Just nu i M3-nätverket
Gå till innehåll

Virtumonde - Hur få bort?


Tangemo

Rekommendera Poster

Så där, nu var middagen uppäten. ;)

 

Ladda ner RSIT (random's system information tool) till Skrivbordet

http://images.malwareremoval.com/random/RSIT.exe

Starta programmet och klistra in båda loggarna som kommer ut. Om de inte kommer upp automatiskt så finns de i mappen C:\rsit som log.txt och info.txt.

 

Skanna datorn med Blacklight:

http://www.f-secure.com/security_center/ länken Blackllight

Klistra in loggen därifrån om den hittar något.

 

 

Länk till kommentar
Dela på andra webbplatser

Hej...

 

[log]info.txt logfile of random's system information tool 1.02 2008-09-19 20:57:02

 

======Uninstall list======

 

-->C:\Windows\system32\\MSIEXEC.EXE /x {637099FB-45FD-4BC7-9651-6FB540DBB749}

-->MsiExec /X{AFD5ED58-271A-4907-96C2-2745C83BB035}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-041D-0000-0000000FF1CE} /uninstall {E6B1E9D4-FBDC-44B2-B825-246D1B466C5B}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-041D-0000-0000000FF1CE} /uninstall {E6B1E9D4-FBDC-44B2-B825-246D1B466C5B}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-041D-0000-0000000FF1CE} /uninstall {E6B1E9D4-FBDC-44B2-B825-246D1B466C5B}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-041D-0000-0000000FF1CE} /uninstall {E6B1E9D4-FBDC-44B2-B825-246D1B466C5B}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-041D-0000-0000000FF1CE} /uninstall {E6B1E9D4-FBDC-44B2-B825-246D1B466C5B}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-041D-0000-0000000FF1CE} /uninstall {E6B1E9D4-FBDC-44B2-B825-246D1B466C5B}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040B-0000-0000000FF1CE} /uninstall {F14C929B-E0E6-4EB5-8BFD-FC71AAC7D39C}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-041D-0000-0000000FF1CE} /uninstall {A8626CEF-CB0A-4BC2-8F51-210A43B6158D}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-041D-0000-0000000FF1CE} /uninstall {E6B1E9D4-FBDC-44B2-B825-246D1B466C5B}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-006E-041D-0000-0000000FF1CE} /uninstall {C41B2E34-C30E-4989-8A9D-6B0805B33EC1}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00A1-041D-0000-0000000FF1CE} /uninstall {E6B1E9D4-FBDC-44B2-B825-246D1B466C5B}

2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00BA-041D-0000-0000000FF1CE} /uninstall {E6B1E9D4-FBDC-44B2-B825-246D1B466C5B}

7-Zip 4.60 beta-->"C:\Program Files\7-Zip\Uninstall.exe"

Adobe Flash Player ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe

Adobe Flash Player Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe

Adobe Photoshop Lightroom 2-->MsiExec.exe /I{531BC138-F1F7-496B-879C-F039ECEF438D}

Adobe Reader 8.1.0 - Deutsch-->MsiExec.exe /I{AC76BA86-7AD7-1031-7B44-A81000000003}

Allway Sync version 8.3.1-->"C:\Program Files\Allway Sync\unins000.exe"

Apple Mobile Device Support-->MsiExec.exe /I{AA9768AA-FF0B-4C66-A085-31E934F77841}

Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}

Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}

BUFFALO NAS Navigator-->C:\Windows\UN060501.EXE /U

CDDRV_Installer-->MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A}

Citrix Presentation Server Client-->MsiExec.exe /I{2624B680-02BC-4CBC-839C-DA20DF6EF6EC}

ESET NOD32 Antivirus-->MsiExec.exe /I{2204AF25-80E5-468E-B46D-795685B35DEB}

ffdshow [rev 2079] [2008-08-15]-->"C:\Program Files\ffdshow\unins000.exe"

Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}

Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar2.dll"

GTA San Andreas-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}\setup.exe" -l0x9 -removeonly

Hardware Diagnose Tools-->C:\Program Files\PC-Doctor 5 for Windows\uninst.exe

Hauppauge MCE XP/Vista Software Encoder (2.0.25149)-->C:\PROGRA~1\WinTV\UNSftMCE.EXE C:\PROGRA~1\WinTV\softMCE.LOG

Hewlett-Packard Active Check-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}

Hewlett-Packard Asset Agent for Health Check-->MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}

HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall

HP Active Support Library 32 bit components-->MsiExec.exe /I{6D3DB611-D5E8-4E4B-8952-0D3F549F9CC6}

HP Active Support Library-->C:\Program Files\InstallShield Installation Information\{0A47BAFF-D4FF-4BD3-96CA-02A22EA62722}\setup.exe -runfromtemp -l0x0409

HP Customer Experience Enhancements-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB5E289E-76BF-4251-9F3F-9B763F681AE0}\setup.exe" -l0x9 -removeonly

HP Customer Feedback-->MsiExec.exe /I{9DBA770F-BF73-4D39-B1DF-6035D95268FC}

HP Easy Setup - Frontend-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40F7AED3-0C7D-4582-99F6-484A515C73F2}\setup.exe" -l0x9 -removeonly

HP On-Screen Cap/Num/Scroll Lock Indicator-->C:\Windows\system32\OsdRemove.exe

HP Photosmart Essential 2.01-->C:\Program Files\HP\Digital Imaging\PhotoSmartEssential\hpzscr01.exe -datfile hpqbud13.dat

HP Picasso Media Center Add-In-->MsiExec.exe /I{55979C41-7D6A-49CC-B591-64AC1BBE2C8B}

HP Total Care Advisor-->MsiExec.exe /X{0DDA7620-4F8B-43B3-8828-CA5EE292FA3B}

HP Update-->MsiExec.exe /X{7059BDA7-E1DB-442C-B7A1-6144596720A4}

Intel® PRO Network Connections Drivers-->Prounstl.exe

Intel® Viiv™ Software-->MsiExec.exe /X{6E7BF6EC-C3E7-43A7-8A03-0D204E3EC01B} /qb!

iTunes-->MsiExec.exe /I{41B9E2CF-0B3F-442A-B5B3-592A4A355634}

Java 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}

KhalInstallWrapper-->MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355}

Kontrollpanelen MobileMe-->MsiExec.exe /I{6DA9102E-199F-43A0-A36B-6EF48081A658}

Logitech SetPoint-->C:\Program Files\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe -runfromtemp -l0x001d -removeonly

MagicRotation-->C:\Program Files\InstallShield Installation Information\{823DEA95-A69C-44BD-BF8B-297615213EBD}\setup.exe -runfromtemp -l0x001d -removeonly

MagicTunePremium-->C:\Program Files\InstallShield Installation Information\{59625CC8-69B3-4917-864B-3CE27B76DCF3}\setup.exe -runfromtemp -l0x001d -removeonly

Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"

Microsoft Office Access MUI (Swedish) 2007-->MsiExec.exe /X{90120000-0015-041D-0000-0000000FF1CE}

Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL

Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}

Microsoft Office Excel MUI (Swedish) 2007-->MsiExec.exe /X{90120000-0016-041D-0000-0000000FF1CE}

Microsoft Office Groove MUI (Swedish) 2007-->MsiExec.exe /X{90120000-00BA-041D-0000-0000000FF1CE}

Microsoft Office InfoPath MUI (Swedish) 2007-->MsiExec.exe /X{90120000-0044-041D-0000-0000000FF1CE}

Microsoft Office OneNote MUI (Swedish) 2007-->MsiExec.exe /X{90120000-00A1-041D-0000-0000000FF1CE}

Microsoft Office Outlook MUI (Swedish) 2007-->MsiExec.exe /X{90120000-001A-041D-0000-0000000FF1CE}

Microsoft Office PowerPoint MUI (Swedish) 2007-->MsiExec.exe /X{90120000-0018-041D-0000-0000000FF1CE}

Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}

Microsoft Office Proof (Finnish) 2007-->MsiExec.exe /X{90120000-001F-040B-0000-0000000FF1CE}

Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}

Microsoft Office Proof (Swedish) 2007-->MsiExec.exe /X{90120000-001F-041D-0000-0000000FF1CE}

Microsoft Office Proofing (Swedish) 2007-->MsiExec.exe /X{90120000-002C-041D-0000-0000000FF1CE}

Microsoft Office Publisher MUI (Swedish) 2007-->MsiExec.exe /X{90120000-0019-041D-0000-0000000FF1CE}

Microsoft Office Shared MUI (Swedish) 2007-->MsiExec.exe /X{90120000-006E-041D-0000-0000000FF1CE}

Microsoft Office Word MUI (Swedish) 2007-->MsiExec.exe /X{90120000-001B-041D-0000-0000000FF1CE}

Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}

Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}

Microsoft Works-->MsiExec.exe /I{4EA2F95F-A537-4D17-9E7F-6B3FF8D9BBE3}

Mozilla Firefox (3.0.1)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe

MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}

MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}

muvee autoProducer 6.0-->C:\Program Files\InstallShield Installation Information\{775B9052-3517-47FA-817D-1BB28363D43A}\setup.exe -runfromtemp -l0x0007 -removeonly

NOD32 v3.0.642 FiX1.2 by TemDono (31 days remaining forever up -->"C:\Program Files\ESET\ESET NOD32 Antivirus\unins000.exe"

NVIDIA Drivers-->C:\Windows\system32\NVUNINST.EXE UninstallGUI

NVIDIA PhysX v8.08.18-->MsiExec.exe /X{AFD5ED58-271A-4907-96C2-2745C83BB035}

OpenSource Flash Video Splitter (remove only)-->"C:\Program Files\OpenSource Flash Video Splitter\uninstall.exe"

Optimierte Multimedia-Tastatur-Lösung-->C:\HP\KBD\Install.exe /u

Personal 4.9.3-->"C:\Program Files\Personal\bin\persinst.exe" -u

Picasa 2-->"C:\Program Files\Picasa2\Uninstall.exe"

Python 2.5-->MsiExec.exe /I{0A2C5854-557E-48C8-835A-3B9F074BDCAA}

QuickTime-->MsiExec.exe /I{8DC42D05-680B-41B0-8878-6C14D24602DB}

Realtek High Definition Audio Driver-->RtlUpd.exe -r -m

Roxio Activation Module-->MsiExec.exe /I{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}

Roxio Backup MyPC-->MsiExec.exe /X{1E2F8094-9DCD-4B87-ADB3-25CC5A0442FF}

Roxio Creator Audio-->MsiExec.exe /X{83FFCFC7-88C6-41c6-8752-958A45325C82}

Roxio Creator Basic v9-->MsiExec.exe /X{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}

Roxio Creator Copy-->MsiExec.exe /X{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}

Roxio Creator Data-->MsiExec.exe /X{0D397393-9B50-4c52-84D5-77E344289F87}

Roxio Creator EasyArchive-->MsiExec.exe /X{11F93B4B-48F0-4A4E-AE77-DFA96A99664B}

Roxio Creator Tools-->MsiExec.exe /X{0394CDC8-FABD-4ed8-B104-03393876DFDF}

Roxio Express Labeler 3-->MsiExec.exe /X{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}

Roxio MyDVD Basic v9-->MsiExec.exe /X{938B1CD7-7C60-491E-AA90-1F1888168240}

Safari-->MsiExec.exe /I{C9D96682-5A4D-45FA-BA3E-DDCB2B0CB868}

Security Update for 2007 Microsoft Office System (KB951596)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {1AFF2298-CC00-4A3B-866A-C62B8373794E}

Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}

Security Update for Microsoft Office Excel 2007 (KB951546)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {7399DD71-8E24-4E60-B6A8-6CED89C0AC26}

Security Update for Microsoft Office OneNote 2007 (KB950130)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F1B2401C-B610-4BF2-AA1C-52C55827A8F4}

Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}

Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}

Security Update for Microsoft Office system 2007 (KB951808)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8F375E11-4FD6-4B89-9E2B-A76D48B51E00}

Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}

Security Update for Microsoft Office Word 2007 (KB950113)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {AD72BABE-C733-4FCF-9674-4314466191B9}

Skype™ Beta 4.0-->MsiExec.exe /X{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}

Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"

SvtPlayforVMC-->MsiExec.exe /X{DD1AB67B-1F43-45F9-80EE-8C781E89F4B5}

Total Commander (Remove or Repair)-->C:\Program Files\totalcmd\tcuninst.exe

Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}

Update for Office 2007 (KB946691)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}

Update for Outlook 2007 Junk Email Filter (kb956080)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {96CC215F-3F22-4E1E-A101-F0041934A456}

VideoLAN VLC media player 0.8.6i-->C:\Program Files\VideoLAN\VLC\uninstall.exe

Windows Live inloggningsassistenten-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}

Windows Live installer-->MsiExec.exe /X{E17F76BE-50E9-4E7C-ADF6-6D8F44A9C6F3}

Windows Live Messenger-->MsiExec.exe /X{20503DFE-E5B2-491E-B2C5-8BCB5BF5B9E9}

Windows Live Photo Gallery-->MsiExec.exe /X{BAA6BD76-9B5A-4ED3-98BE-0127E8F14541}

 

======Security center information======

 

AV: ESET NOD32 Antivirus 3.0

AS: ESET NOD32 Antivirus 3.0

AS: Windows-Defender

 

======Environment variables======

 

"ComSpec"=%SystemRoot%\system32\cmd.exe

"FP_NO_HOST_CHECK"=NO

"OS"=Windows_NT

"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\hp\bin\Python;c:\Program Files\Common Files\Roxio Shared\DLLShared;c:\Program Files\Common Files\Roxio Shared\9.0\DLLShared;C:\Program Files\QuickTime\QTSystem

"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC

"PROCESSOR_ARCHITECTURE"=x86

"TEMP"=%SystemRoot%\TEMP

"TMP"=%SystemRoot%\TEMP

"USERNAME"=SYSTEM

"windir"=%SystemRoot%

"PROCESSOR_LEVEL"=6

"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 11, GenuineIntel

"PROCESSOR_REVISION"=0f0b

"NUMBER_OF_PROCESSORS"=4

"RoxioCentral"=c:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33"PLATFORM"=HPD

"PCBRAND"=Pavilion

"OnlineServices"=Online-Dienste

"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_01\lib\ext\QTJava.zip

"QTJAVA"=C:\Program Files\Java\jre1.6.0_01\lib\ext\QTJava.zip

 

-----------------EOF-----------------[/log]

 

[log]Logfile of random's system information tool 1.02 (written by random/random)

Run by Tangemo at 2008-09-19 20:56:55

Microsoft® Windows Vista™ Home Premium Service Pack 1

System drive C: has 110 GB (37%) free of 298 GB

Total RAM: 3071 MB (40% free)

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 20:57:00, on 2008-09-19

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v7.00 (7.00.6001.18000)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\hp\support\hpsysdrv.exe

C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe

C:\Windows\RtHDVCpl.exe

C:\Windows\System32\jureg.exe

C:\Windows\system32\schtasks.exe

C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

C:\Windows\System32\rundll32.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\MagicTune Premium\MagicTuneEngine.exe

C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\DAEMON Tools Lite\daemon.exe

C:\Windows\ehome\ehmsas.exe

C:\Program Files\BUFFALO\NASNAVI\NasNavi.exe

C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

C:\Program Files\Windows Sidebar\sidebar.exe

C:\hp\kbd\kbd.exe

C:\Program Files\Windows Media Player\WMPNSCFG.exe

C:\Windows\system32\conime.exe

C:\Windows\Explorer.exe

C:\Windows\system32\notepad.exe

C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\explorer.exe

C:\Users\Tangemo\Desktop\RSIT.exe

C:\Program Files\Trend Micro\HijackThis\Tangemo.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gp.se/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=SV_SE&c=74&bd=Pavilion&pf=desktop

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O2 - BHO: Windows Live inloggningshjälpen - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll

O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe

O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE

O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKLM\..\Run: [CCUTRAYICON] FactoryMode

O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [sunJavaUpdateReg] "C:\Windows\system32\jureg.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [MagicRotation] C:\Program Files\MagicRotation\MagicPvt.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [MagicTuneEngine] C:\Program Files\MagicTune Premium\MagicTuneEngine.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"

O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun

O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [f81b46e9] rundll32.exe "C:\Users\Tangemo\AppData\Local\Temp\urwftogd.dll",b

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST')

O4 - Startup: BUFFALO NAS Navigator.lnk = C:\Program Files\BUFFALO\NASNAVI\NasNavi.exe

O4 - Startup: Skärmurklipp och start för OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe

O4 - Global Startup: Personal.lnk = C:\Program Files\Personal\bin\Personal.exe

O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll

O9 - Extra button: Skicka till OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Ski&cka till OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O13 - Gopher Prefix:

O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: Intel® Alert Service (AlertService) - Intel® Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Bonjour-tjänst (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe

O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe

O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: HP Chasis Button Service (HPBtnSrv) - Unknown owner - c:\hp\HPEZBTN\HPBtnSrv.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: Intel DH Service (IntelDHSvcConf) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Intel® Software Services Manager (ISSM) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe

O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Intel® Viiv Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe

O23 - Service: Intel® Application Tracker (MCLServiceATL) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: Intel® Remoting Service (Remote UI Service) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe

O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe

O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe

 

--

End of file - 10574 bytes

 

======Scheduled tasks folder======

 

C:\Windows\tasks\HPCeeScheduleForTangemo.job

C:\Windows\tasks\User_Feed_Synchronization-{053E8DE7-978E-426B-BBFA-1B6E3E0C6716}.job

 

======Registry dump======

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]

Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]

Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-07-07 1562448]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]

Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Windows Live inloggningshjälpen - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]

Google Toolbar Helper - c:\program files\google\googletoolbar2.dll [2008-08-24 2427968]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar2.dll [2008-08-24 2427968]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"hpsysdrv"=c:\hp\support\hpsysdrv.exe [2007-04-18 65536]

"KBD"=C:\HP\KBD\KbdStub.EXE [2006-12-08 65536]

"OsdMaestro"=C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe [2007-02-15 118784]

"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-07-06 4669440]

"CCUTRAYICON"=FactoryMode []

"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2007-05-24 71176]

"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-05-11 40048]

"SunJavaUpdateReg"=C:\Windows\system32\jureg.exe [2008-06-10 54672]

"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]

"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2007-08-24 33648]

"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2008-06-10 1447168]

"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-08-15 13576736]

"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-08-15 92704]

"MagicRotation"=C:\Program Files\MagicRotation\MagicPvt.exe [2007-08-01 2572410]

"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]

"AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-09-03 111936]

"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-09-10 289576]

"MagicTuneEngine"=C:\Program Files\MagicTune Premium\MagicTuneEngine.exe [2008-08-05 69632]

"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]

"Kernel and Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2008-02-29 76304]

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-19 1233920]

"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]

"MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184]

"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-07-24 490952]

"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2008-09-03 267056]

"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-08-18 1832272]

"f81b46e9"=C:\Users\Tangemo\AppData\Local\Temp\urwftogd.dll []

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MagicTuneEngine]

C:\Program Files\MagicTune Premium\MagicTuneEngine.exe [2008-08-05 69632]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GammaTray.lnk]

C:\PROGRA~1\MAGICT~1\GAMMAT~1.EXE [2007-01-15 36864]

 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe

Personal.lnk - C:\Program Files\Personal\bin\Personal.exe

 

C:\Users\Tangemo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

BUFFALO NAS Navigator.lnk - C:\Program Files\BUFFALO\NASNAVI\NasNavi.exe

Skärmurklipp och start för OneNote 2007.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=0

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"EnableUIADesktopToggle"=0

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDrives"=0

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveAutoRun"=

"NoDriveTypeAutoRun"=

"NoDrives"=

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]

shell\AutoRun\command - E:\monsetup.exe

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{581079a0-7dc3-11dd-8fe3-001d60e0fc4f}]

shell\AutoRun\command - F:\Install.exe

 

 

======List of files/folders created in the last 1 months======

 

2008-09-19 20:56:55 ----D---- C:\rsit

2008-09-19 18:56:22 ----A---- C:\ComboFix.txt

2008-09-19 18:50:02 ----D---- C:\ComboFix

2008-09-18 22:30:29 ----D---- C:\ProgramData\LogiShrd

2008-09-18 22:30:28 ----D---- C:\Users\Tangemo\AppData\Roaming\Logitech

2008-09-18 22:27:46 ----A---- C:\Windows\system32\BtCoreIf.dll

2008-09-18 22:27:40 ----A---- C:\Windows\system32\KemXML.dll

2008-09-18 22:27:40 ----A---- C:\Windows\system32\KemWnd.dll

2008-09-18 22:27:40 ----A---- C:\Windows\system32\KemUtil.dll

2008-09-18 22:27:40 ----A---- C:\Windows\system32\kemutb.dll

2008-09-18 22:27:23 ----D---- C:\ProgramData\Logitech

2008-09-18 22:27:18 ----D---- C:\Program Files\Common Files\Logishrd

2008-09-18 22:27:16 ----D---- C:\Program Files\Logitech

2008-09-18 20:00:58 ----A---- C:\Windows\swreg.exe

2008-09-17 22:36:06 ----D---- C:\Windows\temp

2008-09-17 22:32:06 ----A---- C:\Windows\zip.exe

2008-09-17 22:32:06 ----A---- C:\Windows\VFind.exe

2008-09-17 22:32:06 ----A---- C:\Windows\swsc.exe

2008-09-17 22:32:06 ----A---- C:\Windows\sed.exe

2008-09-17 22:32:06 ----A---- C:\Windows\grep.exe

2008-09-17 22:32:06 ----A---- C:\Windows\fdsv.exe

2008-09-17 22:31:43 ----A---- C:\Windows\swxcacls.exe

2008-09-17 22:22:37 ----A---- C:\Windows\Nircmd.exe

2008-09-17 19:47:48 ----D---- C:\ProgramData\NortonInstaller

2008-09-17 18:57:32 ----A---- C:\Windows\system32\javaws.exe

2008-09-17 18:57:32 ----A---- C:\Windows\system32\javaw.exe

2008-09-17 18:57:32 ----A---- C:\Windows\system32\java.exe

2008-09-17 18:52:32 ----D---- C:\Program Files\Malwarebytes' Anti-Malware

2008-09-13 19:59:52 ----D---- C:\Users\Tangemo\AppData\Roaming\Mozilla

2008-09-13 12:33:42 ----D---- C:\ProgramData\Office Genuine Advantage

2008-09-13 11:20:05 ----D---- C:\Users\Tangemo\AppData\Roaming\Sync App Settings

2008-09-13 11:19:44 ----D---- C:\ProgramData\Sync App Settings

2008-09-13 11:19:20 ----D---- C:\Program Files\Allway Sync

2008-09-12 21:28:21 ----D---- C:\Program Files\Apple Software Update

2008-09-12 21:25:16 ----A---- C:\Windows\system32\GEARAspi.dll

2008-09-12 21:25:15 ----DC---- C:\Windows\system32\DRVSTORE

2008-09-12 21:24:57 ----D---- C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}

2008-09-12 21:24:57 ----D---- C:\Program Files\iTunes

2008-09-12 21:24:57 ----D---- C:\Program Files\iPod

2008-09-12 21:23:24 ----D---- C:\Program Files\Bonjour

2008-09-12 21:22:37 ----D---- C:\Program Files\QuickTime

2008-09-12 19:51:05 ----D---- C:\Program Files\Safari

2008-09-10 22:55:13 ----D---- C:\Users\Tangemo\AppData\Roaming\vlc

2008-09-10 22:52:11 ----D---- C:\Program Files\VideoLAN

2008-09-10 18:21:17 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll

2008-09-10 18:21:17 ----A---- C:\Windows\system32\Apphlpdm.dll

2008-09-10 18:20:56 ----A---- C:\Windows\system32\wmpeffects.dll

2008-09-10 18:20:02 ----A---- C:\Windows\system32\emdmgmt.dll

2008-09-10 18:20:02 ----A---- C:\Windows\system32\dataclen.dll

2008-09-10 18:20:02 ----A---- C:\Windows\system32\cdd.dll

2008-09-09 07:28:38 ----A---- C:\Windows\system32\msshooks.dll

2008-09-09 07:28:36 ----A---- C:\Windows\system32\msscb.dll

2008-09-09 07:28:33 ----A---- C:\Windows\system32\thawbrkr.dll

2008-09-09 07:28:33 ----A---- C:\Windows\system32\srchadmin.dll

2008-09-09 07:28:33 ----A---- C:\Windows\system32\SearchFilterHost.exe

2008-09-09 07:28:33 ----A---- C:\Windows\system32\propsys.dll

2008-09-09 07:28:33 ----A---- C:\Windows\system32\propdefs.dll

2008-09-09 07:28:33 ----A---- C:\Windows\system32\msstrc.dll

2008-09-09 07:28:33 ----A---- C:\Windows\system32\mssprxy.dll

2008-09-09 07:28:33 ----A---- C:\Windows\system32\mssitlb.dll

2008-09-09 07:28:33 ----A---- C:\Windows\system32\msshsq.dll

2008-09-09 07:28:33 ----A---- C:\Windows\system32\korwbrkr.dll

2008-09-09 07:28:32 ----A---- C:\Windows\system32\xmlfilter.dll

2008-09-09 07:28:32 ----A---- C:\Windows\system32\wsepno.dll

2008-09-09 07:28:32 ----A---- C:\Windows\system32\SearchProtocolHost.exe

2008-09-09 07:28:32 ----A---- C:\Windows\system32\SearchIndexer.exe

2008-09-09 07:28:32 ----A---- C:\Windows\system32\rtffilt.dll

2008-09-09 07:28:32 ----A---- C:\Windows\system32\offfilt.dll

2008-09-09 07:28:32 ----A---- C:\Windows\system32\nlhtml.dll

2008-09-09 07:28:32 ----A---- C:\Windows\system32\msscntrs.dll

2008-09-09 07:28:32 ----A---- C:\Windows\system32\mimefilt.dll

2008-09-09 07:28:32 ----A---- C:\Windows\system32\chtbrkr.dll

2008-09-09 07:28:32 ----A---- C:\Windows\system32\chsbrkr.dll

2008-09-09 07:28:31 ----A---- C:\Windows\system32\tquery.dll

2008-09-09 07:28:31 ----A---- C:\Windows\system32\mssvp.dll

2008-09-09 07:28:31 ----A---- C:\Windows\system32\mssrch.dll

2008-09-09 07:28:31 ----A---- C:\Windows\system32\mssphtb.dll

2008-09-09 07:28:31 ----A---- C:\Windows\system32\mssph.dll

2008-09-08 18:52:20 ----D---- C:\Windows\pss

2008-09-08 18:36:42 ----D---- C:\Program Files\Rockstar Games

2008-09-08 18:32:10 ----D---- C:\Program Files\DAEMON Tools Lite

2008-09-08 18:28:10 ----D---- C:\Users\Tangemo\AppData\Roaming\DAEMON Tools

2008-09-08 18:09:44 ----D---- C:\Users\Tangemo\AppData\Roaming\Roxio

2008-09-08 00:35:50 ----D---- C:\Program Files\MagicRotation

2008-09-08 00:35:50 ----A---- C:\Windows\system32\mpvthook.dll

2008-09-08 00:35:50 ----A---- C:\Windows\system32\MagicPvtUser.exe

2008-09-08 00:35:50 ----A---- C:\Windows\system32\magicpvt.dll

2008-09-08 00:26:39 ----D---- C:\Program Files\MagicTune Premium

2008-09-08 00:26:01 ----D---- C:\Users\Tangemo\AppData\Roaming\InstallShield

2008-09-07 23:53:18 ----D---- C:\Users\Tangemo\AppData\Roaming\Malwarebytes

2008-09-07 23:53:15 ----D---- C:\ProgramData\Malwarebytes

2008-09-07 23:46:14 ----D---- C:\Windows\Minidump

2008-09-07 23:30:23 ----D---- C:\Windows\erdnt

2008-09-07 20:19:10 ----D---- C:\Users\Tangemo\AppData\Roaming\skypePM

2008-09-07 20:17:10 ----D---- C:\Program Files\Common Files\Skype

2008-09-07 19:18:55 ----D---- C:\Users\Tangemo\AppData\Roaming\Skype

2008-09-07 19:17:45 ----D---- C:\ProgramData\Skype

2008-09-07 19:17:43 ----RD---- C:\Program Files\Skype

2008-09-07 17:15:50 ----SHD---- C:\found.000

2008-09-07 12:27:14 ----D---- C:\Users\Tangemo\AppData\Roaming\Backup MyPC

2008-09-07 12:22:50 ----D---- C:\HP Personal Media Drive

2008-09-07 12:15:58 ----D---- C:\Users\Tangemo\AppData\Roaming\ICAClient

2008-09-07 12:14:15 ----D---- C:\Program Files\Citrix

2008-09-06 23:06:51 ----A---- C:\Windows\wininit.ini

2008-09-06 22:32:40 ----D---- C:\ProgramData\Spybot - Search & Destroy

2008-09-06 22:32:40 ----D---- C:\Program Files\Spybot - Search & Destroy

2008-09-06 16:56:46 ----D---- C:\ProgramData\ESET

2008-09-06 16:56:46 ----D---- C:\Program Files\ESET

2008-09-06 16:36:23 ----D---- C:\Program Files\7-Zip

2008-09-06 15:23:49 ----D---- C:\QooBox

2008-09-06 14:34:45 ----A---- C:\VundoFix.txt

2008-09-06 14:23:39 ----A---- C:\Windows\system32\sugs1l3.dll

2008-09-06 13:44:28 ----D---- C:\Program Files\Trend Micro

2008-09-06 13:40:23 ----D---- C:\VundoFix Backups

2008-09-06 12:55:22 ----D---- C:\Program Files\Mozilla Firefox

2008-09-06 12:42:42 ----A---- C:\Windows\system32\rpcrt4.dll

2008-09-06 12:42:42 ----A---- C:\Windows\system32\ntoskrnl.exe

2008-09-06 12:42:42 ----A---- C:\Windows\system32\ntkrnlpa.exe

2008-09-06 12:42:41 ----A---- C:\Windows\system32\pacerprf.dll

2008-09-06 12:42:39 ----A---- C:\Windows\system32\wshext.dll

2008-09-06 12:42:39 ----A---- C:\Windows\system32\wscript.exe

2008-09-06 12:42:39 ----A---- C:\Windows\system32\vbscript.dll

2008-09-06 12:42:39 ----A---- C:\Windows\system32\scrrun.dll

2008-09-06 12:42:39 ----A---- C:\Windows\system32\scrobj.dll

2008-09-06 12:42:39 ----A---- C:\Windows\system32\jscript.dll

2008-09-06 12:42:39 ----A---- C:\Windows\system32\cscript.exe

2008-09-06 03:10:35 ----D---- C:\PerfLogs

2008-09-06 02:01:44 ----D---- C:\Windows\nvidia icons

2008-09-06 00:54:37 ----D---- C:\ProgramData\Lavasoft

2008-09-05 23:15:51 ----D---- C:\Windows\system32\AGEIA

2008-09-05 23:15:50 ----D---- C:\Program Files\AGEIA Technologies

2008-09-05 23:15:36 ----D---- C:\Program Files\Common Files\Wise Installation Wizard

2008-09-05 22:06:36 ----A---- C:\Windows\system32\nvexpbar.dll

2008-09-05 20:33:33 ----A---- C:\Windows\system32\nvcpluir.dll

2008-09-05 20:33:33 ----A---- C:\Windows\system32\nvcplui.exe

2008-09-05 20:11:56 ----D---- C:\Program Files\NVIDIA

2008-09-05 19:14:41 ----A---- C:\Windows\ntbtlog.txt

2008-09-04 20:51:14 ----D---- C:\Users\Tangemo\AppData\Roaming\Apple Computer

2008-09-04 20:48:36 ----D---- C:\ProgramData\Apple Computer

2008-09-04 20:46:44 ----D---- C:\Program Files\Common Files\Apple

2008-09-04 20:46:43 ----D---- C:\ProgramData\Apple

2008-09-04 20:30:01 ----D---- C:\Program Files\The GodFather

2008-09-04 19:38:15 ----A---- C:\ProgramData\pskt.ini

2008-09-04 19:38:15 ----A---- C:\ProgramData\BMfb287575.txt

2008-09-04 19:31:48 ----D---- C:\ProgramData\RoboForm

2008-09-03 23:41:54 ----A---- C:\Windows\system32\wups2.dll

2008-09-03 23:41:54 ----A---- C:\Windows\system32\wuauclt.exe

2008-09-03 23:41:53 ----A---- C:\Windows\system32\wucltux.dll

2008-09-03 23:41:53 ----A---- C:\Windows\system32\wuaueng.dll

2008-09-03 23:41:45 ----A---- C:\Windows\system32\wups.dll

2008-09-03 23:41:45 ----A---- C:\Windows\system32\wudriver.dll

2008-09-03 23:41:45 ----A---- C:\Windows\system32\wuapi.dll

2008-09-03 23:41:39 ----A---- C:\Windows\system32\wuwebv.dll

2008-09-03 23:41:39 ----A---- C:\Windows\system32\wuapp.exe

2008-09-03 23:23:45 ----A---- C:\Windows\system32\msonpmon.dll

2008-09-03 23:22:26 ----D---- C:\Program Files\Microsoft Visual Studio

2008-09-03 23:22:26 ----D---- C:\Program Files\Common Files\DESIGNER

2008-09-03 23:21:30 ----D---- C:\Program Files\Microsoft.NET

2008-09-03 23:18:40 ----D---- C:\Program Files\Microsoft Visual Studio 8

2008-09-03 23:16:16 ----D---- C:\Program Files\uTorrent

2008-09-03 23:03:04 ----D---- C:\Users\Tangemo\AppData\Roaming\uTorrent

2008-09-03 23:01:51 ----D---- C:\ProgramData\Microsoft Help

2008-09-03 23:01:33 ----RHD---- C:\MSOCache

2008-09-03 00:06:29 ----A---- C:\Windows\system32\d3dx9_32.dll

2008-09-03 00:06:05 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition

2008-09-03 00:05:07 ----D---- C:\Windows\PCHEALTH

2008-09-02 23:59:32 ----SHDC---- C:\Program Files\Common Files\WindowsLiveInstaller

2008-09-02 23:59:28 ----D---- C:\Program Files\Windows Live

2008-09-02 23:59:22 ----D---- C:\ProgramData\WLInstaller

2008-09-02 22:24:21 ----D---- C:\Program Files\Picasa2

2008-08-31 19:55:13 ----D---- C:\Users\Tangemo\AppData\Roaming\GHISLER

2008-08-31 19:55:13 ----D---- C:\Program Files\totalcmd

2008-08-30 23:19:29 ----D---- C:\Users\Tangemo\AppData\Roaming\muvee Technologies

2008-08-30 21:50:33 ----D---- C:\Program Files\OpenSource Flash Video Splitter

2008-08-30 21:45:18 ----A---- C:\Windows\system32\ff_vfw.dll.manifest

2008-08-30 21:45:18 ----A---- C:\Windows\system32\ff_vfw.dll

2008-08-30 21:45:17 ----D---- C:\Program Files\ffdshow

2008-08-30 21:45:17 ----A---- C:\Windows\system32\pthreadGC2.dll

2008-08-30 21:36:51 ----A---- C:\Windows\system32\SLsvc.exe

2008-08-30 21:36:51 ----A---- C:\Windows\system32\onex.dll

2008-08-30 21:36:45 ----A---- C:\Windows\system32\PSHED.DLL

2008-08-30 21:36:44 ----A---- C:\Windows\system32\imagesp1.dll

2008-08-30 21:36:42 ----A---- C:\Windows\system32\pidgenx.dll

2008-08-30 21:36:42 ----A---- C:\Windows\system32\dfsr.exe

2008-08-30 21:36:41 ----A---- C:\Windows\system32\sstpsvc.dll

2008-08-30 21:36:41 ----A---- C:\Windows\system32\mstscax.dll

2008-08-30 21:36:39 ----A---- C:\Windows\system32\WsmSvc.dll

2008-08-30 21:36:39 ----A---- C:\Windows\system32\winrscmd.dll

2008-08-30 21:36:39 ----A---- C:\Windows\system32\sysmain.dll

2008-08-30 21:36:36 ----A---- C:\Windows\system32\RMActivate.exe

2008-08-30 21:36:35 ----A---- C:\Windows\system32\VSSVC.exe

2008-08-30 21:36:35 ----A---- C:\Windows\system32\vssapi.dll

2008-08-30 21:36:35 ----A---- C:\Windows\system32\PresentationNative_v0300.dll

2008-08-30 21:36:34 ----A---- C:\Windows\system32\secproc.dll

2008-08-30 21:36:34 ----A---- C:\Windows\system32\RMActivate_isv.exe

2008-08-30 21:36:34 ----A---- C:\Windows\system32\iesetup.dll

2008-08-30 21:36:32 ----A---- C:\Windows\system32\secproc_isv.dll

2008-08-30 21:36:30 ----A---- C:\Windows\system32\icardres.dll

2008-08-30 21:36:30 ----A---- C:\Windows\system32\icardagt.exe

2008-08-30 21:36:30 ----A---- C:\Windows\system32\drmv2clt.dll

2008-08-30 21:36:29 ----A---- C:\Windows\system32\xpssvcs.dll

2008-08-30 21:36:29 ----A---- C:\Windows\system32\blackbox.dll

2008-08-30 21:36:28 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe

2008-08-30 21:36:28 ----A---- C:\Windows\system32\RMActivate_ssp.exe

2008-08-30 21:36:28 ----A---- C:\Windows\system32\RacEngn.dll

2008-08-30 21:36:28 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL

2008-08-30 21:36:27 ----A---- C:\Windows\system32\spwizimg.dll

2008-08-30 21:36:27 ----A---- C:\Windows\system32\rdpencom.dll

2008-08-30 21:36:27 ----A---- C:\Windows\system32\lpremove.exe

2008-08-30 21:36:27 ----A---- C:\Windows\bfsvc.exe

2008-08-30 21:36:26 ----A---- C:\Windows\system32\ntdll.dll

2008-08-30 21:36:26 ----A---- C:\Windows\system32\msxml6.dll

2008-08-30 21:36:26 ----A---- C:\Windows\system32\msxml3.dll

2008-08-30 21:36:26 ----A---- C:\Windows\system32\msjet40.dll

2008-08-30 21:36:26 ----A---- C:\Windows\system32\lsasrv.dll

2008-08-30 21:36:25 ----A---- C:\Windows\system32\wevtsvc.dll

2008-08-30 21:36:25 ----A---- C:\Windows\system32\qmgr.dll

2008-08-30 21:36:25 ----A---- C:\Windows\system32\localspl.dll

2008-08-30 21:36:25 ----A---- C:\Windows\system32\IKEEXT.DLL

2008-08-30 21:36:24 ----A---- C:\Windows\system32\wcncsvc.dll

2008-08-30 21:36:24 ----A---- C:\Windows\system32\TsWpfWrp.exe

2008-08-30 21:36:24 ----A---- C:\Windows\system32\recdisc.exe

2008-08-30 21:36:24 ----A---- C:\Windows\system32\mscoree.dll

2008-08-30 21:36:24 ----A---- C:\Windows\system32\kernel32.dll

2008-08-30 21:36:23 ----A---- C:\Windows\system32\wmp.dll

2008-08-30 21:36:23 ----A---- C:\Windows\system32\vds.exe

2008-08-30 21:36:23 ----A---- C:\Windows\system32\CompMgmtLauncher.exe

2008-08-30 21:36:22 ----A---- C:\Windows\system32\wcnwiz.dll

2008-08-30 21:36:22 ----A---- C:\Windows\system32\SMBHelperClass.dll

2008-08-30 21:36:22 ----A---- C:\Windows\system32\msvbvm60.dll

2008-08-30 21:36:22 ----A---- C:\Windows\system32\mstsc.exe

2008-08-30 21:36:21 ----A---- C:\Windows\system32\termsrv.dll

2008-08-30 21:36:21 ----A---- C:\Windows\system32\msdtctm.dll

2008-08-30 21:36:21 ----A---- C:\Windows\system32\mf.dll

2008-08-30 21:36:21 ----A---- C:\Windows\system32\kerberos.dll

2008-08-30 21:36:21 ----A---- C:\Windows\system32\IMJP10K.DLL

2008-08-30 21:36:21 ----A---- C:\Windows\system32\advapi32.dll

2008-08-30 21:36:20 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL

2008-08-30 21:36:20 ----A---- C:\Windows\system32\mmcndmgr.dll

2008-08-30 21:36:20 ----A---- C:\Windows\system32\CertEnroll.dll

2008-08-30 21:36:19 ----A---- C:\Windows\system32\xolehlp.dll

2008-08-30 21:36:19 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll

2008-08-30 21:36:19 ----A---- C:\Windows\system32\Query.dll

2008-08-30 21:36:19 ----A---- C:\Windows\system32\ole32.dll

2008-08-30 21:36:19 ----A---- C:\Windows\system32\msdtcprx.dll

2008-08-30 21:36:19 ----A---- C:\Windows\system32\MPSSVC.dll

2008-08-30 21:36:18 ----A---- C:\Windows\system32\SSShim.dll

2008-08-30 21:36:18 ----A---- C:\Windows\system32\nlmgp.dll

2008-08-30 21:36:18 ----A---- C:\Windows\system32\netlogon.dll

2008-08-30 21:36:18 ----A---- C:\Windows\system32\msvcrt.dll

2008-08-30 21:36:18 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll

2008-08-30 21:36:18 ----A---- C:\Windows\system32\DfsShlEx.dll

2008-08-30 21:36:17 ----A---- C:\Windows\system32\wer.dll

2008-08-30 21:36:17 ----A---- C:\Windows\system32\user32.dll

2008-08-30 21:36:17 ----A---- C:\Windows\system32\shlwapi.dll

2008-08-30 21:36:17 ----A---- C:\Windows\system32\sdclt.exe

2008-08-30 21:36:17 ----A---- C:\Windows\system32\schedsvc.dll

2008-08-30 21:36:17 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe

2008-08-30 21:36:17 ----A---- C:\Windows\system32\milcore.dll

2008-08-30 21:36:17 ----A---- C:\Windows\system32\IasMigPlugin.dll

2008-08-30 21:36:17 ----A---- C:\Windows\system32\clusapi.dll

2008-08-30 21:36:16 ----A---- C:\Windows\system32\WSDApi.dll

2008-08-30 21:36:16 ----A---- C:\Windows\system32\winrsmgr.dll

2008-08-30 21:36:16 ----A---- C:\Windows\system32\vdsdyn.dll

2008-08-30 21:36:16 ----A---- C:\Windows\system32\QAGENTRT.DLL

2008-08-30 21:36:16 ----A---- C:\Windows\system32\mmc.exe

2008-08-30 21:36:16 ----A---- C:\Windows\system32\diagperf.dll

2008-08-30 21:36:16 ----A---- C:\Windows\system32\d3d9.dll

2008-08-30 21:36:15 ----A---- C:\Windows\system32\vdsbas.dll

2008-08-30 21:36:15 ----A---- C:\Windows\system32\swprv.dll

2008-08-30 21:36:15 ----A---- C:\Windows\system32\SLC.dll

2008-08-30 21:36:15 ----A---- C:\Windows\system32\mtxclu.dll

2008-08-30 21:36:14 ----A---- C:\Windows\system32\MSVidCtl.dll

2008-08-30 21:36:14 ----A---- C:\Windows\system32\msi.dll

2008-08-30 21:36:14 ----A---- C:\Windows\system32\comctl32.dll

2008-08-30 21:36:13 ----A---- C:\Windows\system32\XPSSHHDR.dll

2008-08-30 21:36:13 ----A---- C:\Windows\system32\wecutil.exe

2008-08-30 21:36:13 ----A---- C:\Windows\system32\sbe.dll

2008-08-30 21:36:13 ----A---- C:\Windows\system32\samsrv.dll

2008-08-30 21:36:13 ----A---- C:\Windows\system32\msdtckrm.dll

2008-08-30 21:36:13 ----A---- C:\Windows\system32\mfc42u.dll

2008-08-30 21:36:13 ----A---- C:\Windows\system32\gpsvc.dll

2008-08-30 21:36:13 ----A---- C:\Windows\system32\FWPUCLNT.DLL

2008-08-30 21:36:13 ----A---- C:\Windows\system32\esent.dll

2008-08-30 21:36:12 ----A---- C:\Windows\system32\usp10.dll

2008-08-30 21:36:12 ----A---- C:\Windows\system32\sdengin2.dll

2008-08-30 21:36:12 ----A---- C:\Windows\system32\mfc42.dll

2008-08-30 21:36:12 ----A---- C:\Windows\system32\gacinstall.dll

2008-08-30 21:36:12 ----A---- C:\Windows\system32\crypt32.dll

2008-08-30 21:36:12 ----A---- C:\Windows\system32\comsvcs.dll

2008-08-30 21:36:12 ----A---- C:\Windows\system32\cmipnpinstall.dll

2008-08-30 21:36:12 ----A---- C:\Windows\system32\cmicryptinstall.dll

2008-08-30 21:36:11 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll

2008-08-30 21:36:11 ----A---- C:\Windows\system32\wmdrmsdk.dll

2008-08-30 21:36:11 ----A---- C:\Windows\system32\setupapi.dll

2008-08-30 21:36:11 ----A---- C:\Windows\system32\oleaut32.dll

2008-08-30 21:36:11 ----A---- C:\Windows\system32\mswsock.dll

2008-08-30 21:36:11 ----A---- C:\Windows\system32\FirewallAPI.dll

2008-08-30 21:36:11 ----A---- C:\Windows\system32\certutil.exe

2008-08-30 21:36:11 ----A---- C:\Windows\explorer.exe

2008-08-30 21:36:10 ----A---- C:\Windows\system32\wmpmde.dll

2008-08-30 21:36:10 ----A---- C:\Windows\system32\wecsvc.dll

2008-08-30 21:36:10 ----A---- C:\Windows\system32\thumbcache.dll

2008-08-30 21:36:10 ----A---- C:\Windows\system32\sqlceqp30.dll

2008-08-30 21:36:10 ----A---- C:\Windows\system32\sdohlp.dll

2008-08-30 21:36:10 ----A---- C:\Windows\system32\schannel.dll

2008-08-30 21:36:10 ----A---- C:\Windows\system32\p2psvc.dll

2008-08-30 21:36:10 ----A---- C:\Windows\system32\netapi32.dll

2008-08-30 21:36:10 ----A---- C:\Windows\system32\msv1_0.dll

2008-08-30 21:36:10 ----A---- C:\Windows\system32\mcmde.dll

2008-08-30 21:36:10 ----A---- C:\Windows\system32\lsm.exe

2008-08-30 21:36:10 ----A---- C:\Windows\system32\iphlpsvc.dll

2008-08-30 21:36:10 ----A---- C:\Windows\system32\eapp3hst.dll

2008-08-30 21:36:10 ----A---- C:\Windows\system32\bcrypt.dll

2008-08-30 21:36:10 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll

2008-08-30 21:36:09 ----A---- C:\Windows\system32\WinSAT.exe

2008-08-30 21:36:09 ----A---- C:\Windows\system32\vdsutil.dll

2008-08-30 21:36:09 ----A---- C:\Windows\system32\riched20.dll

2008-08-30 21:36:09 ----A---- C:\Windows\system32\imapi2fs.dll

2008-08-30 21:36:09 ----A---- C:\Windows\system32\d3d10_1.dll

2008-08-30 21:36:09 ----A---- C:\Windows\system32\browseui.dll

2008-08-30 21:36:09 ----A---- C:\Windows\system32\autofmt.exe

2008-08-30 21:36:09 ----A---- C:\Windows\system32\autoconv.exe

2008-08-30 21:36:09 ----A---- C:\Windows\system32\autochk.exe

2008-08-30 21:36:09 ----A---- C:\Windows\system32\authui.dll

2008-08-30 21:36:09 ----A---- C:\Windows\system32\authfwcfg.dll

2008-08-30 21:36:08 ----A---- C:\Windows\system32\WSDMon.dll

2008-08-30 21:36:08 ----A---- C:\Windows\system32\wevtfwd.dll

2008-08-30 21:36:08 ----A---- C:\Windows\system32\wevtapi.dll

2008-08-30 21:36:08 ----A---- C:\Windows\system32\uexfat.dll

2008-08-30 21:36:08 ----A---- C:\Windows\system32\rasmans.dll

2008-08-30 21:36:08 ----A---- C:\Windows\system32\mscories.dll

2008-08-30 21:36:08 ----A---- C:\Windows\system32\eapphost.dll

2008-08-30 21:36:08 ----A---- C:\Windows\system32\eappcfg.dll

2008-08-30 21:36:08 ----A---- C:\Windows\system32\dmvdsitf.dll

2008-08-30 21:36:08 ----A---- C:\Windows\system32\d3d10_1core.dll

2008-08-30 21:36:08 ----A---- C:\Windows\system32\comuid.dll

2008-08-30 21:36:08 ----A---- C:\Windows\system32\comdlg32.dll

2008-08-30 21:36:07 ----A---- C:\Windows\system32\wlansvc.dll

2008-08-30 21:36:07 ----A---- C:\Windows\system32\whealogr.dll

2008-08-30 21:36:07 ----A---- C:\Windows\system32\untfs.dll

2008-08-30 21:36:07 ----A---- C:\Windows\system32\sqlcese30.dll

2008-08-30 21:36:07 ----A---- C:\Windows\system32\pcaui.dll

2008-08-30 21:36:07 ----A---- C:\Windows\system32\iassam.dll

2008-08-30 21:36:07 ----A---- C:\Windows\system32\DfrgNtfs.exe

2008-08-30 21:36:06 ----A---- C:\Windows\system32\dot3svc.dll

2008-08-30 21:36:05 ----A---- C:\Windows\system32\zipfldr.dll

2008-08-30 21:36:05 ----A---- C:\Windows\system32\winhttp.dll

2008-08-30 21:36:05 ----A---- C:\Windows\system32\rdpwsx.dll

2008-08-30 21:36:05 ----A---- C:\Windows\system32\mssha.dll

2008-08-30 21:36:05 ----A---- C:\Windows\system32\msdrm.dll

2008-08-30 21:36:05 ----A---- C:\Windows\system32\evr.dll

2008-08-30 21:36:05 ----A---- C:\Windows\system32\dfrgui.exe

2008-08-30 21:36:04 ----A---- C:\Windows\system32\WsmWmiPl.dll

2008-08-30 21:36:04 ----A---- C:\Windows\system32\WsmAuto.dll

2008-08-30 21:36:04 ----A---- C:\Windows\system32\WMVCORE.DLL

2008-08-30 21:36:04 ----A---- C:\Windows\system32\wmdrmdev.dll

2008-08-30 21:36:04 ----A---- C:\Windows\system32\win32spl.dll

2008-08-30 21:36:04 ----A---- C:\Windows\system32\rpcss.dll

2008-08-30 21:36:04 ----A---- C:\Windows\system32\rasppp.dll

2008-08-30 21:36:04 ----A---- C:\Windows\system32\printui.dll

2008-08-30 21:36:04 ----A---- C:\Windows\system32\nlasvc.dll

2008-08-30 21:36:04 ----A---- C:\Windows\system32\ncrypt.dll

2008-08-30 21:36:04 ----A---- C:\Windows\system32\msrepl40.dll

2008-08-30 21:36:04 ----A---- C:\Windows\system32\ddraw.dll

2008-08-30 21:36:04 ----A---- C:\Windows\system32\BFE.DLL

2008-08-30 21:36:04 ----A---- C:\Windows\system32\audiosrv.dll

2008-08-30 21:36:03 ----A---- C:\Windows\system32\WebClnt.dll

2008-08-30 21:36:03 ----A---- C:\Windows\system32\w32time.dll

2008-08-30 21:36:03 ----A---- C:\Windows\system32\themecpl.dll

2008-08-30 21:36:03 ----A---- C:\Windows\system32\sqlsrv32.dll

2008-08-30 21:36:03 ----A---- C:\Windows\system32\rastls.dll

2008-08-30 21:36:03 ----A---- C:\Windows\system32\QAGENT.DLL

2008-08-30 21:36:03 ----A---- C:\Windows\system32\objsel.dll

2008-08-30 21:36:03 ----A---- C:\Windows\system32\iasnap.dll

2008-08-30 21:36:03 ----A---- C:\Windows\system32\dhcpcsvc6.dll

2008-08-30 21:36:03 ----A---- C:\Windows\system32\dbghelp.dll

2008-08-30 21:36:02 ----A---- C:\Windows\system32\wmdrmnet.dll

2008-08-30 21:36:02 ----A---- C:\Windows\system32\WerFaultSecure.exe

2008-08-30 21:36:02 ----A---- C:\Windows\system32\PresentationHost.exe

2008-08-30 21:36:02 ----A---- C:\Windows\system32\ncryptui.dll

2008-08-30 21:36:02 ----A---- C:\Windows\system32\iprtrmgr.dll

2008-08-30 21:36:02 ----A---- C:\Windows\system32\icm32.dll

2008-08-30 21:36:02 ----A---- C:\Windows\system32\azroles.dll

2008-08-30 21:36:01 ----A---- C:\Windows\system32\spoolss.dll

2008-08-30 21:36:01 ----A---- C:\Windows\system32\msctf.dll

2008-08-30 21:36:01 ----A---- C:\Windows\system32\infocardapi.dll

2008-08-30 21:36:00 ----A---- C:\Windows\system32\wlangpui.dll

2008-08-30 21:36:00 ----A---- C:\Windows\system32\winsrv.dll

2008-08-30 21:36:00 ----A---- C:\Windows\system32\taskschd.dll

2008-08-30 21:36:00 ----A---- C:\Windows\system32\bcdedit.exe

2008-08-30 21:36:00 ----A---- C:\Windows\system32\basecsp.dll

2008-08-30 21:35:59 ----A---- C:\Windows\system32\scksp.dll

2008-08-30 21:35:59 ----A---- C:\Windows\system32\mstlsapi.dll

2008-08-30 21:35:59 ----A---- C:\Windows\system32\AudioEng.dll

2008-08-30 21:35:58 ----A---- C:\Windows\system32\winsta.dll

2008-08-30 21:35:58 ----A---- C:\Windows\system32\netprofm.dll

2008-08-30 21:35:58 ----A---- C:\Windows\system32\netcfgx.dll

2008-08-30 21:35:58 ----A---- C:\Windows\system32\hcrstco.dll

2008-08-30 21:35:58 ----A---- C:\Windows\system32\dbgeng.dll

2008-08-30 21:35:57 ----A---- C:\Windows\system32\taskcomp.dll

2008-08-30 21:35:57 ----A---- C:\Windows\system32\rsaenh.dll

2008-08-30 21:35:57 ----A---- C:\Windows\system32\cdosys.dll

2008-08-30 21:35:56 ----A---- C:\Windows\system32\winlogon.exe

2008-08-30 21:35:56 ----A---- C:\Windows\system32\wercon.exe

2008-08-30 21:35:56 ----A---- C:\Windows\system32\lpksetup.exe

2008-08-30 21:35:55 ----A---- C:\Windows\system32\wlansec.dll

2008-08-30 21:35:55 ----A---- C:\Windows\system32\sqmapi.dll

2008-08-30 21:35:55 ----A---- C:\Windows\system32\msdtcuiu.dll

2008-08-30 21:35:55 ----A---- C:\Windows\system32\dfshim.dll

2008-08-30 21:35:55 ----A---- C:\Windows\system32\certcli.dll

2008-08-30 21:35:55 ----A---- C:\Windows\system32\apds.dll

2008-08-30 21:35:54 ----A---- C:\Windows\system32\tsgqec.dll

2008-08-30 21:35:54 ----A---- C:\Windows\system32\shdocvw.dll

2008-08-30 21:35:54 ----A---- C:\Windows\system32\mprddm.dll

2008-08-30 21:35:54 ----A---- C:\Windows\system32\iasrad.dll

2008-08-30 21:35:54 ----A---- C:\Windows\system32\eapsvc.dll

2008-08-30 21:35:54 ----A---- C:\Windows\system32\AUDIOKSE.dll

2008-08-30 21:35:54 ----A---- C:\Windows\system32\aaclient.dll

2008-08-30 21:35:53 ----A---- C:\Windows\system32\certmgr.dll

2008-08-30 21:35:53 ----A---- C:\Windows\system32\bcdsrv.dll

2008-08-30 21:35:52 ----A---- C:\Windows\system32\Wldap32.dll

2008-08-30 21:35:52 ----A---- C:\Windows\system32\uDWM.dll

2008-08-30 21:35:52 ----A---- C:\Windows\system32\dnsapi.dll

2008-08-30 21:35:51 ----A---- C:\Windows\system32\msidcrl30.dll

2008-08-30 21:35:44 ----A---- C:\Windows\system32\umpnpmgr.dll

2008-08-30 21:35:14 ----A---- C:\Windows\system32\WMVDECOD.DLL

2008-08-30 21:35:14 ----A---- C:\Windows\system32\pla.dll

2008-08-30 21:35:14 ----A---- C:\Windows\system32\netshell.dll

2008-08-30 21:35:14 ----A---- C:\Windows\system32\dxgi.dll

2008-08-30 21:35:14 ----A---- C:\Windows\system32\dot3gpui.dll

2008-08-30 21:35:13 ----A---- C:\Windows\system32\wmicmiplugin.dll

2008-08-30 21:35:13 ----A---- C:\Windows\system32\shsvcs.dll

2008-08-30 21:35:13 ----A---- C:\Windows\system32\ntprint.dll

2008-08-30 21:35:13 ----A---- C:\Windows\system32\cryptnet.dll

2008-08-30 21:35:13 ----A---- C:\Windows\system32\comsnap.dll

2008-08-30 21:35:12 ----A---- C:\Windows\system32\winmm.dll

2008-08-30 21:35:12 ----A---- C:\Windows\system32\services.exe

2008-08-30 21:35:12 ----A---- C:\Windows\system32\MMDevAPI.dll

2008-08-30 21:35:11 ----A---- C:\Windows\system32\wscsvc.dll

2008-08-30 21:35:11 ----A---- C:\Windows\system32\wscisvif.dll

2008-08-30 21:35:11 ----A---- C:\Windows\system32\synceng.dll

2008-08-30 21:35:11 ----A---- C:\Windows\system32\pnidui.dll

2008-08-30 21:35:11 ----A---- C:\Windows\system32\cmifw.dll

2008-08-30 21:35:09 ----A---- C:\Windows\system32\WMVSDECD.DLL

2008-08-30 21:35:09 ----A---- C:\Windows\system32\taskeng.exe

2008-08-30 21:35:09 ----A---- C:\Windows\system32\msjtes40.dll

2008-08-30 21:35:09 ----A---- C:\Windows\system32\msconfig.exe

2008-08-30 21:35:09 ----A---- C:\Windows\system32\iassdo.dll

2008-08-30 21:35:09 ----A---- C:\Windows\system32\cipher.exe

2008-08-30 21:35:08 ----A---- C:\Windows\system32\imapi2.dll

2008-08-30 21:35:07 ----A---- C:\Windows\system32\wersvc.dll

2008-08-30 21:35:07 ----A---- C:\Windows\system32\uxtheme.dll

2008-08-30 21:35:07 ----A---- C:\Windows\system32\tdh.dll

2008-08-30 21:35:07 ----A---- C:\Windows\system32\SessEnv.dll

2008-08-30 21:35:07 ----A---- C:\Windows\system32\rasapi32.dll

2008-08-30 21:35:07 ----A---- C:\Windows\system32\dot3api.dll

2008-08-30 21:35:07 ----A---- C:\Windows\system32\dmdskmgr.dll

2008-08-30 21:35:06 ----A---- C:\Windows\system32\cmd.exe

2008-08-30 21:35:06 ----A---- C:\Windows\system32\cbsra.exe

2008-08-30 21:35:06 ----A---- C:\Windows\system32\AuthFWSnapin.dll

2008-08-30 21:35:05 ----A---- C:\Windows\system32\qdvd.dll

2008-08-30 21:35:05 ----A---- C:\Windows\system32\msscp.dll

2008-08-30 21:35:04 ----A---- C:\Windows\system32\WUDFx.dll

2008-08-30 21:35:04 ----A---- C:\Windows\system32\wlanmsm.dll

2008-08-30 21:35:04 ----A---- C:\Windows\system32\wlancfg.dll

2008-08-30 21:35:04 ----A---- C:\Windows\system32\wkssvc.dll

2008-08-30 21:35:04 ----A---- C:\Windows\system32\wevtutil.exe

2008-08-30 21:35:04 ----A---- C:\Windows\system32\srvsvc.dll

2008-08-30 21:35:04 ----A---- C:\Windows\system32\msdtcVSp1res.dll

2008-08-30 21:35:04 ----A---- C:\Windows\system32\loadperf.dll

2008-08-30 21:35:03 ----A---- C:\Windows\system32\rpchttp.dll

2008-08-30 21:35:03 ----A---- C:\Windows\system32\rdpdd.dll

2008-08-30 21:35:03 ----A---- C:\Windows\system32\mshtmled.dll

2008-08-30 21:35:03 ----A---- C:\Windows\system32\localsec.dll

2008-08-30 21:35:03 ----A---- C:\Windows\system32\fontext.dll

2008-08-30 21:35:03 ----A---- C:\Windows\system32\diskpart.exe

2008-08-30 21:35:03 ----A---- C:\Windows\system32\comres.dll

2008-08-30 21:35:02 ----A---- C:\Windows\system32\wlanapi.dll

2008-08-30 21:35:02 ----A---- C:\Windows\system32\hnetcfg.dll

2008-08-30 21:35:01 ----A---- C:\Windows\system32\wsqmcons.exe

2008-08-30 21:35:01 ----A---- C:\Windows\system32\WMADMOD.DLL

2008-08-30 21:35:01 ----A---- C:\Windows\system32\WinSATAPI.dll

2008-08-30 21:35:01 ----A---- C:\Windows\system32\dsound.dll

2008-08-30 21:34:56 ----A---- C:\Windows\system32\wlanpref.dll

2008-08-30 21:34:56 ----A---- C:\Windows\system32\NAPMONTR.DLL

2008-08-30 21:34:56 ----A---- C:\Windows\system32\avifil32.dll

2008-08-30 21:34:55 ----A---- C:\Windows\system32\WindowsCodecs.dll

2008-08-30 21:34:55 ----A---- C:\Windows\system32\RDPENCDD.dll

2008-08-30 21:34:55 ----A---- C:\Windows\system32\profprov.dll

2008-08-30 21:34:55 ----A---- C:\Windows\system32\PresentationHostProxy.dll

2008-08-30 21:34:55 ----A---- C:\Windows\system32\filemgmt.dll

2008-08-30 21:34:55 ----A---- C:\Windows\system32\dnsrslvr.dll

2008-08-30 21:34:54 ----A---- C:\Windows\system32\wsecedit.dll

2008-08-30 21:34:54 ----A---- C:\Windows\system32\WMSPDMOD.DLL

2008-08-30 21:34:54 ----A---- C:\Windows\system32\wininit.exe

2008-08-30 21:34:54 ----A---- C:\Windows\system32\tracerpt.exe

2008-08-30 21:34:54 ----A---- C:\Windows\system32\spp.dll

2008-08-30 21:34:54 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll

2008-08-30 21:34:54 ----A---- C:\Windows\system32\SLCommDlg.dll

2008-08-30 21:34:54 ----A---- C:\Windows\system32\rasdlg.dll

2008-08-30 21:34:54 ----A---- C:\Windows\system32\QSHVHOST.DLL

2008-08-30 21:34:54 ----A---- C:\Windows\system32\P2PGraph.dll

2008-08-30 21:34:54 ----A---- C:\Windows\system32\MuiUnattend.exe

2008-08-30 21:34:54 ----A---- C:\Windows\system32\iassvcs.dll

2008-08-30 21:34:54 ----A---- C:\Windows\system32\gpresult.exe

2008-08-30 21:34:54 ----A---- C:\Windows\system32\dwmredir.dll

2008-08-30 21:34:54 ----A---- C:\Windows\system32\dwm.exe

2008-08-30 21:34:54 ----A---- C:\Windows\system32\dhcpcsvc.dll

2008-08-30 21:34:54 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll

2008-08-30 21:34:54 ----A---- C:\Windows\system32\apphelp.dll

2008-08-30 21:34:53 ----A---- C:\Windows\system32\wecapi.dll

2008-08-30 21:34:53 ----A---- C:\Windows\system32\unbcl.dll

2008-08-30 21:34:53 ----A---- C:\Windows\system32\tcpmon.dll

2008-08-30 21:34:53 ----A---- C:\Windows\system32\srrstr.dll

2008-08-30 21:34:53 ----A---- C:\Windows\system32\spwizeng.dll

2008-08-30 21:34:53 ----A---- C:\Windows\system32\SLUI.exe

2008-08-30 21:34:53 ----A---- C:\Windows\system32\shrink.dll

2008-08-30 21:34:53 ----A---- C:\Windows\system32\rasmontr.dll

2008-08-30 21:34:53 ----A---- C:\Windows\system32\PortableDeviceApi.dll

2008-08-30 21:34:53 ----A---- C:\Windows\system32\msra.exe

2008-08-30 21:34:53 ----A---- C:\Windows\system32\mscorier.dll

2008-08-30 21:34:53 ----A---- C:\Windows\system32\mcbuilder.exe

2008-08-30 21:34:53 ----A---- C:\Windows\system32\lltdsvc.dll

2008-08-30 21:34:53 ----A---- C:\Windows\system32\iashost.exe

2008-08-30 21:34:53 ----A---- C:\Windows\system32\azroleui.dll

2008-08-30 21:34:53 ----A---- C:\Windows\HelpPane.exe

2008-08-30 21:34:52 ----A---- C:\Windows\system32\WMPEncEn.dll

2008-08-30 21:34:52 ----A---- C:\Windows\system32\raschap.dll

2008-08-30 21:34:52 ----A---- C:\Windows\system32\oleacc.dll

2008-08-30 21:34:52 ----A---- C:\Windows\system32\msdri.dll

2008-08-30 21:34:52 ----A---- C:\Windows\system32\IPHLPAPI.DLL

2008-08-30 21:34:52 ----A---- C:\Windows\system32\iertutil.dll

2008-08-30 21:34:52 ----A---- C:\Windows\system32\iashlpr.dll

2008-08-30 21:34:52 ----A---- C:\Windows\system32\gpedit.dll

2008-08-30 21:34:52 ----A---- C:\Windows\system32\brcpl.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\vsstrace.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\wpdshext.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\wdc.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\regsvc.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\PerfCenterCPL.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\ntvdm.exe

2008-08-30 21:34:51 ----A---- C:\Windows\system32\ntlanman.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\NetProjW.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\l2nacp.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\ipsmsnap.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\iedkcs32.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\framedynos.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\fdWSD.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\Faultrep.dll

2008-08-30 21:34:51 ----A---- C:\Windows\system32\advpack.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\WsmProv.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\WlanMM.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\wlanhlp.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\WLanConn.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\tcpipcfg.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\sxs.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\Storprop.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\profsvc.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\netman.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\KMSVC.DLL

2008-08-30 21:34:50 ----A---- C:\Windows\system32\IPBusEnum.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\ieapfltr.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\framedyn.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\dssenh.dll

2008-08-30 21:34:50 ----A---- C:\Windows\system32\certreq.exe

2008-08-30 21:34:50 ----A---- C:\Windows\system32\adsnt.dll

2008-08-30 21:34:49 ----A---- C:\Windows\system32\wusa.exe

2008-08-30 21:34:49 ----A---- C:\Windows\system32\WUDFHost.exe

2008-08-30 21:34:49 ----A---- C:\Windows\system32\WerFault.exe

2008-08-30 21:34:49 ----A---- C:\Windows\system32\VAN.dll

2008-08-30 21:34:49 ----A---- C:\Windows\system32\userenv.dll

2008-08-30 21:34:49 ----A---- C:\Windows\system32\umb.dll

2008-08-30 21:34:49 ----A---- C:\Windows\system32\ncsi.dll

2008-08-30 21:34:49 ----A---- C:\Windows\system32\ie4uinit.exe

2008-08-30 21:34:49 ----A---- C:\Windows\system32\fundisc.dll

2008-08-30 21:34:46 ----A---- C:\Windows\system32\catsrvut.dll

2008-08-30 21:34:45 ----A---- C:\Windows\system32\puiobj.dll

2008-08-30 21:34:45 ----A---- C:\Windows\system32\photowiz.dll

2008-08-30 21:34:45 ----A---- C:\Windows\system32\netid.dll

2008-08-30 21:34:45 ----A---- C:\Windows\system32\netcenter.dll

2008-08-30 21:34:45 ----A---- C:\Windows\system32\MdSched.exe

2008-08-30 21:34:45 ----A---- C:\Windows\system32\InkEd.dll

2008-08-30 21:34:45 ----A---- C:\Windows\system32\dps.dll

2008-08-30 21:34:45 ----A---- C:\Windows\system32\cryptui.dll

2008-08-30 21:34:44 ----A---- C:\Windows\system32\ipsecsnp.dll

2008-08-30 21:34:43 ----A---- C:\Windows\system32\ws2_32.dll

2008-08-30 21:34:43 ----A---- C:\Windows\system32\WinSCard.dll

2008-08-30 21:34:43 ----A---- C:\Windows\system32\winrs.exe

2008-08-30 21:34:43 ----A---- C:\Windows\system32\spbcd.dll

2008-08-30 21:34:43 ----A---- C:\Windows\system32\secur32.dll

2008-08-30 21:34:43 ----A---- C:\Windows\system32\prnntfy.dll

2008-08-30 21:34:43 ----A---- C:\Windows\system32\odbcjt32.dll

2008-08-30 21:34:43 ----A---- C:\Windows\system32\ntdsapi.dll

2008-08-30 21:34:43 ----A---- C:\Windows\system32\NAPSTAT.EXE

2008-08-30 21:34:43 ----A---- C:\Windows\system32\msinfo32.exe

2008-08-30 21:34:43 ----A---- C:\Windows\system32\mblctr.exe

2008-08-30 21:34:43 ----A---- C:\Windows\system32\cryptsvc.dll

2008-08-30 21:34:42 ----A---- C:\Windows\system32\schtasks.exe

2008-08-30 21:34:42 ----A---- C:\Windows\system32\RelMon.dll

2008-08-30 21:34:42 ----A---- C:\Windows\system32\pdh.dll

2008-08-30 21:34:42 ----A---- C:\Windows\system32\netdiagfx.dll

2008-08-30 21:34:42 ----A---- C:\Windows\system32\msfeeds.dll

2008-08-30 21:34:42 ----A---- C:\Windows\system32\iasacct.dll

2008-08-30 21:34:42 ----A---- C:\Windows\system32\dmdlgs.dll

2008-08-30 21:34:42 ----A---- C:\Windows\system32\dhcpsapi.dll

2008-08-30 21:34:42 ----A---- C:\Windows\system32\catsrv.dll

2008-08-30 21:34:42 ----A---- C:\Windows\system32\activeds.dll

2008-08-30 21:34:41 ----A---- C:\Windows\system32\wvc.dll

2008-08-30 21:34:41 ----A---- C:\Windows\system32\winrm.vbs

2008-08-30 21:34:41 ----A---- C:\Windows\system32\TSpkg.dll

2008-08-30 21:34:41 ----A---- C:\Windows\system32\rastapi.dll

2008-08-30 21:34:41 ----A---- C:\Windows\system32\qwave.dll

2008-08-30 21:34:41 ----A---- C:\Windows\system32\netcorehc.dll

2008-08-30 21:34:41 ----A---- C:\Windows\system32\NAPHLPR.DLL

2008-08-30 21:34:41 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL

2008-08-30 21:34:41 ----A---- C:\Windows\system32\msacm32.dll

2008-08-30 21:34:41 ----A---- C:\Windows\system32\ifmon.dll

2008-08-30 21:34:41 ----A---- C:\Windows\system32\FirewallControlPanel.exe

2008-08-30 21:34:41 ----A---- C:\Windows\system32\fdWCN.dll

2008-08-30 21:34:41 ----A---- C:\Windows\system32\dot3msm.dll

2008-08-30 21:34:41 ----A---- C:\Windows\system32\dot3cfg.dll

2008-08-30 21:34:41 ----A---- C:\Windows\system32\dfrgfat.exe

2008-08-30 21:34:41 ----A---- C:\Windows\system32\AudioSes.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\wscntfy.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\wow32.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\WMNetMgr.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\stobject.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\shsetup.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\sdrsvc.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\QUTIL.DLL

2008-08-30 21:34:40 ----A---- C:\Windows\system32\ntshrui.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\net1.exe

2008-08-30 21:34:40 ----A---- C:\Windows\system32\msdt.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\ipnathlp.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\iasrecst.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\iasdatastore.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\fdSSDP.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\els.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\clbcatq.dll

2008-08-30 21:34:40 ----A---- C:\Windows\system32\adsldp.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\wlgpclnt.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\wlanui.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\upnphost.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\systemcpl.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\smss.exe

2008-08-30 21:34:39 ----A---- C:\Windows\system32\rasman.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\P2P.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\nci.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\msftedit.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\MSAC3ENC.DLL

2008-08-30 21:34:39 ----A---- C:\Windows\system32\mprmsg.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\fde.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\dsprop.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\Defrag.exe

2008-08-30 21:34:39 ----A---- C:\Windows\system32\CompatUI.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\adsldpc.dll

2008-08-30 21:34:39 ----A---- C:\Windows\system32\ActiveContentWizard.dll

2008-08-30 21:34:38 ----A---- C:\Windows\system32\Wpc.dll

2008-08-30 21:34:38 ----A---- C:\Windows\system32\wdigest.dll

2008-08-30 21:34:38 ----A---- C:\Windows\system32\t2embed.dll

2008-08-30 21:34:38 ----A---- C:\Windows\system32\setupcl.exe

2008-08-30 21:34:38 ----A---- C:\Windows\system32\rtm.dll

2008-08-30 21:34:38 ----A---- C:\Windows\system32\rascfg.dll

2008-08-30 21:34:38 ----A---- C:\Windows\system32\PresentationSettings.exe

2008-08-30 21:34:38 ----A---- C:\Windows\system32\oleprn.dll

2008-08-30 21:34:38 ----A---- C:\Windows\system32\msutb.dll

2008-08-30 21:34:38 ----A---- C:\Windows\system32\mprdim.dll

2008-08-30 21:34:38 ----A---- C:\Windows\system32\MigAutoPlay.exe

2008-08-30 21:34:38 ----A---- C:\Windows\system32\loghours.dll

2008-08-30 21:34:38 ----A---- C:\Windows\system32\L2SecHC.dll

2008-08-30 21:34:38 ----A---- C:\Windows\system32\gpapi.dll

2008-08-30 21:34:38 ----A---- C:\Windows\system32\dxdiag.exe

2008-08-30 21:34:38 ----A---- C:\Windows\system32\DFDWiz.exe

2008-08-30 21:34:38 ----A---- C:\Windows\system32\devmgr.dll

2008-08-30 21:34:38 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll

2008-08-30 21:34:37 ----A---- C:\Windows\system32\wiaservc.dll

2008-08-30 21:34:37 ----A---- C:\Windows\system32\scansetting.dll

2008-08-30 21:34:37 ----A---- C:\Windows\system32\NAPCRYPT.DLL

2008-08-30 21:34:37 ----A---- C:\Windows\system32\msihnd.dll

2008-08-30 21:34:37 ----A---- C:\Windows\system32\ifsutil.dll

2008-08-30 21:34:37 ----A---- C:\Windows\system32\dimsroam.dll

2008-08-30 21:34:37 ----A---- C:\Windows\system32\CertEnrollUI.dll

2008-08-30 21:34:37 ----A---- C:\Windows\system32\actxprxy.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\vssadmin.exe

2008-08-30 21:34:36 ----A---- C:\Windows\system32\wscapi.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\wlandlg.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\WinFXDocObj.exe

2008-08-30 21:34:36 ----A---- C:\Windows\system32\wdi.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\uudf.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\usbmon.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\SyncCenter.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\spoolsv.exe

2008-08-30 21:34:36 ----A---- C:\Windows\system32\regapi.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\mycomput.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\mswmdm.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\msls31.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\kdusb.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\imagehlp.dll

2008-08-30 21:34:36 ----A---- C:\Windows\system32\BOOTVID.DLL

2008-08-30 21:34:36 ----A---- C:\Windows\system32\audiodg.exe

2008-08-30 21:34:35 ----A---- C:\Windows\system32\termmgr.dll

2008-08-30 21:34:35 ----A---- C:\Windows\system32\sud.dll

2008-08-30 21:34:35 ----A---- C:\Windows\system32\ssdpsrv.dll

2008-08-30 21:34:35 ----A---- C:\Windows\system32\scecli.dll

2008-08-30 21:34:35 ----A---- C:\Windows\system32\SCardSvr.dll

2008-08-30 21:34:35 ----A---- C:\Windows\system32\samlib.dll

2008-08-30 21:34:35 ----A---- C:\Windows\system32\puiapi.dll

2008-08-30 21:34:35 ----A---- C:\Windows\system32\newdev.dll

2008-08-30 21:34:35 ----A---- C:\Windows\system32\mtxoci.dll

2008-08-30 21:34:35 ----A---- C:\Windows\system32\mstask.dll

2008-08-30 21:34:35 ----A---- C:\Windows\system32\mspaint.exe

2008-08-30 21:34:35 ----A---- C:\Windows\system32\kdcom.dll

2008-08-30 21:34:35 ----A---- C:\Windows\system32\duser.dll

2008-08-30 21:34:35 ----A---- C:\Windows\system32\adtschema.dll

2008-08-30 21:34:34 ----A---- C:\Windows\system32\wisptis.exe

2008-08-30 21:34:34 ----A---- C:\Windows\system32\tapisrv.dll

2008-08-30 21:34:34 ----A---- C:\Windows\system32\SLUINotify.dll

2008-08-30 21:34:34 ----A---- C:\Windows\system32\sdshext.dll

2008-08-30 21:34:34 ----A---- C:\Windows\system32\Robocopy.exe

2008-08-30 21:34:34 ----A---- C:\Windows\system32\PortableDeviceTypes.dll

2008-08-30 21:34:34 ----A---- C:\Windows\system32\netiohlp.dll

2008-08-30 21:34:34 ----A---- C:\Windows\system32\input.dll

2008-08-30 21:34:34 ----A---- C:\Windows\system32\inetpp.dll

2008-08-30 21:34:34 ----A---- C:\Windows\system32\iasads.dll

2008-08-30 21:34:34 ----A---- C:\Windows\system32\cscapi.dll

2008-08-30 21:34:34 ----A---- C:\Windows\system32\cic.dll

2008-08-30 21:34:34 ----A---- C:\Windows\system32\AzSqlExt.dll

2008-08-30 21:34:34 ----A---- C:\Windows\system32\authz.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\WUDFPlatform.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\wpcsvc.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\wpccpl.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\wintrust.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\verifier.exe

2008-08-30 21:34:33 ----A---- C:\Windows\system32\webcheck.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\vdsldr.exe

2008-08-30 21:34:33 ----A---- C:\Windows\system32\themeui.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\SndVol.exe

2008-08-30 21:34:33 ----A---- C:\Windows\system32\slcinst.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\rasgcw.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\oledlg.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\ntmarta.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\msdtclog.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\msdt.exe

2008-08-30 21:34:33 ----A---- C:\Windows\system32\mmcbase.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\icardie.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\dxtmsft.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\d3d8.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\cmdial32.dll

2008-08-30 21:34:33 ----A---- C:\Windows\system32\clfsw32.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\wtsapi32.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\wpd_ci.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\WMPhoto.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\unlodctr.exe

2008-08-30 21:34:32 ----A---- C:\Windows\system32\syssetup.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\SnippingTool.exe

2008-08-30 21:34:32 ----A---- C:\Windows\system32\slmgr.vbs

2008-08-30 21:34:32 ----A---- C:\Windows\system32\rasqec.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\pnpsetup.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\nslookup.exe

2008-08-30 21:34:32 ----A---- C:\Windows\system32\ncobjapi.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\msrd3x40.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\mscms.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\msaatext.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\mpr.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\mlang.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\lodctr.exe

2008-08-30 21:34:32 ----A---- C:\Windows\system32\icfupgd.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\extmgr.dll

2008-08-30 21:34:32 ----A---- C:\Windows\system32\diskraid.exe

2008-08-30 21:34:32 ----A---- C:\Windows\system32\accessibilitycpl.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\WSManHTTPConfig.exe

2008-08-30 21:34:31 ----A---- C:\Windows\system32\Utilman.exe

2008-08-30 21:34:31 ----A---- C:\Windows\system32\unattend.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\ulib.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\trkwks.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\sethc.exe

2008-08-30 21:34:31 ----A---- C:\Windows\system32\scesrv.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\pnpui.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\oobefldr.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\ogldrv.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\occache.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\Mcx2Svc.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\lnkstub.exe

2008-08-30 21:34:31 ----A---- C:\Windows\system32\iaspolcy.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\fontsub.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\dxdiagn.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\cabview.dll

2008-08-30 21:34:31 ----A---- C:\Windows\system32\cabinet.dll

2008-08-30 21:34:30 ----A---- C:\Windows\system32\wpcao.dll

2008-08-30 21:34:30 ----A---- C:\Windows\system32\wermgr.exe

2008-08-30 21:34:30 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll

2008-08-30 21:34:30 ----A---- C:\Windows\system32\p2pcollab.dll

2008-08-30 21:34:30 ----A---- C:\Windows\system32\msnetobj.dll

2008-08-30 21:34:30 ----A---- C:\Windows\system32\iepeers.dll

2008-08-30 21:34:30 ----A---- C:\Windows\system32\ieaksie.dll

2008-08-30 21:34:30 ----A---- C:\Windows\system32\eappgnui.dll

2008-08-30 21:34:30 ----A---- C:\Windows\system32\drvinst.exe

2008-08-30 21:34:30 ----A---- C:\Windows\system32\dispdiag.exe

2008-08-30 21:34:30 ----A---- C:\Windows\system32\DHCPQEC.DLL

2008-08-30 21:34:30 ----A---- C:\Windows\system32\dfdts.dll

2008-08-30 21:34:30 ----A---- C:\Windows\system32\bthci.dll

2008-08-30 21:34:30 ----A---- C:\Windows\system32\basesrv.dll

2008-08-30 21:34:29 ----A---- C:\Windows\system32\verifier.dll

2008-08-30 21:34:29 ----A---- C:\Windows\system32\RstrtMgr.dll

2008-08-30 21:34:29 ----A---- C:\Windows\system32\mmcss.dll

2008-08-30 21:34:29 ----A---- C:\Windows\system32\efsadu.dll

2008-08-30 21:34:29 ----A---- C:\Windows\system32\dsquery.dll

2008-08-30 21:34:28 ----A---- C:\Windows\system32\secproc_ssp_isv.dll

2008-08-30 21:34:28 ----A---- C:\Windows\system32\secproc_ssp.dll

2008-08-30 21:34:28 ----A---- C:\Windows\system32\mprapi.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\WPDSp.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\WPDShServiceObj.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\WMVENCOD.DLL

2008-08-30 21:34:27 ----A---- C:\Windows\system32\wiascanprofiles.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\wiaaut.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\wercplsupport.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\usercpl.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\setupugc.exe

2008-08-30 21:34:27 ----A---- C:\Windows\system32\QSVRMGMT.DLL

2008-08-30 21:34:27 ----A---- C:\Windows\system32\qedit.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\pnrpnsp.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\pngfilt.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\p2pnetsh.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\networkmap.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\msoeacct.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\msdmo.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\iscsiexe.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\icacls.exe

2008-08-30 21:34:27 ----A---- C:\Windows\system32\d3d10core.dll

2008-08-30 21:34:27 ----A---- C:\Windows\system32\consent.exe

2008-08-30 21:34:26 ----A---- C:\Windows\system32\xwizards.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\xactsrv.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\systeminfo.exe

2008-08-30 21:34:26 ----A---- C:\Windows\system32\resutils.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\PNPXAssocPrx.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\PNPXAssoc.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\pcadm.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\netcfg.exe

2008-08-30 21:34:26 ----A---- C:\Windows\system32\msrdc.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\msrating.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\mfplat.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\lsass.exe

2008-08-30 21:34:26 ----A---- C:\Windows\system32\lpk.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\findstr.exe

2008-08-30 21:34:26 ----A---- C:\Windows\system32\eappprxy.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\DWWIN.EXE

2008-08-30 21:34:26 ----A---- C:\Windows\system32\dssec.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\drmmgrtn.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\dpapimig.exe

2008-08-30 21:34:26 ----A---- C:\Windows\system32\dot3ui.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\dfrgifc.exe

2008-08-30 21:34:26 ----A---- C:\Windows\system32\conime.exe

2008-08-30 21:34:26 ----A---- C:\Windows\system32\cmdl32.exe

2008-08-30 21:34:26 ----A---- C:\Windows\system32\autoplay.dll

2008-08-30 21:34:26 ----A---- C:\Windows\system32\alg.exe

2008-08-30 21:34:25 ----A---- C:\Windows\system32\txflog.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\tbssvc.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\taskkill.exe

2008-08-30 21:34:25 ----A---- C:\Windows\system32\svchost.exe

2008-08-30 21:34:25 ----A---- C:\Windows\system32\shwebsvc.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\RASMM.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\provthrd.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\powercpl.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\odbc32.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\nshhttp.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\netprof.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\msieftp.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\MFWMAAEC.DLL

2008-08-30 21:34:25 ----A---- C:\Windows\system32\MediaMetadataHandler.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\imm32.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\iexpress.exe

2008-08-30 21:34:25 ----A---- C:\Windows\system32\feclient.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\dxva2.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\dwmapi.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\dbnetlib.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\d3d10.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\btpanui.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\bcdprov.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\apircl.dll

2008-08-30 21:34:25 ----A---- C:\Windows\system32\ActionQueue.dll

2008-08-30 21:34:25 ----A---- C:\Windows\regedit.exe

2008-08-30 21:34:24 ----A---- C:\Windows\system32\xcopy.exe

2008-08-30 21:34:24 ----A---- C:\Windows\system32\WMASF.DLL

2008-08-30 21:34:24 ----A---- C:\Windows\system32\uxsms.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\upnp.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\UIHub.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\taskmgr.exe

2008-08-30 21:34:24 ----A---- C:\Windows\system32\syncui.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\slwmi.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\SLCExt.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\slcc.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\raserver.exe

2008-08-30 21:34:24 ----A---- C:\Windows\system32\QCLIPROV.DLL

2008-08-30 21:34:24 ----A---- C:\Windows\system32\PnPUnattend.exe

2008-08-30 21:34:24 ----A---- C:\Windows\system32\olepro32.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\networkexplorer.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\ias.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\EAPQEC.DLL

2008-08-30 21:34:24 ----A---- C:\Windows\system32\dnscacheugc.exe

2008-08-30 21:34:24 ----A---- C:\Windows\system32\dmocx.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\connect.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\brcplsdw.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\audiodev.dll

2008-08-30 21:34:24 ----A---- C:\Windows\system32\aclui.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\WUDFCoinstaller.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\WMVXENCD.DLL

2008-08-30 21:34:23 ----A---- C:\Windows\system32\wmpdxm.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\wlanext.exe

2008-08-30 21:34:23 ----A---- C:\Windows\system32\SoundRecorder.exe

2008-08-30 21:34:23 ----A---- C:\Windows\system32\rekeywiz.exe

2008-08-30 21:34:23 ----A---- C:\Windows\system32\reg.exe

2008-08-30 21:34:23 ----A---- C:\Windows\system32\qcap.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\qasf.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\PING.EXE

2008-08-30 21:34:23 ----A---- C:\Windows\system32\perfts.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\netplwiz.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\NapiNSP.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\msoert2.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\msjetoledb40.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\mountvol.exe

2008-08-30 21:34:23 ----A---- C:\Windows\system32\mmcshext.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\inetmib1.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\ieakeng.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\icsfiltr.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\httpapi.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\dsuiext.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\dskquoui.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\dmusic.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\cmstp.exe

2008-08-30 21:34:23 ----A---- C:\Windows\system32\cewmdm.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\certprop.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\browser.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\bitsadmin.exe

2008-08-30 21:34:23 ----A---- C:\Windows\system32\AuxiliaryDisplayApi.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\atl.dll

2008-08-30 21:34:23 ----A---- C:\Windows\system32\appinfo.dll

2008-08-30 21:34:22 ----A---- C:\Windows\system32\WUDFSvc.dll

2008-08-30 21:34:22 ----A---- C:\Windows\system32\WMVSENCD.DLL

2008-08-30 21:34:22 ----A---- C:\Windows\system32\wmpsrcwp.dll

2008-08-30 21:34:22 ----A---- C:\Windows\system32\SysFxUI.dll

2008-08-30 21:34:22 ----A---- C:\Windows\system32\Sens.dll

2008-08-30 21:34:22 ----A---- C:\Windows\system32\SecEdit.exe

2008-08-30 21:34:22 ----A---- C:\Windows\system32\mtstocom.exe

2008-08-30 21:34:22 ----A---- C:\Windows\system32\mscandui.dll

2008-08-30 21:34:22 ----A---- C:\Windows\system32\makecab.exe

2008-08-30 21:34:22 ----A---- C:\Windows\system32\lsmproxy.dll

2008-08-30 21:34:22 ----A---- C:\Windows\system32\auditpol.exe

2008-08-30 21:34:22 ----A---- C:\Windows\system32\adsmsext.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\xwtpw32.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\wzcdlg.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\wscmisetup.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\wiashext.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\wiadefui.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\sppnp.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\shimgvw.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\shacct.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\seclogon.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\sbeio.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\printcom.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\ndfapi.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\msorcl32.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\msdadiag.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\dxtrans.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\dot3gpclnt.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\batt.dll

2008-08-30 21:34:21 ----A---- C:\Windows\system32\apss.dll

2008-08-30 21:34:20 ----A---- C:\Windows\system32\wpdwcn.dll

2008-08-30 21:34:20 ----A---- C:\Windows\system32\WMSPDMOE.DLL

2008-08-30 21:34:20 ----A---- C:\Windows\system32\userinit.exe

2008-08-30 21:34:20 ----A---- C:\Windows\system32\sxstrace.exe

2008-08-30 21:34:20 ----A---- C:\Windows\system32\rrinstaller.exe

2008-08-30 21:34:20 ----A---- C:\Windows\system32\perfmon.exe

2008-08-30 21:34:20 ----A---- C:\Windows\system32\p2phost.exe

2008-08-30 21:34:20 ----A---- C:\Windows\system32\napipsec.dll

2008-08-30 21:34:20 ----A---- C:\Windows\system32\ktmutil.exe

2008-08-30 21:34:20 ----A---- C:\Windows\system32\keymgr.dll

2008-08-30 21:34:20 ----A---- C:\Windows\system32\HelpPaneProxy.dll

2008-08-30 21:34:19 ----A---- C:\Windows\system32\winrshost.exe

2008-08-30 21:34:19 ----A---- C:\Windows\system32\tasklist.exe

2008-08-30 21:34:19 ----A---- C:\Windows\system32\TapiMigPlugin.dll

2008-08-30 21:34:19 ----A---- C:\Windows\system32\prntvpt.dll

2008-08-30 21:34:19 ----A---- C:\Windows\system32\csrsrv.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\wscproxystub.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\wmiprop.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\winethc.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\UIAutomationCore.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\txfw32.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\takeown.exe

2008-08-30 21:34:18 ----A---- C:\Windows\system32\pots.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\PnPutil.exe

2008-08-30 21:34:18 ----A---- C:\Windows\system32\pcasvc.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\nshipsec.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\notepad.exe

2008-08-30 21:34:18 ----A---- C:\Windows\system32\netiougc.exe

2008-08-30 21:34:18 ----A---- C:\Windows\system32\msimtf.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\msiexec.exe

2008-08-30 21:34:18 ----A---- C:\Windows\system32\MP4SDECD.DLL

2008-08-30 21:34:18 ----A---- C:\Windows\system32\mfps.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\logagent.exe

2008-08-30 21:34:18 ----A---- C:\Windows\system32\inseng.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\ftp.exe

2008-08-30 21:34:18 ----A---- C:\Windows\system32\fmifs.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\findnetprinters.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\driverquery.exe

2008-08-30 21:34:18 ----A---- C:\Windows\system32\d3dim700.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\cryptdll.dll

2008-08-30 21:34:18 ----A---- C:\Windows\system32\colorui.dll

2008-08-30 21:34:18 ----A---- C:\Windows\notepad.exe

2008-08-30 21:34:17 ----A---- C:\Windows\system32\wpdbusenum.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\WMADMOE.DLL

2008-08-30 21:34:17 ----A---- C:\Windows\system32\WLanHC.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\WindowsCodecsExt.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\wiaacmgr.exe

2008-08-30 21:34:17 ----A---- C:\Windows\system32\wextract.exe

2008-08-30 21:34:17 ----A---- C:\Windows\system32\version.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\TMM.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\shrpubw.exe

2008-08-30 21:34:17 ----A---- C:\Windows\system32\shgina.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\sfc_os.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\sendmail.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\runonce.exe

2008-08-30 21:34:17 ----A---- C:\Windows\system32\rshx32.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\RpcPing.exe

2008-08-30 21:34:17 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL

2008-08-30 21:34:17 ----A---- C:\Windows\system32\rasplap.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\powrprof.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\perfnet.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\olecli32.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\nsisvc.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\mfpmp.exe

2008-08-30 21:34:17 ----A---- C:\Windows\system32\luainstall.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\ktmw32.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\imapi.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\fsutil.exe

2008-08-30 21:34:17 ----A---- C:\Windows\system32\fdPHost.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\dnshc.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\d3dim.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\compstui.dll

2008-08-30 21:34:17 ----A---- C:\Windows\system32\cmmon32.exe

2008-08-30 21:34:17 ----A---- C:\Windows\system32\capisp.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\wmpshell.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\w32tm.exe

2008-08-30 21:34:16 ----A---- C:\Windows\system32\unregmp2.exe

2008-08-30 21:34:16 ----A---- C:\Windows\system32\UI0Detect.exe

2008-08-30 21:34:16 ----A---- C:\Windows\system32\tscupgrd.exe

2008-08-30 21:34:16 ----A---- C:\Windows\system32\sdchange.exe

2008-08-30 21:34:16 ----A---- C:\Windows\system32\PortableDeviceWiaCompat.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\pnpts.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\net.exe

2008-08-30 21:34:16 ----A---- C:\Windows\system32\msvfw32.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\MPG4DECD.DLL

2008-08-30 21:34:16 ----A---- C:\Windows\system32\MP43DECD.DLL

2008-08-30 21:34:16 ----A---- C:\Windows\system32\migisol.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\mdminst.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\ipconfig.exe

2008-08-30 21:34:16 ----A---- C:\Windows\system32\imgutil.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\getmac.exe

2008-08-30 21:34:16 ----A---- C:\Windows\system32\fdeploy.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\dsauth.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\dimsjob.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\credui.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\cmutil.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\cmlua.dll

2008-08-30 21:34:16 ----A---- C:\Windows\system32\ACW.exe

2008-08-30 21:34:15 ----A---- C:\Windows\system32\wmidx.dll

2008-08-30 21:34:15 ----A---- C:\Windows\system32\TSTheme.exe

2008-08-30 21:34:15 ----A---- C:\Windows\system32\sfc.exe

2008-08-30 21:34:15 ----A---- C:\Windows\system32\remotepg.dll

2008-08-30 21:34:15 ----A---- C:\Windows\system32\pdhui.dll

2008-08-30 21:34:15 ----A---- C:\Windows\system32\nlaapi.dll

2008-08-30 21:34:15 ----A---- C:\Windows\system32\ExplorerFrame.dll

2008-08-30 21:34:15 ----A---- C:\Windows\system32\EncDump.dll

2008-08-30 21:34:15 ----A---- C:\Windows\system32\dispci.dll

2008-08-30 21:34:15 ----A---- C:\Windows\system32\dinput8.dll

2008-08-30 21:34:15 ----A---- C:\Windows\system32\diantz.exe

2008-08-30 21:34:15 ----A---- C:\Windows\system32\comrepl.dll

2008-08-30 21:34:15 ----A---- C:\Windows\system32\cfgbkend.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\wsnmp32.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\WsmCl.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\WPDShextAutoplay.exe

2008-08-30 21:34:14 ----A---- C:\Windows\system32\wmvdspa.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\wfapigp.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\vds_ps.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\vdmredir.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\waitfor.exe

2008-08-30 21:34:14 ----A---- C:\Windows\system32\utildll.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\TpmInit.exe

2008-08-30 21:34:14 ----A---- C:\Windows\system32\tabcal.exe

2008-08-30 21:34:14 ----A---- C:\Windows\system32\sti_ci.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\softkbd.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\shutdown.exe

2008-08-30 21:34:14 ----A---- C:\Windows\system32\rdrleakdiag.exe

2008-08-30 21:34:14 ----A---- C:\Windows\system32\qdv.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\osblprov.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\odbccp32.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\msfeedsbs.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\modemui.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\McxDriv.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\logman.exe

2008-08-30 21:34:14 ----A---- C:\Windows\system32\iscsium.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\iernonce.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\hlink.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\fwcfg.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\expand.exe

2008-08-30 21:34:14 ----A---- C:\Windows\system32\esentutl.exe

2008-08-30 21:34:14 ----A---- C:\Windows\system32\dpnet.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\colbact.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\cmcfg32.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\cacls.exe

2008-08-30 21:34:14 ----A---- C:\Windows\system32\bridgeunattend.exe

2008-08-30 21:34:14 ----A---- C:\Windows\system32\bootcfg.exe

2008-08-30 21:34:14 ----A---- C:\Windows\system32\amstream.dll

2008-08-30 21:34:14 ----A---- C:\Windows\system32\admparse.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\wpnpinst.exe

2008-08-30 21:34:13 ----A---- C:\Windows\system32\wmpcm.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\werdiagcontroller.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\wavemsp.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\ufat.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\sxproxy.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\SLLUA.exe

2008-08-30 21:34:13 ----A---- C:\Windows\system32\rgb9rast.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\rasauto.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\olethk32.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\olesvr32.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\odbctrac.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\networkitemfactory.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\mstext40.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\mshta.exe

2008-08-30 21:34:13 ----A---- C:\Windows\system32\msdtc.exe

2008-08-30 21:34:13 ----A---- C:\Windows\system32\msctfui.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\mfvdsp.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\iscsiwmi.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\DpiScaling.exe

2008-08-30 21:34:13 ----A---- C:\Windows\system32\dmsynth.dll

2008-08-30 21:34:13 ----A---- C:\Windows\system32\COLORCNV.DLL

2008-08-30 21:34:13 ----A---- C:\Windows\system32\at.exe

2008-08-30 21:34:12 ----A---- C:\Windows\system32\xmlprovi.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\unattendedjoin.exe

2008-08-30 21:34:12 ----A---- C:\Windows\system32\ucsvc.exe

2008-08-30 21:34:12 ----A---- C:\Windows\system32\TimeDateMUICallback.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\tbs.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\setupcln.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\RegCtrl.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\rasdiag.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\prevhost.exe

2008-08-30 21:34:12 ----A---- C:\Windows\system32\ocsetup.exe

2008-08-30 21:34:12 ----A---- C:\Windows\system32\netbtugc.exe

2008-08-30 21:34:12 ----A---- C:\Windows\system32\mobsync.exe

2008-08-30 21:34:12 ----A---- C:\Windows\system32\licmgr10.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\itss.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\iscsied.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\GuidedHelp.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\fphc.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\dskquota.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\dmime.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\csrstub.exe

2008-08-30 21:34:12 ----A---- C:\Windows\system32\cscdll.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\convert.exe

2008-08-30 21:34:12 ----A---- C:\Windows\system32\bitsigd.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\AuthFWGP.dll

2008-08-30 21:34:12 ----A---- C:\Windows\system32\AtBroker.exe

2008-08-30 21:34:11 ----A---- C:\Windows\system32\winnsi.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\VIDRESZR.DLL

2008-08-30 21:34:11 ----A---- C:\Windows\system32\usbui.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\regini.exe

2008-08-30 21:34:11 ----A---- C:\Windows\system32\RacAgent.exe

2008-08-30 21:34:11 ----A---- C:\Windows\system32\odbccu32.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\odbccr32.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\napdsnap.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\mydocs.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\msident.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\msdart.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\MsCtfMonitor.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\l2gpstore.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\dsdmo.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\dot3dlg.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\devenum.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\cmstplua.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\cmpbk32.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\apilogen.dll

2008-08-30 21:34:11 ----A---- C:\Windows\system32\amxread.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\vss_ps.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\wsock32.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\wpclsp.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\WINSRPC.DLL

2008-08-30 21:34:10 ----A---- C:\Windows\system32\wiarpc.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\vfwwdm32.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\WavDest.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\upnpcont.exe

2008-08-30 21:34:10 ----A---- C:\Windows\system32\syskey.exe

2008-08-30 21:34:10 ----A---- C:\Windows\system32\srwmi.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\ROUTE.EXE

2008-08-30 21:34:10 ----A---- C:\Windows\system32\rasphone.exe

2008-08-30 21:34:10 ----A---- C:\Windows\system32\procinst.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\odbcbcp.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\nsi.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\netevent.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\ndfetw.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\nbtstat.exe

2008-08-30 21:34:10 ----A---- C:\Windows\system32\mtxlegih.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\mtxdm.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\msexcl40.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\MP3DMOD.DLL

2008-08-30 21:34:10 ----A---- C:\Windows\system32\mfcsubs.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\graftabl.com

2008-08-30 21:34:10 ----A---- C:\Windows\system32\gpupdate.exe

2008-08-30 21:34:10 ----A---- C:\Windows\system32\extrac32.exe

2008-08-30 21:34:10 ----A---- C:\Windows\system32\eventcls.dll

2008-08-30 21:34:10 ----A---- C:\Windows\system32\csrss.exe

2008-08-30 21:34:10 ----A---- C:\Windows\system32\avrt.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\wshcon.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\WlanMmHC.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe

2008-08-30 21:34:09 ----A---- C:\Windows\system32\wiadss.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\TabbtnEx.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\Tabbtn.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\psbase.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\Netplwiz.exe

2008-08-30 21:34:09 ----A---- C:\Windows\system32\msxbde40.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\mspbde40.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\msltus40.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\inetppui.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\icsunattend.exe

2008-08-30 21:34:09 ----A---- C:\Windows\system32\dmscript.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\dmloader.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\d3dxof.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\credssp.dll

2008-08-30 21:34:09 ----A---- C:\Windows\system32\CertEnrollCtrl.exe

2008-08-30 21:34:09 ----A---- C:\Windows\system32\atmfd.dll

2008-08-30 21:34:09 ----A---- C:\Windows\fveupdate.exe

2008-08-30 21:34:08 ----A---- C:\Windows\system32\WsmRes.dll

2008-08-30 21:34:08 ----A---- C:\Windows\system32\WSHTCPIP.DLL

2008-08-30 21:34:08 ----A---- C:\Windows\system32\wship6.dll

2008-08-30 21:34:08 ----A---- C:\Windows\system32\tcpmon.ini

2008-08-30 21:34:08 ----A---- C:\Windows\system32\sxsstore.dll

2008-08-30 21:34:08 ----A---- C:\Windows\system32\setupSNK.exe

2008-08-30 21:34:08 ----A---- C:\Windows\system32\PlaySndSrv.dll

2008-08-30 21:34:08 ----A---- C:\Windows\system32\msvidc32.dll

2008-08-30 21:34:08 ----A---- C:\Windows\system32\localui.dll

2008-08-30 21:34:08 ----A---- C:\Windows\system32\lltdapi.dll

2008-08-30 21:34:08 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll

2008-08-30 21:34:08 ----A---- C:\Windows\system32\icaapi.dll

2008-08-30 21:34:08 ----A---- C:\Windows\system32\HotStartUserAgent.dll

2008-08-30 21:34:08 ----A---- C:\Windows\system32\ComputerDefaults.exe

2008-08-30 21:34:07 ----A---- C:\Windows\system32\usbperf.dll

2008-08-30 21:34:07 ----A---- C:\Windows\system32\spopk.dll

2008-08-30 21:34:07 ----A---- C:\Windows\system32\slwga.dll

2008-08-30 21:34:07 ----A---- C:\Windows\system32\serialui.dll

2008-08-30 21:34:07 ----A---- C:\Windows\system32\sbunattend.exe

2008-08-30 21:34:07 ----A---- C:\Windows\system32\OptionalFeatures.exe

2008-08-30 21:34:07 ----A---- C:\Windows\system32\NcdProp.dll

2008-08-30 21:34:07 ----A---- C:\Windows\system32\dmutil.dll

2008-08-30 21:34:06 ----A---- C:\Windows\system32\rasctrs.dll

2008-08-30 21:34:06 ----A---- C:\Windows\system32\odbcconf.dll

2008-08-30 21:34:06 ----A---- C:\Windows\system32\msobjs.dll

2008-08-30 21:34:06 ----A---- C:\Windows\system32\msfeedssync.exe

2008-08-30 21:34:06 ----A---- C:\Windows\system32\ieencode.dll

2008-08-30 21:34:06 ----A---- C:\Windows\system32\hnetmon.dll

2008-08-30 21:34:06 ----A---- C:\Windows\system32\hbaapi.dll

2008-08-30 21:34:06 ----A---- C:\Windows\system32\corpol.dll

2008-08-30 21:34:06 ----A---- C:\Windows\system32\cofiredm.dll

2008-08-30 21:34:05 ----A---- C:\Windows\system32\vdmdbg.dll

2008-08-30 21:34:05 ----A---- C:\Windows\system32\url.dll

2008-08-30 21:34:05 ----A---- C:\Windows\system32\nlsbres.dll

2008-08-30 21:34:05 ----A---- C:\Windows\system32\midimap.dll

2008-08-30 21:34:05 ----A---- C:\Windows\system32\LogonUI.exe

2008-08-30 21:34:05 ----A---- C:\Windows\system32\iprtprio.dll

2008-08-30 21:34:05 ----A---- C:\Windows\system32\InfDefaultInstall.exe

2008-08-30 21:34:05 ----A---- C:\Windows\system32\esentprf.dll

2008-08-30 21:34:04 ----A---- C:\Windows\system32\sdspres.dll

2008-08-30 21:34:04 ----A---- C:\Windows\system32\osbaseln.dll

2008-08-30 21:34:04 ----A---- C:\Windows\system32\cfgmgr32.dll

2008-08-30 21:34:03 ----A---- C:\Windows\system32\msisip.dll

2008-08-30 21:34:02 ----A---- C:\Windows\system32\msmmsp.dll

2008-08-30 21:34:01 ----A---- C:\Windows\system32\winusb.dll

2008-08-30 21:34:01 ----A---- C:\Windows\system32\rdpcfgex.dll

2008-08-30 21:34:01 ----A---- C:\Windows\system32\dispex.dll

2008-08-30 21:33:59 ----A---- C:\Windows\system32\spwmp.dll

2008-08-30 21:33:59 ----A---- C:\Windows\system32\riched32.dll

2008-08-30 21:33:59 ----A---- C:\Windows\system32\Nlsdl.dll

2008-08-30 21:33:59 ----A---- C:\Windows\system32\msidle.dll

2008-08-30 21:33:59 ----A---- C:\Windows\system32\idndl.dll

2008-08-30 21:33:58 ----A---- C:\Windows\system32\wmploc.DLL

2008-08-30 21:33:58 ----A---- C:\Windows\system32\vga256.dll

2008-08-30 21:33:58 ----A---- C:\Windows\system32\tsddd.dll

2008-08-30 21:33:58 ----A---- C:\Windows\system32\KBDKOR.DLL

2008-08-30 21:33:58 ----A---- C:\Windows\system32\KBDJPN.DLL

2008-08-30 21:33:58 ----A---- C:\Windows\system32\iscsilog.dll

2008-08-30 21:33:58 ----A---- C:\Windows\system32\framebuf.dll

2008-08-30 21:33:58 ----A---- C:\Windows\system32\dxmasf.dll

2008-08-30 21:33:57 ----A---- C:\Windows\system32\vga64k.dll

2008-08-30 21:33:57 ----A---- C:\Windows\system32\vga.dll

2008-08-30 21:33:57 ----A---- C:\Windows\system32\spwizres.dll

2008-08-30 21:33:57 ----A---- C:\Windows\system32\f3ahvoas.dll

2008-08-30 21:33:57 ----A---- C:\Windows\system32\dmdskres2.dll

2008-08-30 21:33:57 ----A---- C:\Windows\system32\bootstr.dll

2008-08-30 21:33:56 ----A---- C:\Windows\system32\gatherWirelessInfo.vbs

2008-08-30 21:33:56 ----A---- C:\Windows\system32\gatherWiredInfo.vbs

2008-08-30 21:33:56 ----A---- C:\Windows\system32\fsmgmt.msc

2008-08-30 21:33:53 ----A---- C:\Windows\system32\perfmon.msc

2008-08-30 21:33:51 ----A---- C:\Windows\system32\vsp1cln.exe

2008-08-30 21:33:13 ----A---- C:\Windows\system32\xmllite.dll

2008-08-30 21:33:12 ----A---- C:\Windows\system32\wbemcomn.dll

2008-08-30 21:33:07 ----A---- C:\Windows\system32\SmiInstaller.dll

2008-08-30 21:33:07 ----A---- C:\Windows\system32\SmiEngine.dll

2008-08-30 21:33:01 ----A---- C:\Windows\system32\wdscore.dll

2008-08-30 21:33:01 ----A---- C:\Windows\system32\PkgMgr.exe

2008-08-30 21:32:48 ----A---- C:\Windows\system32\mspatcha.dll

2008-08-30 21:32:48 ----A---- C:\Windows\system32\msdelta.dll

2008-08-30 21:32:48 ----A---- C:\Windows\system32\drvstore.dll

2008-08-30 21:32:48 ----A---- C:\Windows\system32\dpx.dll

2008-08-30 21:32:41 ----A---- C:\Windows\system32\kbd106.dll

2008-08-30 21:25:16 ----D---- C:\Program Files\SvtPlayforVMC

2008-08-29 20:48:28 ----D---- C:\Users\Tangemo\AppData\Roaming\Personal

2008-08-29 20:38:36 ----A---- C:\Windows\system32\es.dll

2008-08-29 20:38:21 ----D---- C:\Program Files\Personal

2008-08-29 10:18:58 ----A---- C:\Windows\system32\dns-sd.exe

2008-08-29 09:53:50 ----A---- C:\Windows\system32\dnssd.dll

2008-08-25 19:27:08 ----D---- C:\Users\Tangemo\AppData\Roaming\Adobe

2008-08-24 15:14:02 ----D---- C:\Program Files\BUFFALO

2008-08-24 10:55:28 ----A---- C:\Windows\system32\winipsec.dll

2008-08-24 10:55:28 ----A---- C:\Windows\system32\polstore.dll

2008-08-24 10:55:28 ----A---- C:\Windows\system32\IPSECSVC.DLL

2008-08-24 10:55:28 ----A---- C:\Windows\system32\FwRemoteSvr.dll

2008-08-24 10:52:32 ----A---- C:\Windows\system32\shell32.dll

2008-08-24 10:51:15 ----A---- C:\Windows\system32\tzres.dll

2008-08-24 10:47:24 ----A---- C:\Windows\system32\NlsLexicons0049.dll

2008-08-24 10:47:24 ----A---- C:\Windows\system32\NlsLexicons0047.dll

2008-08-24 10:47:24 ----A---- C:\Windows\system32\NlsLexicons0046.dll

2008-08-24 10:47:24 ----A---- C:\Windows\system32\NlsLexicons0045.dll

2008-08-24 10:47:24 ----A---- C:\Windows\system32\NlsLexicons0039.dll

2008-08-24 10:47:24 ----A---- C:\Windows\system32\NlsLexicons0020.dll

2008-08-24 10:47:23 ----A---- C:\Windows\system32\NlsLexicons0026.dll

2008-08-24 10:47:23 ----A---- C:\Windows\system32\NlsLexicons0024.dll

2008-08-24 10:47:23 ----A---- C:\Windows\system32\NlsLexicons0022.dll

2008-08-24 10:47:23 ----A---- C:\Windows\system32\NlsLexicons0021.dll

2008-08-24 10:47:22 ----A---- C:\Windows\system32\NlsLexicons0027.dll

2008-08-24 10:47:22 ----A---- C:\Windows\system32\NlsLexicons0011.dll

2008-08-24 10:47:22 ----A---- C:\Windows\system32\NlsLexicons0010.dll

2008-08-24 10:47:21 ----A---- C:\Windows\system32\NlsLexicons0019.dll

2008-08-24 10:47:21 ----A---- C:\Windows\system32\NlsLexicons0018.dll

2008-08-24 10:47:21 ----A---- C:\Windows\system32\NlsLexicons0013.dll

2008-08-24 10:47:20 ----A---- C:\Windows\system32\NlsLexicons0002.dll

2008-08-24 10:47:20 ----A---- C:\Windows\system32\NlsLexicons0001.dll

2008-08-24 10:47:19 ----A---- C:\Windows\system32\NlsLexicons004c.dll

2008-08-24 10:47:19 ----A---- C:\Windows\system32\NlsLexicons004b.dll

2008-08-24 10:47:19 ----A---- C:\Windows\system32\NlsLexicons004a.dll

2008-08-24 10:47:19 ----A---- C:\Windows\system32\NlsLexicons0009.dll

2008-08-24 10:47:19 ----A---- C:\Windows\system32\NlsLexicons0007.dll

2008-08-24 10:47:19 ----A---- C:\Windows\system32\NlsLexicons0003.dll

2008-08-24 10:47:18 ----A---- C:\Windows\system32\NlsLexicons004e.dll

2008-08-24 10:47:18 ----A---- C:\Windows\system32\NlsLexicons003e.dll

2008-08-24 10:47:18 ----A---- C:\Windows\system32\NlsLexicons002a.dll

2008-08-24 10:47:18 ----A---- C:\Windows\system32\NlsLexicons001b.dll

2008-08-24 10:47:18 ----A---- C:\Windows\system32\NlsLexicons001a.dll

2008-08-24 10:47:17 ----A---- C:\Windows\system32\NlsLexicons001d.dll

2008-08-24 10:47:17 ----A---- C:\Windows\system32\NlsLexicons000a.dll

2008-08-24 10:47:16 ----A---- C:\Windows\system32\NlsLexicons000d.dll

2008-08-24 10:47:16 ----A---- C:\Windows\system32\NlsLexicons000c.dll

2008-08-24 10:47:15 ----A---- C:\Windows\system32\NlsLexicons0416.dll

2008-08-24 10:47:15 ----A---- C:\Windows\system32\NlsLexicons0414.dll

2008-08-24 10:47:15 ----A---- C:\Windows\system32\NlsLexicons000f.dll

2008-08-24 10:47:14 ----A---- C:\Windows\system32\NlsModels0011.dll

2008-08-24 10:47:14 ----A---- C:\Windows\system32\NlsLexicons081a.dll

2008-08-24 10:47:14 ----A---- C:\Windows\system32\NlsLexicons0816.dll

2008-08-24 10:47:14 ----A---- C:\Windows\system32\NlsData0045.dll

2008-08-24 10:47:13 ----A---- C:\Windows\system32\NlsData0049.dll

2008-08-24 10:47:13 ----A---- C:\Windows\system32\NlsData0047.dll

2008-08-24 10:47:13 ----A---- C:\Windows\system32\NlsData0046.dll

2008-08-24 10:47:13 ----A---- C:\Windows\system32\NlsData0039.dll

2008-08-24 10:47:13 ----A---- C:\Windows\system32\NlsData0027.dll

2008-08-24 10:47:13 ----A---- C:\Windows\system32\NlsData0026.dll

2008-08-24 10:47:13 ----A---- C:\Windows\system32\NlsData0024.dll

2008-08-24 10:47:13 ----A---- C:\Windows\system32\NlsData0022.dll

2008-08-24 10:47:13 ----A---- C:\Windows\system32\NlsData0021.dll

2008-08-24 10:47:13 ----A---- C:\Windows\system32\NlsData0020.dll

2008-08-24 10:47:13 ----A---- C:\Windows\system32\NlsData0010.dll

2008-08-24 10:47:12 ----A---- C:\Windows\system32\NlsData0019.dll

2008-08-24 10:47:12 ----A---- C:\Windows\system32\NlsData0018.dll

2008-08-24 10:47:12 ----A---- C:\Windows\system32\NlsData0013.dll

2008-08-24 10:47:12 ----A---- C:\Windows\system32\NlsData0011.dll

2008-08-24 10:47:12 ----A---- C:\Windows\system32\NlsData0009.dll

2008-08-24 10:47:12 ----A---- C:\Windows\system32\NlsData0007.dll

2008-08-24 10:47:12 ----A---- C:\Windows\system32\NlsData0003.dll

2008-08-24 10:47:12 ----A---- C:\Windows\system32\NlsData0002.dll

2008-08-24 10:47:12 ----A---- C:\Windows\system32\NlsData0001.dll

2008-08-24 10:47:12 ----A---- C:\Windows\system32\NlsData0000.dll

2008-08-24 10:47:11 ----A---- C:\Windows\system32\NlsData004e.dll

2008-08-24 10:47:11 ----A---- C:\Windows\system32\NlsData004c.dll

2008-08-24 10:47:11 ----A---- C:\Windows\system32\NlsData004b.dll

2008-08-24 10:47:11 ----A---- C:\Windows\system32\NlsData004a.dll

2008-08-24 10:47:11 ----A---- C:\Windows\system32\NlsData003e.dll

2008-08-24 10:47:11 ----A---- C:\Windows\system32\NlsData002a.dll

2008-08-24 10:47:11 ----A---- C:\Windows\system32\NlsData001d.dll

2008-08-24 10:47:11 ----A---- C:\Windows\system32\NlsData001b.dll

2008-08-24 10:47:11 ----A---- C:\Windows\system32\NlsData001a.dll

2008-08-24 10:47:11 ----A---- C:\Windows\system32\NlsData000a.dll

2008-08-24 10:47:10 ----A---- C:\Windows\system32\NlsData081a.dll

2008-08-24 10:47:10 ----A---- C:\Windows\system32\NlsData0816.dll

2008-08-24 10:47:10 ----A---- C:\Windows\system32\NlsData0416.dll

2008-08-24 10:47:10 ----A---- C:\Windows\system32\NlsData0414.dll

2008-08-24 10:47:10 ----A---- C:\Windows\system32\NlsData000f.dll

2008-08-24 10:47:10 ----A---- C:\Windows\system32\NlsData000d.dll

2008-08-24 10:47:10 ----A---- C:\Windows\system32\NlsData000c.dll

2008-08-24 10:47:10 ----A---- C:\Windows\system32\NaturalLanguage6.dll

2008-08-24 10:47:09 ----A---- C:\Windows\system32\NlsLexicons0c1a.dll

2008-08-24 10:47:09 ----A---- C:\Windows\system32\NlsData0c1a.dll

2008-08-24 10:45:13 ----A---- C:\Windows\system32\wininet.dll

2008-08-24 10:45:13 ----A---- C:\Windows\system32\jsproxy.dll

2008-08-24 10:45:12 ----A---- C:\Windows\system32\ieui.dll

2008-08-24 10:45:12 ----A---- C:\Windows\system32\ieframe.dll

2008-08-24 10:45:10 ----A---- C:\Windows\system32\mshtml.dll

2008-08-24 10:45:09 ----A---- C:\Windows\system32\urlmon.dll

2008-08-24 10:45:09 ----A---- C:\Windows\system32\mstime.dll

2008-08-24 10:42:55 ----A---- C:\Windows\system32\kbd106n.dll

2008-08-24 10:42:53 ----A---- C:\Windows\system32\winresume.exe

2008-08-24 10:42:53 ----A---- C:\Windows\system32\winload.exe

2008-08-24 10:42:52 ----A---- C:\Windows\system32\srdelayed.exe

2008-08-24 10:42:52 ----A---- C:\Windows\system32\srcore.dll

2008-08-24 10:42:52 ----A---- C:\Windows\system32\srclient.dll

2008-08-24 10:42:52 ----A---- C:\Windows\system32\setbcdlocale.dll

2008-08-24 10:42:52 ----A---- C:\Windows\system32\rstrui.exe

2008-08-24 10:42:52 ----A---- C:\Windows\system32\kd1394.dll

2008-08-24 10:42:51 ----A---- C:\Windows\system32\ci.dll

2008-08-24 10:40:29 ----A---- C:\Windows\system32\gdi32.dll

2008-08-24 10:39:15 ----A---- C:\Windows\system32\wshrm.dll

2008-08-24 10:38:04 ----A---- C:\Windows\system32\gameux.dll

2008-08-24 10:37:21 ----A---- C:\Windows\system32\INETRES.dll

2008-08-24 10:37:21 ----A---- C:\Windows\system32\inetcomm.dll

2008-08-24 10:37:01 ----A---- C:\Windows\system32\quartz.dll

2008-08-24 10:36:33 ----A---- C:\Windows\system32\psisdecd.dll

2008-08-24 10:36:33 ----A---- C:\Windows\system32\EncDec.dll

2008-08-24 10:36:09 ----D---- C:\Program Files\MSXML 4.0

2008-08-24 10:09:52 ----D---- C:\Users\Tangemo\AppData\Roaming\Google

2008-08-24 10:04:05 ----D---- C:\Users\Tangemo\AppData\Roaming\Identities

2008-08-24 09:54:40 ----D---- C:\Users\Tangemo\AppData\Roaming\Macromedia

2008-08-24 09:48:24 ----D---- C:\Users\Tangemo\AppData\Roaming\Hewlett-Packard

2008-08-24 09:46:19 ----SD---- C:\Users\Tangemo\AppData\Roaming\Microsoft

2008-08-24 09:46:19 ----D---- C:\Users\Tangemo\AppData\Roaming\Media Center Programs

2008-08-24 09:43:05 ----SHD---- C:\Programme

2008-08-24 09:43:05 ----SHD---- C:\ProgramData\Vorlagen

2008-08-24 09:43:05 ----SHD---- C:\ProgramData\Startmenü

2008-08-24 09:43:05 ----SHD---- C:\ProgramData\Favoriten

2008-08-24 09:43:05 ----SHD---- C:\ProgramData\Dokumente

2008-08-24 09:43:05 ----SHD---- C:\ProgramData\Anwendungsdaten

2008-08-24 09:43:05 ----SHD---- C:\Program Files\Gemeinsame Dateien

2008-08-24 09:43:05 ----SHD---- C:\Dokumente und Einstellungen

 

======List of files/folders modified in the last 1 months======

 

2008-09-19 20:57:00 ----D---- C:\Windows\Prefetch

2008-09-19 20:03:22 ----D---- C:\Windows\system32\NDF

2008-09-19 19:39:20 ----SHD---- C:\System Volume Information

2008-09-19 18:56:27 ----D---- C:\Windows\System32

2008-09-19 18:56:26 ----D---- C:\Windows

2008-09-19 18:52:19 ----A---- C:\Windows\system.ini

2008-09-19 18:51:17 ----D---- C:\Windows\system32\drivers

2008-09-19 18:51:17 ----D---- C:\Windows\AppPatch

2008-09-19 18:51:17 ----D---- C:\Program Files\Common Files

2008-09-19 17:54:43 ----D---- C:\Windows\system32\catroot2

2008-09-19 06:23:52 ----D---- C:\Windows\system32\Tasks

2008-09-18 22:30:29 ----HD---- C:\ProgramData

2008-09-18 22:29:38 ----D---- C:\Windows\system32\catroot

2008-09-18 22:29:38 ----D---- C:\Windows\inf

2008-09-18 22:29:31 ----SHD---- C:\Windows\Installer

2008-09-18 22:27:19 ----HD---- C:\Program Files\InstallShield Installation Information

2008-09-18 22:27:16 ----RD---- C:\Program Files

2008-09-18 21:59:01 ----A---- C:\Windows\system32\PerfStringBackup.INI

2008-09-17 18:57:32 ----D---- C:\Program Files\Java

2008-09-11 19:16:02 ----D---- C:\Windows\winsxs

2008-09-11 18:52:05 ----D---- C:\Program Files\Microsoft Works

2008-09-09 08:06:10 ----D---- C:\Windows\rescache

2008-09-09 07:45:42 ----D---- C:\Windows\system32\de-DE

2008-09-09 07:45:42 ----D---- C:\Windows\PolicyDefinitions

2008-09-08 18:09:53 ----D---- C:\ProgramData\Sonic

2008-09-07 17:39:19 ----D---- C:\ProgramData\NVIDIA

2008-09-07 13:21:51 ----D---- C:\Windows\SMINST

2008-09-07 12:27:16 ----D---- C:\Windows\system32\config

2008-09-07 12:22:44 ----D---- C:\Program Files\Roxio

2008-09-06 16:47:51 ----RSD---- C:\Windows\assembly

2008-09-06 16:45:23 ----D---- C:\Windows\Tasks

2008-09-06 14:22:39 ----A---- C:\Windows\system32\sugs1ci.exe

2008-09-06 14:22:39 ----A---- C:\Windows\system32\sugs1ci.dll

2008-09-06 03:32:58 ----D---- C:\Windows\Logs

2008-09-06 03:25:39 ----D---- C:\Windows\Microsoft.NET

2008-09-06 03:22:57 ----SHD---- C:\Boot

2008-09-06 03:22:47 ----ASH---- C:\Program Files\desktop.ini

2008-09-06 03:12:21 ----D---- C:\Program Files\Windows Sidebar

2008-09-06 03:12:21 ----D---- C:\Program Files\Windows Calendar

2008-09-06 03:12:21 ----D---- C:\Program Files\Movie Maker

2008-09-06 03:12:20 ----D---- C:\Program Files\Windows Mail

2008-09-06 03:12:20 ----D---- C:\Program Files\Internet Explorer

2008-09-06 03:12:19 ----D---- C:\Program Files\Windows Media Player

2008-09-06 03:12:19 ----D---- C:\Program Files\Windows Collaboration

2008-09-06 03:12:18 ----D---- C:\Program Files\Windows Photo Gallery

2008-09-06 03:12:18 ----D---- C:\Program Files\Windows Journal

2008-09-06 03:12:13 ----D---- C:\Windows\servicing

2008-09-06 03:12:13 ----D---- C:\Program Files\Windows Defender

2008-09-06 03:12:13 ----D---- C:\Program Files\Common Files\System

2008-09-06 03:12:12 ----D---- C:\Windows\ehome

2008-09-06 03:12:00 ----D---- C:\Windows\MSAgent

2008-09-06 03:12:00 ----D---- C:\Windows\L2Schemas

2008-09-06 03:12:00 ----D---- C:\Windows\IME

2008-09-06 03:12:00 ----D---- C:\Windows\DigitalLocker

2008-09-06 03:11:59 ----D---- C:\Windows\system32\XPSViewer

2008-09-06 03:11:59 ----D---- C:\Windows\system32\ko-KR

2008-09-06 03:11:59 ----D---- C:\Windows\system32\da-DK

2008-09-06 03:11:59 ----D---- C:\Windows\system32\com

2008-09-06 03:11:58 ----D---- C:\Windows\system32\en-US

2008-09-06 03:11:53 ----D---- C:\Windows\system32\sysprep

2008-09-06 03:11:53 ----D---- C:\Windows\system32\oobe

2008-09-06 03:11:53 ----D---- C:\Windows\system32\migration

2008-09-06 03:11:53 ----D---- C:\Windows\system32\it-IT

2008-09-06 03:11:53 ----D---- C:\Windows\system32\el-GR

2008-09-06 03:11:48 ----D---- C:\Windows\system32\sv-SE

2008-09-06 03:11:48 ----D---- C:\Windows\system32\setup

2008-09-06 03:11:48 ----D---- C:\Windows\system32\ru-RU

2008-09-06 03:11:48 ----D---- C:\Windows\system32\pt-PT

2008-09-06 03:11:48 ----D---- C:\Windows\system32\ias

2008-09-06 03:11:48 ----D---- C:\Windows\system32\hu-HU

2008-09-06 03:11:48 ----D---- C:\Windows\system32\he-IL

2008-09-06 03:11:48 ----D---- C:\Windows\system32\fr-FR

2008-09-06 03:11:48 ----D---- C:\Windows\system32\fi-FI

2008-09-06 03:11:48 ----D---- C:\Windows\system32\cs-CZ

2008-09-06 03:11:48 ----D---- C:\Windows\system32\AdvancedInstallers

2008-09-06 03:11:47 ----D---- C:\Windows\system32\SLUI

2008-09-06 03:11:46 ----D---- C:\Windows\system32\zh-TW

2008-09-06 03:11:46 ----D---- C:\Windows\system32\zh-CN

2008-09-06 03:11:46 ----D---- C:\Windows\system32\ro-RO

2008-09-06 03:11:46 ----D---- C:\Windows\system32\pl-PL

2008-09-06 03:11:46 ----D---- C:\Windows\system32\manifeststore

2008-09-06 03:11:46 ----D---- C:\Windows\system32\ja-JP

2008-09-06 03:11:46 ----D---- C:\Windows\system32\es-ES

2008-09-06 03:11:43 ----D---- C:\Windows\system32\wbem

2008-09-06 03:11:43 ----D---- C:\Windows\system32\tr-TR

2008-09-06 03:11:41 ----D---- C:\Windows\system32\nl-NL

2008-09-06 03:11:41 ----D---- C:\Windows\system32\nb-NO

2008-09-06 03:11:41 ----D---- C:\Windows\system32\ar-SA

2008-09-06 03:11:39 ----D---- C:\Windows\system32\pt-BR

2008-09-06 03:11:39 ----D---- C:\Windows\system32\migwiz

2008-09-06 03:10:38 ----D---- C:\Windows\Boot

2008-09-06 03:10:36 ----D---- C:\Windows\system32\Boot

2008-09-06 02:54:08 ----D---- C:\Windows\system32\RTCOM

2008-09-06 02:45:06 ----A---- C:\Windows\system32\ifxcardm.dll

2008-09-06 02:45:05 ----A---- C:\Windows\system32\axaltocm.dll

2008-09-06 01:30:40 ----D---- C:\Windows\twain_32

2008-09-05 21:46:03 ----HD---- C:\hp

2008-09-05 21:16:30 ----SD---- C:\Windows\Downloaded Program Files

2008-09-05 20:39:46 ----D---- C:\Windows\system32\WDI

2008-09-05 03:08:12 ----A---- C:\Windows\win.ini

2008-09-05 03:04:45 ----D---- C:\Program Files\Common Files\microsoft shared

2008-09-03 23:22:42 ----D---- C:\Program Files\MSBuild

2008-09-03 23:22:34 ----D---- C:\Program Files\Microsoft Office

2008-09-03 23:22:22 ----D---- C:\Windows\ShellNew

2008-09-03 23:21:39 ----RSD---- C:\Windows\Fonts

2008-09-03 23:21:30 ----SD---- C:\ProgramData\Microsoft

2008-09-02 21:31:19 ----D---- C:\ProgramData\Adobe

2008-09-02 21:29:58 ----D---- C:\Program Files\Common Files\PX Storage Engine

2008-09-02 21:29:28 ----D---- C:\Program Files\Adobe

2008-09-01 19:48:13 ----D---- C:\Program Files\HP

2008-08-26 22:28:12 ----A---- C:\Windows\system32\mrt.exe

2008-08-24 16:50:42 ----D---- C:\Windows\Debug

2008-08-24 11:00:08 ----D---- C:\Program Files\Google

2008-08-24 10:58:30 ----D---- C:\Windows\system32\ras

2008-08-24 10:58:29 ----D---- C:\Windows\system32\icsxml

2008-08-24 10:35:47 ----D---- C:\Windows\system32\LogFiles

2008-08-24 10:34:53 ----D---- C:\Windows\SoftwareDistribution

2008-08-24 10:04:18 ----SHD---- C:\$Recycle.Bin

2008-08-24 10:03:58 ----D---- C:\Windows\system

2008-08-24 09:46:57 ----D---- C:\Windows\system32\restore

2008-08-24 09:46:19 ----RD---- C:\Users

2008-08-24 09:43:05 ----D---- C:\Program Files\Windows NT

 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R1 easdrv;easdrv; C:\Windows\system32\DRIVERS\easdrv.sys [2008-06-10 53256]

R1 epfwtdir;epfwtdir; C:\Windows\system32\DRIVERS\epfwtdir.sys [2008-06-10 34312]

R1 magicpvt;magicpvt; C:\Windows\system32\drivers\magicpvt.sys [2006-12-04 26240]

R1 MagicTune;MagicTune; C:\Windows\system32\drivers\MTiCtwl.sys [2008-07-04 13056]

R2 eamon;EAMON; C:\Windows\system32\DRIVERS\eamon.sys [2008-06-10 39944]

R3 catchme;catchme; \??\C:\ComboFix\catchme.sys []

R3 e1express;Intel® PRO/1000 PCI Express Network Connection Driver; C:\Windows\system32\DRIVERS\e1e6032.sys [2007-04-13 228224]

R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]

R3 HCW85BDA;Hauppauge WinTV 885 Video Capture; C:\Windows\system32\drivers\HCW85BDA.sys [2007-06-11 968064]

R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-07-11 1793880]

R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]

R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2008-02-29 36880]

R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2008-02-29 28944]

R3 LVUSBSta;Logitech USB Monitor Filter; C:\Windows\system32\DRIVERS\LVUSBSta.sys [2005-01-31 22016]

R3 MSPQM;Microsoft Proxy für Streaming Quality Manager; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]

R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-08-15 7314848]

R3 PID_0920;Logitech QuickCam Express(PID_0920); C:\Windows\system32\DRIVERS\LV532AV.SYS [2005-01-31 163328]

S3 a1vaw48k;a1vaw48k; C:\Windows\system32\drivers\a1vaw48k.sys []

S3 drmkaud;Microsoft Kernel-DRM-Audioentschlüsselung; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]

S3 HdAudAddService;Microsoft 1.1 UAA-Funktionstreiber für High Definition Audio-Dienst; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]

S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]

S3 MSPCLOCK;Microsoft Proxy für Streaming Clock; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]

S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-Konvertierung; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]

S3 netr73;USB Wireless 802.11 b/g Adaptor Driver for Vista; C:\Windows\system32\DRIVERS\netr73.sys [2007-04-20 265216]

S3 PcdrNdisuio;PCDRNDISUIO Usermode I/O Protocol; C:\Windows\system32\DRIVERS\pcdrndisuio.sys []

S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2008-07-22 32000]

S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]

 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-09-10 116040]

R2 Bonjour Service;Bonjour-tjänst; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]

R2 DQLWinService;DQLWinService; C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe [2006-09-03 208896]

R2 ekrn;Eset Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2008-06-10 468224]

R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2007-05-24 61440]

R2 HPBtnSrv;HP Chasis Button Service; c:\hp\HPEZBTN\HPBtnSrv.exe [2007-05-29 198240]

R2 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-07-25 79136]

R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-08-15 196608]

R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-09-10 536872]

S2 IntelDHSvcConf;Intel DH Service; C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe [2006-05-10 29696]

S2 NOD32FiXTemDono;Eset Nod32 Boot; C:\Windows\system32\regedt32.exe [2006-11-02 9216]

S3 AlertService;Intel® Alert Service; C:\Program Files\Intel\IntelDH\CCU\AlertService.exe [2006-09-11 188416]

S3 EhttpSrv;Eset HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2008-06-10 19200]

S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-08-24 138168]

S3 IDriverT;InstallDriver Table Manager; c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]

S3 ISSM;Intel® Software Services Manager; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe [2006-09-11 75264]

S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2008-05-02 121360]

S3 M1 Server;Intel® Viiv Media Server; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe [2006-08-31 26624]

S3 MCLServiceATL;Intel® Application Tracker; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe [2006-09-11 167936]

S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2007-08-24 68464]

S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]

S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

S3 Remote UI Service;Intel® Remoting Service; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe [2006-09-11 544256]

S3 RoxMediaDB9;RoxMediaDB9; c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2007-05-11 887544]

S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-05-03 74656]

S3 usnjsvc;Messenger Sharing Folders USN Journal Reader Service; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]

S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

 

-----------------EOF-----------------

[/log]

BlackLight hittade ingenting....

 

 

 

 

Länk till kommentar
Dela på andra webbplatser

E:\monsetup.exe

Vad är E: för enhet? Har du någon aning om vad monsetup.exe kan vara?

 

Skanna C:\Windows\System32\sugs1l3.dll på virustotal-sidan.

 

[log]Start - Program - Tillbehör - Kommandotolken

Skriv:

set DEVMGR_SHOW_DETAILS=1

set DEVMGR_SHOW_NONPRESENT_DEVICES=1

start devmgmt.msc

 

Då kommer Enhetshanteraren upp och i den väljer du att den även skall visa dolda enheter. Leta efter något som heter a1vaw48k och välj att ta bort den.[/log]

 

Men i samma mapp hittade jag en lurig dll-fil

C:\Users\Tangemo\AppData\Local\Temp\catchme.dll

Det är en del av ComboFix.

 

Det är nog TeaTimer som stoppar tillbaks raden. Stäng av TeaTimer inifrån Spybot S&D.

[log]Skanna med HijackThis och bocka för:

 

O4 - HKCU\..\Run: [f81b46e9] rundll32.exe "C:\Users\Tangemo\AppData\Local\Temp\urwftogd.dll",b

 

Avsluta alla andra program.

Tryck Fix checked.

 

Starta om datorn. Är raden borta nu?[/log]

 

Länk till kommentar
Dela på andra webbplatser

Hej!

 

E:\monsetup.exe

Vad är E: för enhet? Har du någon aning om vad monsetup.exe kan vara?

 

E: är dvdbrännaren. monsetup är nog installationsfilen för en samsungskärm som jag köpt separat. Den är dock installerad och funkar bra...

 

Start - Program - Tillbehör - Kommandotolken

Skriv:

set DEVMGR_SHOW_DETAILS=1

set DEVMGR_SHOW_NONPRESENT_DEVICES=1

start devmgmt.msc

 

Då kommer Enhetshanteraren upp och i den väljer du att den även skall visa dolda enheter. Leta efter något som heter a1vaw48k och välj att ta bort den.

 

"A1WAW48K IDE Controller" hittar jag under "Minneskontroll". Vågar jag verkligen ta bort den?

 

[log]Virustotal:

Fil sugs1l3.dll mottagen 2008.09.19 22:35:47 (CET)

Närvarande status: genomförd

Resultat: 0/36 (0%)[/log]

 

Fortsätter med Hijackthisgrejen när jag vet om jag kan ta bort den lustiga saken i enhetshanteraren.....

 

Länk till kommentar
Dela på andra webbplatser

"A1WAW48K IDE Controller" hittar jag under "Minneskontroll". Vågar jag verkligen ta bort den?
Nä, låt den vara i så fall. Men det verkar som att själva drivrutinsfilen inte finns i datorn. Och lite konstigt att den inte hittas av google.

 

Länk till kommentar
Dela på andra webbplatser

Hey!...

 

Scannade med Hijackthis efter att ha avaktiverat teatimer och tog bort registernyckeln som spökade. Allt verkade fint, så jag aktiverade sedan teatimer igen.... Vid nästa start var registernyckeln där igen. Avinstallerade därför spybot och mbam, eftersom jag tror de syltar ner min dator på nåt vänster, och gjorde samma procedur igen med hijackthis. Vips, så är registernyckeln borta, och nu har jag startat om fem gånger, så jag hoppas att den inte kommer upp igen. Självklart vill jag inte va utan spybot & co, men jag laddar nog ner nya versioner där efter nån vecka....

 

Jag vill inte ropa "hej" än, men datorn verkar må bra för tillfället... Tack än en gång! :thumbsup:

 

Länk till kommentar
Dela på andra webbplatser

... och en log för säkerhets skull....

 

[log]Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 00:55:10, on 2008-09-20

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v7.00 (7.00.6001.18000)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\hp\support\hpsysdrv.exe

C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe

C:\Windows\RtHDVCpl.exe

C:\Windows\System32\jureg.exe

C:\Windows\system32\schtasks.exe

C:\Program Files\HP\HP Software Update\hpwuSchd2.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

C:\Windows\System32\rundll32.exe

C:\Program Files\MagicRotation\MagicPvt.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\DAEMON Tools Lite\daemon.exe

C:\Windows\ehome\ehmsas.exe

C:\Program Files\uTorrent\uTorrent.exe

C:\Program Files\Logitech\SetPoint\SetPoint.exe

C:\Program Files\Personal\bin\Personal.exe

C:\Program Files\BUFFALO\NASNAVI\NasNavi.exe

C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE

C:\hp\kbd\kbd.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gp.se/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=SV_SE&c=74&bd=Pavilion&pf=desktop

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O2 - BHO: Windows Live inloggningshjälpen - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll

O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe

O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE

O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKLM\..\Run: [CCUTRAYICON] FactoryMode

O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [sunJavaUpdateReg] "C:\Windows\system32\jureg.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [MagicRotation] C:\Program Files\MagicRotation\MagicPvt.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"

O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun

O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKALER DIENST')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKALER DIENST')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETZWERKDIENST')

O4 - Startup: BUFFALO NAS Navigator.lnk = C:\Program Files\BUFFALO\NASNAVI\NasNavi.exe

O4 - Startup: Skärmurklipp och start för OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe

O4 - Global Startup: Personal.lnk = C:\Program Files\Personal\bin\Personal.exe

O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll

O9 - Extra button: Skicka till OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Ski&cka till OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL

O13 - Gopher Prefix:

O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O23 - Service: Intel® Alert Service (AlertService) - Intel® Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Bonjour-tjänst (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe

O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe

O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: HP Chasis Button Service (HPBtnSrv) - Unknown owner - c:\hp\HPEZBTN\HPBtnSrv.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: Intel DH Service (IntelDHSvcConf) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Intel® Software Services Manager (ISSM) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe

O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Intel® Viiv Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe

O23 - Service: Intel® Application Tracker (MCLServiceATL) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: Intel® Remoting Service (Remote UI Service) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe

O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe

O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe

 

--

End of file - 9882 bytes[/log]

 

Länk till kommentar
Dela på andra webbplatser

Efter avinstallation av Spybot så finns nog inte inställningarna för TeaTimer kvar och då ska inte raden komma tillbaks i loggen. Sedan är en referens i registret utan samhörande fil totalt ofarlig.

 

MBAM är ett mycket bra antispion- och antiannonsprogram som jag rekommenderar. Det kör inte något utom när du säger till att det ska skanna igenom datorn så det ska inte störa något.

 

Här kan du läsa mina vanliga råd för en säkrare dator, men det är så klart viktigt att man använder sitt förnuft också.

http://ceblstockholm.googlepages.com/home

 

 

Länk till kommentar
Dela på andra webbplatser

Arkiverat

Det här ämnet är nu arkiverat och är stängt för ytterligare svar.

×
×
  • Skapa nytt...