:13 ----A---- C:\Windows\system32\cdd.dll
2008-09-20 22:29:45 ----D---- C:\PerfLogs
2008-09-19 21:52:37 ----A---- C:\Windows\system32\SLsvc.exe
2008-09-19 21:52:37 ----A---- C:\Windows\system32\onex.dll
2008-09-19 21:52:25 ----A---- C:\Windows\system32\PSHED.DLL
2008-09-19 21:52:24 ----A---- C:\Windows\system32\imagesp1.dll
2008-09-19 21:52:22 ----A---- C:\Windows\system32\dfsr.exe
2008-09-19 21:52:21 ----A---- C:\Windows\system32\pidgenx.dll
2008-09-19 21:52:20 ----A---- C:\Windows\system32\sstpsvc.dll
2008-09-19 21:52:20 ----A---- C:\Windows\system32\mstscax.dll
2008-09-19 21:52:18 ----A---- C:\Windows\system32\WsmSvc.dll
2008-09-19 21:52:18 ----A---- C:\Windows\system32\winrscmd.dll
2008-09-19 21:52:17 ----A---- C:\Windows\system32\sysmain.dll
2008-09-19 21:52:17 ----A---- C:\Windows\system32\RMActivate.exe
2008-09-19 21:52:16 ----A---- C:\Windows\system32\vssapi.dll
2008-09-19 21:52:15 ----A---- C:\Windows\system32\VSSVC.exe
2008-09-19 21:52:15 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2008-09-19 21:52:14 ----A---- C:\Windows\system32\secproc.dll
2008-09-19 21:52:14 ----A---- C:\Windows\system32\RMActivate_isv.exe
2008-09-19 21:52:14 ----A---- C:\Windows\system32\iesetup.dll
2008-09-19 21:52:11 ----A---- C:\Windows\system32\secproc_isv.dll
2008-09-19 21:52:09 ----A---- C:\Windows\system32\icardres.dll
2008-09-19 21:52:09 ----A---- C:\Windows\system32\icardagt.exe
2008-09-19 21:52:09 ----A---- C:\Windows\system32\drmv2clt.dll
2008-09-19 21:52:09 ----A---- C:\Windows\system32\blackbox.dll
2008-09-19 21:52:08 ----A---- C:\Windows\system32\xpssvcs.dll
2008-09-19 21:52:06 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2008-09-19 21:52:06 ----A---- C:\Windows\system32\RacEngn.dll
2008-09-19 21:52:06 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2008-09-19 21:52:05 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2008-09-19 21:52:04 ----A---- C:\Windows\system32\spwizimg.dll
2008-09-19 21:52:04 ----A---- C:\Windows\system32\rdpencom.dll
2008-09-19 21:52:04 ----A---- C:\Windows\system32\lpremove.exe
2008-09-19 21:52:04 ----A---- C:\Windows\bfsvc.exe
2008-09-19 21:52:02 ----A---- C:\Windows\system32\msxml3.dll
2008-09-19 21:51:58 ----A---- C:\Windows\system32\msxml6.dll
2008-09-19 21:51:58 ----A---- C:\Windows\system32\msjet40.dll
2008-09-19 21:51:57 ----A---- C:\Windows\system32\qmgr.dll
2008-09-19 21:51:57 ----A---- C:\Windows\system32\ntdll.dll
2008-09-19 21:51:57 ----A---- C:\Windows\system32\lsasrv.dll
2008-09-19 21:51:56 ----A---- C:\Windows\system32\localspl.dll
2008-09-19 21:51:56 ----A---- C:\Windows\system32\IKEEXT.DLL
2008-09-19 21:51:55 ----A---- C:\Windows\system32\wevtsvc.dll
2008-09-19 21:51:55 ----A---- C:\Windows\system32\wcncsvc.dll
2008-09-19 21:51:55 ----A---- C:\Windows\system32\TsWpfWrp.exe
2008-09-19 21:51:55 ----A---- C:\Windows\system32\recdisc.exe
2008-09-19 21:51:55 ----A---- C:\Windows\system32\mscoree.dll
2008-09-19 21:51:55 ----A---- C:\Windows\system32\kernel32.dll
2008-09-19 21:51:54 ----A---- C:\Windows\system32\vds.exe
2008-09-19 21:51:54 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
2008-09-19 21:51:53 ----A---- C:\Windows\system32\wmp.dll
2008-09-19 21:51:52 ----A---- C:\Windows\system32\mstsc.exe
2008-09-19 21:51:51 ----A---- C:\Windows\system32\wcnwiz.dll
2008-09-19 21:51:51 ----A---- C:\Windows\system32\SMBHelperClass.dll
2008-09-19 21:51:51 ----A---- C:\Windows\system32\msvbvm60.dll
2008-09-19 21:51:51 ----A---- C:\Windows\system32\mf.dll
2008-09-19 21:51:50 ----A---- C:\Windows\system32\termsrv.dll
2008-09-19 21:51:50 ----A---- C:\Windows\system32\msdtctm.dll
2008-09-19 21:51:50 ----A---- C:\Windows\system32\advapi32.dll
2008-09-19 21:51:49 ----A---- C:\Windows\system32\kerberos.dll
2008-09-19 21:51:49 ----A---- C:\Windows\system32\IMJP10K.DLL
2008-09-19 21:51:48 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL
2008-09-19 21:51:48 ----A---- C:\Windows\system32\mmcndmgr.dll
2008-09-19 21:51:48 ----A---- C:\Windows\system32\CertEnroll.dll
2008-09-19 21:51:47 ----A---- C:\Windows\system32\xolehlp.dll
2008-09-19 21:51:47 ----A---- C:\Windows\system32\Query.dll
2008-09-19 21:51:47 ----A---- C:\Windows\system32\msdtcprx.dll
2008-09-19 21:51:47 ----A---- C:\Windows\system32\MPSSVC.dll
2008-09-19 21:51:46 ----A---- C:\Windows\system32\ole32.dll
2008-09-19 21:51:45 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2008-09-19 21:51:45 ----A---- C:\Windows\system32\SSShim.dll
2008-09-19 21:51:45 ----A---- C:\Windows\system32\netlogon.dll
2008-09-19 21:51:45 ----A---- C:\Windows\system32\msvcrt.dll
2008-09-19 21:51:44 ----A---- C:\Windows\system32\schedsvc.dll
2008-09-19 21:51:44 ----A---- C:\Windows\system32\nlmgp.dll
2008-09-19 21:51:44 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2008-09-19 21:51:44 ----A---- C:\Windows\system32\DfsShlEx.dll
2008-09-19 21:51:43 ----A---- C:\Windows\system32\shlwapi.dll
2008-09-19 21:51:43 ----A---- C:\Windows\system32\sdclt.exe
2008-09-19 21:51:43 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2008-09-19 21:51:43 ----A---- C:\Windows\system32\milcore.dll
2008-09-19 21:51:43 ----A---- C:\Windows\system32\IasMigPlugin.dll
2008-09-19 21:51:42 ----A---- C:\Windows\system32\wer.dll
2008-09-19 21:51:42 ----A---- C:\Windows\system32\vdsdyn.dll
2008-09-19 21:51:42 ----A---- C:\Windows\system32\user32.dll
2008-09-19 21:51:42 ----A---- C:\Windows\system32\d3d9.dll
2008-09-19 21:51:42 ----A---- C:\Windows\system32\clusapi.dll
2008-09-19 21:51:41 ----A---- C:\Windows\system32\WSDApi.dll
2008-09-19 21:51:41 ----A---- C:\Windows\system32\winrsmgr.dll
2008-09-19 21:51:41 ----A---- C:\Windows\system32\QAGENTRT.DLL
2008-09-19 21:51:41 ----A---- C:\Windows\system32\diagperf.dll
2008-09-19 21:51:40 ----A---- C:\Windows\system32\mtxclu.dll
2008-09-19 21:51:40 ----A---- C:\Windows\system32\mmc.exe
2008-09-19 21:51:39 ----A---- C:\Windows\system32\vdsbas.dll
2008-09-19 21:51:39 ----A---- C:\Windows\system32\swprv.dll
2008-09-19 21:51:39 ----A---- C:\Windows\system32\SLC.dll
2008-09-19 21:51:39 ----A---- C:\Windows\system32\msi.dll
2008-09-19 21:51:39 ----A---- C:\Windows\system32\comctl32.dll
2008-09-19 21:51:38 ----A---- C:\Windows\system32\MSVidCtl.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\XPSSHHDR.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\sbe.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\samsrv.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\msdtckrm.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\mfc42u.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\gpsvc.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2008-09-19 21:51:36 ----A---- C:\Windows\system32\wecutil.exe
2008-09-19 21:51:36 ----A---- C:\Windows\system32\usp10.dll
2008-09-19 21:51:36 ----A---- C:\Windows\system32\sdengin2.dll
2008-09-19 21:51:36 ----A---- C:\Windows\system32\esent.dll
2008-09-19 21:51:35 ----A---- C:\Windows\system32\mfc42.dll
2008-09-19 21:51:35 ----A---- C:\Windows\system32\gacinstall.dll
2008-09-19 21:51:35 ----A---- C:\Windows\system32\cmipnpinstall.dll
2008-09-19 21:51:35 ----A---- C:\Windows\system32\cmicryptinstall.dll
2008-09-19 21:51:34 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2008-09-19 21:51:34 ----A---- C:\Windows\system32\crypt32.dll
2008-09-19 21:51:34 ----A---- C:\Windows\system32\comsvcs.dll
2008-09-19 21:51:34 ----A---- C:\Windows\system32\certutil.exe
2008-09-19 21:51:33 ----A---- C:\Windows\system32\mswsock.dll
2008-09-19 21:51:33 ----A---- C:\Windows\explorer.exe
2008-09-19 21:51:32 ----A---- C:\Windows\system32\wmdrmsdk.dll
2008-09-19 21:51:32 ----A---- C:\Windows\system32\sqlceqp30.dll
2008-09-19 21:51:32 ----A---- C:\Windows\system32\setupapi.dll
2008-09-19 21:51:32 ----A---- C:\Windows\system32\oleaut32.dll
2008-09-19 21:51:32 ----A---- C:\Windows\system32\FirewallAPI.dll
2008-09-19 21:51:31 ----A---- C:\Windows\system32\wecsvc.dll
2008-09-19 21:51:31 ----A---- C:\Windows\system32\sdohlp.dll
2008-09-19 21:51:31 ----A---- C:\Windows\system32\msv1_0.dll
2008-09-19 21:51:31 ----A---- C:\Windows\system32\lsm.exe
2008-09-19 21:51:31 ----A---- C:\Windows\system32\bcrypt.dll
2008-09-19 21:51:31 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2008-09-19 21:51:30 ----A---- C:\Windows\system32\thumbcache.dll
2008-09-19 21:51:30 ----A---- C:\Windows\system32\schannel.dll
2008-09-19 21:51:30 ----A---- C:\Windows\system32\p2psvc.dll
2008-09-19 21:51:30 ----A---- C:\Windows\system32\netapi32.dll
2008-09-19 21:51:30 ----A---- C:\Windows\system32\iphlpsvc.dll
2008-09-19 21:51:30 ----A---- C:\Windows\system32\eapp3hst.dll
2008-09-19 21:51:29 ----A---- C:\Windows\system32\wmpmde.dll
2008-09-19 21:51:29 ----A---- C:\Windows\system32\riched20.dll
2008-09-19 21:51:29 ----A---- C:\Windows\system32\mcmde.dll
2008-09-19 21:51:29 ----A---- C:\Windows\system32\autofmt.exe
2008-09-19 21:51:29 ----A---- C:\Windows\system32\autoconv.exe
2008-09-19 21:51:29 ----A---- C:\Windows\system32\autochk.exe
2008-09-19 21:51:28 ----A---- C:\Windows\system32\WinSAT.exe
2008-09-19 21:51:28 ----A---- C:\Windows\system32\vdsutil.dll
2008-09-19 21:51:28 ----A---- C:\Windows\system32\imapi2fs.dll
2008-09-19 21:51:28 ----A---- C:\Windows\system32\d3d10_1.dll
2008-09-19 21:51:28 ----A---- C:\Windows\system32\authfwcfg.dll
2008-09-19 21:51:27 ----A---- C:\Windows\system32\authui.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\WSDMon.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\wevtapi.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\mscories.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\dmvdsitf.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\d3d10_1core.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\comuid.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\comdlg32.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\browseui.dll
2008-09-19 21:51:25 ----A---- C:\Windows\system32\wevtfwd.dll
2008-09-19 21:51:25 ----A---- C:\Windows\system32\uexfat.dll
2008-09-19 21:51:25 ----A---- C:\Windows\system32\rasmans.dll
2008-09-19 21:51:25 ----A---- C:\Windows\system32\eapphost.dll
2008-09-19 21:51:25 ----A---- C:\Windows\system32\eappcfg.dll
2008-09-19 21:51:24 ----A---- C:\Windows\system32\whealogr.dll
2008-09-19 21:51:24 ----A---- C:\Windows\system32\untfs.dll
2008-09-19 21:51:24 ----A---- C:\Windows\system32\sqlcese30.dll
2008-09-19 21:51:24 ----A---- C:\Windows\system32\pcaui.dll
2008-09-19 21:51:24 ----A---- C:\Windows\system32\iassam.dll
2008-09-19 21:51:24 ----A---- C:\Windows\system32\DfrgNtfs.exe
2008-09-19 21:51:23 ----A---- C:\Windows\system32\wlansvc.dll
2008-09-19 21:51:22 ----A---- C:\Windows\system32\dot3svc.dll
2008-09-19 21:51:20 ----A---- C:\Windows\system32\rdpwsx.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\zipfldr.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\WsmAuto.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\winhttp.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\nlasvc.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\mssha.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\msdrm.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\evr.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\dfrgui.exe
2008-09-19 21:51:18 ----A---- C:\Windows\system32\rpcss.dll
2008-09-19 21:51:18 ----A---- C:\Windows\system32\rasppp.dll
2008-09-19 21:51:18 ----A---- C:\Windows\system32\ncrypt.dll
2008-09-19 21:51:18 ----A---- C:\Windows\system32\BFE.DLL
2008-09-19 21:51:18 ----A---- C:\Windows\system32\audiosrv.dll
2008-09-19 21:51:17 ----A---- C:\Windows\system32\WsmWmiPl.dll
2008-09-19 21:51:17 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-09-19 21:51:17 ----A---- C:\Windows\system32\wmdrmdev.dll
2008-09-19 21:51:17 ----A---- C:\Windows\system32\printui.dll
2008-09-19 21:51:17 ----A---- C:\Windows\system32\msrepl40.dll
2008-09-19 21:51:17 ----A---- C:\Windows\system32\ddraw.dll
2008-09-19 21:51:16 ----A---- C:\Windows\system32\win32spl.dll
2008-09-19 21:51:16 ----A---- C:\Windows\system32\WebClnt.dll
2008-09-19 21:51:16 ----A---- C:\Windows\system32\themecpl.dll
2008-09-19 21:51:16 ----A---- C:\Windows\system32\rastls.dll
2008-09-19 21:51:16 ----A---- C:\Windows\system32\objsel.dll
2008-09-19 21:51:16 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2008-09-19 21:51:15 ----A---- C:\Windows\system32\w32time.dll
2008-09-19 21:51:15 ----A---- C:\Windows\system32\sqlsrv32.dll
2008-09-19 21:51:15 ----A---- C:\Windows\system32\QAGENT.DLL
2008-09-19 21:51:15 ----A---- C:\Windows\system32\iasnap.dll
2008-09-19 21:51:15 ----A---- C:\Windows\system32\dbghelp.dll
2008-09-19 21:51:14 ----A---- C:\Windows\system32\wmdrmnet.dll
2008-09-19 21:51:14 ----A---- C:\Windows\system32\WerFaultSecure.exe
2008-09-19 21:51:14 ----A---- C:\Windows\system32\PresentationHost.exe
2008-09-19 21:51:14 ----A---- C:\Windows\system32\ncryptui.dll
2008-09-19 21:51:14 ----A---- C:\Windows\system32\iprtrmgr.dll
2008-09-19 21:51:14 ----A---- C:\Windows\system32\icm32.dll
2008-09-19 21:51:14 ----A---- C:\Windows\system32\azroles.dll
2008-09-19 21:51:13 ----A---- C:\Windows\system32\spoolss.dll
2008-09-19 21:51:13 ----A---- C:\Windows\system32\msctf.dll
2008-09-19 21:51:13 ----A---- C:\Windows\system32\infocardapi.dll
2008-09-19 21:51:12 ----A---- C:\Windows\system32\wlangpui.dll
2008-09-19 21:51:12 ----A---- C:\Windows\system32\winsrv.dll
2008-09-19 21:51:12 ----A---- C:\Windows\system32\taskschd.dll
2008-09-19 21:51:12 ----A---- C:\Windows\system32\mstlsapi.dll
2008-09-19 21:51:12 ----A---- C:\Windows\system32\bcdedit.exe
2008-09-19 21:51:12 ----A---- C:\Windows\system32\basecsp.dll
2008-09-19 21:51:11 ----A---- C:\Windows\system32\winsta.dll
2008-09-19 21:51:11 ----A---- C:\Windows\system32\scksp.dll
2008-09-19 21:51:11 ----A---- C:\Windows\system32\netprofm.dll
2008-09-19 21:51:11 ----A---- C:\Windows\system32\hcrstco.dll
2008-09-19 21:51:11 ----A---- C:\Windows\system32\dbgeng.dll
2008-09-19 21:51:11 ----A---- C:\Windows\system32\AudioEng.dll
2008-09-19 21:51:10 ----A---- C:\Windows\system32\taskcomp.dll
2008-09-19 21:51:10 ----A---- C:\Windows\system32\rsaenh.dll
2008-09-19 21:51:10 ----A---- C:\Windows\system32\netcfgx.dll
2008-09-19 21:51:09 ----A---- C:\Windows\system32\winlogon.exe
2008-09-19 21:51:09 ----A---- C:\Windows\system32\wercon.exe
2008-09-19 21:51:09 ----A---- C:\Windows\system32\sqmapi.dll
2008-09-19 21:51:09 ----A---- C:\Windows\system32\lpksetup.exe
2008-09-19 21:51:09 ----A---- C:\Windows\system32\dfshim.dll
2008-09-19 21:51:09 ----A---- C:\Windows\system32\cdosys.dll
2008-09-19 21:51:08 ----A---- C:\Windows\system32\wlansec.dll
2008-09-19 21:51:08 ----A---- C:\Windows\system32\msdtcuiu.dll
2008-09-19 21:51:08 ----A---- C:\Windows\system32\mprddm.dll
2008-09-19 21:51:08 ----A---- C:\Windows\system32\certcli.dll
2008-09-19 21:51:08 ----A---- C:\Windows\system32\apds.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\tsgqec.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\shdocvw.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\iasrad.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\eapsvc.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\bcdsrv.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\AUDIOKSE.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\aaclient.dll
2008-09-19 21:51:06 ----A---- C:\Windows\system32\Wldap32.dll
2008-09-19 21:51:06 ----A---- C:\Windows\system32\uDWM.dll
2008-09-19 21:51:06 ----A---- C:\Windows\system32\certmgr.dll
2008-09-19 21:51:05 ----A---- C:\Windows\system32\WMVDECOD.DLL
2008-09-19 21:51:05 ----A---- C:\Windows\system32\umpnpmgr.dll
2008-09-19 21:51:05 ----A---- C:\Windows\system32\msidcrl30.dll
2008-09-19 21:51:05 ----A---- C:\Windows\system32\dnsapi.dll
2008-09-19 21:51:04 ----A---- C:\Windows\system32\pla.dll
2008-09-19 21:51:04 ----A---- C:\Windows\system32\dxgi.dll
2008-09-19 21:51:03 ----A---- C:\Windows\system32\wmicmiplugin.dll
2008-09-19 21:51:03 ----A---- C:\Windows\system32\netshell.dll
2008-09-19 21:51:03 ----A---- C:\Windows\system32\dot3gpui.dll
2008-09-19 21:51:02 ----A---- C:\Windows\system32\shsvcs.dll
2008-09-19 21:51:02 ----A---- C:\Windows\system32\ntprint.dll
2008-09-19 21:51:02 ----A---- C:\Windows\system32\MMDevAPI.dll
2008-09-19 21:51:02 ----A---- C:\Windows\system32\cryptnet.dll
2008-09-19 21:51:02 ----A---- C:\Windows\system32\comsnap.dll
2008-09-19 21:51:01 ----A---- C:\Windows\system32\wscsvc.dll
2008-09-19 21:51:01 ----A---- C:\Windows\system32\winmm.dll
2008-09-19 21:51:01 ----A---- C:\Windows\system32\synceng.dll
2008-09-19 21:51:01 ----A---- C:\Windows\system32\services.exe
2008-09-19 21:51:01 ----A---- C:\Windows\system32\pnidui.dll
2008-09-19 21:51:01 ----A---- C:\Windows\system32\cmifw.dll
2008-09-19 21:51:00 ----A---- C:\Windows\system32\wscisvif.dll
2008-09-19 21:51:00 ----A---- C:\Windows\system32\msconfig.exe
2008-09-19 21:50:59 ----A---- C:\Windows\system32\WMVSDECD.DLL
2008-09-19 21:50:59 ----A---- C:\Windows\system32\taskeng.exe
2008-09-19 21:50:59 ----A---- C:\Windows\system32\msjtes40.dll
2008-09-19 21:50:59 ----A---- C:\Windows\system32\iassdo.dll
2008-09-19 21:50:59 ----A---- C:\Windows\system32\cipher.exe
2008-09-19 21:50:58 ----A---- C:\Windows\system32\wersvc.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\uxtheme.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\tdh.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\SessEnv.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\rasapi32.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\imapi2.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\dot3api.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\dmdskmgr.dll
2008-09-19 21:50:57 ----A---- C:\Windows\system32\wkssvc.dll
2008-09-19 21:50:57 ----A---- C:\Windows\system32\wevtutil.exe
2008-09-19 21:50:57 ----A---- C:\Windows\system32\srvsvc.dll
2008-09-19 21:50:57 ----A---- C:\Windows\system32\qdvd.dll
2008-09-19 21:50:57 ----A---- C:\Windows\system32\msscp.dll
2008-09-19 21:50:57 ----A---- C:\Windows\system32\cmd.exe
2008-09-19 21:50:57 ----A---- C:\Windows\system32\cbsra.exe
2008-09-19 21:50:57 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\WUDFx.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\wlanmsm.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\wlancfg.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\mshtmled.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\loadperf.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\diskpart.exe
2008-09-19 21:50:56 ----A---- C:\Windows\system32\comres.dll
2008-09-19 21:50:55 ----A---- C:\Windows\system32\wlanapi.dll
2008-09-19 21:50:55 ----A---- C:\Windows\system32\rpchttp.dll
2008-09-19 21:50:55 ----A---- C:\Windows\system32\rdpdd.dll
2008-09-19 21:50:55 ----A---- C:\Windows\system32\localsec.dll
2008-09-19 21:50:55 ----A---- C:\Windows\system32\hnetcfg.dll
2008-09-19 21:50:55 ----A---- C:\Windows\system32\fontext.dll
2008-09-19 21:50:54 ----A---- C:\Windows\system32\wsqmcons.exe
2008-09-19 21:50:54 ----A---- C:\Windows\system32\WMADMOD.DLL
2008-09-19 21:50:54 ----A---- C:\Windows\system32\wlanpref.dll
2008-09-19 21:50:54 ----A---- C:\Windows\system32\WinSATAPI.dll
2008-09-19 21:50:54 ----A---- C:\Windows\system32\profprov.dll
2008-09-19 21:50:54 ----A---- C:\Windows\system32\NAPMONTR.DLL
2008-09-19 21:50:54 ----A---- C:\Windows\system32\dsound.dll
2008-09-19 21:50:54 ----A---- C:\Windows\system32\avifil32.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\wsecedit.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\tracerpt.exe
2008-09-19 21:50:53 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\SLCommDlg.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\RDPENCDD.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\MuiUnattend.exe
2008-09-19 21:50:53 ----A---- C:\Windows\system32\filemgmt.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\dnsrslvr.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\dhcpcsvc.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2008-09-19 21:50:52 ----A---- C:\Windows\system32\wininit.exe
2008-09-19 21:50:52 ----A---- C:\Windows\system32\spp.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\rasdlg.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\QSHVHOST.DLL
2008-09-19 21:50:52 ----A---- C:\Windows\system32\P2PGraph.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\iassvcs.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\gpresult.exe
2008-09-19 21:50:52 ----A---- C:\Windows\system32\dwmredir.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\dwm.exe
2008-09-19 21:50:52 ----A---- C:\Windows\system32\azroleui.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\apphelp.dll
2008-09-19 21:50:51 ----A---- C:\Windows\system32\spwizeng.dll
2008-09-19 21:50:51 ----A---- C:\Windows\system32\SLUI.exe
2008-09-19 21:50:51 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2008-09-19 21:50:51 ----A---- C:\Windows\system32\mscorier.dll
2008-09-19 21:50:51 ----A---- C:\Windows\system32\mcbuilder.exe
2008-09-19 21:50:51 ----A---- C:\Windows\system32\iashost.exe
2008-09-19 21:50:51 ----A---- C:\Windows\HelpPane.exe
2008-09-19 21:50:50 ----A---- C:\Windows\system32\wecapi.dll
2008-09-19 21:50:50 ----A---- C:\Windows\system32\unbcl.dll
2008-09-19 21:50:50 ----A---- C:\Windows\system32\tcpmon.dll
2008-09-19 21:50:50 ----A---- C:\Windows\system32\srrstr.dll
2008-09-19 21:50:50 ----A---- C:\Windows\system32\shrink.dll
2008-09-19 21:50:50 ----A---- C:\Windows\system32\rasmontr.dll
2008-09-19 21:50:50 ----A---- C:\Windows\system32\msra.exe
2008-09-19 21:50:50 ----A---- C:\Windows\system32\lltdsvc.dll
2008-09-19 21:50:49 ----A---- C:\Windows\system32\WMPEncEn.dll
2008-09-19 21:50:49 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2008-09-19 21:50:49 ----A---- C:\Windows\system32\iashlpr.dll
2008-09-19 21:50:49 ----A---- C:\Windows\system32\gpedit.dll
2008-09-19 21:50:49 ----A---- C:\Windows\system32\brcpl.dll
2008-09-19 21:50:48 ----A---- C:\Windows\system32\raschap.dll
2008-09-19 21:50:48 ----A---- C:\Windows\system32\oleacc.dll
2008-09-19 21:50:48 ----A---- C:\Windows\system32\msdri.dll
2008-09-19 21:50:48 ----A---- C:\Windows\system32\iertutil.dll
2008-09-19 21:50:47 ----A---- C:\Windows\system32\framedynos.dll
2008-09-19 21:50:43 ----A---- C:\Windows\system32\regsvc.dll
2008-09-19 21:50:43 ----A---- C:\Windows\system32\ntvdm.exe
2008-09-19 21:50:43 ----A---- C:\Windows\system32\fdWSD.dll
2008-09-19 21:50:43 ----A---- C:\Windows\system32\Faultrep.dll
2008-09-19 21:50:43 ----A---- C:\Windows\system32\advpack.dll
2008-09-19 21:50:42 ----A---- C:\Windows\system32\wpdshext.dll
2008-09-19 21:50:42 ----A---- C:\Windows\system32\wdc.dll
2008-09-19 21:50:42 ----A---- C:\Windows\system32\vsstrace.dll
2008-09-19 21:50:42 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2008-09-19 21:50:42 ----A---- C:\Windows\system32\ntlanman.dll
2008-09-19 21:50:42 ----A---- C:\Windows\system32\ipsmsnap.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\Storprop.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\NetProjW.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\netman.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\l2nacp.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\iedkcs32.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\ieapfltr.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\framedyn.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\dssenh.dll
2008-09-19 21:50:40 ----A---- C:\Windows\system32\WlanMM.dll
2008-09-19 21:50:40 ----A---- C:\Windows\system32\tcpipcfg.dll
2008-09-19 21:50:40 ----A---- C:\Windows\system32\certreq.exe
2008-09-19 21:50:40 ----A---- C:\Windows\system32\adsnt.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\WsmProv.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\wlanhlp.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\WLanConn.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\sxs.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\profsvc.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\KMSVC.DLL
2008-09-19 21:50:39 ----A---- C:\Windows\system32\IPBusEnum.dll
2008-09-19 21:50:38 ----A---- C:\Windows\system32\wusa.exe
2008-09-19 21:50:38 ----A---- C:\Windows\system32\WUDFHost.exe
2008-09-19 21:50:38 ----A---- C:\Windows\system32\WerFault.exe
2008-09-19 21:50:38 ----A---- C:\Windows\system32\VAN.dll
2008-09-19 21:50:38 ----A---- C:\Windows\system32\userenv.dll
2008-09-19 21:50:38 ----A---- C:\Windows\system32\umb.dll
2008-09-19 21:50:38 ----A---- C:\Windows\system32\ncsi.dll
2008-09-19 21:50:38 ----A---- C:\Windows\system32\ie4uinit.exe
2008-09-19 21:50:38 ----A---- C:\Windows\system32\fundisc.dll
2008-09-19 21:50:38 ----A---- C:\Windows\system32\catsrvut.dll
2008-09-19 21:50:37 ----A---- C:\Windows\system32\puiobj.dll
2008-09-19 21:50:37 ----A---- C:\Windows\system32\photowiz.dll
2008-09-19 21:50:37 ----A---- C:\Windows\system32\netid.dll
2008-09-19 21:50:37 ----A---- C:\Windows\system32\dps.dll
2008-09-19 21:50:37 ----A---- C:\Windows\system32\cryptui.dll
2008-09-19 21:50:36 ----A---- C:\Windows\system32\netcenter.dll
2008-09-19 21:50:36 ----A---- C:\Windows\system32\MdSched.exe
2008-09-19 21:50:36 ----A---- C:\Windows\system32\InkEd.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\ws2_32.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\WinSCard.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\winrs.exe
2008-09-19 21:50:35 ----A---- C:\Windows\system32\tcpmon.ini
2008-09-19 21:50:35 ----A---- C:\Windows\system32\spbcd.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\secur32.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\odbcjt32.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\ntdsapi.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\msinfo32.exe
2008-09-19 21:50:35 ----A---- C:\Windows\system32\ipsecsnp.dll
2008-09-19 21:50:34 ----A---- C:\Windows\system32\prnntfy.dll
2008-09-19 21:50:34 ----A---- C:\Windows\system32\NAPSTAT.EXE
2008-09-19 21:50:33 ----A---- C:\Windows\system32\schtasks.exe
2008-09-19 21:50:33 ----A---- C:\Windows\system32\RelMon.dll
2008-09-19 21:50:33 ----A---- C:\Windows\system32\msfeeds.dll
2008-09-19 21:50:33 ----A---- C:\Windows\system32\mblctr.exe
2008-09-19 21:50:33 ----A---- C:\Windows\system32\iasacct.dll
2008-09-19 21:50:33 ----A---- C:\Windows\system32\cryptsvc.dll
2008-09-19 21:50:32 ----A---- C:\Windows\system32\pdh.dll
2008-09-19 21:50:32 ----A---- C:\Windows\system32\netdiagfx.dll
2008-09-19 21:50:32 ----A---- C:\Windows\system32\dmdlgs.dll
2008-09-19 21:50:32 ----A---- C:\Windows\system32\dhcpsapi.dll
2008-09-19 21:50:32 ----A---- C:\Windows\system32\catsrv.dll
2008-09-19 21:50:32 ----A---- C:\Windows\system32\activeds.dll
2008-09-19 21:50:31 ----A---- C:\Windows\system32\wvc.dll
2008-09-19 21:50:31 ----A---- C:\Windows\system32\winrm.vbs
2008-09-19 21:50:31 ----A---- C:\Windows\system32\TSpkg.dll
2008-09-19 21:50:31 ----A---- C:\Windows\system32\qwave.dll
2008-09-19 21:50:31 ----A---- C:\Windows\system32\FirewallControlPanel.exe
2008-09-19 21:50:31 ----A---- C:\Windows\system32\fdWCN.dll
2008-09-19 21:50:31 ----A---- C:\Windows\system32\dot3msm.dll
2008-09-19 21:50:31 ----A---- C:\Windows\system32\dfrgfat.exe
2008-09-19 21:50:31 ----A---- C:\Windows\system32\AudioSes.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\wow32.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\rastapi.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\netcorehc.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\NAPHLPR.DLL
2008-09-19 21:50:30 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2008-09-19 21:50:30 ----A---- C:\Windows\system32\msacm32.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\ifmon.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\dot3cfg.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\adsldp.dll
2008-09-19 21:50:29 ----A---- C:\Windows\system32\shsetup.dll
2008-09-19 21:50:29 ----A---- C:\Windows\system32\els.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\wscntfy.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\stobject.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\QUTIL.DLL
2008-09-19 21:50:28 ----A---- C:\Windows\system32\ntshrui.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\msdt.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\iasrecst.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\iasdatastore.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\fdSSDP.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\clbcatq.dll
2008-09-19 21:50:27 ----A---- C:\Windows\system32\wlanui.dll
2008-09-19 21:50:27 ----A---- C:\Windows\system32\sdrsvc.dll
2008-09-19 21:50:27 ----A---- C:\Windows\system32\net1.exe
2008-09-19 21:50:27 ----A---- C:\Windows\system32\ipnathlp.dll
2008-09-19 21:50:27 ----A---- C:\Windows\system32\dsprop.dll
2008-09-19 21:50:26 ----A---- C:\Windows\system32\wlgpclnt.dll
2008-09-19 21:50:26 ----A---- C:\Windows\system32\upnphost.dll
2008-09-19 21:50:26 ----A---- C:\Windows\system32\systemcpl.dll
2008-09-19 21:50:26 ----A---- C:\Windows\system32\smss.exe
2008-09-19 21:50:26 ----A---- C:\Windows\system32\nci.dll
2008-09-19 21:50:26 ----A---- C:\Windows\system32\mprmsg.dll
2008-09-19 21:50:26 ----A---- C:\Windows\system32\Defrag.exe
2008-09-19 21:50:26 ----A---- C:\Windows\system32\adsldpc.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\rasman.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\rascfg.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\PresentationSettings.exe
2008-09-19 21:50:25 ----A---- C:\Windows\system32\P2P.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\oleprn.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\msftedit.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2008-09-19 21:50:25 ----A---- C:\Windows\system32\loghours.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\fde.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\CompatUI.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\ActiveContentWizard.dll
2008-09-19 21:50:24 ----A---- C:\Windows\system32\Wpc.dll
2008-09-19 21:50:24 ----A---- C:\Windows\system32\t2embed.dll
2008-09-19 21:50:24 ----A---- C:\Windows\system32\MigAutoPlay.exe
2008-09-19 21:50:24 ----A---- C:\Windows\system32\L2SecHC.dll
2008-09-19 21:50:24 ----A---- C:\Windows\system32\dxdiag.exe
2008-09-19 21:50:24 ----A---- C:\Windows\system32\DFDWiz.exe
2008-09-19 21:50:23 ----A---- C:\Windows\system32\wdigest.dll
2008-09-19 21:50:23 ----A---- C:\Windows\system32\setupcl.exe
2008-09-19 21:50:23 ----A---- C:\Windows\system32\rtm.dll
2008-09-19 21:50:23 ----A---- C:\Windows\system32\msutb.dll
2008-09-19 21:50:23 ----A---- C:\Windows\system32\mprdim.dll
2008-09-19 21:50:23 ----A---- C:\Windows\system32\gpapi.dll
2008-09-19 21:50:23 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2008-09-19 21:50:22 ----A---- C:\Windows\system32\wiaservc.dll
2008-09-19 21:50:22 ----A---- C:\Windows\system32\scansetting.dll
2008-09-19 21:50:22 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2008-09-19 21:50:22 ----A---- C:\Windows\system32\msihnd.dll
2008-09-19 21:50:22 ----A---- C:\Windows\system32\devmgr.dll
2008-09-19 21:50:22 ----A---- C:\Windows\system32\CertEnrollUI.dll
2008-09-19 21:50:21 ----A---- C:\Windows\system32\wdi.dll
2008-09-19 21:50:21 ----A---- C:\Windows\system32\kdusb.dll
2008-09-19 21:50:21 ----A---- C:\Windows\system32\ifsutil.dll
2008-09-19 21:50:21 ----A---- C:\Windows\system32\dimsroam.dll
2008-09-19 21:50:21 ----A---- C:\Windows\system32\actxprxy.dll
2008-09-19 21:50:20 ----A---- C:\Windows\system32\wscapi.dll
2008-09-19 21:50:20 ----A---- C:\Windows\system32\WinFXDocObj.exe
2008-09-19 21:50:20 ----A---- C:\Windows\system32\usbmon.dll
2008-09-19 21:50:20 ----A---- C:\Windows\system32\SyncCenter.dll
2008-09-19 21:50:20 ----A---- C:\Windows\system32\spoolsv.exe
2008-09-19 21:50:20 ----A---- C:\Windows\system32\mswmdm.dll
2008-09-19 21:50:20 ----A---- C:\Windows\system32\imagehlp.dll
2008-09-19 21:50:20 ----A---- C:\Windows\system32\BOOTVID.DLL
2008-09-19 21:50:20 ----A---- C:\Windows\system32\audiodg.exe
2008-09-19 21:50:19 ----A---- C:\Windows\system32\wlandlg.dll
2008-09-19 21:50:19 ----A---- C:\Windows\system32\vssadmin.exe
2008-09-19 21:50:19 ----A---- C:\Windows\system32\uudf.dll
2008-09-19 21:50:19 ----A---- C:\Windows\system32\regapi.dll
2008-09-19 21:50:19 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2008-09-19 21:50:19 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2008-09-19 21:50:19 ----A---- C:\Windows\system32\mycomput.dll
2008-09-19 21:50:19 ----A---- C:\Windows\system32\msls31.dll
2008-09-19 21:50:18 ----A---- C:\Windows\system32\scecli.dll
2008-09-19 21:50:18 ----A---- C:\Windows\system32\SCardSvr.dll
2008-09-19 21:50:18 ----A---- C:\Windows\system32\newdev.dll
2008-09-19 21:50:18 ----A---- C:\Windows\system32\mspaint.exe
2008-09-19 21:50:18 ----A---- C:\Windows\system32\kdcom.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\termmgr.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\sud.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\ssdpsrv.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\samlib.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\puiapi.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\mtxoci.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\mstask.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\duser.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\adtschema.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\wisptis.exe
2008-09-19 21:50:16 ----A---- C:\Windows\system32\tapisrv.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\SLUINotify.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\Robocopy.exe
2008-09-19 21:50:16 ----A---- C:\Windows\system32\input.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\inetpp.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\iasads.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\cic.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\AzSqlExt.dll
2008-09-19 21:50:15 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2008-09-19 21:50:15 ----A---- C:\Windows\system32\netiohlp.dll
2008-09-19 21:50:15 ----A---- C:\Windows\system32\cscapi.dll
2008-09-19 21:50:15 ----A---- C:\Windows\system32\authz.dll
2008-09-19 21:50:14 ----A---- C:\Windows\system32\WUDFPlatform.dll
2008-09-19 21:50:14 ----A---- C:\Windows\system32\webcheck.dll
2008-09-19 21:50:14 ----A---- C:\Windows\system32\verifier.exe
2008-09-19 21:50:14 ----A---- C:\Windows\system32\sdshext.dll
2008-09-19 21:50:14 ----A---- C:\Windows\system32\msdtclog.dll
2008-09-19 21:50:14 ----A---- C:\Windows\system32\msdt.exe
2008-09-19 21:50:13 ----A---- C:\Windows\system32\wpcsvc.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\wintrust.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\themeui.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\slcinst.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\oledlg.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\dxtmsft.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\d3d8.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\cmdial32.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\wpccpl.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\WMPhoto.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\vdsldr.exe
2008-09-19 21:50:12 ----A---- C:\Windows\system32\SndVol.exe
2008-09-19 21:50:12 ----A---- C:\Windows\system32\rasgcw.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\pnpsetup.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\ntmarta.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\mmcbase.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\icardie.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\clfsw32.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\SnippingTool.exe
2008-09-19 21:50:11 ----A---- C:\Windows\system32\rasqec.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\ncobjapi.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\msrd3x40.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\msaatext.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\mpr.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\mlang.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\icfupgd.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\diskraid.exe
2008-09-19 21:50:10 ----A---- C:\Windows\system32\wtsapi32.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\wpd_ci.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\unlodctr.exe
2008-09-19 21:50:10 ----A---- C:\Windows\system32\syssetup.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\slmgr.vbs
2008-09-19 21:50:10 ----A---- C:\Windows\system32\sethc.exe
2008-09-19 21:50:10 ----A---- C:\Windows\system32\pnpui.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\nslookup.exe
2008-09-19 21:50:10 ----A---- C:\Windows\system32\mscms.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\lodctr.exe
2008-09-19 21:50:10 ----A---- C:\Windows\system32\iaspolcy.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\extmgr.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\accessibilitycpl.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\Utilman.exe
2008-09-19 21:50:09 ----A---- C:\Windows\system32\ulib.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\trkwks.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\oobefldr.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\Mcx2Svc.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\fontsub.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\dxdiagn.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\cabinet.dll
2008-09-19 21:50:08 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2008-09-19 21:50:08 ----A---- C:\Windows\system32\unattend.dll
2008-09-19 21:50:08 ----A---- C:\Windows\system32\scesrv.dll
2008-09-19 21:50:08 ----A---- C:\Windows\system32\ogldrv.dll
2008-09-19 21:50:08 ----A---- C:\Windows\system32\occache.dll
2008-09-19 21:50:08 ----A---- C:\Windows\system32\lnkstub.exe
2008-09-19 21:50:07 ----A---- C:\Windows\system32\wermgr.exe
2008-09-19 21:50:07 ----A---- C:\Windows\system32\dfdts.dll
2008-09-19 21:50:07 ----A---- C:\Windows\system32\cabview.dll
2008-09-19 21:50:07 ----A---- C:\Windows\system32\bthci.dll
2008-09-19 21:50:06 ----A---- C:\Windows\system32\wpcao.dll
2008-09-19 21:50:06 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2008-09-19 21:50:06 ----A---- C:\Windows\system32\msnetobj.dll
2008-09-19 21:50:06 ----A---- C:\Windows\system32\iepeers.dll
2008-09-19 21:50:06 ----A---- C:\Windows\system32\eappgnui.dll
2008-09-19 21:50:05 ----A---- C:\Windows\system32\p2pcollab.dll
2008-09-19 21:50:05 ----A---- C:\Windows\system32\ieaksie.dll
2008-09-19 21:50:05 ----A---- C:\Windows\system32\basesrv.dll
2008-09-19 21:50:04 ----A---- C:\Windows\system32\drvinst.exe
2008-09-19 21:50:04 ----A---- C:\Windows\system32\dispdiag.exe
2008-09-19 21:50:04 ----A---- C:\Windows\system32\DHCPQEC.DLL
2008-09-19 21:50:03 ----A---- C:\Windows\system32\dsquery.dll
2008-09-19 21:50:02 ----A---- C:\Windows\system32\verifier.dll
2008-09-19 21:50:02 ----A---- C:\Windows\system32\mmcss.dll
2008-09-19 21:50:01 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2008-09-19 21:50:01 ----A---- C:\Windows\system32\secproc_ssp.dll
2008-09-19 21:50:01 ----A---- C:\Windows\system32\RstrtMgr.dll
2008-09-19 21:50:01 ----A---- C:\Windows\system32\mprapi.dll
2008-09-19 21:50:01 ----A---- C:\Windows\system32\efsadu.dll
2008-09-19 21:50:00 ----A---- C:\Windows\system32\WPDSp.dll
2008-09-19 21:50:00 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2008-09-19 21:50:00 ----A---- C:\Windows\system32\WMVENCOD.DLL
2008-09-19 21:50:00 ----A---- C:\Windows\system32\wercplsupport.dll
2008-09-19 21:50:00 ----A---- C:\Windows\system32\setupugc.exe
2008-09-19 21:50:00 ----A---- C:\Windows\system32\qedit.dll
2008-09-19 21:50:00 ----A---- C:\Windows\system32\msoeacct.dll
2008-09-19 21:50:00 ----A---- C:\Windows\system32\icacls.exe
2008-09-19 21:50:00 ----A---- C:\Windows\system32\d3d10core.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\wiascanprofiles.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\wiaaut.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\usercpl.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2008-09-19 21:49:59 ----A---- C:\Windows\system32\pnrpnsp.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\pngfilt.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\p2pnetsh.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\networkmap.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\msdmo.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\iscsiexe.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\consent.exe
2008-09-19 21:49:58 ----A---- C:\Windows\system32\xactsrv.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\PNPXAssoc.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\pcadm.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\msrdc.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\lsass.exe
2008-09-19 21:49:58 ----A---- C:\Windows\system32\lpk.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\eappprxy.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\drmmgrtn.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\conime.exe
2008-09-19 21:49:58 ----A---- C:\Windows\system32\autoplay.dll
2008-09-19 21:49:57 ----A---- C:\Windows\system32\systeminfo.exe
2008-09-19 21:49:57 ----A---- C:\Windows\system32\netcfg.exe
2008-09-19 21:49:57 ----A---- C:\Windows\system32\findstr.exe
2008-09-19 21:49:57 ----A---- C:\Windows\system32\dpapimig.exe
2008-09-19 21:49:56 ----A---- C:\Windows\system32\xwizards.dll
2008-09-19 21:49:56 ----A---- C:\Windows\system32\msrating.dll
2008-09-19 21:49:56 ----A---- C:\Windows\system32\mfplat.dll
2008-09-19 21:49:53 ----A---- C:\Windows\system32\resutils.dll
2008-09-19 21:49:53 ----A---- C:\Windows\system32\DWWIN.EXE
2008-09-19 21:49:53 ----A---- C:\Windows\system32\cmdl32.exe
2008-09-19 21:49:52 ----A---- C:\Windows\system32\powercpl.dll
2008-09-19 21:49:52 ----A---- C:\Windows\system32\odbc32.dll
2008-09-19 21:49:52 ----A---- C:\Windows\system32\netprof.dll
2008-09-19 21:49:52 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2008-09-19 21:49:52 ----A---- C:\Windows\system32\dssec.dll
2008-09-19 21:49:52 ----A---- C:\Windows\system32\dot3ui.dll
2008-09-19 21:49:52 ----A---- C:\Windows\system32\dfrgifc.exe
2008-09-19 21:49:52 ----A---- C:\Windows\system32\dbnetlib.dll
2008-09-19 21:49:52 ----A---- C:\Windows\system32\alg.exe
2008-09-19 21:49:52 ----A---- C:\Windows\regedit.exe
2008-09-19 21:49:51 ----A---- C:\Windows\system32\txflog.dll
2008-09-19 21:49:51 ----A---- C:\Windows\system32\taskkill.exe
2008-09-19 21:49:51 ----A---- C:\Windows\system32\nshhttp.dll
2008-09-19 21:49:51 ----A---- C:\Windows\system32\imm32.dll
2008-09-19 21:49:51 ----A---- C:\Windows\system32\iexpress.exe
2008-09-19 21:49:51 ----A---- C:\Windows\system32\feclient.dll
2008-09-19 21:49:51 ----A---- C:\Windows\system32\btpanui.dll
2008-09-19 21:49:51 ----A---- C:\Windows\system32\apircl.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\tbssvc.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\RASMM.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\provthrd.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\msieftp.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\dxva2.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\dwmapi.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\d3d10.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\bcdprov.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\ActionQueue.dll
2008-09-19 21:49:49 ----A---- C:\Windows\system32\syncui.dll
2008-09-19 21:49:49 ----A---- C:\Windows\system32\svchost.exe
2008-09-19 21:49:49 ----A---- C:\Windows\system32\slwmi.dll
2008-09-19 21:49:49 ----A---- C:\Windows\system32\SLCExt.dll
2008-09-19 21:49:49 ----A---- C:\Windows\system32\slcc.dll
2008-09-19 21:49:49 ----A---- C:\Windows\system32\shwebsvc.dll
2008-09-19 21:49:49 ----A---- C:\Windows\system32\EAPQEC.DLL
2008-09-19 21:49:49 ----A---- C:\Windows\system32\dmocx.dll
2008-09-19 21:49:48 ----A---- C:\Windows\system32\WMASF.DLL
2008-09-19 21:49:48 ----A---- C:\Windows\system32\raserver.exe
2008-09-19 21:49:48 ----A---- C:\Windows\system32\PnPUnattend.exe
2008-09-19 21:49:48 ----A---- C:\Windows\system32\olepro32.dll
2008-09-19 21:49:48 ----A---- C:\Windows\system32\networkexplorer.dll
2008-09-19 21:49:48 ----A---- C:\Windows\system32\dnscacheugc.exe
2008-09-19 21:49:48 ----A---- C:\Windows\system32\connect.dll
2008-09-19 21:49:48 ----A---- C:\Windows\system32\aclui.dll
2008-09-19 21:49:47 ----A---- C:\Windows\system32\xcopy.exe
2008-09-19 21:49:47 ----A---- C:\Windows\system32\uxsms.dll
2008-09-19 21:49:47 ----A---- C:\Windows\system32\UIHub.dll
2008-09-19 21:49:47 ----A---- C:\Windows\system32\taskmgr.exe
2008-09-19 21:49:47 ----A---- C:\Windows\system32\QCLIPROV.DLL
2008-09-19 21:49:47 ----A---- C:\Windows\system32\ias.dll
2008-09-19 21:49:47 ----A---- C:\Windows\system32\brcplsdw.dll
2008-09-19 21:49:47 ----A---- C:\Windows\system32\audiodev.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\upnp.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\reg.exe
2008-09-19 21:49:46 ----A---- C:\Windows\system32\NapiNSP.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\msoert2.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\msjetoledb40.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\mountvol.exe
2008-09-19 21:49:46 ----A---- C:\Windows\system32\mmcshext.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\icsfiltr.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\cmstp.exe
2008-09-19 21:49:46 ----A---- C:\Windows\system32\browser.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\atl.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\appinfo.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\WMVXENCD.DLL
2008-09-19 21:49:45 ----A---- C:\Windows\system32\wmpdxm.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\wlanext.exe
2008-09-19 21:49:45 ----A---- C:\Windows\system32\PING.EXE
2008-09-19 21:49:45 ----A---- C:\Windows\system32\perfts.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\netplwiz.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\inetmib1.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\dskquoui.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\cewmdm.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\certprop.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\bitsadmin.exe
2008-09-19 21:49:45 ----A---- C:\Windows\system32\AuxiliaryDisplayApi.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\WpdMtpUS.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\SysFxUI.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\SoundRecorder.exe
2008-09-19 21:49:44 ----A---- C:\Windows\system32\rekeywiz.exe
2008-09-19 21:49:44 ----A---- C:\Windows\system32\qcap.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\qasf.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\ieakeng.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\httpapi.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\dsuiext.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\dmusic.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\adsmsext.dll
2008-09-19 21:49:43 ----A---- C:\Windows\system32\WUDFSvc.dll
2008-09-19 21:49:43 ----A---- C:\Windows\system32\wmpsrcwp.dll
2008-09-19 21:49:43 ----A---- C:\Windows\system32\Sens.dll
2008-09-19 21:49:43 ----A---- C:\Windows\system32\SecEdit.exe
2008-09-19 21:49:43 ----A---- C:\Windows\system32\mtstocom.exe
2008-09-19 21:49:43 ----A---- C:\Windows\system32\mscandui.dll
2008-09-19 21:49:43 ----A---- C:\Windows\system32\makecab.exe
2008-09-19 21:49:43 ----A---- C:\Windows\system32\lsmproxy.dll
2008-09-19 21:49:43 ----A---- C:\Windows\system32\auditpol.exe
2008-09-19 21:49:42 ----A---- C:\Windows\system32\xwtpw32.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\WMVSENCD.DLL
2008-09-19 21:49:42 ----A---- C:\Windows\system32\sppnp.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\shimgvw.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\seclogon.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\sbeio.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\printcom.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\ndfapi.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\msdadiag.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\dot3gpclnt.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\batt.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\wzcdlg.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\wscmisetup.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\wiashext.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\wiadefui.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\userinit.exe
2008-09-19 21:49:41 ----A---- C:\Windows\system32\shacct.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\p2phost.exe
2008-09-19 21:49:41 ----A---- C:\Windows\system32\msorcl32.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\dxtrans.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\apss.dll
2008-09-19 21:49:40 ----A---- C:\Windows\system32\wpdwcn.dll
2008-09-19 21:49:40 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2008-09-19 21:49:40 ----A---- C:\Windows\system32\winrshost.exe
2008-09-19 21:49:40 ----A---- C:\Windows\system32\tasklist.exe
2008-09-19 21:49:40 ----A---- C:\Windows\system32\TapiMigPlugin.dll
2008-09-19 21:49:40 ----A---- C:\Windows\system32\sxstrace.exe
2008-09-19 21:49:40 ----A---- C:\Windows\system32\rrinstaller.exe
2008-09-19 21:49:40 ----A---- C:\Windows\system32\perfmon.exe
2008-09-19 21:49:40 ----A---- C:\Windows\system32\napipsec.dll
2008-09-19 21:49:40 ----A---- C:\Windows\system32\ktmutil.exe
2008-09-19 21:49:40 ----A---- C:\Windows\system32\keymgr.dll
2008-09-19 21:49:40 ----A---- C:\Windows\system32\HelpPaneProxy.dll
2008-09-19 21:49:40 ----A---- C:\Windows\system32\csrsrv.dll
2008-09-19 21:49:39 ----A---- C:\Windows\system32\UIAutomationCore.dll
2008-09-19 21:49:39 ----A---- C:\Windows\system32\prntvpt.dll
2008-09-19 21:49:39 ----A---- C:\Windows\system32\notepad.exe
2008-09-19 21:49:39 ----A---- C:\Windows\system32\MP4SDECD.DLL
2008-09-19 21:49:39 ----A---- C:\Windows\system32\ftp.exe
2008-09-19 21:49:39 ----A---- C:\Windows\system32\fmifs.dll
2008-09-19 21:49:39 ----A---- C:\Windows\system32\d3dim700.dll
2008-09-19 21:49:39 ----A---- C:\Windows\system32\colorui.dll
2008-09-19 21:49:39 ----A---- C:\Windows\notepad.exe
2008-09-19 21:49:38 ----A---- C:\Windows\system32\wscproxystub.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\winethc.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\txfw32.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\takeown.exe
2008-09-19 21:49:38 ----A---- C:\Windows\system32\PnPutil.exe
2008-09-19 21:49:38 ----A---- C:\Windows\system32\pcasvc.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\nshipsec.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\netiougc.exe
2008-09-19 21:49:38 ----A---- C:\Windows\system32\msimtf.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\msiexec.exe
2008-09-19 21:49:38 ----A---- C:\Windows\system32\mfps.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\driverquery.exe
2008-09-19 21:49:38 ----A---- C:\Windows\system32\cryptdll.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\wpdbusenum.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\wmiprop.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\rasplap.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\powrprof.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\pots.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\mfpmp.exe
2008-09-19 21:49:37 ----A---- C:\Windows\system32\logagent.exe
2008-09-19 21:49:37 ----A---- C:\Windows\system32\inseng.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\findnetprinters.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\capisp.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\shrpubw.exe
2008-09-19 21:49:36 ----A---- C:\Windows\system32\sfc_os.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\sendmail.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2008-09-19 21:49:36 ----A---- C:\Windows\system32\perfnet.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\olecli32.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\nsisvc.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\luainstall.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\imapi.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\fsutil.exe
2008-09-19 21:49:36 ----A---- C:\Windows\system32\dnshc.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\WLanHC.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\wiaacmgr.exe
2008-09-19 21:49:35 ----A---- C:\Windows\system32\wextract.exe
2008-09-19 21:49:35 ----A---- C:\Windows\system32\TMM.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\shgina.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\runonce.exe
2008-09-19 21:49:35 ----A---- C:\Windows\system32\rshx32.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\RpcPing.exe
2008-09-19 21:49:35 ----A---- C:\Windows\system32\ktmw32.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\fdPHost.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\d3dim.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\compstui.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\cmmon32.exe
2008-09-19 21:49:34 ----A---- C:\Windows\system32\WMADMOE.DLL
2008-09-19 21:49:34 ----A---- C:\Windows\system32\version.dll
2008-09-19 21:49:34 ----A---- C:\Windows\system32\unregmp2.exe
2008-09-19 21:49:34 ----A---- C:\Windows\system32\UI0Detect.exe
2008-09-19 21:49:34 ----A---- C:\Windows\system32\net.exe
2008-09-19 21:49:34 ----A---- C:\Windows\system32\msvfw32.dll
2008-09-19 21:49:34 ----A---- C:\Windows\system32\mdminst.dll
2008-09-19 21:49:34 ----A---- C:\Windows\system32\getmac.exe
2008-09-19 21:49:34 ----A---- C:\Windows\system32\dsauth.dll
2008-09-19 21:49:34 ----A---- C:\Windows\system32\dimsjob.dll
2008-09-19 21:49:34 ----A---- C:\Windows\system32\cmlua.dll
2008-09-19 21:49:33 ----A---- C:\Windows\system32\wmpshell.dll
2008-09-19 21:49:33 ----A---- C:\Windows\system32\w32tm.exe
2008-09-19 21:49:33 ----A---- C:\Windows\system32\tscupgrd.exe
2008-09-19 21:49:33 ----A---- C:\Windows\system32\MPG4DECD.DLL
2008-09-19 21:49:33 ----A---- C:\Windows\system32\MP43DECD.DLL
2008-09-19 21:49:33 ----A---- C:\Windows\system32\ipconfig.exe
2008-09-19 21:49:33 ----A---- C:\Windows\system32\imgutil.dll
2008-09-19 21:49:33 ----A---- C:\Windows\system32\credui.dll
2008-09-19 21:49:33 ----A---- C:\Windows\system32\ACW.exe
2008-09-19 21:49:32 ----A---- C:\Windows\system32\sfc.exe
2008-09-19 21:49:32 ----A---- C:\Windows\system32\sdchange.exe
2008-09-19 21:49:32 ----A---- C:\Windows\system32\PortableDeviceWiaCompat.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\pnpts.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\migisol.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\fdeploy.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\dispci.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\dinput8.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\diantz.exe
2008-09-19 21:49:32 ----A---- C:\Windows\system32\comrepl.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\cmutil.dll
2008-09-19 21:49:31 ----A---- C:\Windows\system32\TSTheme.exe
2008-09-19 21:49:31 ----A---- C:\Windows\system32\remotepg.dll
2008-09-19 21:49:31 ----A---- C:\Windows\system32\nlaapi.dll
2008-09-19 21:49:31 ----A---- C:\Windows\system32\ExplorerFrame.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2008-09-19 21:49:30 ----A---- C:\Windows\system32\wmidx.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\vdmredir.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\utildll.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\TpmInit.exe
2008-09-19 21:49:30 ----A---- C:\Windows\system32\softkbd.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\pdhui.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\modemui.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\McxDriv.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\iernonce.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\hlink.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\fwcfg.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\expand.exe
2008-09-19 21:49:30 ----A---- C:\Windows\system32\EncDump.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\colbact.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\cfgbkend.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\bridgeunattend.exe
2008-09-19 21:49:30 ----A---- C:\Windows\system32\amstream.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\wsnmp32.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\wmvdspa.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\waitfor.exe
2008-09-19 21:49:29 ----A---- C:\Windows\system32\vds_ps.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\sti_ci.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\rdrleakdiag.exe
2008-09-19 21:49:29 ----A---- C:\Windows\system32\msfeedsbs.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\esentutl.exe
2008-09-19 21:49:29 ----A---- C:\Windows\system32\cmcfg32.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\bootcfg.exe
2008-09-19 21:49:29 ----A---- C:\Windows\system32\admparse.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\WsmCl.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\wfapigp.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\tabcal.exe
2008-09-19 21:49:28 ----A---- C:\Windows\system32\shutdown.exe
2008-09-19 21:49:28 ----A---- C:\Windows\system32\qdv.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\osblprov.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\odbccp32.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\logman.exe
2008-09-19 21:49:28 ----A---- C:\Windows\system32\iscsium.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\dpnet.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\cacls.exe
2008-09-19 21:49:27 ----A---- C:\Windows\system32\msdtc.exe
2008-09-19 21:49:27 ----A---- C:\Windows\system32\DpiScaling.exe
2008-09-19 21:49:26 ----A---- C:\Windows\system32\wpnpinst.exe
2008-09-19 21:49:26 ----A---- C:\Windows\system32\wmpcm.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\werdiagcontroller.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\rasauto.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\olethk32.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\olesvr32.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\mstext40.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\mfvdsp.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\iscsiwmi.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\dmsynth.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\COLORCNV.DLL
2008-09-19 21:49:25 ----A---- C:\Windows\system32\wavemsp.dll
2008-09-19 21:49:25 ----A---- C:\Windows\system32\ufat.dll
2008-09-19 21:49:25 ----A---- C:\Windows\system32\sxproxy.dll
2008-09-19 21:49:25 ----A---- C:\Windows\system32\SLLUA.exe
2008-09-19 21:49:25 ----A---- C:\Windows\system32\odbctrac.dll
2008-09-19 21:49:25 ----A---- C:\Windows\system32\networkitemfactory.dll
2008-09-19 21:49:25 ----A---- C:\Windows\system32\msctfui.dll
2008-09-19 21:49:25 ----A---- C:\Windows\system32\at.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\xmlprovi.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\WpdConns.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\ucsvc.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\TimeDateMUICallback.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\rgb9rast.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\RegCtrl.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\prevhost.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\mshta.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\mobsync.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\licmgr10.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\itss.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\csrstub.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\convert.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\bitsigd.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\AuthFWGP.dll
2008-09-19 21:49:23 ----A---- C:\Windows\system32\tbs.dll
2008-09-19 21:49:23 ----A---- C:\Windows\system32\rasdiag.dll
2008-09-19 21:49:23 ----A---- C:\Windows\system32\ocsetup.exe
2008-09-19 21:49:23 ----A---- C:\Windows\system32\netbtugc.exe
2008-09-19 21:49:23 ----A---- C:\Windows\system32\iscsied.dll
2008-09-19 21:49:23 ----A---- C:\Windows\system32\GuidedHelp.dll
2008-09-19 21:49:23 ----A---- C:\Windows\system32\dskquota.dll
2008-09-19 21:49:23 ----A---- C:\Windows\system32\cscdll.dll
2008-09-19 21:49:23 ----A---- C:\Windows\system32\AtBroker.exe
2008-09-19 21:49:22 ----A---- C:\Windows\system32\winnsi.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\unattendedjoin.exe
2008-09-19 21:49:22 ----A---- C:\Windows\system32\setupcln.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\mydocs.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\l2gpstore.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\fphc.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\dsdmo.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\dmime.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\cmpbk32.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\VIDRESZR.DLL
2008-09-19 21:49:21 ----A---- C:\Windows\system32\usbui.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\regini.exe
2008-09-19 21:49:21 ----A---- C:\Windows\system32\odbccu32.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\odbccr32.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\napdsnap.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\msident.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\msdart.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\dot3dlg.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\devenum.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\cmstplua.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\apilogen.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\amxread.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\wpclsp.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\WINSRPC.DLL
2008-09-19 21:49:20 ----A---- C:\Windows\system32\vss_ps.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\upnpcont.exe
2008-09-19 21:49:20 ----A---- C:\Windows\system32\srwmi.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\RacAgent.exe
2008-09-19 21:49:20 ----A---- C:\Windows\system32\nsi.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\nbtstat.exe
2008-09-19 21:49:20 ----A---- C:\Windows\system32\mtxlegih.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\mtxdm.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\gpupdate.exe
2008-09-19 21:49:20 ----A---- C:\Windows\system32\avrt.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\wsock32.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\wiarpc.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\WavDest.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\vfwwdm32.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\syskey.exe
2008-09-19 21:49:19 ----A---- C:\Windows\system32\rasphone.exe
2008-09-19 21:49:19 ----A---- C:\Windows\system32\odbcbcp.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\netevent.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\msexcl40.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\mfcsubs.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\graftabl.com
2008-09-19 21:49:18 ----A---- C:\Windows\system32\ROUTE.EXE
2008-09-19 21:49:18 ----A---- C:\Windows\system32\procinst.dll
2008-09-19 21:49:18 ----A---- C:\Windows\system32\ndfetw.dll
2008-09-19 21:49:18 ----A---- C:\Windows\system32\MP3DMOD.DLL
2008-09-19 21:49:18 ----A---- C:\Windows\system32\extrac32.exe
2008-09-19 21:49:18 ----A---- C:\Windows\system32\eventcls.dll
2008-09-19 21:49:18 ----A---- C:\Windows\system32\csrss.exe
2008-09-19 21:49:17 ----A---- C:\Windows\system32\WlanMmHC.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2008-09-19 21:49:17 ----A---- C:\Windows\system32\wiadss.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\TabbtnEx.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\psbase.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\inetppui.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\dmscript.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\d3dxof.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\atmfd.dll
2008-09-19 21:49:16 ----A---- C:\Windows\system32\Tabbtn.dll
2008-09-19 21:49:16 ----A---- C:\Windows\system32\msxbde40.dll
2008-09-19 21:49:16 ----A---- C:\Windows\system32\dmloader.dll
2008-09-19 21:49:16 ----A---- C:\Windows\system32\CertEnrollCtrl.exe
2008-09-19 21:49:16 ----A---- C:\Windows\fveupdate.exe
2008-09-19 21:49:15 ----A---- C:\Windows\system32\wshcon.dll
2008-09-19 21:49:15 ----A---- C:\Windows\system32\Netplwiz.exe
2008-09-19 21:49:15 ----A---- C:\Windows\system32\mspbde40.dll
2008-09-19 21:49:15 ----A---- C:\Windows\system32\msltus40.dll
2008-09-19 21:49:15 ----A---- C:\Windows\system32\icsunattend.exe
2008-09-19 21:49:15 ----A---- C:\Windows\system32\credssp.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\WsmRes.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\WSHTCPIP.DLL
2008-09-19 21:49:14 ----A---- C:\Windows\system32\wship6.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\sxsstore.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\PlaySndSrv.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\msvidc32.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\localui.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\lltdapi.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\ComputerDefaults.exe
2008-09-19 21:49:13 ----A---- C:\Windows\system32\slwga.dll
2008-09-19 21:49:13 ----A---- C:\Windows\system32\setupSNK.exe
2008-09-19 21:49:13 ----A---- C:\Windows\system32\sbunattend.exe
2008-09-19 21:49:13 ----A---- C:\Windows\system32\OptionalFeatures.exe
2008-09-19 21:49:13 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2008-09-19 21:49:13 ----A---- C:\Windows\system32\icaapi.dll
2008-09-19 21:49:13 ----A---- C:\Windows\system32\dmutil.dll
2008-09-19 21:49:09 ----A---- C:\Windows\system32\usbperf.dll
2008-09-19 21:49:09 ----A---- C:\Windows\system32\spopk.dll
2008-09-19 21:49:09 ----A---- C:\Windows\system32\serialui.dll
2008-09-19 21:49:09 ----A---- C:\Windows\system32\NcdProp.dll
2008-09-19 21:49:08 ----A---- C:\Windows\system32\odbcconf.dll
2008-09-19 21:49:08 ----A---- C:\Windows\system32\cofiredm.dll
2008-09-19 21:49:07 ----A---- C:\Windows\system32\msfeedssync.exe
2008-09-19 21:49:07 ----A---- C:\Windows\system32\hbaapi.dll
2008-09-19 21:49:06 ----A---- C:\Windows\system32\rasctrs.dll
2008-09-19 21:49:06 ----A---- C:\Windows\system32\msobjs.dll
2008-09-19 21:49:06 ----A---- C:\Windows\system32\ieencode.dll
2008-09-19 21:49:06 ----A---- C:\Windows\system32\hnetmon.dll
2008-09-19 21:49:06 ----A---- C:\Windows\system32\corpol.dll
2008-09-19 21:49:05 ----A---- C:\Windows\system32\vdmdbg.dll
2008-09-19 21:49:05 ----A---- C:\Windows\system32\url.dll
2008-09-19 21:49:05 ----A---- C:\Windows\system32\nlsbres.dll
2008-09-19 21:49:05 ----A---- C:\Windows\system32\midimap.dll
2008-09-19 21:49:05 ----A---- C:\Windows\system32\LogonUI.exe
2008-09-19 21:49:05 ----A---- C:\Windows\system32\iprtprio.dll
2008-09-19 21:49:05 ----A---- C:\Windows\system32\InfDefaultInstall.exe
2008-09-19 21:49:05 ----A---- C:\Windows\system32\esentprf.dll
2008-09-19 21:49:04 ----A---- C:\Windows\system32\sdspres.dll
2008-09-19 21:49:02 ----A---- C:\Windows\system32\osbaseln.dll
2008-09-19 21:49:02 ----A---- C:\Windows\system32\cfgmgr32.dll
2008-09-19 21:49:01 ----A---- C:\Windows\system32\msmmsp.dll
2008-09-19 21:49:01 ----A---- C:\Windows\system32\msisip.dll
2008-09-19 21:49:00 ----A---- C:\Windows\system32\winusb.dll
2008-09-19 21:49:00 ----A---- C:\Windows\system32\dispex.dll
2008-09-19 21:48:59 ----A---- C:\Windows\system32\rdpcfgex.dll
2008-09-19 21:48:57 ----A---- C:\Windows\system32\Nlsdl.dll
2008-09-19 21:48:56 ----A---- C:\Windows\system32\spwmp.dll
2008-09-19 21:48:56 ----A---- C:\Windows\system32\riched32.dll
2008-09-19 21:48:56 ----A---- C:\Windows\system32\msidle.dll
2008-09-19 21:48:56 ----A---- C:\Windows\system32\idndl.dll
2008-09-19 21:48:54 ----A---- C:\Windows\system32\KBDKOR.DLL
2008-09-19 21:48:54 ----A---- C:\Windows\system32\KBDJPN.DLL
2008-09-19 21:48:53 ----A---- C:\Windows\system32\iscsilog.dll
2008-09-19 21:48:52 ----A---- C:\Windows\system32\wmploc.DLL
2008-09-19 21:48:52 ----A---- C:\Windows\system32\vga64k.dll
2008-09-19 21:48:52 ----A---- C:\Windows\system32\vga256.dll
2008-09-19 21:48:52 ----A---- C:\Windows\system32\tsddd.dll
2008-09-19 21:48:52 ----A---- C:\Windows\system32\framebuf.dll
2008-09-19 21:48:52 ----A---- C:\Windows\system32\dxmasf.dll
2008-09-19 21:48:51 ----A---- C:\Windows\system32\vga.dll
2008-09-19 21:48:51 ----A---- C:\Windows\system32\dmdskres2.dll
2008-09-19 21:48:51 ----A---- C:\Windows\system32\bootstr.dll
2008-09-19 21:48:50 ----A---- C:\Windows\system32\spwizres.dll
2008-09-19 21:48:50 ----A---- C:\Windows\system32\f3ahvoas.dll
2008-09-19 21:48:49 ----A---- C:\Windows\system32\gatherWiredInfo.vbs
2008-09-19 21:48:48 ----A---- C:\Windows\system32\gatherWirelessInfo.vbs
2008-09-19 21:48:47 ----A---- C:\Windows\system32\fsmgmt.msc
2008-09-19 21:48:42 ----A---- C:\Windows\system32\vsp1cln.exe
2008-09-19 21:48:42 ----A---- C:\Windows\system32\perfmon.msc
2008-09-19 21:48:06 ----A---- C:\Windows\system32\xmllite.dll
2008-09-19 21:48:06 ----A---- C:\Windows\system32\wbemcomn.dll
2008-09-19 21:48:01 ----A---- C:\Windows\system32\SmiInstaller.dll
2008-09-19 21:48:00 ----A---- C:\Windows\system32\SmiEngine.dll
2008-09-19 21:47:55 ----A---- C:\Windows\system32\wdscore.dll
2008-09-19 21:47:55 ----A---- C:\Windows\system32\PkgMgr.exe
2008-09-19 21:47:41 ----A---- C:\Windows\system32\drvstore.dll
2008-09-19 21:47:40 ----A---- C:\Windows\system32\mspatcha.dll
2008-09-19 21:47:40 ----A---- C:\Windows\system32\msdelta.dll
2008-09-19 21:47:40 ----A---- C:\Windows\system32\dpx.dll
2008-09-15 17:29:00 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\DivX
2008-09-14 21:19:44 ----D---- C:\Program Files\Common Files\PX Storage Engine
2008-09-14 21:19:32 ----D---- C:\Program Files\DivX
2008-09-14 21:17:24 ----A---- C:\Windows\system32\xvidcore.dll
2008-09-14 21:17:23 ----D---- C:\Program Files\Xvid
2008-09-14 21:17:23 ----A---- C:\Windows\system32\xvidvfw.dll
2008-09-14 03:00:14 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-09-13 20:04:12 ----A---- C:\Windows\system32\LVUI2RC.dll
2008-09-13 20:04:12 ----A---- C:\Windows\system32\LVUI2.dll
2008-09-13 20:04:12 ----A---- C:\Windows\system32\lvcoinst.ini
2008-09-13 20:04:12 ----A---- C:\Windows\system32\lvcodec2.dll
2008-09-13 20:04:12 ----A---- C:\Windows\system32\lvci1150.dll
2008-09-13 20:01:53 ----D---- C:\ProgramData\Logishrd
2008-09-13 20:01:51 ----D---- C:\Program Files\Common Files\LogiShrd
2008-09-13 20:01:42 ----D---- C:\ProgramData\Logitech
2008-09-13 20:01:42 ----D---- C:\Program Files\Logitech
2008-09-11 12:52:03 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\DNA
2008-09-11 12:52:03 ----D---- C:\Program Files\DNA
2008-09-11 12:52:03 ----D---- C:\Program Files\BitTorrent
2008-09-09 15:26:54 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-09-09 15:26:54 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-09-09 15:26:45 ----A---- C:\Windows\system32\wmpeffects.dll
2008-09-07 07:14:22 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\Opera
2008-09-07 07:14:12 ----D---- C:\Program Files\Opera
2008-09-05 13:11:12 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\ZoomBrowser EX

======List of files/folders modified in the last 1 months======

2008-10-03 19:31:21 ----D---- C:\Windows\Temp
2008-10-03 19:28:48 ----D---- C:\Windows\Prefetch
2008-10-03 13:56:12 ----D---- C:\Windows\System32
2008-10-03 13:56:12 ----D---- C:\Windows\inf
2008-10-03 13:56:12 ----A---- C:\Windows\system32\PerfStringBackup.INI
2008-10-03 07:51:10 ----SHD---- C:\System Volume Information
2008-10-02 21:32:58 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\Skype
2008-10-02 09:34:19 ----RD---- C:\Program Files
2008-10-02 09:34:19 ----HD---- C:\ProgramData
2008-10-02 09:34:19 ----D---- C:\Windows\system32\drivers
2008-10-02 07:50:14 ----SHD---- C:\Windows\Installer
2008-10-01 19:40:27 ----D---- C:\Windows
2008-09-30 20:11:16 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\Adobe
2008-09-30 18:17:25 ----D---- C:\Program Files\Mozilla Firefox
2008-09-30 17:39:22 ----D---- C:\Windows\system32\catroot2
2008-09-30 13:13:15 ----D---- C:\Windows\system32\Tasks
2008-09-30 09:44:59 ----D---- C:\Windows\pss
2008-09-30 09:40:44 ----D---- C:\Windows\Minidump
2008-09-30 09:40:44 ----D---- C:\Windows\Debug
2008-09-30 09:38:47 ----D---- C:\Program Files\Yahoo!
2008-09-29 20:48:39 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\OpenOffice.org2
2008-09-29 14:19:07 ----D---- C:\ProgramData\Adobe
2008-09-29 13:46:33 ----RSD---- C:\Windows\assembly
2008-09-29 09:01:20 ----SD---- C:\Users\lee bonfiglio\AppData\Roaming\Microsoft
2008-09-29 09:00:40 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\Sony
2008-09-29 08:57:44 ----D---- C:\Program Files\Common Files\microsoft shared
2008-09-29 08:56:57 ----D---- C:\Windows\registration
2008-09-29 08:55:56 ----D---- C:\Program Files\Sony Setup
2008-09-29 07:41:49 ----D---- C:\Program Files\Common Files
2008-09-29 07:41:38 ----AD---- C:\ProgramData\TEMP
2008-09-28 19:51:05 ----D---- C:\Windows\system32\catroot
2008-09-28 19:50:35 ----D---- C:\Program Files\Adobe
2008-09-23 03:00:34 ----D---- C:\Windows\winsxs
2008-09-23 03:00:19 ----D---- C:\Program Files\Windows Mail
2008-09-22 03:30:23 ----D---- C:\Windows\rescache
2008-09-22 03:11:18 ----D---- C:\Windows\system32\en-US
2008-09-22 03:11:18 ----D---- C:\Windows\PolicyDefinitions
2008-09-22 03:00:44 ----D---- C:\Windows\system32\WDI
2008-09-21 03:00:38 ----D---- C:\Windows\Logs
2008-09-20 22:45:52 ----D---- C:\Windows\Microsoft.NET
2008-09-20 22:39:24 ----SHD---- C:\Boot
2008-09-20 22:39:09 ----ASH---- C:\Program Files\desktop.ini
2008-09-20 22:30:55 ----D---- C:\Program Files\Windows Sidebar
2008-09-20 22:30:55 ----D---- C:\Program Files\Windows Calendar
2008-09-20 22:30:54 ----D---- C:\Program Files\Windows Photo Gallery
2008-09-20 22:30:54 ----D---- C:\Program Files\Windows Media Player
2008-09-20 22:30:54 ----D---- C:\Program Files\Windows Journal
2008-09-20 22:30:54 ----D---- C:\Program Files\Windows Collaboration
2008-09-20 22:30:54 ----D---- C:\Program Files\Movie Maker
2008-09-20 22:30:54 ----D---- C:\Program Files\Internet Explorer
2008-09-20 22:30:49 ----D---- C:\Windows\servicing
2008-09-20 22:30:49 ----D---- C:\Windows\ehome
2008-09-20 22:30:49 ----D---- C:\Program Files\Windows Defender
2008-09-20 22:30:49 ----D---- C:\Program Files\Common Files\System
2008-09-20 22:30:46 ----D---- C:\Windows\MSAgent
2008-09-20 22:30:45 ----D---- C:\Windows\L2Schemas
2008-09-20 22:30:45 ----D---- C:\Windows\IME
2008-09-20 22:30:45 ----D---- C:\Windows\DigitalLocker
2008-09-20 22:30:44 ----D---- C:\Windows\system32\XPSViewer
2008-09-20 22:30:44 ----D---- C:\Windows\system32\ko-KR
2008-09-20 22:30:44 ----D---- C:\Windows\system32\da-DK
2008-09-20 22:30:44 ----D---- C:\Windows\system32\com
2008-09-20 22:30:40 ----D---- C:\Windows\system32\sysprep
2008-09-20 22:30:40 ----D---- C:\Windows\system32\oobe
2008-09-20 22:30:40 ----D---- C:\Windows\system32\migration
2008-09-20 22:30:40 ----D---- C:\Windows\system32\it-IT
2008-09-20 22:30:40 ----D---- C:\Windows\system32\el-GR
2008-09-20 22:30:40 ----D---- C:\Windows\system32\de-DE
2008-09-20 22:30:38 ----D---- C:\Windows\system32\ru-RU
2008-09-20 22:30:38 ----D---- C:\Windows\system32\ias
2008-09-20 22:30:38 ----D---- C:\Windows\system32\fr-FR
2008-09-20 22:30:38 ----D---- C:\Windows\system32\AdvancedInstallers
2008-09-20 22:30:37 ----D---- C:\Windows\system32\sv-SE
2008-09-20 22:30:37 ----D---- C:\Windows\system32\SLUI
2008-09-20 22:30:37 ----D---- C:\Windows\system32\setup
2008-09-20 22:30:37 ----D---- C:\Windows\system32\pt-PT
2008-09-20 22:30:37 ----D---- C:\Windows\system32\hu-HU
2008-09-20 22:30:37 ----D---- C:\Windows\system32\he-IL
2008-09-20 22:30:37 ----D---- C:\Windows\system32\fi-FI
2008-09-20 22:30:37 ----D---- C:\Windows\system32\cs-CZ
2008-09-20 22:30:33 ----D---- C:\Windows\system32\zh-CN
2008-09-20 22:30:33 ----D---- C:\Windows\system32\manifeststore
2008-09-20 22:30:33 ----D---- C:\Windows\system32\en
2008-09-20 22:30:32 ----D---- C:\Windows\system32\zh-TW
2008-09-20 22:30:32 ----D---- C:\Windows\system32\ro-RO
2008-09-20 22:30:32 ----D---- C:\Windows\system32\pl-PL
2008-09-20 22:30:32 ----D---- C:\Windows\system32\ja-JP
2008-09-20 22:30:32 ----D---- C:\Windows\system32\es-ES
2008-09-20 22:30:31 ----D---- C:\Windows\system32\wbem
2008-09-20 22:30:31 ----D---- C:\Windows\system32\tr-TR
2008-09-20 22:30:30 ----D---- C:\Windows\system32\nl-NL
2008-09-20 22:30:30 ----D---- C:\Windows\system32\nb-NO
2008-09-20 22:30:30 ----D---- C:\Windows\system32\ar-SA
2008-09-20 22:30:29 ----D---- C:\Windows\system32\pt-BR
2008-09-20 22:30:29 ----D---- C:\Windows\system32\migwiz
2008-09-20 22:29:57 ----D---- C:\Windows\AppPatch
2008-09-20 22:29:47 ----D---- C:\Windows\Boot
2008-09-20 22:29:46 ----D---- C:\Windows\system32\Boot
2008-09-20 22:28:41 ----D---- C:\Windows\WindowsMobile
2008-09-20 22:07:39 ----A---- C:\Windows\system32\ifxcardm.dll
2008-09-20 22:07:37 ----A---- C:\Windows\system32\axaltocm.dll
2008-09-19 14:05:29 ----D---- C:\Program Files\Google
2008-09-17 19:16:44 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\Epocrates
2008-09-17 19:14:42 ----D---- C:\Program Files\Epocrates
2008-09-17 19:14:41 ----HD---- C:\Program Files\InstallShield Installation Information
2008-09-13 20:04:44 ----D---- C:\Windows\twain_32
2008-09-10 03:02:47 ----D---- C:\Program Files\Microsoft Works

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys [2007-02-27 11840]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2008-06-27 75072]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2008-09-03 8944]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys [2008-09-03 55024]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
R2 dsunidrv;DellSupport UniDriver; C:\Windows\system32\DRIVERS\dsunidrv.sys [2007-02-25 5376]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2006-11-27 32256]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2006-11-27 43520]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-27 37376]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-04 8192]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\Windows\system32\DRIVERS\Apfiltr.sys [2007-05-21 157184]
R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys [2008-05-20 52032]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2007-05-21 179712]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-01-19 19456]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2008-04-28 29184]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2006-11-06 78128]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2006-11-06 80176]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2006-11-06 16560]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 DSproct;DSproct; \??\C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys [2006-10-05 4736]
R3 GEARAspiWDM;GEARAspiWDM; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-11-02 986624]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-11-02 206848]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-05-21 1674240]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\Windows\system32\DRIVERS\LVPr2Mon.sys [2007-10-11 25624]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-02-25 2216448]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2008-01-19 49664]
R3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS [2008-09-03 7408]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-19 88576]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\Windows\system32\drivers\stwrt.sys [2007-06-25 326656]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-11-02 659968]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-19 11264]
S2 MCSTRM;MCSTRM; C:\Windows\system32\drivers\MCSTRM.sys []
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2008-01-19 45696]
S3 Agp4pdvic;Agp4pdvic; C:\Windows\system32\drivers\Agp4pdvic.sys []
S3 Avc;AVC Device; C:\Windows\system32\DRIVERS\avc.sys [2008-01-19 40448]
S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2008-01-19 14208]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2008-04-28 220160]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\Windows\system32\DRIVERS\e1e6032.sys [2006-11-02 200704]
S3 grmnusb;grmnusb; C:\Windows\system32\drivers\grmnusb.sys [2007-03-08 8320]
S3 IKFileSec;File Security Driver; C:\Windows\system32\drivers\ikfilesec.sys [2008-08-25 40840]
S3 IKSysFlt;System Filter Driver; C:\Windows\system32\drivers\iksysflt.sys [2008-08-25 66952]
S3 IKSysSec;System Security Driver; C:\Windows\system32\drivers\iksyssec.sys [2008-08-25 81288]
S3 LVcKap;Logitech AEC Driver; C:\Windows\system32\DRIVERS\LVcKap.sys [2007-10-19 2109976]
S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\Windows\system32\DRIVERS\LVMVDrv.sys [2007-10-11 2142488]
S3 lvpopflt;Logitech POP Suppression Filter; C:\Windows\system32\DRIVERS\lvpopflt.sys [2007-10-11 1920920]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBSta.sys [2007-10-11 41752]
S3 LVUVC;Logitech QuickCam Pro 9000(UVC); C:\Windows\system32\DRIVERS\lvuvc.sys [2007-10-11 3647384]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2008-01-19 50048]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 PalmUSBD;PalmUSBD; C:\Windows\system32\drivers\PalmUSBD.sys [2007-12-04 16640]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2006-11-02 2028032]
S3 usb_rndisx;USB RNDIS Adapter; C:\Windows\system32\DRIVERS\usb8023x.sys [2008-01-19 15872]
S3 usbaudio;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2008-01-19 73088]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-05-12 611664]
R2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-06-12 68865]
R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-08-07 149761]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2007-09-06 110592]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [2007-10-19 186904]
R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-10-19 141848]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 RoxWatch9;Roxio Hard Drive Watcher 9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe [2006-11-05 159744]
R2 sprtsvc_dellsupportcenter;SupportSoft Sprocket Service (dellsupportcenter); C:\Program Files\Dell Support Center\bin\sprtsvc.exe [2008-08-13 201968]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2007-02-10 89968]
R2 STacSV;SigmaTel Audio Service; C:\Windows\system32\STacSV.exe [2007-06-25 94208]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-04 386560]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-03-30 504104]
S2 gupdate1c8c134749512b0;Google Update Service (gupdate1c8c134749512b0); C:\Program Files\Google\Update\GoogleUpdate.exe [2008-08-29 133104]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-10-19 141848]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-09-26 68096]
S3 DSBrokerService;DSBrokerService; C:\Program Files\DellSupport\brkrsvc.exe [2007-03-19 70656]
S3 GoogleDesktopManager-061008-081103;Google Desktop Manager 5.7.806.10245; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-08-06 29744]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MSSQL$SONY_MEDIAMGR2;SQL Server (SONY_MEDIAMGR2); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2008-02-26 29183504]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2006-11-05 880640]
S3 sdAuxService;PC Tools Auxiliary Service; C:\Program Files\Spyware Doctor\pctsAuxs.exe [2008-06-13 356920]
S3 sdCoreService;PC Tools Security Service; C:\Program Files\Spyware Doctor\pctsSvc.exe [2008-09-22 1079176]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2006-09-14 73728]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2005-10-14 45272]
S4 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2007-02-10 242544]

-----------------EOF-----------------


info.txt logfile of random's system information tool 1.04 2008-10-03 19:31:37

======Uninstall list======

-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{55251924-B51C-4E66-8199-5258672518C5}\Setup.exe" -u -uninst -fUninst.isu -c"C:\Program Files\Epocrates\EssentialsPPC\Win32\Win32_Dll\AupdUnInstall.dll"
32 Bit HP CIO Components Installer-->MsiExec.exe /I{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}
Ad-Aware-->MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player 9 ActiveX-->C:\Windows\system32\Macromed\Flash\UninstFl.exe -q
Adobe Flash Player ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Photoshop CS-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}\setup.exe" -l0x9
Adobe Photoshop Lightroom 2-->MsiExec.exe /I{531BC138-F1F7-496B-879C-F039ECEF438D}
Adobe Reader 8.1.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81200000003}
Apple Mobile Device Support-->MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543}
Apple Software Update-->MsiExec.exe /I{02DFF6B1-1654-411C-8D7B-FD6052EF016F}
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
Broadcom Management Programs-->MsiExec.exe /X{C99C0593-3B48-41D9-B42F-6E035B320449}
CAM UnZip 4.42-->"C:\Program Files\CAM Development\CAM UnZip\Uninstall\unins000.exe"
Canon G.726 WMP-Decoder-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\G726Decoder\G726DecUnInstall.ini"
Canon MovieEdit Task for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\MVWUninst.ini"
Canon RAW Image Task for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\RAW Image Task\Uninst.ini"
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\CameraWindowDVC6\Uninst.ini"
Canon Utilities CameraWindow-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\CameraWindowLauncher\Uninst.ini"
Canon Utilities MyCamera-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\MyCamera\Uninst.ini"
Canon Utilities RemoteCapture Task for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\RemoteCaptureTask DC\Uninst.ini"
Canon Utilities ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\Uninst.ini"
Canon ZoomBrowser EX Memory Card Utility-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX MCU\Uninst.ini"
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Conexant HDA D330 MDC V.92 Modem-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2C06&SUBSYS_14F1000F\HXFSETUP.EXE -U -Idel000fz.inf
ConTEXT-->"C:\Program Files\ConTEXT\unins000.exe"
Dell Support Center (Support Software)-->MsiExec.exe /X{E3BFEE55-39E2-4BE0-B966-89FE583822C1}
Dell System Customization Wizard-->MsiExec.exe /I{13BA7B44-B712-4DEE-A7B8-1DD564F37AE5}
Dell Touchpad-->C:\Program Files\DellTPad\Uninstap.exe ADDREMOVE
DellSupport-->MsiExec.exe /X{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}
Digital Line Detect-->C:\Program Files\InstallShield Installation Information\{E646DCF0-5A68-11D5-B229-002078017FBF}\setup.exe -runfromtemp -l0x0009 -removeonly
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Epocrates Essentials for Pocket PC-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{55251924-B51C-4E66-8199-5258672518C5}\Setup.exe" -u
Games, Music, & Photos Launcher-->MsiExec.exe /I{3E25E350-949F-4DB7-8288-2A60E018B4C1}
Garmin nRoute-->MsiExec.exe /X{C3EBEF79-DE34-44AE-8774-F6A17ABE27B2}
Garmin Trip and Waypoint Manager v4-->MsiExec.exe /X{67B9AF41-C0B9-4960-84D9-A61D23DE85D8}
GDR 3068 for SQL Server Database Services 2005 ENU (KB948109)-->C:\Windows\SQL9_KB948109_ENU\Hotfix.exe /Uninstall
Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
Google Earth Plugin-->MsiExec.exe /I{79916F0F-838B-11DD-B6D5-005056806466}
Google Earth-->MsiExec.exe /I{1E04F83B-2AB9-4301-9EF7-E86307F79C72}
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
Google Update-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
HP Customer Participation Program 10.0-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Document Manager 1.0-->C:\Program Files\HP\Digital Imaging\DocumentManager\hpzscr01.exe -datfile hpqbud18.dat
HP Imaging Device Functions 10.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP iPAQ Setup Assistant v1.3.11.0-->C:\Program Files\HP\HP iPAQ Setup Assistant\Uninst.exe
HP Officejet J4500 Series-->C:\Program Files\HP\Digital Imaging\{CD0773D5-C18E-495c-B39B-21A96415EDD5}\setup\hpzscr01.exe -datfile hpwscr19.dat -forcereboot
HP Photosmart Essential 2.5-->C:\Program Files\HP\Digital Imaging\PhotoSmartEssential\hpzscr01.exe -datfile hpqbud13.dat
HP Smart Web Printing-->C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpzscr01.exe -datfile hpqbud15.dat
HP Solution Center 10.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{11B83AD3-7A46-4C2E-A568-9505981D4C6F}
iTunes-->MsiExec.exe /I{585776BC-4BD6-4BD2-A19A-1D6CB44A403B}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) 6 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Java(TM) SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}
LBMaps Baja Navigator V1.10-->C:\LBMaps\baja1\unins000.exe
Logitech QuickCam Driver Package-->"C:\Program Files\Common Files\LogiShrd\LogiDriverStore\lvdrivers\11.50.1145\LgDrvInst.exe" -remove -instdir"C:\Program Files\Common Files\LogiShrd\LogiDriverStore\lvdrivers\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -arpregkey"lvdrivers_11.50" /clone_wait /hide_progress
Logitech QuickCam-->MsiExec.exe /X{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
MediaDirect-->C:\Program Files\InstallShield Installation Information\{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}\setup.exe -runfromtemp -l0x0009 -cluninstall
Microsoft Office Excel Viewer 2003-->MsiExec.exe /I{90840409-6000-11D3-8CFE-0150048383C9}
Microsoft SQL Server 2005 Express Edition (SONY_MEDIAMGR2)-->MsiExec.exe /I{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}
Microsoft SQL Server 2005-->"c:\Program Files\Microsoft SQL Server\90\Setup Bootstrap\ARPWrapper.exe" /Remove
Microsoft SQL Server Native Client-->MsiExec.exe /I{F9B3DD02-B0B3-42E9-8650-030DFF0D133D}
Microsoft SQL Server Setup Support Files (English)-->MsiExec.exe /X{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}
Microsoft SQL Server VSS Writer-->MsiExec.exe /I{E9F44C98-B8B6-480F-AF7B-E42A0A46F4E3}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Works-->MsiExec.exe /I{6D52C408-B09A-4520-9B18-475B81D393F1}
Modem Diagnostic Tool-->MsiExec.exe /I{F63A3748-B93D-4360-9AD4-B064481A5C7B}
Mozilla Firefox (3.0.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}
My Sirius Studio-->C:\Program Files\Sirius\MySiriusStudio\Uninstall.exe
Netflix Movie Viewer-->MsiExec.exe /X{BCE72AED-3332-4863-9567-C5DCB9052CA2}
NetWaiting-->C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\setup.exe -runfromtemp -l0x0009 -removeonly
OCR Software by I.R.I.S. 10.0-->C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
OpenOffice.org 2.3-->MsiExec.exe /I{2F29D6D2-824E-4FEF-8AED-7013F39F642A}
Opera 9.52-->MsiExec.exe /X{E1A88DE8-BD36-4DEA-8DD8-E35EF475ADC7}
OutlookAddinSetup-->MsiExec.exe /I{9BDEF074-020E-458D-ADC5-8FF68E0C9B56}
Product Documentation Launcher-->MsiExec.exe /I{89CEAE14-DD0F-448E-9554-15781EC9DB24}
QuickSet-->MsiExec.exe /I{7F0C4457-8E64-491B-8D7B-991504365D1E}
QuickTime-->MsiExec.exe /I{1838C5A2-AB32-4145-85C1-BB9B8DFA24CD}
Rhapsody Player Engine-->MsiExec.exe /I{2DFF31F9-7893-4922-AF66-C9A1EB4EBB31}
Rhapsody-->C:\PROGRA~1\Rhapsody\Unwise32.exe /A C:\PROGRA~1\Rhapsody\install.log
Roxio Creator Audio-->MsiExec.exe /I{83FFCFC7-88C6-41c6-8752-958A45325C82}
Roxio Creator BDAV Plugin-->MsiExec.exe /I{880AF49C-34F7-4285-A8AD-8F7A3D1C33DC}
Roxio Creator Copy-->MsiExec.exe /I{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}
Roxio Creator Data-->MsiExec.exe /I{0D397393-9B50-4c52-84D5-77E344289F87}
Roxio Creator DE-->MsiExec.exe /I{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}
Roxio Creator Tools-->MsiExec.exe /I{0394CDC8-FABD-4ed8-B104-03393876DFDF}
Roxio Express Labeler-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
Roxio MyDVD DE-->MsiExec.exe /I{D639085F-4B6E-4105-9F37-A0DBB023E2FB}
Roxio Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Shop for HP Supplies-->C:\Program Files\HP\Digital Imaging\HPSSupply\hpzscr01.exe -datfile hpqbud16.dat
Skype™ 3.5-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
Sonic Activation Module-->MsiExec.exe /I{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}
Sony Media Manager 2.3-->MsiExec.exe /X{8FA5B6B7-D8BD-49F7-98D7-701C26B01E97}
Sony Vegas Pro 8.0-->MsiExec.exe /X{7C9AD221-994C-45B2-B46D-26F5735158CF}
Spyware Doctor 6.0-->C:\Program Files\Spyware Doctor\unins000.exe /LOG
SUPERAntiSpyware Free Edition-->MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
URL Assistant-->regsvr32 /u /s "C:\Program Files\BAE\BAE.dll"
User's Guides-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5CD29180-A95E-11D3-A4EB-00C04F7BDB2C}\setup.exe"
Visual Link Spanish Level I v4.0-->MsiExec.exe /I{848077B5-1B3E-40A0-A591-BD11477273DB}
Visual Link Spanish(tm) - Level II Verb Module-->MsiExec.exe /X{8B89E505-7061-4455-9298-6FE1F2A93C26}
WIDCOMM Bluetooth Software 6.0.1.3100-->MsiExec.exe /X{A13E07E1-A423-44FB-9DEE-B24C75C1BAF2}
Windows Live installer-->MsiExec.exe /X{A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320}
Windows Live Mail-->MsiExec.exe /I{184E7118-0295-43C4-B72C-1D54AA75AAF7}
Windows Live Sign-in Assistant-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
Windows Mobile Device Center Driver Update-->MsiExec.exe /X{E7044E25-3038-4A76-9064-344AC038043E}
Windows Mobile Device Center-->MsiExec.exe /X{904CCF62-818D-4675-BC76-D37EB399F917}
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
WinZip 11.2-->MsiExec.exe /X{CD95F661-A5C4-44F5-A6AA-ECDD91C240B6}
Xvid 1.1.3 final uninstall-->"C:\Program Files\Xvid\unins000.exe"
Yahoo! Install Manager-->C:\Windows\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Yahoo! Music Jukebox-->MsiExec.exe /X{7C49EA42-5647-4051-84C2-E6404F25A931}
Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\unyt.exe

======Security center information======

AS: Windows Defender
AS: SUPERAntiSpyware

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\Common Files\HP\Digital Imaging\\bin;c:\Program Files\Microsoft SQL Server\90\Tools\binn\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=0f0a
"NUMBER_OF_PROCESSORS"=2
"RoxioCentral"=C:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip

-----------------EOF-----------------
leebonfiglio
Regular Member
 
Posts: 32
Joined: October 2nd, 2008, 11:05 am

Re: trojan downloader zlob

Unread postby Shaba » October 4th, 2008, 4:40 am

Please download the OTMoveIt3 by OldTimer.
  • Save it to your desktop.
  • Please double-click OTMoveIt3.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
  • Copy the lines in the codebox below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):

    Code: Select all
    :files
    C:\Users\lee bonfiglio\Program Files\DNA
    C:\Users\LEEBON~1\AppData\Local\Temp\pwrmgr.exe
    C:\Program Files\DNA
    C:\Program Files\BitTorrent
    
    :reg
    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "BitTorrent DNA"=-
    "IUpd704"=-
    
    :commands
    EmptyTemp
    
    

  • Return to OTMoveIt3, right click in the "Paste List of Files/Folders to Move" window (under the yellow bar) and choose Paste.
  • Click the red Moveit! button.
  • Copy everything in the Results window (under the green bar) to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTMoveIt3
Note: If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes. In this case, after the reboot, open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTMoveIt\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.

Re-run rsit

Post:

- rsit log
- otmoveit3 log
User avatar
Shaba
Admin/Teacher Emeritus
 
Posts: 26974
Joined: March 24th, 2006, 4:42 am
Location: Finland

Re: trojan downloader zlob

Unread postby leebonfiglio » October 4th, 2008, 9:50 am

========== FILES ==========
C:\Users\lee bonfiglio\Program Files\DNA moved successfully.
C:\Users\LEEBON~1\AppData\Local\Temp\pwrmgr.exe moved successfully.
C:\Program Files\DNA\plugins moved successfully.
C:\Program Files\DNA moved successfully.
C:\Program Files\BitTorrent moved successfully.
========== REGISTRY ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\BitTorrent DNA deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\IUpd704 deleted successfully.
========== COMMANDS ==========
Error: Unable to interpret <EmptyTemp> in the current context!

OTMoveIt3 by OldTimer - Version 1.0.3.1 log created on 10042008_084859
leebonfiglio
Regular Member
 
Posts: 32
Joined: October 2nd, 2008, 11:05 am

Re: trojan downloader zlob

Unread postby leebonfiglio » October 4th, 2008, 9:52 am

Logfile of random's system information tool 1.04 (written by random/random)
Run by lee bonfiglio at 2008-10-04 08:51:12
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 62 GB (45%) free of 140 GB
Total RAM: 2037 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:51:25, on 10/4/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Users\lee bonfiglio\Program Files\DNA\btdna.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Opera\opera.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9e.exe
C:\Users\lee bonfiglio\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\lee bonfiglio.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com/ig?hl=en&amp;gl=us
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Google Update Helper - {77D7E795-33C5-4323-974D-A2A49AB75517} - C:\Program Files\Google\Update\1.2.131.11\GoopdateBho.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [ECenter] c:\dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: palmOne Registration.lnk = C:\Program Files\palmOne\register.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: QuickSet.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O13 - Gopher Prefix:
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/binFrameWork/v10/St ... b55579.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v ... b56649.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (MSN Games – Game Communicator) - http://zone.msn.com/binframework/v10/St ... b55579.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-l ... cfscan.cab
O16 - DPF: {F773E7B2-62A9-4524-9109-87D2F0BEFAA4} (ChessControl Class) - http://zone.msn.com/bingame/zpagames/zp ... b56961.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate1c8c134749512b0) (gupdate1c8c134749512b0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 12540 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachine.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-11-29 436288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2007-09-13 1312040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{77D7E795-33C5-4323-974D-A2A49AB75517}]
Google Update Helper - C:\Program Files\Google\Update\1.2.131.11\GoopdateBho.dll [2008-08-29 133616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2007-09-12 2193280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA6319C0-31B7-401E-A518-A07C3DB8F777}]
CBrowserHelperObject Object - C:\Program Files\BAE\BAE.dll [2007-03-16 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2007-11-06 542016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2007-09-12 2193280]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-11-29 436288]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2007-05-21 159744]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2007-05-21 138008]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2007-05-21 154392]
"Persistence"=C:\Windows\system32\igfxpers.exe [2007-05-21 133912]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-10-03 81920]
""= []
"PCMService"=C:\Program Files\Dell\MediaDirect\PCMService.exe [2007-04-16 184320]
"dscactivate"=C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe [2007-11-15 16384]
"ECenter"=c:\dell\E-Center\EULALauncher.exe [2007-03-16 17920]
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-08-06 29744]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2006-10-03 221184]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-03-29 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-03-30 267048]
"DellSupportCenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2008-08-13 206064]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
"hpqSRMon"=C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2007-08-22 80896]
"SigmatelSysTrayApp"=C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [2007-06-25 405504]
"Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdSync.exe [2006-11-02 215552]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2008-09-10 1253040]
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DellSupport"=C:\Program Files\DellSupport\DSAgnt.exe [2007-03-15 460784]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
"DellSupportCenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2008-08-13 206064]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2008-09-03 1576176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-12 39792]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-10-14 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [2007-10-25 563984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
C:\Program Files\Logitech\QuickCam\Quickcam.exe [2007-10-25 2178832]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2006-11-03 703280]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Digital Line Detect.lnk]
C:\PROGRA~1\DIGITA~1\DLG.exe [2006-11-03 50688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2007-10-14 214360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Quick Pick.lnk]
C:\PROGRA~1\WinZip\WZQKPICK.EXE [2008-04-28 415072]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^lee bonfiglio^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 2.3.lnk]
C:\PROGRA~1\OPENOF~1.3\program\QUICKS~1.EXE [2007-08-17 393216]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
QuickSet.lnk - C:\Windows\Installer\{7F0C4457-8E64-491B-8D7B-991504365D1E}\NewShortcut2_53A01CC614B04512A2E710D39BF83DC4.exe

C:\Users\lee bonfiglio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
palmOne Registration.lnk - C:\Program Files\palmOne\register.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-07-23 352256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2007-05-21 204800]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdcoreservice]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2008-10-04 08:48:59 ----D---- C:\_OTMoveIt
2008-10-02 09:47:21 ----D---- C:\rsit
2008-10-02 09:34:19 ----D---- C:\ProgramData\Avira
2008-10-02 09:34:19 ----D---- C:\Program Files\Avira
2008-10-02 07:49:56 ----SHD---- C:\Config.Msi
2008-10-01 13:44:04 ----D---- C:\Program Files\Trend Micro
2008-10-01 07:12:49 ----D---- C:\Windows\SQL9_KB948109_ENU
2008-09-30 20:11:14 ----D---- C:\Avenger
2008-09-30 20:11:13 ----A---- C:\avenger.txt
2008-09-30 19:55:41 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\Malwarebytes
2008-09-30 19:55:33 ----D---- C:\ProgramData\Malwarebytes
2008-09-30 19:55:33 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-09-30 18:07:59 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2008-09-30 18:07:02 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\SUPERAntiSpyware.com
2008-09-30 18:07:02 ----D---- C:\Program Files\SUPERAntiSpyware
2008-09-30 17:19:09 ----A---- C:\Windows\ntbtlog.txt
2008-09-30 13:13:16 ----D---- C:\ProgramData\Yahoo! Companion
2008-09-30 13:13:05 ----D---- C:\Program Files\Enigma Software Group
2008-09-30 09:38:40 ----D---- C:\Program Files\CCleaner
2008-09-29 13:44:58 ----D---- C:\Program Files\Vstplugins
2008-09-29 08:57:43 ----D---- C:\Program Files\Microsoft.NET
2008-09-29 08:56:39 ----D---- C:\Windows\PCHEALTH
2008-09-29 08:56:28 ----D---- C:\Program Files\Microsoft SQL Server
2008-09-29 08:53:28 ----D---- C:\ProgramData\Sony
2008-09-29 08:53:18 ----D---- C:\Program Files\Sony
2008-09-29 07:43:27 ----D---- C:\Program Files\Lavasoft
2008-09-29 07:43:25 ----D---- C:\ProgramData\Lavasoft
2008-09-29 07:41:49 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-09-29 07:19:42 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\PC Tools
2008-09-29 07:19:42 ----D---- C:\Program Files\Spyware Doctor
2008-09-28 18:42:43 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\WinRAR
2008-09-28 18:42:31 ----D---- C:\Program Files\WinRAR
2008-09-28 17:42:57 ----D---- C:\Program Files\ConTEXT
2008-09-28 17:01:04 ----D---- C:\Program Files\CAM Development
2008-09-22 03:03:10 ----A---- C:\Windows\system32\msshooks.dll
2008-09-22 03:03:09 ----A---- C:\Windows\system32\msscb.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\thawbrkr.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\srchadmin.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\SearchFilterHost.exe
2008-09-22 03:03:07 ----A---- C:\Windows\system32\propsys.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\propdefs.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\msstrc.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\mssprxy.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\mssitlb.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\msshsq.dll
2008-09-22 03:03:07 ----A---- C:\Windows\system32\korwbrkr.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\xmlfilter.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\wsepno.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\tquery.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2008-09-22 03:03:06 ----A---- C:\Windows\system32\SearchIndexer.exe
2008-09-22 03:03:06 ----A---- C:\Windows\system32\rtffilt.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\offfilt.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\nlhtml.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\mssvp.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\mssrch.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\mssphtb.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\mssph.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\msscntrs.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\mimefilt.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\chtbrkr.dll
2008-09-22 03:03:06 ----A---- C:\Windows\system32\chsbrkr.dll
2008-09-21 03:31:25 ----A---- C:\Windows\system32\rpcrt4.dll
2008-09-21 03:31:25 ----A---- C:\Windows\system32\ntkrnlpa.exe
2008-09-21 03:31:24 ----A---- C:\Windows\system32\pacerprf.dll
2008-09-21 03:31:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2008-09-21 03:31:15 ----A---- C:\Windows\system32\wshext.dll
2008-09-21 03:31:15 ----A---- C:\Windows\system32\wscript.exe
2008-09-21 03:31:15 ----A---- C:\Windows\system32\vbscript.dll
2008-09-21 03:31:15 ----A---- C:\Windows\system32\scrrun.dll
2008-09-21 03:31:15 ----A---- C:\Windows\system32\scrobj.dll
2008-09-21 03:31:15 ----A---- C:\Windows\system32\jscript.dll
2008-09-21 03:31:15 ----A---- C:\Windows\system32\cscript.exe
2008-09-21 03:31:13 ----A---- C:\Windows\system32\emdmgmt.dll
2008-09-21 03:31:13 ----A---- C:\Windows\system32\dataclen.dll
2008-09-21 03:31:13 ----A---- C:\Windows\system32\cdd.dll
2008-09-20 22:29:45 ----D---- C:\PerfLogs
2008-09-19 21:52:37 ----A---- C:\Windows\system32\SLsvc.exe
2008-09-19 21:52:37 ----A---- C:\Windows\system32\onex.dll
2008-09-19 21:52:25 ----A---- C:\Windows\system32\PSHED.DLL
2008-09-19 21:52:24 ----A---- C:\Windows\system32\imagesp1.dll
2008-09-19 21:52:22 ----A---- C:\Windows\system32\dfsr.exe
2008-09-19 21:52:21 ----A---- C:\Windows\system32\pidgenx.dll
2008-09-19 21:52:20 ----A---- C:\Windows\system32\sstpsvc.dll
2008-09-19 21:52:20 ----A---- C:\Windows\system32\mstscax.dll
2008-09-19 21:52:18 ----A---- C:\Windows\system32\WsmSvc.dll
2008-09-19 21:52:18 ----A---- C:\Windows\system32\winrscmd.dll
2008-09-19 21:52:17 ----A---- C:\Windows\system32\sysmain.dll
2008-09-19 21:52:17 ----A---- C:\Windows\system32\RMActivate.exe
leebonfiglio
Regular Member
 
Posts: 32
Joined: October 2nd, 2008, 11:05 am

Re: trojan downloader zlob

Unread postby leebonfiglio » October 4th, 2008, 9:53 am

2008-09-19 21:52:16 ----A---- C:\Windows\system32\vssapi.dll
2008-09-19 21:52:15 ----A---- C:\Windows\system32\VSSVC.exe
2008-09-19 21:52:15 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2008-09-19 21:52:14 ----A---- C:\Windows\system32\secproc.dll
2008-09-19 21:52:14 ----A---- C:\Windows\system32\RMActivate_isv.exe
2008-09-19 21:52:14 ----A---- C:\Windows\system32\iesetup.dll
2008-09-19 21:52:11 ----A---- C:\Windows\system32\secproc_isv.dll
2008-09-19 21:52:09 ----A---- C:\Windows\system32\icardres.dll
2008-09-19 21:52:09 ----A---- C:\Windows\system32\icardagt.exe
2008-09-19 21:52:09 ----A---- C:\Windows\system32\drmv2clt.dll
2008-09-19 21:52:09 ----A---- C:\Windows\system32\blackbox.dll
2008-09-19 21:52:08 ----A---- C:\Windows\system32\xpssvcs.dll
2008-09-19 21:52:06 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2008-09-19 21:52:06 ----A---- C:\Windows\system32\RacEngn.dll
2008-09-19 21:52:06 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2008-09-19 21:52:05 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2008-09-19 21:52:04 ----A---- C:\Windows\system32\spwizimg.dll
2008-09-19 21:52:04 ----A---- C:\Windows\system32\rdpencom.dll
2008-09-19 21:52:04 ----A---- C:\Windows\system32\lpremove.exe
2008-09-19 21:52:04 ----A---- C:\Windows\bfsvc.exe
2008-09-19 21:52:02 ----A---- C:\Windows\system32\msxml3.dll
2008-09-19 21:51:58 ----A---- C:\Windows\system32\msxml6.dll
2008-09-19 21:51:58 ----A---- C:\Windows\system32\msjet40.dll
2008-09-19 21:51:57 ----A---- C:\Windows\system32\qmgr.dll
2008-09-19 21:51:57 ----A---- C:\Windows\system32\ntdll.dll
2008-09-19 21:51:57 ----A---- C:\Windows\system32\lsasrv.dll
2008-09-19 21:51:56 ----A---- C:\Windows\system32\localspl.dll
2008-09-19 21:51:56 ----A---- C:\Windows\system32\IKEEXT.DLL
2008-09-19 21:51:55 ----A---- C:\Windows\system32\wevtsvc.dll
2008-09-19 21:51:55 ----A---- C:\Windows\system32\wcncsvc.dll
2008-09-19 21:51:55 ----A---- C:\Windows\system32\TsWpfWrp.exe
2008-09-19 21:51:55 ----A---- C:\Windows\system32\recdisc.exe
2008-09-19 21:51:55 ----A---- C:\Windows\system32\mscoree.dll
2008-09-19 21:51:55 ----A---- C:\Windows\system32\kernel32.dll
2008-09-19 21:51:54 ----A---- C:\Windows\system32\vds.exe
2008-09-19 21:51:54 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
2008-09-19 21:51:53 ----A---- C:\Windows\system32\wmp.dll
2008-09-19 21:51:52 ----A---- C:\Windows\system32\mstsc.exe
2008-09-19 21:51:51 ----A---- C:\Windows\system32\wcnwiz.dll
2008-09-19 21:51:51 ----A---- C:\Windows\system32\SMBHelperClass.dll
2008-09-19 21:51:51 ----A---- C:\Windows\system32\msvbvm60.dll
2008-09-19 21:51:51 ----A---- C:\Windows\system32\mf.dll
2008-09-19 21:51:50 ----A---- C:\Windows\system32\termsrv.dll
2008-09-19 21:51:50 ----A---- C:\Windows\system32\msdtctm.dll
2008-09-19 21:51:50 ----A---- C:\Windows\system32\advapi32.dll
2008-09-19 21:51:49 ----A---- C:\Windows\system32\kerberos.dll
2008-09-19 21:51:49 ----A---- C:\Windows\system32\IMJP10K.DLL
2008-09-19 21:51:48 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL
2008-09-19 21:51:48 ----A---- C:\Windows\system32\mmcndmgr.dll
2008-09-19 21:51:48 ----A---- C:\Windows\system32\CertEnroll.dll
2008-09-19 21:51:47 ----A---- C:\Windows\system32\xolehlp.dll
2008-09-19 21:51:47 ----A---- C:\Windows\system32\Query.dll
2008-09-19 21:51:47 ----A---- C:\Windows\system32\msdtcprx.dll
2008-09-19 21:51:47 ----A---- C:\Windows\system32\MPSSVC.dll
2008-09-19 21:51:46 ----A---- C:\Windows\system32\ole32.dll
2008-09-19 21:51:45 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2008-09-19 21:51:45 ----A---- C:\Windows\system32\SSShim.dll
2008-09-19 21:51:45 ----A---- C:\Windows\system32\netlogon.dll
2008-09-19 21:51:45 ----A---- C:\Windows\system32\msvcrt.dll
2008-09-19 21:51:44 ----A---- C:\Windows\system32\schedsvc.dll
2008-09-19 21:51:44 ----A---- C:\Windows\system32\nlmgp.dll
2008-09-19 21:51:44 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2008-09-19 21:51:44 ----A---- C:\Windows\system32\DfsShlEx.dll
2008-09-19 21:51:43 ----A---- C:\Windows\system32\shlwapi.dll
2008-09-19 21:51:43 ----A---- C:\Windows\system32\sdclt.exe
2008-09-19 21:51:43 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2008-09-19 21:51:43 ----A---- C:\Windows\system32\milcore.dll
2008-09-19 21:51:43 ----A---- C:\Windows\system32\IasMigPlugin.dll
2008-09-19 21:51:42 ----A---- C:\Windows\system32\wer.dll
2008-09-19 21:51:42 ----A---- C:\Windows\system32\vdsdyn.dll
2008-09-19 21:51:42 ----A---- C:\Windows\system32\user32.dll
2008-09-19 21:51:42 ----A---- C:\Windows\system32\d3d9.dll
2008-09-19 21:51:42 ----A---- C:\Windows\system32\clusapi.dll
2008-09-19 21:51:41 ----A---- C:\Windows\system32\WSDApi.dll
2008-09-19 21:51:41 ----A---- C:\Windows\system32\winrsmgr.dll
2008-09-19 21:51:41 ----A---- C:\Windows\system32\QAGENTRT.DLL
2008-09-19 21:51:41 ----A---- C:\Windows\system32\diagperf.dll
2008-09-19 21:51:40 ----A---- C:\Windows\system32\mtxclu.dll
2008-09-19 21:51:40 ----A---- C:\Windows\system32\mmc.exe
2008-09-19 21:51:39 ----A---- C:\Windows\system32\vdsbas.dll
2008-09-19 21:51:39 ----A---- C:\Windows\system32\swprv.dll
2008-09-19 21:51:39 ----A---- C:\Windows\system32\SLC.dll
2008-09-19 21:51:39 ----A---- C:\Windows\system32\msi.dll
2008-09-19 21:51:39 ----A---- C:\Windows\system32\comctl32.dll
2008-09-19 21:51:38 ----A---- C:\Windows\system32\MSVidCtl.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\XPSSHHDR.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\sbe.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\samsrv.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\msdtckrm.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\mfc42u.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\gpsvc.dll
2008-09-19 21:51:37 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2008-09-19 21:51:36 ----A---- C:\Windows\system32\wecutil.exe
2008-09-19 21:51:36 ----A---- C:\Windows\system32\usp10.dll
2008-09-19 21:51:36 ----A---- C:\Windows\system32\sdengin2.dll
2008-09-19 21:51:36 ----A---- C:\Windows\system32\esent.dll
2008-09-19 21:51:35 ----A---- C:\Windows\system32\mfc42.dll
2008-09-19 21:51:35 ----A---- C:\Windows\system32\gacinstall.dll
2008-09-19 21:51:35 ----A---- C:\Windows\system32\cmipnpinstall.dll
2008-09-19 21:51:35 ----A---- C:\Windows\system32\cmicryptinstall.dll
2008-09-19 21:51:34 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2008-09-19 21:51:34 ----A---- C:\Windows\system32\crypt32.dll
2008-09-19 21:51:34 ----A---- C:\Windows\system32\comsvcs.dll
2008-09-19 21:51:34 ----A---- C:\Windows\system32\certutil.exe
2008-09-19 21:51:33 ----A---- C:\Windows\system32\mswsock.dll
2008-09-19 21:51:33 ----A---- C:\Windows\explorer.exe
2008-09-19 21:51:32 ----A---- C:\Windows\system32\wmdrmsdk.dll
2008-09-19 21:51:32 ----A---- C:\Windows\system32\sqlceqp30.dll
2008-09-19 21:51:32 ----A---- C:\Windows\system32\setupapi.dll
2008-09-19 21:51:32 ----A---- C:\Windows\system32\oleaut32.dll
2008-09-19 21:51:32 ----A---- C:\Windows\system32\FirewallAPI.dll
2008-09-19 21:51:31 ----A---- C:\Windows\system32\wecsvc.dll
2008-09-19 21:51:31 ----A---- C:\Windows\system32\sdohlp.dll
2008-09-19 21:51:31 ----A---- C:\Windows\system32\msv1_0.dll
2008-09-19 21:51:31 ----A---- C:\Windows\system32\lsm.exe
2008-09-19 21:51:31 ----A---- C:\Windows\system32\bcrypt.dll
2008-09-19 21:51:31 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2008-09-19 21:51:30 ----A---- C:\Windows\system32\thumbcache.dll
2008-09-19 21:51:30 ----A---- C:\Windows\system32\schannel.dll
2008-09-19 21:51:30 ----A---- C:\Windows\system32\p2psvc.dll
2008-09-19 21:51:30 ----A---- C:\Windows\system32\netapi32.dll
2008-09-19 21:51:30 ----A---- C:\Windows\system32\iphlpsvc.dll
2008-09-19 21:51:30 ----A---- C:\Windows\system32\eapp3hst.dll
2008-09-19 21:51:29 ----A---- C:\Windows\system32\wmpmde.dll
2008-09-19 21:51:29 ----A---- C:\Windows\system32\riched20.dll
2008-09-19 21:51:29 ----A---- C:\Windows\system32\mcmde.dll
2008-09-19 21:51:29 ----A---- C:\Windows\system32\autofmt.exe
2008-09-19 21:51:29 ----A---- C:\Windows\system32\autoconv.exe
2008-09-19 21:51:29 ----A---- C:\Windows\system32\autochk.exe
2008-09-19 21:51:28 ----A---- C:\Windows\system32\WinSAT.exe
2008-09-19 21:51:28 ----A---- C:\Windows\system32\vdsutil.dll
2008-09-19 21:51:28 ----A---- C:\Windows\system32\imapi2fs.dll
2008-09-19 21:51:28 ----A---- C:\Windows\system32\d3d10_1.dll
2008-09-19 21:51:28 ----A---- C:\Windows\system32\authfwcfg.dll
2008-09-19 21:51:27 ----A---- C:\Windows\system32\authui.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\WSDMon.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\wevtapi.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\mscories.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\dmvdsitf.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\d3d10_1core.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\comuid.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\comdlg32.dll
2008-09-19 21:51:26 ----A---- C:\Windows\system32\browseui.dll
2008-09-19 21:51:25 ----A---- C:\Windows\system32\wevtfwd.dll
2008-09-19 21:51:25 ----A---- C:\Windows\system32\uexfat.dll
2008-09-19 21:51:25 ----A---- C:\Windows\system32\rasmans.dll
2008-09-19 21:51:25 ----A---- C:\Windows\system32\eapphost.dll
2008-09-19 21:51:25 ----A---- C:\Windows\system32\eappcfg.dll
2008-09-19 21:51:24 ----A---- C:\Windows\system32\whealogr.dll
2008-09-19 21:51:24 ----A---- C:\Windows\system32\untfs.dll
2008-09-19 21:51:24 ----A---- C:\Windows\system32\sqlcese30.dll
2008-09-19 21:51:24 ----A---- C:\Windows\system32\pcaui.dll
2008-09-19 21:51:24 ----A---- C:\Windows\system32\iassam.dll
2008-09-19 21:51:24 ----A---- C:\Windows\system32\DfrgNtfs.exe
2008-09-19 21:51:23 ----A---- C:\Windows\system32\wlansvc.dll
2008-09-19 21:51:22 ----A---- C:\Windows\system32\dot3svc.dll
2008-09-19 21:51:20 ----A---- C:\Windows\system32\rdpwsx.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\zipfldr.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\WsmAuto.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\winhttp.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\nlasvc.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\mssha.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\msdrm.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\evr.dll
2008-09-19 21:51:19 ----A---- C:\Windows\system32\dfrgui.exe
2008-09-19 21:51:18 ----A---- C:\Windows\system32\rpcss.dll
2008-09-19 21:51:18 ----A---- C:\Windows\system32\rasppp.dll
2008-09-19 21:51:18 ----A---- C:\Windows\system32\ncrypt.dll
2008-09-19 21:51:18 ----A---- C:\Windows\system32\BFE.DLL
2008-09-19 21:51:18 ----A---- C:\Windows\system32\audiosrv.dll
2008-09-19 21:51:17 ----A---- C:\Windows\system32\WsmWmiPl.dll
2008-09-19 21:51:17 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-09-19 21:51:17 ----A---- C:\Windows\system32\wmdrmdev.dll
2008-09-19 21:51:17 ----A---- C:\Windows\system32\printui.dll
2008-09-19 21:51:17 ----A---- C:\Windows\system32\msrepl40.dll
2008-09-19 21:51:17 ----A---- C:\Windows\system32\ddraw.dll
2008-09-19 21:51:16 ----A---- C:\Windows\system32\win32spl.dll
2008-09-19 21:51:16 ----A---- C:\Windows\system32\WebClnt.dll
2008-09-19 21:51:16 ----A---- C:\Windows\system32\themecpl.dll
2008-09-19 21:51:16 ----A---- C:\Windows\system32\rastls.dll
2008-09-19 21:51:16 ----A---- C:\Windows\system32\objsel.dll
2008-09-19 21:51:16 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2008-09-19 21:51:15 ----A---- C:\Windows\system32\w32time.dll
2008-09-19 21:51:15 ----A---- C:\Windows\system32\sqlsrv32.dll
2008-09-19 21:51:15 ----A---- C:\Windows\system32\QAGENT.DLL
2008-09-19 21:51:15 ----A---- C:\Windows\system32\iasnap.dll
2008-09-19 21:51:15 ----A---- C:\Windows\system32\dbghelp.dll
2008-09-19 21:51:14 ----A---- C:\Windows\system32\wmdrmnet.dll
2008-09-19 21:51:14 ----A---- C:\Windows\system32\WerFaultSecure.exe
2008-09-19 21:51:14 ----A---- C:\Windows\system32\PresentationHost.exe
2008-09-19 21:51:14 ----A---- C:\Windows\system32\ncryptui.dll
2008-09-19 21:51:14 ----A---- C:\Windows\system32\iprtrmgr.dll
2008-09-19 21:51:14 ----A---- C:\Windows\system32\icm32.dll
2008-09-19 21:51:14 ----A---- C:\Windows\system32\azroles.dll
2008-09-19 21:51:13 ----A---- C:\Windows\system32\spoolss.dll
2008-09-19 21:51:13 ----A---- C:\Windows\system32\msctf.dll
2008-09-19 21:51:13 ----A---- C:\Windows\system32\infocardapi.dll
2008-09-19 21:51:12 ----A---- C:\Windows\system32\wlangpui.dll
2008-09-19 21:51:12 ----A---- C:\Windows\system32\winsrv.dll
2008-09-19 21:51:12 ----A---- C:\Windows\system32\taskschd.dll
2008-09-19 21:51:12 ----A---- C:\Windows\system32\mstlsapi.dll
2008-09-19 21:51:12 ----A---- C:\Windows\system32\bcdedit.exe
2008-09-19 21:51:12 ----A---- C:\Windows\system32\basecsp.dll
2008-09-19 21:51:11 ----A---- C:\Windows\system32\winsta.dll
2008-09-19 21:51:11 ----A---- C:\Windows\system32\scksp.dll
2008-09-19 21:51:11 ----A---- C:\Windows\system32\netprofm.dll
2008-09-19 21:51:11 ----A---- C:\Windows\system32\hcrstco.dll
2008-09-19 21:51:11 ----A---- C:\Windows\system32\dbgeng.dll
2008-09-19 21:51:11 ----A---- C:\Windows\system32\AudioEng.dll
2008-09-19 21:51:10 ----A---- C:\Windows\system32\taskcomp.dll
2008-09-19 21:51:10 ----A---- C:\Windows\system32\rsaenh.dll
2008-09-19 21:51:10 ----A---- C:\Windows\system32\netcfgx.dll
2008-09-19 21:51:09 ----A---- C:\Windows\system32\winlogon.exe
2008-09-19 21:51:09 ----A---- C:\Windows\system32\wercon.exe
2008-09-19 21:51:09 ----A---- C:\Windows\system32\sqmapi.dll
2008-09-19 21:51:09 ----A---- C:\Windows\system32\lpksetup.exe
2008-09-19 21:51:09 ----A---- C:\Windows\system32\dfshim.dll
2008-09-19 21:51:09 ----A---- C:\Windows\system32\cdosys.dll
2008-09-19 21:51:08 ----A---- C:\Windows\system32\wlansec.dll
2008-09-19 21:51:08 ----A---- C:\Windows\system32\msdtcuiu.dll
2008-09-19 21:51:08 ----A---- C:\Windows\system32\mprddm.dll
2008-09-19 21:51:08 ----A---- C:\Windows\system32\certcli.dll
2008-09-19 21:51:08 ----A---- C:\Windows\system32\apds.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\tsgqec.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\shdocvw.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\iasrad.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\eapsvc.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\bcdsrv.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\AUDIOKSE.dll
2008-09-19 21:51:07 ----A---- C:\Windows\system32\aaclient.dll
2008-09-19 21:51:06 ----A---- C:\Windows\system32\Wldap32.dll
2008-09-19 21:51:06 ----A---- C:\Windows\system32\uDWM.dll
2008-09-19 21:51:06 ----A---- C:\Windows\system32\certmgr.dll
2008-09-19 21:51:05 ----A---- C:\Windows\system32\WMVDECOD.DLL
2008-09-19 21:51:05 ----A---- C:\Windows\system32\umpnpmgr.dll
2008-09-19 21:51:05 ----A---- C:\Windows\system32\msidcrl30.dll
2008-09-19 21:51:05 ----A---- C:\Windows\system32\dnsapi.dll
2008-09-19 21:51:04 ----A---- C:\Windows\system32\pla.dll
2008-09-19 21:51:04 ----A---- C:\Windows\system32\dxgi.dll
2008-09-19 21:51:03 ----A---- C:\Windows\system32\wmicmiplugin.dll
2008-09-19 21:51:03 ----A---- C:\Windows\system32\netshell.dll
2008-09-19 21:51:03 ----A---- C:\Windows\system32\dot3gpui.dll
2008-09-19 21:51:02 ----A---- C:\Windows\system32\shsvcs.dll
2008-09-19 21:51:02 ----A---- C:\Windows\system32\ntprint.dll
2008-09-19 21:51:02 ----A---- C:\Windows\system32\MMDevAPI.dll
2008-09-19 21:51:02 ----A---- C:\Windows\system32\cryptnet.dll
2008-09-19 21:51:02 ----A---- C:\Windows\system32\comsnap.dll
2008-09-19 21:51:01 ----A---- C:\Windows\system32\wscsvc.dll
2008-09-19 21:51:01 ----A---- C:\Windows\system32\winmm.dll
2008-09-19 21:51:01 ----A---- C:\Windows\system32\synceng.dll
2008-09-19 21:51:01 ----A---- C:\Windows\system32\services.exe
2008-09-19 21:51:01 ----A---- C:\Windows\system32\pnidui.dll
2008-09-19 21:51:01 ----A---- C:\Windows\system32\cmifw.dll
2008-09-19 21:51:00 ----A---- C:\Windows\system32\wscisvif.dll
2008-09-19 21:51:00 ----A---- C:\Windows\system32\msconfig.exe
2008-09-19 21:50:59 ----A---- C:\Windows\system32\WMVSDECD.DLL
2008-09-19 21:50:59 ----A---- C:\Windows\system32\taskeng.exe
2008-09-19 21:50:59 ----A---- C:\Windows\system32\msjtes40.dll
2008-09-19 21:50:59 ----A---- C:\Windows\system32\iassdo.dll
2008-09-19 21:50:59 ----A---- C:\Windows\system32\cipher.exe
2008-09-19 21:50:58 ----A---- C:\Windows\system32\wersvc.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\uxtheme.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\tdh.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\SessEnv.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\rasapi32.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\imapi2.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\dot3api.dll
2008-09-19 21:50:58 ----A---- C:\Windows\system32\dmdskmgr.dll
2008-09-19 21:50:57 ----A---- C:\Windows\system32\wkssvc.dll
2008-09-19 21:50:57 ----A---- C:\Windows\system32\wevtutil.exe
2008-09-19 21:50:57 ----A---- C:\Windows\system32\srvsvc.dll
2008-09-19 21:50:57 ----A---- C:\Windows\system32\qdvd.dll
2008-09-19 21:50:57 ----A---- C:\Windows\system32\msscp.dll
2008-09-19 21:50:57 ----A---- C:\Windows\system32\cmd.exe
2008-09-19 21:50:57 ----A---- C:\Windows\system32\cbsra.exe
2008-09-19 21:50:57 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\WUDFx.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\wlanmsm.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\wlancfg.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\mshtmled.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\loadperf.dll
2008-09-19 21:50:56 ----A---- C:\Windows\system32\diskpart.exe
2008-09-19 21:50:56 ----A---- C:\Windows\system32\comres.dll
2008-09-19 21:50:55 ----A---- C:\Windows\system32\wlanapi.dll
2008-09-19 21:50:55 ----A---- C:\Windows\system32\rpchttp.dll
2008-09-19 21:50:55 ----A---- C:\Windows\system32\rdpdd.dll
2008-09-19 21:50:55 ----A---- C:\Windows\system32\localsec.dll
2008-09-19 21:50:55 ----A---- C:\Windows\system32\hnetcfg.dll
2008-09-19 21:50:55 ----A---- C:\Windows\system32\fontext.dll
2008-09-19 21:50:54 ----A---- C:\Windows\system32\wsqmcons.exe
2008-09-19 21:50:54 ----A---- C:\Windows\system32\WMADMOD.DLL
2008-09-19 21:50:54 ----A---- C:\Windows\system32\wlanpref.dll
2008-09-19 21:50:54 ----A---- C:\Windows\system32\WinSATAPI.dll
2008-09-19 21:50:54 ----A---- C:\Windows\system32\profprov.dll
2008-09-19 21:50:54 ----A---- C:\Windows\system32\NAPMONTR.DLL
2008-09-19 21:50:54 ----A---- C:\Windows\system32\dsound.dll
2008-09-19 21:50:54 ----A---- C:\Windows\system32\avifil32.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\wsecedit.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\tracerpt.exe
2008-09-19 21:50:53 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\SLCommDlg.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\RDPENCDD.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\MuiUnattend.exe
2008-09-19 21:50:53 ----A---- C:\Windows\system32\filemgmt.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\dnsrslvr.dll
2008-09-19 21:50:53 ----A---- C:\Windows\system32\dhcpcsvc.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2008-09-19 21:50:52 ----A---- C:\Windows\system32\wininit.exe
2008-09-19 21:50:52 ----A---- C:\Windows\system32\spp.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\rasdlg.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\QSHVHOST.DLL
2008-09-19 21:50:52 ----A---- C:\Windows\system32\P2PGraph.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\iassvcs.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\gpresult.exe
2008-09-19 21:50:52 ----A---- C:\Windows\system32\dwmredir.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\dwm.exe
2008-09-19 21:50:52 ----A---- C:\Windows\system32\azroleui.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2008-09-19 21:50:52 ----A---- C:\Windows\system32\apphelp.dll
2008-09-19 21:50:51 ----A---- C:\Windows\system32\spwizeng.dll
2008-09-19 21:50:51 ----A---- C:\Windows\system32\SLUI.exe
2008-09-19 21:50:51 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2008-09-19 21:50:51 ----A---- C:\Windows\system32\mscorier.dll
2008-09-19 21:50:51 ----A---- C:\Windows\system32\mcbuilder.exe
2008-09-19 21:50:51 ----A---- C:\Windows\system32\iashost.exe
2008-09-19 21:50:51 ----A---- C:\Windows\HelpPane.exe
2008-09-19 21:50:50 ----A---- C:\Windows\system32\wecapi.dll
2008-09-19 21:50:50 ----A---- C:\Windows\system32\unbcl.dll
2008-09-19 21:50:50 ----A---- C:\Windows\system32\tcpmon.dll
2008-09-19 21:50:50 ----A---- C:\Windows\system32\srrstr.dll
2008-09-19 21:50:50 ----A---- C:\Windows\system32\shrink.dll
2008-09-19 21:50:50 ----A---- C:\Windows\system32\rasmontr.dll
2008-09-19 21:50:50 ----A---- C:\Windows\system32\msra.exe
2008-09-19 21:50:50 ----A---- C:\Windows\system32\lltdsvc.dll
2008-09-19 21:50:49 ----A---- C:\Windows\system32\WMPEncEn.dll
2008-09-19 21:50:49 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2008-09-19 21:50:49 ----A---- C:\Windows\system32\iashlpr.dll
2008-09-19 21:50:49 ----A---- C:\Windows\system32\gpedit.dll
2008-09-19 21:50:49 ----A---- C:\Windows\system32\brcpl.dll
2008-09-19 21:50:48 ----A---- C:\Windows\system32\raschap.dll
2008-09-19 21:50:48 ----A---- C:\Windows\system32\oleacc.dll
2008-09-19 21:50:48 ----A---- C:\Windows\system32\msdri.dll
2008-09-19 21:50:48 ----A---- C:\Windows\system32\iertutil.dll
2008-09-19 21:50:47 ----A---- C:\Windows\system32\framedynos.dll
2008-09-19 21:50:43 ----A---- C:\Windows\system32\regsvc.dll
2008-09-19 21:50:43 ----A---- C:\Windows\system32\ntvdm.exe
2008-09-19 21:50:43 ----A---- C:\Windows\system32\fdWSD.dll
2008-09-19 21:50:43 ----A---- C:\Windows\system32\Faultrep.dll
2008-09-19 21:50:43 ----A---- C:\Windows\system32\advpack.dll
2008-09-19 21:50:42 ----A---- C:\Windows\system32\wpdshext.dll
2008-09-19 21:50:42 ----A---- C:\Windows\system32\wdc.dll
2008-09-19 21:50:42 ----A---- C:\Windows\system32\vsstrace.dll
2008-09-19 21:50:42 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2008-09-19 21:50:42 ----A---- C:\Windows\system32\ntlanman.dll
2008-09-19 21:50:42 ----A---- C:\Windows\system32\ipsmsnap.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\Storprop.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\NetProjW.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\netman.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\l2nacp.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\iedkcs32.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\ieapfltr.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\framedyn.dll
2008-09-19 21:50:41 ----A---- C:\Windows\system32\dssenh.dll
2008-09-19 21:50:40 ----A---- C:\Windows\system32\WlanMM.dll
2008-09-19 21:50:40 ----A---- C:\Windows\system32\tcpipcfg.dll
2008-09-19 21:50:40 ----A---- C:\Windows\system32\certreq.exe
2008-09-19 21:50:40 ----A---- C:\Windows\system32\adsnt.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\WsmProv.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\wlanhlp.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\WLanConn.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\sxs.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\profsvc.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2008-09-19 21:50:39 ----A---- C:\Windows\system32\KMSVC.DLL
2008-09-19 21:50:39 ----A---- C:\Windows\system32\IPBusEnum.dll
2008-09-19 21:50:38 ----A---- C:\Windows\system32\wusa.exe
2008-09-19 21:50:38 ----A---- C:\Windows\system32\WUDFHost.exe
2008-09-19 21:50:38 ----A---- C:\Windows\system32\WerFault.exe
2008-09-19 21:50:38 ----A---- C:\Windows\system32\VAN.dll
2008-09-19 21:50:38 ----A---- C:\Windows\system32\userenv.dll
2008-09-19 21:50:38 ----A---- C:\Windows\system32\umb.dll
2008-09-19 21:50:38 ----A---- C:\Windows\system32\ncsi.dll
2008-09-19 21:50:38 ----A---- C:\Windows\system32\ie4uinit.exe
2008-09-19 21:50:38 ----A---- C:\Windows\system32\fundisc.dll
2008-09-19 21:50:38 ----A---- C:\Windows\system32\catsrvut.dll
2008-09-19 21:50:37 ----A---- C:\Windows\system32\puiobj.dll
2008-09-19 21:50:37 ----A---- C:\Windows\system32\photowiz.dll
2008-09-19 21:50:37 ----A---- C:\Windows\system32\netid.dll
2008-09-19 21:50:37 ----A---- C:\Windows\system32\dps.dll
2008-09-19 21:50:37 ----A---- C:\Windows\system32\cryptui.dll
2008-09-19 21:50:36 ----A---- C:\Windows\system32\netcenter.dll
2008-09-19 21:50:36 ----A---- C:\Windows\system32\MdSched.exe
2008-09-19 21:50:36 ----A---- C:\Windows\system32\InkEd.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\ws2_32.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\WinSCard.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\winrs.exe
2008-09-19 21:50:35 ----A---- C:\Windows\system32\tcpmon.ini
2008-09-19 21:50:35 ----A---- C:\Windows\system32\spbcd.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\secur32.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\odbcjt32.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\ntdsapi.dll
2008-09-19 21:50:35 ----A---- C:\Windows\system32\msinfo32.exe
2008-09-19 21:50:35 ----A---- C:\Windows\system32\ipsecsnp.dll
2008-09-19 21:50:34 ----A---- C:\Windows\system32\prnntfy.dll
2008-09-19 21:50:34 ----A---- C:\Windows\system32\NAPSTAT.EXE
2008-09-19 21:50:33 ----A---- C:\Windows\system32\schtasks.exe
2008-09-19 21:50:33 ----A---- C:\Windows\system32\RelMon.dll
2008-09-19 21:50:33 ----A---- C:\Windows\system32\msfeeds.dll
2008-09-19 21:50:33 ----A---- C:\Windows\system32\mblctr.exe
2008-09-19 21:50:33 ----A---- C:\Windows\system32\iasacct.dll
2008-09-19 21:50:33 ----A---- C:\Windows\system32\cryptsvc.dll
2008-09-19 21:50:32 ----A---- C:\Windows\system32\pdh.dll
2008-09-19 21:50:32 ----A---- C:\Windows\system32\netdiagfx.dll
2008-09-19 21:50:32 ----A---- C:\Windows\system32\dmdlgs.dll
2008-09-19 21:50:32 ----A---- C:\Windows\system32\dhcpsapi.dll
2008-09-19 21:50:32 ----A---- C:\Windows\system32\catsrv.dll
2008-09-19 21:50:32 ----A---- C:\Windows\system32\activeds.dll
2008-09-19 21:50:31 ----A---- C:\Windows\system32\wvc.dll
2008-09-19 21:50:31 ----A---- C:\Windows\system32\winrm.vbs
2008-09-19 21:50:31 ----A---- C:\Windows\system32\TSpkg.dll
2008-09-19 21:50:31 ----A---- C:\Windows\system32\qwave.dll
2008-09-19 21:50:31 ----A---- C:\Windows\system32\FirewallControlPanel.exe
2008-09-19 21:50:31 ----A---- C:\Windows\system32\fdWCN.dll
2008-09-19 21:50:31 ----A---- C:\Windows\system32\dot3msm.dll
2008-09-19 21:50:31 ----A---- C:\Windows\system32\dfrgfat.exe
2008-09-19 21:50:31 ----A---- C:\Windows\system32\AudioSes.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\wow32.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\rastapi.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\netcorehc.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\NAPHLPR.DLL
2008-09-19 21:50:30 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2008-09-19 21:50:30 ----A---- C:\Windows\system32\msacm32.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\ifmon.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\dot3cfg.dll
2008-09-19 21:50:30 ----A---- C:\Windows\system32\adsldp.dll
2008-09-19 21:50:29 ----A---- C:\Windows\system32\shsetup.dll
2008-09-19 21:50:29 ----A---- C:\Windows\system32\els.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\wscntfy.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\stobject.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\QUTIL.DLL
2008-09-19 21:50:28 ----A---- C:\Windows\system32\ntshrui.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\msdt.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\iasrecst.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\iasdatastore.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\fdSSDP.dll
2008-09-19 21:50:28 ----A---- C:\Windows\system32\clbcatq.dll
2008-09-19 21:50:27 ----A---- C:\Windows\system32\wlanui.dll
2008-09-19 21:50:27 ----A---- C:\Windows\system32\sdrsvc.dll
2008-09-19 21:50:27 ----A---- C:\Windows\system32\net1.exe
2008-09-19 21:50:27 ----A---- C:\Windows\system32\ipnathlp.dll
2008-09-19 21:50:27 ----A---- C:\Windows\system32\dsprop.dll
2008-09-19 21:50:26 ----A---- C:\Windows\system32\wlgpclnt.dll
2008-09-19 21:50:26 ----A---- C:\Windows\system32\upnphost.dll
2008-09-19 21:50:26 ----A---- C:\Windows\system32\systemcpl.dll
2008-09-19 21:50:26 ----A---- C:\Windows\system32\smss.exe
2008-09-19 21:50:26 ----A---- C:\Windows\system32\nci.dll
leebonfiglio
Regular Member
 
Posts: 32
Joined: October 2nd, 2008, 11:05 am

Re: trojan downloader zlob

Unread postby leebonfiglio » October 4th, 2008, 9:54 am

2008-09-19 21:50:26 ----A---- C:\Windows\system32\mprmsg.dll
2008-09-19 21:50:26 ----A---- C:\Windows\system32\Defrag.exe
2008-09-19 21:50:26 ----A---- C:\Windows\system32\adsldpc.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\rasman.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\rascfg.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\PresentationSettings.exe
2008-09-19 21:50:25 ----A---- C:\Windows\system32\P2P.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\oleprn.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\msftedit.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2008-09-19 21:50:25 ----A---- C:\Windows\system32\loghours.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\fde.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\CompatUI.dll
2008-09-19 21:50:25 ----A---- C:\Windows\system32\ActiveContentWizard.dll
2008-09-19 21:50:24 ----A---- C:\Windows\system32\Wpc.dll
2008-09-19 21:50:24 ----A---- C:\Windows\system32\t2embed.dll
2008-09-19 21:50:24 ----A---- C:\Windows\system32\MigAutoPlay.exe
2008-09-19 21:50:24 ----A---- C:\Windows\system32\L2SecHC.dll
2008-09-19 21:50:24 ----A---- C:\Windows\system32\dxdiag.exe
2008-09-19 21:50:24 ----A---- C:\Windows\system32\DFDWiz.exe
2008-09-19 21:50:23 ----A---- C:\Windows\system32\wdigest.dll
2008-09-19 21:50:23 ----A---- C:\Windows\system32\setupcl.exe
2008-09-19 21:50:23 ----A---- C:\Windows\system32\rtm.dll
2008-09-19 21:50:23 ----A---- C:\Windows\system32\msutb.dll
2008-09-19 21:50:23 ----A---- C:\Windows\system32\mprdim.dll
2008-09-19 21:50:23 ----A---- C:\Windows\system32\gpapi.dll
2008-09-19 21:50:23 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2008-09-19 21:50:22 ----A---- C:\Windows\system32\wiaservc.dll
2008-09-19 21:50:22 ----A---- C:\Windows\system32\scansetting.dll
2008-09-19 21:50:22 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2008-09-19 21:50:22 ----A---- C:\Windows\system32\msihnd.dll
2008-09-19 21:50:22 ----A---- C:\Windows\system32\devmgr.dll
2008-09-19 21:50:22 ----A---- C:\Windows\system32\CertEnrollUI.dll
2008-09-19 21:50:21 ----A---- C:\Windows\system32\wdi.dll
2008-09-19 21:50:21 ----A---- C:\Windows\system32\kdusb.dll
2008-09-19 21:50:21 ----A---- C:\Windows\system32\ifsutil.dll
2008-09-19 21:50:21 ----A---- C:\Windows\system32\dimsroam.dll
2008-09-19 21:50:21 ----A---- C:\Windows\system32\actxprxy.dll
2008-09-19 21:50:20 ----A---- C:\Windows\system32\wscapi.dll
2008-09-19 21:50:20 ----A---- C:\Windows\system32\WinFXDocObj.exe
2008-09-19 21:50:20 ----A---- C:\Windows\system32\usbmon.dll
2008-09-19 21:50:20 ----A---- C:\Windows\system32\SyncCenter.dll
2008-09-19 21:50:20 ----A---- C:\Windows\system32\spoolsv.exe
2008-09-19 21:50:20 ----A---- C:\Windows\system32\mswmdm.dll
2008-09-19 21:50:20 ----A---- C:\Windows\system32\imagehlp.dll
2008-09-19 21:50:20 ----A---- C:\Windows\system32\BOOTVID.DLL
2008-09-19 21:50:20 ----A---- C:\Windows\system32\audiodg.exe
2008-09-19 21:50:19 ----A---- C:\Windows\system32\wlandlg.dll
2008-09-19 21:50:19 ----A---- C:\Windows\system32\vssadmin.exe
2008-09-19 21:50:19 ----A---- C:\Windows\system32\uudf.dll
2008-09-19 21:50:19 ----A---- C:\Windows\system32\regapi.dll
2008-09-19 21:50:19 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2008-09-19 21:50:19 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2008-09-19 21:50:19 ----A---- C:\Windows\system32\mycomput.dll
2008-09-19 21:50:19 ----A---- C:\Windows\system32\msls31.dll
2008-09-19 21:50:18 ----A---- C:\Windows\system32\scecli.dll
2008-09-19 21:50:18 ----A---- C:\Windows\system32\SCardSvr.dll
2008-09-19 21:50:18 ----A---- C:\Windows\system32\newdev.dll
2008-09-19 21:50:18 ----A---- C:\Windows\system32\mspaint.exe
2008-09-19 21:50:18 ----A---- C:\Windows\system32\kdcom.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\termmgr.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\sud.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\ssdpsrv.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\samlib.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\puiapi.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\mtxoci.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\mstask.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\duser.dll
2008-09-19 21:50:17 ----A---- C:\Windows\system32\adtschema.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\wisptis.exe
2008-09-19 21:50:16 ----A---- C:\Windows\system32\tapisrv.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\SLUINotify.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\Robocopy.exe
2008-09-19 21:50:16 ----A---- C:\Windows\system32\input.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\inetpp.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\iasads.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\cic.dll
2008-09-19 21:50:16 ----A---- C:\Windows\system32\AzSqlExt.dll
2008-09-19 21:50:15 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2008-09-19 21:50:15 ----A---- C:\Windows\system32\netiohlp.dll
2008-09-19 21:50:15 ----A---- C:\Windows\system32\cscapi.dll
2008-09-19 21:50:15 ----A---- C:\Windows\system32\authz.dll
2008-09-19 21:50:14 ----A---- C:\Windows\system32\WUDFPlatform.dll
2008-09-19 21:50:14 ----A---- C:\Windows\system32\webcheck.dll
2008-09-19 21:50:14 ----A---- C:\Windows\system32\verifier.exe
2008-09-19 21:50:14 ----A---- C:\Windows\system32\sdshext.dll
2008-09-19 21:50:14 ----A---- C:\Windows\system32\msdtclog.dll
2008-09-19 21:50:14 ----A---- C:\Windows\system32\msdt.exe
2008-09-19 21:50:13 ----A---- C:\Windows\system32\wpcsvc.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\wintrust.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\themeui.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\slcinst.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\oledlg.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\dxtmsft.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\d3d8.dll
2008-09-19 21:50:13 ----A---- C:\Windows\system32\cmdial32.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\wpccpl.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\WMPhoto.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\vdsldr.exe
2008-09-19 21:50:12 ----A---- C:\Windows\system32\SndVol.exe
2008-09-19 21:50:12 ----A---- C:\Windows\system32\rasgcw.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\pnpsetup.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\ntmarta.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\mmcbase.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\icardie.dll
2008-09-19 21:50:12 ----A---- C:\Windows\system32\clfsw32.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\SnippingTool.exe
2008-09-19 21:50:11 ----A---- C:\Windows\system32\rasqec.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\ncobjapi.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\msrd3x40.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\msaatext.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\mpr.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\mlang.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\icfupgd.dll
2008-09-19 21:50:11 ----A---- C:\Windows\system32\diskraid.exe
2008-09-19 21:50:10 ----A---- C:\Windows\system32\wtsapi32.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\wpd_ci.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\unlodctr.exe
2008-09-19 21:50:10 ----A---- C:\Windows\system32\syssetup.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\slmgr.vbs
2008-09-19 21:50:10 ----A---- C:\Windows\system32\sethc.exe
2008-09-19 21:50:10 ----A---- C:\Windows\system32\pnpui.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\nslookup.exe
2008-09-19 21:50:10 ----A---- C:\Windows\system32\mscms.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\lodctr.exe
2008-09-19 21:50:10 ----A---- C:\Windows\system32\iaspolcy.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\extmgr.dll
2008-09-19 21:50:10 ----A---- C:\Windows\system32\accessibilitycpl.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\Utilman.exe
2008-09-19 21:50:09 ----A---- C:\Windows\system32\ulib.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\trkwks.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\oobefldr.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\Mcx2Svc.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\fontsub.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\dxdiagn.dll
2008-09-19 21:50:09 ----A---- C:\Windows\system32\cabinet.dll
2008-09-19 21:50:08 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2008-09-19 21:50:08 ----A---- C:\Windows\system32\unattend.dll
2008-09-19 21:50:08 ----A---- C:\Windows\system32\scesrv.dll
2008-09-19 21:50:08 ----A---- C:\Windows\system32\ogldrv.dll
2008-09-19 21:50:08 ----A---- C:\Windows\system32\occache.dll
2008-09-19 21:50:08 ----A---- C:\Windows\system32\lnkstub.exe
2008-09-19 21:50:07 ----A---- C:\Windows\system32\wermgr.exe
2008-09-19 21:50:07 ----A---- C:\Windows\system32\dfdts.dll
2008-09-19 21:50:07 ----A---- C:\Windows\system32\cabview.dll
2008-09-19 21:50:07 ----A---- C:\Windows\system32\bthci.dll
2008-09-19 21:50:06 ----A---- C:\Windows\system32\wpcao.dll
2008-09-19 21:50:06 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2008-09-19 21:50:06 ----A---- C:\Windows\system32\msnetobj.dll
2008-09-19 21:50:06 ----A---- C:\Windows\system32\iepeers.dll
2008-09-19 21:50:06 ----A---- C:\Windows\system32\eappgnui.dll
2008-09-19 21:50:05 ----A---- C:\Windows\system32\p2pcollab.dll
2008-09-19 21:50:05 ----A---- C:\Windows\system32\ieaksie.dll
2008-09-19 21:50:05 ----A---- C:\Windows\system32\basesrv.dll
2008-09-19 21:50:04 ----A---- C:\Windows\system32\drvinst.exe
2008-09-19 21:50:04 ----A---- C:\Windows\system32\dispdiag.exe
2008-09-19 21:50:04 ----A---- C:\Windows\system32\DHCPQEC.DLL
2008-09-19 21:50:03 ----A---- C:\Windows\system32\dsquery.dll
2008-09-19 21:50:02 ----A---- C:\Windows\system32\verifier.dll
2008-09-19 21:50:02 ----A---- C:\Windows\system32\mmcss.dll
2008-09-19 21:50:01 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2008-09-19 21:50:01 ----A---- C:\Windows\system32\secproc_ssp.dll
2008-09-19 21:50:01 ----A---- C:\Windows\system32\RstrtMgr.dll
2008-09-19 21:50:01 ----A---- C:\Windows\system32\mprapi.dll
2008-09-19 21:50:01 ----A---- C:\Windows\system32\efsadu.dll
2008-09-19 21:50:00 ----A---- C:\Windows\system32\WPDSp.dll
2008-09-19 21:50:00 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2008-09-19 21:50:00 ----A---- C:\Windows\system32\WMVENCOD.DLL
2008-09-19 21:50:00 ----A---- C:\Windows\system32\wercplsupport.dll
2008-09-19 21:50:00 ----A---- C:\Windows\system32\setupugc.exe
2008-09-19 21:50:00 ----A---- C:\Windows\system32\qedit.dll
2008-09-19 21:50:00 ----A---- C:\Windows\system32\msoeacct.dll
2008-09-19 21:50:00 ----A---- C:\Windows\system32\icacls.exe
2008-09-19 21:50:00 ----A---- C:\Windows\system32\d3d10core.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\wiascanprofiles.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\wiaaut.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\usercpl.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2008-09-19 21:49:59 ----A---- C:\Windows\system32\pnrpnsp.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\pngfilt.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\p2pnetsh.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\networkmap.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\msdmo.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\iscsiexe.dll
2008-09-19 21:49:59 ----A---- C:\Windows\system32\consent.exe
2008-09-19 21:49:58 ----A---- C:\Windows\system32\xactsrv.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\PNPXAssoc.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\pcadm.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\msrdc.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\lsass.exe
2008-09-19 21:49:58 ----A---- C:\Windows\system32\lpk.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\eappprxy.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\drmmgrtn.dll
2008-09-19 21:49:58 ----A---- C:\Windows\system32\conime.exe
2008-09-19 21:49:58 ----A---- C:\Windows\system32\autoplay.dll
2008-09-19 21:49:57 ----A---- C:\Windows\system32\systeminfo.exe
2008-09-19 21:49:57 ----A---- C:\Windows\system32\netcfg.exe
2008-09-19 21:49:57 ----A---- C:\Windows\system32\findstr.exe
2008-09-19 21:49:57 ----A---- C:\Windows\system32\dpapimig.exe
2008-09-19 21:49:56 ----A---- C:\Windows\system32\xwizards.dll
2008-09-19 21:49:56 ----A---- C:\Windows\system32\msrating.dll
2008-09-19 21:49:56 ----A---- C:\Windows\system32\mfplat.dll
2008-09-19 21:49:53 ----A---- C:\Windows\system32\resutils.dll
2008-09-19 21:49:53 ----A---- C:\Windows\system32\DWWIN.EXE
2008-09-19 21:49:53 ----A---- C:\Windows\system32\cmdl32.exe
2008-09-19 21:49:52 ----A---- C:\Windows\system32\powercpl.dll
2008-09-19 21:49:52 ----A---- C:\Windows\system32\odbc32.dll
2008-09-19 21:49:52 ----A---- C:\Windows\system32\netprof.dll
2008-09-19 21:49:52 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2008-09-19 21:49:52 ----A---- C:\Windows\system32\dssec.dll
2008-09-19 21:49:52 ----A---- C:\Windows\system32\dot3ui.dll
2008-09-19 21:49:52 ----A---- C:\Windows\system32\dfrgifc.exe
2008-09-19 21:49:52 ----A---- C:\Windows\system32\dbnetlib.dll
2008-09-19 21:49:52 ----A---- C:\Windows\system32\alg.exe
2008-09-19 21:49:52 ----A---- C:\Windows\regedit.exe
2008-09-19 21:49:51 ----A---- C:\Windows\system32\txflog.dll
2008-09-19 21:49:51 ----A---- C:\Windows\system32\taskkill.exe
2008-09-19 21:49:51 ----A---- C:\Windows\system32\nshhttp.dll
2008-09-19 21:49:51 ----A---- C:\Windows\system32\imm32.dll
2008-09-19 21:49:51 ----A---- C:\Windows\system32\iexpress.exe
2008-09-19 21:49:51 ----A---- C:\Windows\system32\feclient.dll
2008-09-19 21:49:51 ----A---- C:\Windows\system32\btpanui.dll
2008-09-19 21:49:51 ----A---- C:\Windows\system32\apircl.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\tbssvc.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\RASMM.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\provthrd.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\msieftp.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\dxva2.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\dwmapi.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\d3d10.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\bcdprov.dll
2008-09-19 21:49:50 ----A---- C:\Windows\system32\ActionQueue.dll
2008-09-19 21:49:49 ----A---- C:\Windows\system32\syncui.dll
2008-09-19 21:49:49 ----A---- C:\Windows\system32\svchost.exe
2008-09-19 21:49:49 ----A---- C:\Windows\system32\slwmi.dll
2008-09-19 21:49:49 ----A---- C:\Windows\system32\SLCExt.dll
2008-09-19 21:49:49 ----A---- C:\Windows\system32\slcc.dll
2008-09-19 21:49:49 ----A---- C:\Windows\system32\shwebsvc.dll
2008-09-19 21:49:49 ----A---- C:\Windows\system32\EAPQEC.DLL
2008-09-19 21:49:49 ----A---- C:\Windows\system32\dmocx.dll
2008-09-19 21:49:48 ----A---- C:\Windows\system32\WMASF.DLL
2008-09-19 21:49:48 ----A---- C:\Windows\system32\raserver.exe
2008-09-19 21:49:48 ----A---- C:\Windows\system32\PnPUnattend.exe
2008-09-19 21:49:48 ----A---- C:\Windows\system32\olepro32.dll
2008-09-19 21:49:48 ----A---- C:\Windows\system32\networkexplorer.dll
2008-09-19 21:49:48 ----A---- C:\Windows\system32\dnscacheugc.exe
2008-09-19 21:49:48 ----A---- C:\Windows\system32\connect.dll
2008-09-19 21:49:48 ----A---- C:\Windows\system32\aclui.dll
2008-09-19 21:49:47 ----A---- C:\Windows\system32\xcopy.exe
2008-09-19 21:49:47 ----A---- C:\Windows\system32\uxsms.dll
2008-09-19 21:49:47 ----A---- C:\Windows\system32\UIHub.dll
2008-09-19 21:49:47 ----A---- C:\Windows\system32\taskmgr.exe
2008-09-19 21:49:47 ----A---- C:\Windows\system32\QCLIPROV.DLL
2008-09-19 21:49:47 ----A---- C:\Windows\system32\ias.dll
2008-09-19 21:49:47 ----A---- C:\Windows\system32\brcplsdw.dll
2008-09-19 21:49:47 ----A---- C:\Windows\system32\audiodev.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\upnp.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\reg.exe
2008-09-19 21:49:46 ----A---- C:\Windows\system32\NapiNSP.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\msoert2.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\msjetoledb40.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\mountvol.exe
2008-09-19 21:49:46 ----A---- C:\Windows\system32\mmcshext.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\icsfiltr.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\cmstp.exe
2008-09-19 21:49:46 ----A---- C:\Windows\system32\browser.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\atl.dll
2008-09-19 21:49:46 ----A---- C:\Windows\system32\appinfo.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\WMVXENCD.DLL
2008-09-19 21:49:45 ----A---- C:\Windows\system32\wmpdxm.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\wlanext.exe
2008-09-19 21:49:45 ----A---- C:\Windows\system32\PING.EXE
2008-09-19 21:49:45 ----A---- C:\Windows\system32\perfts.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\netplwiz.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\inetmib1.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\dskquoui.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\cewmdm.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\certprop.dll
2008-09-19 21:49:45 ----A---- C:\Windows\system32\bitsadmin.exe
2008-09-19 21:49:45 ----A---- C:\Windows\system32\AuxiliaryDisplayApi.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\WpdMtpUS.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\SysFxUI.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\SoundRecorder.exe
2008-09-19 21:49:44 ----A---- C:\Windows\system32\rekeywiz.exe
2008-09-19 21:49:44 ----A---- C:\Windows\system32\qcap.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\qasf.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\ieakeng.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\httpapi.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\dsuiext.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\dmusic.dll
2008-09-19 21:49:44 ----A---- C:\Windows\system32\adsmsext.dll
2008-09-19 21:49:43 ----A---- C:\Windows\system32\WUDFSvc.dll
2008-09-19 21:49:43 ----A---- C:\Windows\system32\wmpsrcwp.dll
2008-09-19 21:49:43 ----A---- C:\Windows\system32\Sens.dll
2008-09-19 21:49:43 ----A---- C:\Windows\system32\SecEdit.exe
2008-09-19 21:49:43 ----A---- C:\Windows\system32\mtstocom.exe
2008-09-19 21:49:43 ----A---- C:\Windows\system32\mscandui.dll
2008-09-19 21:49:43 ----A---- C:\Windows\system32\makecab.exe
2008-09-19 21:49:43 ----A---- C:\Windows\system32\lsmproxy.dll
2008-09-19 21:49:43 ----A---- C:\Windows\system32\auditpol.exe
2008-09-19 21:49:42 ----A---- C:\Windows\system32\xwtpw32.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\WMVSENCD.DLL
2008-09-19 21:49:42 ----A---- C:\Windows\system32\sppnp.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\shimgvw.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\seclogon.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\sbeio.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\printcom.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\ndfapi.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\msdadiag.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\dot3gpclnt.dll
2008-09-19 21:49:42 ----A---- C:\Windows\system32\batt.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\wzcdlg.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\wscmisetup.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\wiashext.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\wiadefui.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\userinit.exe
2008-09-19 21:49:41 ----A---- C:\Windows\system32\shacct.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\p2phost.exe
2008-09-19 21:49:41 ----A---- C:\Windows\system32\msorcl32.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\dxtrans.dll
2008-09-19 21:49:41 ----A---- C:\Windows\system32\apss.dll
2008-09-19 21:49:40 ----A---- C:\Windows\system32\wpdwcn.dll
2008-09-19 21:49:40 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2008-09-19 21:49:40 ----A---- C:\Windows\system32\winrshost.exe
2008-09-19 21:49:40 ----A---- C:\Windows\system32\tasklist.exe
2008-09-19 21:49:40 ----A---- C:\Windows\system32\TapiMigPlugin.dll
2008-09-19 21:49:40 ----A---- C:\Windows\system32\sxstrace.exe
2008-09-19 21:49:40 ----A---- C:\Windows\system32\rrinstaller.exe
2008-09-19 21:49:40 ----A---- C:\Windows\system32\perfmon.exe
2008-09-19 21:49:40 ----A---- C:\Windows\system32\napipsec.dll
2008-09-19 21:49:40 ----A---- C:\Windows\system32\ktmutil.exe
2008-09-19 21:49:40 ----A---- C:\Windows\system32\keymgr.dll
2008-09-19 21:49:40 ----A---- C:\Windows\system32\HelpPaneProxy.dll
2008-09-19 21:49:40 ----A---- C:\Windows\system32\csrsrv.dll
2008-09-19 21:49:39 ----A---- C:\Windows\system32\UIAutomationCore.dll
2008-09-19 21:49:39 ----A---- C:\Windows\system32\prntvpt.dll
2008-09-19 21:49:39 ----A---- C:\Windows\system32\notepad.exe
2008-09-19 21:49:39 ----A---- C:\Windows\system32\MP4SDECD.DLL
2008-09-19 21:49:39 ----A---- C:\Windows\system32\ftp.exe
2008-09-19 21:49:39 ----A---- C:\Windows\system32\fmifs.dll
2008-09-19 21:49:39 ----A---- C:\Windows\system32\d3dim700.dll
2008-09-19 21:49:39 ----A---- C:\Windows\system32\colorui.dll
2008-09-19 21:49:39 ----A---- C:\Windows\notepad.exe
2008-09-19 21:49:38 ----A---- C:\Windows\system32\wscproxystub.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\winethc.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\txfw32.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\takeown.exe
2008-09-19 21:49:38 ----A---- C:\Windows\system32\PnPutil.exe
2008-09-19 21:49:38 ----A---- C:\Windows\system32\pcasvc.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\nshipsec.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\netiougc.exe
2008-09-19 21:49:38 ----A---- C:\Windows\system32\msimtf.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\msiexec.exe
2008-09-19 21:49:38 ----A---- C:\Windows\system32\mfps.dll
2008-09-19 21:49:38 ----A---- C:\Windows\system32\driverquery.exe
2008-09-19 21:49:38 ----A---- C:\Windows\system32\cryptdll.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\wpdbusenum.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\wmiprop.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\rasplap.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\powrprof.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\pots.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\mfpmp.exe
2008-09-19 21:49:37 ----A---- C:\Windows\system32\logagent.exe
2008-09-19 21:49:37 ----A---- C:\Windows\system32\inseng.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\findnetprinters.dll
2008-09-19 21:49:37 ----A---- C:\Windows\system32\capisp.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\shrpubw.exe
2008-09-19 21:49:36 ----A---- C:\Windows\system32\sfc_os.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\sendmail.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2008-09-19 21:49:36 ----A---- C:\Windows\system32\perfnet.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\olecli32.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\nsisvc.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\luainstall.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\imapi.dll
2008-09-19 21:49:36 ----A---- C:\Windows\system32\fsutil.exe
2008-09-19 21:49:36 ----A---- C:\Windows\system32\dnshc.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\WLanHC.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\wiaacmgr.exe
2008-09-19 21:49:35 ----A---- C:\Windows\system32\wextract.exe
2008-09-19 21:49:35 ----A---- C:\Windows\system32\TMM.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\shgina.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\runonce.exe
2008-09-19 21:49:35 ----A---- C:\Windows\system32\rshx32.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\RpcPing.exe
2008-09-19 21:49:35 ----A---- C:\Windows\system32\ktmw32.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\fdPHost.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\d3dim.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\compstui.dll
2008-09-19 21:49:35 ----A---- C:\Windows\system32\cmmon32.exe
2008-09-19 21:49:34 ----A---- C:\Windows\system32\WMADMOE.DLL
2008-09-19 21:49:34 ----A---- C:\Windows\system32\version.dll
2008-09-19 21:49:34 ----A---- C:\Windows\system32\unregmp2.exe
2008-09-19 21:49:34 ----A---- C:\Windows\system32\UI0Detect.exe
2008-09-19 21:49:34 ----A---- C:\Windows\system32\net.exe
2008-09-19 21:49:34 ----A---- C:\Windows\system32\msvfw32.dll
2008-09-19 21:49:34 ----A---- C:\Windows\system32\mdminst.dll
2008-09-19 21:49:34 ----A---- C:\Windows\system32\getmac.exe
2008-09-19 21:49:34 ----A---- C:\Windows\system32\dsauth.dll
2008-09-19 21:49:34 ----A---- C:\Windows\system32\dimsjob.dll
2008-09-19 21:49:34 ----A---- C:\Windows\system32\cmlua.dll
2008-09-19 21:49:33 ----A---- C:\Windows\system32\wmpshell.dll
2008-09-19 21:49:33 ----A---- C:\Windows\system32\w32tm.exe
2008-09-19 21:49:33 ----A---- C:\Windows\system32\tscupgrd.exe
2008-09-19 21:49:33 ----A---- C:\Windows\system32\MPG4DECD.DLL
2008-09-19 21:49:33 ----A---- C:\Windows\system32\MP43DECD.DLL
2008-09-19 21:49:33 ----A---- C:\Windows\system32\ipconfig.exe
2008-09-19 21:49:33 ----A---- C:\Windows\system32\imgutil.dll
2008-09-19 21:49:33 ----A---- C:\Windows\system32\credui.dll
2008-09-19 21:49:33 ----A---- C:\Windows\system32\ACW.exe
2008-09-19 21:49:32 ----A---- C:\Windows\system32\sfc.exe
2008-09-19 21:49:32 ----A---- C:\Windows\system32\sdchange.exe
2008-09-19 21:49:32 ----A---- C:\Windows\system32\PortableDeviceWiaCompat.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\pnpts.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\migisol.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\fdeploy.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\dispci.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\dinput8.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\diantz.exe
2008-09-19 21:49:32 ----A---- C:\Windows\system32\comrepl.dll
2008-09-19 21:49:32 ----A---- C:\Windows\system32\cmutil.dll
2008-09-19 21:49:31 ----A---- C:\Windows\system32\TSTheme.exe
2008-09-19 21:49:31 ----A---- C:\Windows\system32\remotepg.dll
2008-09-19 21:49:31 ----A---- C:\Windows\system32\nlaapi.dll
2008-09-19 21:49:31 ----A---- C:\Windows\system32\ExplorerFrame.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2008-09-19 21:49:30 ----A---- C:\Windows\system32\wmidx.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\vdmredir.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\utildll.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\TpmInit.exe
2008-09-19 21:49:30 ----A---- C:\Windows\system32\softkbd.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\pdhui.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\modemui.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\McxDriv.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\iernonce.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\hlink.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\fwcfg.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\expand.exe
2008-09-19 21:49:30 ----A---- C:\Windows\system32\EncDump.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\colbact.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\cfgbkend.dll
2008-09-19 21:49:30 ----A---- C:\Windows\system32\bridgeunattend.exe
2008-09-19 21:49:30 ----A---- C:\Windows\system32\amstream.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\wsnmp32.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\wmvdspa.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\waitfor.exe
2008-09-19 21:49:29 ----A---- C:\Windows\system32\vds_ps.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\sti_ci.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\rdrleakdiag.exe
2008-09-19 21:49:29 ----A---- C:\Windows\system32\msfeedsbs.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\esentutl.exe
2008-09-19 21:49:29 ----A---- C:\Windows\system32\cmcfg32.dll
2008-09-19 21:49:29 ----A---- C:\Windows\system32\bootcfg.exe
2008-09-19 21:49:29 ----A---- C:\Windows\system32\admparse.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\WsmCl.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\wfapigp.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\tabcal.exe
2008-09-19 21:49:28 ----A---- C:\Windows\system32\shutdown.exe
2008-09-19 21:49:28 ----A---- C:\Windows\system32\qdv.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\osblprov.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\odbccp32.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\logman.exe
2008-09-19 21:49:28 ----A---- C:\Windows\system32\iscsium.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\dpnet.dll
2008-09-19 21:49:28 ----A---- C:\Windows\system32\cacls.exe
2008-09-19 21:49:27 ----A---- C:\Windows\system32\msdtc.exe
2008-09-19 21:49:27 ----A---- C:\Windows\system32\DpiScaling.exe
2008-09-19 21:49:26 ----A---- C:\Windows\system32\wpnpinst.exe
2008-09-19 21:49:26 ----A---- C:\Windows\system32\wmpcm.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\werdiagcontroller.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\rasauto.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\olethk32.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\olesvr32.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\mstext40.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\mfvdsp.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\iscsiwmi.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\dmsynth.dll
2008-09-19 21:49:26 ----A---- C:\Windows\system32\COLORCNV.DLL
2008-09-19 21:49:25 ----A---- C:\Windows\system32\wavemsp.dll
2008-09-19 21:49:25 ----A---- C:\Windows\system32\ufat.dll
2008-09-19 21:49:25 ----A---- C:\Windows\system32\sxproxy.dll
2008-09-19 21:49:25 ----A---- C:\Windows\system32\SLLUA.exe
2008-09-19 21:49:25 ----A---- C:\Windows\system32\odbctrac.dll
2008-09-19 21:49:25 ----A---- C:\Windows\system32\networkitemfactory.dll
2008-09-19 21:49:25 ----A---- C:\Windows\system32\msctfui.dll
2008-09-19 21:49:25 ----A---- C:\Windows\system32\at.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\xmlprovi.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\WpdConns.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\ucsvc.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\TimeDateMUICallback.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\rgb9rast.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\RegCtrl.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\prevhost.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\mshta.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\mobsync.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\licmgr10.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\itss.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\csrstub.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\convert.exe
2008-09-19 21:49:24 ----A---- C:\Windows\system32\bitsigd.dll
2008-09-19 21:49:24 ----A---- C:\Windows\system32\AuthFWGP.dll
2008-09-19 21:49:23 ----A---- C:\Windows\system32\tbs.dll
2008-09-19 21:49:23 ----A---- C:\Windows\system32\rasdiag.dll
2008-09-19 21:49:23 ----A---- C:\Windows\system32\ocsetup.exe
2008-09-19 21:49:23 ----A---- C:\Windows\system32\netbtugc.exe
2008-09-19 21:49:23 ----A---- C:\Windows\system32\iscsied.dll
2008-09-19 21:49:23 ----A---- C:\Windows\system32\GuidedHelp.dll
2008-09-19 21:49:23 ----A---- C:\Windows\system32\dskquota.dll
leebonfiglio
Regular Member
 
Posts: 32
Joined: October 2nd, 2008, 11:05 am

Re: trojan downloader zlob

Unread postby leebonfiglio » October 4th, 2008, 9:54 am

2008-09-19 21:49:23 ----A---- C:\Windows\system32\cscdll.dll
2008-09-19 21:49:23 ----A---- C:\Windows\system32\AtBroker.exe
2008-09-19 21:49:22 ----A---- C:\Windows\system32\winnsi.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\unattendedjoin.exe
2008-09-19 21:49:22 ----A---- C:\Windows\system32\setupcln.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\mydocs.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\l2gpstore.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\fphc.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\dsdmo.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\dmime.dll
2008-09-19 21:49:22 ----A---- C:\Windows\system32\cmpbk32.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\VIDRESZR.DLL
2008-09-19 21:49:21 ----A---- C:\Windows\system32\usbui.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\regini.exe
2008-09-19 21:49:21 ----A---- C:\Windows\system32\odbccu32.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\odbccr32.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\napdsnap.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\msident.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\msdart.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\dot3dlg.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\devenum.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\cmstplua.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\apilogen.dll
2008-09-19 21:49:21 ----A---- C:\Windows\system32\amxread.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\wpclsp.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\WINSRPC.DLL
2008-09-19 21:49:20 ----A---- C:\Windows\system32\vss_ps.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\upnpcont.exe
2008-09-19 21:49:20 ----A---- C:\Windows\system32\srwmi.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\RacAgent.exe
2008-09-19 21:49:20 ----A---- C:\Windows\system32\nsi.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\nbtstat.exe
2008-09-19 21:49:20 ----A---- C:\Windows\system32\mtxlegih.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\mtxdm.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2008-09-19 21:49:20 ----A---- C:\Windows\system32\gpupdate.exe
2008-09-19 21:49:20 ----A---- C:\Windows\system32\avrt.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\wsock32.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\wiarpc.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\WavDest.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\vfwwdm32.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\syskey.exe
2008-09-19 21:49:19 ----A---- C:\Windows\system32\rasphone.exe
2008-09-19 21:49:19 ----A---- C:\Windows\system32\odbcbcp.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\netevent.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\msexcl40.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\mfcsubs.dll
2008-09-19 21:49:19 ----A---- C:\Windows\system32\graftabl.com
2008-09-19 21:49:18 ----A---- C:\Windows\system32\ROUTE.EXE
2008-09-19 21:49:18 ----A---- C:\Windows\system32\procinst.dll
2008-09-19 21:49:18 ----A---- C:\Windows\system32\ndfetw.dll
2008-09-19 21:49:18 ----A---- C:\Windows\system32\MP3DMOD.DLL
2008-09-19 21:49:18 ----A---- C:\Windows\system32\extrac32.exe
2008-09-19 21:49:18 ----A---- C:\Windows\system32\eventcls.dll
2008-09-19 21:49:18 ----A---- C:\Windows\system32\csrss.exe
2008-09-19 21:49:17 ----A---- C:\Windows\system32\WlanMmHC.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2008-09-19 21:49:17 ----A---- C:\Windows\system32\wiadss.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\TabbtnEx.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\psbase.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\inetppui.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\dmscript.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\d3dxof.dll
2008-09-19 21:49:17 ----A---- C:\Windows\system32\atmfd.dll
2008-09-19 21:49:16 ----A---- C:\Windows\system32\Tabbtn.dll
2008-09-19 21:49:16 ----A---- C:\Windows\system32\msxbde40.dll
2008-09-19 21:49:16 ----A---- C:\Windows\system32\dmloader.dll
2008-09-19 21:49:16 ----A---- C:\Windows\system32\CertEnrollCtrl.exe
2008-09-19 21:49:16 ----A---- C:\Windows\fveupdate.exe
2008-09-19 21:49:15 ----A---- C:\Windows\system32\wshcon.dll
2008-09-19 21:49:15 ----A---- C:\Windows\system32\Netplwiz.exe
2008-09-19 21:49:15 ----A---- C:\Windows\system32\mspbde40.dll
2008-09-19 21:49:15 ----A---- C:\Windows\system32\msltus40.dll
2008-09-19 21:49:15 ----A---- C:\Windows\system32\icsunattend.exe
2008-09-19 21:49:15 ----A---- C:\Windows\system32\credssp.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\WsmRes.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\WSHTCPIP.DLL
2008-09-19 21:49:14 ----A---- C:\Windows\system32\wship6.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\sxsstore.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\PlaySndSrv.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\msvidc32.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\localui.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\lltdapi.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2008-09-19 21:49:14 ----A---- C:\Windows\system32\ComputerDefaults.exe
2008-09-19 21:49:13 ----A---- C:\Windows\system32\slwga.dll
2008-09-19 21:49:13 ----A---- C:\Windows\system32\setupSNK.exe
2008-09-19 21:49:13 ----A---- C:\Windows\system32\sbunattend.exe
2008-09-19 21:49:13 ----A---- C:\Windows\system32\OptionalFeatures.exe
2008-09-19 21:49:13 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2008-09-19 21:49:13 ----A---- C:\Windows\system32\icaapi.dll
2008-09-19 21:49:13 ----A---- C:\Windows\system32\dmutil.dll
2008-09-19 21:49:09 ----A---- C:\Windows\system32\usbperf.dll
2008-09-19 21:49:09 ----A---- C:\Windows\system32\spopk.dll
2008-09-19 21:49:09 ----A---- C:\Windows\system32\serialui.dll
2008-09-19 21:49:09 ----A---- C:\Windows\system32\NcdProp.dll
2008-09-19 21:49:08 ----A---- C:\Windows\system32\odbcconf.dll
2008-09-19 21:49:08 ----A---- C:\Windows\system32\cofiredm.dll
2008-09-19 21:49:07 ----A---- C:\Windows\system32\msfeedssync.exe
2008-09-19 21:49:07 ----A---- C:\Windows\system32\hbaapi.dll
2008-09-19 21:49:06 ----A---- C:\Windows\system32\rasctrs.dll
2008-09-19 21:49:06 ----A---- C:\Windows\system32\msobjs.dll
2008-09-19 21:49:06 ----A---- C:\Windows\system32\ieencode.dll
2008-09-19 21:49:06 ----A---- C:\Windows\system32\hnetmon.dll
2008-09-19 21:49:06 ----A---- C:\Windows\system32\corpol.dll
2008-09-19 21:49:05 ----A---- C:\Windows\system32\vdmdbg.dll
2008-09-19 21:49:05 ----A---- C:\Windows\system32\url.dll
2008-09-19 21:49:05 ----A---- C:\Windows\system32\nlsbres.dll
2008-09-19 21:49:05 ----A---- C:\Windows\system32\midimap.dll
2008-09-19 21:49:05 ----A---- C:\Windows\system32\LogonUI.exe
2008-09-19 21:49:05 ----A---- C:\Windows\system32\iprtprio.dll
2008-09-19 21:49:05 ----A---- C:\Windows\system32\InfDefaultInstall.exe
2008-09-19 21:49:05 ----A---- C:\Windows\system32\esentprf.dll
2008-09-19 21:49:04 ----A---- C:\Windows\system32\sdspres.dll
2008-09-19 21:49:02 ----A---- C:\Windows\system32\osbaseln.dll
2008-09-19 21:49:02 ----A---- C:\Windows\system32\cfgmgr32.dll
2008-09-19 21:49:01 ----A---- C:\Windows\system32\msmmsp.dll
2008-09-19 21:49:01 ----A---- C:\Windows\system32\msisip.dll
2008-09-19 21:49:00 ----A---- C:\Windows\system32\winusb.dll
2008-09-19 21:49:00 ----A---- C:\Windows\system32\dispex.dll
2008-09-19 21:48:59 ----A---- C:\Windows\system32\rdpcfgex.dll
2008-09-19 21:48:57 ----A---- C:\Windows\system32\Nlsdl.dll
2008-09-19 21:48:56 ----A---- C:\Windows\system32\spwmp.dll
2008-09-19 21:48:56 ----A---- C:\Windows\system32\riched32.dll
2008-09-19 21:48:56 ----A---- C:\Windows\system32\msidle.dll
2008-09-19 21:48:56 ----A---- C:\Windows\system32\idndl.dll
2008-09-19 21:48:54 ----A---- C:\Windows\system32\KBDKOR.DLL
2008-09-19 21:48:54 ----A---- C:\Windows\system32\KBDJPN.DLL
2008-09-19 21:48:53 ----A---- C:\Windows\system32\iscsilog.dll
2008-09-19 21:48:52 ----A---- C:\Windows\system32\wmploc.DLL
2008-09-19 21:48:52 ----A---- C:\Windows\system32\vga64k.dll
2008-09-19 21:48:52 ----A---- C:\Windows\system32\vga256.dll
2008-09-19 21:48:52 ----A---- C:\Windows\system32\tsddd.dll
2008-09-19 21:48:52 ----A---- C:\Windows\system32\framebuf.dll
2008-09-19 21:48:52 ----A---- C:\Windows\system32\dxmasf.dll
2008-09-19 21:48:51 ----A---- C:\Windows\system32\vga.dll
2008-09-19 21:48:51 ----A---- C:\Windows\system32\dmdskres2.dll
2008-09-19 21:48:51 ----A---- C:\Windows\system32\bootstr.dll
2008-09-19 21:48:50 ----A---- C:\Windows\system32\spwizres.dll
2008-09-19 21:48:50 ----A---- C:\Windows\system32\f3ahvoas.dll
2008-09-19 21:48:49 ----A---- C:\Windows\system32\gatherWiredInfo.vbs
2008-09-19 21:48:48 ----A---- C:\Windows\system32\gatherWirelessInfo.vbs
2008-09-19 21:48:47 ----A---- C:\Windows\system32\fsmgmt.msc
2008-09-19 21:48:42 ----A---- C:\Windows\system32\vsp1cln.exe
2008-09-19 21:48:42 ----A---- C:\Windows\system32\perfmon.msc
2008-09-19 21:48:06 ----A---- C:\Windows\system32\xmllite.dll
2008-09-19 21:48:06 ----A---- C:\Windows\system32\wbemcomn.dll
2008-09-19 21:48:01 ----A---- C:\Windows\system32\SmiInstaller.dll
2008-09-19 21:48:00 ----A---- C:\Windows\system32\SmiEngine.dll
2008-09-19 21:47:55 ----A---- C:\Windows\system32\wdscore.dll
2008-09-19 21:47:55 ----A---- C:\Windows\system32\PkgMgr.exe
2008-09-19 21:47:41 ----A---- C:\Windows\system32\drvstore.dll
2008-09-19 21:47:40 ----A---- C:\Windows\system32\mspatcha.dll
2008-09-19 21:47:40 ----A---- C:\Windows\system32\msdelta.dll
2008-09-19 21:47:40 ----A---- C:\Windows\system32\dpx.dll
2008-09-15 17:29:00 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\DivX
2008-09-14 21:19:44 ----D---- C:\Program Files\Common Files\PX Storage Engine
2008-09-14 21:19:32 ----D---- C:\Program Files\DivX
2008-09-14 21:17:24 ----A---- C:\Windows\system32\xvidcore.dll
2008-09-14 21:17:23 ----D---- C:\Program Files\Xvid
2008-09-14 21:17:23 ----A---- C:\Windows\system32\xvidvfw.dll
2008-09-14 03:00:14 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-09-13 20:04:12 ----A---- C:\Windows\system32\LVUI2RC.dll
2008-09-13 20:04:12 ----A---- C:\Windows\system32\LVUI2.dll
2008-09-13 20:04:12 ----A---- C:\Windows\system32\lvcoinst.ini
2008-09-13 20:04:12 ----A---- C:\Windows\system32\lvcodec2.dll
2008-09-13 20:04:12 ----A---- C:\Windows\system32\lvci1150.dll
2008-09-13 20:01:53 ----D---- C:\ProgramData\Logishrd
2008-09-13 20:01:51 ----D---- C:\Program Files\Common Files\LogiShrd
2008-09-13 20:01:42 ----D---- C:\ProgramData\Logitech
2008-09-13 20:01:42 ----D---- C:\Program Files\Logitech
2008-09-11 12:52:03 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\DNA
2008-09-09 15:26:54 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-09-09 15:26:54 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-09-09 15:26:45 ----A---- C:\Windows\system32\wmpeffects.dll
2008-09-07 07:14:22 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\Opera
2008-09-07 07:14:12 ----D---- C:\Program Files\Opera
2008-09-05 13:11:12 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\ZoomBrowser EX

======List of files/folders modified in the last 1 months======

2008-10-04 08:51:08 ----D---- C:\Windows\Temp
2008-10-04 08:48:59 ----RD---- C:\Program Files
2008-10-04 08:48:12 ----D---- C:\Windows\Prefetch
2008-10-04 07:39:06 ----D---- C:\Windows\System32
2008-10-04 07:39:06 ----D---- C:\Windows\inf
2008-10-04 07:39:06 ----A---- C:\Windows\system32\PerfStringBackup.INI
2008-10-04 00:22:49 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\Skype
2008-10-03 07:51:10 ----SHD---- C:\System Volume Information
2008-10-02 09:34:19 ----HD---- C:\ProgramData
2008-10-02 09:34:19 ----D---- C:\Windows\system32\drivers
2008-10-02 07:50:14 ----SHD---- C:\Windows\Installer
2008-10-01 19:40:27 ----D---- C:\Windows
2008-09-30 20:11:16 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\Adobe
2008-09-30 18:17:25 ----D---- C:\Program Files\Mozilla Firefox
2008-09-30 17:39:22 ----D---- C:\Windows\system32\catroot2
2008-09-30 13:13:15 ----D---- C:\Windows\system32\Tasks
2008-09-30 09:44:59 ----D---- C:\Windows\pss
2008-09-30 09:40:44 ----D---- C:\Windows\Minidump
2008-09-30 09:40:44 ----D---- C:\Windows\Debug
2008-09-30 09:38:47 ----D---- C:\Program Files\Yahoo!
2008-09-29 20:48:39 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\OpenOffice.org2
2008-09-29 14:19:07 ----D---- C:\ProgramData\Adobe
2008-09-29 13:46:33 ----RSD---- C:\Windows\assembly
2008-09-29 09:01:20 ----SD---- C:\Users\lee bonfiglio\AppData\Roaming\Microsoft
2008-09-29 09:00:40 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\Sony
2008-09-29 08:57:44 ----D---- C:\Program Files\Common Files\microsoft shared
2008-09-29 08:56:57 ----D---- C:\Windows\registration
2008-09-29 08:55:56 ----D---- C:\Program Files\Sony Setup
2008-09-29 07:41:49 ----D---- C:\Program Files\Common Files
2008-09-29 07:41:38 ----AD---- C:\ProgramData\TEMP
2008-09-28 19:51:05 ----D---- C:\Windows\system32\catroot
2008-09-28 19:50:35 ----D---- C:\Program Files\Adobe
2008-09-23 03:00:34 ----D---- C:\Windows\winsxs
2008-09-23 03:00:19 ----D---- C:\Program Files\Windows Mail
2008-09-22 03:30:23 ----D---- C:\Windows\rescache
2008-09-22 03:11:18 ----D---- C:\Windows\system32\en-US
2008-09-22 03:11:18 ----D---- C:\Windows\PolicyDefinitions
2008-09-22 03:00:44 ----D---- C:\Windows\system32\WDI
2008-09-21 03:00:38 ----D---- C:\Windows\Logs
2008-09-20 22:45:52 ----D---- C:\Windows\Microsoft.NET
2008-09-20 22:39:24 ----SHD---- C:\Boot
2008-09-20 22:39:09 ----ASH---- C:\Program Files\desktop.ini
2008-09-20 22:30:55 ----D---- C:\Program Files\Windows Sidebar
2008-09-20 22:30:55 ----D---- C:\Program Files\Windows Calendar
2008-09-20 22:30:54 ----D---- C:\Program Files\Windows Photo Gallery
2008-09-20 22:30:54 ----D---- C:\Program Files\Windows Media Player
2008-09-20 22:30:54 ----D---- C:\Program Files\Windows Journal
2008-09-20 22:30:54 ----D---- C:\Program Files\Windows Collaboration
2008-09-20 22:30:54 ----D---- C:\Program Files\Movie Maker
2008-09-20 22:30:54 ----D---- C:\Program Files\Internet Explorer
2008-09-20 22:30:49 ----D---- C:\Windows\servicing
2008-09-20 22:30:49 ----D---- C:\Windows\ehome
2008-09-20 22:30:49 ----D---- C:\Program Files\Windows Defender
2008-09-20 22:30:49 ----D---- C:\Program Files\Common Files\System
2008-09-20 22:30:46 ----D---- C:\Windows\MSAgent
2008-09-20 22:30:45 ----D---- C:\Windows\L2Schemas
2008-09-20 22:30:45 ----D---- C:\Windows\IME
2008-09-20 22:30:45 ----D---- C:\Windows\DigitalLocker
2008-09-20 22:30:44 ----D---- C:\Windows\system32\XPSViewer
2008-09-20 22:30:44 ----D---- C:\Windows\system32\ko-KR
2008-09-20 22:30:44 ----D---- C:\Windows\system32\da-DK
2008-09-20 22:30:44 ----D---- C:\Windows\system32\com
2008-09-20 22:30:40 ----D---- C:\Windows\system32\sysprep
2008-09-20 22:30:40 ----D---- C:\Windows\system32\oobe
2008-09-20 22:30:40 ----D---- C:\Windows\system32\migration
2008-09-20 22:30:40 ----D---- C:\Windows\system32\it-IT
2008-09-20 22:30:40 ----D---- C:\Windows\system32\el-GR
2008-09-20 22:30:40 ----D---- C:\Windows\system32\de-DE
2008-09-20 22:30:38 ----D---- C:\Windows\system32\ru-RU
2008-09-20 22:30:38 ----D---- C:\Windows\system32\ias
2008-09-20 22:30:38 ----D---- C:\Windows\system32\fr-FR
2008-09-20 22:30:38 ----D---- C:\Windows\system32\AdvancedInstallers
2008-09-20 22:30:37 ----D---- C:\Windows\system32\sv-SE
2008-09-20 22:30:37 ----D---- C:\Windows\system32\SLUI
2008-09-20 22:30:37 ----D---- C:\Windows\system32\setup
2008-09-20 22:30:37 ----D---- C:\Windows\system32\pt-PT
2008-09-20 22:30:37 ----D---- C:\Windows\system32\hu-HU
2008-09-20 22:30:37 ----D---- C:\Windows\system32\he-IL
2008-09-20 22:30:37 ----D---- C:\Windows\system32\fi-FI
2008-09-20 22:30:37 ----D---- C:\Windows\system32\cs-CZ
2008-09-20 22:30:33 ----D---- C:\Windows\system32\zh-CN
2008-09-20 22:30:33 ----D---- C:\Windows\system32\manifeststore
2008-09-20 22:30:33 ----D---- C:\Windows\system32\en
2008-09-20 22:30:32 ----D---- C:\Windows\system32\zh-TW
2008-09-20 22:30:32 ----D---- C:\Windows\system32\ro-RO
2008-09-20 22:30:32 ----D---- C:\Windows\system32\pl-PL
2008-09-20 22:30:32 ----D---- C:\Windows\system32\ja-JP
2008-09-20 22:30:32 ----D---- C:\Windows\system32\es-ES
2008-09-20 22:30:31 ----D---- C:\Windows\system32\wbem
2008-09-20 22:30:31 ----D---- C:\Windows\system32\tr-TR
2008-09-20 22:30:30 ----D---- C:\Windows\system32\nl-NL
2008-09-20 22:30:30 ----D---- C:\Windows\system32\nb-NO
2008-09-20 22:30:30 ----D---- C:\Windows\system32\ar-SA
2008-09-20 22:30:29 ----D---- C:\Windows\system32\pt-BR
2008-09-20 22:30:29 ----D---- C:\Windows\system32\migwiz
2008-09-20 22:29:57 ----D---- C:\Windows\AppPatch
2008-09-20 22:29:47 ----D---- C:\Windows\Boot
2008-09-20 22:29:46 ----D---- C:\Windows\system32\Boot
2008-09-20 22:28:41 ----D---- C:\Windows\WindowsMobile
2008-09-20 22:07:39 ----A---- C:\Windows\system32\ifxcardm.dll
2008-09-20 22:07:37 ----A---- C:\Windows\system32\axaltocm.dll
2008-09-19 14:05:29 ----D---- C:\Program Files\Google
2008-09-17 19:16:44 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\Epocrates
2008-09-17 19:14:42 ----D---- C:\Program Files\Epocrates
2008-09-17 19:14:41 ----HD---- C:\Program Files\InstallShield Installation Information
2008-09-13 20:04:44 ----D---- C:\Windows\twain_32
2008-09-10 03:02:47 ----D---- C:\Program Files\Microsoft Works

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys [2007-02-27 11840]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2008-06-27 75072]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2008-09-03 8944]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys [2008-09-03 55024]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
R2 dsunidrv;DellSupport UniDriver; C:\Windows\system32\DRIVERS\dsunidrv.sys [2007-02-25 5376]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2006-11-27 32256]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2006-11-27 43520]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-27 37376]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-04 8192]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\Windows\system32\DRIVERS\Apfiltr.sys [2007-05-21 157184]
R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys [2008-05-20 52032]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2007-05-21 179712]
R3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-01-19 19456]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2008-04-28 29184]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2006-11-06 78128]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2006-11-06 80176]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2006-11-06 16560]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 DSproct;DSproct; \??\C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys [2006-10-05 4736]
R3 GEARAspiWDM;GEARAspiWDM; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-11-02 986624]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-11-02 206848]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-05-21 1674240]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\Windows\system32\DRIVERS\LVPr2Mon.sys [2007-10-11 25624]
R3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-02-25 2216448]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2008-01-19 49664]
R3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS [2008-09-03 7408]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-19 88576]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\Windows\system32\drivers\stwrt.sys [2007-06-25 326656]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-11-02 659968]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-19 11264]
S2 MCSTRM;MCSTRM; C:\Windows\system32\drivers\MCSTRM.sys []
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2008-01-19 45696]
S3 Agp4pdvic;Agp4pdvic; C:\Windows\system32\drivers\Agp4pdvic.sys []
S3 Avc;AVC Device; C:\Windows\system32\DRIVERS\avc.sys [2008-01-19 40448]
S3 AVCSTRM;AVC Streaming Filter Driver; C:\Windows\system32\DRIVERS\avcstrm.sys [2008-01-19 14208]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2008-04-28 220160]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\Windows\system32\DRIVERS\e1e6032.sys [2006-11-02 200704]
S3 grmnusb;grmnusb; C:\Windows\system32\drivers\grmnusb.sys [2007-03-08 8320]
S3 IKFileSec;File Security Driver; C:\Windows\system32\drivers\ikfilesec.sys [2008-08-25 40840]
S3 IKSysFlt;System Filter Driver; C:\Windows\system32\drivers\iksysflt.sys [2008-08-25 66952]
S3 IKSysSec;System Security Driver; C:\Windows\system32\drivers\iksyssec.sys [2008-08-25 81288]
S3 LVcKap;Logitech AEC Driver; C:\Windows\system32\DRIVERS\LVcKap.sys [2007-10-19 2109976]
S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\Windows\system32\DRIVERS\LVMVDrv.sys [2007-10-11 2142488]
S3 lvpopflt;Logitech POP Suppression Filter; C:\Windows\system32\DRIVERS\lvpopflt.sys [2007-10-11 1920920]
S3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBSta.sys [2007-10-11 41752]
S3 LVUVC;Logitech QuickCam Pro 9000(UVC); C:\Windows\system32\DRIVERS\lvuvc.sys [2007-10-11 3647384]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTAPE;Microsoft AV/C Tape Subunit Device; C:\Windows\system32\DRIVERS\mstape.sys [2008-01-19 50048]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 PalmUSBD;PalmUSBD; C:\Windows\system32\drivers\PalmUSBD.sys [2007-12-04 16640]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2006-11-02 2028032]
S3 usb_rndisx;USB RNDIS Adapter; C:\Windows\system32\DRIVERS\usb8023x.sys [2008-01-19 15872]
S3 usbaudio;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2008-01-19 73088]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-05-12 611664]
R2 AntiVirScheduler;Avira AntiVir Personal - Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-06-12 68865]
R2 AntiVirService;Avira AntiVir Personal - Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-08-07 149761]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2007-09-06 110592]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [2007-10-19 186904]
R2 LVPrcSrv;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2007-10-19 141848]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 RoxWatch9;Roxio Hard Drive Watcher 9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe [2006-11-05 159744]
R2 sprtsvc_dellsupportcenter;SupportSoft Sprocket Service (dellsupportcenter); C:\Program Files\Dell Support Center\bin\sprtsvc.exe [2008-08-13 201968]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2007-02-10 89968]
R2 STacSV;SigmaTel Audio Service; C:\Windows\system32\STacSV.exe [2007-06-25 94208]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-04 386560]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-03-30 504104]
S2 gupdate1c8c134749512b0;Google Update Service (gupdate1c8c134749512b0); C:\Program Files\Google\Update\GoogleUpdate.exe [2008-08-29 133104]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-10-19 141848]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-09-26 68096]
S3 DSBrokerService;DSBrokerService; C:\Program Files\DellSupport\brkrsvc.exe [2007-03-19 70656]
S3 GoogleDesktopManager-061008-081103;Google Desktop Manager 5.7.806.10245; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-08-06 29744]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 MSSQL$SONY_MEDIAMGR2;SQL Server (SONY_MEDIAMGR2); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2008-02-26 29183504]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2006-11-05 880640]
S3 sdAuxService;PC Tools Auxiliary Service; C:\Program Files\Spyware Doctor\pctsAuxs.exe [2008-06-13 356920]
S3 sdCoreService;PC Tools Security Service; C:\Program Files\Spyware Doctor\pctsSvc.exe [2008-09-22 1079176]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2006-09-14 73728]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2005-10-14 45272]
S4 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2007-02-10 242544]

-----------------EOF-----------------
leebonfiglio
Regular Member
 
Posts: 32
Joined: October 2nd, 2008, 11:05 am
Advertisement
Register to Remove

Next

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 297 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware