Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

TrojanDownloader:Win32/Renos.EE

Started by fuel323 , Dec 24 2008 02:33 AM

  • Please log in to reply

#1
fuel323
Posted 24 December 2008 - 02:33 AM

fuel323

    New Member

  • Member
  • Pip
  • 7 posts
hi, i've been having random pop-up about security issues and it turned out to be a TrojanDownloader:Win32/Renos.EE bug. i've tried several anti-virus bt they didn't help a single bit. i googles it n found someone by the nick of sanddancer having the same prob n sloved it. can anyone help me? here r mi logs from hijackthis


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:13:33 PM, on 12/24/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Users\Puyang\AppData\Local\Temp\yyy1080.exe
C:\Users\Puyang\AppData\Local\Temp\~tmpa.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [Gainward] C:\Program Files\Vtune\TBPanel.exe /A
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSFox] C:\Users\Puyang\AppData\Local\Temp\yyy1080.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O13 - Gopher Prefix:
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare safety scanner control) - http://cdn.scan.onec...s/wlscctrl2.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.m...ash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DEFA90EC-36EA-4C3E-B8B3-C45D7547BE4B}: NameServer = 165.21.100.88 165.21.83.88
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 6160 bytes




Logfile of random's system information tool 1.05 (written by random/random)
Run by Puyang at 2008-12-24 16:20:52
Microsoft® Windows Vista™ Home Basic Service Pack 1
System drive C: has 39 GB (26%) free of 153 GB
Total RAM: 2557 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:20:55 PM, on 12/24/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Users\Puyang\AppData\Local\Temp\yyy1080.exe
C:\Users\Puyang\AppData\Local\Temp\~tmpa.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Users\Puyang\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CE64SUC2\RSIT[1].exe
C:\Program Files\Trend Micro\HijackThis\Puyang.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [Gainward] C:\Program Files\Vtune\TBPanel.exe /A
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSFox] C:\Users\Puyang\AppData\Local\Temp\yyy1080.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O13 - Gopher Prefix:
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare safety scanner control) - http://cdn.scan.onec...s/wlscctrl2.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.m...ash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DEFA90EC-36EA-4C3E-B8B3-C45D7547BE4B}: NameServer = 165.21.100.88 165.21.83.88
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 6277 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2008-12-01 304736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2007-05-30 455960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2008-11-30 1261336]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [2007-02-04 79400]
"Gainward"=C:\Program Files\Vtune\TBPanel.exe [2006-09-13 2154496]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-11-04 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-11-20 290088]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-12-01 185872]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-09-17 13580832]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-09-17 92704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-19 1233920]
"MsnMsgr"=C:\Program Files\MSN Messenger\MsnMsgr.Exe [2007-01-19 5674352]
"MSFox"=C:\Users\Puyang\AppData\Local\Temp\yyy1080.exe [2008-12-23 86020]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="avgrsstx.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2008-12-24 16:20:52 ----D---- C:\rsit
2008-12-24 16:12:55 ----D---- C:\Program Files\Trend Micro
2008-12-24 13:10:48 ----D---- C:\ProgramData\Lavasoft
2008-12-24 13:10:48 ----D---- C:\Program Files\Lavasoft
2008-12-24 13:10:21 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-12-23 22:56:53 ----D---- C:\Program Files\Windows Live Safety Center
2008-12-23 20:28:13 ----D---- C:\Program Files\Exterminate It!
2008-12-23 18:36:51 ----D---- C:\ProgramData\CrucialSoft Ltd
2008-12-23 03:00:25 ----A---- C:\Windows\system32\mshtml.dll
2008-12-12 21:53:49 ----A---- C:\Windows\ODBC.INI
2008-12-12 21:52:42 ----D---- C:\Program Files\Microsoft ActiveSync
2008-12-12 21:52:29 ----D---- C:\Program Files\Common Files\Designer
2008-12-12 21:51:15 ----D---- C:\Windows\ShellNew
2008-12-12 21:51:07 ----D---- C:\Program Files\Microsoft Office
2008-12-11 21:57:12 ----D---- C:\Program Files\Garena
2008-12-11 21:56:33 ----D---- C:\Users\Puyang\AppData\Roaming\InstallShield
2008-12-11 21:43:29 ----A---- C:\Windows\system32\d3dx10_40.dll
2008-12-11 21:43:29 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2008-12-11 21:43:28 ----A---- C:\Windows\system32\D3DX9_40.dll
2008-12-11 21:43:24 ----A---- C:\Windows\system32\XAudio2_3.dll
2008-12-11 21:43:24 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2008-12-11 21:43:23 ----A---- C:\Windows\system32\xactengine3_3.dll
2008-12-11 21:43:23 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2008-12-11 21:43:22 ----A---- C:\Windows\system32\XAudio2_2.dll
2008-12-11 21:43:22 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2008-12-11 21:43:18 ----A---- C:\Windows\system32\xactengine3_2.dll
2008-12-11 21:43:16 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2008-12-11 21:43:15 ----A---- C:\Windows\system32\d3dx10_39.dll
2008-12-11 21:43:14 ----A---- C:\Windows\system32\D3DX9_39.dll
2008-12-11 21:42:08 ----HD---- C:\Windows\msdownld.tmp
2008-12-11 21:41:56 ----D---- C:\Windows\system32\directx
2008-12-11 18:57:21 ----D---- C:\Users\Puyang\AppData\Roaming\WinRAR
2008-12-11 14:27:44 ----D---- C:\Users\Puyang\AppData\Roaming\DAEMON Tools Lite
2008-12-11 13:11:31 ----D---- C:\Program Files\Common Files\Steam
2008-12-11 13:11:30 ----D---- C:\Program Files\Steam
2008-12-11 00:40:58 ----A---- C:\Windows\system32\tzres.dll
2008-12-10 21:11:52 ----A---- C:\Windows\system32\gdi32.dll
2008-12-10 21:11:50 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-12-10 21:11:49 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-12-10 21:11:43 ----A---- C:\Windows\system32\shell32.dll
2008-12-10 21:11:39 ----A---- C:\Windows\explorer.exe
2008-12-10 21:11:35 ----A---- C:\Windows\system32\wininet.dll
2008-12-10 21:11:35 ----A---- C:\Windows\system32\urlmon.dll
2008-12-10 21:11:35 ----A---- C:\Windows\system32\mstime.dll
2008-12-10 21:11:35 ----A---- C:\Windows\system32\iertutil.dll
2008-12-10 21:11:35 ----A---- C:\Windows\system32\ieframe.dll
2008-12-10 21:11:34 ----A---- C:\Windows\system32\jsproxy.dll
2008-12-10 21:11:31 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-12-10 21:11:31 ----A---- C:\Windows\system32\mf.dll
2008-12-10 21:11:30 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-12-10 21:11:30 ----A---- C:\Windows\system32\logagent.exe
2008-12-10 12:21:50 ----HD---- C:\$AVG8.VAULT$
2008-12-10 00:50:10 ----A---- C:\Windows\system32\msshooks.dll
2008-12-10 00:50:10 ----A---- C:\Windows\system32\msscb.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\thawbrkr.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\srchadmin.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\SearchFilterHost.exe
2008-12-10 00:50:08 ----A---- C:\Windows\system32\propsys.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\propdefs.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\msstrc.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\mssprxy.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\mssitlb.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\msshsq.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\korwbrkr.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\xmlfilter.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\wsepno.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2008-12-10 00:50:07 ----A---- C:\Windows\system32\SearchIndexer.exe
2008-12-10 00:50:07 ----A---- C:\Windows\system32\rtffilt.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\offfilt.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\nlhtml.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\msscntrs.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\mimefilt.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\chtbrkr.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\chsbrkr.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\tquery.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\mssvp.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\mssrch.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\mssphtb.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\mssph.dll
2008-12-10 00:03:28 ----D---- C:\Users\Puyang\AppData\Roaming\DivX
2008-12-10 00:02:54 ----D---- C:\Program Files\Common Files\PX Storage Engine
2008-12-10 00:02:44 ----D---- C:\Program Files\DivX
2008-12-10 00:02:17 ----D---- C:\Users\Puyang\AppData\Roaming\Leawo
2008-12-10 00:01:58 ----A---- C:\Windows\system32\xvidcore.dll
2008-12-10 00:01:55 ----D---- C:\Program Files\Leawo
2008-12-09 21:49:28 ----A---- C:\Windows\system32\rpcrt4.dll
2008-12-09 21:49:27 ----A---- C:\Windows\system32\pacerprf.dll
2008-12-09 21:41:08 ----A---- C:\Windows\system32\emdmgmt.dll
2008-12-09 21:41:08 ----A---- C:\Windows\system32\dataclen.dll
2008-12-09 21:41:08 ----A---- C:\Windows\system32\cdd.dll
2008-12-09 21:33:57 ----A---- C:\Windows\system32\wersvc.dll
2008-12-09 21:33:57 ----A---- C:\Windows\system32\Faultrep.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\wshext.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\wscript.exe
2008-12-09 21:32:47 ----A---- C:\Windows\system32\vbscript.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\scrobj.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\jscript.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\cscript.exe
2008-12-09 21:32:46 ----A---- C:\Windows\system32\scrrun.dll
2008-12-09 15:23:13 ----D---- C:\Users\Puyang\AppData\Roaming\Canon
2008-12-09 12:50:13 ----D---- C:\ProgramData\NVIDIA
2008-12-09 12:48:06 ----A---- C:\Windows\system32\nvexpbar.dll
2008-12-09 12:48:06 ----A---- C:\Windows\system32\nvcpluir.dll
2008-12-09 12:48:06 ----A---- C:\Windows\system32\nvcplui.exe
2008-12-09 12:46:12 ----A---- C:\Windows\system32\NVUNINST.EXE
2008-12-09 01:23:52 ----D---- C:\Windows\Minidump
2008-12-08 23:53:58 ----A---- C:\Windows\system32\SLsvc.exe
2008-12-08 23:53:58 ----A---- C:\Windows\system32\onex.dll
2008-12-08 23:53:50 ----A---- C:\Windows\system32\PSHED.DLL
2008-12-08 23:53:49 ----A---- C:\Windows\system32\imagesp1.dll
2008-12-08 23:53:48 ----A---- C:\Windows\system32\dfsr.exe
2008-12-08 23:53:47 ----A---- C:\Windows\system32\pidgenx.dll
2008-12-08 23:53:46 ----A---- C:\Windows\system32\sstpsvc.dll
2008-12-08 23:53:46 ----A---- C:\Windows\system32\mstscax.dll
2008-12-08 23:53:45 ----A---- C:\Windows\system32\WsmSvc.dll
2008-12-08 23:53:45 ----A---- C:\Windows\system32\winrscmd.dll
2008-12-08 23:53:44 ----A---- C:\Windows\system32\sysmain.dll
2008-12-08 23:53:44 ----A---- C:\Windows\system32\RMActivate.exe
2008-12-08 23:53:41 ----A---- C:\Windows\system32\VSSVC.exe
2008-12-08 23:53:41 ----A---- C:\Windows\system32\vssapi.dll
2008-12-08 23:53:41 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2008-12-08 23:53:40 ----A---- C:\Windows\system32\secproc.dll
2008-12-08 23:53:38 ----A---- C:\Windows\system32\RMActivate_isv.exe
2008-12-08 23:53:36 ----A---- C:\Windows\system32\iesetup.dll
2008-12-08 23:53:35 ----A---- C:\Windows\system32\secproc_isv.dll
2008-12-08 23:53:33 ----A---- C:\Windows\system32\icardres.dll
2008-12-08 23:53:33 ----A---- C:\Windows\system32\drmv2clt.dll
2008-12-08 23:53:32 ----A---- C:\Windows\system32\xpssvcs.dll
2008-12-08 23:53:32 ----A---- C:\Windows\system32\icardagt.exe
2008-12-08 23:53:32 ----A---- C:\Windows\system32\blackbox.dll
2008-12-08 23:53:31 ----A---- C:\Windows\system32\RacEngn.dll
2008-12-08 23:53:30 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2008-12-08 23:53:28 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2008-12-08 23:53:25 ----A---- C:\Windows\system32\spwizimg.dll
2008-12-08 23:53:25 ----A---- C:\Windows\system32\rdpencom.dll
2008-12-08 23:53:25 ----A---- C:\Windows\system32\lpremove.exe
2008-12-08 23:53:25 ----A---- C:\Windows\bfsvc.exe
2008-12-08 23:53:24 ----A---- C:\Windows\system32\ntdll.dll
2008-12-08 23:53:24 ----A---- C:\Windows\system32\msjet40.dll
2008-12-08 23:53:23 ----A---- C:\Windows\system32\qmgr.dll
2008-12-08 23:53:23 ----A---- C:\Windows\system32\lsasrv.dll
2008-12-08 23:53:23 ----A---- C:\Windows\system32\localspl.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\wevtsvc.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\wcncsvc.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\mscoree.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\kernel32.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\IKEEXT.DLL
2008-12-08 23:53:21 ----A---- C:\Windows\system32\TsWpfWrp.exe
2008-12-08 23:53:21 ----A---- C:\Windows\system32\recdisc.exe
2008-12-08 23:53:21 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
2008-12-08 23:53:20 ----A---- C:\Windows\system32\wmp.dll
2008-12-08 23:53:20 ----A---- C:\Windows\system32\vds.exe
2008-12-08 23:53:19 ----A---- C:\Windows\system32\wcnwiz.dll
2008-12-08 23:53:19 ----A---- C:\Windows\system32\SMBHelperClass.dll
2008-12-08 23:53:19 ----A---- C:\Windows\system32\msvbvm60.dll
2008-12-08 23:53:19 ----A---- C:\Windows\system32\mstsc.exe
2008-12-08 23:53:18 ----A---- C:\Windows\system32\msdtctm.dll
2008-12-08 23:53:17 ----A---- C:\Windows\system32\termsrv.dll
2008-12-08 23:53:17 ----A---- C:\Windows\system32\kerberos.dll
2008-12-08 23:53:17 ----A---- C:\Windows\system32\IMJP10K.DLL
2008-12-08 23:53:17 ----A---- C:\Windows\system32\advapi32.dll
2008-12-08 23:53:16 ----A---- C:\Windows\system32\mmcndmgr.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\xolehlp.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\Query.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\msdtcprx.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\MPSSVC.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\CertEnroll.dll
2008-12-08 23:53:14 ----A---- C:\Windows\system32\ole32.dll
2008-12-08 23:53:13 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2008-12-08 23:53:13 ----A---- C:\Windows\system32\netlogon.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\SSShim.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\nlmgp.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\msvcrt.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\DfsShlEx.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\user32.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\shlwapi.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\sdclt.exe
2008-12-08 23:53:11 ----A---- C:\Windows\system32\schedsvc.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2008-12-08 23:53:11 ----A---- C:\Windows\system32\milcore.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\IasMigPlugin.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\WSDApi.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\wer.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\vdsdyn.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\QAGENTRT.DLL
2008-12-08 23:53:10 ----A---- C:\Windows\system32\d3d9.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\clusapi.dll
2008-12-08 23:53:09 ----A---- C:\Windows\system32\winrsmgr.dll
2008-12-08 23:53:09 ----A---- C:\Windows\system32\mtxclu.dll
2008-12-08 23:53:09 ----A---- C:\Windows\system32\mmc.exe
2008-12-08 23:53:09 ----A---- C:\Windows\system32\diagperf.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\vdsbas.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\swprv.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\SLC.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\msi.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\comctl32.dll
2008-12-08 23:53:07 ----A---- C:\Windows\system32\MSVidCtl.dll
2008-12-08 23:53:07 ----A---- C:\Windows\system32\gpsvc.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\XPSSHHDR.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\sbe.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\samsrv.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\msdtckrm.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\mfc42u.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2008-12-08 23:53:06 ----A---- C:\Windows\system32\esent.dll
2008-12-08 23:53:05 ----A---- C:\Windows\system32\wecutil.exe
2008-12-08 23:53:05 ----A---- C:\Windows\system32\usp10.dll
2008-12-08 23:53:05 ----A---- C:\Windows\system32\sdengin2.dll
2008-12-08 23:53:05 ----A---- C:\Windows\system32\gacinstall.dll
2008-12-08 23:53:05 ----A---- C:\Windows\system32\cmicryptinstall.dll
2008-12-08 23:53:04 ----A---- C:\Windows\system32\mfc42.dll
2008-12-08 23:53:04 ----A---- C:\Windows\system32\comsvcs.dll
2008-12-08 23:53:04 ----A---- C:\Windows\system32\cmipnpinstall.dll
2008-12-08 23:53:03 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2008-12-08 23:53:03 ----A---- C:\Windows\system32\crypt32.dll
2008-12-08 23:53:03 ----A---- C:\Windows\system32\certutil.exe
2008-12-08 23:53:02 ----A---- C:\Windows\system32\wmdrmsdk.dll
2008-12-08 23:53:02 ----A---- C:\Windows\system32\oleaut32.dll
2008-12-08 23:53:02 ----A---- C:\Windows\system32\mswsock.dll
2008-12-08 23:53:02 ----A---- C:\Windows\system32\FirewallAPI.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\wecsvc.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\sqlceqp30.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\setupapi.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\sdohlp.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\lsm.exe
2008-12-08 23:53:01 ----A---- C:\Windows\system32\bcrypt.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\wmpmde.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\thumbcache.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\schannel.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\p2psvc.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\msv1_0.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\iphlpsvc.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\eapp3hst.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\WinSAT.exe
2008-12-08 23:52:59 ----A---- C:\Windows\system32\vdsutil.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\riched20.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\imapi2fs.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\d3d10_1.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\autofmt.exe
2008-12-08 23:52:59 ----A---- C:\Windows\system32\autoconv.exe
2008-12-08 23:52:59 ----A---- C:\Windows\system32\autochk.exe
2008-12-08 23:52:58 ----A---- C:\Windows\system32\authui.dll
2008-12-08 23:52:58 ----A---- C:\Windows\system32\authfwcfg.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\WSDMon.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\wevtapi.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\mscories.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\eapphost.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\dmvdsitf.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\d3d10_1core.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\comuid.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\comdlg32.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\browseui.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\wevtfwd.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\untfs.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\uexfat.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\rasmans.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\iassam.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\eappcfg.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\wlansvc.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\whealogr.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\sqlcese30.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\pcaui.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\DfrgNtfs.exe
2008-12-08 23:52:53 ----A---- C:\Windows\system32\dot3svc.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\zipfldr.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\WsmAuto.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\winhttp.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\rdpwsx.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\nlasvc.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\mssha.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\msdrm.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\evr.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\dfrgui.exe
2008-12-08 23:52:50 ----A---- C:\Windows\system32\rpcss.dll
2008-12-08 23:52:50 ----A---- C:\Windows\system32\rasppp.dll
2008-12-08 23:52:50 ----A---- C:\Windows\system32\ncrypt.dll
2008-12-08 23:52:50 ----A---- C:\Windows\system32\msrepl40.dll
2008-12-08 23:52:50 ----A---- C:\Windows\system32\BFE.DLL
2008-12-08 23:52:50 ----A---- C:\Windows\system32\audiosrv.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\WsmWmiPl.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\wmdrmdev.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\rastls.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\printui.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\ddraw.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\WebClnt.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\themecpl.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\sqlsrv32.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\QAGENT.DLL
2008-12-08 23:52:48 ----A---- C:\Windows\system32\objsel.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\iasnap.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\dbghelp.dll
2008-12-08 23:52:47 ----A---- C:\Windows\system32\w32time.dll
2008-12-08 23:52:47 ----A---- C:\Windows\system32\PresentationHost.exe
2008-12-08 23:52:47 ----A---- C:\Windows\system32\ncryptui.dll
2008-12-08 23:52:47 ----A---- C:\Windows\system32\icm32.dll
2008-12-08 23:52:46 ----A---- C:\Windows\system32\wmdrmnet.dll
2008-12-08 23:52:46 ----A---- C:\Windows\system32\WerFaultSecure.exe
2008-12-08 23:52:46 ----A---- C:\Windows\system32\spoolss.dll
2008-12-08 23:52:46 ----A---- C:\Windows\system32\iprtrmgr.dll
2008-12-08 23:52:46 ----A---- C:\Windows\system32\azroles.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\winsrv.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\taskschd.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\msctf.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\infocardapi.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\bcdedit.exe
2008-12-08 23:52:45 ----A---- C:\Windows\system32\basecsp.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\wlangpui.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\winsta.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\scksp.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\netprofm.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\mstlsapi.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\dbgeng.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\AudioEng.dll
2008-12-08 23:52:43 ----A---- C:\Windows\system32\rsaenh.dll
2008-12-08 23:52:43 ----A---- C:\Windows\system32\netcfgx.dll
2008-12-08 23:52:42 ----A---- C:\Windows\system32\winlogon.exe
2008-12-08 23:52:42 ----A---- C:\Windows\system32\wercon.exe
2008-12-08 23:52:42 ----A---- C:\Windows\system32\taskcomp.dll
2008-12-08 23:52:42 ----A---- C:\Windows\system32\lpksetup.exe
2008-12-08 23:52:42 ----A---- C:\Windows\system32\dfshim.dll
2008-12-08 23:52:42 ----A---- C:\Windows\system32\cdosys.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\wlansec.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\msdtcuiu.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\mprddm.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\certcli.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\apds.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\tsgqec.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\shdocvw.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\iasrad.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\eapsvc.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\AUDIOKSE.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\aaclient.dll
2008-12-08 23:52:39 ----A---- C:\Windows\system32\bcdsrv.dll
2008-12-08 23:52:35 ----A---- C:\Windows\system32\uDWM.dll
2008-12-08 23:52:35 ----A---- C:\Windows\system32\certmgr.dll
2008-12-08 23:52:34 ----A---- C:\Windows\system32\Wldap32.dll
2008-12-08 23:52:34 ----A---- C:\Windows\system32\umpnpmgr.dll
2008-12-08 23:52:34 ----A---- C:\Windows\system32\msidcrl30.dll
2008-12-08 23:52:34 ----A---- C:\Windows\system32\dnsapi.dll
2008-12-08 23:52:33 ----A---- C:\Windows\system32\WMVDECOD.DLL
2008-12-08 23:52:33 ----A---- C:\Windows\system32\pla.dll
2008-12-08 23:52:33 ----A---- C:\Windows\system32\dxgi.dll
2008-12-08 23:52:32 ----A---- C:\Windows\system32\wmicmiplugin.dll
2008-12-08 23:52:32 ----A---- C:\Windows\system32\netshell.dll
2008-12-08 23:52:32 ----A---- C:\Windows\system32\dot3gpui.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\winmm.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\shsvcs.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\ntprint.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\MMDevAPI.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\cryptnet.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\comsnap.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\wscsvc.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\wscisvif.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\synceng.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\services.exe
2008-12-08 23:52:30 ----A---- C:\Windows\system32\pnidui.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\cmifw.dll
2008-12-08 23:52:29 ----A---- C:\Windows\system32\WMVSDECD.DLL
2008-12-08 23:52:29 ----A---- C:\Windows\system32\taskeng.exe
2008-12-08 23:52:29 ----A---- C:\Windows\system32\msjtes40.dll
2008-12-08 23:52:29 ----A---- C:\Windows\system32\msconfig.exe
2008-12-08 23:52:29 ----A---- C:\Windows\system32\iassdo.dll
2008-12-08 23:52:29 ----A---- C:\Windows\system32\cipher.exe
2008-12-08 23:52:28 ----A---- C:\Windows\system32\uxtheme.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\tdh.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\SessEnv.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\rasapi32.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\imapi2.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\dot3api.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\dmdskmgr.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\cmd.exe
2008-12-08 23:52:27 ----A---- C:\Windows\system32\wlanmsm.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\wkssvc.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\wevtutil.exe
2008-12-08 23:52:27 ----A---- C:\Windows\system32\srvsvc.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\qdvd.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\msscp.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\cbsra.exe
2008-12-08 23:52:27 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\WUDFx.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\wlancfg.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\mshtmled.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\localsec.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\loadperf.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\fontext.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\diskpart.exe
2008-12-08 23:52:26 ----A---- C:\Windows\system32\comres.dll
2008-12-08 23:52:25 ----A---- C:\Windows\system32\wlanapi.dll
2008-12-08 23:52:25 ----A---- C:\Windows\system32\rpchttp.dll
2008-12-08 23:52:25 ----A---- C:\Windows\system32\rdpdd.dll
2008-12-08 23:52:25 ----A---- C:\Windows\system32\hnetcfg.dll
2008-12-08 23:52:24 ----A---- C:\Windows\system32\wsqmcons.exe
2008-12-08 23:52:24 ----A---- C:\Windows\system32\WMADMOD.DLL
2008-12-08 23:52:24 ----A---- C:\Windows\system32\wlanpref.dll
2008-12-08 23:52:24 ----A---- C:\Windows\system32\WinSATAPI.dll
2008-12-08 23:52:24 ----A---- C:\Windows\system32\NAPMONTR.DLL
2008-12-08 23:52:24 ----A---- C:\Windows\system32\dsound.dll
2008-12-08 23:52:23 ----A---- C:\Windows\system32\RDPENCDD.dll
2008-12-08 23:52:23 ----A---- C:\Windows\system32\profprov.dll
2008-12-08 23:52:23 ----A---- C:\Windows\system32\filemgmt.dll
2008-12-08 23:52:23 ----A---- C:\Windows\system32\avifil32.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\wsecedit.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2008-12-08 23:52:22 ----A---- C:\Windows\system32\tracerpt.exe
2008-12-08 23:52:22 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\SLCommDlg.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\P2PGraph.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\MuiUnattend.exe
2008-12-08 23:52:22 ----A---- C:\Windows\system32\dwmredir.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\dnsrslvr.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\dhcpcsvc.dll
2008-12-08 23:52:21 ----A---- C:\Windows\system32\wininit.exe
2008-12-08 23:52:21 ----A---- C:\Windows\system32\spp.dll
2008-12-08 23:52:21 ----A---- C:\Windows\system32\QSHVHOST.DLL
2008-12-08 23:52:21 ----A---- C:\Windows\system32\iassvcs.dll
2008-12-08 23:52:21 ----A---- C:\Windows\system32\gpresult.exe
2008-12-08 23:52:21 ----A---- C:\Windows\system32\dwm.exe
2008-12-08 23:52:21 ----A---- C:\Windows\system32\apphelp.dll
2008-12-08 23:52:20 ----A---- C:\Windows\system32\rasdlg.dll
2008-12-08 23:52:20 ----A---- C:\Windows\system32\mscorier.dll
2008-12-08 23:52:20 ----A---- C:\Windows\system32\iashost.exe
2008-12-08 23:52:20 ----A---- C:\Windows\system32\azroleui.dll
2008-12-08 23:52:20 ----A---- C:\Windows\HelpPane.exe
2008-12-08 23:52:19 ----A---- C:\Windows\system32\srrstr.dll
2008-12-08 23:52:19 ----A---- C:\Windows\system32\spwizeng.dll
2008-12-08 23:52:19 ----A---- C:\Windows\system32\SLUI.exe
2008-12-08 23:52:19 ----A---- C:\Windows\system32\rasmontr.dll
2008-12-08 23:52:19 ----A---- C:\Windows\system32\mcbuilder.exe
2008-12-08 23:52:18 ----A---- C:\Windows\system32\wecapi.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\unbcl.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\tcpmon.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\shrink.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\msra.exe
2008-12-08 23:52:18 ----A---- C:\Windows\system32\lltdsvc.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2008-12-08 23:52:17 ----A---- C:\Windows\system32\WMPEncEn.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\raschap.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\oleacc.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\iashlpr.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\gpedit.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\brcpl.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\vsstrace.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\regsvc.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\ntvdm.exe
2008-12-08 23:52:16 ----A---- C:\Windows\system32\ipsmsnap.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\framedynos.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\fdWSD.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\EncDec.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\advpack.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\wpdshext.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\wdc.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\Storprop.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\ntlanman.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\netman.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\l2nacp.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\iedkcs32.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\ieapfltr.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\framedyn.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\dssenh.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\WlanMM.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\WLanConn.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\tcpipcfg.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\sxs.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\profsvc.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\KMSVC.DLL
2008-12-08 23:52:14 ----A---- C:\Windows\system32\certreq.exe
2008-12-08 23:52:14 ----A---- C:\Windows\system32\adsnt.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\wusa.exe
2008-12-08 23:52:13 ----A---- C:\Windows\system32\WUDFHost.exe
2008-12-08 23:52:13 ----A---- C:\Windows\system32\WsmProv.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\wlanhlp.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\userenv.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\ncsi.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\IPBusEnum.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\WerFault.exe
2008-12-08 23:52:12 ----A---- C:\Windows\system32\VAN.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\umb.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\puiobj.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\netid.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\ie4uinit.exe
2008-12-08 23:52:12 ----A---- C:\Windows\system32\fundisc.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\dps.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\cryptui.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\catsrvut.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\ws2_32.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\WinSCard.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\spbcd.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\photowiz.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\netcenter.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\msinfo32.exe
2008-12-08 23:52:11 ----A---- C:\Windows\system32\MdSched.exe
2008-12-08 23:52:11 ----A---- C:\Windows\system32\ipsecsnp.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\InkEd.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\winrs.exe
2008-12-08 23:52:10 ----A---- C:\Windows\system32\secur32.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\prnntfy.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\odbcjt32.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\ntdsapi.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\NAPSTAT.EXE
2008-12-08 23:52:09 ----A---- C:\Windows\system32\schtasks.exe
2008-12-08 23:52:09 ----A---- C:\Windows\system32\RelMon.dll
2008-12-08 23:52:09 ----A---- C:\Windows\system32\msfeeds.dll
2008-12-08 23:52:09 ----A---- C:\Windows\system32\mblctr.exe
2008-12-08 23:52:09 ----A---- C:\Windows\system32\cryptsvc.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\TSpkg.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\pdh.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\netdiagfx.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\iasacct.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\FirewallControlPanel.exe
2008-12-08 23:52:08 ----A---- C:\Windows\system32\dmdlgs.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\dhcpsapi.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\dfrgfat.exe
2008-12-08 23:52:08 ----A---- C:\Windows\system32\catsrv.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\activeds.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\wvc.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\winrm.vbs
2008-12-08 23:52:07 ----A---- C:\Windows\system32\qwave.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\netcorehc.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\NAPHLPR.DLL
2008-12-08 23:52:07 ----A---- C:\Windows\system32\msacm32.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\ifmon.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32�
  • 0

Advertisements

#2
kahdah
Posted 24 December 2008 - 07:06 AM

kahdah

    GeekU Teacher

  • Retired Staff
  • 15,822 posts
Hello fuel323

Welcome to G2Go. :)
=====================
Please download Malwarebytes' Anti-Malware from Here or Here

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatley.
  • 0

#3
fuel323
Posted 24 December 2008 - 07:34 AM

fuel323

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts
thanx alot 4 the reply
here's the log.



Malwarebytes' Anti-Malware 1.31
Database version: 1539
Windows 6.0.6001 Service Pack 1

12/24/2008 9:28:46 PM
mbam-log-2008-12-24 (21-28-46).txt

Scan type: Quick Scan
Objects scanned: 48651
Time elapsed: 4 minute(s), 29 second(s)

Memory Processes Infected: 1
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 2
Files Infected: 4

Memory Processes Infected:
C:\Users\Puyang\AppData\Local\Temp\~tmpa.exe (Trojan.FakeAlert) -> Unloaded process successfully.

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MSFox (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
C:\ProgramData\CrucialSoft Ltd (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\ProgramData\CrucialSoft Ltd\MS AntiSpyware 2009 (Rogue.Multiple) -> Quarantined and deleted successfully.

Files Infected:
C:\Windows\System32\avgrsstx.dll (Trojan.Vundo) -> Delete on reboot.
C:\Users\Puyang\AppData\Local\Temp\yyy1080.exe (Trojan.FakeAlert) -> Delete on reboot.
C:\Users\Puyang\AppData\Local\Temp\~tmpa.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Users\Puyang\AppData\Local\Temp\~tmpc.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
  • 0

#4
kahdah
Posted 24 December 2008 - 08:11 AM

kahdah

    GeekU Teacher

  • Retired Staff
  • 15,822 posts
Great please post a new rsit log.
  • 0

#5
fuel323
Posted 24 December 2008 - 08:28 AM

fuel323

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts
erm, sorry, bt wads a rsit log?
  • 0

#6
kahdah
Posted 24 December 2008 - 01:54 PM

kahdah

    GeekU Teacher

  • Retired Staff
  • 15,822 posts
It's one of the first programs you ran:

  • Download random's system information tool (RSIT) by random/random from here and save it to your desktop.
  • Double click on RSIT.exe to run RSIT.
  • Click Continue at the disclaimer screen.
  • Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)

  • 0

#7
fuel323
Posted 24 December 2008 - 11:29 PM

fuel323

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts
wired, this time i ran rsit, onli 1 log came out. onli the Logfile of random's system information tool showed. bt the bug seems to hav gone away after i ran malwarebytes.




Logfile of random's system information tool 1.05 (written by random/random)
Run by Puyang at 2008-12-25 13:23:35
Microsoft® Windows Vista™ Home Basic Service Pack 1
System drive C: has 38 GB (25%) free of 153 GB
Total RAM: 2557 MB (67% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:23:39 PM, on 12/25/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Users\Puyang\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7ZL3D42P\RSIT[2].exe
C:\Program Files\Trend Micro\HijackThis\Puyang.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [Gainward] C:\Program Files\Vtune\TBPanel.exe /A
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O13 - Gopher Prefix:
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare safety scanner control) - http://cdn.scan.onec...s/wlscctrl2.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.m...ash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DEFA90EC-36EA-4C3E-B8B3-C45D7547BE4B}: NameServer = 165.21.100.88 165.21.83.88
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 6076 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2008-12-01 304736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2007-05-30 455960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2008-11-30 1261336]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [2007-02-04 79400]
"Gainward"=C:\Program Files\Vtune\TBPanel.exe [2006-09-13 2154496]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-11-04 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-11-20 290088]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-12-01 185872]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-09-17 13580832]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-09-17 92704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-19 1233920]
"MsnMsgr"=C:\Program Files\MSN Messenger\MsnMsgr.Exe [2007-01-19 5674352]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="avgrsstx.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2008-12-24 21:19:03 ----D---- C:\Users\Puyang\AppData\Roaming\Malwarebytes
2008-12-24 21:18:58 ----D---- C:\ProgramData\Malwarebytes
2008-12-24 21:18:58 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-12-24 16:20:52 ----D---- C:\rsit
2008-12-24 16:12:55 ----D---- C:\Program Files\Trend Micro
2008-12-24 13:10:48 ----D---- C:\ProgramData\Lavasoft
2008-12-24 13:10:48 ----D---- C:\Program Files\Lavasoft
2008-12-24 13:10:21 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-12-23 22:56:53 ----D---- C:\Program Files\Windows Live Safety Center
2008-12-23 20:28:13 ----D---- C:\Program Files\Exterminate It!
2008-12-23 03:00:25 ----A---- C:\Windows\system32\mshtml.dll
2008-12-12 21:53:49 ----A---- C:\Windows\ODBC.INI
2008-12-12 21:52:42 ----D---- C:\Program Files\Microsoft ActiveSync
2008-12-12 21:52:29 ----D---- C:\Program Files\Common Files\Designer
2008-12-12 21:51:15 ----D---- C:\Windows\ShellNew
2008-12-12 21:51:07 ----D---- C:\Program Files\Microsoft Office
2008-12-11 21:57:12 ----D---- C:\Program Files\Garena
2008-12-11 21:56:33 ----D---- C:\Users\Puyang\AppData\Roaming\InstallShield
2008-12-11 21:43:29 ----A---- C:\Windows\system32\d3dx10_40.dll
2008-12-11 21:43:29 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2008-12-11 21:43:28 ----A---- C:\Windows\system32\D3DX9_40.dll
2008-12-11 21:43:24 ----A---- C:\Windows\system32\XAudio2_3.dll
2008-12-11 21:43:24 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2008-12-11 21:43:23 ----A---- C:\Windows\system32\xactengine3_3.dll
2008-12-11 21:43:23 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2008-12-11 21:43:22 ----A---- C:\Windows\system32\XAudio2_2.dll
2008-12-11 21:43:22 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2008-12-11 21:43:18 ----A---- C:\Windows\system32\xactengine3_2.dll
2008-12-11 21:43:16 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2008-12-11 21:43:15 ----A---- C:\Windows\system32\d3dx10_39.dll
2008-12-11 21:43:14 ----A---- C:\Windows\system32\D3DX9_39.dll
2008-12-11 21:42:08 ----HD---- C:\Windows\msdownld.tmp
2008-12-11 21:41:56 ----D---- C:\Windows\system32\directx
2008-12-11 18:57:21 ----D---- C:\Users\Puyang\AppData\Roaming\WinRAR
2008-12-11 14:27:44 ----D---- C:\Users\Puyang\AppData\Roaming\DAEMON Tools Lite
2008-12-11 13:11:31 ----D---- C:\Program Files\Common Files\Steam
2008-12-11 13:11:30 ----D---- C:\Program Files\Steam
2008-12-11 00:40:58 ----A---- C:\Windows\system32\tzres.dll
2008-12-10 21:11:52 ----A---- C:\Windows\system32\gdi32.dll
2008-12-10 21:11:50 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-12-10 21:11:49 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-12-10 21:11:43 ----A---- C:\Windows\system32\shell32.dll
2008-12-10 21:11:39 ----A---- C:\Windows\explorer.exe
2008-12-10 21:11:35 ----A---- C:\Windows\system32\wininet.dll
2008-12-10 21:11:35 ----A---- C:\Windows\system32\urlmon.dll
2008-12-10 21:11:35 ----A---- C:\Windows\system32\mstime.dll
2008-12-10 21:11:35 ----A---- C:\Windows\system32\iertutil.dll
2008-12-10 21:11:35 ----A---- C:\Windows\system32\ieframe.dll
2008-12-10 21:11:34 ----A---- C:\Windows\system32\jsproxy.dll
2008-12-10 21:11:31 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-12-10 21:11:31 ----A---- C:\Windows\system32\mf.dll
2008-12-10 21:11:30 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-12-10 21:11:30 ----A---- C:\Windows\system32\logagent.exe
2008-12-10 12:21:50 ----HD---- C:\$AVG8.VAULT$
2008-12-10 00:50:10 ----A---- C:\Windows\system32\msshooks.dll
2008-12-10 00:50:10 ----A---- C:\Windows\system32\msscb.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\thawbrkr.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\srchadmin.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\SearchFilterHost.exe
2008-12-10 00:50:08 ----A---- C:\Windows\system32\propsys.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\propdefs.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\msstrc.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\mssprxy.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\mssitlb.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\msshsq.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\korwbrkr.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\xmlfilter.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\wsepno.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2008-12-10 00:50:07 ----A---- C:\Windows\system32\SearchIndexer.exe
2008-12-10 00:50:07 ----A---- C:\Windows\system32\rtffilt.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\offfilt.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\nlhtml.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\msscntrs.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\mimefilt.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\chtbrkr.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\chsbrkr.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\tquery.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\mssvp.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\mssrch.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\mssphtb.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\mssph.dll
2008-12-10 00:03:28 ----D---- C:\Users\Puyang\AppData\Roaming\DivX
2008-12-10 00:02:54 ----D---- C:\Program Files\Common Files\PX Storage Engine
2008-12-10 00:02:44 ----D---- C:\Program Files\DivX
2008-12-10 00:02:17 ----D---- C:\Users\Puyang\AppData\Roaming\Leawo
2008-12-10 00:01:58 ----A---- C:\Windows\system32\xvidcore.dll
2008-12-10 00:01:55 ----D---- C:\Program Files\Leawo
2008-12-09 21:49:28 ----A---- C:\Windows\system32\rpcrt4.dll
2008-12-09 21:49:27 ----A---- C:\Windows\system32\pacerprf.dll
2008-12-09 21:41:08 ----A---- C:\Windows\system32\emdmgmt.dll
2008-12-09 21:41:08 ----A---- C:\Windows\system32\dataclen.dll
2008-12-09 21:41:08 ----A---- C:\Windows\system32\cdd.dll
2008-12-09 21:33:57 ----A---- C:\Windows\system32\wersvc.dll
2008-12-09 21:33:57 ----A---- C:\Windows\system32\Faultrep.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\wshext.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\wscript.exe
2008-12-09 21:32:47 ----A---- C:\Windows\system32\vbscript.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\scrobj.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\jscript.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\cscript.exe
2008-12-09 21:32:46 ----A---- C:\Windows\system32\scrrun.dll
2008-12-09 15:23:13 ----D---- C:\Users\Puyang\AppData\Roaming\Canon
2008-12-09 12:50:13 ----D---- C:\ProgramData\NVIDIA
2008-12-09 12:48:06 ----A---- C:\Windows\system32\nvexpbar.dll
2008-12-09 12:48:06 ----A---- C:\Windows\system32\nvcpluir.dll
2008-12-09 12:48:06 ----A---- C:\Windows\system32\nvcplui.exe
2008-12-09 12:46:12 ----A---- C:\Windows\system32\NVUNINST.EXE
2008-12-09 01:23:52 ----D---- C:\Windows\Minidump
2008-12-08 23:53:58 ----A---- C:\Windows\system32\SLsvc.exe
2008-12-08 23:53:58 ----A---- C:\Windows\system32\onex.dll
2008-12-08 23:53:50 ----A---- C:\Windows\system32\PSHED.DLL
2008-12-08 23:53:49 ----A---- C:\Windows\system32\imagesp1.dll
2008-12-08 23:53:48 ----A---- C:\Windows\system32\dfsr.exe
2008-12-08 23:53:47 ----A---- C:\Windows\system32\pidgenx.dll
2008-12-08 23:53:46 ----A---- C:\Windows\system32\sstpsvc.dll
2008-12-08 23:53:46 ----A---- C:\Windows\system32\mstscax.dll
2008-12-08 23:53:45 ----A---- C:\Windows\system32\WsmSvc.dll
2008-12-08 23:53:45 ----A---- C:\Windows\system32\winrscmd.dll
2008-12-08 23:53:44 ----A---- C:\Windows\system32\sysmain.dll
2008-12-08 23:53:44 ----A---- C:\Windows\system32\RMActivate.exe
2008-12-08 23:53:41 ----A---- C:\Windows\system32\VSSVC.exe
2008-12-08 23:53:41 ----A---- C:\Windows\system32\vssapi.dll
2008-12-08 23:53:41 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2008-12-08 23:53:40 ----A---- C:\Windows\system32\secproc.dll
2008-12-08 23:53:38 ----A---- C:\Windows\system32\RMActivate_isv.exe
2008-12-08 23:53:36 ----A---- C:\Windows\system32\iesetup.dll
2008-12-08 23:53:35 ----A---- C:\Windows\system32\secproc_isv.dll
2008-12-08 23:53:33 ----A---- C:\Windows\system32\icardres.dll
2008-12-08 23:53:33 ----A---- C:\Windows\system32\drmv2clt.dll
2008-12-08 23:53:32 ----A---- C:\Windows\system32\xpssvcs.dll
2008-12-08 23:53:32 ----A---- C:\Windows\system32\icardagt.exe
2008-12-08 23:53:32 ----A---- C:\Windows\system32\blackbox.dll
2008-12-08 23:53:31 ----A---- C:\Windows\system32\RacEngn.dll
2008-12-08 23:53:30 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2008-12-08 23:53:28 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2008-12-08 23:53:25 ----A---- C:\Windows\system32\spwizimg.dll
2008-12-08 23:53:25 ----A---- C:\Windows\system32\rdpencom.dll
2008-12-08 23:53:25 ----A---- C:\Windows\system32\lpremove.exe
2008-12-08 23:53:25 ----A---- C:\Windows\bfsvc.exe
2008-12-08 23:53:24 ----A---- C:\Windows\system32\ntdll.dll
2008-12-08 23:53:24 ----A---- C:\Windows\system32\msjet40.dll
2008-12-08 23:53:23 ----A---- C:\Windows\system32\qmgr.dll
2008-12-08 23:53:23 ----A---- C:\Windows\system32\lsasrv.dll
2008-12-08 23:53:23 ----A---- C:\Windows\system32\localspl.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\wevtsvc.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\wcncsvc.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\mscoree.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\kernel32.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\IKEEXT.DLL
2008-12-08 23:53:21 ----A---- C:\Windows\system32\TsWpfWrp.exe
2008-12-08 23:53:21 ----A---- C:\Windows\system32\recdisc.exe
2008-12-08 23:53:21 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
2008-12-08 23:53:20 ----A---- C:\Windows\system32\wmp.dll
2008-12-08 23:53:20 ----A---- C:\Windows\system32\vds.exe
2008-12-08 23:53:19 ----A---- C:\Windows\system32\wcnwiz.dll
2008-12-08 23:53:19 ----A---- C:\Windows\system32\SMBHelperClass.dll
2008-12-08 23:53:19 ----A---- C:\Windows\system32\msvbvm60.dll
2008-12-08 23:53:19 ----A---- C:\Windows\system32\mstsc.exe
2008-12-08 23:53:18 ----A---- C:\Windows\system32\msdtctm.dll
2008-12-08 23:53:17 ----A---- C:\Windows\system32\termsrv.dll
2008-12-08 23:53:17 ----A---- C:\Windows\system32\kerberos.dll
2008-12-08 23:53:17 ----A---- C:\Windows\system32\IMJP10K.DLL
2008-12-08 23:53:17 ----A---- C:\Windows\system32\advapi32.dll
2008-12-08 23:53:16 ----A---- C:\Windows\system32\mmcndmgr.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\xolehlp.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\Query.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\msdtcprx.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\MPSSVC.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\CertEnroll.dll
2008-12-08 23:53:14 ----A---- C:\Windows\system32\ole32.dll
2008-12-08 23:53:13 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2008-12-08 23:53:13 ----A---- C:\Windows\system32\netlogon.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\SSShim.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\nlmgp.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\msvcrt.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\DfsShlEx.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\user32.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\shlwapi.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\sdclt.exe
2008-12-08 23:53:11 ----A---- C:\Windows\system32\schedsvc.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2008-12-08 23:53:11 ----A---- C:\Windows\system32\milcore.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\IasMigPlugin.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\WSDApi.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\wer.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\vdsdyn.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\QAGENTRT.DLL
2008-12-08 23:53:10 ----A---- C:\Windows\system32\d3d9.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\clusapi.dll
2008-12-08 23:53:09 ----A---- C:\Windows\system32\winrsmgr.dll
2008-12-08 23:53:09 ----A---- C:\Windows\system32\mtxclu.dll
2008-12-08 23:53:09 ----A---- C:\Windows\system32\mmc.exe
2008-12-08 23:53:09 ----A---- C:\Windows\system32\diagperf.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\vdsbas.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\swprv.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\SLC.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\msi.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\comctl32.dll
2008-12-08 23:53:07 ----A---- C:\Windows\system32\MSVidCtl.dll
2008-12-08 23:53:07 ----A---- C:\Windows\system32\gpsvc.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\XPSSHHDR.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\sbe.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\samsrv.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\msdtckrm.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\mfc42u.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2008-12-08 23:53:06 ----A---- C:\Windows\system32\esent.dll
2008-12-08 23:53:05 ----A---- C:\Windows\system32\wecutil.exe
2008-12-08 23:53:05 ----A---- C:\Windows\system32\usp10.dll
2008-12-08 23:53:05 ----A---- C:\Windows\system32\sdengin2.dll
2008-12-08 23:53:05 ----A---- C:\Windows\system32\gacinstall.dll
2008-12-08 23:53:05 ----A---- C:\Windows\system32\cmicryptinstall.dll
2008-12-08 23:53:04 ----A---- C:\Windows\system32\mfc42.dll
2008-12-08 23:53:04 ----A---- C:\Windows\system32\comsvcs.dll
2008-12-08 23:53:04 ----A---- C:\Windows\system32\cmipnpinstall.dll
2008-12-08 23:53:03 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2008-12-08 23:53:03 ----A---- C:\Windows\system32\crypt32.dll
2008-12-08 23:53:03 ----A---- C:\Windows\system32\certutil.exe
2008-12-08 23:53:02 ----A---- C:\Windows\system32\wmdrmsdk.dll
2008-12-08 23:53:02 ----A---- C:\Windows\system32\oleaut32.dll
2008-12-08 23:53:02 ----A---- C:\Windows\system32\mswsock.dll
2008-12-08 23:53:02 ----A---- C:\Windows\system32\FirewallAPI.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\wecsvc.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\sqlceqp30.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\setupapi.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\sdohlp.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\lsm.exe
2008-12-08 23:53:01 ----A---- C:\Windows\system32\bcrypt.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\wmpmde.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\thumbcache.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\schannel.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\p2psvc.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\msv1_0.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\iphlpsvc.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\eapp3hst.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\WinSAT.exe
2008-12-08 23:52:59 ----A---- C:\Windows\system32\vdsutil.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\riched20.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\imapi2fs.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\d3d10_1.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\autofmt.exe
2008-12-08 23:52:59 ----A---- C:\Windows\system32\autoconv.exe
2008-12-08 23:52:59 ----A---- C:\Windows\system32\autochk.exe
2008-12-08 23:52:58 ----A---- C:\Windows\system32\authui.dll
2008-12-08 23:52:58 ----A---- C:\Windows\system32\authfwcfg.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\WSDMon.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\wevtapi.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\mscories.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\eapphost.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\dmvdsitf.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\d3d10_1core.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\comuid.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\comdlg32.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\browseui.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\wevtfwd.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\untfs.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\uexfat.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\rasmans.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\iassam.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\eappcfg.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\wlansvc.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\whealogr.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\sqlcese30.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\pcaui.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\DfrgNtfs.exe
2008-12-08 23:52:53 ----A---- C:\Windows\system32\dot3svc.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\zipfldr.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\WsmAuto.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\winhttp.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\rdpwsx.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\nlasvc.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\mssha.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\msdrm.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\evr.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\dfrgui.exe
2008-12-08 23:52:50 ----A---- C:\Windows\system32\rpcss.dll
2008-12-08 23:52:50 ----A---- C:\Windows\system32\rasppp.dll
2008-12-08 23:52:50 ----A---- C:\Windows\system32\ncrypt.dll
2008-12-08 23:52:50 ----A---- C:\Windows\system32\msrepl40.dll
2008-12-08 23:52:50 ----A---- C:\Windows\system32\BFE.DLL
2008-12-08 23:52:50 ----A---- C:\Windows\system32\audiosrv.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\WsmWmiPl.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\wmdrmdev.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\rastls.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\printui.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\ddraw.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\WebClnt.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\themecpl.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\sqlsrv32.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\QAGENT.DLL
2008-12-08 23:52:48 ----A---- C:\Windows\system32\objsel.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\iasnap.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\dbghelp.dll
2008-12-08 23:52:47 ----A---- C:\Windows\system32\w32time.dll
2008-12-08 23:52:47 ----A---- C:\Windows\system32\PresentationHost.exe
2008-12-08 23:52:47 ----A---- C:\Windows\system32\ncryptui.dll
2008-12-08 23:52:47 ----A---- C:\Windows\system32\icm32.dll
2008-12-08 23:52:46 ----A---- C:\Windows\system32\wmdrmnet.dll
2008-12-08 23:52:46 ----A---- C:\Windows\system32\WerFaultSecure.exe
2008-12-08 23:52:46 ----A---- C:\Windows\system32\spoolss.dll
2008-12-08 23:52:46 ----A---- C:\Windows\system32\iprtrmgr.dll
2008-12-08 23:52:46 ----A---- C:\Windows\system32\azroles.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\winsrv.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\taskschd.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\msctf.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\infocardapi.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\bcdedit.exe
2008-12-08 23:52:45 ----A---- C:\Windows\system32\basecsp.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\wlangpui.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\winsta.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\scksp.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\netprofm.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\mstlsapi.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\dbgeng.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\AudioEng.dll
2008-12-08 23:52:43 ----A---- C:\Windows\system32\rsaenh.dll
2008-12-08 23:52:43 ----A---- C:\Windows\system32\netcfgx.dll
2008-12-08 23:52:42 ----A---- C:\Windows\system32\winlogon.exe
2008-12-08 23:52:42 ----A---- C:\Windows\system32\wercon.exe
2008-12-08 23:52:42 ----A---- C:\Windows\system32\taskcomp.dll
2008-12-08 23:52:42 ----A---- C:\Windows\system32\lpksetup.exe
2008-12-08 23:52:42 ----A---- C:\Windows\system32\dfshim.dll
2008-12-08 23:52:42 ----A---- C:\Windows\system32\cdosys.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\wlansec.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\msdtcuiu.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\mprddm.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\certcli.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\apds.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\tsgqec.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\shdocvw.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\iasrad.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\eapsvc.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\AUDIOKSE.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\aaclient.dll
2008-12-08 23:52:39 ----A---- C:\Windows\system32\bcdsrv.dll
2008-12-08 23:52:35 ----A---- C:\Windows\system32\uDWM.dll
2008-12-08 23:52:35 ----A---- C:\Windows\system32\certmgr.dll
2008-12-08 23:52:34 ----A---- C:\Windows\system32\Wldap32.dll
2008-12-08 23:52:34 ----A---- C:\Windows\system32\umpnpmgr.dll
2008-12-08 23:52:34 ----A---- C:\Windows\system32\msidcrl30.dll
2008-12-08 23:52:34 ----A---- C:\Windows\system32\dnsapi.dll
2008-12-08 23:52:33 ----A---- C:\Windows\system32\WMVDECOD.DLL
2008-12-08 23:52:33 ----A---- C:\Windows\system32\pla.dll
2008-12-08 23:52:33 ----A---- C:\Windows\system32\dxgi.dll
2008-12-08 23:52:32 ----A---- C:\Windows\system32\wmicmiplugin.dll
2008-12-08 23:52:32 ----A---- C:\Windows\system32\netshell.dll
2008-12-08 23:52:32 ----A---- C:\Windows\system32\dot3gpui.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\winmm.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\shsvcs.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\ntprint.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\MMDevAPI.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\cryptnet.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\comsnap.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\wscsvc.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\wscisvif.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\synceng.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\services.exe
2008-12-08 23:52:30 ----A---- C:\Windows\system32\pnidui.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\cmifw.dll
2008-12-08 23:52:29 ----A---- C:\Windows\system32\WMVSDECD.DLL
2008-12-08 23:52:29 ----A---- C:\Windows\system32\taskeng.exe
2008-12-08 23:52:29 ----A---- C:\Windows\system32\msjtes40.dll
2008-12-08 23:52:29 ----A---- C:\Windows\system32\msconfig.exe
2008-12-08 23:52:29 ----A---- C:\Windows\system32\iassdo.dll
2008-12-08 23:52:29 ----A---- C:\Windows\system32\cipher.exe
2008-12-08 23:52:28 ----A---- C:\Windows\system32\uxtheme.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\tdh.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\SessEnv.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\rasapi32.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\imapi2.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\dot3api.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\dmdskmgr.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\cmd.exe
2008-12-08 23:52:27 ----A---- C:\Windows\system32\wlanmsm.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\wkssvc.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\wevtutil.exe
2008-12-08 23:52:27 ----A---- C:\Windows\system32\srvsvc.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\qdvd.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\msscp.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\cbsra.exe
2008-12-08 23:52:27 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\WUDFx.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\wlancfg.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\mshtmled.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\localsec.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\loadperf.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\fontext.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\diskpart.exe
2008-12-08 23:52:26 ----A---- C:\Windows\system32\comres.dll
2008-12-08 23:52:25 ----A---- C:\Windows\system32\wlanapi.dll
2008-12-08 23:52:25 ----A---- C:\Windows\system32\rpchttp.dll
2008-12-08 23:52:25 ----A---- C:\Windows\system32\rdpdd.dll
2008-12-08 23:52:25 ----A---- C:\Windows\system32\hnetcfg.dll
2008-12-08 23:52:24 ----A---- C:\Windows\system32\wsqmcons.exe
2008-12-08 23:52:24 ----A---- C:\Windows\system32\WMADMOD.DLL
2008-12-08 23:52:24 ----A---- C:\Windows\system32\wlanpref.dll
2008-12-08 23:52:24 ----A---- C:\Windows\system32\WinSATAPI.dll
2008-12-08 23:52:24 ----A---- C:\Windows\system32\NAPMONTR.DLL
2008-12-08 23:52:24 ----A---- C:\Windows\system32\dsound.dll
2008-12-08 23:52:23 ----A---- C:\Windows\system32\RDPENCDD.dll
2008-12-08 23:52:23 ----A---- C:\Windows\system32\profprov.dll
2008-12-08 23:52:23 ----A---- C:\Windows\system32\filemgmt.dll
2008-12-08 23:52:23 ----A---- C:\Windows\system32\avifil32.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\wsecedit.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2008-12-08 23:52:22 ----A---- C:\Windows\system32\tracerpt.exe
2008-12-08 23:52:22 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\SLCommDlg.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\P2PGraph.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\MuiUnattend.exe
2008-12-08 23:52:22 ----A---- C:\Windows\system32\dwmredir.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\dnsrslvr.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\dhcpcsvc.dll
2008-12-08 23:52:21 ----A---- C:\Windows\system32\wininit.exe
2008-12-08 23:52:21 ----A---- C:\Windows\system32\spp.dll
2008-12-08 23:52:21 ----A---- C:\Windows\system32\QSHVHOST.DLL
2008-12-08 23:52:21 ----A---- C:\Windows\system32\iassvcs.dll
2008-12-08 23:52:21 ----A---- C:\Windows\system32\gpresult.exe
2008-12-08 23:52:21 ----A---- C:\Windows\system32\dwm.exe
2008-12-08 23:52:21 ----A---- C:\Windows\system32\apphelp.dll
2008-12-08 23:52:20 ----A---- C:\Windows\system32\rasdlg.dll
2008-12-08 23:52:20 ----A---- C:\Windows\system32\mscorier.dll
2008-12-08 23:52:20 ----A---- C:\Windows\system32\iashost.exe
2008-12-08 23:52:20 ----A---- C:\Windows\system32\azroleui.dll
2008-12-08 23:52:20 ----A---- C:\Windows\HelpPane.exe
2008-12-08 23:52:19 ----A---- C:\Windows\system32\srrstr.dll
2008-12-08 23:52:19 ----A---- C:\Windows\system32\spwizeng.dll
2008-12-08 23:52:19 ----A---- C:\Windows\system32\SLUI.exe
2008-12-08 23:52:19 ----A---- C:\Windows\system32\rasmontr.dll
2008-12-08 23:52:19 ----A---- C:\Windows\system32\mcbuilder.exe
2008-12-08 23:52:18 ----A---- C:\Windows\system32\wecapi.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\unbcl.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\tcpmon.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\shrink.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\msra.exe
2008-12-08 23:52:18 ----A---- C:\Windows\system32\lltdsvc.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2008-12-08 23:52:17 ----A---- C:\Windows\system32\WMPEncEn.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\raschap.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\oleacc.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\iashlpr.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\gpedit.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\brcpl.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\vsstrace.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\regsvc.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\ntvdm.exe
2008-12-08 23:52:16 ----A---- C:\Windows\system32\ipsmsnap.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\framedynos.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\fdWSD.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\EncDec.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\advpack.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\wpdshext.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\wdc.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\Storprop.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\ntlanman.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\netman.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\l2nacp.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\iedkcs32.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\ieapfltr.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\framedyn.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\dssenh.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\WlanMM.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\WLanConn.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\tcpipcfg.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\sxs.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\profsvc.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\KMSVC.DLL
2008-12-08 23:52:14 ----A---- C:\Windows\system32\certreq.exe
2008-12-08 23:52:14 ----A---- C:\Windows\system32\adsnt.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\wusa.exe
2008-12-08 23:52:13 ----A---- C:\Windows\system32\WUDFHost.exe
2008-12-08 23:52:13 ----A---- C:\Windows\system32\WsmProv.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\wlanhlp.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\userenv.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\ncsi.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\IPBusEnum.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\WerFault.exe
2008-12-08 23:52:12 ----A---- C:\Windows\system32\VAN.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\umb.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\puiobj.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\netid.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\ie4uinit.exe
2008-12-08 23:52:12 ----A---- C:\Windows\system32\fundisc.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\dps.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\cryptui.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\catsrvut.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\ws2_32.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\WinSCard.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\spbcd.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\photowiz.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\netcenter.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\msinfo32.exe
2008-12-08 23:52:11 ----A---- C:\Windows\system32\MdSched.exe
2008-12-08 23:52:11 ----A---- C:\Windows\system32\ipsecsnp.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\InkEd.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\winrs.exe
2008-12-08 23:52:10 ----A---- C:\Windows\system32\secur32.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\prnntfy.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\odbcjt32.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\ntdsapi.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\NAPSTAT.EXE
2008-12-08 23:52:09 ----A---- C:\Windows\system32\schtasks.exe
2008-12-08 23:52:09 ----A---- C:\Windows\system32\RelMon.dll
2008-12-08 23:52:09 ----A---- C:\Windows\system32\msfeeds.dll
2008-12-08 23:52:09 ----A---- C:\Windows\system32\mblctr.exe
2008-12-08 23:52:09 ----A---- C:\Windows\system32\cryptsvc.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\TSpkg.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\pdh.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\netdiagfx.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\iasacct.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\FirewallControlPanel.exe
2008-12-08 23:52:08 ----A---- C:\Windows\system32\dmdlgs.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\dhcpsapi.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\dfrgfat.exe
2008-12-08 23:52:08 ----A---- C:\Windows\system32\catsrv.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\activeds.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\wvc.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\winrm.vbs
2008-12-08 23:52:07 ----A---- C:\Windows\system32\qwave.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\netcorehc.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\NAPHLPR.DLL
2008-12-08 23:52:07 ----A---- C:\Windows\system32\msacm32.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\ifmon.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\fdWCN.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\dot3msm.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\dot3cfg.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\AudioSes.dll
2008-12-08 23:52:06 ----A---- C:\Windows\system32\wow32.dll
2008-12-08 23:52:06 ----A---- C:\Windows\system32\shsetup.dll
2008-12-08 23:52:06 ----A---- C:\Windows\system32\rastapi.dll
2008-12-08 23:52:06 ----A---- C:\Windows\system32\adsldp.dll
2008-12-08 23:52:05 ----A---- C:\Windows\system32\wscntfy.dll
2008-12-08 23:52:05 ----A---- C:\Windows\system32\QUTIL.DLL
2008-12-08 23:52:05 ----A---- C:\Windows\system32\ntshrui.dll
2008-12-08 23:52:05 ----A---- C:\Windows\system32\msdt.dll
2008-12-08 23:52:05 ----A---- C:\Windows\system32\iasdatastore.dll
2008-12-08 23:52:05 ----A---- C:\Windows\system32\els.dll
2008-12-08 23:52:05 ----A---- C:\Windows\system32\clbcatq.dll
2008-12-08 23:52:04 ----A---- C:\Windows\system32\stobject.dll
2008-12-08 23:52:04 ----A---- C:\Windows\system32\sdrsvc.dll
2008-12-08 23:52:04 ----A---- C:\Windows\system32\net1.exe
2008-12-08 23:52:04 ----A---- C:\Windows\system32\ipnathlp.dll
2008-12-08 23:52:04 ----A---- C:\Windows\system32\iasrecst.dll
2008-12-08 23:52:04 ----A---- C:\Windows\system32\fdSSDP.dll
2008-12-08 23:52:03 ----A---- C:\Windows\system32\wlgpclnt.dll
2008-12-08 23:52:03 ----A---- C:\Windows\system32\wlanui.dll
2008-12-08 23:52:03 ----A---- C:\Windows\system32\smss.exe
2008-12-08 23:52:03 ----A---- C:\Windows\system32\psisdecd.dll
2008-12-08 23:52:03 ----A---- C:\Windows\system32\nci.dll
2008-12-08 23:52:03 ----A---- C:\Windows\system32\dsprop.dll
2008-12-08 23:52:03 ----A---- C:\Windows\system32\Defrag.exe
2008-12-08 23:52:03 ----A---- C:\Windows\system32\adsldpc.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\upnphost.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\systemcpl.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\rasman.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\P2P.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\msftedit.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\mprmsg.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\fde.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\CompatUI.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\ActiveContentWizard.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\Wpc.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\wdigest.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\t2embed.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\setupcl.exe
2008-12-08 23:52:01 ----A---- C:\Windows\system32\rascfg.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\oleprn.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\mprdim.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\MigAutoPlay.exe
2008-12-08 23:52:01 ----A---- C:\Windows\system32\loghours.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\L2SecHC.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\gpapi.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\dxdiag.exe
2008-12-08 23:52:01 ----A---- C:\Windows\system32\DFDWiz.exe
2008-12-08 23:52:00 ----A---- C:\Windows\system32\rtm.dll
2008-12-08 23:52:00 ----A---- C:\Windows\system32\msutb.dll
2008-12-08 23:52:00 ----A---- C:\Windows\system32\devmgr.dll
2008-12-08 23:51:59 ----A---- C:\Windows\system32\wiaservc.dll
2008-12-08 23:51:59 ----A---- C:\Windows\system32\scansetting.dll
2008-12-08 23:51:59 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2008-12-08 23:51:59 ----A---- C:\Windows\system32\msihnd.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\wscapi.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\WinFXDocObj.exe
2008-12-08 23:51:58 ----A---- C:\Windows\system32\wdi.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\mswmdm.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\kdusb.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\ifsutil.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\dimsroam.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\CertEnrollUI.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\actxprxy.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\wlandlg.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\vssadmin.exe
2008-12-08 23:51:57 ----A---- C:\Windows\system32\usbmon.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\SyncCenter.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\spoolsv.exe
2008-12-08 23:51:57 ----A---- C:\Windows\system32\regapi.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\mycomput.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\msls31.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\imagehlp.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\BOOTVID.DLL
2008-12-08 23:51:57 ----A---- C:\Windows\system32\audiodg.exe
2008-12-08 23:51:56 ----A---- C:\Windows\system32\uudf.dll
2008-12-08 23:51:56 ----A---- C:\Windows\system32\scecli.dll
2008-12-08 23:51:56 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2008-12-08 23:51:56 ----A---- C:\Windows\system32\newdev.dll
2008-12-08 23:51:56 ----A---- C:\Windows\system32\mspaint.exe
2008-12-08 23:51:55 ----A---- C:\Windows\system32\termmgr.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\tapisrv.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\sud.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\ssdpsrv.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\SCardSvr.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\samlib.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\puiapi.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\mtxoci.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\mstask.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\kdcom.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\duser.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\adtschema.dll
2008-12-08 23:51:50 ----A---- C:\Windows\system32\Robocopy.exe
2008-12-08 23:51:50 ----A---- C:\Windows\system32\input.dll
2008-12-08 23:51:50 ----A---- C:\Windows\system32\inetpp.dll
2008-12-08 23:51:50 ----A---- C:\Windows\system32\cic.dll
2008-12-08 23:51:50 ----A---- C:\Windows\system32\AzSqlExt.dll
2008-12-08 23:51:49 ----A---- C:\Windows\system32\wisptis.exe
2008-12-08 23:51:49 ----A---- C:\Windows\system32\SLUINotify.dll
2008-12-08 23:51:49 ----A---- C:\Windows\system32\iasads.dll
2008-12-08 23:51:49 ----A---- C:\Windows\system32\cscapi.dll
2008-12-08 23:51:49 ----A---- C:\Windows\system32\authz.dll
2008-12-08 23:51:48 ----A---- C:\Windows\system32\WUDFPlatform.dll
2008-12-08 23:51:48 ----A---- C:\Windows\system32\sdshext.dll
2008-12-08 23:51:48 ----A---- C:\Windows\system32\netiohlp.dll
2008-12-08 23:51:48 ----A---- C:\Windows\system32\msdtcl
  • 0

#8
kahdah
Posted 25 December 2008 - 01:08 PM

kahdah

    GeekU Teacher

  • Retired Staff
  • 15,822 posts
Hi can you please attach that log it was cut off.
  • 0

#9
fuel323
Posted 25 December 2008 - 08:40 PM

fuel323

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts
oh, sorry. here it is.



Logfile of random's system information tool 1.05 (written by random/random)
Run by Puyang at 2008-12-26 10:36:58
Microsoft® Windows Vista™ Home Basic Service Pack 1
System drive C: has 34 GB (22%) free of 153 GB
Total RAM: 2557 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:37:02 AM, on 12/26/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10a.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Users\Puyang\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CE64SUC2\RSIT[1].exe
C:\Program Files\Trend Micro\HijackThis\Puyang.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKLM\..\Run: [Gainward] C:\Program Files\Vtune\TBPanel.exe /A
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O13 - Gopher Prefix:
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare safety scanner control) - http://cdn.scan.onec...s/wlscctrl2.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.m...ash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{DEFA90EC-36EA-4C3E-B8B3-C45D7547BE4B}: NameServer = 165.21.100.88 165.21.83.88
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 6167 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2008-12-01 304736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2007-05-30 455960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2008-11-30 1261336]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [2007-02-04 79400]
"Gainward"=C:\Program Files\Vtune\TBPanel.exe [2006-09-13 2154496]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-11-04 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-11-20 290088]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-12-01 185872]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-09-17 13580832]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-09-17 92704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-19 1233920]
"MsnMsgr"=C:\Program Files\MSN Messenger\MsnMsgr.Exe [2007-01-19 5674352]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="avgrsstx.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2008-12-24 21:19:03 ----D---- C:\Users\Puyang\AppData\Roaming\Malwarebytes
2008-12-24 21:18:58 ----D---- C:\ProgramData\Malwarebytes
2008-12-24 21:18:58 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-12-24 16:20:52 ----D---- C:\rsit
2008-12-24 16:12:55 ----D---- C:\Program Files\Trend Micro
2008-12-24 13:10:48 ----D---- C:\ProgramData\Lavasoft
2008-12-24 13:10:48 ----D---- C:\Program Files\Lavasoft
2008-12-24 13:10:21 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-12-23 22:56:53 ----D---- C:\Program Files\Windows Live Safety Center
2008-12-23 20:28:13 ----D---- C:\Program Files\Exterminate It!
2008-12-23 03:00:25 ----A---- C:\Windows\system32\mshtml.dll
2008-12-12 21:53:49 ----A---- C:\Windows\ODBC.INI
2008-12-12 21:52:42 ----D---- C:\Program Files\Microsoft ActiveSync
2008-12-12 21:52:29 ----D---- C:\Program Files\Common Files\Designer
2008-12-12 21:51:15 ----D---- C:\Windows\ShellNew
2008-12-12 21:51:07 ----D---- C:\Program Files\Microsoft Office
2008-12-11 21:57:12 ----D---- C:\Program Files\Garena
2008-12-11 21:56:33 ----D---- C:\Users\Puyang\AppData\Roaming\InstallShield
2008-12-11 21:43:29 ----A---- C:\Windows\system32\d3dx10_40.dll
2008-12-11 21:43:29 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2008-12-11 21:43:28 ----A---- C:\Windows\system32\D3DX9_40.dll
2008-12-11 21:43:24 ----A---- C:\Windows\system32\XAudio2_3.dll
2008-12-11 21:43:24 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2008-12-11 21:43:23 ----A---- C:\Windows\system32\xactengine3_3.dll
2008-12-11 21:43:23 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2008-12-11 21:43:22 ----A---- C:\Windows\system32\XAudio2_2.dll
2008-12-11 21:43:22 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2008-12-11 21:43:18 ----A---- C:\Windows\system32\xactengine3_2.dll
2008-12-11 21:43:16 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2008-12-11 21:43:15 ----A---- C:\Windows\system32\d3dx10_39.dll
2008-12-11 21:43:14 ----A---- C:\Windows\system32\D3DX9_39.dll
2008-12-11 21:42:08 ----HD---- C:\Windows\msdownld.tmp
2008-12-11 21:41:56 ----D---- C:\Windows\system32\directx
2008-12-11 18:57:21 ----D---- C:\Users\Puyang\AppData\Roaming\WinRAR
2008-12-11 14:27:44 ----D---- C:\Users\Puyang\AppData\Roaming\DAEMON Tools Lite
2008-12-11 13:11:31 ----D---- C:\Program Files\Common Files\Steam
2008-12-11 13:11:30 ----D---- C:\Program Files\Steam
2008-12-11 00:40:58 ----A---- C:\Windows\system32\tzres.dll
2008-12-10 21:11:52 ----A---- C:\Windows\system32\gdi32.dll
2008-12-10 21:11:50 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-12-10 21:11:49 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-12-10 21:11:43 ----A---- C:\Windows\system32\shell32.dll
2008-12-10 21:11:39 ----A---- C:\Windows\explorer.exe
2008-12-10 21:11:35 ----A---- C:\Windows\system32\wininet.dll
2008-12-10 21:11:35 ----A---- C:\Windows\system32\urlmon.dll
2008-12-10 21:11:35 ----A---- C:\Windows\system32\mstime.dll
2008-12-10 21:11:35 ----A---- C:\Windows\system32\iertutil.dll
2008-12-10 21:11:35 ----A---- C:\Windows\system32\ieframe.dll
2008-12-10 21:11:34 ----A---- C:\Windows\system32\jsproxy.dll
2008-12-10 21:11:31 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-12-10 21:11:31 ----A---- C:\Windows\system32\mf.dll
2008-12-10 21:11:30 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-12-10 21:11:30 ----A---- C:\Windows\system32\logagent.exe
2008-12-10 12:21:50 ----HD---- C:\$AVG8.VAULT$
2008-12-10 00:50:10 ----A---- C:\Windows\system32\msshooks.dll
2008-12-10 00:50:10 ----A---- C:\Windows\system32\msscb.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\thawbrkr.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\srchadmin.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\SearchFilterHost.exe
2008-12-10 00:50:08 ----A---- C:\Windows\system32\propsys.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\propdefs.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\msstrc.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\mssprxy.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\mssitlb.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\msshsq.dll
2008-12-10 00:50:08 ----A---- C:\Windows\system32\korwbrkr.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\xmlfilter.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\wsepno.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2008-12-10 00:50:07 ----A---- C:\Windows\system32\SearchIndexer.exe
2008-12-10 00:50:07 ----A---- C:\Windows\system32\rtffilt.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\offfilt.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\nlhtml.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\msscntrs.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\mimefilt.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\chtbrkr.dll
2008-12-10 00:50:07 ----A---- C:\Windows\system32\chsbrkr.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\tquery.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\mssvp.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\mssrch.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\mssphtb.dll
2008-12-10 00:50:06 ----A---- C:\Windows\system32\mssph.dll
2008-12-10 00:03:28 ----D---- C:\Users\Puyang\AppData\Roaming\DivX
2008-12-10 00:02:54 ----D---- C:\Program Files\Common Files\PX Storage Engine
2008-12-10 00:02:44 ----D---- C:\Program Files\DivX
2008-12-10 00:02:17 ----D---- C:\Users\Puyang\AppData\Roaming\Leawo
2008-12-10 00:01:58 ----A---- C:\Windows\system32\xvidcore.dll
2008-12-10 00:01:55 ----D---- C:\Program Files\Leawo
2008-12-09 21:49:28 ----A---- C:\Windows\system32\rpcrt4.dll
2008-12-09 21:49:27 ----A---- C:\Windows\system32\pacerprf.dll
2008-12-09 21:41:08 ----A---- C:\Windows\system32\emdmgmt.dll
2008-12-09 21:41:08 ----A---- C:\Windows\system32\dataclen.dll
2008-12-09 21:41:08 ----A---- C:\Windows\system32\cdd.dll
2008-12-09 21:33:57 ----A---- C:\Windows\system32\wersvc.dll
2008-12-09 21:33:57 ----A---- C:\Windows\system32\Faultrep.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\wshext.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\wscript.exe
2008-12-09 21:32:47 ----A---- C:\Windows\system32\vbscript.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\scrobj.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\jscript.dll
2008-12-09 21:32:47 ----A---- C:\Windows\system32\cscript.exe
2008-12-09 21:32:46 ----A---- C:\Windows\system32\scrrun.dll
2008-12-09 15:23:13 ----D---- C:\Users\Puyang\AppData\Roaming\Canon
2008-12-09 12:50:13 ----D---- C:\ProgramData\NVIDIA
2008-12-09 12:48:06 ----A---- C:\Windows\system32\nvexpbar.dll
2008-12-09 12:48:06 ----A---- C:\Windows\system32\nvcpluir.dll
2008-12-09 12:48:06 ----A---- C:\Windows\system32\nvcplui.exe
2008-12-09 12:46:12 ----A---- C:\Windows\system32\NVUNINST.EXE
2008-12-09 01:23:52 ----D---- C:\Windows\Minidump
2008-12-08 23:53:58 ----A---- C:\Windows\system32\SLsvc.exe
2008-12-08 23:53:58 ----A---- C:\Windows\system32\onex.dll
2008-12-08 23:53:50 ----A---- C:\Windows\system32\PSHED.DLL
2008-12-08 23:53:49 ----A---- C:\Windows\system32\imagesp1.dll
2008-12-08 23:53:48 ----A---- C:\Windows\system32\dfsr.exe
2008-12-08 23:53:47 ----A---- C:\Windows\system32\pidgenx.dll
2008-12-08 23:53:46 ----A---- C:\Windows\system32\sstpsvc.dll
2008-12-08 23:53:46 ----A---- C:\Windows\system32\mstscax.dll
2008-12-08 23:53:45 ----A---- C:\Windows\system32\WsmSvc.dll
2008-12-08 23:53:45 ----A---- C:\Windows\system32\winrscmd.dll
2008-12-08 23:53:44 ----A---- C:\Windows\system32\sysmain.dll
2008-12-08 23:53:44 ----A---- C:\Windows\system32\RMActivate.exe
2008-12-08 23:53:41 ----A---- C:\Windows\system32\VSSVC.exe
2008-12-08 23:53:41 ----A---- C:\Windows\system32\vssapi.dll
2008-12-08 23:53:41 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2008-12-08 23:53:40 ----A---- C:\Windows\system32\secproc.dll
2008-12-08 23:53:38 ----A---- C:\Windows\system32\RMActivate_isv.exe
2008-12-08 23:53:36 ----A---- C:\Windows\system32\iesetup.dll
2008-12-08 23:53:35 ----A---- C:\Windows\system32\secproc_isv.dll
2008-12-08 23:53:33 ----A---- C:\Windows\system32\icardres.dll
2008-12-08 23:53:33 ----A---- C:\Windows\system32\drmv2clt.dll
2008-12-08 23:53:32 ----A---- C:\Windows\system32\xpssvcs.dll
2008-12-08 23:53:32 ----A---- C:\Windows\system32\icardagt.exe
2008-12-08 23:53:32 ----A---- C:\Windows\system32\blackbox.dll
2008-12-08 23:53:31 ----A---- C:\Windows\system32\RacEngn.dll
2008-12-08 23:53:30 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2008-12-08 23:53:28 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2008-12-08 23:53:25 ----A---- C:\Windows\system32\spwizimg.dll
2008-12-08 23:53:25 ----A---- C:\Windows\system32\rdpencom.dll
2008-12-08 23:53:25 ----A---- C:\Windows\system32\lpremove.exe
2008-12-08 23:53:25 ----A---- C:\Windows\bfsvc.exe
2008-12-08 23:53:24 ----A---- C:\Windows\system32\ntdll.dll
2008-12-08 23:53:24 ----A---- C:\Windows\system32\msjet40.dll
2008-12-08 23:53:23 ----A---- C:\Windows\system32\qmgr.dll
2008-12-08 23:53:23 ----A---- C:\Windows\system32\lsasrv.dll
2008-12-08 23:53:23 ----A---- C:\Windows\system32\localspl.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\wevtsvc.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\wcncsvc.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\mscoree.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\kernel32.dll
2008-12-08 23:53:22 ----A---- C:\Windows\system32\IKEEXT.DLL
2008-12-08 23:53:21 ----A---- C:\Windows\system32\TsWpfWrp.exe
2008-12-08 23:53:21 ----A---- C:\Windows\system32\recdisc.exe
2008-12-08 23:53:21 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
2008-12-08 23:53:20 ----A---- C:\Windows\system32\wmp.dll
2008-12-08 23:53:20 ----A---- C:\Windows\system32\vds.exe
2008-12-08 23:53:19 ----A---- C:\Windows\system32\wcnwiz.dll
2008-12-08 23:53:19 ----A---- C:\Windows\system32\SMBHelperClass.dll
2008-12-08 23:53:19 ----A---- C:\Windows\system32\msvbvm60.dll
2008-12-08 23:53:19 ----A---- C:\Windows\system32\mstsc.exe
2008-12-08 23:53:18 ----A---- C:\Windows\system32\msdtctm.dll
2008-12-08 23:53:17 ----A---- C:\Windows\system32\termsrv.dll
2008-12-08 23:53:17 ----A---- C:\Windows\system32\kerberos.dll
2008-12-08 23:53:17 ----A---- C:\Windows\system32\IMJP10K.DLL
2008-12-08 23:53:17 ----A---- C:\Windows\system32\advapi32.dll
2008-12-08 23:53:16 ----A---- C:\Windows\system32\mmcndmgr.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\xolehlp.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\Query.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\msdtcprx.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\MPSSVC.dll
2008-12-08 23:53:15 ----A---- C:\Windows\system32\CertEnroll.dll
2008-12-08 23:53:14 ----A---- C:\Windows\system32\ole32.dll
2008-12-08 23:53:13 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2008-12-08 23:53:13 ----A---- C:\Windows\system32\netlogon.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\SSShim.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\nlmgp.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\msvcrt.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2008-12-08 23:53:12 ----A---- C:\Windows\system32\DfsShlEx.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\user32.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\shlwapi.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\sdclt.exe
2008-12-08 23:53:11 ----A---- C:\Windows\system32\schedsvc.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2008-12-08 23:53:11 ----A---- C:\Windows\system32\milcore.dll
2008-12-08 23:53:11 ----A---- C:\Windows\system32\IasMigPlugin.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\WSDApi.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\wer.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\vdsdyn.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\QAGENTRT.DLL
2008-12-08 23:53:10 ----A---- C:\Windows\system32\d3d9.dll
2008-12-08 23:53:10 ----A---- C:\Windows\system32\clusapi.dll
2008-12-08 23:53:09 ----A---- C:\Windows\system32\winrsmgr.dll
2008-12-08 23:53:09 ----A---- C:\Windows\system32\mtxclu.dll
2008-12-08 23:53:09 ----A---- C:\Windows\system32\mmc.exe
2008-12-08 23:53:09 ----A---- C:\Windows\system32\diagperf.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\vdsbas.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\swprv.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\SLC.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\msi.dll
2008-12-08 23:53:08 ----A---- C:\Windows\system32\comctl32.dll
2008-12-08 23:53:07 ----A---- C:\Windows\system32\MSVidCtl.dll
2008-12-08 23:53:07 ----A---- C:\Windows\system32\gpsvc.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\XPSSHHDR.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\sbe.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\samsrv.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\msdtckrm.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\mfc42u.dll
2008-12-08 23:53:06 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2008-12-08 23:53:06 ----A---- C:\Windows\system32\esent.dll
2008-12-08 23:53:05 ----A---- C:\Windows\system32\wecutil.exe
2008-12-08 23:53:05 ----A---- C:\Windows\system32\usp10.dll
2008-12-08 23:53:05 ----A---- C:\Windows\system32\sdengin2.dll
2008-12-08 23:53:05 ----A---- C:\Windows\system32\gacinstall.dll
2008-12-08 23:53:05 ----A---- C:\Windows\system32\cmicryptinstall.dll
2008-12-08 23:53:04 ----A---- C:\Windows\system32\mfc42.dll
2008-12-08 23:53:04 ----A---- C:\Windows\system32\comsvcs.dll
2008-12-08 23:53:04 ----A---- C:\Windows\system32\cmipnpinstall.dll
2008-12-08 23:53:03 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2008-12-08 23:53:03 ----A---- C:\Windows\system32\crypt32.dll
2008-12-08 23:53:03 ----A---- C:\Windows\system32\certutil.exe
2008-12-08 23:53:02 ----A---- C:\Windows\system32\wmdrmsdk.dll
2008-12-08 23:53:02 ----A---- C:\Windows\system32\oleaut32.dll
2008-12-08 23:53:02 ----A---- C:\Windows\system32\mswsock.dll
2008-12-08 23:53:02 ----A---- C:\Windows\system32\FirewallAPI.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\wecsvc.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\sqlceqp30.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\setupapi.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\sdohlp.dll
2008-12-08 23:53:01 ----A---- C:\Windows\system32\lsm.exe
2008-12-08 23:53:01 ----A---- C:\Windows\system32\bcrypt.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\wmpmde.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\thumbcache.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\schannel.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\p2psvc.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\msv1_0.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\iphlpsvc.dll
2008-12-08 23:53:00 ----A---- C:\Windows\system32\eapp3hst.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\WinSAT.exe
2008-12-08 23:52:59 ----A---- C:\Windows\system32\vdsutil.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\riched20.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\imapi2fs.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\d3d10_1.dll
2008-12-08 23:52:59 ----A---- C:\Windows\system32\autofmt.exe
2008-12-08 23:52:59 ----A---- C:\Windows\system32\autoconv.exe
2008-12-08 23:52:59 ----A---- C:\Windows\system32\autochk.exe
2008-12-08 23:52:58 ----A---- C:\Windows\system32\authui.dll
2008-12-08 23:52:58 ----A---- C:\Windows\system32\authfwcfg.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\WSDMon.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\wevtapi.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\mscories.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\eapphost.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\dmvdsitf.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\d3d10_1core.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\comuid.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\comdlg32.dll
2008-12-08 23:52:57 ----A---- C:\Windows\system32\browseui.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\wevtfwd.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\untfs.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\uexfat.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\rasmans.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\iassam.dll
2008-12-08 23:52:56 ----A---- C:\Windows\system32\eappcfg.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\wlansvc.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\whealogr.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\sqlcese30.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\pcaui.dll
2008-12-08 23:52:55 ----A---- C:\Windows\system32\DfrgNtfs.exe
2008-12-08 23:52:53 ----A---- C:\Windows\system32\dot3svc.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\zipfldr.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\WsmAuto.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\winhttp.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\rdpwsx.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\nlasvc.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\mssha.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\msdrm.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\evr.dll
2008-12-08 23:52:51 ----A---- C:\Windows\system32\dfrgui.exe
2008-12-08 23:52:50 ----A---- C:\Windows\system32\rpcss.dll
2008-12-08 23:52:50 ----A---- C:\Windows\system32\rasppp.dll
2008-12-08 23:52:50 ----A---- C:\Windows\system32\ncrypt.dll
2008-12-08 23:52:50 ----A---- C:\Windows\system32\msrepl40.dll
2008-12-08 23:52:50 ----A---- C:\Windows\system32\BFE.DLL
2008-12-08 23:52:50 ----A---- C:\Windows\system32\audiosrv.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\WsmWmiPl.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\wmdrmdev.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\rastls.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\printui.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2008-12-08 23:52:49 ----A---- C:\Windows\system32\ddraw.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\WebClnt.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\themecpl.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\sqlsrv32.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\QAGENT.DLL
2008-12-08 23:52:48 ----A---- C:\Windows\system32\objsel.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\iasnap.dll
2008-12-08 23:52:48 ----A---- C:\Windows\system32\dbghelp.dll
2008-12-08 23:52:47 ----A---- C:\Windows\system32\w32time.dll
2008-12-08 23:52:47 ----A---- C:\Windows\system32\PresentationHost.exe
2008-12-08 23:52:47 ----A---- C:\Windows\system32\ncryptui.dll
2008-12-08 23:52:47 ----A---- C:\Windows\system32\icm32.dll
2008-12-08 23:52:46 ----A---- C:\Windows\system32\wmdrmnet.dll
2008-12-08 23:52:46 ----A---- C:\Windows\system32\WerFaultSecure.exe
2008-12-08 23:52:46 ----A---- C:\Windows\system32\spoolss.dll
2008-12-08 23:52:46 ----A---- C:\Windows\system32\iprtrmgr.dll
2008-12-08 23:52:46 ----A---- C:\Windows\system32\azroles.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\winsrv.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\taskschd.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\msctf.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\infocardapi.dll
2008-12-08 23:52:45 ----A---- C:\Windows\system32\bcdedit.exe
2008-12-08 23:52:45 ----A---- C:\Windows\system32\basecsp.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\wlangpui.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\winsta.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\scksp.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\netprofm.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\mstlsapi.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\dbgeng.dll
2008-12-08 23:52:44 ----A---- C:\Windows\system32\AudioEng.dll
2008-12-08 23:52:43 ----A---- C:\Windows\system32\rsaenh.dll
2008-12-08 23:52:43 ----A---- C:\Windows\system32\netcfgx.dll
2008-12-08 23:52:42 ----A---- C:\Windows\system32\winlogon.exe
2008-12-08 23:52:42 ----A---- C:\Windows\system32\wercon.exe
2008-12-08 23:52:42 ----A---- C:\Windows\system32\taskcomp.dll
2008-12-08 23:52:42 ----A---- C:\Windows\system32\lpksetup.exe
2008-12-08 23:52:42 ----A---- C:\Windows\system32\dfshim.dll
2008-12-08 23:52:42 ----A---- C:\Windows\system32\cdosys.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\wlansec.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\msdtcuiu.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\mprddm.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\certcli.dll
2008-12-08 23:52:41 ----A---- C:\Windows\system32\apds.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\tsgqec.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\shdocvw.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\iasrad.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\eapsvc.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\AUDIOKSE.dll
2008-12-08 23:52:40 ----A---- C:\Windows\system32\aaclient.dll
2008-12-08 23:52:39 ----A---- C:\Windows\system32\bcdsrv.dll
2008-12-08 23:52:35 ----A---- C:\Windows\system32\uDWM.dll
2008-12-08 23:52:35 ----A---- C:\Windows\system32\certmgr.dll
2008-12-08 23:52:34 ----A---- C:\Windows\system32\Wldap32.dll
2008-12-08 23:52:34 ----A---- C:\Windows\system32\umpnpmgr.dll
2008-12-08 23:52:34 ----A---- C:\Windows\system32\msidcrl30.dll
2008-12-08 23:52:34 ----A---- C:\Windows\system32\dnsapi.dll
2008-12-08 23:52:33 ----A---- C:\Windows\system32\WMVDECOD.DLL
2008-12-08 23:52:33 ----A---- C:\Windows\system32\pla.dll
2008-12-08 23:52:33 ----A---- C:\Windows\system32\dxgi.dll
2008-12-08 23:52:32 ----A---- C:\Windows\system32\wmicmiplugin.dll
2008-12-08 23:52:32 ----A---- C:\Windows\system32\netshell.dll
2008-12-08 23:52:32 ----A---- C:\Windows\system32\dot3gpui.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\winmm.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\shsvcs.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\ntprint.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\MMDevAPI.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\cryptnet.dll
2008-12-08 23:52:31 ----A---- C:\Windows\system32\comsnap.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\wscsvc.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\wscisvif.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\synceng.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\services.exe
2008-12-08 23:52:30 ----A---- C:\Windows\system32\pnidui.dll
2008-12-08 23:52:30 ----A---- C:\Windows\system32\cmifw.dll
2008-12-08 23:52:29 ----A---- C:\Windows\system32\WMVSDECD.DLL
2008-12-08 23:52:29 ----A---- C:\Windows\system32\taskeng.exe
2008-12-08 23:52:29 ----A---- C:\Windows\system32\msjtes40.dll
2008-12-08 23:52:29 ----A---- C:\Windows\system32\msconfig.exe
2008-12-08 23:52:29 ----A---- C:\Windows\system32\iassdo.dll
2008-12-08 23:52:29 ----A---- C:\Windows\system32\cipher.exe
2008-12-08 23:52:28 ----A---- C:\Windows\system32\uxtheme.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\tdh.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\SessEnv.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\rasapi32.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\imapi2.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\dot3api.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\dmdskmgr.dll
2008-12-08 23:52:28 ----A---- C:\Windows\system32\cmd.exe
2008-12-08 23:52:27 ----A---- C:\Windows\system32\wlanmsm.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\wkssvc.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\wevtutil.exe
2008-12-08 23:52:27 ----A---- C:\Windows\system32\srvsvc.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\qdvd.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\msscp.dll
2008-12-08 23:52:27 ----A---- C:\Windows\system32\cbsra.exe
2008-12-08 23:52:27 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\WUDFx.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\wlancfg.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\mshtmled.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\localsec.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\loadperf.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\fontext.dll
2008-12-08 23:52:26 ----A---- C:\Windows\system32\diskpart.exe
2008-12-08 23:52:26 ----A---- C:\Windows\system32\comres.dll
2008-12-08 23:52:25 ----A---- C:\Windows\system32\wlanapi.dll
2008-12-08 23:52:25 ----A---- C:\Windows\system32\rpchttp.dll
2008-12-08 23:52:25 ----A---- C:\Windows\system32\rdpdd.dll
2008-12-08 23:52:25 ----A---- C:\Windows\system32\hnetcfg.dll
2008-12-08 23:52:24 ----A---- C:\Windows\system32\wsqmcons.exe
2008-12-08 23:52:24 ----A---- C:\Windows\system32\WMADMOD.DLL
2008-12-08 23:52:24 ----A---- C:\Windows\system32\wlanpref.dll
2008-12-08 23:52:24 ----A---- C:\Windows\system32\WinSATAPI.dll
2008-12-08 23:52:24 ----A---- C:\Windows\system32\NAPMONTR.DLL
2008-12-08 23:52:24 ----A---- C:\Windows\system32\dsound.dll
2008-12-08 23:52:23 ----A---- C:\Windows\system32\RDPENCDD.dll
2008-12-08 23:52:23 ----A---- C:\Windows\system32\profprov.dll
2008-12-08 23:52:23 ----A---- C:\Windows\system32\filemgmt.dll
2008-12-08 23:52:23 ----A---- C:\Windows\system32\avifil32.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\wsecedit.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2008-12-08 23:52:22 ----A---- C:\Windows\system32\tracerpt.exe
2008-12-08 23:52:22 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\SLCommDlg.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\P2PGraph.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\MuiUnattend.exe
2008-12-08 23:52:22 ----A---- C:\Windows\system32\dwmredir.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\dnsrslvr.dll
2008-12-08 23:52:22 ----A---- C:\Windows\system32\dhcpcsvc.dll
2008-12-08 23:52:21 ----A---- C:\Windows\system32\wininit.exe
2008-12-08 23:52:21 ----A---- C:\Windows\system32\spp.dll
2008-12-08 23:52:21 ----A---- C:\Windows\system32\QSHVHOST.DLL
2008-12-08 23:52:21 ----A---- C:\Windows\system32\iassvcs.dll
2008-12-08 23:52:21 ----A---- C:\Windows\system32\gpresult.exe
2008-12-08 23:52:21 ----A---- C:\Windows\system32\dwm.exe
2008-12-08 23:52:21 ----A---- C:\Windows\system32\apphelp.dll
2008-12-08 23:52:20 ----A---- C:\Windows\system32\rasdlg.dll
2008-12-08 23:52:20 ----A---- C:\Windows\system32\mscorier.dll
2008-12-08 23:52:20 ----A---- C:\Windows\system32\iashost.exe
2008-12-08 23:52:20 ----A---- C:\Windows\system32\azroleui.dll
2008-12-08 23:52:20 ----A---- C:\Windows\HelpPane.exe
2008-12-08 23:52:19 ----A---- C:\Windows\system32\srrstr.dll
2008-12-08 23:52:19 ----A---- C:\Windows\system32\spwizeng.dll
2008-12-08 23:52:19 ----A---- C:\Windows\system32\SLUI.exe
2008-12-08 23:52:19 ----A---- C:\Windows\system32\rasmontr.dll
2008-12-08 23:52:19 ----A---- C:\Windows\system32\mcbuilder.exe
2008-12-08 23:52:18 ----A---- C:\Windows\system32\wecapi.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\unbcl.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\tcpmon.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\shrink.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\msra.exe
2008-12-08 23:52:18 ----A---- C:\Windows\system32\lltdsvc.dll
2008-12-08 23:52:18 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2008-12-08 23:52:17 ----A---- C:\Windows\system32\WMPEncEn.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\raschap.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\oleacc.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\iashlpr.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\gpedit.dll
2008-12-08 23:52:17 ----A---- C:\Windows\system32\brcpl.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\vsstrace.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\regsvc.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\ntvdm.exe
2008-12-08 23:52:16 ----A---- C:\Windows\system32\ipsmsnap.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\framedynos.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\fdWSD.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\EncDec.dll
2008-12-08 23:52:16 ----A---- C:\Windows\system32\advpack.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\wpdshext.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\wdc.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\Storprop.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\ntlanman.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\netman.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\l2nacp.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\iedkcs32.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\ieapfltr.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\framedyn.dll
2008-12-08 23:52:15 ----A---- C:\Windows\system32\dssenh.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\WlanMM.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\WLanConn.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\tcpipcfg.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\sxs.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\profsvc.dll
2008-12-08 23:52:14 ----A---- C:\Windows\system32\KMSVC.DLL
2008-12-08 23:52:14 ----A---- C:\Windows\system32\certreq.exe
2008-12-08 23:52:14 ----A---- C:\Windows\system32\adsnt.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\wusa.exe
2008-12-08 23:52:13 ----A---- C:\Windows\system32\WUDFHost.exe
2008-12-08 23:52:13 ----A---- C:\Windows\system32\WsmProv.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\wlanhlp.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\userenv.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\ncsi.dll
2008-12-08 23:52:13 ----A---- C:\Windows\system32\IPBusEnum.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\WerFault.exe
2008-12-08 23:52:12 ----A---- C:\Windows\system32\VAN.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\umb.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\puiobj.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\netid.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\ie4uinit.exe
2008-12-08 23:52:12 ----A---- C:\Windows\system32\fundisc.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\dps.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\cryptui.dll
2008-12-08 23:52:12 ----A---- C:\Windows\system32\catsrvut.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\ws2_32.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\WinSCard.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\spbcd.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\photowiz.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\netcenter.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\msinfo32.exe
2008-12-08 23:52:11 ----A---- C:\Windows\system32\MdSched.exe
2008-12-08 23:52:11 ----A---- C:\Windows\system32\ipsecsnp.dll
2008-12-08 23:52:11 ----A---- C:\Windows\system32\InkEd.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\winrs.exe
2008-12-08 23:52:10 ----A---- C:\Windows\system32\secur32.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\prnntfy.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\odbcjt32.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\ntdsapi.dll
2008-12-08 23:52:10 ----A---- C:\Windows\system32\NAPSTAT.EXE
2008-12-08 23:52:09 ----A---- C:\Windows\system32\schtasks.exe
2008-12-08 23:52:09 ----A---- C:\Windows\system32\RelMon.dll
2008-12-08 23:52:09 ----A---- C:\Windows\system32\msfeeds.dll
2008-12-08 23:52:09 ----A---- C:\Windows\system32\mblctr.exe
2008-12-08 23:52:09 ----A---- C:\Windows\system32\cryptsvc.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\TSpkg.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\pdh.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\netdiagfx.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\iasacct.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\FirewallControlPanel.exe
2008-12-08 23:52:08 ----A---- C:\Windows\system32\dmdlgs.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\dhcpsapi.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\dfrgfat.exe
2008-12-08 23:52:08 ----A---- C:\Windows\system32\catsrv.dll
2008-12-08 23:52:08 ----A---- C:\Windows\system32\activeds.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\wvc.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\winrm.vbs
2008-12-08 23:52:07 ----A---- C:\Windows\system32\qwave.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\netcorehc.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\NAPHLPR.DLL
2008-12-08 23:52:07 ----A---- C:\Windows\system32\msacm32.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\ifmon.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\fdWCN.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\dot3msm.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\dot3cfg.dll
2008-12-08 23:52:07 ----A---- C:\Windows\system32\AudioSes.dll
2008-12-08 23:52:06 ----A---- C:\Windows\system32\wow32.dll
2008-12-08 23:52:06 ----A---- C:\Windows\system32\shsetup.dll
2008-12-08 23:52:06 ----A---- C:\Windows\system32\rastapi.dll
2008-12-08 23:52:06 ----A---- C:\Windows\system32\adsldp.dll
2008-12-08 23:52:05 ----A---- C:\Windows\system32\wscntfy.dll
2008-12-08 23:52:05 ----A---- C:\Windows\system32\QUTIL.DLL
2008-12-08 23:52:05 ----A---- C:\Windows\system32\ntshrui.dll
2008-12-08 23:52:05 ----A---- C:\Windows\system32\msdt.dll
2008-12-08 23:52:05 ----A---- C:\Windows\system32\iasdatastore.dll
2008-12-08 23:52:05 ----A---- C:\Windows\system32\els.dll
2008-12-08 23:52:05 ----A---- C:\Windows\system32\clbcatq.dll
2008-12-08 23:52:04 ----A---- C:\Windows\system32\stobject.dll
2008-12-08 23:52:04 ----A---- C:\Windows\system32\sdrsvc.dll
2008-12-08 23:52:04 ----A---- C:\Windows\system32\net1.exe
2008-12-08 23:52:04 ----A---- C:\Windows\system32\ipnathlp.dll
2008-12-08 23:52:04 ----A---- C:\Windows\system32\iasrecst.dll
2008-12-08 23:52:04 ----A---- C:\Windows\system32\fdSSDP.dll
2008-12-08 23:52:03 ----A---- C:\Windows\system32\wlgpclnt.dll
2008-12-08 23:52:03 ----A---- C:\Windows\system32\wlanui.dll
2008-12-08 23:52:03 ----A---- C:\Windows\system32\smss.exe
2008-12-08 23:52:03 ----A---- C:\Windows\system32\psisdecd.dll
2008-12-08 23:52:03 ----A---- C:\Windows\system32\nci.dll
2008-12-08 23:52:03 ----A---- C:\Windows\system32\dsprop.dll
2008-12-08 23:52:03 ----A---- C:\Windows\system32\Defrag.exe
2008-12-08 23:52:03 ----A---- C:\Windows\system32\adsldpc.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\upnphost.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\systemcpl.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\rasman.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\P2P.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\msftedit.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\mprmsg.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\fde.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\CompatUI.dll
2008-12-08 23:52:02 ----A---- C:\Windows\system32\ActiveContentWizard.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\Wpc.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\wdigest.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\t2embed.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\setupcl.exe
2008-12-08 23:52:01 ----A---- C:\Windows\system32\rascfg.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\oleprn.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\mprdim.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\MigAutoPlay.exe
2008-12-08 23:52:01 ----A---- C:\Windows\system32\loghours.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\L2SecHC.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\gpapi.dll
2008-12-08 23:52:01 ----A---- C:\Windows\system32\dxdiag.exe
2008-12-08 23:52:01 ----A---- C:\Windows\system32\DFDWiz.exe
2008-12-08 23:52:00 ----A---- C:\Windows\system32\rtm.dll
2008-12-08 23:52:00 ----A---- C:\Windows\system32\msutb.dll
2008-12-08 23:52:00 ----A---- C:\Windows\system32\devmgr.dll
2008-12-08 23:51:59 ----A---- C:\Windows\system32\wiaservc.dll
2008-12-08 23:51:59 ----A---- C:\Windows\system32\scansetting.dll
2008-12-08 23:51:59 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2008-12-08 23:51:59 ----A---- C:\Windows\system32\msihnd.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\wscapi.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\WinFXDocObj.exe
2008-12-08 23:51:58 ----A---- C:\Windows\system32\wdi.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\mswmdm.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\kdusb.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\ifsutil.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\dimsroam.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\CertEnrollUI.dll
2008-12-08 23:51:58 ----A---- C:\Windows\system32\actxprxy.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\wlandlg.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\vssadmin.exe
2008-12-08 23:51:57 ----A---- C:\Windows\system32\usbmon.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\SyncCenter.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\spoolsv.exe
2008-12-08 23:51:57 ----A---- C:\Windows\system32\regapi.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\mycomput.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\msls31.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\imagehlp.dll
2008-12-08 23:51:57 ----A---- C:\Windows\system32\BOOTVID.DLL
2008-12-08 23:51:57 ----A---- C:\Windows\system32\audiodg.exe
2008-12-08 23:51:56 ----A---- C:\Windows\system32\uudf.dll
2008-12-08 23:51:56 ----A---- C:\Windows\system32\scecli.dll
2008-12-08 23:51:56 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2008-12-08 23:51:56 ----A---- C:\Windows\system32\newdev.dll
2008-12-08 23:51:56 ----A---- C:\Windows\system32\mspaint.exe
2008-12-08 23:51:55 ----A---- C:\Windows\system32\termmgr.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\tapisrv.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\sud.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\ssdpsrv.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\SCardSvr.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\samlib.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\puiapi.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\mtxoci.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\mstask.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\kdcom.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\duser.dll
2008-12-08 23:51:55 ----A---- C:\Windows\system32\adtschema.dll
2008-12-08 23:51:50 ----A---- C:\Windows\system32\Robocopy.exe
2008-12-08 23:51:50 ----A---- C:\Windows\system32\input.dll
2008-12-08 23:51:50 ----A---- C:\Windows\system32\inetpp.dll
2008-12-08 23:51:50 ----A---- C:\Windows\system32\cic.dll
2008-12-08 23:51:50 ----A---- C:\Windows\system32\AzSqlExt.dll
2008-12-08 23:51:49 ----A---- C:\Windows\system32\wisptis.exe
2008-12-08 23:51:49 ----A---- C:\Windows\system32\SLUINotify.dll
2008-12-08 23:51:49 ----A---- C:\Windows\system32\iasads.dll
2008-12-08 23:51:49 ----A---- C:\Windows\system32\cscapi.dll
2008-12-08 23:51:49 ----A---- C:\Windows\system32\authz.dll
2008-12-08 23:51:48 ----A---- C:\Windows\system32\WUDFPlatform.dll
2008-12-08 23:51:48 ----A---- C:\Windows\system32\sdshext.dll
2008-12-08 23:51:48 ----A---- C:\Windows\system32\netiohlp.dll
2008-12-08 23:51:48 ----A---- C:\Windows\system32\msdtclog.dll
  • 0

#10
kahdah
Posted 26 December 2008 - 06:49 AM

kahdah

    GeekU Teacher

  • Retired Staff
  • 15,822 posts
Hi it was still cut off.
PLease post it into 2 parts if it won't fit.
  • 0

#11
fuel323
Posted 26 December 2008 - 07:57 AM

fuel323

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts
what the, sorry. here's the rest



2008-12-08 23:51:48 ----A---- C:\Windows\system32\msdt.exe
2008-12-08 23:51:47 ----A---- C:\Windows\system32\wpcsvc.dll
2008-12-08 23:51:47 ----A---- C:\Windows\system32\webcheck.dll
2008-12-08 23:51:47 ----A---- C:\Windows\system32\verifier.exe
2008-12-08 23:51:47 ----A---- C:\Windows\system32\themeui.dll
2008-12-08 23:51:47 ----A---- C:\Windows\system32\slcinst.dll
2008-12-08 23:51:47 ----A---- C:\Windows\system32\d3d8.dll
2008-12-08 23:51:47 ----A---- C:\Windows\system32\cmdial32.dll
2008-12-08 23:51:46 ----A---- C:\Windows\system32\wintrust.dll
2008-12-08 23:51:46 ----A---- C:\Windows\system32\vdsldr.exe
2008-12-08 23:51:46 ----A---- C:\Windows\system32\SndVol.exe
2008-12-08 23:51:46 ----A---- C:\Windows\system32\rasgcw.dll
2008-12-08 23:51:46 ----A---- C:\Windows\system32\oledlg.dll
2008-12-08 23:51:46 ----A---- C:\Windows\system32\ntmarta.dll
2008-12-08 23:51:46 ----A---- C:\Windows\system32\mmcbase.dll
2008-12-08 23:51:46 ----A---- C:\Windows\system32\dxtmsft.dll
2008-12-08 23:51:46 ----A---- C:\Windows\system32\clfsw32.dll
2008-12-08 23:51:45 ----A---- C:\Windows\system32\wpccpl.dll
2008-12-08 23:51:45 ----A---- C:\Windows\system32\WMPhoto.dll
2008-12-08 23:51:45 ----A---- C:\Windows\system32\pnpsetup.dll
2008-12-08 23:51:45 ----A---- C:\Windows\system32\mlang.dll
2008-12-08 23:51:45 ----A---- C:\Windows\system32\icfupgd.dll
2008-12-08 23:51:45 ----A---- C:\Windows\system32\icardie.dll
2008-12-08 23:51:44 ----A---- C:\Windows\system32\wpd_ci.dll
2008-12-08 23:51:44 ----A---- C:\Windows\system32\rasqec.dll
2008-12-08 23:51:44 ----A---- C:\Windows\system32\nslookup.exe
2008-12-08 23:51:44 ----A---- C:\Windows\system32\ncobjapi.dll
2008-12-08 23:51:44 ----A---- C:\Windows\system32\msrd3x40.dll
2008-12-08 23:51:44 ----A---- C:\Windows\system32\msaatext.dll
2008-12-08 23:51:44 ----A---- C:\Windows\system32\mpr.dll
2008-12-08 23:51:44 ----A---- C:\Windows\system32\diskraid.exe
2008-12-08 23:51:43 ----A---- C:\Windows\system32\wtsapi32.dll
2008-12-08 23:51:43 ----A---- C:\Windows\system32\unlodctr.exe
2008-12-08 23:51:43 ----A---- C:\Windows\system32\syssetup.dll
2008-12-08 23:51:43 ----A---- C:\Windows\system32\slmgr.vbs
2008-12-08 23:51:43 ----A---- C:\Windows\system32\mscms.dll
2008-12-08 23:51:43 ----A---- C:\Windows\system32\lodctr.exe
2008-12-08 23:51:43 ----A---- C:\Windows\system32\extmgr.dll
2008-12-08 23:51:43 ----A---- C:\Windows\system32\accessibilitycpl.dll
2008-12-08 23:51:42 ----A---- C:\Windows\system32\ulib.dll
2008-12-08 23:51:42 ----A---- C:\Windows\system32\sethc.exe
2008-12-08 23:51:42 ----A---- C:\Windows\system32\pnpui.dll
2008-12-08 23:51:42 ----A---- C:\Windows\system32\oobefldr.dll
2008-12-08 23:51:42 ----A---- C:\Windows\system32\iaspolcy.dll
2008-12-08 23:51:42 ----A---- C:\Windows\system32\fontsub.dll
2008-12-08 23:51:42 ----A---- C:\Windows\system32\dxdiagn.dll
2008-12-08 23:51:42 ----A---- C:\Windows\system32\cabinet.dll
2008-12-08 23:51:41 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2008-12-08 23:51:41 ----A---- C:\Windows\system32\Utilman.exe
2008-12-08 23:51:41 ----A---- C:\Windows\system32\unattend.dll
2008-12-08 23:51:41 ----A---- C:\Windows\system32\trkwks.dll
2008-12-08 23:51:41 ----A---- C:\Windows\system32\scesrv.dll
2008-12-08 23:51:41 ----A---- C:\Windows\system32\occache.dll
2008-12-08 23:51:41 ----A---- C:\Windows\system32\lnkstub.exe
2008-12-08 23:51:40 ----A---- C:\Windows\system32\wpcao.dll
2008-12-08 23:51:40 ----A---- C:\Windows\system32\wermgr.exe
2008-12-08 23:51:40 ----A---- C:\Windows\system32\sdspres.dll
2008-12-08 23:51:40 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2008-12-08 23:51:40 ----A---- C:\Windows\system32\p2pcollab.dll
2008-12-08 23:51:40 ----A---- C:\Windows\system32\ogldrv.dll
2008-12-08 23:51:40 ----A---- C:\Windows\system32\msnetobj.dll
2008-12-08 23:51:40 ----A---- C:\Windows\system32\iepeers.dll
2008-12-08 23:51:40 ----A---- C:\Windows\system32\eappgnui.dll
2008-12-08 23:51:40 ----A---- C:\Windows\system32\dfdts.dll
2008-12-08 23:51:40 ----A---- C:\Windows\system32\cabview.dll
2008-12-08 23:51:40 ----A---- C:\Windows\system32\bthci.dll
2008-12-08 23:51:39 ----A---- C:\Windows\system32\verifier.dll
2008-12-08 23:51:39 ----A---- C:\Windows\system32\RstrtMgr.dll
2008-12-08 23:51:39 ----A---- C:\Windows\system32\mmcss.dll
2008-12-08 23:51:39 ----A---- C:\Windows\system32\ieaksie.dll
2008-12-08 23:51:39 ----A---- C:\Windows\system32\dsquery.dll
2008-12-08 23:51:39 ----A---- C:\Windows\system32\drvinst.exe
2008-12-08 23:51:39 ----A---- C:\Windows\system32\dispdiag.exe
2008-12-08 23:51:39 ----A---- C:\Windows\system32\DHCPQEC.DLL
2008-12-08 23:51:39 ----A---- C:\Windows\system32\basesrv.dll
2008-12-08 23:51:38 ----A---- C:\Windows\system32\WMVENCOD.DLL
2008-12-08 23:51:38 ----A---- C:\Windows\system32\wercplsupport.dll
2008-12-08 23:51:38 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2008-12-08 23:51:38 ----A---- C:\Windows\system32\secproc_ssp.dll
2008-12-08 23:51:38 ----A---- C:\Windows\system32\qedit.dll
2008-12-08 23:51:38 ----A---- C:\Windows\system32\mprapi.dll
2008-12-08 23:51:38 ----A---- C:\Windows\system32\efsadu.dll
2008-12-08 23:51:37 ----A---- C:\Windows\system32\WPDSp.dll
2008-12-08 23:51:37 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2008-12-08 23:51:37 ----A---- C:\Windows\system32\wiascanprofiles.dll
2008-12-08 23:51:37 ----A---- C:\Windows\system32\setupugc.exe
2008-12-08 23:51:37 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2008-12-08 23:51:37 ----A---- C:\Windows\system32\pnrpnsp.dll
2008-12-08 23:51:37 ----A---- C:\Windows\system32\networkmap.dll
2008-12-08 23:51:37 ----A---- C:\Windows\system32\msoeacct.dll
2008-12-08 23:51:37 ----A---- C:\Windows\system32\iscsiexe.dll
2008-12-08 23:51:37 ----A---- C:\Windows\system32\icacls.exe
2008-12-08 23:51:37 ----A---- C:\Windows\system32\d3d10core.dll
2008-12-08 23:51:37 ----A---- C:\Windows\system32\consent.exe
2008-12-08 23:51:36 ----A---- C:\Windows\system32\xactsrv.dll
2008-12-08 23:51:36 ----A---- C:\Windows\system32\wiaaut.dll
2008-12-08 23:51:36 ----A---- C:\Windows\system32\usercpl.dll
2008-12-08 23:51:36 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
2008-12-08 23:51:36 ----A---- C:\Windows\system32\PNPXAssoc.dll
2008-12-08 23:51:36 ----A---- C:\Windows\system32\pngfilt.dll
2008-12-08 23:51:36 ----A---- C:\Windows\system32\p2pnetsh.dll
2008-12-08 23:51:36 ----A---- C:\Windows\system32\msrdc.dll
2008-12-08 23:51:36 ----A---- C:\Windows\system32\msdmo.dll
2008-12-08 23:51:36 ----A---- C:\Windows\system32\lsass.exe
2008-12-08 23:51:36 ----A---- C:\Windows\system32\conime.exe
2008-12-08 23:51:36 ----A---- C:\Windows\system32\autoplay.dll
2008-12-08 23:51:35 ----A---- C:\Windows\system32\systeminfo.exe
2008-12-08 23:51:35 ----A---- C:\Windows\system32\pcadm.dll
2008-12-08 23:51:35 ----A---- C:\Windows\system32\netcfg.exe
2008-12-08 23:51:35 ----A---- C:\Windows\system32\msrating.dll
2008-12-08 23:51:35 ----A---- C:\Windows\system32\lpk.dll
2008-12-08 23:51:35 ----A---- C:\Windows\system32\findstr.exe
2008-12-08 23:51:35 ----A---- C:\Windows\system32\eappprxy.dll
2008-12-08 23:51:35 ----A---- C:\Windows\system32\drmmgrtn.dll
2008-12-08 23:51:35 ----A---- C:\Windows\system32\dpapimig.exe
2008-12-08 23:51:34 ----A---- C:\Windows\system32\xwizards.dll
2008-12-08 23:51:34 ----A---- C:\Windows\system32\resutils.dll
2008-12-08 23:51:34 ----A---- C:\Windows\system32\mfplat.dll
2008-12-08 23:51:34 ----A---- C:\Windows\system32\DWWIN.EXE
2008-12-08 23:51:34 ----A---- C:\Windows\system32\dssec.dll
2008-12-08 23:51:34 ----A---- C:\Windows\system32\dot3ui.dll
2008-12-08 23:51:34 ----A---- C:\Windows\system32\dfrgifc.exe
2008-12-08 23:51:34 ----A---- C:\Windows\system32\cmdl32.exe
2008-12-08 23:51:34 ----A---- C:\Windows\system32\alg.exe
2008-12-08 23:51:33 ----A---- C:\Windows\system32\powercpl.dll
2008-12-08 23:51:33 ----A---- C:\Windows\system32\odbc32.dll
2008-12-08 23:51:33 ----A---- C:\Windows\system32\netprof.dll
2008-12-08 23:51:33 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2008-12-08 23:51:33 ----A---- C:\Windows\system32\imm32.dll
2008-12-08 23:51:33 ----A---- C:\Windows\system32\dbnetlib.dll
2008-12-08 23:51:33 ----A---- C:\Windows\regedit.exe
2008-12-08 23:51:32 ----A---- C:\Windows\system32\txflog.dll
2008-12-08 23:51:32 ----A---- C:\Windows\system32\nshhttp.dll
2008-12-08 23:51:32 ----A---- C:\Windows\system32\feclient.dll
2008-12-08 23:51:32 ----A---- C:\Windows\system32\btpanui.dll
2008-12-08 23:51:32 ----A---- C:\Windows\system32\apircl.dll
2008-12-08 23:51:31 ----A---- C:\Windows\system32\tbssvc.dll
2008-12-08 23:51:31 ----A---- C:\Windows\system32\taskkill.exe
2008-12-08 23:51:31 ----A---- C:\Windows\system32\iexpress.exe
2008-12-08 23:51:31 ----A---- C:\Windows\system32\dxva2.dll
2008-12-08 23:51:31 ----A---- C:\Windows\system32\dwmapi.dll
2008-12-08 23:51:31 ----A---- C:\Windows\system32\bcdprov.dll
2008-12-08 23:51:30 ----A---- C:\Windows\system32\syncui.dll
2008-12-08 23:51:30 ----A---- C:\Windows\system32\svchost.exe
2008-12-08 23:51:30 ----A---- C:\Windows\system32\slwmi.dll
2008-12-08 23:51:30 ----A---- C:\Windows\system32\shwebsvc.dll
2008-12-08 23:51:30 ----A---- C:\Windows\system32\RASMM.dll
2008-12-08 23:51:30 ----A---- C:\Windows\system32\provthrd.dll
2008-12-08 23:51:30 ----A---- C:\Windows\system32\msieftp.dll
2008-12-08 23:51:30 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2008-12-08 23:51:30 ----A---- C:\Windows\system32\EAPQEC.DLL
2008-12-08 23:51:30 ----A---- C:\Windows\system32\dmocx.dll
2008-12-08 23:51:30 ----A---- C:\Windows\system32\d3d10.dll
2008-12-08 23:51:30 ----A---- C:\Windows\system32\ActionQueue.dll
2008-12-08 23:51:29 ----A---- C:\Windows\system32\WMASF.DLL
2008-12-08 23:51:29 ----A---- C:\Windows\system32\SLCExt.dll
2008-12-08 23:51:29 ----A---- C:\Windows\system32\slcc.dll
2008-12-08 23:51:29 ----A---- C:\Windows\system32\raserver.exe
2008-12-08 23:51:29 ----A---- C:\Windows\system32\PnPUnattend.exe
2008-12-08 23:51:29 ----A---- C:\Windows\system32\olepro32.dll
2008-12-08 23:51:29 ----A---- C:\Windows\system32\networkexplorer.dll
2008-12-08 23:51:29 ----A---- C:\Windows\system32\dnscacheugc.exe
2008-12-08 23:51:29 ----A---- C:\Windows\system32\aclui.dll
2008-12-08 23:51:28 ----A---- C:\Windows\system32\xcopy.exe
2008-12-08 23:51:28 ----A---- C:\Windows\system32\uxsms.dll
2008-12-08 23:51:28 ----A---- C:\Windows\system32\upnp.dll
2008-12-08 23:51:28 ----A---- C:\Windows\system32\UIHub.dll
2008-12-08 23:51:28 ----A---- C:\Windows\system32\taskmgr.exe
2008-12-08 23:51:28 ----A---- C:\Windows\system32\reg.exe
2008-12-08 23:51:28 ----A---- C:\Windows\system32\QCLIPROV.DLL
2008-12-08 23:51:28 ----A---- C:\Windows\system32\ias.dll
2008-12-08 23:51:28 ----A---- C:\Windows\system32\brcplsdw.dll
2008-12-08 23:51:28 ----A---- C:\Windows\system32\audiodev.dll
2008-12-08 23:51:27 ----A---- C:\Windows\system32\NapiNSP.dll
2008-12-08 23:51:27 ----A---- C:\Windows\system32\msoert2.dll
2008-12-08 23:51:27 ----A---- C:\Windows\system32\msjetoledb40.dll
2008-12-08 23:51:27 ----A---- C:\Windows\system32\mountvol.exe
2008-12-08 23:51:27 ----A---- C:\Windows\system32\mmcshext.dll
2008-12-08 23:51:27 ----A---- C:\Windows\system32\icsfiltr.dll
2008-12-08 23:51:27 ----A---- C:\Windows\system32\cmstp.exe
2008-12-08 23:51:27 ----A---- C:\Windows\system32\browser.dll
2008-12-08 23:51:27 ----A---- C:\Windows\system32\atl.dll
2008-12-08 23:51:27 ----A---- C:\Windows\system32\appinfo.dll
2008-12-08 23:51:26 ----A---- C:\Windows\system32\WMVXENCD.DLL
2008-12-08 23:51:26 ----A---- C:\Windows\system32\wmpdxm.dll
2008-12-08 23:51:26 ----A---- C:\Windows\system32\wlanext.exe
2008-12-08 23:51:26 ----A---- C:\Windows\system32\PING.EXE
2008-12-08 23:51:26 ----A---- C:\Windows\system32\perfts.dll
2008-12-08 23:51:26 ----A---- C:\Windows\system32\netplwiz.dll
2008-12-08 23:51:26 ----A---- C:\Windows\system32\inetmib1.dll
2008-12-08 23:51:26 ----A---- C:\Windows\system32\httpapi.dll
2008-12-08 23:51:26 ----A---- C:\Windows\system32\dskquoui.dll
2008-12-08 23:51:26 ----A---- C:\Windows\system32\cewmdm.dll
2008-12-08 23:51:26 ----A---- C:\Windows\system32\certprop.dll
2008-12-08 23:51:26 ----A---- C:\Windows\system32\bitsadmin.exe
2008-12-08 23:51:26 ----A---- C:\Windows\system32\AuxiliaryDisplayApi.dll
2008-12-08 23:51:25 ----A---- C:\Windows\system32\WUDFSvc.dll
2008-12-08 23:51:25 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2008-12-08 23:51:25 ----A---- C:\Windows\system32\wmpsrcwp.dll
2008-12-08 23:51:25 ----A---- C:\Windows\system32\SysFxUI.dll
2008-12-08 23:51:25 ----A---- C:\Windows\system32\SoundRecorder.exe
2008-12-08 23:51:25 ----A---- C:\Windows\system32\rekeywiz.exe
2008-12-08 23:51:25 ----A---- C:\Windows\system32\qcap.dll
2008-12-08 23:51:25 ----A---- C:\Windows\system32\qasf.dll
2008-12-08 23:51:25 ----A---- C:\Windows\system32\mscandui.dll
2008-12-08 23:51:25 ----A---- C:\Windows\system32\ieakeng.dll
2008-12-08 23:51:25 ----A---- C:\Windows\system32\dsuiext.dll
2008-12-08 23:51:25 ----A---- C:\Windows\system32\dmusic.dll
2008-12-08 23:51:25 ----A---- C:\Windows\system32\auditpol.exe
2008-12-08 23:51:25 ----A---- C:\Windows\system32\adsmsext.dll
2008-12-08 23:51:24 ----A---- C:\Windows\system32\WMVSENCD.DLL
2008-12-08 23:51:24 ----A---- C:\Windows\system32\Sens.dll
2008-12-08 23:51:24 ----A---- C:\Windows\system32\SecEdit.exe
2008-12-08 23:51:24 ----A---- C:\Windows\system32\mtstocom.exe
2008-12-08 23:51:24 ----A---- C:\Windows\system32\makecab.exe
2008-12-08 23:51:24 ----A---- C:\Windows\system32\lsmproxy.dll
2008-12-08 23:51:24 ----A---- C:\Windows\system32\batt.dll
2008-12-08 23:51:23 ----A---- C:\Windows\system32\xwtpw32.dll
2008-12-08 23:51:23 ----A---- C:\Windows\system32\wzcdlg.dll
2008-12-08 23:51:23 ----A---- C:\Windows\system32\wiashext.dll
2008-12-08 23:51:23 ----A---- C:\Windows\system32\sppnp.dll
2008-12-08 23:51:23 ----A---- C:\Windows\system32\shimgvw.dll
2008-12-08 23:51:23 ----A---- C:\Windows\system32\seclogon.dll
2008-12-08 23:51:23 ----A---- C:\Windows\system32\sbeio.dll
2008-12-08 23:51:23 ----A---- C:\Windows\system32\ndfapi.dll
2008-12-08 23:51:23 ----A---- C:\Windows\system32\msdadiag.dll
2008-12-08 23:51:23 ----A---- C:\Windows\system32\dxtrans.dll
2008-12-08 23:51:23 ----A---- C:\Windows\system32\dot3gpclnt.dll
2008-12-08 23:51:22 ----A---- C:\Windows\system32\wscmisetup.dll
2008-12-08 23:51:22 ----A---- C:\Windows\system32\wpdwcn.dll
2008-12-08 23:51:22 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2008-12-08 23:51:22 ----A---- C:\Windows\system32\wiadefui.dll
2008-12-08 23:51:22 ----A---- C:\Windows\system32\userinit.exe
2008-12-08 23:51:22 ----A---- C:\Windows\system32\sxstrace.exe
2008-12-08 23:51:22 ----A---- C:\Windows\system32\shacct.dll
2008-12-08 23:51:22 ----A---- C:\Windows\system32\perfmon.exe
2008-12-08 23:51:22 ----A---- C:\Windows\system32\p2phost.exe
2008-12-08 23:51:22 ----A---- C:\Windows\system32\napipsec.dll
2008-12-08 23:51:22 ----A---- C:\Windows\system32\msorcl32.dll
2008-12-08 23:51:22 ----A---- C:\Windows\system32\apss.dll
2008-12-08 23:51:21 ----A---- C:\Windows\system32\winrshost.exe
2008-12-08 23:51:21 ----A---- C:\Windows\system32\tasklist.exe
2008-12-08 23:51:21 ----A---- C:\Windows\system32\TapiMigPlugin.dll
2008-12-08 23:51:21 ----A---- C:\Windows\system32\rrinstaller.exe
2008-12-08 23:51:21 ----A---- C:\Windows\system32\prntvpt.dll
2008-12-08 23:51:21 ----A---- C:\Windows\system32\notepad.exe
2008-12-08 23:51:21 ----A---- C:\Windows\system32\MP4SDECD.DLL
2008-12-08 23:51:21 ----A---- C:\Windows\system32\ktmutil.exe
2008-12-08 23:51:21 ----A---- C:\Windows\system32\keymgr.dll
2008-12-08 23:51:21 ----A---- C:\Windows\system32\HelpPaneProxy.dll
2008-12-08 23:51:21 ----A---- C:\Windows\system32\ftp.exe
2008-12-08 23:51:21 ----A---- C:\Windows\system32\fmifs.dll
2008-12-08 23:51:21 ----A---- C:\Windows\system32\csrsrv.dll
2008-12-08 23:51:21 ----A---- C:\Windows\system32\colorui.dll
2008-12-08 23:51:21 ----A---- C:\Windows\notepad.exe
2008-12-08 23:51:20 ----A---- C:\Windows\system32\UIAutomationCore.dll
2008-12-08 23:51:20 ----A---- C:\Windows\system32\netiougc.exe
2008-12-08 23:51:20 ----A---- C:\Windows\system32\msiexec.exe
2008-12-08 23:51:20 ----A---- C:\Windows\system32\d3dim700.dll
2008-12-08 23:51:19 ----A---- C:\Windows\system32\wscproxystub.dll
2008-12-08 23:51:19 ----A---- C:\Windows\system32\winethc.dll
2008-12-08 23:51:19 ----A---- C:\Windows\system32\txfw32.dll
2008-12-08 23:51:19 ----A---- C:\Windows\system32\takeown.exe
2008-12-08 23:51:19 ----A---- C:\Windows\system32\PnPutil.exe
2008-12-08 23:51:19 ----A---- C:\Windows\system32\pcasvc.dll
2008-12-08 23:51:19 ----A---- C:\Windows\system32\nshipsec.dll
2008-12-08 23:51:19 ----A---- C:\Windows\system32\msimtf.dll
2008-12-08 23:51:19 ----A---- C:\Windows\system32\mfps.dll
2008-12-08 23:51:19 ----A---- C:\Windows\system32\inseng.dll
2008-12-08 23:51:19 ----A---- C:\Windows\system32\driverquery.exe
2008-12-08 23:51:19 ----A---- C:\Windows\system32\cryptdll.dll
2008-12-08 23:51:18 ----A---- C:\Windows\system32\wpdbusenum.dll
2008-12-08 23:51:18 ----A---- C:\Windows\system32\wmiprop.dll
2008-12-08 23:51:18 ----A---- C:\Windows\system32\shrpubw.exe
2008-12-08 23:51:18 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2008-12-08 23:51:18 ----A---- C:\Windows\system32\rasplap.dll
2008-12-08 23:51:18 ----A---- C:\Windows\system32\powrprof.dll
2008-12-08 23:51:18 ----A---- C:\Windows\system32\pots.dll
2008-12-08 23:51:18 ----A---- C:\Windows\system32\mfpmp.exe
2008-12-08 23:51:18 ----A---- C:\Windows\system32\fsutil.exe
2008-12-08 23:51:18 ----A---- C:\Windows\system32\findnetprinters.dll
2008-12-08 23:51:18 ----A---- C:\Windows\system32\dnshc.dll
2008-12-08 23:51:18 ----A---- C:\Windows\system32\capisp.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\WLanHC.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\wextract.exe
2008-12-08 23:51:17 ----A---- C:\Windows\system32\TMM.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\shgina.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\sfc_os.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\sendmail.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\runonce.exe
2008-12-08 23:51:17 ----A---- C:\Windows\system32\rshx32.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\RpcPing.exe
2008-12-08 23:51:17 ----A---- C:\Windows\system32\perfnet.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\olecli32.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\nsisvc.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\luainstall.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\ktmw32.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\imapi.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\fdPHost.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\d3dim.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\compstui.dll
2008-12-08 23:51:17 ----A---- C:\Windows\system32\cmmon32.exe
2008-12-08 23:51:16 ----A---- C:\Windows\system32\WMADMOE.DLL
2008-12-08 23:51:16 ----A---- C:\Windows\system32\wiaacmgr.exe
2008-12-08 23:51:16 ----A---- C:\Windows\system32\w32tm.exe
2008-12-08 23:51:16 ----A---- C:\Windows\system32\version.dll
2008-12-08 23:51:16 ----A---- C:\Windows\system32\unregmp2.exe
2008-12-08 23:51:16 ----A---- C:\Windows\system32\UI0Detect.exe
2008-12-08 23:51:16 ----A---- C:\Windows\system32\net.exe
2008-12-08 23:51:16 ----A---- C:\Windows\system32\msvfw32.dll
2008-12-08 23:51:16 ----A---- C:\Windows\system32\mdminst.dll
2008-12-08 23:51:16 ----A---- C:\Windows\system32\getmac.exe
2008-12-08 23:51:16 ----A---- C:\Windows\system32\dsauth.dll
2008-12-08 23:51:16 ----A---- C:\Windows\system32\dimsjob.dll
2008-12-08 23:51:16 ----A---- C:\Windows\system32\cmlua.dll
2008-12-08 23:51:15 ----A---- C:\Windows\system32\wmpshell.dll
2008-12-08 23:51:15 ----A---- C:\Windows\system32\tscupgrd.exe
2008-12-08 23:51:15 ----A---- C:\Windows\system32\MPG4DECD.DLL
2008-12-08 23:51:15 ----A---- C:\Windows\system32\MP43DECD.DLL
2008-12-08 23:51:15 ----A---- C:\Windows\system32\ipconfig.exe
2008-12-08 23:51:15 ----A---- C:\Windows\system32\imgutil.dll
2008-12-08 23:51:15 ----A---- C:\Windows\system32\credui.dll
2008-12-08 23:51:15 ----A---- C:\Windows\system32\ACW.exe
2008-12-08 23:51:14 ----A---- C:\Windows\system32\sdchange.exe
2008-12-08 23:51:14 ----A---- C:\Windows\system32\PortableDeviceWiaCompat.dll
2008-12-08 23:51:14 ----A---- C:\Windows\system32\pnpts.dll
2008-12-08 23:51:14 ----A---- C:\Windows\system32\migisol.dll
2008-12-08 23:51:14 ----A---- C:\Windows\system32\fdeploy.dll
2008-12-08 23:51:14 ----A---- C:\Windows\system32\dispci.dll
2008-12-08 23:51:14 ----A---- C:\Windows\system32\diantz.exe
2008-12-08 23:51:14 ----A---- C:\Windows\system32\comrepl.dll
2008-12-08 23:51:14 ----A---- C:\Windows\system32\cmutil.dll
2008-12-08 23:51:09 ----A---- C:\Windows\system32\TSTheme.exe
2008-12-08 23:51:09 ----A---- C:\Windows\system32\sfc.exe
2008-12-08 23:51:09 ----A---- C:\Windows\system32\remotepg.dll
2008-12-08 23:51:09 ----A---- C:\Windows\system32\nlaapi.dll
2008-12-08 23:51:09 ----A---- C:\Windows\system32\ExplorerFrame.dll
2008-12-08 23:51:09 ----A---- C:\Windows\system32\dinput8.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2008-12-08 23:51:08 ----A---- C:\Windows\system32\wmidx.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\vdmredir.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\utildll.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\TpmInit.exe
2008-12-08 23:51:08 ----A---- C:\Windows\system32\softkbd.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\pdhui.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\modemui.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\McxDriv.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\iernonce.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\hlink.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\fwcfg.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\expand.exe
2008-12-08 23:51:08 ----A---- C:\Windows\system32\EncDump.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\colbact.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\cfgbkend.dll
2008-12-08 23:51:08 ----A---- C:\Windows\system32\bridgeunattend.exe
2008-12-08 23:51:08 ----A---- C:\Windows\system32\amstream.dll
2008-12-08 23:51:07 ----A---- C:\Windows\system32\wsnmp32.dll
2008-12-08 23:51:07 ----A---- C:\Windows\system32\wmvdspa.dll
2008-12-08 23:51:07 ----A---- C:\Windows\system32\waitfor.exe
2008-12-08 23:51:07 ----A---- C:\Windows\system32\vds_ps.dll
2008-12-08 23:51:07 ----A---- C:\Windows\system32\tabcal.exe
2008-12-08 23:51:07 ----A---- C:\Windows\system32\sti_ci.dll
2008-12-08 23:51:07 ----A---- C:\Windows\system32\shutdown.exe
2008-12-08 23:51:07 ----A---- C:\Windows\system32\rdrleakdiag.exe
2008-12-08 23:51:07 ----A---- C:\Windows\system32\qdv.dll
2008-12-08 23:51:07 ----A---- C:\Windows\system32\osblprov.dll
2008-12-08 23:51:07 ----A---- C:\Windows\system32\odbccp32.dll
2008-12-08 23:51:07 ----A---- C:\Windows\system32\msfeedsbs.dll
2008-12-08 23:51:07 ----A---- C:\Windows\system32\logman.exe
2008-12-08 23:51:07 ----A---- C:\Windows\system32\iscsium.dll
2008-12-08 23:51:07 ----A---- C:\Windows\system32\esentutl.exe
2008-12-08 23:51:07 ----A---- C:\Windows\system32\dpnet.dll
2008-12-08 23:51:07 ----A---- C:\Windows\system32\cmcfg32.dll
2008-12-08 23:51:07 ----A---- C:\Windows\system32\cacls.exe
2008-12-08 23:51:07 ----A---- C:\Windows\system32\bootcfg.exe
2008-12-08 23:51:07 ----A---- C:\Windows\system32\admparse.dll
2008-12-08 23:51:06 ----A---- C:\Windows\system32\wpnpinst.exe
2008-12-08 23:51:06 ----A---- C:\Windows\system32\wmpcm.dll
2008-12-08 23:51:06 ----A---- C:\Windows\system32\wfapigp.dll
2008-12-08 23:51:06 ----A---- C:\Windows\system32\werdiagcontroller.dll
2008-12-08 23:51:06 ----A---- C:\Windows\system32\rasauto.dll
2008-12-08 23:51:06 ----A---- C:\Windows\system32\olethk32.dll
2008-12-08 23:51:06 ----A---- C:\Windows\system32\olesvr32.dll
2008-12-08 23:51:06 ----A---- C:\Windows\system32\mstext40.dll
2008-12-08 23:51:06 ----A---- C:\Windows\system32\msdtc.exe
2008-12-08 23:51:06 ----A---- C:\Windows\system32\mfvdsp.dll
2008-12-08 23:51:06 ----A---- C:\Windows\system32\iscsiwmi.dll
2008-12-08 23:51:06 ----A---- C:\Windows\system32\DpiScaling.exe
2008-12-08 23:51:06 ----A---- C:\Windows\system32\dmsynth.dll
2008-12-08 23:51:06 ----A---- C:\Windows\system32\COLORCNV.DLL
2008-12-08 23:51:05 ----A---- C:\Windows\system32\wavemsp.dll
2008-12-08 23:51:05 ----A---- C:\Windows\system32\ufat.dll
2008-12-08 23:51:05 ----A---- C:\Windows\system32\sxproxy.dll
2008-12-08 23:51:05 ----A---- C:\Windows\system32\SLLUA.exe
2008-12-08 23:51:05 ----A---- C:\Windows\system32\rgb9rast.dll
2008-12-08 23:51:05 ----A---- C:\Windows\system32\odbctrac.dll
2008-12-08 23:51:05 ----A---- C:\Windows\system32\networkitemfactory.dll
2008-12-08 23:51:05 ----A---- C:\Windows\system32\msctfui.dll
2008-12-08 23:51:05 ----A---- C:\Windows\system32\at.exe
2008-12-08 23:51:04 ----A---- C:\Windows\system32\xmlprovi.dll
2008-12-08 23:51:04 ----A---- C:\Windows\system32\ucsvc.exe
2008-12-08 23:51:04 ----A---- C:\Windows\system32\TimeDateMUICallback.dll
2008-12-08 23:51:04 ----A---- C:\Windows\system32\RegCtrl.dll
2008-12-08 23:51:04 ----A---- C:\Windows\system32\prevhost.exe
2008-12-08 23:51:04 ----A---- C:\Windows\system32\mshta.exe
2008-12-08 23:51:04 ----A---- C:\Windows\system32\mobsync.exe
2008-12-08 23:51:04 ----A---- C:\Windows\system32\licmgr10.dll
2008-12-08 23:51:04 ----A---- C:\Windows\system32\itss.dll
2008-12-08 23:51:04 ----A---- C:\Windows\system32\csrstub.exe
2008-12-08 23:51:04 ----A---- C:\Windows\system32\convert.exe
2008-12-08 23:51:04 ----A---- C:\Windows\system32\bitsigd.dll
2008-12-08 23:51:03 ----A---- C:\Windows\system32\unattendedjoin.exe
2008-12-08 23:51:03 ----A---- C:\Windows\system32\tbs.dll
2008-12-08 23:51:03 ----A---- C:\Windows\system32\rasdiag.dll
2008-12-08 23:51:03 ----A---- C:\Windows\system32\ocsetup.exe
2008-12-08 23:51:03 ----A---- C:\Windows\system32\netbtugc.exe
2008-12-08 23:51:03 ----A---- C:\Windows\system32\iscsied.dll
2008-12-08 23:51:03 ----A---- C:\Windows\system32\GuidedHelp.dll
2008-12-08 23:51:03 ----A---- C:\Windows\system32\dskquota.dll
2008-12-08 23:51:03 ----A---- C:\Windows\system32\cscdll.dll
2008-12-08 23:51:03 ----A---- C:\Windows\system32\AuthFWGP.dll
2008-12-08 23:51:03 ----A---- C:\Windows\system32\AtBroker.exe
2008-12-08 23:51:02 ----A---- C:\Windows\system32\winnsi.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\usbui.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\setupcln.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\regini.exe
2008-12-08 23:51:02 ----A---- C:\Windows\system32\odbccu32.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\odbccr32.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\napdsnap.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\mydocs.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\msident.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\msdart.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\l2gpstore.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\fphc.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\dsdmo.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\dot3dlg.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\dmime.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\devenum.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\cmstplua.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\cmpbk32.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\apilogen.dll
2008-12-08 23:51:02 ----A---- C:\Windows\system32\amxread.dll
2008-12-08 23:51:01 ----A---- C:\Windows\system32\wpclsp.dll
2008-12-08 23:51:01 ----A---- C:\Windows\system32\WINSRPC.DLL
2008-12-08 23:51:01 ----A---- C:\Windows\system32\vss_ps.dll
2008-12-08 23:51:01 ----A---- C:\Windows\system32\VIDRESZR.DLL
2008-12-08 23:51:01 ----A---- C:\Windows\system32\upnpcont.exe
2008-12-08 23:51:01 ----A---- C:\Windows\system32\srwmi.dll
2008-12-08 23:51:01 ----A---- C:\Windows\system32\RacAgent.exe
2008-12-08 23:51:01 ----A---- C:\Windows\system32\nsi.dll
2008-12-08 23:51:01 ----A---- C:\Windows\system32\nbtstat.exe
2008-12-08 23:51:01 ----A---- C:\Windows\system32\mtxlegih.dll
2008-12-08 23:51:01 ----A---- C:\Windows\system32\mtxdm.dll
2008-12-08 23:51:01 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2008-12-08 23:51:01 ----A---- C:\Windows\system32\graftabl.com
2008-12-08 23:51:01 ----A---- C:\Windows\system32\gpupdate.exe
2008-12-08 23:51:01 ----A---- C:\Windows\system32\avrt.dll
2008-12-08 23:51:00 ----A---- C:\Windows\system32\wsock32.dll
2008-12-08 23:51:00 ----A---- C:\Windows\system32\wiarpc.dll
2008-12-08 23:51:00 ----A---- C:\Windows\system32\WavDest.dll
2008-12-08 23:51:00 ----A---- C:\Windows\system32\vfwwdm32.dll
2008-12-08 23:51:00 ----A---- C:\Windows\system32\syskey.exe
2008-12-08 23:51:00 ----A---- C:\Windows\system32\ROUTE.EXE
2008-12-08 23:51:00 ----A---- C:\Windows\system32\rasphone.exe
2008-12-08 23:51:00 ----A---- C:\Windows\system32\odbcbcp.dll
2008-12-08 23:51:00 ----A---- C:\Windows\system32\netevent.dll
2008-12-08 23:51:00 ----A---- C:\Windows\system32\ndfetw.dll
2008-12-08 23:51:00 ----A---- C:\Windows\system32\msexcl40.dll
2008-12-08 23:51:00 ----A---- C:\Windows\system32\mfcsubs.dll
2008-12-08 23:51:00 ----A---- C:\Windows\system32\extrac32.exe
2008-12-08 23:50:59 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2008-12-08 23:50:59 ----A---- C:\Windows\system32\wiadss.dll
2008-12-08 23:50:59 ----A---- C:\Windows\system32\TabbtnEx.dll
2008-12-08 23:50:59 ----A---- C:\Windows\system32\procinst.dll
2008-12-08 23:50:59 ----A---- C:\Windows\system32\MP3DMOD.DLL
2008-12-08 23:50:59 ----A---- C:\Windows\system32\eventcls.dll
2008-12-08 23:50:59 ----A---- C:\Windows\system32\d3dxof.dll
2008-12-08 23:50:59 ----A---- C:\Windows\system32\csrss.exe
2008-12-08 23:50:59 ----A---- C:\Windows\system32\atmfd.dll
2008-12-08 23:50:58 ----A---- C:\Windows\system32\WlanMmHC.dll
2008-12-08 23:50:58 ----A---- C:\Windows\system32\Tabbtn.dll
2008-12-08 23:50:58 ----A---- C:\Windows\system32\psbase.dll
2008-12-08 23:50:58 ----A---- C:\Windows\system32\msxbde40.dll
2008-12-08 23:50:58 ----A---- C:\Windows\system32\inetppui.dll
2008-12-08 23:50:58 ----A---- C:\Windows\system32\dmscript.dll
2008-12-08 23:50:58 ----A---- C:\Windows\system32\dmloader.dll
2008-12-08 23:50:58 ----A---- C:\Windows\system32\CertEnrollCtrl.exe
2008-12-08 23:50:58 ----A---- C:\Windows\fveupdate.exe
2008-12-08 23:50:57 ----A---- C:\Windows\system32\WsmRes.dll
2008-12-08 23:50:57 ----A---- C:\Windows\system32\wshcon.dll
2008-12-08 23:50:57 ----A---- C:\Windows\system32\PlaySndSrv.dll
2008-12-08 23:50:57 ----A---- C:\Windows\system32\Netplwiz.exe
2008-12-08 23:50:57 ----A---- C:\Windows\system32\mspbde40.dll
2008-12-08 23:50:57 ----A---- C:\Windows\system32\msltus40.dll
2008-12-08 23:50:57 ----A---- C:\Windows\system32\icsunattend.exe
2008-12-08 23:50:57 ----A---- C:\Windows\system32\credssp.dll
2008-12-08 23:50:56 ----A---- C:\Windows\system32\WSHTCPIP.DLL
2008-12-08 23:50:56 ----A---- C:\Windows\system32\wship6.dll
2008-12-08 23:50:56 ----A---- C:\Windows\system32\tcpmon.ini
2008-12-08 23:50:56 ----A---- C:\Windows\system32\sxsstore.dll
2008-12-08 23:50:56 ----A---- C:\Windows\system32\setupSNK.exe
2008-12-08 23:50:56 ----A---- C:\Windows\system32\msvidc32.dll
2008-12-08 23:50:56 ----A---- C:\Windows\system32\localui.dll
2008-12-08 23:50:56 ----A---- C:\Windows\system32\lltdapi.dll
2008-12-08 23:50:56 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2008-12-08 23:50:56 ----A---- C:\Windows\system32\icaapi.dll
2008-12-08 23:50:56 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2008-12-08 23:50:56 ----A---- C:\Windows\system32\ComputerDefaults.exe
2008-12-08 23:50:55 ----A---- C:\Windows\system32\slwga.dll
2008-12-08 23:50:55 ----A---- C:\Windows\system32\sbunattend.exe
2008-12-08 23:50:55 ----A---- C:\Windows\system32\OptionalFeatures.exe
2008-12-08 23:50:55 ----A---- C:\Windows\system32\dmutil.dll
2008-12-08 23:50:54 ----A---- C:\Windows\system32\usbperf.dll
2008-12-08 23:50:54 ----A---- C:\Windows\system32\spopk.dll
2008-12-08 23:50:54 ----A---- C:\Windows\system32\serialui.dll
2008-12-08 23:50:54 ----A---- C:\Windows\system32\NcdProp.dll
2008-12-08 23:50:53 ----A---- C:\Windows\system32\odbcconf.dll
2008-12-08 23:50:53 ----A---- C:\Windows\system32\cofiredm.dll
2008-12-08 23:50:52 ----A---- C:\Windows\system32\rasctrs.dll
2008-12-08 23:50:52 ----A---- C:\Windows\system32\msobjs.dll
2008-12-08 23:50:52 ----A---- C:\Windows\system32\msfeedssync.exe
2008-12-08 23:50:52 ----A---- C:\Windows\system32\ieencode.dll
2008-12-08 23:50:52 ----A---- C:\Windows\system32\hbaapi.dll
2008-12-08 23:50:52 ----A---- C:\Windows\system32\corpol.dll
2008-12-08 23:50:51 ----A---- C:\Windows\system32\vdmdbg.dll
2008-12-08 23:50:51 ----A---- C:\Windows\system32\nlsbres.dll
2008-12-08 23:50:51 ----A---- C:\Windows\system32\midimap.dll
2008-12-08 23:50:51 ----A---- C:\Windows\system32\LogonUI.exe
2008-12-08 23:50:51 ----A---- C:\Windows\system32\iprtprio.dll
2008-12-08 23:50:51 ----A---- C:\Windows\system32\InfDefaultInstall.exe
2008-12-08 23:50:51 ----A---- C:\Windows\system32\hnetmon.dll
2008-12-08 23:50:51 ----A---- C:\Windows\system32\esentprf.dll
2008-12-08 23:50:50 ----A---- C:\Windows\system32\url.dll
2008-12-08 23:50:49 ----A---- C:\Windows\system32\osbaseln.dll
2008-12-08 23:50:49 ----A---- C:\Windows\system32\cfgmgr32.dll
2008-12-08 23:50:48 ----A---- C:\Windows\system32\msmmsp.dll
2008-12-08 23:50:48 ----A---- C:\Windows\system32\msisip.dll
2008-12-08 23:50:47 ----A---- C:\Windows\system32\winusb.dll
2008-12-08 23:50:47 ----A---- C:\Windows\system32\rdpcfgex.dll
2008-12-08 23:50:47 ----A---- C:\Windows\system32\dispex.dll
2008-12-08 23:50:45 ----A---- C:\Windows\system32\riched32.dll
2008-12-08 23:50:45 ----A---- C:\Windows\system32\Nlsdl.dll
2008-12-08 23:50:45 ----A---- C:\Windows\system32\msidle.dll
2008-12-08 23:50:45 ----A---- C:\Windows\system32\idndl.dll
2008-12-08 23:50:44 ----A---- C:\Windows\system32\spwmp.dll
2008-12-08 23:50:43 ----A---- C:\Windows\system32\KBDKOR.DLL
2008-12-08 23:50:43 ----A---- C:\Windows\system32\KBDJPN.DLL
2008-12-08 23:50:42 ----A---- C:\Windows\system32\iscsilog.dll
2008-12-08 23:50:38 ----A---- C:\Windows\system32\WsmCl.dll
2008-12-08 23:50:37 ----A---- C:\Windows\system32\wmploc.DLL
2008-12-08 23:50:37 ----A---- C:\Windows\system32\vga64k.dll
2008-12-08 23:50:37 ----A---- C:\Windows\system32\vga256.dll
2008-12-08 23:50:37 ----A---- C:\Windows\system32\tsddd.dll
2008-12-08 23:50:37 ----A---- C:\Windows\system32\framebuf.dll
2008-12-08 23:50:37 ----A---- C:\Windows\system32\dxmasf.dll
2008-12-08 23:50:36 ----A---- C:\Windows\system32\vga.dll
2008-12-08 23:50:36 ----A---- C:\Windows\system32\spwizres.dll
2008-12-08 23:50:36 ----A---- C:\Windows\system32\f3ahvoas.dll
2008-12-08 23:50:36 ----A---- C:\Windows\system32\dmdskres2.dll
2008-12-08 23:50:36 ----A---- C:\Windows\system32\bootstr.dll
2008-12-08 23:50:34 ----A---- C:\Windows\system32\gatherWiredInfo.vbs
2008-12-08 23:50:33 ----A---- C:\Windows\system32\gatherWirelessInfo.vbs
2008-12-08 23:50:32 ----A---- C:\Windows\system32\fsmgmt.msc
2008-12-08 23:50:27 ----A---- C:\Windows\system32\vsp1cln.exe
2008-12-08 23:50:27 ----A---- C:\Windows\system32\perfmon.msc
2008-12-08 23:49:40 ----A---- C:\Windows\system32\xmllite.dll
2008-12-08 23:49:39 ----A---- C:\Windows\system32\wbemcomn.dll
2008-12-08 23:49:23 ----A---- C:\Windows\system32\sqmapi.dll
2008-12-08 23:49:22 ----A---- C:\Windows\system32\SmiInstaller.dll
2008-12-08 23:49:22 ----A---- C:\Windows\system32\SmiEngine.dll
2008-12-08 23:49:05 ----A---- C:\Windows\system32\wdscore.dll
2008-12-08 23:49:05 ----A---- C:\Windows\system32\PkgMgr.exe
2008-12-08 23:48:28 ----A---- C:\Windows\system32\drvstore.dll
2008-12-08 23:48:27 ----A---- C:\Windows\system32\mspatcha.dll
2008-12-08 23:48:27 ----A---- C:\Windows\system32\dpx.dll
2008-12-08 23:48:26 ----A---- C:\Windows\system32\msdelta.dll
2008-12-01 17:43:22 ----A---- C:\Windows\system32\es.dll
2008-12-01 17:09:00 ----D---- C:\Program Files\Common Files\xing shared
2008-12-01 17:08:51 ----A---- C:\Windows\system32\rmoc3260.dll
2008-12-01 17:08:45 ----D---- C:\Program Files\Real
2008-12-01 17:08:45 ----A---- C:\Windows\system32\pndx5032.dll
2008-12-01 17:08:45 ----A---- C:\Windows\system32\pndx5016.dll
2008-12-01 17:08:44 ----A---- C:\Windows\system32\pncrt.dll
2008-12-01 17:08:41 ----D---- C:\Program Files\Common Files\Real
2008-12-01 17:08:35 ----D---- C:\Users\Puyang\AppData\Roaming\Real
2008-12-01 17:07:34 ----D---- C:\Program Files\WinRAR
2008-12-01 17:06:29 ----D---- C:\Users\Puyang\AppData\Roaming\Media Player Classic
2008-12-01 01:00:03 ----A---- C:\Windows\system32\winipsec.dll
2008-12-01 01:00:03 ----A---- C:\Windows\system32\IPSECSVC.DLL
2008-12-01 01:00:03 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2008-12-01 01:00:02 ----A---- C:\Windows\system32\polstore.dll
2008-12-01 00:58:15 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2008-12-01 00:58:15 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2008-12-01 00:58:15 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2008-12-01 00:57:17 ----A---- C:\Windows\system32\gameux.dll
2008-12-01 00:43:50 ----A---- C:\Windows\system32\wmpeffects.dll
2008-12-01 00:42:34 ----A---- C:\Windows\system32\msxml3r.dll
2008-12-01 00:42:34 ----A---- C:\Windows\system32\msxml3.dll
2008-12-01 00:39:50 ----A---- C:\Windows\system32\netapi32.dll
2008-12-01 00:39:35 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-12-01 00:36:43 ----A---- C:\Windows\system32\hcrstco.dll
2008-12-01 00:36:43 ----A---- C:\Windows\system32\hccoin.dll
2008-12-01 00:33:49 ----A---- C:\Windows\system32\NlsLexicons0045.dll
2008-12-01 00:33:48 ----A---- C:\Windows\system32\NlsLexicons0049.dll
2008-12-01 00:33:48 ----A---- C:\Windows\system32\NlsLexicons0047.dll
2008-12-01 00:33:48 ----A---- C:\Windows\system32\NlsLexicons0046.dll
2008-12-01 00:33:47 ----A---- C:\Windows\system32\NlsLexicons0039.dll
2008-12-01 00:33:47 ----A---- C:\Windows\system32\NlsLexicons0021.dll
2008-12-01 00:33:47 ----A---- C:\Windows\system32\NlsLexicons0020.dll
2008-12-01 00:33:46 ----A---- C:\Windows\system32\NlsLexicons0024.dll
2008-12-01 00:33:46 ----A---- C:\Windows\system32\NlsLexicons0022.dll
2008-12-01 00:33:45 ----A---- C:\Windows\system32\NlsLexicons0027.dll
2008-12-01 00:33:45 ----A---- C:\Windows\system32\NlsLexicons0026.dll
2008-12-01 00:33:45 ----A---- C:\Windows\system32\NlsLexicons0010.dll
2008-12-01 00:33:44 ----A---- C:\Windows\system32\NlsLexicons0018.dll
2008-12-01 00:33:44 ----A---- C:\Windows\system32\NlsLexicons0013.dll
2008-12-01 00:33:44 ----A---- C:\Windows\system32\NlsLexicons0011.dll
2008-12-01 00:33:43 ----A---- C:\Windows\system32\NlsLexicons0019.dll
2008-12-01 00:33:42 ----A---- C:\Windows\system32\NlsLexicons0003.dll
2008-12-01 00:33:42 ----A---- C:\Windows\system32\NlsLexicons0002.dll
2008-12-01 00:33:42 ----A---- C:\Windows\system32\NlsLexicons0001.dll
2008-12-01 00:33:41 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2008-12-01 00:33:41 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2008-12-01 00:33:40 ----A---- C:\Windows\system32\NlsLexicons004e.dll
2008-12-01 00:33:40 ----A---- C:\Windows\system32\NlsLexicons004c.dll
2008-12-01 00:33:40 ----A---- C:\Windows\system32\NlsLexicons004b.dll
2008-12-01 00:33:40 ----A---- C:\Windows\system32\NlsLexicons004a.dll
2008-12-01 00:33:39 ----A---- C:\Windows\system32\NlsLexicons003e.dll
2008-12-01 00:33:39 ----A---- C:\Windows\system32\NlsLexicons002a.dll
2008-12-01 00:33:39 ----A---- C:\Windows\system32\NlsLexicons001a.dll
2008-12-01 00:33:38 ----A---- C:\Windows\system32\NlsLexicons001d.dll
2008-12-01 00:33:38 ----A---- C:\Windows\system32\NlsLexicons001b.dll
2008-12-01 00:33:37 ----A---- C:\Windows\system32\NlsLexicons000c.dll
2008-12-01 00:33:37 ----A---- C:\Windows\system32\NlsLexicons000a.dll
2008-12-01 00:33:36 ----A---- C:\Windows\system32\NlsLexicons0414.dll
2008-12-01 00:33:36 ----A---- C:\Windows\system32\NlsLexicons000f.dll
2008-12-01 00:33:36 ----A---- C:\Windows\system32\NlsLexicons000d.dll
2008-12-01 00:33:35 ----A---- C:\Windows\system32\NlsLexicons0816.dll
2008-12-01 00:33:35 ----A---- C:\Windows\system32\NlsLexicons0416.dll
2008-12-01 00:33:34 ----A---- C:\Windows\system32\NlsModels0011.dll
2008-12-01 00:33:34 ----A---- C:\Windows\system32\NlsLexicons081a.dll
2008-12-01 00:33:33 ----A---- C:\Windows\system32\NlsData0047.dll
2008-12-01 00:33:33 ----A---- C:\Windows\system32\NlsData0046.dll
2008-12-01 00:33:33 ----A---- C:\Windows\system32\NlsData0045.dll
2008-12-01 00:33:32 ----A---- C:\Windows\system32\NlsData0049.dll
2008-12-01 00:33:32 ----A---- C:\Windows\system32\NlsData0039.dll
2008-12-01 00:33:32 ----A---- C:\Windows\system32\NlsData0020.dll
2008-12-01 00:33:31 ----A---- C:\Windows\system32\NlsData0026.dll
2008-12-01 00:33:31 ----A---- C:\Windows\system32\NlsData0024.dll
2008-12-01 00:33:31 ----A---- C:\Windows\system32\NlsData0022.dll
2008-12-01 00:33:31 ----A---- C:\Windows\system32\NlsData0021.dll
2008-12-01 00:33:30 ----A---- C:\Windows\system32\NlsData0027.dll
2008-12-01 00:33:30 ----A---- C:\Windows\system32\NlsData0011.dll
2008-12-01 00:33:30 ----A---- C:\Windows\system32\NlsData0010.dll
2008-12-01 00:33:29 ----A---- C:\Windows\system32\NlsData0018.dll
2008-12-01 00:33:29 ----A---- C:\Windows\system32\NlsData0013.dll
2008-12-01 00:33:29 ----A---- C:\Windows\system32\NlsData0000.dll
2008-12-01 00:33:28 ----A---- C:\Windows\system32\NlsData0019.dll
2008-12-01 00:33:28 ----A---- C:\Windows\system32\NlsData0002.dll
2008-12-01 00:33:28 ----A---- C:\Windows\system32\NlsData0001.dll
2008-12-01 00:33:27 ----A---- C:\Windows\system32\NlsData0009.dll
2008-12-01 00:33:27 ----A---- C:\Windows\system32\NlsData0007.dll
2008-12-01 00:33:27 ----A---- C:\Windows\system32\NlsData0003.dll
2008-12-01 00:33:26 ----A---- C:\Windows\system32\NlsData004c.dll
2008-12-01 00:33:26 ----A---- C:\Windows\system32\NlsData004b.dll
2008-12-01 00:33:26 ----A---- C:\Windows\system32\NlsData004a.dll
2008-12-01 00:33:25 ----A---- C:\Windows\system32\NlsData004e.dll
2008-12-01 00:33:25 ----A---- C:\Windows\system32\NlsData003e.dll
2008-12-01 00:33:25 ----A---- C:\Windows\system32\NlsData002a.dll
2008-12-01 00:33:24 ----A---- C:\Windows\system32\NlsData001d.dll
2008-12-01 00:33:24 ----A---- C:\Windows\system32\NlsData001b.dll
2008-12-01 00:33:24 ----A---- C:\Windows\system32\NlsData001a.dll
2008-12-01 00:33:23 ----A---- C:\Windows\system32\NlsData000c.dll
2008-12-01 00:33:23 ----A---- C:\Windows\system32\NlsData000a.dll
2008-12-01 00:33:22 ----A---- C:\Windows\system32\NlsData0414.dll
2008-12-01 00:33:22 ----A---- C:\Windows\system32\NlsData000f.dll
2008-12-01 00:33:22 ----A---- C:\Windows\system32\NlsData000d.dll
2008-12-01 00:33:21 ----A---- C:\Windows\system32\NlsData0816.dll
2008-12-01 00:33:21 ----A---- C:\Windows\system32\NlsData0416.dll
2008-12-01 00:33:21 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2008-12-01 00:33:20 ----A---- C:\Windows\system32\NlsLexicons0c1a.dll
2008-12-01 00:33:20 ----A---- C:\Windows\system32\NlsData0c1a.dll
2008-12-01 00:33:20 ----A---- C:\Windows\system32\NlsData081a.dll
2008-12-01 00:31:01 ----A---- C:\Windows\system32\kbd106n.dll
2008-12-01 00:30:56 ----A---- C:\Windows\system32\winresume.exe
2008-12-01 00:30:56 ----A---- C:\Windows\system32\winload.exe
2008-12-01 00:30:55 ----A---- C:\Windows\system32\srdelayed.exe
2008-12-01 00:30:55 ----A---- C:\Windows\system32\srcore.dll
2008-12-01 00:30:55 ----A---- C:\Windows\system32\srclient.dll
2008-12-01 00:30:55 ----A---- C:\Windows\system32\rstrui.exe
2008-12-01 00:30:54 ----A---- C:\Windows\system32\setbcdlocale.dll
2008-12-01 00:30:54 ----A---- C:\Windows\system32\kd1394.dll
2008-12-01 00:30:53 ----A---- C:\Windows\system32\ci.dll
2008-12-01 00:30:20 ----D---- C:\ProgramData\Adobe Systems
2008-12-01 00:30:03 ----D---- C:\Program Files\Common Files\Adobe Systems Shared
2008-12-01 00:26:20 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-12-01 00:26:20 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2008-12-01 00:26:19 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2008-12-01 00:25:37 ----D---- C:\ProgramData\Adobe
2008-12-01 00:25:37 ----D---- C:\Program Files\Common Files\Adobe
2008-12-01 00:24:04 ----A---- C:\Windows\system32\win32spl.dll
2008-12-01 00:24:04 ----A---- C:\Windows\system32\printcom.dll
2008-12-01 00:23:43 ----A---- C:\Windows\system32\wshrm.dll
2008-12-01 00:21:11 ----A---- C:\Windows\system32\INETRES.dll
2008-12-01 00:21:11 ----A---- C:\Windows\system32\inetcomm.dll
2008-12-01 00:20:50 ----A---- C:\Windows\system32\connect.dll
2008-12-01 00:20:10 ----A---- C:\Windows\system32\quartz.dll
2008-12-01 00:18:48 ----D---- C:\Program Files\MSXML 4.0
2008-12-01 00:18:13 ----A---- C:\Windows\system32\ntkrnlpa.exe
2008-12-01 00:18:12 ----A---- C:\Windows\system32\ntoskrnl.exe
2008-12-01 00:17:35 ----A---- C:\Windows\system32\msxml6r.dll
2008-12-01 00:17:35 ----A---- C:\Windows\system32\msxml6.dll
2008-12-01 00:16:27 ----A---- C:\Windows\system32\ieui.dll
2008-11-30 21:12:14 ----A---- C:\Windows\system32\wups2.dll
2008-11-30 21:12:14 ----A---- C:\Windows\system32\wucltux.dll
2008-11-30 21:12:14 ----A---- C:\Windows\system32\wuauclt.exe
2008-11-30 21:12:13 ----A---- C:\Windows\system32\wuaueng.dll
2008-11-30 21:11:51 ----A---- C:\Windows\system32\wups.dll
2008-11-30 21:11:51 ----A---- C:\Windows\system32\wudriver.dll
2008-11-30 21:11:51 ----A---- C:\Windows\system32\wuapi.dll
2008-11-30 21:11:34 ----A---- C:\Windows\system32\wuwebv.dll
2008-11-30 21:11:33 ----A---- C:\Windows\system32\wuapp.exe
2008-11-30 19:05:44 ----A---- C:\Windows\system32\CmdLineExt.dll
2008-11-30 18:52:44 ----D---- C:\Program Files\Bethesda Softworks
2008-11-30 18:52:43 ----A---- C:\Windows\system32\XAudio2_1.dll
2008-11-30 18:52:43 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2008-11-30 18:52:43 ----A---- C:\Windows\system32\xactengine3_1.dll
2008-11-30 18:52:43 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2008-11-30 18:52:42 ----A---- C:\Windows\system32\d3dx10_38.dll
2008-11-30 18:52:42 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2008-11-30 18:52:41 ----A---- C:\Windows\system32\XAudio2_0.dll
2008-11-30 18:52:41 ----A---- C:\Windows\system32\D3DX9_38.dll
2008-11-30 18:52:40 ----A---- C:\Windows\system32\xactengine3_0.dll
2008-11-30 18:52:40 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2008-11-30 18:52:39 ----A---- C:\Windows\system32\d3dx10_37.dll
2008-11-30 18:52:39 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2008-11-30 18:52:38 ----A---- C:\Windows\system32\xactengine2_10.dll
2008-11-30 18:52:38 ----A---- C:\Windows\system32\D3DX9_37.dll
2008-11-30 18:52:37 ----A---- C:\Windows\system32\d3dx10_36.dll
2008-11-30 18:52:37 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2008-11-30 18:52:36 ----A---- C:\Windows\system32\d3dx9_36.dll
2008-11-30 18:52:35 ----A---- C:\Windows\system32\xactengine2_9.dll
2008-11-30 18:52:34 ----A---- C:\Windows\system32\d3dx10_35.dll
2008-11-30 18:52:34 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2008-11-30 18:52:33 ----A---- C:\Windows\system32\xactengine2_8.dll
2008-11-30 18:52:33 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2008-11-30 18:52:33 ----A---- C:\Windows\system32\d3dx9_35.dll
2008-11-30 18:52:32 ----A---- C:\Windows\system32\d3dx10_34.dll
2008-11-30 18:52:32 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2008-11-30 18:52:31 ----A---- C:\Windows\system32\d3dx9_34.dll
2008-11-30 18:52:30 ----A---- C:\Windows\system32\xactengine2_7.dll
2008-11-30 18:52:27 ----A---- C:\Windows\system32\xactengine2_6.dll
2008-11-30 18:52:26 ----A---- C:\Windows\system32\xactengine2_5.dll
2008-11-30 18:52:26 ----A---- C:\Windows\system32\d3dx10.dll
2008-11-30 18:52:25 ----A---- C:\Windows\system32\xactengine2_4.dll
2008-11-30 18:52:25 ----A---- C:\Windows\system32\x3daudio1_1.dll
2008-11-30 18:52:25 ----A---- C:\Windows\system32\d3dx9_32.dll
2008-11-30 18:52:24 ----A---- C:\Windows\system32\xactengine2_3.dll
2008-11-30 18:52:24 ----A---- C:\Windows\system32\d3dx9_31.dll
2008-11-30 18:52:23 ----A---- C:\Windows\system32\xinput1_2.dll
2008-11-30 18:52:23 ----A---- C:\Windows\system32\xinput1_1.dll
2008-11-30 18:52:23 ----A---- C:\Windows\system32\xactengine2_2.dll
2008-11-30 18:52:22 ----A---- C:\Windows\system32\xactengine2_1.dll
2008-11-30 18:52:01 ----A---- C:\Windows\system32\d3dx9_30.dll
2008-11-30 18:52:00 ----A---- C:\Windows\system32\xactengine2_0.dll
2008-11-30 18:52:00 ----A---- C:\Windows\system32\x3daudio1_0.dll
2008-11-30 18:51:59 ----A---- C:\Windows\system32\d3dx9_29.dll
2008-11-30 18:51:57 ----A---- C:\Windows\system32\d3dx9_28.dll
2008-11-30 18:51:55 ----A---- C:\Windows\system32\d3dx9_27.dll
2008-11-30 18:51:54 ----A---- C:\Windows\system32\d3dx9_26.dll
2008-11-30 18:51:52 ----A---- C:\Windows\system32\d3dx9_25.dll
2008-11-30 18:51:51 ----A---- C:\Windows\system32\d3dx9_24.dll
2008-11-30 18:26:28 ----DC---- C:\Windows\system32\DRVSTORE
2008-11-30 18:26:28 ----A---- C:\Windows\system32\GEARAspi.dll
2008-11-30 18:26:09 ----D---- C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-11-30 18:26:09 ----D---- C:\Program Files\iTunes
2008-11-30 18:26:05 ----D---- C:\Users\Puyang\AppData\Roaming\Macromedia
2008-11-30 18:25:57 ----D---- C:\Windows\system32\Macromed
2008-11-30 18:24:55 ----D---- C:\Program Files\Bonjour
2008-11-30 18:20:43 ----D---- C:\Program Files\Apple Software Update
2008-11-30 18:16:50 ----D---- C:\Program Files\Common Files\Apple
2008-11-30 18:16:48 ----D---- C:\ProgramData\Apple
2008-11-30 18:05:52 ----A---- C:\Windows\system32\xinput1_3.dll
2008-11-30 18:05:51 ----A---- C:\Windows\system32\d3dx10_33.dll
2008-11-30 18:05:51 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2008-11-30 18:05:49 ----A---- C:\Windows\system32\d3dx9_33.dll
2008-11-30 18:05:36 ----D---- C:\Windows\system32\xlive
  • 0

#12
fuel323
Posted 26 December 2008 - 08:01 AM

fuel323

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts
======List of files/folders modified in the last 1 months======

2008-12-26 21:56:30 ----D---- C:\Windows\Temp
2008-12-26 21:56:11 ----D---- C:\Windows\Prefetch
2008-12-26 21:56:02 ----D---- C:\Users\Puyang\AppData\Roaming\uTorrent
2008-12-26 12:25:10 ----D---- C:\Windows\system32\catroot2
2008-12-26 12:24:32 ----D---- C:\Windows\system32\WDI
2008-12-25 23:55:29 ----SHD---- C:\System Volume Information
2008-12-24 21:30:15 ----RD---- C:\Program Files
2008-12-24 21:30:15 ----D---- C:\Windows\system32\drivers
2008-12-24 21:30:15 ----D---- C:\Windows\System32
2008-12-24 21:28:46 ----HD---- C:\ProgramData
2008-12-24 16:16:25 ----SHD---- C:\Windows\Installer
2008-12-24 16:15:21 ----D---- C:\Program Files\Common Files\microsoft shared
2008-12-24 16:15:04 ----A---- C:\Windows\win.ini
2008-12-24 15:26:21 ----D---- C:\Windows\system32\catroot
2008-12-24 15:26:15 ----D---- C:\ProgramData\WLInstaller
2008-12-24 13:11:21 ----D---- C:\Windows
2008-12-24 13:10:21 ----D---- C:\Program Files\Common Files
2008-12-23 22:56:54 ----SD---- C:\Windows\Downloaded Program Files
2008-12-23 16:21:41 ----SD---- C:\Users\Puyang\AppData\Roaming\Microsoft
2008-12-23 03:00:48 ----D---- C:\Windows\winsxs
2008-12-15 17:41:41 ----D---- C:\Windows\inf
2008-12-15 17:41:41 ----A---- C:\Windows\system32\PerfStringBackup.INI
2008-12-13 10:40:09 ----RSD---- C:\Windows\Fonts
2008-12-12 21:51:59 ----D---- C:\Program Files\Common Files\System
2008-12-12 21:51:26 ----D---- C:\Windows\Help
2008-12-12 21:51:07 ----SD---- C:\ProgramData\Microsoft
2008-12-12 21:49:20 ----D---- C:\Windows\system
2008-12-12 15:37:49 ----D---- C:\Windows\system32\LogFiles
2008-12-11 21:57:12 ----HD---- C:\Program Files\InstallShield Installation Information
2008-12-11 11:09:03 ----D---- C:\Windows\rescache
2008-12-11 01:44:44 ----D---- C:\Program Files\Windows Mail
2008-12-11 01:44:43 ----D---- C:\Windows\AppPatch
2008-12-11 01:44:41 ----D---- C:\Windows\system32\en-US
2008-12-10 07:24:37 ----A---- C:\Windows\system32\mrt.exe
2008-12-10 00:54:33 ----D---- C:\Windows\PolicyDefinitions
2008-12-09 23:34:43 ----D---- C:\Windows\Logs
2008-12-09 01:44:50 ----D---- C:\Windows\Microsoft.NET
2008-12-09 01:44:49 ----RSD---- C:\Windows\assembly
2008-12-09 01:40:49 ----SHD---- C:\Boot
2008-12-09 01:40:44 ----ASH---- C:\Program Files\desktop.ini
2008-12-09 01:35:09 ----D---- C:\Program Files\Windows Calendar
2008-12-09 01:35:07 ----D---- C:\Program Files\Windows Sidebar
2008-12-09 01:35:07 ----D---- C:\Program Files\Movie Maker
2008-12-09 01:35:05 ----D---- C:\Program Files\Windows Media Player
2008-12-09 01:35:05 ----D---- C:\Program Files\Internet Explorer
2008-12-09 01:35:03 ----D---- C:\Program Files\Windows Collaboration
2008-12-09 01:35:02 ----D---- C:\Program Files\Windows Photo Gallery
2008-12-09 01:34:54 ----D---- C:\Program Files\Windows Defender
2008-12-09 01:34:52 ----D---- C:\Windows\servicing
2008-12-09 01:34:33 ----D---- C:\Windows\MSAgent
2008-12-09 01:34:31 ----D---- C:\Windows\L2Schemas
2008-12-09 01:34:31 ----D---- C:\Windows\IME
2008-12-09 01:34:31 ----D---- C:\Windows\DigitalLocker
2008-12-09 01:34:30 ----D---- C:\Windows\system32\XPSViewer
2008-12-09 01:34:30 ----D---- C:\Windows\system32\ko-KR
2008-12-09 01:34:30 ----D---- C:\Windows\system32\da-DK
2008-12-09 01:34:30 ----D---- C:\Windows\system32\com
2008-12-09 01:34:27 ----D---- C:\Windows\system32\oobe
2008-12-09 01:34:27 ----D---- C:\Windows\system32\it-IT
2008-12-09 01:34:27 ----D---- C:\Windows\system32\el-GR
2008-12-09 01:34:27 ----D---- C:\Windows\system32\de-DE
2008-12-09 01:34:26 ----D---- C:\Windows\system32\sysprep
2008-12-09 01:34:25 ----D---- C:\Windows\system32\migration
2008-12-09 01:34:17 ----D---- C:\Windows\system32\AdvancedInstallers
2008-12-09 01:34:16 ----D---- C:\Windows\system32\sv-SE
2008-12-09 01:34:16 ----D---- C:\Windows\system32\ru-RU
2008-12-09 01:34:16 ----D---- C:\Windows\system32\ias
2008-12-09 01:34:16 ----D---- C:\Windows\system32\he-IL
2008-12-09 01:34:16 ----D---- C:\Windows\system32\fr-FR
2008-12-09 01:34:15 ----D---- C:\Windows\system32\SLUI
2008-12-09 01:34:15 ----D---- C:\Windows\system32\setup
2008-12-09 01:34:15 ----D---- C:\Windows\system32\pt-PT
2008-12-09 01:34:15 ----D---- C:\Windows\system32\hu-HU
2008-12-09 01:34:15 ----D---- C:\Windows\system32\fi-FI
2008-12-09 01:34:15 ----D---- C:\Windows\system32\cs-CZ
2008-12-09 01:34:14 ----D---- C:\Windows\system32\zh-TW
2008-12-09 01:34:14 ----D---- C:\Windows\system32\zh-CN
2008-12-09 01:34:14 ----D---- C:\Windows\system32\pl-PL
2008-12-09 01:34:14 ----D---- C:\Windows\system32\manifeststore
2008-12-09 01:34:14 ----D---- C:\Windows\system32\ja-JP
2008-12-09 01:34:14 ----D---- C:\Windows\system32\es-ES
2008-12-09 01:34:14 ----D---- C:\Windows\system32\en
2008-12-09 01:34:13 ----D---- C:\Windows\system32\ro-RO
2008-12-09 01:34:06 ----D---- C:\Windows\system32\wbem
2008-12-09 01:34:06 ----D---- C:\Windows\system32\tr-TR
2008-12-09 01:34:01 ----D---- C:\Windows\system32\nl-NL
2008-12-09 01:34:01 ----D---- C:\Windows\system32\nb-NO
2008-12-09 01:34:01 ----D---- C:\Windows\system32\ar-SA
2008-12-09 01:33:55 ----D---- C:\Windows\system32\migwiz
2008-12-09 01:33:53 ----D---- C:\Windows\system32\pt-BR
2008-12-09 01:30:28 ----D---- C:\Windows\Boot
2008-12-09 01:30:19 ----D---- C:\Windows\system32\Boot
2008-12-09 01:12:05 ----D---- C:\Windows\LiveKernelReports
2008-12-09 00:08:24 ----A---- C:\Windows\system32\ifxcardm.dll
2008-12-09 00:08:23 ----A---- C:\Windows\system32\axaltocm.dll
2008-12-02 22:27:42 ----SHD---- C:\$Recycle.Bin
2008-12-02 22:27:02 ----RD---- C:\Users
2008-12-01 02:34:31 ----D---- C:\Windows\system32\ras
2008-12-01 02:34:31 ----D---- C:\Windows\system32\icsxml
2008-12-01 00:44:18 ----D---- C:\Windows\Debug
2008-12-01 00:32:08 ----D---- C:\Users\Puyang\AppData\Roaming\Adobe
2008-12-01 00:25:20 ----D---- C:\Program Files\Adobe
2008-12-01 00:15:40 ----D---- C:\Windows\SoftwareDistribution
2008-11-30 18:50:03 ----D---- C:\Program Files\Common Files\InstallShield
2008-11-30 18:26:12 ----D---- C:\Program Files\iPod
2008-11-30 18:24:30 ----D---- C:\Program Files\QuickTime
2008-11-30 18:24:14 ----D---- C:\ProgramData\Apple Computer
2008-11-30 18:20:55 ----D---- C:\Windows\system32\Tasks
2008-11-30 17:58:45 ----D---- C:\ProgramData\CanonIJPLM

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\Windows\System32\Drivers\avgldx86.sys [2007-05-30 97928]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\Windows\System32\Drivers\avgmfx86.sys [2007-05-30 26824]
R2 TBPanel;TBPanel; C:\Windows\system32\drivers\TBPanel.sys [2002-07-27 5306]
R3 AvgWfpX;AVG Free8 Firewall Driver x86; C:\Windows\System32\Drivers\avgwfpx.sys [2007-05-30 69128]
R3 e1express;Intel® PRO/1000 PCI Express Network Connection Driver; C:\Windows\system32\DRIVERS\e1e6032.sys [2008-01-19 220672]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]
R3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-09-17 7379872]
S3 Cardex;Cardex; \??\C:\Windows\system32\drivers\TBPANEL.SYS [2002-07-27 5306]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-09-10 611664]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424]
R2 avg8emc;AVG Free8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2007-05-30 875288]
R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2007-05-30 231704]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 IJPLMSVC;PIXMA Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2007-04-14 97432]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-09-17 196608]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-11-20 536872]
R3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-12-01 72704]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2008-12-11 104944]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

-----------------EOF-----------------
  • 0

#13
kahdah
Posted 26 December 2008 - 08:06 AM

kahdah

    GeekU Teacher

  • Retired Staff
  • 15,822 posts
Cleanup:

Please download OT CLeanit from Here save it to your desktop.
Double click on OT Clean it to run it.
Then click on Clean up.
Restart your computer when prompted.
This will remove what tools we used.
===============
Delete\uninstall anything else that we have used.

Including this folder C:\Rsit

System Restore
Then I will need you to reset your System Restore points.
The link below shows how to create a clean restore point.
How to Turn On and Turn Off System Restore in Windows XP
http://support.micro...kb/310405/en-us

If you are using Vista then see this link > http://www.bleepingc...143.html#manual
=====================================
After that your log is clean. :)

The following is a list of tools and utilities that I like to suggest to people.
You do not have to have all or any of them they are only suggestions.
This list is full of great tools and utilities to help you understand how you got infected and how to keep from getting infected again.

Spybot Search & Destroy-Uber powerful tool which can search and annhilate nasties that make it onto your system. Now with an Immunize section that will help prevent future infections.

Spyware Blaster - Great prevention tool to keep nasties from installing on your system.

Spywareguard-Works as a Spyware "Shield" to protect your computer from getting malware in the first place.

Windows Updates - It is very important to make sure that both Internet Explorer and Windows are kept current with the latest critical security patches from Microsoft. To do this just start Internet Explorer and select Tools > Windows Update, and follow the online instructions from there.

Prevention article To find out more information about how you got infected in the first place and some great guidelines to follow to prevent future infections please read the Prevention artice by Miekiemoes.

If your computer is slow Is a tutorial on what you can do if your computer is slow.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP