1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Vista Trojan downloader Zlob Help!

Discussion in 'Virus & Other Malware Removal' started by leebonfiglio, Sep 30, 2008.

Thread Status:
Not open for further replies.
Advertisement
  1. leebonfiglio

    leebonfiglio Thread Starter

    Joined:
    Sep 30, 2008
    Messages:
    12
    I'm running Vista and have the Trojn downloader Zlob and need some help. tThe Smitfraud Fix isn't an option with Vista and I've search everywhere and can't seem to get a straight answer about exactly what I should do. I've read a couple of posts here about fixes with xp but nothing I can find about what to do with Vista.

    Thanks,

    Lee
     
  2. jmw3

    jmw3 Malware Specialist

    Joined:
    Jul 23, 2007
    Messages:
    1,460
    Download HijackThis
    NOTE: If you have an older version of HijackThis uninstall it first.
    Download HiJackThis v2.0.2 from here
    • Save HJTInstall.exe to your desktop
    • Double click on the HJTInstall.exe icon on your desktop
    • By default it will install to C:\Program Files\Trend Micro\HijackThis
    • Click on Install
    • It will create a HijackThis icon on the desktop
    • Once installed, it will launch HijackThis
    • Click on the Do a system scan and save a logfile button. It will scan and the log should open in notepad
    • Click on Edit > Select All then click on Edit > Copy to copy the entire contents of the log
    • Come back here to this thread and paste the log in your next reply
    DO NOT use the AnalyseThis button, its findings are dangerous if misinterpreted.
    DO NOT have Hijackthis fix anything yet. Most of what it finds will be harmless or even required.

    Create an Uninstall List
    • Start HijackThis
    • Click on the Config button
    • Click on the Misc Tools button
    • Click on the Open Uninstall Manager button
    • Click on the Save list... button and specify where you would like to save this file
    • When you press the Save button a notepad will open with the contents of that file
    • Copy and paste the contents of that notepad here in your next reply
     
  3. leebonfiglio

    leebonfiglio Thread Starter

    Joined:
    Sep 30, 2008
    Messages:
    12
    This is the report that I got from hijackthish:

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 13:44:31, on 10/1/2008
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18000)
    Boot mode: Normal
    Running processes:
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\DellTPad\Apoint.exe
    C:\Windows\System32\hkcmd.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
    C:\Program Files\Dell\MediaDirect\PCMService.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Dell Support Center\bin\sprtcmd.exe
    C:\Windows\WindowsMobile\wmdc.exe
    C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
    C:\Windows\system32\igfxsrvc.exe
    C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
    C:\Program Files\DellSupport\DSAgnt.exe
    C:\Windows\ehome\ehtray.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Users\lee bonfiglio\Program Files\DNA\btdna.exe
    C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    C:\Users\lee bonfiglio\AppData\Local\Temp\pwrmgr.exe
    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    C:\Program Files\Dell\QuickSet\quickset.exe
    C:\Program Files\Internet Explorer\ieuser.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Windows\System32\mobsync.exe
    C:\Program Files\DellTPad\ApMsgFwd.exe
    C:\Program Files\DellTPad\HidFind.exe
    C:\Program Files\DellTPad\Apntex.exe
    C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com/ig?hl=en&gl=us
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O1 - Hosts: ::1 localhost
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: Google Update Helper - {77D7E795-33C5-4323-974D-A2A49AB75517} - C:\Program Files\Google\Update\1.2.131.11\GoopdateBho.dll
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
    O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
    O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
    O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
    O4 - HKLM\..\Run: [ECenter] c:\dell\E-Center\EULALauncher.exe
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
    O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
    O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
    O4 - HKLM\..\Run: [SigmatelSysTrayApp] C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
    O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
    O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
    O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
    O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\lee bonfiglio\Program Files\DNA\btdna.exe"
    O4 - HKCU\..\Run: [IUpd704] C:\Users\LEEBON~1\AppData\Local\Temp\pwrmgr.exe
    O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
    O4 - Startup: palmOne Registration.lnk = C:\Program Files\palmOne\register.exe
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: QuickSet.lnk = ?
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
    O13 - Gopher Prefix:
    O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/binFrameWork/v10/StagingUI.cab55579.cab
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab56649.cab
    O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (MSN Games – Game Communicator) - http://zone.msn.com/binframework/v10/StProxy.cab55579.cab
    O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5257/mcfscan.cab
    O16 - DPF: {F773E7B2-62A9-4524-9109-87D2F0BEFAA4} (ChessControl Class) - http://zone.msn.com/bingame/zpagames/zpa_kqrp.cab56961.cab
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
    O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
    O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
    O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Update Service (gupdate1c8c134749512b0) (gupdate1c8c134749512b0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
    O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
    O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
    O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
    O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
    O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Windows\system32\STacSV.exe
    O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
    O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
    --
    End of file - 12132 bytes
     
  4. jmw3

    jmw3 Malware Specialist

    Joined:
    Jul 23, 2007
    Messages:
    1,460
    Hi leebonfiglio

    And the Uninstall List. Could you post that as well please.

    Thanks
     
  5. jmw3

    jmw3 Malware Specialist

    Joined:
    Jul 23, 2007
    Messages:
    1,460
    No Anti-virus
    Looking over your log, it seems you don't have any evidence of anti-virus software.
    Anti-virus software are programs that detect, cleanse, and erase harmful virus files on a computer, Web server, or network. Unchecked, virus files can unintentionally be forwarded to others, including trading partners and thereby spreading infection. Because new viruses regularly emerge, anti-virus software should be updated frequently. Anti-virus software can scan the computer memory and disk drives for malicious code. They can alert the user if a virus is present, and will clean, delete (or quarantine) infected files or directories. Download a free anti-virus software from one these excellent vendors NOW:

    1) Antivir PersonalEdition Classic- Free anti-virus software for Windows. Detects and removes more than 50,000 viruses. Free support.
    2) avast! 4 Home Edition - Anti-virus program for Windows. The home edition is freeware for noncommercial users.
    3) AVG Anti-Virus Free Edition - Free edition of the AVG anti-virus program for Windows.

    Your computer must have only ONE anti-virus program installed at any time. Having more than one anti-virus program installed & active will cause program conflicts, false virus alerts, and system crashes.

    P2P Warning!
    IMPORTANT I notice there are signs of one or more P2P (Person to Person) File Sharing Programs on your computer.

    BitTorrent

    Please note that as long as you are using any form of Peer-to-Peer networking and downloading files from non-documented sources, you can expect infestations of malware to occur.
    P2P file sharing used to be fairly safe. That is no longer true. You may continue to use P2P sharing at your own risk; however, please keep in mind that this practice may be the source of your current malware infestation.
    I'd like you to read the Guidelines for P2P Programs where we explain why it's not a good idea to have them.
    References for the risk of these programs can be found in these links: http://www.microsoft.com/windows/ie/community/columns/protection.mspx
    http://www.techweb.com/wire/160500554
    http://www.internetworldstats.com/articles/art053.htm
    See Clean/Infected P2P Programs here

    Go to Control Panel > Add/Remove Programs and uninstall the programs listed above (in red).

    Upload Files for Scanning
    Go to Virus Total or Jotti and upload the following File & Path C:\Users\lee bonfiglio\AppData\Local\Temp\pwrmgr.exe for scanning.

    For Virus Total
    1. Copy and paste the following File & Path in the text box next to the Browse button.
      Code:
      C:\Users\lee bonfiglio\AppData\Local\Temp\pwrmgr.exe
    2. Click Send File.
    3. Wait for scans to finish then copy & paste the results into your next reply.

    For Jotti
    1. Copy and paste the following File & Path in the text box next to the Browse button.
      Code:
      C:\Users\lee bonfiglio\AppData\Local\Temp\pwrmgr.exe
    2. Click Submit.
    3. Wait for scans to finish then copy & paste the results into your next reply.

    Random's System Information Tool (RSIT)
    • Download Random's System Information Tool (RSIT) by random/random from here and save it to your desktop.
    • Right click on RSIT.exe then choose Run as Administrator to run the tool
    • Click Continue at the disclaimer screen
    • Once it has finished, two logs will open, log.txt (<<will be maximized) and info.txt (<<will be minimized)
    • Copy & paste the contents of both logs in your next reply
    To post in next reply:
    Uninstall List
    VirusTotal or Jotti log
    Both logs from RSIT
     
  6. leebonfiglio

    leebonfiglio Thread Starter

    Joined:
    Sep 30, 2008
    Messages:
    12
    Uninstall list.

    Thanks for the help.

    32 Bit HP CIO Components Installer
    Ad-Aware
    Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)
    Adobe Flash Player 9 ActiveX
    Adobe Flash Player ActiveX
    Adobe Flash Player Plugin
    Adobe Photoshop CS
    Adobe Photoshop Lightroom 2
    Adobe Reader 8.1.2
    Apple Mobile Device Support
    Apple Software Update
    Broadcom Management Programs
    CAM UnZip 4.42
    Canon G.726 WMP-Decoder
    Canon MovieEdit Task for ZoomBrowser EX
    Canon RAW Image Task for ZoomBrowser EX
    Canon Utilities CameraWindow
    Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX
    Canon Utilities MyCamera
    Canon Utilities RemoteCapture Task for ZoomBrowser EX
    Canon Utilities ZoomBrowser EX
    Canon ZoomBrowser EX Memory Card Utility
    CCleaner (remove only)
    Conexant HDA D330 MDC V.92 Modem
    ConTEXT
    Dell Support Center (Support Software)
    Dell System Customization Wizard
    Dell Touchpad
    DellSupport
    Digital Line Detect
    DivX Codec
    DivX Converter
    DivX Player
    DivX Web Player
    Epocrates Essentials for Pocket PC
    Games, Music, & Photos Launcher
    Garmin nRoute
    Garmin Trip and Waypoint Manager v4
    GDR 3068 for SQL Server Database Services 2005 ENU (KB948109)
    Google Desktop
    Google Earth
    Google Earth Plugin
    Google Toolbar for Internet Explorer
    Google Toolbar for Internet Explorer
    Google Update
    HijackThis 2.0.2
    HP Customer Participation Program 10.0
    HP Document Manager 1.0
    HP Imaging Device Functions 10.0
    HP iPAQ Setup Assistant v1.3.11.0
    HP Officejet J4500 Series
    HP Photosmart Essential 2.5
    HP Smart Web Printing
    HP Solution Center 10.0
    HP Update
    iTunes
    Java(TM) 6 Update 3
    Java(TM) 6 Update 5
    Java(TM) 6 Update 6
    Java(TM) 6 Update 7
    Java(TM) SE Runtime Environment 6
    LBMaps Baja Navigator V1.10
    Logitech QuickCam
    Logitech QuickCam Driver Package
    Malwarebytes' Anti-Malware
    MediaDirect
    Microsoft Office Excel Viewer 2003
    Microsoft SQL Server 2005
    Microsoft SQL Server 2005 Express Edition (SONY_MEDIAMGR2)
    Microsoft SQL Server Native Client
    Microsoft SQL Server Setup Support Files (English)
    Microsoft SQL Server VSS Writer
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Works
    Modem Diagnostic Tool
    Mozilla Firefox (3.0.3)
    MSXML 4.0 SP2 (KB927978)
    MSXML 4.0 SP2 (KB936181)
    MSXML 4.0 SP2 (KB941833)
    My Sirius Studio
    Netflix Movie Viewer
    NetWaiting
    OCR Software by I.R.I.S. 10.0
    OpenOffice.org 2.3
    Opera 9.52
    OutlookAddinSetup
    Product Documentation Launcher
    QuickSet
    QuickTime
    Rhapsody
    Rhapsody Player Engine
    Roxio Creator Audio
    Roxio Creator BDAV Plugin
    Roxio Creator Copy
    Roxio Creator Data
    Roxio Creator DE
    Roxio Creator Tools
    Roxio Express Labeler
    Roxio MyDVD DE
    Roxio Update Manager
    Security Update for CAPICOM (KB931906)
    Security Update for CAPICOM (KB931906)
    Shop for HP Supplies
    Skype™ 3.5
    Sonic Activation Module
    Sony Media Manager 2.3
    Sony Vegas Pro 8.0
    Spyware Doctor 6.0
    SUPERAntiSpyware Free Edition
    URL Assistant
    User's Guides
    Visual Link Spanish Level I v4.0
    Visual Link Spanish(tm) - Level II Verb Module
    WIDCOMM Bluetooth Software 6.0.1.3100
    Windows Live installer
    Windows Live Mail
    Windows Live Sign-in Assistant
    Windows Media Player Firefox Plugin
    Windows Mobile Device Center
    Windows Mobile Device Center Driver Update
    WinRAR archiver
    WinZip 11.2
    Xvid 1.1.3 final uninstall
    Yahoo! Install Manager
    Yahoo! Music Jukebox
    Yahoo! Toolbar
     
  7. leebonfiglio

    leebonfiglio Thread Starter

    Joined:
    Sep 30, 2008
    Messages:
    12
    Antivirus installed
    Bittorent removed

    File pwrmgr.exe received on 10.02.2008 08:57:00 (CET)
    Current status: finished
    Result: 8/36 (22.22%)

    [​IMG] Compact
    Print results [​IMG]


    AntivirusVersionLast UpdateResultAhnLab-V32008.10.2.02008.10.02-AntiVir7.8.1.342008.10.01DR/Delphi.GenAuthentium5.1.0.42008.10.02-Avast4.8.1248.02008.10.01-AVG8.0.0.1612008.10.01-BitDefender7.22008.10.02Trojan.Delf.Inject.BBCAT-QuickHeal9.502008.10.01-ClamAV0.93.12008.10.02-DrWeb4.44.0.091702008.10.02-eSafe7.0.17.02008.10.01-eTrust-Vet31.6.61212008.10.02-Ewido4.02008.10.01-F-Prot4.4.4.562008.09.30-F-Secure8.0.14332.02008.10.02Trojan.Win32.Buzus.zvuFortinet3.113.0.02008.10.02-GData192008.10.02Trojan.Delf.Inject.BBIkarusT3.1.1.34.02008.10.02Trojan.Crypt.Delf.RK7AntiVirus7.10.4792008.10.01-Kaspersky7.0.0.1252008.10.02Trojan.Win32.Buzus.zvuMcAfee53962008.10.02-Microsoft1.40052008.10.02VirTool:Win32/DelfInject.gen!AFNOD3234882008.10.02-Norman5.80.022008.10.01-Panda9.0.0.42008.10.02-PCTools4.4.2.02008.10.01-Prevx1V22008.10.02-Rising20.63.62.002008.09.28-SecureWeb-Gateway6.7.62008.10.02Trojan.Dropper.Delphi.GenSophos4.34.02008.10.02-Sunbelt3.1.1668.12008.09.24-Symantec102008.10.02-TheHacker6.3.0.9.0982008.10.01-TrendMicro8.700.0.10042008.10.02-VBA323.12.8.62008.10.02-ViRobot2008.10.1.14022008.10.02-VirusBuster4.5.11.02008.10.01-Additional informationFile size: 408576 bytesMD5...: 66eef71251cb79c842ffac5b02bee7dfSHA1..: b45cccffe3f2f474376da86fdc84f3366b5a208bSHA256: 1a155d8c1f50fc5dcd182fbcbb59b25e7fd5bf2e2f5b3c5164e3528329a18fbbSHA512: aba7c55491bc349cd3cc2081846439ad391f20135fa07b7aab1055c57650b358
    11e86fdc218f1447917f53ff681ceff084550c51b6b5c54fbfa5ce207c652d06PEiD..: BobSoft Mini Delphi -> BoB / BobSoftTrID..: File type identification
    Win32 Executable Generic (68.0%)
    Generic Win/DOS Executable (15.9%)
    DOS Executable Generic (15.9%)
    Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)PEInfo: PE Structure information

    ( base data )
    entrypointaddress.: 0x151e3590
    timedatestamp.....: 0x4197ad91 (Sun Nov 14 19:10:09 2004)
    machinetype.......: 0x14c (I386)

    ( 8 sections )
    name viradd virsiz rawdsiz ntrpy md5
    CODE 0x1000 0x267c 0x2800 6.35 d01fc26e650af2a6e2151358ec2f5506
    DATA 0x4000 0xfc 0x200 2.50 a682f07cdc484e8cea3927b02a2dede9
    BSS 0x5000 0x73d 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
    .idata 0x6000 0x2f4 0x400 3.37 5cfba77d87811ffcf547bd920879d59a
    .tls 0x7000 0x4 0x0 0.00 d41d8cd98f00b204e9800998ecf8427e
    .rdata 0x8000 0x18 0x200 0.27 8d1f2148ef3bb0d5452afa48f2be8b74
    .reloc 0x9000 0x31c 0x400 5.52 3dafc0f3483657c8249d60d1b51e608c
    .rsrc 0xa000 0x602fc 0x60400 8.00 cbdb84297ca261fa6af167fd0f7cbe2e

    ( 5 imports )
    > kernel32.dll: GetCurrentThreadId, ExitProcess, RtlUnwind, RaiseException, GetCommandLineA, TlsSetValue, TlsGetValue, LocalAlloc, GetModuleHandleA, GetModuleFileNameA, FreeLibrary, HeapFree, HeapReAlloc, HeapAlloc, GetProcessHeap
    > user32.dll: CharNextA
    > kernel32.dll: Sleep, SetLocalTime, SetLastError, LoadLibraryA, GetProcAddress, GetModuleFileNameA, GetLocalTime, GetLastError, ExitProcess
    > user32.dll: MessageBoxA, FindWindowA
    > winmm.dll: waveOutGetDevCapsA

    ( 0 exports )


    [​IMG] ATTENTION: VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.
    [​IMG]
     
  8. leebonfiglio

    leebonfiglio Thread Starter

    Joined:
    Sep 30, 2008
    Messages:
    12
    info.txt logfile of random's system information tool 1.04 2008-10-02 09:47:37
    ======Uninstall list======
    -->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{55251924-B51C-4E66-8199-5258672518C5}\Setup.exe" -u -uninst -fUninst.isu -c"C:\Program Files\Epocrates\EssentialsPPC\Win32\Win32_Dll\AupdUnInstall.dll"
    32 Bit HP CIO Components Installer-->MsiExec.exe /I{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}
    Ad-Aware-->MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
    Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
    Adobe Flash Player 9 ActiveX-->C:\Windows\system32\Macromed\Flash\UninstFl.exe -q
    Adobe Flash Player ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
    Adobe Flash Player Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
    Adobe Photoshop CS-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}\setup.exe" -l0x9
    Adobe Photoshop Lightroom 2-->MsiExec.exe /I{531BC138-F1F7-496B-879C-F039ECEF438D}
    Adobe Reader 8.1.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81200000003}
    Apple Mobile Device Support-->MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543}
    Apple Software Update-->MsiExec.exe /I{02DFF6B1-1654-411C-8D7B-FD6052EF016F}
    Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
    Broadcom Management Programs-->MsiExec.exe /X{C99C0593-3B48-41D9-B42F-6E035B320449}
    CAM UnZip 4.42-->"C:\Program Files\CAM Development\CAM UnZip\Uninstall\unins000.exe"
    Canon G.726 WMP-Decoder-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\G726Decoder\G726DecUnInstall.ini"
    Canon MovieEdit Task for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\MVWUninst.ini"
    Canon RAW Image Task for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\RAW Image Task\Uninst.ini"
    Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\CameraWindowDVC6\Uninst.ini"
    Canon Utilities CameraWindow-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\CameraWindowLauncher\Uninst.ini"
    Canon Utilities MyCamera-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\MyCamera\Uninst.ini"
    Canon Utilities RemoteCapture Task for ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\CameraWindow\RemoteCaptureTask DC\Uninst.ini"
    Canon Utilities ZoomBrowser EX-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\Uninst.ini"
    Canon ZoomBrowser EX Memory Card Utility-->"C:\Program Files\Common Files\Canon\UIW\1.3.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX MCU\Uninst.ini"
    CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
    Conexant HDA D330 MDC V.92 Modem-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2C06&SUBSYS_14F1000F\HXFSETUP.EXE -U -Idel000fz.inf
    ConTEXT-->"C:\Program Files\ConTEXT\unins000.exe"
    Dell Support Center (Support Software)-->MsiExec.exe /X{E3BFEE55-39E2-4BE0-B966-89FE583822C1}
    Dell System Customization Wizard-->MsiExec.exe /I{13BA7B44-B712-4DEE-A7B8-1DD564F37AE5}
    Dell Touchpad-->C:\Program Files\DellTPad\Uninstap.exe ADDREMOVE
    DellSupport-->MsiExec.exe /X{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}
    Digital Line Detect-->C:\Program Files\InstallShield Installation Information\{E646DCF0-5A68-11D5-B229-002078017FBF}\setup.exe -runfromtemp -l0x0009 -removeonly
    DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
    DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
    DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
    DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
    Epocrates Essentials for Pocket PC-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{55251924-B51C-4E66-8199-5258672518C5}\Setup.exe" -u
    Games, Music, & Photos Launcher-->MsiExec.exe /I{3E25E350-949F-4DB7-8288-2A60E018B4C1}
    Garmin nRoute-->MsiExec.exe /X{C3EBEF79-DE34-44AE-8774-F6A17ABE27B2}
    Garmin Trip and Waypoint Manager v4-->MsiExec.exe /X{67B9AF41-C0B9-4960-84D9-A61D23DE85D8}
    GDR 3068 for SQL Server Database Services 2005 ENU (KB948109)-->C:\Windows\SQL9_KB948109_ENU\Hotfix.exe /Uninstall
    Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
    Google Earth Plugin-->MsiExec.exe /I{79916F0F-838B-11DD-B6D5-005056806466}
    Google Earth-->MsiExec.exe /I{1E04F83B-2AB9-4301-9EF7-E86307F79C72}
    Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
    Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
    Google Update-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
    HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
    HP Customer Participation Program 10.0-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
    HP Document Manager 1.0-->C:\Program Files\HP\Digital Imaging\DocumentManager\hpzscr01.exe -datfile hpqbud18.dat
    HP Imaging Device Functions 10.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
    HP iPAQ Setup Assistant v1.3.11.0-->C:\Program Files\HP\HP iPAQ Setup Assistant\Uninst.exe
    HP Officejet J4500 Series-->C:\Program Files\HP\Digital Imaging\{CD0773D5-C18E-495c-B39B-21A96415EDD5}\setup\hpzscr01.exe -datfile hpwscr19.dat -forcereboot
    HP Photosmart Essential 2.5-->C:\Program Files\HP\Digital Imaging\PhotoSmartEssential\hpzscr01.exe -datfile hpqbud13.dat
    HP Smart Web Printing-->C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpzscr01.exe -datfile hpqbud15.dat
    HP Solution Center 10.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
    HP Update-->MsiExec.exe /X{11B83AD3-7A46-4C2E-A568-9505981D4C6F}
    iTunes-->MsiExec.exe /I{585776BC-4BD6-4BD2-A19A-1D6CB44A403B}
    Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
    Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
    Java(TM) 6 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}
    Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
    Java(TM) SE Runtime Environment 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}
    LBMaps Baja Navigator V1.10-->C:\LBMaps\baja1\unins000.exe
    Logitech QuickCam Driver Package-->"C:\Program Files\Common Files\LogiShrd\LogiDriverStore\lvdrivers\11.50.1145\LgDrvInst.exe" -remove -instdir"C:\Program Files\Common Files\LogiShrd\LogiDriverStore\lvdrivers\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -arpregkey"lvdrivers_11.50" /clone_wait /hide_progress
    Logitech QuickCam-->MsiExec.exe /X{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}
    Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
    MediaDirect-->C:\Program Files\InstallShield Installation Information\{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}\setup.exe -runfromtemp -l0x0009 -cluninstall
    Microsoft Office Excel Viewer 2003-->MsiExec.exe /I{90840409-6000-11D3-8CFE-0150048383C9}
    Microsoft SQL Server 2005 Express Edition (SONY_MEDIAMGR2)-->MsiExec.exe /I{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}
    Microsoft SQL Server 2005-->"c:\Program Files\Microsoft SQL Server\90\Setup Bootstrap\ARPWrapper.exe" /Remove
    Microsoft SQL Server Native Client-->MsiExec.exe /I{F9B3DD02-B0B3-42E9-8650-030DFF0D133D}
    Microsoft SQL Server Setup Support Files (English)-->MsiExec.exe /X{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}
    Microsoft SQL Server VSS Writer-->MsiExec.exe /I{E9F44C98-B8B6-480F-AF7B-E42A0A46F4E3}
    Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
    Microsoft Works-->MsiExec.exe /I{6D52C408-B09A-4520-9B18-475B81D393F1}
    Modem Diagnostic Tool-->MsiExec.exe /I{F63A3748-B93D-4360-9AD4-B064481A5C7B}
    Mozilla Firefox (3.0.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
    MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
    MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
    MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}
    My Sirius Studio-->C:\Program Files\Sirius\MySiriusStudio\Uninstall.exe
    Netflix Movie Viewer-->MsiExec.exe /X{BCE72AED-3332-4863-9567-C5DCB9052CA2}
    NetWaiting-->C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\setup.exe -runfromtemp -l0x0009 -removeonly
    OCR Software by I.R.I.S. 10.0-->C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
    OpenOffice.org 2.3-->MsiExec.exe /I{2F29D6D2-824E-4FEF-8AED-7013F39F642A}
    Opera 9.52-->MsiExec.exe /X{E1A88DE8-BD36-4DEA-8DD8-E35EF475ADC7}
    OutlookAddinSetup-->MsiExec.exe /I{9BDEF074-020E-458D-ADC5-8FF68E0C9B56}
    Product Documentation Launcher-->MsiExec.exe /I{89CEAE14-DD0F-448E-9554-15781EC9DB24}
    QuickSet-->MsiExec.exe /I{7F0C4457-8E64-491B-8D7B-991504365D1E}
    QuickTime-->MsiExec.exe /I{1838C5A2-AB32-4145-85C1-BB9B8DFA24CD}
    Rhapsody Player Engine-->MsiExec.exe /I{2DFF31F9-7893-4922-AF66-C9A1EB4EBB31}
    Rhapsody-->C:\PROGRA~1\Rhapsody\Unwise32.exe /A C:\PROGRA~1\Rhapsody\install.log
    Roxio Creator Audio-->MsiExec.exe /I{83FFCFC7-88C6-41c6-8752-958A45325C82}
    Roxio Creator BDAV Plugin-->MsiExec.exe /I{880AF49C-34F7-4285-A8AD-8F7A3D1C33DC}
    Roxio Creator Copy-->MsiExec.exe /I{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}
    Roxio Creator Data-->MsiExec.exe /I{0D397393-9B50-4c52-84D5-77E344289F87}
    Roxio Creator DE-->MsiExec.exe /I{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}
    Roxio Creator Tools-->MsiExec.exe /I{0394CDC8-FABD-4ed8-B104-03393876DFDF}
    Roxio Express Labeler-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
    Roxio MyDVD DE-->MsiExec.exe /I{D639085F-4B6E-4105-9F37-A0DBB023E2FB}
    Roxio Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
    Shop for HP Supplies-->C:\Program Files\HP\Digital Imaging\HPSSupply\hpzscr01.exe -datfile hpqbud16.dat
    Skype™ 3.5-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
    Sonic Activation Module-->MsiExec.exe /I{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}
    Sony Media Manager 2.3-->MsiExec.exe /X{8FA5B6B7-D8BD-49F7-98D7-701C26B01E97}
    Sony Vegas Pro 8.0-->MsiExec.exe /X{7C9AD221-994C-45B2-B46D-26F5735158CF}
    Spyware Doctor 6.0-->C:\Program Files\Spyware Doctor\unins000.exe /LOG
    SUPERAntiSpyware Free Edition-->MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
    URL Assistant-->regsvr32 /u /s "C:\Program Files\BAE\BAE.dll"
    User's Guides-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5CD29180-A95E-11D3-A4EB-00C04F7BDB2C}\setup.exe"
    Visual Link Spanish Level I v4.0-->MsiExec.exe /I{848077B5-1B3E-40A0-A591-BD11477273DB}
    Visual Link Spanish(tm) - Level II Verb Module-->MsiExec.exe /X{8B89E505-7061-4455-9298-6FE1F2A93C26}
    WIDCOMM Bluetooth Software 6.0.1.3100-->MsiExec.exe /X{A13E07E1-A423-44FB-9DEE-B24C75C1BAF2}
    Windows Live installer-->MsiExec.exe /X{A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320}
    Windows Live Mail-->MsiExec.exe /I{184E7118-0295-43C4-B72C-1D54AA75AAF7}
    Windows Live Sign-in Assistant-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
    Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
    Windows Mobile Device Center Driver Update-->MsiExec.exe /X{E7044E25-3038-4A76-9064-344AC038043E}
    Windows Mobile Device Center-->MsiExec.exe /X{904CCF62-818D-4675-BC76-D37EB399F917}
    WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
    WinZip 11.2-->MsiExec.exe /X{CD95F661-A5C4-44F5-A6AA-ECDD91C240B6}
    Xvid 1.1.3 final uninstall-->"C:\Program Files\Xvid\unins000.exe"
    Yahoo! Install Manager-->C:\Windows\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
    Yahoo! Music Jukebox-->MsiExec.exe /X{7C49EA42-5647-4051-84C2-E6404F25A931}
    Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\unyt.exe
    ======Security center information======
    AS: Windows Defender
    AS: SUPERAntiSpyware
    ======Environment variables======
    "ComSpec"=%SystemRoot%\system32\cmd.exe
    "FP_NO_HOST_CHECK"=NO
    "OS"=Windows_NT
    "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\Common Files\HP\Digital Imaging\\bin;c:\Program Files\Microsoft SQL Server\90\Tools\binn\
    "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
    "PROCESSOR_ARCHITECTURE"=x86
    "TEMP"=%SystemRoot%\TEMP
    "TMP"=%SystemRoot%\TEMP
    "USERNAME"=SYSTEM
    "windir"=%SystemRoot%
    "PROCESSOR_LEVEL"=6
    "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 10, GenuineIntel
    "PROCESSOR_REVISION"=0f0a
    "NUMBER_OF_PROCESSORS"=2
    "RoxioCentral"=C:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\
    "CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
    "QTJAVA"=C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
    -----------------EOF-----------------
     
  9. jmw3

    jmw3 Malware Specialist

    Joined:
    Jul 23, 2007
    Messages:
    1,460
    Hi leebonfiglio

    I need to see the log.txt from RSIT.You can find it at C:\rsit\log.txt
    Copy & paste the contents of that log into your next reply.

    Thanks
     
  10. leebonfiglio

    leebonfiglio Thread Starter

    Joined:
    Sep 30, 2008
    Messages:
    12
    this is the message i get from this forum software:

    The text that you have entered is too long (116156 characters). Please shorten it to 30000 characters long

    what should i do?

    Lee
     
  11. jmw3

    jmw3 Malware Specialist

    Joined:
    Jul 23, 2007
    Messages:
    1,460
    Hi leebonfiglio

    Post what you can in the first post then post the remainder in next post etc.
     
  12. leebonfiglio

    leebonfiglio Thread Starter

    Joined:
    Sep 30, 2008
    Messages:
    12
    Logfile of random's system information tool 1.04 (written by random/random)
    Run by lee bonfiglio at 2008-10-02 09:47:21
    Microsoft® Windows Vista™ Home Premium Service Pack 1
    System drive C: has 62 GB (44%) free of 140 GB
    Total RAM: 2037 MB (50% free)
    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 09:47:31, on 10/2/2008
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18000)
    Boot mode: Normal
    Running processes:
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\DellTPad\Apoint.exe
    C:\Windows\System32\hkcmd.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
    C:\Program Files\Dell\MediaDirect\PCMService.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Dell Support Center\bin\sprtcmd.exe
    C:\Windows\WindowsMobile\wmdc.exe
    C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
    C:\Windows\system32\igfxsrvc.exe
    C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
    C:\Program Files\DellSupport\DSAgnt.exe
    C:\Windows\ehome\ehtray.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Users\lee bonfiglio\Program Files\DNA\btdna.exe
    C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    C:\Users\lee bonfiglio\AppData\Local\Temp\pwrmgr.exe
    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    C:\Program Files\Dell\QuickSet\quickset.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Windows\System32\mobsync.exe
    C:\Program Files\DellTPad\ApMsgFwd.exe
    C:\Program Files\DellTPad\HidFind.exe
    C:\Program Files\DellTPad\Apntex.exe
    C:\Program Files\Rhapsody\rhaphlpr.exe
    C:\Program Files\Internet Explorer\ieuser.exe
    C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Windows\system32\Macromed\Flash\FlashUtil9e.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Users\lee bonfiglio\Desktop\RSIT.exe
    C:\Program Files\Trend Micro\HijackThis\lee bonfiglio.exe
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com/ig?hl=en&amp;gl=us
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O1 - Hosts: ::1 localhost
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: Google Update Helper - {77D7E795-33C5-4323-974D-A2A49AB75517} - C:\Program Files\Google\Update\1.2.131.11\GoopdateBho.dll
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
    O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
    O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
    O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
    O4 - HKLM\..\Run: [ECenter] c:\dell\E-Center\EULALauncher.exe
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
    O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
    O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
    O4 - HKLM\..\Run: [SigmatelSysTrayApp] C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
    O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe
    O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
    O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\lee bonfiglio\Program Files\DNA\btdna.exe"
    O4 - HKCU\..\Run: [IUpd704] C:\Users\LEEBON~1\AppData\Local\Temp\pwrmgr.exe
    O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
    O4 - Startup: palmOne Registration.lnk = C:\Program Files\palmOne\register.exe
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: QuickSet.lnk = ?
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
    O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
    O13 - Gopher Prefix:
    O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/binFrameWork/v10/StagingUI.cab55579.cab
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab56649.cab
    O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (MSN Games – Game Communicator) - http://zone.msn.com/binframework/v10/StProxy.cab55579.cab
    O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5257/mcfscan.cab
    O16 - DPF: {F773E7B2-62A9-4524-9109-87D2F0BEFAA4} (ChessControl Class) - http://zone.msn.com/bingame/zpagames/zpa_kqrp.cab56961.cab
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
    O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
    O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
    O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
    O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Update Service (gupdate1c8c134749512b0) (gupdate1c8c134749512b0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
    O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
    O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
    O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
    O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
    O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
    O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
    O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Windows\system32\STacSV.exe
    O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
    O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
    --
    End of file - 12808 bytes
    ======Scheduled tasks folder======
    C:\Windows\tasks\GoogleUpdateTaskMachine.job
    ======Registry dump======
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
    Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-11-29 436288]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
    Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2007-09-13 1312040]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{77D7E795-33C5-4323-974D-A2A49AB75517}]
    Google Update Helper - C:\Program Files\Google\Update\1.2.131.11\GoopdateBho.dll [2008-08-29 133616]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2007-09-12 2193280]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA6319C0-31B7-401E-A518-A07C3DB8F777}]
    CBrowserHelperObject Object - C:\Program Files\BAE\BAE.dll [2007-03-16 98304]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
    HP Smart BHO Class - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2007-11-06 542016]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    {2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2007-09-12 2193280]
    {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-11-29 436288]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
    "Apoint"=C:\Program Files\DellTPad\Apoint.exe [2007-05-21 159744]
    "IgfxTray"=C:\Windows\system32\igfxtray.exe [2007-05-21 138008]
    "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2007-05-21 154392]
    "Persistence"=C:\Windows\system32\igfxpers.exe [2007-05-21 133912]
    "ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2006-10-03 81920]
    ""= []
    "PCMService"=C:\Program Files\Dell\MediaDirect\PCMService.exe [2007-04-16 184320]
    "dscactivate"=C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe [2007-11-15 16384]
    "ECenter"=c:\dell\E-Center\EULALauncher.exe [2007-03-16 17920]
    "Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-08-06 29744]
    "ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2006-10-03 221184]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
    "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-03-29 413696]
    "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-03-30 267048]
    "DellSupportCenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2008-08-13 206064]
    "Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 648072]
    "hpqSRMon"=C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2007-08-22 80896]
    "SigmatelSysTrayApp"=C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [2007-06-25 405504]
    "Windows Mobile-based device management"=C:\Windows\WindowsMobile\wmdSync.exe [2006-11-02 215552]
    "Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2008-09-10 1253040]
    "avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-06-12 266497]
    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "DellSupport"=C:\Program Files\DellSupport\DSAgnt.exe [2007-03-15 460784]
    "ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
    "DellSupportCenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2008-08-13 206064]
    "BitTorrent DNA"=C:\Users\lee bonfiglio\Program Files\DNA\btdna.exe [2008-09-17 289088]
    "IUpd704"=C:\Users\LEEBON~1\AppData\Local\Temp\pwrmgr.exe [2008-09-30 408576]
    "SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2008-09-03 1576176]
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-12 39792]
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-10-14 49152]
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
    C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [2007-10-25 563984]
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
    C:\Program Files\Logitech\QuickCam\Quickcam.exe [2007-10-25 2178832]
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
    C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2006-11-03 703280]
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Digital Line Detect.lnk]
    C:\PROGRA~1\DIGITA~1\DLG.exe [2006-11-03 50688]
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
    C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2007-10-14 214360]
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Quick Pick.lnk]
    C:\PROGRA~1\WinZip\WZQKPICK.EXE [2008-04-28 415072]
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^lee bonfiglio^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 2.3.lnk]
    C:\PROGRA~1\OPENOF~1.3\program\QUICKS~1.EXE [2007-08-17 393216]
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
    Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    QuickSet.lnk - C:\Windows\Installer\{7F0C4457-8E64-491B-8D7B-991504365D1E}\NewShortcut2_53A01CC614B04512A2E710D39BF83DC4.exe
    C:\Users\lee bonfiglio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
    palmOne Registration.lnk - C:\Program Files\palmOne\register.exe
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL"
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
    C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-07-23 352256]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
    C:\Windows\system32\igfxdev.dll [2007-05-21 204800]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdauxservice]
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdcoreservice]
    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "EnableUIADesktopToggle"=0
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
    "C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
     
  13. leebonfiglio

    leebonfiglio Thread Starter

    Joined:
    Sep 30, 2008
    Messages:
    12
    ======List of files/folders created in the last 1 months======
    2008-10-02 09:47:21 ----D---- C:\rsit
    2008-10-02 09:34:19 ----D---- C:\ProgramData\Avira
    2008-10-02 09:34:19 ----D---- C:\Program Files\Avira
    2008-10-02 07:49:56 ----SHD---- C:\Config.Msi
    2008-10-01 13:44:04 ----D---- C:\Program Files\Trend Micro
    2008-10-01 07:12:49 ----D---- C:\Windows\SQL9_KB948109_ENU
    2008-09-30 20:11:14 ----D---- C:\Avenger
    2008-09-30 20:11:13 ----A---- C:\avenger.txt
    2008-09-30 19:55:41 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\Malwarebytes
    2008-09-30 19:55:33 ----D---- C:\ProgramData\Malwarebytes
    2008-09-30 19:55:33 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2008-09-30 18:07:59 ----D---- C:\ProgramData\SUPERAntiSpyware.com
    2008-09-30 18:07:02 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\SUPERAntiSpyware.com
    2008-09-30 18:07:02 ----D---- C:\Program Files\SUPERAntiSpyware
    2008-09-30 17:19:09 ----A---- C:\Windows\ntbtlog.txt
    2008-09-30 13:13:16 ----D---- C:\ProgramData\Yahoo! Companion
    2008-09-30 13:13:05 ----D---- C:\Program Files\Enigma Software Group
    2008-09-30 09:38:40 ----D---- C:\Program Files\CCleaner
    2008-09-29 13:44:58 ----D---- C:\Program Files\Vstplugins
    2008-09-29 08:57:43 ----D---- C:\Program Files\Microsoft.NET
    2008-09-29 08:56:39 ----D---- C:\Windows\PCHEALTH
    2008-09-29 08:56:28 ----D---- C:\Program Files\Microsoft SQL Server
    2008-09-29 08:53:28 ----D---- C:\ProgramData\Sony
    2008-09-29 08:53:18 ----D---- C:\Program Files\Sony
    2008-09-29 07:43:27 ----D---- C:\Program Files\Lavasoft
    2008-09-29 07:43:25 ----D---- C:\ProgramData\Lavasoft
    2008-09-29 07:41:49 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
    2008-09-29 07:19:42 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\PC Tools
    2008-09-29 07:19:42 ----D---- C:\Program Files\Spyware Doctor
    2008-09-28 18:42:43 ----D---- C:\Users\lee bonfiglio\AppData\Roaming\WinRAR
    2008-09-28 18:42:31 ----D---- C:\Program Files\WinRAR
    2008-09-28 17:42:57 ----D---- C:\Program Files\ConTEXT
    2008-09-28 17:01:04 ----D---- C:\Program Files\CAM Development
    2008-09-22 03:03:10 ----A---- C:\Windows\system32\msshooks.dll
    2008-09-22 03:03:09 ----A---- C:\Windows\system32\msscb.dll
    2008-09-22 03:03:07 ----A---- C:\Windows\system32\thawbrkr.dll
    2008-09-22 03:03:07 ----A---- C:\Windows\system32\srchadmin.dll
    2008-09-22 03:03:07 ----A---- C:\Windows\system32\SearchFilterHost.exe
    2008-09-22 03:03:07 ----A---- C:\Windows\system32\propsys.dll
    2008-09-22 03:03:07 ----A---- C:\Windows\system32\propdefs.dll
    2008-09-22 03:03:07 ----A---- C:\Windows\system32\msstrc.dll
    2008-09-22 03:03:07 ----A---- C:\Windows\system32\mssprxy.dll
    2008-09-22 03:03:07 ----A---- C:\Windows\system32\mssitlb.dll
    2008-09-22 03:03:07 ----A---- C:\Windows\system32\msshsq.dll
    2008-09-22 03:03:07 ----A---- C:\Windows\system32\korwbrkr.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\xmlfilter.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\wsepno.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\tquery.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\SearchProtocolHost.exe
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\SearchIndexer.exe
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\rtffilt.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\offfilt.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\nlhtml.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\mssvp.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\mssrch.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\mssphtb.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\mssph.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\msscntrs.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\mimefilt.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\chtbrkr.dll
    2008-09-22 03:03:06 ----A---- C:\Windows\system32\chsbrkr.dll
    2008-09-21 03:31:25 ----A---- C:\Windows\system32\rpcrt4.dll
    2008-09-21 03:31:25 ----A---- C:\Windows\system32\ntkrnlpa.exe
    2008-09-21 03:31:24 ----A---- C:\Windows\system32\pacerprf.dll
    2008-09-21 03:31:24 ----A---- C:\Windows\system32\ntoskrnl.exe
    2008-09-21 03:31:15 ----A---- C:\Windows\system32\wshext.dll
    2008-09-21 03:31:15 ----A---- C:\Windows\system32\wscript.exe
    2008-09-21 03:31:15 ----A---- C:\Windows\system32\vbscript.dll
    2008-09-21 03:31:15 ----A---- C:\Windows\system32\scrrun.dll
    2008-09-21 03:31:15 ----A---- C:\Windows\system32\scrobj.dll
    2008-09-21 03:31:15 ----A---- C:\Windows\system32\jscript.dll
    2008-09-21 03:31:15 ----A---- C:\Windows\system32\cscript.exe
    2008-09-21 03:31:13 ----A---- C:\Windows\system32\emdmgmt.dll
    2008-09-21 03:31:13 ----A---- C:\Windows\system32\dataclen.dll
    2008-09-21 03:31:13 ----A---- C:\Windows\system32\cdd.dll
    2008-09-20 22:29:45 ----D---- C:\PerfLogs
    2008-09-19 21:52:37 ----A---- C:\Windows\system32\SLsvc.exe
    2008-09-19 21:52:37 ----A---- C:\Windows\system32\onex.dll
    2008-09-19 21:52:25 ----A---- C:\Windows\system32\PSHED.DLL
    2008-09-19 21:52:24 ----A---- C:\Windows\system32\imagesp1.dll
    2008-09-19 21:52:22 ----A---- C:\Windows\system32\dfsr.exe
    2008-09-19 21:52:21 ----A---- C:\Windows\system32\pidgenx.dll
    2008-09-19 21:52:20 ----A---- C:\Windows\system32\sstpsvc.dll
    2008-09-19 21:52:20 ----A---- C:\Windows\system32\mstscax.dll
    2008-09-19 21:52:18 ----A---- C:\Windows\system32\WsmSvc.dll
    2008-09-19 21:52:18 ----A---- C:\Windows\system32\winrscmd.dll
    2008-09-19 21:52:17 ----A---- C:\Windows\system32\sysmain.dll
    2008-09-19 21:52:17 ----A---- C:\Windows\system32\RMActivate.exe
    2008-09-19 21:52:16 ----A---- C:\Windows\system32\vssapi.dll
    2008-09-19 21:52:15 ----A---- C:\Windows\system32\VSSVC.exe
    2008-09-19 21:52:15 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
    2008-09-19 21:52:14 ----A---- C:\Windows\system32\secproc.dll
    2008-09-19 21:52:14 ----A---- C:\Windows\system32\RMActivate_isv.exe
    2008-09-19 21:52:14 ----A---- C:\Windows\system32\iesetup.dll
    2008-09-19 21:52:11 ----A---- C:\Windows\system32\secproc_isv.dll
    2008-09-19 21:52:09 ----A---- C:\Windows\system32\icardres.dll
    2008-09-19 21:52:09 ----A---- C:\Windows\system32\icardagt.exe
    2008-09-19 21:52:09 ----A---- C:\Windows\system32\drmv2clt.dll
    2008-09-19 21:52:09 ----A---- C:\Windows\system32\blackbox.dll
    2008-09-19 21:52:08 ----A---- C:\Windows\system32\xpssvcs.dll
    2008-09-19 21:52:06 ----A---- C:\Windows\system32\RMActivate_ssp.exe
    2008-09-19 21:52:06 ----A---- C:\Windows\system32\RacEngn.dll
    2008-09-19 21:52:06 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
    2008-09-19 21:52:05 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
    2008-09-19 21:52:04 ----A---- C:\Windows\system32\spwizimg.dll
    2008-09-19 21:52:04 ----A---- C:\Windows\system32\rdpencom.dll
    2008-09-19 21:52:04 ----A---- C:\Windows\system32\lpremove.exe
    2008-09-19 21:52:04 ----A---- C:\Windows\bfsvc.exe
    2008-09-19 21:52:02 ----A---- C:\Windows\system32\msxml3.dll
    2008-09-19 21:51:58 ----A---- C:\Windows\system32\msxml6.dll
    2008-09-19 21:51:58 ----A---- C:\Windows\system32\msjet40.dll
    2008-09-19 21:51:57 ----A---- C:\Windows\system32\qmgr.dll
    2008-09-19 21:51:57 ----A---- C:\Windows\system32\ntdll.dll
    2008-09-19 21:51:57 ----A---- C:\Windows\system32\lsasrv.dll
    2008-09-19 21:51:56 ----A---- C:\Windows\system32\localspl.dll
    2008-09-19 21:51:56 ----A---- C:\Windows\system32\IKEEXT.DLL
    2008-09-19 21:51:55 ----A---- C:\Windows\system32\wevtsvc.dll
    2008-09-19 21:51:55 ----A---- C:\Windows\system32\wcncsvc.dll
    2008-09-19 21:51:55 ----A---- C:\Windows\system32\TsWpfWrp.exe
    2008-09-19 21:51:55 ----A---- C:\Windows\system32\recdisc.exe
    2008-09-19 21:51:55 ----A---- C:\Windows\system32\mscoree.dll
    2008-09-19 21:51:55 ----A---- C:\Windows\system32\kernel32.dll
    2008-09-19 21:51:54 ----A---- C:\Windows\system32\vds.exe
    2008-09-19 21:51:54 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
    2008-09-19 21:51:53 ----A---- C:\Windows\system32\wmp.dll
    2008-09-19 21:51:52 ----A---- C:\Windows\system32\mstsc.exe
    2008-09-19 21:51:51 ----A---- C:\Windows\system32\wcnwiz.dll
    2008-09-19 21:51:51 ----A---- C:\Windows\system32\SMBHelperClass.dll
    2008-09-19 21:51:51 ----A---- C:\Windows\system32\msvbvm60.dll
    2008-09-19 21:51:51 ----A---- C:\Windows\system32\mf.dll
    2008-09-19 21:51:50 ----A---- C:\Windows\system32\termsrv.dll
    2008-09-19 21:51:50 ----A---- C:\Windows\system32\msdtctm.dll
    2008-09-19 21:51:50 ----A---- C:\Windows\system32\advapi32.dll
    2008-09-19 21:51:49 ----A---- C:\Windows\system32\kerberos.dll
    2008-09-19 21:51:49 ----A---- C:\Windows\system32\IMJP10K.DLL
    2008-09-19 21:51:48 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL
    2008-09-19 21:51:48 ----A---- C:\Windows\system32\mmcndmgr.dll
    2008-09-19 21:51:48 ----A---- C:\Windows\system32\CertEnroll.dll
    2008-09-19 21:51:47 ----A---- C:\Windows\system32\xolehlp.dll
    2008-09-19 21:51:47 ----A---- C:\Windows\system32\Query.dll
    2008-09-19 21:51:47 ----A---- C:\Windows\system32\msdtcprx.dll
    2008-09-19 21:51:47 ----A---- C:\Windows\system32\MPSSVC.dll
    2008-09-19 21:51:46 ----A---- C:\Windows\system32\ole32.dll
    2008-09-19 21:51:45 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
    2008-09-19 21:51:45 ----A---- C:\Windows\system32\SSShim.dll
    2008-09-19 21:51:45 ----A---- C:\Windows\system32\netlogon.dll
    2008-09-19 21:51:45 ----A---- C:\Windows\system32\msvcrt.dll
    2008-09-19 21:51:44 ----A---- C:\Windows\system32\schedsvc.dll
    2008-09-19 21:51:44 ----A---- C:\Windows\system32\nlmgp.dll
    2008-09-19 21:51:44 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
    2008-09-19 21:51:44 ----A---- C:\Windows\system32\DfsShlEx.dll
    2008-09-19 21:51:43 ----A---- C:\Windows\system32\shlwapi.dll
    2008-09-19 21:51:43 ----A---- C:\Windows\system32\sdclt.exe
    2008-09-19 21:51:43 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
    2008-09-19 21:51:43 ----A---- C:\Windows\system32\milcore.dll
    2008-09-19 21:51:43 ----A---- C:\Windows\system32\IasMigPlugin.dll
    2008-09-19 21:51:42 ----A---- C:\Windows\system32\wer.dll
    2008-09-19 21:51:42 ----A---- C:\Windows\system32\vdsdyn.dll
    2008-09-19 21:51:42 ----A---- C:\Windows\system32\user32.dll
    2008-09-19 21:51:42 ----A---- C:\Windows\system32\d3d9.dll
    2008-09-19 21:51:42 ----A---- C:\Windows\system32\clusapi.dll
    2008-09-19 21:51:41 ----A---- C:\Windows\system32\WSDApi.dll
    2008-09-19 21:51:41 ----A---- C:\Windows\system32\winrsmgr.dll
    2008-09-19 21:51:41 ----A---- C:\Windows\system32\QAGENTRT.DLL
    2008-09-19 21:51:41 ----A---- C:\Windows\system32\diagperf.dll
    2008-09-19 21:51:40 ----A---- C:\Windows\system32\mtxclu.dll
    2008-09-19 21:51:40 ----A---- C:\Windows\system32\mmc.exe
    2008-09-19 21:51:39 ----A---- C:\Windows\system32\vdsbas.dll
    2008-09-19 21:51:39 ----A---- C:\Windows\system32\swprv.dll
    2008-09-19 21:51:39 ----A---- C:\Windows\system32\SLC.dll
    2008-09-19 21:51:39 ----A---- C:\Windows\system32\msi.dll
    2008-09-19 21:51:39 ----A---- C:\Windows\system32\comctl32.dll
    2008-09-19 21:51:38 ----A---- C:\Windows\system32\MSVidCtl.dll
    2008-09-19 21:51:37 ----A---- C:\Windows\system32\XPSSHHDR.dll
    2008-09-19 21:51:37 ----A---- C:\Windows\system32\sbe.dll
    2008-09-19 21:51:37 ----A---- C:\Windows\system32\samsrv.dll
    2008-09-19 21:51:37 ----A---- C:\Windows\system32\msdtckrm.dll
    2008-09-19 21:51:37 ----A---- C:\Windows\system32\mfc42u.dll
    2008-09-19 21:51:37 ----A---- C:\Windows\system32\gpsvc.dll
    2008-09-19 21:51:37 ----A---- C:\Windows\system32\FWPUCLNT.DLL
    2008-09-19 21:51:36 ----A---- C:\Windows\system32\wecutil.exe
    2008-09-19 21:51:36 ----A---- C:\Windows\system32\usp10.dll
    2008-09-19 21:51:36 ----A---- C:\Windows\system32\sdengin2.dll
    2008-09-19 21:51:36 ----A---- C:\Windows\system32\esent.dll
    2008-09-19 21:51:35 ----A---- C:\Windows\system32\mfc42.dll
    2008-09-19 21:51:35 ----A---- C:\Windows\system32\gacinstall.dll
    2008-09-19 21:51:35 ----A---- C:\Windows\system32\cmipnpinstall.dll
    2008-09-19 21:51:35 ----A---- C:\Windows\system32\cmicryptinstall.dll
    2008-09-19 21:51:34 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
    2008-09-19 21:51:34 ----A---- C:\Windows\system32\crypt32.dll
    2008-09-19 21:51:34 ----A---- C:\Windows\system32\comsvcs.dll
    2008-09-19 21:51:34 ----A---- C:\Windows\system32\certutil.exe
    2008-09-19 21:51:33 ----A---- C:\Windows\system32\mswsock.dll
    2008-09-19 21:51:33 ----A---- C:\Windows\explorer.exe
    2008-09-19 21:51:32 ----A---- C:\Windows\system32\wmdrmsdk.dll
    2008-09-19 21:51:32 ----A---- C:\Windows\system32\sqlceqp30.dll
    2008-09-19 21:51:32 ----A---- C:\Windows\system32\setupapi.dll
    2008-09-19 21:51:32 ----A---- C:\Windows\system32\oleaut32.dll
    2008-09-19 21:51:32 ----A---- C:\Windows\system32\FirewallAPI.dll
    2008-09-19 21:51:31 ----A---- C:\Windows\system32\wecsvc.dll
    2008-09-19 21:51:31 ----A---- C:\Windows\system32\sdohlp.dll
    2008-09-19 21:51:31 ----A---- C:\Windows\system32\msv1_0.dll
    2008-09-19 21:51:31 ----A---- C:\Windows\system32\lsm.exe
    2008-09-19 21:51:31 ----A---- C:\Windows\system32\bcrypt.dll
    2008-09-19 21:51:31 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
    2008-09-19 21:51:30 ----A---- C:\Windows\system32\thumbcache.dll
    2008-09-19 21:51:30 ----A---- C:\Windows\system32\schannel.dll
    2008-09-19 21:51:30 ----A---- C:\Windows\system32\p2psvc.dll
    2008-09-19 21:51:30 ----A---- C:\Windows\system32\netapi32.dll
    2008-09-19 21:51:30 ----A---- C:\Windows\system32\iphlpsvc.dll
    2008-09-19 21:51:30 ----A---- C:\Windows\system32\eapp3hst.dll
    2008-09-19 21:51:29 ----A---- C:\Windows\system32\wmpmde.dll
    2008-09-19 21:51:29 ----A---- C:\Windows\system32\riched20.dll
    2008-09-19 21:51:29 ----A---- C:\Windows\system32\mcmde.dll
    2008-09-19 21:51:29 ----A---- C:\Windows\system32\autofmt.exe
    2008-09-19 21:51:29 ----A---- C:\Windows\system32\autoconv.exe
    2008-09-19 21:51:29 ----A---- C:\Windows\system32\autochk.exe
    2008-09-19 21:51:28 ----A---- C:\Windows\system32\WinSAT.exe
    2008-09-19 21:51:28 ----A---- C:\Windows\system32\vdsutil.dll
    2008-09-19 21:51:28 ----A---- C:\Windows\system32\imapi2fs.dll
    2008-09-19 21:51:28 ----A---- C:\Windows\system32\d3d10_1.dll
    2008-09-19 21:51:28 ----A---- C:\Windows\system32\authfwcfg.dll
    2008-09-19 21:51:27 ----A---- C:\Windows\system32\authui.dll
    2008-09-19 21:51:26 ----A---- C:\Windows\system32\WSDMon.dll
    2008-09-19 21:51:26 ----A---- C:\Windows\system32\wevtapi.dll
    2008-09-19 21:51:26 ----A---- C:\Windows\system32\mscories.dll
    2008-09-19 21:51:26 ----A---- C:\Windows\system32\dmvdsitf.dll
    2008-09-19 21:51:26 ----A---- C:\Windows\system32\d3d10_1core.dll
    2008-09-19 21:51:26 ----A---- C:\Windows\system32\comuid.dll
    2008-09-19 21:51:26 ----A---- C:\Windows\system32\comdlg32.dll
    2008-09-19 21:51:26 ----A---- C:\Windows\system32\browseui.dll
    2008-09-19 21:51:25 ----A---- C:\Windows\system32\wevtfwd.dll
    2008-09-19 21:51:25 ----A---- C:\Windows\system32\uexfat.dll
    2008-09-19 21:51:25 ----A---- C:\Windows\system32\rasmans.dll
    2008-09-19 21:51:25 ----A---- C:\Windows\system32\eapphost.dll
    2008-09-19 21:51:25 ----A---- C:\Windows\system32\eappcfg.dll
    2008-09-19 21:51:24 ----A---- C:\Windows\system32\whealogr.dll
    2008-09-19 21:51:24 ----A---- C:\Windows\system32\untfs.dll
    2008-09-19 21:51:24 ----A---- C:\Windows\system32\sqlcese30.dll
    2008-09-19 21:51:24 ----A---- C:\Windows\system32\pcaui.dll
    2008-09-19 21:51:24 ----A---- C:\Windows\system32\iassam.dll
    2008-09-19 21:51:24 ----A---- C:\Windows\system32\DfrgNtfs.exe
    2008-09-19 21:51:23 ----A---- C:\Windows\system32\wlansvc.dll
    2008-09-19 21:51:22 ----A---- C:\Windows\system32\dot3svc.dll
    2008-09-19 21:51:20 ----A---- C:\Windows\system32\rdpwsx.dll
    2008-09-19 21:51:19 ----A---- C:\Windows\system32\zipfldr.dll
    2008-09-19 21:51:19 ----A---- C:\Windows\system32\WsmAuto.dll
    2008-09-19 21:51:19 ----A---- C:\Windows\system32\winhttp.dll
    2008-09-19 21:51:19 ----A---- C:\Windows\system32\nlasvc.dll
    2008-09-19 21:51:19 ----A---- C:\Windows\system32\mssha.dll
    2008-09-19 21:51:19 ----A---- C:\Windows\system32\msdrm.dll
    2008-09-19 21:51:19 ----A---- C:\Windows\system32\evr.dll
    2008-09-19 21:51:19 ----A---- C:\Windows\system32\dfrgui.exe
    2008-09-19 21:51:18 ----A---- C:\Windows\system32\rpcss.dll
    2008-09-19 21:51:18 ----A---- C:\Windows\system32\rasppp.dll
    2008-09-19 21:51:18 ----A---- C:\Windows\system32\ncrypt.dll
    2008-09-19 21:51:18 ----A---- C:\Windows\system32\BFE.DLL
    2008-09-19 21:51:18 ----A---- C:\Windows\system32\audiosrv.dll
    2008-09-19 21:51:17 ----A---- C:\Windows\system32\WsmWmiPl.dll
    2008-09-19 21:51:17 ----A---- C:\Windows\system32\WMVCORE.DLL
    2008-09-19 21:51:17 ----A---- C:\Windows\system32\wmdrmdev.dll
    2008-09-19 21:51:17 ----A---- C:\Windows\system32\printui.dll
    2008-09-19 21:51:17 ----A---- C:\Windows\system32\msrepl40.dll
    2008-09-19 21:51:17 ----A---- C:\Windows\system32\ddraw.dll
    2008-09-19 21:51:16 ----A---- C:\Windows\system32\win32spl.dll
    2008-09-19 21:51:16 ----A---- C:\Windows\system32\WebClnt.dll
    2008-09-19 21:51:16 ----A---- C:\Windows\system32\themecpl.dll
    2008-09-19 21:51:16 ----A---- C:\Windows\system32\rastls.dll
    2008-09-19 21:51:16 ----A---- C:\Windows\system32\objsel.dll
    2008-09-19 21:51:16 ----A---- C:\Windows\system32\dhcpcsvc6.dll
    2008-09-19 21:51:15 ----A---- C:\Windows\system32\w32time.dll
    2008-09-19 21:51:15 ----A---- C:\Windows\system32\sqlsrv32.dll
    2008-09-19 21:51:15 ----A---- C:\Windows\system32\QAGENT.DLL
    2008-09-19 21:51:15 ----A---- C:\Windows\system32\iasnap.dll
    2008-09-19 21:51:15 ----A---- C:\Windows\system32\dbghelp.dll
    2008-09-19 21:51:14 ----A---- C:\Windows\system32\wmdrmnet.dll
    2008-09-19 21:51:14 ----A---- C:\Windows\system32\WerFaultSecure.exe
    2008-09-19 21:51:14 ----A---- C:\Windows\system32\PresentationHost.exe
    2008-09-19 21:51:14 ----A---- C:\Windows\system32\ncryptui.dll
    2008-09-19 21:51:14 ----A---- C:\Windows\system32\iprtrmgr.dll
    2008-09-19 21:51:14 ----A---- C:\Windows\system32\icm32.dll
    2008-09-19 21:51:14 ----A---- C:\Windows\system32\azroles.dll
    2008-09-19 21:51:13 ----A---- C:\Windows\system32\spoolss.dll
    2008-09-19 21:51:13 ----A---- C:\Windows\system32\msctf.dll
    2008-09-19 21:51:13 ----A---- C:\Windows\system32\infocardapi.dll
    2008-09-19 21:51:12 ----A---- C:\Windows\system32\wlangpui.dll
    2008-09-19 21:51:12 ----A---- C:\Windows\system32\winsrv.dll
    2008-09-19 21:51:12 ----A---- C:\Windows\system32\taskschd.dll
    2008-09-19 21:51:12 ----A---- C:\Windows\system32\mstlsapi.dll
    2008-09-19 21:51:12 ----A---- C:\Windows\system32\bcdedit.exe
    2008-09-19 21:51:12 ----A---- C:\Windows\system32\basecsp.dll
    2008-09-19 21:51:11 ----A---- C:\Windows\system32\winsta.dll
    2008-09-19 21:51:11 ----A---- C:\Windows\system32\scksp.dll
    2008-09-19 21:51:11 ----A---- C:\Windows\system32\netprofm.dll
    2008-09-19 21:51:11 ----A---- C:\Windows\system32\hcrstco.dll
    2008-09-19 21:51:11 ----A---- C:\Windows\system32\dbgeng.dll
    2008-09-19 21:51:11 ----A---- C:\Windows\system32\AudioEng.dll
    2008-09-19 21:51:10 ----A---- C:\Windows\system32\taskcomp.dll
    2008-09-19 21:51:10 ----A---- C:\Windows\system32\rsaenh.dll
    2008-09-19 21:51:10 ----A---- C:\Windows\system32\netcfgx.dll
    2008-09-19 21:51:09 ----A---- C:\Windows\system32\winlogon.exe
    2008-09-19 21:51:09 ----A---- C:\Windows\system32\wercon.exe
    2008-09-19 21:51:09 ----A---- C:\Windows\system32\sqmapi.dll
    2008-09-19 21:51:09 ----A---- C:\Windows\system32\lpksetup.exe
    2008-09-19 21:51:09 ----A---- C:\Windows\system32\dfshim.dll
    2008-09-19 21:51:09 ----A---- C:\Windows\system32\cdosys.dll
    2008-09-19 21:51:08 ----A---- C:\Windows\system32\wlansec.dll
    2008-09-19 21:51:08 ----A---- C:\Windows\system32\msdtcuiu.dll
    2008-09-19 21:51:08 ----A---- C:\Windows\system32\mprddm.dll
    2008-09-19 21:51:08 ----A---- C:\Windows\system32\certcli.dll
    2008-09-19 21:51:08 ----A---- C:\Windows\system32\apds.dll
     
  14. leebonfiglio

    leebonfiglio Thread Starter

    Joined:
    Sep 30, 2008
    Messages:
    12
    2008-09-19 21:51:07 ----A---- C:\Windows\system32\tsgqec.dll
    2008-09-19 21:51:07 ----A---- C:\Windows\system32\shdocvw.dll
    2008-09-19 21:51:07 ----A---- C:\Windows\system32\iasrad.dll
    2008-09-19 21:51:07 ----A---- C:\Windows\system32\eapsvc.dll
    2008-09-19 21:51:07 ----A---- C:\Windows\system32\bcdsrv.dll
    2008-09-19 21:51:07 ----A---- C:\Windows\system32\AUDIOKSE.dll
    2008-09-19 21:51:07 ----A---- C:\Windows\system32\aaclient.dll
    2008-09-19 21:51:06 ----A---- C:\Windows\system32\Wldap32.dll
    2008-09-19 21:51:06 ----A---- C:\Windows\system32\uDWM.dll
    2008-09-19 21:51:06 ----A---- C:\Windows\system32\certmgr.dll
    2008-09-19 21:51:05 ----A---- C:\Windows\system32\WMVDECOD.DLL
    2008-09-19 21:51:05 ----A---- C:\Windows\system32\umpnpmgr.dll
    2008-09-19 21:51:05 ----A---- C:\Windows\system32\msidcrl30.dll
    2008-09-19 21:51:05 ----A---- C:\Windows\system32\dnsapi.dll
    2008-09-19 21:51:04 ----A---- C:\Windows\system32\pla.dll
    2008-09-19 21:51:04 ----A---- C:\Windows\system32\dxgi.dll
    2008-09-19 21:51:03 ----A---- C:\Windows\system32\wmicmiplugin.dll
    2008-09-19 21:51:03 ----A---- C:\Windows\system32\netshell.dll
    2008-09-19 21:51:03 ----A---- C:\Windows\system32\dot3gpui.dll
    2008-09-19 21:51:02 ----A---- C:\Windows\system32\shsvcs.dll
    2008-09-19 21:51:02 ----A---- C:\Windows\system32\ntprint.dll
    2008-09-19 21:51:02 ----A---- C:\Windows\system32\MMDevAPI.dll
    2008-09-19 21:51:02 ----A---- C:\Windows\system32\cryptnet.dll
    2008-09-19 21:51:02 ----A---- C:\Windows\system32\comsnap.dll
    2008-09-19 21:51:01 ----A---- C:\Windows\system32\wscsvc.dll
    2008-09-19 21:51:01 ----A---- C:\Windows\system32\winmm.dll
    2008-09-19 21:51:01 ----A---- C:\Windows\system32\synceng.dll
    2008-09-19 21:51:01 ----A---- C:\Windows\system32\services.exe
    2008-09-19 21:51:01 ----A---- C:\Windows\system32\pnidui.dll
    2008-09-19 21:51:01 ----A---- C:\Windows\system32\cmifw.dll
    2008-09-19 21:51:00 ----A---- C:\Windows\system32\wscisvif.dll
    2008-09-19 21:51:00 ----A---- C:\Windows\system32\msconfig.exe
    2008-09-19 21:50:59 ----A---- C:\Windows\system32\WMVSDECD.DLL
    2008-09-19 21:50:59 ----A---- C:\Windows\system32\taskeng.exe
    2008-09-19 21:50:59 ----A---- C:\Windows\system32\msjtes40.dll
    2008-09-19 21:50:59 ----A---- C:\Windows\system32\iassdo.dll
    2008-09-19 21:50:59 ----A---- C:\Windows\system32\cipher.exe
    2008-09-19 21:50:58 ----A---- C:\Windows\system32\wersvc.dll
    2008-09-19 21:50:58 ----A---- C:\Windows\system32\uxtheme.dll
    2008-09-19 21:50:58 ----A---- C:\Windows\system32\tdh.dll
    2008-09-19 21:50:58 ----A---- C:\Windows\system32\SessEnv.dll
    2008-09-19 21:50:58 ----A---- C:\Windows\system32\rasapi32.dll
    2008-09-19 21:50:58 ----A---- C:\Windows\system32\imapi2.dll
    2008-09-19 21:50:58 ----A---- C:\Windows\system32\dot3api.dll
    2008-09-19 21:50:58 ----A---- C:\Windows\system32\dmdskmgr.dll
    2008-09-19 21:50:57 ----A---- C:\Windows\system32\wkssvc.dll
    2008-09-19 21:50:57 ----A---- C:\Windows\system32\wevtutil.exe
    2008-09-19 21:50:57 ----A---- C:\Windows\system32\srvsvc.dll
    2008-09-19 21:50:57 ----A---- C:\Windows\system32\qdvd.dll
    2008-09-19 21:50:57 ----A---- C:\Windows\system32\msscp.dll
    2008-09-19 21:50:57 ----A---- C:\Windows\system32\cmd.exe
    2008-09-19 21:50:57 ----A---- C:\Windows\system32\cbsra.exe
    2008-09-19 21:50:57 ----A---- C:\Windows\system32\AuthFWSnapin.dll
    2008-09-19 21:50:56 ----A---- C:\Windows\system32\WUDFx.dll
    2008-09-19 21:50:56 ----A---- C:\Windows\system32\wlanmsm.dll
    2008-09-19 21:50:56 ----A---- C:\Windows\system32\wlancfg.dll
    2008-09-19 21:50:56 ----A---- C:\Windows\system32\mshtmled.dll
    2008-09-19 21:50:56 ----A---- C:\Windows\system32\msdtcVSp1res.dll
    2008-09-19 21:50:56 ----A---- C:\Windows\system32\loadperf.dll
    2008-09-19 21:50:56 ----A---- C:\Windows\system32\diskpart.exe
    2008-09-19 21:50:56 ----A---- C:\Windows\system32\comres.dll
    2008-09-19 21:50:55 ----A---- C:\Windows\system32\wlanapi.dll
    2008-09-19 21:50:55 ----A---- C:\Windows\system32\rpchttp.dll
    2008-09-19 21:50:55 ----A---- C:\Windows\system32\rdpdd.dll
    2008-09-19 21:50:55 ----A---- C:\Windows\system32\localsec.dll
    2008-09-19 21:50:55 ----A---- C:\Windows\system32\hnetcfg.dll
    2008-09-19 21:50:55 ----A---- C:\Windows\system32\fontext.dll
    2008-09-19 21:50:54 ----A---- C:\Windows\system32\wsqmcons.exe
    2008-09-19 21:50:54 ----A---- C:\Windows\system32\WMADMOD.DLL
    2008-09-19 21:50:54 ----A---- C:\Windows\system32\wlanpref.dll
    2008-09-19 21:50:54 ----A---- C:\Windows\system32\WinSATAPI.dll
    2008-09-19 21:50:54 ----A---- C:\Windows\system32\profprov.dll
    2008-09-19 21:50:54 ----A---- C:\Windows\system32\NAPMONTR.DLL
    2008-09-19 21:50:54 ----A---- C:\Windows\system32\dsound.dll
    2008-09-19 21:50:54 ----A---- C:\Windows\system32\avifil32.dll
    2008-09-19 21:50:53 ----A---- C:\Windows\system32\wsecedit.dll
    2008-09-19 21:50:53 ----A---- C:\Windows\system32\WindowsCodecs.dll
    2008-09-19 21:50:53 ----A---- C:\Windows\system32\tracerpt.exe
    2008-09-19 21:50:53 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
    2008-09-19 21:50:53 ----A---- C:\Windows\system32\SLCommDlg.dll
    2008-09-19 21:50:53 ----A---- C:\Windows\system32\RDPENCDD.dll
    2008-09-19 21:50:53 ----A---- C:\Windows\system32\PresentationHostProxy.dll
    2008-09-19 21:50:53 ----A---- C:\Windows\system32\MuiUnattend.exe
    2008-09-19 21:50:53 ----A---- C:\Windows\system32\filemgmt.dll
    2008-09-19 21:50:53 ----A---- C:\Windows\system32\dnsrslvr.dll
    2008-09-19 21:50:53 ----A---- C:\Windows\system32\dhcpcsvc.dll
    2008-09-19 21:50:52 ----A---- C:\Windows\system32\WMSPDMOD.DLL
    2008-09-19 21:50:52 ----A---- C:\Windows\system32\wininit.exe
    2008-09-19 21:50:52 ----A---- C:\Windows\system32\spp.dll
    2008-09-19 21:50:52 ----A---- C:\Windows\system32\rasdlg.dll
    2008-09-19 21:50:52 ----A---- C:\Windows\system32\QSHVHOST.DLL
    2008-09-19 21:50:52 ----A---- C:\Windows\system32\P2PGraph.dll
    2008-09-19 21:50:52 ----A---- C:\Windows\system32\iassvcs.dll
    2008-09-19 21:50:52 ----A---- C:\Windows\system32\gpresult.exe
    2008-09-19 21:50:52 ----A---- C:\Windows\system32\dwmredir.dll
    2008-09-19 21:50:52 ----A---- C:\Windows\system32\dwm.exe
    2008-09-19 21:50:52 ----A---- C:\Windows\system32\azroleui.dll
    2008-09-19 21:50:52 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
    2008-09-19 21:50:52 ----A---- C:\Windows\system32\apphelp.dll
    2008-09-19 21:50:51 ----A---- C:\Windows\system32\spwizeng.dll
    2008-09-19 21:50:51 ----A---- C:\Windows\system32\SLUI.exe
    2008-09-19 21:50:51 ----A---- C:\Windows\system32\PortableDeviceApi.dll
    2008-09-19 21:50:51 ----A---- C:\Windows\system32\mscorier.dll
    2008-09-19 21:50:51 ----A---- C:\Windows\system32\mcbuilder.exe
    2008-09-19 21:50:51 ----A---- C:\Windows\system32\iashost.exe
    2008-09-19 21:50:51 ----A---- C:\Windows\HelpPane.exe
    2008-09-19 21:50:50 ----A---- C:\Windows\system32\wecapi.dll
    2008-09-19 21:50:50 ----A---- C:\Windows\system32\unbcl.dll
    2008-09-19 21:50:50 ----A---- C:\Windows\system32\tcpmon.dll
    2008-09-19 21:50:50 ----A---- C:\Windows\system32\srrstr.dll
    2008-09-19 21:50:50 ----A---- C:\Windows\system32\shrink.dll
    2008-09-19 21:50:50 ----A---- C:\Windows\system32\rasmontr.dll
    2008-09-19 21:50:50 ----A---- C:\Windows\system32\msra.exe
    2008-09-19 21:50:50 ----A---- C:\Windows\system32\lltdsvc.dll
    2008-09-19 21:50:49 ----A---- C:\Windows\system32\WMPEncEn.dll
    2008-09-19 21:50:49 ----A---- C:\Windows\system32\IPHLPAPI.DLL
    2008-09-19 21:50:49 ----A---- C:\Windows\system32\iashlpr.dll
    2008-09-19 21:50:49 ----A---- C:\Windows\system32\gpedit.dll
    2008-09-19 21:50:49 ----A---- C:\Windows\system32\brcpl.dll
    2008-09-19 21:50:48 ----A---- C:\Windows\system32\raschap.dll
    2008-09-19 21:50:48 ----A---- C:\Windows\system32\oleacc.dll
    2008-09-19 21:50:48 ----A---- C:\Windows\system32\msdri.dll
    2008-09-19 21:50:48 ----A---- C:\Windows\system32\iertutil.dll
    2008-09-19 21:50:47 ----A---- C:\Windows\system32\framedynos.dll
    2008-09-19 21:50:43 ----A---- C:\Windows\system32\regsvc.dll
    2008-09-19 21:50:43 ----A---- C:\Windows\system32\ntvdm.exe
    2008-09-19 21:50:43 ----A---- C:\Windows\system32\fdWSD.dll
    2008-09-19 21:50:43 ----A---- C:\Windows\system32\Faultrep.dll
    2008-09-19 21:50:43 ----A---- C:\Windows\system32\advpack.dll
    2008-09-19 21:50:42 ----A---- C:\Windows\system32\wpdshext.dll
    2008-09-19 21:50:42 ----A---- C:\Windows\system32\wdc.dll
    2008-09-19 21:50:42 ----A---- C:\Windows\system32\vsstrace.dll
    2008-09-19 21:50:42 ----A---- C:\Windows\system32\PerfCenterCPL.dll
    2008-09-19 21:50:42 ----A---- C:\Windows\system32\ntlanman.dll
    2008-09-19 21:50:42 ----A---- C:\Windows\system32\ipsmsnap.dll
    2008-09-19 21:50:41 ----A---- C:\Windows\system32\Storprop.dll
    2008-09-19 21:50:41 ----A---- C:\Windows\system32\NetProjW.dll
    2008-09-19 21:50:41 ----A---- C:\Windows\system32\netman.dll
    2008-09-19 21:50:41 ----A---- C:\Windows\system32\l2nacp.dll
    2008-09-19 21:50:41 ----A---- C:\Windows\system32\iedkcs32.dll
    2008-09-19 21:50:41 ----A---- C:\Windows\system32\ieapfltr.dll
    2008-09-19 21:50:41 ----A---- C:\Windows\system32\framedyn.dll
    2008-09-19 21:50:41 ----A---- C:\Windows\system32\dssenh.dll
    2008-09-19 21:50:40 ----A---- C:\Windows\system32\WlanMM.dll
    2008-09-19 21:50:40 ----A---- C:\Windows\system32\tcpipcfg.dll
    2008-09-19 21:50:40 ----A---- C:\Windows\system32\certreq.exe
    2008-09-19 21:50:40 ----A---- C:\Windows\system32\adsnt.dll
    2008-09-19 21:50:39 ----A---- C:\Windows\system32\WsmProv.dll
    2008-09-19 21:50:39 ----A---- C:\Windows\system32\wlanhlp.dll
    2008-09-19 21:50:39 ----A---- C:\Windows\system32\WLanConn.dll
    2008-09-19 21:50:39 ----A---- C:\Windows\system32\sxs.dll
    2008-09-19 21:50:39 ----A---- C:\Windows\system32\profsvc.dll
    2008-09-19 21:50:39 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
    2008-09-19 21:50:39 ----A---- C:\Windows\system32\KMSVC.DLL
    2008-09-19 21:50:39 ----A---- C:\Windows\system32\IPBusEnum.dll
    2008-09-19 21:50:38 ----A---- C:\Windows\system32\wusa.exe
    2008-09-19 21:50:38 ----A---- C:\Windows\system32\WUDFHost.exe
    2008-09-19 21:50:38 ----A---- C:\Windows\system32\WerFault.exe
    2008-09-19 21:50:38 ----A---- C:\Windows\system32\VAN.dll
    2008-09-19 21:50:38 ----A---- C:\Windows\system32\userenv.dll
    2008-09-19 21:50:38 ----A---- C:\Windows\system32\umb.dll
    2008-09-19 21:50:38 ----A---- C:\Windows\system32\ncsi.dll
    2008-09-19 21:50:38 ----A---- C:\Windows\system32\ie4uinit.exe
    2008-09-19 21:50:38 ----A---- C:\Windows\system32\fundisc.dll
    2008-09-19 21:50:38 ----A---- C:\Windows\system32\catsrvut.dll
    2008-09-19 21:50:37 ----A---- C:\Windows\system32\puiobj.dll
    2008-09-19 21:50:37 ----A---- C:\Windows\system32\photowiz.dll
    2008-09-19 21:50:37 ----A---- C:\Windows\system32\netid.dll
    2008-09-19 21:50:37 ----A---- C:\Windows\system32\dps.dll
    2008-09-19 21:50:37 ----A---- C:\Windows\system32\cryptui.dll
    2008-09-19 21:50:36 ----A---- C:\Windows\system32\netcenter.dll
    2008-09-19 21:50:36 ----A---- C:\Windows\system32\MdSched.exe
    2008-09-19 21:50:36 ----A---- C:\Windows\system32\InkEd.dll
    2008-09-19 21:50:35 ----A---- C:\Windows\system32\ws2_32.dll
    2008-09-19 21:50:35 ----A---- C:\Windows\system32\WinSCard.dll
    2008-09-19 21:50:35 ----A---- C:\Windows\system32\winrs.exe
    2008-09-19 21:50:35 ----A---- C:\Windows\system32\tcpmon.ini
    2008-09-19 21:50:35 ----A---- C:\Windows\system32\spbcd.dll
    2008-09-19 21:50:35 ----A---- C:\Windows\system32\secur32.dll
    2008-09-19 21:50:35 ----A---- C:\Windows\system32\odbcjt32.dll
    2008-09-19 21:50:35 ----A---- C:\Windows\system32\ntdsapi.dll
    2008-09-19 21:50:35 ----A---- C:\Windows\system32\msinfo32.exe
    2008-09-19 21:50:35 ----A---- C:\Windows\system32\ipsecsnp.dll
    2008-09-19 21:50:34 ----A---- C:\Windows\system32\prnntfy.dll
    2008-09-19 21:50:34 ----A---- C:\Windows\system32\NAPSTAT.EXE
    2008-09-19 21:50:33 ----A---- C:\Windows\system32\schtasks.exe
    2008-09-19 21:50:33 ----A---- C:\Windows\system32\RelMon.dll
    2008-09-19 21:50:33 ----A---- C:\Windows\system32\msfeeds.dll
    2008-09-19 21:50:33 ----A---- C:\Windows\system32\mblctr.exe
    2008-09-19 21:50:33 ----A---- C:\Windows\system32\iasacct.dll
    2008-09-19 21:50:33 ----A---- C:\Windows\system32\cryptsvc.dll
    2008-09-19 21:50:32 ----A---- C:\Windows\system32\pdh.dll
    2008-09-19 21:50:32 ----A---- C:\Windows\system32\netdiagfx.dll
    2008-09-19 21:50:32 ----A---- C:\Windows\system32\dmdlgs.dll
    2008-09-19 21:50:32 ----A---- C:\Windows\system32\dhcpsapi.dll
    2008-09-19 21:50:32 ----A---- C:\Windows\system32\catsrv.dll
    2008-09-19 21:50:32 ----A---- C:\Windows\system32\activeds.dll
    2008-09-19 21:50:31 ----A---- C:\Windows\system32\wvc.dll
    2008-09-19 21:50:31 ----A---- C:\Windows\system32\winrm.vbs
    2008-09-19 21:50:31 ----A---- C:\Windows\system32\TSpkg.dll
    2008-09-19 21:50:31 ----A---- C:\Windows\system32\qwave.dll
    2008-09-19 21:50:31 ----A---- C:\Windows\system32\FirewallControlPanel.exe
    2008-09-19 21:50:31 ----A---- C:\Windows\system32\fdWCN.dll
    2008-09-19 21:50:31 ----A---- C:\Windows\system32\dot3msm.dll
    2008-09-19 21:50:31 ----A---- C:\Windows\system32\dfrgfat.exe
    2008-09-19 21:50:31 ----A---- C:\Windows\system32\AudioSes.dll
    2008-09-19 21:50:30 ----A---- C:\Windows\system32\wow32.dll
    2008-09-19 21:50:30 ----A---- C:\Windows\system32\rastapi.dll
    2008-09-19 21:50:30 ----A---- C:\Windows\system32\netcorehc.dll
    2008-09-19 21:50:30 ----A---- C:\Windows\system32\NAPHLPR.DLL
    2008-09-19 21:50:30 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
    2008-09-19 21:50:30 ----A---- C:\Windows\system32\msacm32.dll
    2008-09-19 21:50:30 ----A---- C:\Windows\system32\ifmon.dll
    2008-09-19 21:50:30 ----A---- C:\Windows\system32\dot3cfg.dll
    2008-09-19 21:50:30 ----A---- C:\Windows\system32\adsldp.dll
    2008-09-19 21:50:29 ----A---- C:\Windows\system32\shsetup.dll
    2008-09-19 21:50:29 ----A---- C:\Windows\system32\els.dll
    2008-09-19 21:50:28 ----A---- C:\Windows\system32\wscntfy.dll
    2008-09-19 21:50:28 ----A---- C:\Windows\system32\WMNetMgr.dll
    2008-09-19 21:50:28 ----A---- C:\Windows\system32\stobject.dll
    2008-09-19 21:50:28 ----A---- C:\Windows\system32\QUTIL.DLL
    2008-09-19 21:50:28 ----A---- C:\Windows\system32\ntshrui.dll
    2008-09-19 21:50:28 ----A---- C:\Windows\system32\msdt.dll
    2008-09-19 21:50:28 ----A---- C:\Windows\system32\iasrecst.dll
    2008-09-19 21:50:28 ----A---- C:\Windows\system32\iasdatastore.dll
    2008-09-19 21:50:28 ----A---- C:\Windows\system32\fdSSDP.dll
    2008-09-19 21:50:28 ----A---- C:\Windows\system32\clbcatq.dll
    2008-09-19 21:50:27 ----A---- C:\Windows\system32\wlanui.dll
    2008-09-19 21:50:27 ----A---- C:\Windows\system32\sdrsvc.dll
    2008-09-19 21:50:27 ----A---- C:\Windows\system32\net1.exe
    2008-09-19 21:50:27 ----A---- C:\Windows\system32\ipnathlp.dll
    2008-09-19 21:50:27 ----A---- C:\Windows\system32\dsprop.dll
    2008-09-19 21:50:26 ----A---- C:\Windows\system32\wlgpclnt.dll
    2008-09-19 21:50:26 ----A---- C:\Windows\system32\upnphost.dll
    2008-09-19 21:50:26 ----A---- C:\Windows\system32\systemcpl.dll
    2008-09-19 21:50:26 ----A---- C:\Windows\system32\smss.exe
    2008-09-19 21:50:26 ----A---- C:\Windows\system32\nci.dll
    2008-09-19 21:50:26 ----A---- C:\Windows\system32\mprmsg.dll
    2008-09-19 21:50:26 ----A---- C:\Windows\system32\Defrag.exe
    2008-09-19 21:50:26 ----A---- C:\Windows\system32\adsldpc.dll
    2008-09-19 21:50:25 ----A---- C:\Windows\system32\rasman.dll
    2008-09-19 21:50:25 ----A---- C:\Windows\system32\rascfg.dll
    2008-09-19 21:50:25 ----A---- C:\Windows\system32\PresentationSettings.exe
    2008-09-19 21:50:25 ----A---- C:\Windows\system32\P2P.dll
    2008-09-19 21:50:25 ----A---- C:\Windows\system32\oleprn.dll
    2008-09-19 21:50:25 ----A---- C:\Windows\system32\msftedit.dll
    2008-09-19 21:50:25 ----A---- C:\Windows\system32\MSAC3ENC.DLL
    2008-09-19 21:50:25 ----A---- C:\Windows\system32\loghours.dll
    2008-09-19 21:50:25 ----A---- C:\Windows\system32\fde.dll
    2008-09-19 21:50:25 ----A---- C:\Windows\system32\CompatUI.dll
    2008-09-19 21:50:25 ----A---- C:\Windows\system32\ActiveContentWizard.dll
    2008-09-19 21:50:24 ----A---- C:\Windows\system32\Wpc.dll
    2008-09-19 21:50:24 ----A---- C:\Windows\system32\t2embed.dll
    2008-09-19 21:50:24 ----A---- C:\Windows\system32\MigAutoPlay.exe
    2008-09-19 21:50:24 ----A---- C:\Windows\system32\L2SecHC.dll
    2008-09-19 21:50:24 ----A---- C:\Windows\system32\dxdiag.exe
    2008-09-19 21:50:24 ----A---- C:\Windows\system32\DFDWiz.exe
    2008-09-19 21:50:23 ----A---- C:\Windows\system32\wdigest.dll
    2008-09-19 21:50:23 ----A---- C:\Windows\system32\setupcl.exe
    2008-09-19 21:50:23 ----A---- C:\Windows\system32\rtm.dll
    2008-09-19 21:50:23 ----A---- C:\Windows\system32\msutb.dll
    2008-09-19 21:50:23 ----A---- C:\Windows\system32\mprdim.dll
    2008-09-19 21:50:23 ----A---- C:\Windows\system32\gpapi.dll
    2008-09-19 21:50:23 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
    2008-09-19 21:50:22 ----A---- C:\Windows\system32\wiaservc.dll
    2008-09-19 21:50:22 ----A---- C:\Windows\system32\scansetting.dll
    2008-09-19 21:50:22 ----A---- C:\Windows\system32\NAPCRYPT.DLL
    2008-09-19 21:50:22 ----A---- C:\Windows\system32\msihnd.dll
    2008-09-19 21:50:22 ----A---- C:\Windows\system32\devmgr.dll
    2008-09-19 21:50:22 ----A---- C:\Windows\system32\CertEnrollUI.dll
    2008-09-19 21:50:21 ----A---- C:\Windows\system32\wdi.dll
    2008-09-19 21:50:21 ----A---- C:\Windows\system32\kdusb.dll
    2008-09-19 21:50:21 ----A---- C:\Windows\system32\ifsutil.dll
    2008-09-19 21:50:21 ----A---- C:\Windows\system32\dimsroam.dll
    2008-09-19 21:50:21 ----A---- C:\Windows\system32\actxprxy.dll
    2008-09-19 21:50:20 ----A---- C:\Windows\system32\wscapi.dll
    2008-09-19 21:50:20 ----A---- C:\Windows\system32\WinFXDocObj.exe
    2008-09-19 21:50:20 ----A---- C:\Windows\system32\usbmon.dll
    2008-09-19 21:50:20 ----A---- C:\Windows\system32\SyncCenter.dll
    2008-09-19 21:50:20 ----A---- C:\Windows\system32\spoolsv.exe
    2008-09-19 21:50:20 ----A---- C:\Windows\system32\mswmdm.dll
    2008-09-19 21:50:20 ----A---- C:\Windows\system32\imagehlp.dll
    2008-09-19 21:50:20 ----A---- C:\Windows\system32\BOOTVID.DLL
    2008-09-19 21:50:20 ----A---- C:\Windows\system32\audiodg.exe
    2008-09-19 21:50:19 ----A---- C:\Windows\system32\wlandlg.dll
    2008-09-19 21:50:19 ----A---- C:\Windows\system32\vssadmin.exe
    2008-09-19 21:50:19 ----A---- C:\Windows\system32\uudf.dll
    2008-09-19 21:50:19 ----A---- C:\Windows\system32\regapi.dll
    2008-09-19 21:50:19 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2008-09-19 21:50:19 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
    2008-09-19 21:50:19 ----A---- C:\Windows\system32\mycomput.dll
    2008-09-19 21:50:19 ----A---- C:\Windows\system32\msls31.dll
    2008-09-19 21:50:18 ----A---- C:\Windows\system32\scecli.dll
    2008-09-19 21:50:18 ----A---- C:\Windows\system32\SCardSvr.dll
    2008-09-19 21:50:18 ----A---- C:\Windows\system32\newdev.dll
    2008-09-19 21:50:18 ----A---- C:\Windows\system32\mspaint.exe
    2008-09-19 21:50:18 ----A---- C:\Windows\system32\kdcom.dll
    2008-09-19 21:50:17 ----A---- C:\Windows\system32\termmgr.dll
    2008-09-19 21:50:17 ----A---- C:\Windows\system32\sud.dll
    2008-09-19 21:50:17 ----A---- C:\Windows\system32\ssdpsrv.dll
    2008-09-19 21:50:17 ----A---- C:\Windows\system32\samlib.dll
    2008-09-19 21:50:17 ----A---- C:\Windows\system32\puiapi.dll
    2008-09-19 21:50:17 ----A---- C:\Windows\system32\mtxoci.dll
    2008-09-19 21:50:17 ----A---- C:\Windows\system32\mstask.dll
    2008-09-19 21:50:17 ----A---- C:\Windows\system32\duser.dll
    2008-09-19 21:50:17 ----A---- C:\Windows\system32\adtschema.dll
    2008-09-19 21:50:16 ----A---- C:\Windows\system32\wisptis.exe
    2008-09-19 21:50:16 ----A---- C:\Windows\system32\tapisrv.dll
    2008-09-19 21:50:16 ----A---- C:\Windows\system32\SLUINotify.dll
    2008-09-19 21:50:16 ----A---- C:\Windows\system32\Robocopy.exe
    2008-09-19 21:50:16 ----A---- C:\Windows\system32\input.dll
    2008-09-19 21:50:16 ----A---- C:\Windows\system32\inetpp.dll
    2008-09-19 21:50:16 ----A---- C:\Windows\system32\iasads.dll
    2008-09-19 21:50:16 ----A---- C:\Windows\system32\cic.dll
    2008-09-19 21:50:16 ----A---- C:\Windows\system32\AzSqlExt.dll
    2008-09-19 21:50:15 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
    2008-09-19 21:50:15 ----A---- C:\Windows\system32\netiohlp.dll
    2008-09-19 21:50:15 ----A---- C:\Windows\system32\cscapi.dll
    2008-09-19 21:50:15 ----A---- C:\Windows\system32\authz.dll
    2008-09-19 21:50:14 ----A---- C:\Windows\system32\WUDFPlatform.dll
    2008-09-19 21:50:14 ----A---- C:\Windows\system32\webcheck.dll
    2008-09-19 21:50:14 ----A---- C:\Windows\system32\verifier.exe
    2008-09-19 21:50:14 ----A---- C:\Windows\system32\sdshext.dll
    2008-09-19 21:50:14 ----A---- C:\Windows\system32\msdtclog.dll
    2008-09-19 21:50:14 ----A---- C:\Windows\system32\msdt.exe
    2008-09-19 21:50:13 ----A---- C:\Windows\system32\wpcsvc.dll
    2008-09-19 21:50:13 ----A---- C:\Windows\system32\wintrust.dll
    2008-09-19 21:50:13 ----A---- C:\Windows\system32\themeui.dll
    2008-09-19 21:50:13 ----A---- C:\Windows\system32\slcinst.dll
    2008-09-19 21:50:13 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
    2008-09-19 21:50:13 ----A---- C:\Windows\system32\oledlg.dll
    2008-09-19 21:50:13 ----A---- C:\Windows\system32\dxtmsft.dll
    2008-09-19 21:50:13 ----A---- C:\Windows\system32\d3d8.dll
    2008-09-19 21:50:13 ----A---- C:\Windows\system32\cmdial32.dll
    2008-09-19 21:50:12 ----A---- C:\Windows\system32\wpccpl.dll
    2008-09-19 21:50:12 ----A---- C:\Windows\system32\WMPhoto.dll
    2008-09-19 21:50:12 ----A---- C:\Windows\system32\vdsldr.exe
    2008-09-19 21:50:12 ----A---- C:\Windows\system32\SndVol.exe
    2008-09-19 21:50:12 ----A---- C:\Windows\system32\rasgcw.dll
    2008-09-19 21:50:12 ----A---- C:\Windows\system32\pnpsetup.dll
    2008-09-19 21:50:12 ----A---- C:\Windows\system32\ntmarta.dll
    2008-09-19 21:50:12 ----A---- C:\Windows\system32\mmcbase.dll
    2008-09-19 21:50:12 ----A---- C:\Windows\system32\icardie.dll
    2008-09-19 21:50:12 ----A---- C:\Windows\system32\clfsw32.dll
    2008-09-19 21:50:11 ----A---- C:\Windows\system32\SnippingTool.exe
    2008-09-19 21:50:11 ----A---- C:\Windows\system32\rasqec.dll
    2008-09-19 21:50:11 ----A---- C:\Windows\system32\ncobjapi.dll
    2008-09-19 21:50:11 ----A---- C:\Windows\system32\msrd3x40.dll
    2008-09-19 21:50:11 ----A---- C:\Windows\system32\msaatext.dll
    2008-09-19 21:50:11 ----A---- C:\Windows\system32\mpr.dll
    2008-09-19 21:50:11 ----A---- C:\Windows\system32\mlang.dll
    2008-09-19 21:50:11 ----A---- C:\Windows\system32\icfupgd.dll
    2008-09-19 21:50:11 ----A---- C:\Windows\system32\diskraid.exe
    2008-09-19 21:50:10 ----A---- C:\Windows\system32\wtsapi32.dll
    2008-09-19 21:50:10 ----A---- C:\Windows\system32\wpd_ci.dll
    2008-09-19 21:50:10 ----A---- C:\Windows\system32\unlodctr.exe
    2008-09-19 21:50:10 ----A---- C:\Windows\system32\syssetup.dll
    2008-09-19 21:50:10 ----A---- C:\Windows\system32\slmgr.vbs
    2008-09-19 21:50:10 ----A---- C:\Windows\system32\sethc.exe
    2008-09-19 21:50:10 ----A---- C:\Windows\system32\pnpui.dll
    2008-09-19 21:50:10 ----A---- C:\Windows\system32\nslookup.exe
    2008-09-19 21:50:10 ----A---- C:\Windows\system32\mscms.dll
    2008-09-19 21:50:10 ----A---- C:\Windows\system32\lodctr.exe
    2008-09-19 21:50:10 ----A---- C:\Windows\system32\iaspolcy.dll
    2008-09-19 21:50:10 ----A---- C:\Windows\system32\extmgr.dll
    2008-09-19 21:50:10 ----A---- C:\Windows\system32\accessibilitycpl.dll
    2008-09-19 21:50:09 ----A---- C:\Windows\system32\Utilman.exe
    2008-09-19 21:50:09 ----A---- C:\Windows\system32\ulib.dll
    2008-09-19 21:50:09 ----A---- C:\Windows\system32\trkwks.dll
    2008-09-19 21:50:09 ----A---- C:\Windows\system32\oobefldr.dll
    2008-09-19 21:50:09 ----A---- C:\Windows\system32\Mcx2Svc.dll
    2008-09-19 21:50:09 ----A---- C:\Windows\system32\fontsub.dll
    2008-09-19 21:50:09 ----A---- C:\Windows\system32\dxdiagn.dll
    2008-09-19 21:50:09 ----A---- C:\Windows\system32\cabinet.dll
    2008-09-19 21:50:08 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
    2008-09-19 21:50:08 ----A---- C:\Windows\system32\unattend.dll
    2008-09-19 21:50:08 ----A---- C:\Windows\system32\scesrv.dll
    2008-09-19 21:50:08 ----A---- C:\Windows\system32\ogldrv.dll
    2008-09-19 21:50:08 ----A---- C:\Windows\system32\occache.dll
    2008-09-19 21:50:08 ----A---- C:\Windows\system32\lnkstub.exe
    2008-09-19 21:50:07 ----A---- C:\Windows\system32\wermgr.exe
    2008-09-19 21:50:07 ----A---- C:\Windows\system32\dfdts.dll
    2008-09-19 21:50:07 ----A---- C:\Windows\system32\cabview.dll
    2008-09-19 21:50:07 ----A---- C:\Windows\system32\bthci.dll
    2008-09-19 21:50:06 ----A---- C:\Windows\system32\wpcao.dll
    2008-09-19 21:50:06 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
    2008-09-19 21:50:06 ----A---- C:\Windows\system32\msnetobj.dll
    2008-09-19 21:50:06 ----A---- C:\Windows\system32\iepeers.dll
    2008-09-19 21:50:06 ----A---- C:\Windows\system32\eappgnui.dll
    2008-09-19 21:50:05 ----A---- C:\Windows\system32\p2pcollab.dll
    2008-09-19 21:50:05 ----A---- C:\Windows\system32\ieaksie.dll
    2008-09-19 21:50:05 ----A---- C:\Windows\system32\basesrv.dll
    2008-09-19 21:50:04 ----A---- C:\Windows\system32\drvinst.exe
    2008-09-19 21:50:04 ----A---- C:\Windows\system32\dispdiag.exe
    2008-09-19 21:50:04 ----A---- C:\Windows\system32\DHCPQEC.DLL
    2008-09-19 21:50:03 ----A---- C:\Windows\system32\dsquery.dll
    2008-09-19 21:50:02 ----A---- C:\Windows\system32\verifier.dll
    2008-09-19 21:50:02 ----A---- C:\Windows\system32\mmcss.dll
    2008-09-19 21:50:01 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
    2008-09-19 21:50:01 ----A---- C:\Windows\system32\secproc_ssp.dll
    2008-09-19 21:50:01 ----A---- C:\Windows\system32\RstrtMgr.dll
    2008-09-19 21:50:01 ----A---- C:\Windows\system32\mprapi.dll
    2008-09-19 21:50:01 ----A---- C:\Windows\system32\efsadu.dll
    2008-09-19 21:50:00 ----A---- C:\Windows\system32\WPDSp.dll
    2008-09-19 21:50:00 ----A---- C:\Windows\system32\WPDShServiceObj.dll
    2008-09-19 21:50:00 ----A---- C:\Windows\system32\WMVENCOD.DLL
    2008-09-19 21:50:00 ----A---- C:\Windows\system32\wercplsupport.dll
    2008-09-19 21:50:00 ----A---- C:\Windows\system32\setupugc.exe
    2008-09-19 21:50:00 ----A---- C:\Windows\system32\qedit.dll
    2008-09-19 21:50:00 ----A---- C:\Windows\system32\msoeacct.dll
    2008-09-19 21:50:00 ----A---- C:\Windows\system32\icacls.exe
    2008-09-19 21:50:00 ----A---- C:\Windows\system32\d3d10core.dll
    2008-09-19 21:49:59 ----A---- C:\Windows\system32\wiascanprofiles.dll
    2008-09-19 21:49:59 ----A---- C:\Windows\system32\wiaaut.dll
    2008-09-19 21:49:59 ----A---- C:\Windows\system32\usercpl.dll
    2008-09-19 21:49:59 ----A---- C:\Windows\system32\QSVRMGMT.DLL
    2008-09-19 21:49:59 ----A---- C:\Windows\system32\pnrpnsp.dll
    2008-09-19 21:49:59 ----A---- C:\Windows\system32\pngfilt.dll
    2008-09-19 21:49:59 ----A---- C:\Windows\system32\p2pnetsh.dll
    2008-09-19 21:49:59 ----A---- C:\Windows\system32\networkmap.dll
    2008-09-19 21:49:59 ----A---- C:\Windows\system32\msdmo.dll
    2008-09-19 21:49:59 ----A---- C:\Windows\system32\iscsiexe.dll
    2008-09-19 21:49:59 ----A---- C:\Windows\system32\consent.exe
    2008-09-19 21:49:58 ----A---- C:\Windows\system32\xactsrv.dll
    2008-09-19 21:49:58 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
    2008-09-19 21:49:58 ----A---- C:\Windows\system32\PNPXAssoc.dll
    2008-09-19 21:49:58 ----A---- C:\Windows\system32\pcadm.dll
    2008-09-19 21:49:58 ----A---- C:\Windows\system32\msrdc.dll
    2008-09-19 21:49:58 ----A---- C:\Windows\system32\lsass.exe
    2008-09-19 21:49:58 ----A---- C:\Windows\system32\lpk.dll
    2008-09-19 21:49:58 ----A---- C:\Windows\system32\eappprxy.dll
    2008-09-19 21:49:58 ----A---- C:\Windows\system32\drmmgrtn.dll
    2008-09-19 21:49:58 ----A---- C:\Windows\system32\conime.exe
    2008-09-19 21:49:58 ----A---- C:\Windows\system32\autoplay.dll
    2008-09-19 21:49:57 ----A---- C:\Windows\system32\systeminfo.exe
    2008-09-19 21:49:57 ----A---- C:\Windows\system32\netcfg.exe
    2008-09-19 21:49:57 ----A---- C:\Windows\system32\findstr.exe
    2008-09-19 21:49:57 ----A---- C:\Windows\system32\dpapimig.exe
    2008-09-19 21:49:56 ----A---- C:\Windows\system32\xwizards.dll
    2008-09-19 21:49:56 ----A---- C:\Windows\system32\msrating.dll
    2008-09-19 21:49:56 ----A---- C:\Windows\system32\mfplat.dll
    2008-09-19 21:49:53 ----A---- C:\Windows\system32\resutils.dll
    2008-09-19 21:49:53 ----A---- C:\Windows\system32\DWWIN.EXE
    2008-09-19 21:49:53 ----A---- C:\Windows\system32\cmdl32.exe
    2008-09-19 21:49:52 ----A---- C:\Windows\system32\powercpl.dll
    2008-09-19 21:49:52 ----A---- C:\Windows\system32\odbc32.dll
    2008-09-19 21:49:52 ----A---- C:\Windows\system32\netprof.dll
    2008-09-19 21:49:52 ----A---- C:\Windows\system32\MFWMAAEC.DLL
    2008-09-19 21:49:52 ----A---- C:\Windows\system32\dssec.dll
    2008-09-19 21:49:52 ----A---- C:\Windows\system32\dot3ui.dll
    2008-09-19 21:49:52 ----A---- C:\Windows\system32\dfrgifc.exe
    2008-09-19 21:49:52 ----A---- C:\Windows\system32\dbnetlib.dll
    2008-09-19 21:49:52 ----A---- C:\Windows\system32\alg.exe
    2008-09-19 21:49:52 ----A---- C:\Windows\regedit.exe
    2008-09-19 21:49:51 ----A---- C:\Windows\system32\txflog.dll
    2008-09-19 21:49:51 ----A---- C:\Windows\system32\taskkill.exe
    2008-09-19 21:49:51 ----A---- C:\Windows\system32\nshhttp.dll
    2008-09-19 21:49:51 ----A---- C:\Windows\system32\imm32.dll
    2008-09-19 21:49:51 ----A---- C:\Windows\system32\iexpress.exe
    2008-09-19 21:49:51 ----A---- C:\Windows\system32\feclient.dll
    2008-09-19 21:49:51 ----A---- C:\Windows\system32\btpanui.dll
    2008-09-19 21:49:51 ----A---- C:\Windows\system32\apircl.dll
    2008-09-19 21:49:50 ----A---- C:\Windows\system32\tbssvc.dll
    2008-09-19 21:49:50 ----A---- C:\Windows\system32\RASMM.dll
    2008-09-19 21:49:50 ----A---- C:\Windows\system32\provthrd.dll
    2008-09-19 21:49:50 ----A---- C:\Windows\system32\msieftp.dll
    2008-09-19 21:49:50 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
     
  15. leebonfiglio

    leebonfiglio Thread Starter

    Joined:
    Sep 30, 2008
    Messages:
    12
    2008-09-19 21:49:50 ----A---- C:\Windows\system32\dxva2.dll
    2008-09-19 21:49:50 ----A---- C:\Windows\system32\dwmapi.dll
    2008-09-19 21:49:50 ----A---- C:\Windows\system32\d3d10.dll
    2008-09-19 21:49:50 ----A---- C:\Windows\system32\bcdprov.dll
    2008-09-19 21:49:50 ----A---- C:\Windows\system32\ActionQueue.dll
    2008-09-19 21:49:49 ----A---- C:\Windows\system32\syncui.dll
    2008-09-19 21:49:49 ----A---- C:\Windows\system32\svchost.exe
    2008-09-19 21:49:49 ----A---- C:\Windows\system32\slwmi.dll
    2008-09-19 21:49:49 ----A---- C:\Windows\system32\SLCExt.dll
    2008-09-19 21:49:49 ----A---- C:\Windows\system32\slcc.dll
    2008-09-19 21:49:49 ----A---- C:\Windows\system32\shwebsvc.dll
    2008-09-19 21:49:49 ----A---- C:\Windows\system32\EAPQEC.DLL
    2008-09-19 21:49:49 ----A---- C:\Windows\system32\dmocx.dll
    2008-09-19 21:49:48 ----A---- C:\Windows\system32\WMASF.DLL
    2008-09-19 21:49:48 ----A---- C:\Windows\system32\raserver.exe
    2008-09-19 21:49:48 ----A---- C:\Windows\system32\PnPUnattend.exe
    2008-09-19 21:49:48 ----A---- C:\Windows\system32\olepro32.dll
    2008-09-19 21:49:48 ----A---- C:\Windows\system32\networkexplorer.dll
    2008-09-19 21:49:48 ----A---- C:\Windows\system32\dnscacheugc.exe
    2008-09-19 21:49:48 ----A---- C:\Windows\system32\connect.dll
    2008-09-19 21:49:48 ----A---- C:\Windows\system32\aclui.dll
    2008-09-19 21:49:47 ----A---- C:\Windows\system32\xcopy.exe
    2008-09-19 21:49:47 ----A---- C:\Windows\system32\uxsms.dll
    2008-09-19 21:49:47 ----A---- C:\Windows\system32\UIHub.dll
    2008-09-19 21:49:47 ----A---- C:\Windows\system32\taskmgr.exe
    2008-09-19 21:49:47 ----A---- C:\Windows\system32\QCLIPROV.DLL
    2008-09-19 21:49:47 ----A---- C:\Windows\system32\ias.dll
    2008-09-19 21:49:47 ----A---- C:\Windows\system32\brcplsdw.dll
    2008-09-19 21:49:47 ----A---- C:\Windows\system32\audiodev.dll
    2008-09-19 21:49:46 ----A---- C:\Windows\system32\upnp.dll
    2008-09-19 21:49:46 ----A---- C:\Windows\system32\reg.exe
    2008-09-19 21:49:46 ----A---- C:\Windows\system32\NapiNSP.dll
    2008-09-19 21:49:46 ----A---- C:\Windows\system32\msoert2.dll
    2008-09-19 21:49:46 ----A---- C:\Windows\system32\msjetoledb40.dll
    2008-09-19 21:49:46 ----A---- C:\Windows\system32\mountvol.exe
    2008-09-19 21:49:46 ----A---- C:\Windows\system32\mmcshext.dll
    2008-09-19 21:49:46 ----A---- C:\Windows\system32\icsfiltr.dll
    2008-09-19 21:49:46 ----A---- C:\Windows\system32\cmstp.exe
    2008-09-19 21:49:46 ----A---- C:\Windows\system32\browser.dll
    2008-09-19 21:49:46 ----A---- C:\Windows\system32\atl.dll
    2008-09-19 21:49:46 ----A---- C:\Windows\system32\appinfo.dll
    2008-09-19 21:49:45 ----A---- C:\Windows\system32\WMVXENCD.DLL
    2008-09-19 21:49:45 ----A---- C:\Windows\system32\wmpdxm.dll
    2008-09-19 21:49:45 ----A---- C:\Windows\system32\wlanext.exe
    2008-09-19 21:49:45 ----A---- C:\Windows\system32\PING.EXE
    2008-09-19 21:49:45 ----A---- C:\Windows\system32\perfts.dll
    2008-09-19 21:49:45 ----A---- C:\Windows\system32\netplwiz.dll
    2008-09-19 21:49:45 ----A---- C:\Windows\system32\inetmib1.dll
    2008-09-19 21:49:45 ----A---- C:\Windows\system32\dskquoui.dll
    2008-09-19 21:49:45 ----A---- C:\Windows\system32\cewmdm.dll
    2008-09-19 21:49:45 ----A---- C:\Windows\system32\certprop.dll
    2008-09-19 21:49:45 ----A---- C:\Windows\system32\bitsadmin.exe
    2008-09-19 21:49:45 ----A---- C:\Windows\system32\AuxiliaryDisplayApi.dll
    2008-09-19 21:49:44 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
    2008-09-19 21:49:44 ----A---- C:\Windows\system32\WpdMtpUS.dll
    2008-09-19 21:49:44 ----A---- C:\Windows\system32\SysFxUI.dll
    2008-09-19 21:49:44 ----A---- C:\Windows\system32\SoundRecorder.exe
    2008-09-19 21:49:44 ----A---- C:\Windows\system32\rekeywiz.exe
    2008-09-19 21:49:44 ----A---- C:\Windows\system32\qcap.dll
    2008-09-19 21:49:44 ----A---- C:\Windows\system32\qasf.dll
    2008-09-19 21:49:44 ----A---- C:\Windows\system32\ieakeng.dll
    2008-09-19 21:49:44 ----A---- C:\Windows\system32\httpapi.dll
    2008-09-19 21:49:44 ----A---- C:\Windows\system32\dsuiext.dll
    2008-09-19 21:49:44 ----A---- C:\Windows\system32\dmusic.dll
    2008-09-19 21:49:44 ----A---- C:\Windows\system32\adsmsext.dll
    2008-09-19 21:49:43 ----A---- C:\Windows\system32\WUDFSvc.dll
    2008-09-19 21:49:43 ----A---- C:\Windows\system32\wmpsrcwp.dll
    2008-09-19 21:49:43 ----A---- C:\Windows\system32\Sens.dll
    2008-09-19 21:49:43 ----A---- C:\Windows\system32\SecEdit.exe
    2008-09-19 21:49:43 ----A---- C:\Windows\system32\mtstocom.exe
    2008-09-19 21:49:43 ----A---- C:\Windows\system32\mscandui.dll
    2008-09-19 21:49:43 ----A---- C:\Windows\system32\makecab.exe
    2008-09-19 21:49:43 ----A---- C:\Windows\system32\lsmproxy.dll
    2008-09-19 21:49:43 ----A---- C:\Windows\system32\auditpol.exe
    2008-09-19 21:49:42 ----A---- C:\Windows\system32\xwtpw32.dll
    2008-09-19 21:49:42 ----A---- C:\Windows\system32\WMVSENCD.DLL
    2008-09-19 21:49:42 ----A---- C:\Windows\system32\sppnp.dll
    2008-09-19 21:49:42 ----A---- C:\Windows\system32\shimgvw.dll
    2008-09-19 21:49:42 ----A---- C:\Windows\system32\seclogon.dll
    2008-09-19 21:49:42 ----A---- C:\Windows\system32\sbeio.dll
    2008-09-19 21:49:42 ----A---- C:\Windows\system32\printcom.dll
    2008-09-19 21:49:42 ----A---- C:\Windows\system32\ndfapi.dll
    2008-09-19 21:49:42 ----A---- C:\Windows\system32\msdadiag.dll
    2008-09-19 21:49:42 ----A---- C:\Windows\system32\dot3gpclnt.dll
    2008-09-19 21:49:42 ----A---- C:\Windows\system32\batt.dll
    2008-09-19 21:49:41 ----A---- C:\Windows\system32\wzcdlg.dll
    2008-09-19 21:49:41 ----A---- C:\Windows\system32\wscmisetup.dll
    2008-09-19 21:49:41 ----A---- C:\Windows\system32\wiashext.dll
    2008-09-19 21:49:41 ----A---- C:\Windows\system32\wiadefui.dll
    2008-09-19 21:49:41 ----A---- C:\Windows\system32\userinit.exe
    2008-09-19 21:49:41 ----A---- C:\Windows\system32\shacct.dll
    2008-09-19 21:49:41 ----A---- C:\Windows\system32\p2phost.exe
    2008-09-19 21:49:41 ----A---- C:\Windows\system32\msorcl32.dll
    2008-09-19 21:49:41 ----A---- C:\Windows\system32\dxtrans.dll
    2008-09-19 21:49:41 ----A---- C:\Windows\system32\apss.dll
    2008-09-19 21:49:40 ----A---- C:\Windows\system32\wpdwcn.dll
    2008-09-19 21:49:40 ----A---- C:\Windows\system32\WMSPDMOE.DLL
    2008-09-19 21:49:40 ----A---- C:\Windows\system32\winrshost.exe
    2008-09-19 21:49:40 ----A---- C:\Windows\system32\tasklist.exe
    2008-09-19 21:49:40 ----A---- C:\Windows\system32\TapiMigPlugin.dll
    2008-09-19 21:49:40 ----A---- C:\Windows\system32\sxstrace.exe
    2008-09-19 21:49:40 ----A---- C:\Windows\system32\rrinstaller.exe
    2008-09-19 21:49:40 ----A---- C:\Windows\system32\perfmon.exe
    2008-09-19 21:49:40 ----A---- C:\Windows\system32\napipsec.dll
    2008-09-19 21:49:40 ----A---- C:\Windows\system32\ktmutil.exe
    2008-09-19 21:49:40 ----A---- C:\Windows\system32\keymgr.dll
    2008-09-19 21:49:40 ----A---- C:\Windows\system32\HelpPaneProxy.dll
    2008-09-19 21:49:40 ----A---- C:\Windows\system32\csrsrv.dll
    2008-09-19 21:49:39 ----A---- C:\Windows\system32\UIAutomationCore.dll
    2008-09-19 21:49:39 ----A---- C:\Windows\system32\prntvpt.dll
    2008-09-19 21:49:39 ----A---- C:\Windows\system32\notepad.exe
    2008-09-19 21:49:39 ----A---- C:\Windows\system32\MP4SDECD.DLL
    2008-09-19 21:49:39 ----A---- C:\Windows\system32\ftp.exe
    2008-09-19 21:49:39 ----A---- C:\Windows\system32\fmifs.dll
    2008-09-19 21:49:39 ----A---- C:\Windows\system32\d3dim700.dll
    2008-09-19 21:49:39 ----A---- C:\Windows\system32\colorui.dll
    2008-09-19 21:49:39 ----A---- C:\Windows\notepad.exe
    2008-09-19 21:49:38 ----A---- C:\Windows\system32\wscproxystub.dll
    2008-09-19 21:49:38 ----A---- C:\Windows\system32\winethc.dll
    2008-09-19 21:49:38 ----A---- C:\Windows\system32\txfw32.dll
    2008-09-19 21:49:38 ----A---- C:\Windows\system32\takeown.exe
    2008-09-19 21:49:38 ----A---- C:\Windows\system32\PnPutil.exe
    2008-09-19 21:49:38 ----A---- C:\Windows\system32\pcasvc.dll
    2008-09-19 21:49:38 ----A---- C:\Windows\system32\nshipsec.dll
    2008-09-19 21:49:38 ----A---- C:\Windows\system32\netiougc.exe
    2008-09-19 21:49:38 ----A---- C:\Windows\system32\msimtf.dll
    2008-09-19 21:49:38 ----A---- C:\Windows\system32\msiexec.exe
    2008-09-19 21:49:38 ----A---- C:\Windows\system32\mfps.dll
    2008-09-19 21:49:38 ----A---- C:\Windows\system32\driverquery.exe
    2008-09-19 21:49:38 ----A---- C:\Windows\system32\cryptdll.dll
    2008-09-19 21:49:37 ----A---- C:\Windows\system32\wpdbusenum.dll
    2008-09-19 21:49:37 ----A---- C:\Windows\system32\wmiprop.dll
    2008-09-19 21:49:37 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
    2008-09-19 21:49:37 ----A---- C:\Windows\system32\rasplap.dll
    2008-09-19 21:49:37 ----A---- C:\Windows\system32\powrprof.dll
    2008-09-19 21:49:37 ----A---- C:\Windows\system32\pots.dll
    2008-09-19 21:49:37 ----A---- C:\Windows\system32\mfpmp.exe
    2008-09-19 21:49:37 ----A---- C:\Windows\system32\logagent.exe
    2008-09-19 21:49:37 ----A---- C:\Windows\system32\inseng.dll
    2008-09-19 21:49:37 ----A---- C:\Windows\system32\findnetprinters.dll
    2008-09-19 21:49:37 ----A---- C:\Windows\system32\capisp.dll
    2008-09-19 21:49:36 ----A---- C:\Windows\system32\shrpubw.exe
    2008-09-19 21:49:36 ----A---- C:\Windows\system32\sfc_os.dll
    2008-09-19 21:49:36 ----A---- C:\Windows\system32\sendmail.dll
    2008-09-19 21:49:36 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
    2008-09-19 21:49:36 ----A---- C:\Windows\system32\perfnet.dll
    2008-09-19 21:49:36 ----A---- C:\Windows\system32\olecli32.dll
    2008-09-19 21:49:36 ----A---- C:\Windows\system32\nsisvc.dll
    2008-09-19 21:49:36 ----A---- C:\Windows\system32\luainstall.dll
    2008-09-19 21:49:36 ----A---- C:\Windows\system32\imapi.dll
    2008-09-19 21:49:36 ----A---- C:\Windows\system32\fsutil.exe
    2008-09-19 21:49:36 ----A---- C:\Windows\system32\dnshc.dll
    2008-09-19 21:49:35 ----A---- C:\Windows\system32\WLanHC.dll
    2008-09-19 21:49:35 ----A---- C:\Windows\system32\wiaacmgr.exe
    2008-09-19 21:49:35 ----A---- C:\Windows\system32\wextract.exe
    2008-09-19 21:49:35 ----A---- C:\Windows\system32\TMM.dll
    2008-09-19 21:49:35 ----A---- C:\Windows\system32\shgina.dll
    2008-09-19 21:49:35 ----A---- C:\Windows\system32\runonce.exe
    2008-09-19 21:49:35 ----A---- C:\Windows\system32\rshx32.dll
    2008-09-19 21:49:35 ----A---- C:\Windows\system32\RpcPing.exe
    2008-09-19 21:49:35 ----A---- C:\Windows\system32\ktmw32.dll
    2008-09-19 21:49:35 ----A---- C:\Windows\system32\fdPHost.dll
    2008-09-19 21:49:35 ----A---- C:\Windows\system32\d3dim.dll
    2008-09-19 21:49:35 ----A---- C:\Windows\system32\compstui.dll
    2008-09-19 21:49:35 ----A---- C:\Windows\system32\cmmon32.exe
    2008-09-19 21:49:34 ----A---- C:\Windows\system32\WMADMOE.DLL
    2008-09-19 21:49:34 ----A---- C:\Windows\system32\version.dll
    2008-09-19 21:49:34 ----A---- C:\Windows\system32\unregmp2.exe
    2008-09-19 21:49:34 ----A---- C:\Windows\system32\UI0Detect.exe
    2008-09-19 21:49:34 ----A---- C:\Windows\system32\net.exe
    2008-09-19 21:49:34 ----A---- C:\Windows\system32\msvfw32.dll
    2008-09-19 21:49:34 ----A---- C:\Windows\system32\mdminst.dll
    2008-09-19 21:49:34 ----A---- C:\Windows\system32\getmac.exe
    2008-09-19 21:49:34 ----A---- C:\Windows\system32\dsauth.dll
    2008-09-19 21:49:34 ----A---- C:\Windows\system32\dimsjob.dll
    2008-09-19 21:49:34 ----A---- C:\Windows\system32\cmlua.dll
    2008-09-19 21:49:33 ----A---- C:\Windows\system32\wmpshell.dll
    2008-09-19 21:49:33 ----A---- C:\Windows\system32\w32tm.exe
    2008-09-19 21:49:33 ----A---- C:\Windows\system32\tscupgrd.exe
    2008-09-19 21:49:33 ----A---- C:\Windows\system32\MPG4DECD.DLL
    2008-09-19 21:49:33 ----A---- C:\Windows\system32\MP43DECD.DLL
    2008-09-19 21:49:33 ----A---- C:\Windows\system32\ipconfig.exe
    2008-09-19 21:49:33 ----A---- C:\Windows\system32\imgutil.dll
    2008-09-19 21:49:33 ----A---- C:\Windows\system32\credui.dll
    2008-09-19 21:49:33 ----A---- C:\Windows\system32\ACW.exe
    2008-09-19 21:49:32 ----A---- C:\Windows\system32\sfc.exe
    2008-09-19 21:49:32 ----A---- C:\Windows\system32\sdchange.exe
    2008-09-19 21:49:32 ----A---- C:\Windows\system32\PortableDeviceWiaCompat.dll
    2008-09-19 21:49:32 ----A---- C:\Windows\system32\pnpts.dll
    2008-09-19 21:49:32 ----A---- C:\Windows\system32\migisol.dll
    2008-09-19 21:49:32 ----A---- C:\Windows\system32\fdeploy.dll
    2008-09-19 21:49:32 ----A---- C:\Windows\system32\dispci.dll
    2008-09-19 21:49:32 ----A---- C:\Windows\system32\dinput8.dll
    2008-09-19 21:49:32 ----A---- C:\Windows\system32\diantz.exe
    2008-09-19 21:49:32 ----A---- C:\Windows\system32\comrepl.dll
    2008-09-19 21:49:32 ----A---- C:\Windows\system32\cmutil.dll
    2008-09-19 21:49:31 ----A---- C:\Windows\system32\TSTheme.exe
    2008-09-19 21:49:31 ----A---- C:\Windows\system32\remotepg.dll
    2008-09-19 21:49:31 ----A---- C:\Windows\system32\nlaapi.dll
    2008-09-19 21:49:31 ----A---- C:\Windows\system32\ExplorerFrame.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\wmidx.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\vdmredir.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\utildll.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\TpmInit.exe
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\softkbd.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\pdhui.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\modemui.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\McxDriv.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\iernonce.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\hlink.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\fwcfg.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\expand.exe
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\EncDump.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\colbact.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\cfgbkend.dll
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\bridgeunattend.exe
    2008-09-19 21:49:30 ----A---- C:\Windows\system32\amstream.dll
    2008-09-19 21:49:29 ----A---- C:\Windows\system32\wsnmp32.dll
    2008-09-19 21:49:29 ----A---- C:\Windows\system32\wmvdspa.dll
    2008-09-19 21:49:29 ----A---- C:\Windows\system32\waitfor.exe
    2008-09-19 21:49:29 ----A---- C:\Windows\system32\vds_ps.dll
    2008-09-19 21:49:29 ----A---- C:\Windows\system32\sti_ci.dll
    2008-09-19 21:49:29 ----A---- C:\Windows\system32\rdrleakdiag.exe
    2008-09-19 21:49:29 ----A---- C:\Windows\system32\msfeedsbs.dll
    2008-09-19 21:49:29 ----A---- C:\Windows\system32\esentutl.exe
    2008-09-19 21:49:29 ----A---- C:\Windows\system32\cmcfg32.dll
    2008-09-19 21:49:29 ----A---- C:\Windows\system32\bootcfg.exe
    2008-09-19 21:49:29 ----A---- C:\Windows\system32\admparse.dll
    2008-09-19 21:49:28 ----A---- C:\Windows\system32\WsmCl.dll
    2008-09-19 21:49:28 ----A---- C:\Windows\system32\wfapigp.dll
    2008-09-19 21:49:28 ----A---- C:\Windows\system32\tabcal.exe
    2008-09-19 21:49:28 ----A---- C:\Windows\system32\shutdown.exe
    2008-09-19 21:49:28 ----A---- C:\Windows\system32\qdv.dll
    2008-09-19 21:49:28 ----A---- C:\Windows\system32\osblprov.dll
    2008-09-19 21:49:28 ----A---- C:\Windows\system32\odbccp32.dll
    2008-09-19 21:49:28 ----A---- C:\Windows\system32\logman.exe
    2008-09-19 21:49:28 ----A---- C:\Windows\system32\iscsium.dll
    2008-09-19 21:49:28 ----A---- C:\Windows\system32\dpnet.dll
    2008-09-19 21:49:28 ----A---- C:\Windows\system32\cacls.exe
    2008-09-19 21:49:27 ----A---- C:\Windows\system32\msdtc.exe
    2008-09-19 21:49:27 ----A---- C:\Windows\system32\DpiScaling.exe
    2008-09-19 21:49:26 ----A---- C:\Windows\system32\wpnpinst.exe
    2008-09-19 21:49:26 ----A---- C:\Windows\system32\wmpcm.dll
    2008-09-19 21:49:26 ----A---- C:\Windows\system32\werdiagcontroller.dll
    2008-09-19 21:49:26 ----A---- C:\Windows\system32\rasauto.dll
    2008-09-19 21:49:26 ----A---- C:\Windows\system32\olethk32.dll
    2008-09-19 21:49:26 ----A---- C:\Windows\system32\olesvr32.dll
    2008-09-19 21:49:26 ----A---- C:\Windows\system32\mstext40.dll
    2008-09-19 21:49:26 ----A---- C:\Windows\system32\mfvdsp.dll
    2008-09-19 21:49:26 ----A---- C:\Windows\system32\iscsiwmi.dll
    2008-09-19 21:49:26 ----A---- C:\Windows\system32\dmsynth.dll
    2008-09-19 21:49:26 ----A---- C:\Windows\system32\COLORCNV.DLL
    2008-09-19 21:49:25 ----A---- C:\Windows\system32\wavemsp.dll
    2008-09-19 21:49:25 ----A---- C:\Windows\system32\ufat.dll
    2008-09-19 21:49:25 ----A---- C:\Windows\system32\sxproxy.dll
    2008-09-19 21:49:25 ----A---- C:\Windows\system32\SLLUA.exe
    2008-09-19 21:49:25 ----A---- C:\Windows\system32\odbctrac.dll
    2008-09-19 21:49:25 ----A---- C:\Windows\system32\networkitemfactory.dll
    2008-09-19 21:49:25 ----A---- C:\Windows\system32\msctfui.dll
    2008-09-19 21:49:25 ----A---- C:\Windows\system32\at.exe
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\xmlprovi.dll
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\WpdConns.dll
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\ucsvc.exe
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\TimeDateMUICallback.dll
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\rgb9rast.dll
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\RegCtrl.dll
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\prevhost.exe
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\mshta.exe
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\mobsync.exe
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\licmgr10.dll
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\itss.dll
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\csrstub.exe
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\convert.exe
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\bitsigd.dll
    2008-09-19 21:49:24 ----A---- C:\Windows\system32\AuthFWGP.dll
    2008-09-19 21:49:23 ----A---- C:\Windows\system32\tbs.dll
    2008-09-19 21:49:23 ----A---- C:\Windows\system32\rasdiag.dll
    2008-09-19 21:49:23 ----A---- C:\Windows\system32\ocsetup.exe
    2008-09-19 21:49:23 ----A---- C:\Windows\system32\netbtugc.exe
    2008-09-19 21:49:23 ----A---- C:\Windows\system32\iscsied.dll
    2008-09-19 21:49:23 ----A---- C:\Windows\system32\GuidedHelp.dll
    2008-09-19 21:49:23 ----A---- C:\Windows\system32\dskquota.dll
    2008-09-19 21:49:23 ----A---- C:\Windows\system32\cscdll.dll
    2008-09-19 21:49:23 ----A---- C:\Windows\system32\AtBroker.exe
    2008-09-19 21:49:22 ----A---- C:\Windows\system32\winnsi.dll
    2008-09-19 21:49:22 ----A---- C:\Windows\system32\unattendedjoin.exe
    2008-09-19 21:49:22 ----A---- C:\Windows\system32\setupcln.dll
    2008-09-19 21:49:22 ----A---- C:\Windows\system32\mydocs.dll
    2008-09-19 21:49:22 ----A---- C:\Windows\system32\l2gpstore.dll
    2008-09-19 21:49:22 ----A---- C:\Windows\system32\fphc.dll
    2008-09-19 21:49:22 ----A---- C:\Windows\system32\dsdmo.dll
    2008-09-19 21:49:22 ----A---- C:\Windows\system32\dmime.dll
    2008-09-19 21:49:22 ----A---- C:\Windows\system32\cmpbk32.dll
    2008-09-19 21:49:21 ----A---- C:\Windows\system32\VIDRESZR.DLL
    2008-09-19 21:49:21 ----A---- C:\Windows\system32\usbui.dll
    2008-09-19 21:49:21 ----A---- C:\Windows\system32\regini.exe
    2008-09-19 21:49:21 ----A---- C:\Windows\system32\odbccu32.dll
    2008-09-19 21:49:21 ----A---- C:\Windows\system32\odbccr32.dll
    2008-09-19 21:49:21 ----A---- C:\Windows\system32\napdsnap.dll
    2008-09-19 21:49:21 ----A---- C:\Windows\system32\msident.dll
    2008-09-19 21:49:21 ----A---- C:\Windows\system32\msdart.dll
    2008-09-19 21:49:21 ----A---- C:\Windows\system32\dot3dlg.dll
    2008-09-19 21:49:21 ----A---- C:\Windows\system32\devenum.dll
    2008-09-19 21:49:21 ----A---- C:\Windows\system32\cmstplua.dll
    2008-09-19 21:49:21 ----A---- C:\Windows\system32\apilogen.dll
    2008-09-19 21:49:21 ----A---- C:\Windows\system32\amxread.dll
    2008-09-19 21:49:20 ----A---- C:\Windows\system32\wpclsp.dll
    2008-09-19 21:49:20 ----A---- C:\Windows\system32\WINSRPC.DLL
    2008-09-19 21:49:20 ----A---- C:\Windows\system32\vss_ps.dll
    2008-09-19 21:49:20 ----A---- C:\Windows\system32\upnpcont.exe
    2008-09-19 21:49:20 ----A---- C:\Windows\system32\srwmi.dll
    2008-09-19 21:49:20 ----A---- C:\Windows\system32\RacAgent.exe
    2008-09-19 21:49:20 ----A---- C:\Windows\system32\nsi.dll
    2008-09-19 21:49:20 ----A---- C:\Windows\system32\nbtstat.exe
    2008-09-19 21:49:20 ----A---- C:\Windows\system32\mtxlegih.dll
    2008-09-19 21:49:20 ----A---- C:\Windows\system32\mtxdm.dll
    2008-09-19 21:49:20 ----A---- C:\Windows\system32\MsCtfMonitor.dll
    2008-09-19 21:49:20 ----A---- C:\Windows\system32\gpupdate.exe
    2008-09-19 21:49:20 ----A---- C:\Windows\system32\avrt.dll
    2008-09-19 21:49:19 ----A---- C:\Windows\system32\wsock32.dll
    2008-09-19 21:49:19 ----A---- C:\Windows\system32\wiarpc.dll
    2008-09-19 21:49:19 ----A---- C:\Windows\system32\WavDest.dll
    2008-09-19 21:49:19 ----A---- C:\Windows\system32\vfwwdm32.dll
    2008-09-19 21:49:19 ----A---- C:\Windows\system32\syskey.exe
    2008-09-19 21:49:19 ----A---- C:\Windows\system32\rasphone.exe
    2008-09-19 21:49:19 ----A---- C:\Windows\system32\odbcbcp.dll
    2008-09-19 21:49:19 ----A---- C:\Windows\system32\netevent.dll
    2008-09-19 21:49:19 ----A---- C:\Windows\system32\msexcl40.dll
    2008-09-19 21:49:19 ----A---- C:\Windows\system32\mfcsubs.dll
    2008-09-19 21:49:19 ----A---- C:\Windows\system32\graftabl.com
    2008-09-19 21:49:18 ----A---- C:\Windows\system32\ROUTE.EXE
    2008-09-19 21:49:18 ----A---- C:\Windows\system32\procinst.dll
    2008-09-19 21:49:18 ----A---- C:\Windows\system32\ndfetw.dll
    2008-09-19 21:49:18 ----A---- C:\Windows\system32\MP3DMOD.DLL
    2008-09-19 21:49:18 ----A---- C:\Windows\system32\extrac32.exe
    2008-09-19 21:49:18 ----A---- C:\Windows\system32\eventcls.dll
    2008-09-19 21:49:18 ----A---- C:\Windows\system32\csrss.exe
    2008-09-19 21:49:17 ----A---- C:\Windows\system32\WlanMmHC.dll
    2008-09-19 21:49:17 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
    2008-09-19 21:49:17 ----A---- C:\Windows\system32\wiadss.dll
    2008-09-19 21:49:17 ----A---- C:\Windows\system32\TabbtnEx.dll
    2008-09-19 21:49:17 ----A---- C:\Windows\system32\psbase.dll
    2008-09-19 21:49:17 ----A---- C:\Windows\system32\inetppui.dll
    2008-09-19 21:49:17 ----A---- C:\Windows\system32\dmscript.dll
    2008-09-19 21:49:17 ----A---- C:\Windows\system32\d3dxof.dll
    2008-09-19 21:49:17 ----A---- C:\Windows\system32\atmfd.dll
    2008-09-19 21:49:16 ----A---- C:\Windows\system32\Tabbtn.dll
    2008-09-19 21:49:16 ----A---- C:\Windows\system32\msxbde40.dll
    2008-09-19 21:49:16 ----A---- C:\Windows\system32\dmloader.dll
    2008-09-19 21:49:16 ----A---- C:\Windows\system32\CertEnrollCtrl.exe
    2008-09-19 21:49:16 ----A---- C:\Windows\fveupdate.exe
    2008-09-19 21:49:15 ----A---- C:\Windows\system32\wshcon.dll
    2008-09-19 21:49:15 ----A---- C:\Windows\system32\Netplwiz.exe
    2008-09-19 21:49:15 ----A---- C:\Windows\system32\mspbde40.dll
    2008-09-19 21:49:15 ----A---- C:\Windows\system32\msltus40.dll
    2008-09-19 21:49:15 ----A---- C:\Windows\system32\icsunattend.exe
    2008-09-19 21:49:15 ----A---- C:\Windows\system32\credssp.dll
    2008-09-19 21:49:14 ----A---- C:\Windows\system32\WsmRes.dll
    2008-09-19 21:49:14 ----A---- C:\Windows\system32\WSHTCPIP.DLL
    2008-09-19 21:49:14 ----A---- C:\Windows\system32\wship6.dll
    2008-09-19 21:49:14 ----A---- C:\Windows\system32\sxsstore.dll
    2008-09-19 21:49:14 ----A---- C:\Windows\system32\PlaySndSrv.dll
    2008-09-19 21:49:14 ----A---- C:\Windows\system32\msvidc32.dll
    2008-09-19 21:49:14 ----A---- C:\Windows\system32\localui.dll
    2008-09-19 21:49:14 ----A---- C:\Windows\system32\lltdapi.dll
    2008-09-19 21:49:14 ----A---- C:\Windows\system32\HotStartUserAgent.dll
    2008-09-19 21:49:14 ----A---- C:\Windows\system32\ComputerDefaults.exe
    2008-09-19 21:49:13 ----A---- C:\Windows\system32\slwga.dll
    2008-09-19 21:49:13 ----A---- C:\Windows\system32\setupSNK.exe
    2008-09-19 21:49:13 ----A---- C:\Windows\system32\sbunattend.exe
    2008-09-19 21:49:13 ----A---- C:\Windows\system32\OptionalFeatures.exe
    2008-09-19 21:49:13 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
    2008-09-19 21:49:13 ----A---- C:\Windows\system32\icaapi.dll
    2008-09-19 21:49:13 ----A---- C:\Windows\system32\dmutil.dll
    2008-09-19 21:49:09 ----A---- C:\Windows\system32\usbperf.dll
    2008-09-19 21:49:09 ----A---- C:\Windows\system32\spopk.dll
    2008-09-19 21:49:09 ----A---- C:\Windows\system32\serialui.dll
    2008-09-19 21:49:09 ----A---- C:\Windows\system32\NcdProp.dll
    2008-09-19 21:49:08 ----A---- C:\Windows\system32\odbcconf.dll
    2008-09-19 21:49:08 ----A---- C:\Windows\system32\cofiredm.dll
    2008-09-19 21:49:07 ----A---- C:\Windows\system32\msfeedssync.exe
    2008-09-19 21:49:07 ----A---- C:\Windows\system32\hbaapi.dll
    2008-09-19 21:49:06 ----A---- C:\Windows\system32\rasctrs.dll
    2008-09-19 21:49:06 ----A---- C:\Windows\system32\msobjs.dll
    2008-09-19 21:49:06 ----A---- C:\Windows\system32\ieencode.dll
    2008-09-19 21:49:06 ----A---- C:\Windows\system32\hnetmon.dll
    2008-09-19 21:49:06 ----A---- C:\Windows\system32\corpol.dll
    2008-09-19 21:49:05 ----A---- C:\Windows\system32\vdmdbg.dll
    2008-09-19 21:49:05 ----A---- C:\Windows\system32\url.dll
    2008-09-19 21:49:05 ----A---- C:\Windows\system32\nlsbres.dll
    2008-09-19 21:49:05 ----A---- C:\Windows\system32\midimap.dll
    2008-09-19 21:49:05 ----A---- C:\Windows\system32\LogonUI.exe
    2008-09-19 21:49:05 ----A---- C:\Windows\system32\iprtprio.dll
    2008-09-19 21:49:05 ----A---- C:\Windows\system32\InfDefaultInstall.exe
    2008-09-19 21:49:05 ----A---- C:\Windows\system32\esentprf.dll
    2008-09-19 21:49:04 ----A---- C:\Windows\system32\sdspres.dll
    2008-09-19 21:49:02 ----A---- C:\Windows\system32\osbaseln.dll
    2008-09-19 21:49:02 ----A---- C:\Windows\system32\cfgmgr32.dll
    2008-09-19 21:49:01 ----A---- C:\Windows\system32\msmmsp.dll
    2008-09-19 21:49:01 ----A---- C:\Windows\system32\msisip.dll
    2008-09-19 21:49:00 ----A---- C:\Windows\system32\winusb.dll
    2008-09-19 21:49:00 ----A---- C:\Windows\system32\dispex.dll
    2008-09-19 21:48:59 ----A---- C:\Windows\system32\rdpcfgex.dll
    2008-09-19 21:48:57 ----A---- C:\Windows\system32\Nlsdl.dll
    2008-09-19 21:48:56 ----A---- C:\Windows\system32\spwmp.dll
    2008-09-19 21:48:56 ----A---- C:\Windows\system32\riched32.dll
    2008-09-19 21:48:56 ----A---- C:\Windows\system32\msidle.dll
    2008-09-19 21:48:56 ----A---- C:\Windows\system32\idndl.dll
    2008-09-19 21:48:54 ----A---- C:\Windows\system32\KBDKOR.DLL
    2008-09-19 21:48:54 ----A---- C:\Windows\system32\KBDJPN.DLL
    2008-09-19 21:48:53 ----A---- C:\Windows\system32\iscsilog.dll
    2008-09-19 21:48:52 ----A---- C:\Windows\system32\wmploc.DLL
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/754972

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice