Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected by FakeSmoke - HJT Log enclosed


  • This topic is locked This topic is locked
2 replies to this topic

#1 Broomers79

Broomers79

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:05:59 AM

Posted 16 July 2009 - 06:54 PM

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:36:48, on 17/07/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Program Files\Dell\DellDock\DellDock.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\WLTRAY.EXE
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehtray.exe
C:\ProgramData\U3\U3Launcher\LaunchU3.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtblfs.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Carl Broomfield\Desktop\RSIT.exe
C:\Program Files\trend micro\Carl Broomfield.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/USCON/2
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\Windows\system32\WLTRAY.exe
O4 - HKLM\..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\QuickSet.exe
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe" /mode2
O4 - HKLM\..\Run: [dellsupportcenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P dellsupportcenter
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [O2Start] C:\Program Files\O2CM-CE\O2 Connection Manager\tscui.exe /s
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user')
O4 - Startup: Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe
O4 - Startup: ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE
O4 - Startup: MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe
O4 - Global Startup: LaunchU3.exe.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: &Virtual keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll
O13 - Gopher Prefix:
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/...can8/oscan8.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{30F50F2E-F497-4EA5-9000-21460AD49D74}: NameServer = 85.255.112.78,85.255.112.12
O17 - HKLM\System\CCS\Services\Tcpip\..\{F9505C86-D55A-47DC-B35B-BEA2184F3494}: NameServer = 85.255.112.78,85.255.112.12
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.112.78,85.255.112.12
O17 - HKLM\System\CS1\Services\Tcpip\..\{30F50F2E-F497-4EA5-9000-21460AD49D74}: NameServer = 85.255.112.78,85.255.112.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.112.78,85.255.112.12
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O20 - Winlogon Notify: GoToAssist - C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\aestsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GoToAssist - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\STacSV.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\Windows\System32\WLTRYSVC.EXE

--
End of file - 11031 bytes

======Scheduled tasks folder======

C:\Windows\tasks\User_Feed_Synchronization-{86F853BD-B96C-4CC8-A7DA-EA6F0467732B}.job
C:\Windows\tasks\{5B57CF47-0BFA-43c6-ACF9-3B3653DCADBA}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\ievkbd.dll [2009-05-25 68112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-03-30 403824]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-15 41368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\klwtbbho.dll [2009-05-25 264720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-12-01 1422632]
"Broadcom Wireless Manager UI"=C:\Windows\system32\WLTRAY.exe [2008-12-22 3810304]
"QuickSet"=C:\Program Files\Dell\QuickSet\QuickSet.exe [2008-09-26 1664280]
"PDVDDXSrv"=C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [2008-05-23 128296]
"Dell Webcam Central"=C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe [2008-11-11 442536]
"dellsupportcenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2008-10-04 206064]
"WinPatrol"=C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [2009-06-01 341312]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2008-12-01 150040]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2008-12-01 178712]
"Persistence"=C:\Windows\system32\igfxpers.exe [2008-12-01 154136]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-06-05 292136]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2009-03-16 483428]
"O2Start"=C:\Program Files\O2CM-CE\O2 Connection Manager\tscui.exe [2009-06-05 2973696]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-15 148888]
"PWRISOVM.EXE"=C:\Program Files\PowerISO\PWRISOVM.EXE [2009-03-15 180224]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2009-07-13 414992]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVP]
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [2009-05-25 303376]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
LaunchU3.exe.lnk - C:\Windows\Installer\{D8E363A7-88B7-446D-B2C0-E26CE4DC8E54}\_294823.exe

C:\Users\Carl Broomfield\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dell Dock.lnk - C:\Program Files\Dell\DellDock\DellDock.exe
ERUNT AutoBackup.lnk - C:\Program Files\ERUNT\AUTOBACK.EXE
MagicDisc.lnk - C:\Program Files\MagicDisc\MagicDisc.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\GoToAssist]
C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll [2009-04-17 10536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2008-12-01 221184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\system32\klogon.dll [2009-05-25 219664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\GoToAssist]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
shell\AutoRun\command - F:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\G]
shell\AutoRun\command - G:\AUTORUN.EXE

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{08bf9133-5a5d-11de-afee-002219ea982c}]
shell\AutoRun\command - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL RECYCLER\S-6-2-83-100006777-100025010-100029495-1714.com j:\
shell\Open\command - RECYCLER\S-6-2-83-100006777-100025010-100029495-1714.com j:\

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{08bf9138-5a5d-11de-afee-002219ea982c}]
shell\AutoRun\command - I:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{27ee6f30-5605-11de-a6c5-002219ea982c}]
shell\AutoRun\command - F:\AUTORUN.EXE

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{27ee6fb8-5605-11de-a6c5-002219ea982c}]
shell\AutoRun\command - F:\AUTORUN.EXE

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7e98a24a-5697-11de-b223-002219ea982c}]
shell\AutoRun\command - F:\AUTORUN.EXE

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{924755df-58db-11de-b891-002219ea982c}]
shell\AutoRun\command - G:\AUTORUN.EXE

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{924755f3-58db-11de-b891-002219ea982c}]
shell\AutoRun\command - F:\AUTORUN.EXE

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{befb0ad2-58df-11de-b95c-002219ea982c}]
shell\AutoRun\command - F:\AUTORUN.EXE

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{befb0b56-58df-11de-b95c-002219ea982c}]
shell\AutoRun\command - G:\AUTORUN.EXE


======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2009-12-26 08:25:35 ----A---- C:\Windows\5db1th9ef9z5.exe
2009-12-23 06:27:50 ----A---- C:\Windows\system32\393fdowz9oad5r1334.dll
2009-12-20 06:20:27 ----A---- C:\Windows\system32\zc85s9arse2225.dll
2009-12-16 01:30:22 ----A---- C:\Windows\system32\25485virz92e7.exe
2009-12-14 22:51:00 ----A---- C:\Windows\system32\zcb09pars51248.exe
2009-12-13 09:24:03 ----A---- C:\Windows\d95ir3z69.dll
2009-12-10 23:22:06 ----A---- C:\Windows\system32\954cs5ezl3105.dll
2009-12-10 18:01:48 ----A---- C:\Windows\system32\5569pyccz.dll
2009-12-08 09:23:02 ----A---- C:\Windows\system32\z3496spy5555.exe
2009-11-24 09:56:40 ----A---- C:\Windows\5554worz569.dll
2009-11-20 21:29:01 ----A---- C:\Windows\4d95sp9rse11z1.dll
2009-11-15 14:47:59 ----A---- C:\Windows\417zack9ool4bd5.dll
2009-11-13 04:50:51 ----A---- C:\Windows\32384w5rm6ze9.dll
2009-11-09 03:47:26 ----A---- C:\Windows\system32\zba1steal5942.exe
2009-11-02 03:33:10 ----A---- C:\Windows\9252hackto9z786.dll
2009-10-28 20:24:40 ----A---- C:\Windows\system32\6818backd5or3z99.exe
2009-10-27 16:27:32 ----A---- C:\Windows\9599tzal89.dll
2009-10-26 20:15:32 ----A---- C:\Windows\system32\3951downloader257z.dll
2009-10-22 11:22:46 ----A---- C:\Windows\system32\59730virzs41c.dll
2009-10-16 21:14:15 ----A---- C:\Windows\system32\59zcsparse1715.exe
2009-10-16 17:40:21 ----A---- C:\Windows\50993viruz6b0.exe
2009-10-11 13:37:26 ----A---- C:\Windows\1919thrzat7659.dll
2009-10-08 19:44:34 ----A---- C:\Windows\10598spazbot41b.exe
2009-10-04 11:32:32 ----A---- C:\Windows\9z89vi9us6a5.dll
2009-10-04 00:03:51 ----A---- C:\Windows\system32\92555pamzot3cf.exe
2009-10-02 11:10:03 ----A---- C:\Windows\25919spambot5zc.exe
2009-09-26 20:52:35 ----A---- C:\Windows\system32\z596not-5-vi9us55e.exe
2009-09-21 21:32:47 ----A---- C:\Windows\system32\98fbspyzar52443.exe
2009-09-19 01:37:05 ----A---- C:\Windows\system32\6758thie91320z.dll
2009-09-15 09:54:24 ----A---- C:\Windows\system32\540b5ir2955z.exe
2009-09-14 23:20:45 ----A---- C:\Windows\system32\569fstezl1540.exe
2009-09-09 13:11:58 ----A---- C:\Windows\32517vi9zs5ae.exe
2009-09-08 07:31:17 ----A---- C:\Windows\system32\29265not-a-v5rzs72d.dll
2009-09-05 03:49:20 ----A---- C:\Windows\28579s9amboz755.dll
2009-09-04 21:13:03 ----A---- C:\Windows\75z1spywar910555.dll
2009-09-04 11:56:15 ----A---- C:\Windows\9359addwzre176.exe
2009-09-02 21:17:30 ----A---- C:\Windows\system32\19852spambotzb9.dll
2009-09-01 06:38:01 ----A---- C:\Windows\80z8spy59e.exe
2009-08-26 17:10:57 ----A---- C:\Windows\27119zack9ool95.exe
2009-08-25 18:39:42 ----A---- C:\Windows\system32\2997addzare92725.dll
2009-08-21 06:54:09 ----A---- C:\Windows\5z519tea53103.exe
2009-08-15 05:56:30 ----A---- C:\Windows\62a8ba5zdoor339.dll
2009-08-09 14:35:25 ----A---- C:\Windows\925vzr1959.dll
2009-08-09 02:35:11 ----A---- C:\Windows\system32\3509zpy2f19.exe
2009-08-07 06:55:54 ----A---- C:\Windows\28497worm9z5.exe
2009-08-06 21:07:43 ----A---- C:\Windows\18150wo9mz3c.dll
2009-08-05 12:58:59 ----A---- C:\Windows\system32\fzas5a9se2910.dll
2009-08-05 02:49:57 ----A---- C:\Windows\system32\1bb89hz5f2971.dll
2009-08-01 17:42:09 ----A---- C:\Windows\z5215virus7e69.exe
2009-07-28 21:26:55 ----A---- C:\Windows\system32\75dbzteal957.exe
2009-07-26 19:29:42 ----A---- C:\Windows\7190v5ru94zd.exe
2009-07-23 19:05:18 ----A---- C:\Windows\system32\1ccbdowz5oader1079.dll
2009-07-23 05:08:33 ----A---- C:\Windows\system32\39550spambot5z.dll
2009-07-17 00:36:36 ----D---- C:\rsit
2009-07-17 00:33:53 ----D---- C:\ProgramData\Malwarebytes
2009-07-17 00:33:53 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-07-17 00:18:09 ----D---- C:\Windows\ERDNT
2009-07-17 00:17:50 ----D---- C:\Program Files\ERUNT
2009-07-16 23:59:46 ----D---- C:\Windows\BDOSCAN8
2009-07-16 23:38:47 ----D---- C:\Program Files\Trend Micro
2009-07-16 22:53:11 ----D---- C:\Program Files\MagicDisc
2009-07-16 22:40:33 ----D---- C:\Program Files\PowerISO
2009-07-16 21:12:45 ----D---- C:\Windows\Sun
2009-07-16 21:05:19 ----A---- C:\Windows\system32\z6559spam5ot42a.dll
2009-07-16 21:05:19 ----A---- C:\Windows\system32\5001spy5z9e2040.dll
2009-07-16 21:05:19 ----A---- C:\Windows\system32\1902s5arse1z95.exe
2009-07-16 21:05:19 ----A---- C:\Windows\59035zrm60c9.dll
2009-07-16 21:05:19 ----A---- C:\Windows\3e98backdoorz519.exe
2009-07-16 21:05:19 ----A---- C:\Windows\2z974spambot585.dll
2009-07-16 21:05:19 ----A---- C:\Windows\23195zot-a-virus59b.dll
2009-07-16 21:05:18 ----A---- C:\Windows\system32\9750do5nloaderz564.exe
2009-07-16 21:05:18 ----A---- C:\Windows\system32\739dowzloader855.exe
2009-07-16 21:05:18 ----A---- C:\Windows\53b0thre9t27z09.dll
2009-07-16 21:05:18 ----A---- C:\Windows\15877not-a-viruz5b9.dll
2009-07-16 21:05:17 ----A---- C:\Windows\zda5down5oader9362.dll
2009-07-16 21:05:17 ----A---- C:\Windows\system32\zc5f5pywa9e1017.exe
2009-07-16 21:05:17 ----A---- C:\Windows\system32\z17fbackd5o92796.exe
2009-07-16 21:05:17 ----A---- C:\Windows\system32\z0c5thie95950.exe
2009-07-16 21:05:17 ----A---- C:\Windows\system32\9699szy535.dll
2009-07-16 21:05:17 ----A---- C:\Windows\system32\7819vi5z88.exe
2009-07-16 21:05:17 ----A---- C:\Windows\system32\75f3spywa9z375.exe
2009-07-16 21:05:17 ----A---- C:\Windows\system32\7228b5ckz9or157.exe
2009-07-16 21:05:17 ----A---- C:\Windows\system32\704cspa9sez527.dll
2009-07-16 21:05:17 ----A---- C:\Windows\system32\6zd2spar9e591.dll
2009-07-16 21:05:17 ----A---- C:\Windows\system32\554a9ir314z.dll
2009-07-16 21:05:17 ----A---- C:\Windows\system32\39709izus1d45.dll
2009-07-16 21:05:17 ----A---- C:\Windows\system32\3544s59mbot62ez.exe
2009-07-16 21:05:17 ----A---- C:\Windows\system32\353959rzj159.dll
2009-07-16 21:05:17 ----A---- C:\Windows\system32\2cz59hre5t5637.exe
2009-07-16 21:05:17 ----A---- C:\Windows\system32\2758steal1829z.dll
2009-07-16 21:05:17 ----A---- C:\Windows\system32\195zhief175.exe
2009-07-16 21:05:17 ----A---- C:\Windows\system32\15fbste5l99z.dll
2009-07-16 21:05:17 ----A---- C:\Windows\965z5hackt5ol564.exe
2009-07-16 21:05:17 ----A---- C:\Windows\957bthreat21147z.dll
2009-07-16 21:05:17 ----A---- C:\Windows\948z7not-a-v5rus3dc.exe
2009-07-16 21:05:17 ----A---- C:\Windows\929add5zre550.dll
2009-07-16 21:05:17 ----A---- C:\Windows\6zbaddw5r91049.dll
2009-07-16 21:05:17 ----A---- C:\Windows\69fthr5at26341z.dll
2009-07-16 21:05:17 ----A---- C:\Windows\6597thizf9908.dll
2009-07-16 21:05:17 ----A---- C:\Windows\6285wozm95c.dll
2009-07-16 21:05:17 ----A---- C:\Windows\5be79hief2z5.dll
2009-07-16 21:05:17 ----A---- C:\Windows\59dz9ief2386.exe
2009-07-16 21:05:17 ----A---- C:\Windows\55not-a-vzr9s87.dll
2009-07-16 21:05:17 ----A---- C:\Windows\54891not-a-v9rzs632.dll
2009-07-16 21:05:17 ----A---- C:\Windows\494eszeal1855.exe
2009-07-16 21:05:17 ----A---- C:\Windows\350fzhre9t1593.dll
2009-07-16 21:05:17 ----A---- C:\Windows\342z9o5-a-virus5cc.exe
2009-07-16 21:05:17 ----A---- C:\Windows\2z654spambot393.dll
2009-07-16 21:05:17 ----A---- C:\Windows\29z04viru5161.dll
2009-07-16 21:05:17 ----A---- C:\Windows\2996w5rz277.exe
2009-07-16 21:05:17 ----A---- C:\Windows\2960z5py11e.dll
2009-07-16 21:05:17 ----A---- C:\Windows\1f8zvir55449.dll
2009-07-16 20:39:56 ----D---- C:\ProgramData\Kaspersky Lab
2009-07-16 20:39:55 ----D---- C:\Program Files\Kaspersky Lab
2009-07-16 20:36:06 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2009-07-16 19:40:04 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Roxio
2009-07-16 19:40:04 ----D---- C:\ProgramData\Roxio
2009-07-15 23:07:55 ----A---- C:\Windows\system32\1b40v9r507z.exe
2009-07-15 21:20:31 ----A---- C:\Windows\system32\javaws.exe
2009-07-15 21:20:31 ----A---- C:\Windows\system32\javaw.exe
2009-07-15 21:20:31 ----A---- C:\Windows\system32\java.exe
2009-07-15 19:32:32 ----A---- C:\Windows\system32\t2embed.dll
2009-07-15 19:32:32 ----A---- C:\Windows\system32\lpk.dll
2009-07-15 19:32:32 ----A---- C:\Windows\system32\fontsub.dll
2009-07-15 19:32:32 ----A---- C:\Windows\system32\dciman32.dll
2009-07-15 19:32:32 ----A---- C:\Windows\system32\atmfd.dll
2009-07-14 16:29:50 ----SHD---- C:\Diskeeper
2009-07-14 13:45:51 ----D---- C:\Program Files\meta-iPod, the iTunes Cleaner
2009-07-14 11:02:19 ----D---- C:\Program Files\Common Files\Diskeeper Corporation
2009-07-14 11:02:18 ----D---- C:\ProgramData\Diskeeper Corporation
2009-07-14 11:02:18 ----D---- C:\Program Files\Diskeeper Corporation
2009-07-14 08:35:20 ----A---- C:\Windows\1fb0s9arsz3570.dll
2009-07-13 19:27:29 ----D---- C:\Program Files\CCleaner
2009-07-11 14:27:19 ----D---- C:\ProgramData\Novatel Wireless
2009-07-09 15:12:15 ----A---- C:\Windows\system32\172995ot-a-virusz2e.dll
2009-07-09 03:41:32 ----A---- C:\Windows\10ccz9r159.exe
2009-07-05 11:07:39 ----A---- C:\Windows\system32\5892adzw9re1987.exe
2009-07-05 08:04:24 ----A---- C:\Windows\256009py10az.exe
2009-07-04 08:06:03 ----A---- C:\Windows\system32\25691s9yz95.exe
2009-07-02 16:56:39 ----A---- C:\Windows\system32\3315spywz9e344.exe
2009-07-02 12:45:17 ----A---- C:\Windows\26z95tro9745.exe
2009-06-28 15:37:45 ----A---- C:\Windows\system32\5z72downloader2859.dll
2009-06-26 08:38:46 ----D---- C:\Windows\Minidump
2009-06-25 08:50:08 ----A---- C:\Windows\system32\9555zworm521.exe
2009-06-24 22:22:01 ----D---- C:\ProgramData\U3
2009-06-21 20:01:51 ----D---- C:\Program Files\Tiscali
2009-06-19 14:22:27 ----A---- C:\Windows\33e3zownloade529209.dll
2009-06-19 09:30:32 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\temp
2009-06-19 09:23:55 ----A---- C:\Windows\system32\D3DX9_39.dll
2009-06-19 09:23:54 ----A---- C:\Windows\system32\d3dx9_30.dll
2009-06-19 09:10:11 ----D---- C:\Program Files\EA SPORTS
2009-06-17 01:41:56 ----D---- C:\ProgramData\FLEXnet
2009-06-17 01:08:13 ----D---- C:\Program Files\Common Files\Macrovision Shared
2009-06-16 22:32:56 ----A---- C:\Windows\system32\19558hzcktool159.dll
2009-06-16 11:07:02 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\U3
2009-06-15 01:05:24 ----A---- C:\Windows\8966vizus505.dll
2009-06-14 20:09:10 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Nero
2009-06-12 18:12:57 ----A---- C:\Windows\zb1spars92578.exe
2009-06-12 16:55:08 ----A---- C:\Windows\9a5cthief28z6.exe
2009-06-12 10:27:37 ----D---- C:\ProgramData\WinZip
2009-06-12 10:27:30 ----D---- C:\Program Files\WinZip
2009-06-12 02:33:45 ----D---- C:\Windows\system32\eu-ES
2009-06-12 02:33:45 ----D---- C:\Windows\system32\ca-ES
2009-06-12 02:33:44 ----D---- C:\Windows\system32\vi-VN
2009-06-12 02:11:33 ----D---- C:\Windows\system32\EventProviders
2009-06-12 02:10:07 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2009-06-12 02:10:04 ----A---- C:\Windows\system32\SLsvc.exe
2009-06-12 02:10:04 ----A---- C:\Windows\system32\SLCExt.dll
2009-06-12 02:10:01 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2009-06-12 02:10:01 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2009-06-12 02:10:00 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2009-06-12 02:09:57 ----A---- C:\Windows\system32\mssrch.dll
2009-06-12 02:09:55 ----A---- C:\Windows\system32\tquery.dll
2009-06-12 02:09:54 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2009-06-12 02:09:53 ----A---- C:\Windows\system32\RMActivate_isv.exe
2009-06-12 02:09:53 ----A---- C:\Windows\system32\lsasrv.dll
2009-06-12 02:09:52 ----A---- C:\Windows\system32\scavenge.dll
2009-06-12 02:09:52 ----A---- C:\Windows\system32\RMActivate.exe
2009-06-12 02:09:52 ----A---- C:\Windows\system32\msi.dll
2009-06-12 02:09:51 ----A---- C:\Windows\system32\imapi2fs.dll
2009-06-12 02:09:50 ----A---- C:\Windows\system32\WscEapPr.dll
2009-06-12 02:09:50 ----A---- C:\Windows\system32\wcnwiz2.dll
2009-06-12 02:09:50 ----A---- C:\Windows\system32\secproc_isv.dll
2009-06-12 02:09:49 ----A---- C:\Windows\system32\sysmain.dll
2009-06-12 02:09:48 ----A---- C:\Windows\system32\mf.dll
2009-06-12 02:09:48 ----A---- C:\Windows\system32\icardagt.exe
2009-06-12 02:09:47 ----A---- C:\Windows\system32\EhStorShell.dll
2009-06-12 02:09:47 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2009-06-12 02:09:45 ----A---- C:\Windows\system32\spreview.exe
2009-06-12 02:09:45 ----A---- C:\Windows\system32\spinstall.exe
2009-06-12 02:09:45 ----A---- C:\Windows\system32\drmv2clt.dll
2009-06-12 02:09:44 ----A---- C:\Windows\system32\spwizui.dll
2009-06-12 02:09:44 ----A---- C:\Windows\system32\shell32.dll
2009-06-12 02:09:44 ----A---- C:\Windows\system32\secproc.dll
2009-06-12 02:09:44 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2009-06-12 02:09:43 ----A---- C:\Windows\system32\SearchIndexer.exe
2009-06-12 02:09:43 ----A---- C:\Windows\system32\p2psvc.dll
2009-06-12 02:09:42 ----A---- C:\Windows\system32\mssvp.dll
2009-06-12 02:09:41 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2009-06-12 02:09:41 ----A---- C:\Windows\system32\mscoree.dll
2009-06-12 02:09:40 ----A---- C:\Windows\system32\mssphtb.dll
2009-06-12 02:09:40 ----A---- C:\Windows\system32\mssph.dll
2009-06-12 02:09:40 ----A---- C:\Windows\system32\imapi2.dll
2009-06-12 02:09:39 ----A---- C:\Windows\system32\sdohlp.dll
2009-06-12 02:09:39 ----A---- C:\Windows\system32\ntkrnlpa.exe
2009-06-12 02:09:39 ----A---- C:\Windows\system32\esent.dll
2009-06-12 02:09:38 ----A---- C:\Windows\system32\sperror.dll
2009-06-12 02:09:38 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2009-06-12 02:09:38 ----A---- C:\Windows\system32\IMJP10K.DLL
2009-06-12 02:09:38 ----A---- C:\Windows\system32\DevicePairing.dll
2009-06-12 02:09:37 ----A---- C:\Windows\system32\wevtsvc.dll
2009-06-12 02:09:37 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2009-06-12 02:09:37 ----A---- C:\Windows\system32\korwbrkr.dll
2009-06-12 02:09:36 ----A---- C:\Windows\system32\SLC.dll
2009-06-12 02:09:36 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2009-06-12 02:09:36 ----A---- C:\Windows\system32\msshsq.dll
2009-06-12 02:09:36 ----A---- C:\Windows\system32\IasMigReader.exe
2009-06-12 02:09:35 ----A---- C:\Windows\system32\WMVCORE.DLL
2009-06-12 02:09:35 ----A---- C:\Windows\system32\wmp.dll
2009-06-12 02:09:34 ----A---- C:\Windows\system32\msjet40.dll
2009-06-12 02:09:34 ----A---- C:\Windows\system32\MPSSVC.dll
2009-06-12 02:09:33 ----A---- C:\Windows\system32\Query.dll
2009-06-12 02:09:33 ----A---- C:\Windows\system32\ntoskrnl.exe
2009-06-12 02:09:33 ----A---- C:\Windows\system32\msxml6.dll
2009-06-12 02:09:32 ----A---- C:\Windows\system32\qmgr.dll
2009-06-12 02:09:32 ----A---- C:\Windows\system32\msexch40.dll
2009-06-12 02:09:32 ----A---- C:\Windows\system32\diagperf.dll
2009-06-12 02:09:31 ----A---- C:\Windows\system32\P2PGraph.dll
2009-06-12 02:09:31 ----A---- C:\Windows\system32\ole32.dll
2009-06-12 02:09:31 ----A---- C:\Windows\system32\ntdll.dll
2009-06-12 02:09:30 ----A---- C:\Windows\system32\winload.exe
2009-06-12 02:09:30 ----A---- C:\Windows\system32\srchadmin.dll
2009-06-12 02:09:30 ----A---- C:\Windows\system32\msxml3.dll
2009-06-12 02:09:30 ----A---- C:\Windows\system32\mblctr.exe
2009-06-12 02:09:30 ----A---- C:\Windows\system32\EncDec.dll
2009-06-12 02:09:29 ----A---- C:\Windows\system32\uDWM.dll
2009-06-12 02:09:29 ----A---- C:\Windows\system32\riched20.dll
2009-06-12 02:09:29 ----A---- C:\Windows\system32\mmc.exe
2009-06-12 02:09:29 ----A---- C:\Windows\system32\IasMigPlugin.dll
2009-06-12 02:09:29 ----A---- C:\Windows\system32\dfsr.exe
2009-06-12 02:09:28 ----A---- C:\Windows\system32\RacEngn.dll
2009-06-12 02:09:28 ----A---- C:\Windows\system32\fdBth.dll
2009-06-12 02:09:27 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2009-06-12 02:09:27 ----A---- C:\Windows\system32\SearchFilterHost.exe
2009-06-12 02:09:27 ----A---- C:\Windows\system32\milcore.dll
2009-06-12 02:09:27 ----A---- C:\Windows\system32\kernel32.dll
2009-06-12 02:09:27 ----A---- C:\Windows\system32\EhStorAPI.dll
2009-06-12 02:09:27 ----A---- C:\Windows\system32\CertEnroll.dll
2009-06-12 02:09:26 ----A---- C:\Windows\system32\spoolss.dll
2009-06-12 02:09:26 ----A---- C:\Windows\system32\schedsvc.dll
2009-06-12 02:09:26 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2009-06-12 02:09:24 ----A---- C:\Windows\system32\msvcp60.dll
2009-06-12 02:09:24 ----A---- C:\Windows\system32\msjtes40.dll
2009-06-12 02:09:24 ----A---- C:\Windows\system32\infocardapi.dll
2009-06-12 02:09:24 ----A---- C:\Windows\system32\gpedit.dll
2009-06-12 02:09:24 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2009-06-12 02:09:23 ----A---- C:\Windows\system32\WinSAT.exe
2009-06-12 02:09:22 ----A---- C:\Windows\system32\PresentationSettings.exe
2009-06-12 02:09:22 ----A---- C:\Windows\system32\mstext40.dll
2009-06-12 02:09:22 ----A---- C:\Windows\system32\Magnify.exe
2009-06-12 02:09:22 ----A---- C:\Windows\system32\es.dll
2009-06-12 02:09:22 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2009-06-12 02:09:21 ----A---- C:\Windows\system32\advapi32.dll
2009-06-12 02:09:19 ----A---- C:\Windows\system32\WMPhoto.dll
2009-06-12 02:09:19 ----A---- C:\Windows\system32\WebClnt.dll
2009-06-12 02:09:19 ----A---- C:\Windows\system32\slwmi.dll
2009-06-12 02:09:19 ----A---- C:\Windows\system32\msxbde40.dll
2009-06-12 02:09:19 ----A---- C:\Windows\system32\msexcl40.dll
2009-06-12 02:09:19 ----A---- C:\Windows\system32\comsvcs.dll
2009-06-12 02:09:18 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2009-06-12 02:09:18 ----A---- C:\Windows\system32\vssapi.dll
2009-06-12 02:09:18 ----A---- C:\Windows\system32\authui.dll
2009-06-12 02:09:17 ----A---- C:\Windows\system32\NetProjW.dll
2009-06-12 02:09:17 ----A---- C:\Windows\system32\mstscax.dll
2009-06-12 02:09:16 ----A---- C:\Windows\system32\propsys.dll
2009-06-12 02:09:16 ----A---- C:\Windows\system32\PresentationHost.exe
2009-06-12 02:09:16 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-06-12 02:09:16 ----A---- C:\Windows\system32\newdev.dll
2009-06-12 02:09:16 ----A---- C:\Windows\system32\msrepl40.dll
2009-06-12 02:09:16 ----A---- C:\Windows\system32\iasrecst.dll
2009-06-12 02:09:15 ----A---- C:\Windows\system32\rpcss.dll
2009-06-12 02:09:15 ----A---- C:\Windows\system32\gpsvc.dll
2009-06-12 02:09:15 ----A---- C:\Windows\system32\eudcedit.exe
2009-06-12 02:09:15 ----A---- C:\Windows\system32\crypt32.dll
2009-06-12 02:09:15 ----A---- C:\Windows\explorer.exe
2009-06-12 02:09:14 ----A---- C:\Windows\system32\setupapi.dll
2009-06-12 02:09:13 ----A---- C:\Windows\system32\mspbde40.dll
2009-06-12 02:09:13 ----A---- C:\Windows\system32\d3d9.dll
2009-06-12 02:09:12 ----A---- C:\Windows\system32\shlwapi.dll
2009-06-12 02:09:12 ----A---- C:\Windows\system32\msltus40.dll
2009-06-12 02:09:12 ----A---- C:\Windows\system32\mfc42.dll
2009-06-12 02:09:12 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2009-06-12 02:09:12 ----A---- C:\Windows\system32\EhStorAuthn.dll
2009-06-12 02:09:12 ----A---- C:\Windows\system32\davclnt.dll
2009-06-12 02:09:11 ----A---- C:\Windows\system32\wevtapi.dll
2009-06-12 02:09:11 ----A---- C:\Windows\system32\msrd3x40.dll
2009-06-12 02:09:11 ----A---- C:\Windows\system32\msdtctm.dll
2009-06-12 02:09:11 ----A---- C:\Windows\system32\browseui.dll
2009-06-12 02:09:10 ----A---- C:\Windows\system32\user32.dll
2009-06-12 02:09:10 ----A---- C:\Windows\system32\photowiz.dll
2009-06-12 02:09:10 ----A---- C:\Windows\system32\nlhtml.dll
2009-06-12 02:09:09 ----A---- C:\Windows\system32\samsrv.dll
2009-06-12 02:09:09 ----A---- C:\Windows\system32\quartz.dll
2009-06-12 02:09:09 ----A---- C:\Windows\system32\ci.dll
2009-06-12 02:09:08 ----A---- C:\Windows\system32\win32spl.dll
2009-06-12 02:09:08 ----A---- C:\Windows\system32\WcnNetsh.dll
2009-06-12 02:09:08 ----A---- C:\Windows\system32\SLCommDlg.dll
2009-06-12 02:09:08 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-06-12 02:09:08 ----A---- C:\Windows\system32\oleaut32.dll
2009-06-12 02:09:08 ----A---- C:\Windows\system32\kerberos.dll
2009-06-12 02:09:07 ----A---- C:\Windows\system32\netshell.dll
2009-06-12 02:09:07 ----A---- C:\Windows\system32\msv1_0.dll
2009-06-12 02:09:07 ----A---- C:\Windows\system32\IKEEXT.DLL
2009-06-12 02:09:07 ----A---- C:\Windows\system32\compcln.exe
2009-06-12 02:09:07 ----A---- C:\Windows\system32\apds.dll
2009-06-12 02:09:06 ----A---- C:\Windows\system32\xmlfilter.dll
2009-06-12 02:09:06 ----A---- C:\Windows\system32\winhttp.dll
2009-06-12 02:09:06 ----A---- C:\Windows\system32\mswstr10.dll
2009-06-12 02:09:06 ----A---- C:\Windows\system32\msctf.dll
2009-06-12 02:09:06 ----A---- C:\Windows\system32\emdmgmt.dll
2009-06-12 02:09:06 ----A---- C:\Windows\system32\audiosrv.dll
2009-06-12 02:09:05 ----A---- C:\Windows\system32\VSSVC.exe
2009-06-12 02:09:05 ----A---- C:\Windows\system32\QAGENTRT.DLL
2009-06-12 02:09:05 ----A---- C:\Windows\system32\msvcrt.dll
2009-06-12 02:09:05 ----A---- C:\Windows\system32\gdi32.dll
2009-06-12 02:09:04 ----A---- C:\Windows\system32\sqlsrv32.dll
2009-06-12 02:09:04 ----A---- C:\Windows\system32\SLUI.exe
2009-06-12 02:09:04 ----A---- C:\Windows\system32\msrd2x40.dll
2009-06-12 02:09:04 ----A---- C:\Windows\system32\mfc42u.dll
2009-06-12 02:09:04 ----A---- C:\Windows\system32\iphlpsvc.dll
2009-06-12 02:09:04 ----A---- C:\Windows\system32\eapphost.dll
2009-06-12 02:09:03 ----A---- C:\Windows\system32\winresume.exe
2009-06-12 02:09:03 ----A---- C:\Windows\system32\propdefs.dll
2009-06-12 02:09:03 ----A---- C:\Windows\system32\odbc32.dll
2009-06-12 02:09:02 ----A---- C:\Windows\system32\shdocvw.dll
2009-06-12 02:09:01 ----A---- C:\Windows\system32\dbgeng.dll
2009-06-12 02:09:00 ----A---- C:\Windows\system32\wevtutil.exe
2009-06-12 02:09:00 ----A---- C:\Windows\system32\mssitlb.dll
2009-06-12 02:08:59 ----A---- C:\Windows\system32\WsmSvc.dll
2009-06-12 02:08:59 ----A---- C:\Windows\system32\swprv.dll
2009-06-12 02:08:59 ----A---- C:\Windows\system32\mmcndmgr.dll
2009-06-12 02:08:58 ----A---- C:\Windows\system32\vds.exe
2009-06-12 02:08:58 ----A---- C:\Windows\system32\usp10.dll
2009-06-12 02:08:58 ----A---- C:\Windows\system32\drvinst.exe
2009-06-12 02:08:58 ----A---- C:\Windows\system32\devmgr.dll
2009-06-12 02:08:57 ----A---- C:\Windows\system32\schannel.dll
2009-06-12 02:08:57 ----A---- C:\Windows\system32\netlogon.dll
2009-06-12 02:08:57 ----A---- C:\Windows\system32\msscb.dll
2009-06-12 02:08:57 ----A---- C:\Windows\system32\msctfp.dll
2009-06-12 02:08:57 ----A---- C:\Windows\system32\fdBthProxy.dll
2009-06-12 02:08:57 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2009-06-12 02:08:57 ----A---- C:\Windows\system32\BFE.DLL
2009-06-12 02:08:57 ----A---- C:\Windows\system32\adsldpc.dll
2009-06-12 02:08:56 ----A---- C:\Windows\system32\WSDApi.dll
2009-06-12 02:08:56 ----A---- C:\Windows\system32\Wldap32.dll
2009-06-12 02:08:56 ----A---- C:\Windows\system32\wcnwiz.dll
2009-06-12 02:08:56 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2009-06-12 02:08:56 ----A---- C:\Windows\system32\evr.dll
2009-06-12 02:08:55 ----A---- C:\Windows\system32\WMVSDECD.DLL
2009-06-12 02:08:55 ----A---- C:\Windows\system32\WindowsCodecs.dll
2009-06-12 02:08:54 ----A---- C:\Windows\system32\wercon.exe
2009-06-12 02:08:54 ----A---- C:\Windows\system32\services.exe
2009-06-12 02:08:54 ----A---- C:\Windows\system32\comdlg32.dll
2009-06-12 02:08:54 ----A---- C:\Windows\system32\adtschema.dll
2009-06-12 02:08:53 ----A---- C:\Windows\system32\wcncsvc.dll
2009-06-12 02:08:53 ----A---- C:\Windows\system32\taskeng.exe
2009-06-12 02:08:53 ----A---- C:\Windows\system32\reg.exe
2009-06-12 02:08:53 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2009-06-12 02:08:53 ----A---- C:\Windows\system32\mswdat10.dll
2009-06-12 02:08:53 ----A---- C:\Windows\system32\msjter40.dll
2009-06-12 02:08:53 ----A---- C:\Windows\system32\msdtcprx.dll
2009-06-12 02:08:53 ----A---- C:\Windows\system32\msdrm.dll
2009-06-12 02:08:53 ----A---- C:\Windows\system32\mimefilt.dll
2009-06-12 02:08:53 ----A---- C:\Windows\system32\ipsmsnap.dll
2009-06-12 02:08:53 ----A---- C:\Windows\system32\certcli.dll
2009-06-12 02:08:52 ----A---- C:\Windows\system32\WMNetMgr.dll
2009-06-12 02:08:52 ----A---- C:\Windows\system32\w32time.dll
2009-06-12 02:08:52 ----A---- C:\Windows\system32\umpnpmgr.dll
2009-06-12 02:08:52 ----A---- C:\Windows\system32\rtffilt.dll
2009-06-12 02:08:52 ----A---- C:\Windows\system32\IPSECSVC.DLL
2009-06-12 02:08:52 ----A---- C:\Windows\system32\dnsapi.dll
2009-06-12 02:08:52 ----A---- C:\Windows\system32\certutil.exe
2009-06-12 02:08:51 ----A---- C:\Windows\system32\rsaenh.dll
2009-06-12 02:08:51 ----A---- C:\Windows\system32\msshooks.dll
2009-06-12 02:08:51 ----A---- C:\Windows\system32\msscntrs.dll
2009-06-12 02:08:51 ----A---- C:\Windows\system32\msihnd.dll
2009-06-12 02:08:51 ----A---- C:\Windows\system32\bthserv.dll
2009-06-12 02:08:51 ----A---- C:\Windows\system32\bcrypt.dll
2009-06-12 02:08:50 ----A---- C:\Windows\system32\TsWpfWrp.exe
2009-06-12 02:08:50 ----A---- C:\Windows\system32\msstrc.dll
2009-06-12 02:08:50 ----A---- C:\Windows\system32\MMDevAPI.dll
2009-06-12 02:08:50 ----A---- C:\Windows\system32\inetcomm.dll
2009-06-12 02:08:49 ----A---- C:\Windows\system32\wmicmiplugin.dll
2009-06-12 02:08:49 ----A---- C:\Windows\system32\netapi32.dll
2009-06-12 02:08:49 ----A---- C:\Windows\system32\mtxclu.dll
2009-06-12 02:08:49 ----A---- C:\Windows\system32\mscories.dll
2009-06-12 02:08:49 ----A---- C:\Windows\system32\inetpp.dll
2009-06-12 02:08:49 ----A---- C:\Windows\system32\hidserv.dll
2009-06-12 02:08:49 ----A---- C:\Windows\system32\fundisc.dll
2009-06-12 02:08:49 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2009-06-12 02:08:49 ----A---- C:\Windows\system32\dfshim.dll
2009-06-12 02:08:49 ----A---- C:\Windows\system32\cryptsvc.dll
2009-06-12 02:08:48 ----A---- C:\Windows\system32\termsrv.dll
2009-06-12 02:08:48 ----A---- C:\Windows\system32\profsvc.dll
2009-06-12 02:08:48 ----A---- C:\Windows\system32\imapi.dll
2009-06-12 02:08:48 ----A---- C:\Windows\system32\gameux.dll
2009-06-12 02:08:47 ----A---- C:\Windows\system32\wdc.dll
2009-06-12 02:08:47 ----A---- C:\Windows\system32\shsvcs.dll
2009-06-12 02:08:47 ----A---- C:\Windows\system32\rasmans.dll
2009-06-12 02:08:47 ----A---- C:\Windows\system32\msiexec.exe
2009-06-12 02:08:47 ----A---- C:\Windows\system32\iassdo.dll
2009-06-12 02:08:47 ----A---- C:\Windows\system32\chsbrkr.dll
2009-06-12 02:08:46 ----A---- C:\Windows\system32\spoolsv.exe
2009-06-12 02:08:46 ----A---- C:\Windows\system32\pnidui.dll
2009-06-12 02:08:46 ----A---- C:\Windows\system32\icardres.dll
2009-06-12 02:08:46 ----A---- C:\Windows\system32\autofmt.exe
2009-06-12 02:08:45 ----A---- C:\Windows\system32\wersvc.dll
2009-06-12 02:08:45 ----A---- C:\Windows\system32\slmgr.vbs
2009-06-12 02:08:45 ----A---- C:\Windows\system32\scrrun.dll
2009-06-12 02:08:45 ----A---- C:\Windows\system32\PSHED.DLL
2009-06-12 02:08:44 ----A---- C:\Windows\system32\pdh.dll
2009-06-12 02:08:44 ----A---- C:\Windows\system32\dhcpcsvc.dll
2009-06-12 02:08:44 ----A---- C:\Windows\system32\CertEnrollUI.dll
2009-06-12 02:08:44 ----A---- C:\Windows\system32\azroles.dll
2009-06-12 02:08:43 ----A---- C:\Windows\system32\wmpmde.dll
2009-06-12 02:08:43 ----A---- C:\Windows\system32\winlogon.exe
2009-06-12 02:08:43 ----A---- C:\Windows\system32\SyncCenter.dll
2009-06-12 02:08:43 ----A---- C:\Windows\system32\pidgenx.dll
2009-06-12 02:08:42 ----A---- C:\Windows\system32\SLUINotify.dll
2009-06-12 02:08:42 ----A---- C:\Windows\system32\msjetoledb40.dll
2009-06-12 02:08:42 ----A---- C:\Windows\system32\comuid.dll
2009-06-12 02:08:41 ----A---- C:\Windows\system32\wisptis.exe
2009-06-12 02:08:41 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2009-06-12 02:08:41 ----A---- C:\Windows\system32\untfs.dll
2009-06-12 02:08:41 ----A---- C:\Windows\system32\spp.dll
2009-06-12 02:08:41 ----A---- C:\Windows\system32\sethc.exe
2009-06-12 02:08:41 ----A---- C:\Windows\system32\scrobj.dll
2009-06-12 02:08:41 ----A---- C:\Windows\system32\rtutils.dll
2009-06-12 02:08:41 ----A---- C:\Windows\system32\ncrypt.dll
2009-06-12 02:08:41 ----A---- C:\Windows\system32\kd1394.dll
2009-06-12 02:08:41 ----A---- C:\Windows\system32\iassam.dll
2009-06-12 02:08:41 ----A---- C:\Windows\system32\certmgr.dll
2009-06-12 02:08:40 ----A---- C:\Windows\system32\taskcomp.dll
2009-06-12 02:08:40 ----A---- C:\Windows\system32\dwm.exe
2009-06-12 02:08:40 ----A---- C:\Windows\system32\autochk.exe
2009-06-12 02:08:39 ----A---- C:\Windows\system32\iasnap.dll
2009-06-12 02:08:38 ----A---- C:\Windows\system32\winsrv.dll
2009-06-12 02:08:38 ----A---- C:\Windows\system32\printui.dll
2009-06-12 02:08:38 ----A---- C:\Windows\system32\autoconv.exe
2009-06-12 02:08:37 ----A---- C:\Windows\system32\wow32.dll
2009-06-12 02:08:37 ----A---- C:\Windows\system32\userenv.dll
2009-06-12 02:08:37 ----A---- C:\Windows\system32\osk.exe
2009-06-12 02:08:37 ----A---- C:\Windows\system32\onex.dll
2009-06-12 02:08:37 ----A---- C:\Windows\system32\kdcom.dll
2009-06-12 02:08:37 ----A---- C:\Windows\system32\cscript.exe
2009-06-12 02:08:37 ----A---- C:\Windows\system32\basecsp.dll
2009-06-12 02:08:37 ----A---- C:\Windows\system32\audiodg.exe
2009-06-12 02:08:36 ----A---- C:\Windows\system32\winmm.dll
2009-06-12 02:08:36 ----A---- C:\Windows\system32\spcmsg.dll
2009-06-12 02:08:36 ----A---- C:\Windows\system32\RelMon.dll
2009-06-12 02:08:36 ----A---- C:\Windows\system32\rdpencom.dll
2009-06-12 02:08:36 ----A---- C:\Windows\system32\mswsock.dll
2009-06-12 02:08:36 ----A---- C:\Windows\system32\kdusb.dll
2009-06-12 02:08:35 ----A---- C:\Windows\system32\WinSCard.dll
2009-06-12 02:08:35 ----A---- C:\Windows\system32\WerFaultSecure.exe
2009-06-12 02:08:35 ----A---- C:\Windows\system32\offfilt.dll
2009-06-12 02:08:35 ----A---- C:\Windows\system32\msftedit.dll
2009-06-12 02:08:35 ----A---- C:\Windows\system32\dnsrslvr.dll
2009-06-12 02:08:34 ----A---- C:\Windows\system32\wsepno.dll
2009-06-12 02:08:34 ----A---- C:\Windows\system32\WerFault.exe
2009-06-12 02:08:34 ----A---- C:\Windows\system32\Utilman.exe
2009-06-12 02:08:34 ----A---- C:\Windows\system32\stobject.dll
2009-06-12 02:08:34 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2009-06-12 02:08:34 ----A---- C:\Windows\system32\secproc_ssp.dll
2009-06-12 02:08:34 ----A---- C:\Windows\system32\mfplat.dll
2009-06-12 02:08:34 ----A---- C:\Windows\system32\diskraid.exe
2009-06-12 02:08:33 ----A---- C:\Windows\system32\wiaservc.dll
2009-06-12 02:08:33 ----A---- C:\Windows\system32\sysclass.dll
2009-06-12 02:08:33 ----A---- C:\Windows\system32\SndVol.exe
2009-06-12 02:08:33 ----A---- C:\Windows\system32\prnntfy.dll
2009-06-12 02:08:33 ----A---- C:\Windows\system32\msnetobj.dll
2009-06-12 02:08:33 ----A---- C:\Windows\system32\mscms.dll
2009-06-12 02:08:33 ----A---- C:\Windows\system32\mcmde.dll
2009-06-12 02:08:33 ----A---- C:\Windows\system32\apphelp.dll
2009-06-12 02:08:33 ----A---- C:\Windows\system32\adsmsext.dll
2009-06-12 02:08:32 ----A---- C:\Windows\system32\wscript.exe
2009-06-12 02:08:32 ----A---- C:\Windows\system32\ulib.dll
2009-06-12 02:08:32 ----A---- C:\Windows\system32\secur32.dll
2009-06-12 02:08:32 ----A---- C:\Windows\system32\odbccp32.dll
2009-06-12 02:08:32 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2009-06-12 02:08:32 ----A---- C:\Windows\system32\iasdatastore.dll
2009-06-12 02:08:32 ----A---- C:\Windows\system32\dsound.dll
2009-06-12 02:08:32 ----A---- C:\Windows\system32\cryptui.dll
2009-06-12 02:08:31 ----A---- C:\Windows\system32\wscntfy.dll
2009-06-12 02:08:31 ----A---- C:\Windows\system32\wlansvc.dll
2009-06-12 02:08:31 ----A---- C:\Windows\system32\rastapi.dll
2009-06-12 02:08:31 ----A---- C:\Windows\system32\pnpsetup.dll
2009-06-12 02:08:31 ----A---- C:\Windows\system32\ipsecsnp.dll
2009-06-12 02:08:31 ----A---- C:\Windows\system32\fdProxy.dll
2009-06-12 02:08:31 ----A---- C:\Windows\system32\brcpl.dll
2009-06-12 02:08:30 ----A---- C:\Windows\system32\wscsvc.dll
2009-06-12 02:08:30 ----A---- C:\Windows\system32\WMVENCOD.DLL
2009-06-12 02:08:30 ----A---- C:\Windows\system32\wlangpui.dll
2009-06-12 02:08:30 ----A---- C:\Windows\system32\vdsdyn.dll
2009-06-12 02:08:30 ----A---- C:\Windows\system32\rastls.dll
2009-06-12 02:08:30 ----A---- C:\Windows\system32\rasapi32.dll
2009-06-12 02:08:30 ----A---- C:\Windows\system32\ntprint.dll
2009-06-12 02:08:30 ----A---- C:\Windows\system32\netiohlp.dll
2009-06-12 02:08:30 ----A---- C:\Windows\system32\logman.exe
2009-06-12 02:08:30 ----A---- C:\Windows\system32\iashlpr.dll
2009-06-12 02:08:30 ----A---- C:\Windows\system32\gpapi.dll
2009-06-12 02:08:30 ----A---- C:\Windows\system32\diskpart.exe
2009-06-12 02:08:29 ----A---- C:\Windows\system32\zipfldr.dll
2009-06-12 02:08:29 ----A---- C:\Windows\system32\wusa.exe
2009-06-12 02:08:29 ----A---- C:\Windows\system32\wshext.dll
2009-06-12 02:08:29 ----A---- C:\Windows\system32\regsvc.dll
2009-06-12 02:08:29 ----A---- C:\Windows\system32\mscorier.dll
2009-06-12 02:08:29 ----A---- C:\Windows\system32\iasrad.dll
2009-06-12 02:08:29 ----A---- C:\Windows\system32\findstr.exe
2009-06-12 02:08:28 ----A---- C:\Windows\system32\wpccpl.dll
2009-06-12 02:08:28 ----A---- C:\Windows\system32\rasdlg.dll
2009-06-12 02:08:28 ----A---- C:\Windows\system32\netcenter.dll
2009-06-12 02:08:28 ----A---- C:\Windows\system32\iassvcs.dll
2009-06-12 02:08:27 ----A---- C:\Windows\system32\wsnmp32.dll
2009-06-12 02:08:27 ----A---- C:\Windows\system32\wer.dll
2009-06-12 02:08:27 ----A---- C:\Windows\system32\themecpl.dll
2009-06-12 02:08:26 ----A---- C:\Windows\system32\uxsms.dll
2009-06-12 02:08:26 ----A---- C:\Windows\system32\tsbyuv.dll
2009-06-12 02:08:26 ----A---- C:\Windows\system32\srvsvc.dll
2009-06-12 02:08:26 ----A---- C:\Windows\system32\slcc.dll
2009-06-12 02:08:26 ----A---- C:\Windows\system32\scansetting.dll
2009-06-12 02:08:26 ----A---- C:\Windows\system32\ntmarta.dll
2009-06-12 02:08:26 ----A---- C:\Windows\system32\msutb.dll
2009-06-12 02:08:26 ----A---- C:\Windows\system32\mstlsapi.dll
2009-06-12 02:08:26 ----A---- C:\Windows\system32\mssprxy.dll
2009-06-12 02:08:26 ----A---- C:\Windows\system32\iasads.dll
2009-06-12 02:08:25 ----A---- C:\Windows\system32\powrprof.dll
2009-06-12 02:08:25 ----A---- C:\Windows\system32\networkmap.dll
2009-06-12 02:08:25 ----A---- C:\Windows\system32\mstsc.exe
2009-06-12 02:08:25 ----A---- C:\Windows\system32\iasacct.dll
2009-06-12 02:08:24 ----A---- C:\Windows\system32\powercpl.dll
2009-06-12 02:08:24 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2009-06-12 02:08:24 ----A---- C:\Windows\system32\authz.dll
2009-06-12 02:08:23 ----A---- C:\Windows\system32\wlanhlp.dll
2009-06-12 02:08:23 ----A---- C:\Windows\system32\sud.dll
2009-06-12 02:08:23 ----A---- C:\Windows\system32\newdev.exe
2009-06-12 02:08:23 ----A---- C:\Windows\system32\dot3svc.dll
2009-06-12 02:08:23 ----A---- C:\Windows\system32\connect.dll
2009-06-12 02:08:22 ----A---- C:\Windows\system32\usercpl.dll
2009-06-12 02:08:22 ----A---- C:\Windows\system32\themeui.dll
2009-06-12 02:08:22 ----A---- C:\Windows\system32\systemcpl.dll
2009-06-12 02:08:22 ----A---- C:\Windows\system32\samlib.dll
2009-06-12 02:08:22 ----A---- C:\Windows\system32\pcaui.dll
2009-06-12 02:08:22 ----A---- C:\Windows\system32\mmci.dll
2009-06-12 02:08:22 ----A---- C:\Windows\system32\accessibilitycpl.dll
2009-06-12 02:08:21 ----A---- C:\Windows\system32\wlanpref.dll
2009-06-12 02:08:21 ----A---- C:\Windows\system32\rpchttp.dll
2009-06-12 02:08:21 ----A---- C:\Windows\system32\regapi.dll
2009-06-12 02:08:21 ----A---- C:\Windows\system32\qdvd.dll
2009-06-12 02:08:21 ----A---- C:\Windows\system32\msinfo32.exe
2009-06-12 02:08:21 ----A---- C:\Windows\system32\autoplay.dll
2009-06-12 02:08:20 ----A---- C:\Windows\system32\wpcao.dll
2009-06-12 02:08:20 ----A---- C:\Windows\system32\vdsutil.dll
2009-06-12 02:08:20 ----A---- C:\Windows\system32\tapisrv.dll
2009-06-12 02:08:20 ----A---- C:\Windows\system32\scksp.dll
2009-06-12 02:08:20 ----A---- C:\Windows\system32\scesrv.dll
2009-06-12 02:08:20 ----A---- C:\Windows\system32\psisdecd.dll
2009-06-12 02:08:20 ----A---- C:\Windows\system32\oleprn.dll
2009-06-12 02:08:20 ----A---- C:\Windows\system32\mpr.dll
2009-06-12 02:08:20 ----A---- C:\Windows\system32\imm32.dll
2009-06-12 02:08:20 ----A---- C:\Windows\system32\feclient.dll
2009-06-12 02:08:20 ----A---- C:\Windows\system32\dot3msm.dll
2009-06-12 02:08:20 ----A---- C:\Windows\system32\AudioSes.dll
2009-06-12 02:08:19 ----A---- C:\Windows\system32\wscisvif.dll
2009-06-12 02:08:19 ----A---- C:\Windows\system32\sdclt.exe
2009-06-12 02:08:19 ----A---- C:\Windows\system32\rekeywiz.exe
2009-06-12 02:08:19 ----A---- C:\Windows\system32\iaspolcy.dll
2009-06-12 02:08:19 ----A---- C:\Windows\system32\Faultrep.dll
2009-06-12 02:08:19 ----A---- C:\Windows\system32\dpapimig.exe
2009-06-12 02:08:19 ----A---- C:\Windows\system32\DeviceEject.exe
2009-06-12 02:08:18 ----A---- C:\Windows\system32\scecli.dll
2009-06-12 02:08:18 ----A---- C:\Windows\system32\rasgcw.dll
2009-06-12 02:08:18 ----A---- C:\Windows\system32\qedit.dll
2009-06-12 02:08:18 ----A---- C:\Windows\system32\pnpui.dll
2009-06-12 02:08:18 ----A---- C:\Windows\system32\perfdisk.dll
2009-06-12 02:08:18 ----A---- C:\Windows\system32\ncryptui.dll
2009-06-12 02:08:18 ----A---- C:\Windows\system32\hdwwiz.exe
2009-06-12 02:08:18 ----A---- C:\Windows\system32\certreq.exe
2009-06-12 02:08:17 ----A---- C:\Windows\system32\TSTheme.exe
2009-06-12 02:08:17 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2009-06-12 02:08:17 ----A---- C:\Windows\system32\rasplap.dll
2009-06-12 02:08:17 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2009-06-12 02:08:16 ----A---- C:\Windows\system32\tcpmon.dll
2009-06-12 02:08:16 ----A---- C:\Windows\system32\tcpipcfg.dll
2009-06-12 02:08:16 ----A---- C:\Windows\system32\spwinsat.dll
2009-06-12 02:08:16 ----A---- C:\Windows\system32\PnPUnattend.exe
2009-06-12 02:08:16 ----A---- C:\Windows\system32\fdWSD.dll
2009-06-12 02:08:16 ----A---- C:\Windows\system32\cmmon32.exe
2009-06-12 02:08:15 ----A---- C:\Windows\system32\whealogr.dll
2009-06-12 02:08:15 ----A---- C:\Windows\system32\srcore.dll
2009-06-12 02:08:15 ----A---- C:\Windows\system32\SCardSvr.dll
2009-06-12 02:08:15 ----A---- C:\Windows\system32\conime.exe
2009-06-12 02:08:15 ----A---- C:\Windows\system32\cmdial32.dll
2009-06-12 02:08:14 ----A---- C:\Windows\system32\wiaaut.dll
2009-06-12 02:08:14 ----A---- C:\Windows\system32\SnippingTool.exe
2009-06-12 02:08:14 ----A---- C:\Windows\system32\raschap.dll
2009-06-12 02:08:14 ----A---- C:\Windows\system32\MSVidCtl.dll
2009-06-12 02:08:14 ----A---- C:\Windows\system32\fontext.dll
2009-06-12 02:08:13 ----A---- C:\Windows\system32\WMVXENCD.DLL
2009-06-12 02:08:13 ----A---- C:\Windows\system32\wlanui.dll
2009-06-12 02:08:12 ----A---- C:\Windows\system32\shwebsvc.dll
2009-06-12 02:08:12 ----A---- C:\Windows\system32\rasppp.dll
2009-06-12 02:08:12 ----A---- C:\Windows\system32\PnPutil.exe
2009-06-12 02:08:12 ----A---- C:\Windows\system32\dsprop.dll
2009-06-12 02:08:11 ----A---- C:\Windows\system32\wlanmsm.dll
2009-06-12 02:08:11 ----A---- C:\Windows\system32\oobefldr.dll
2009-06-12 02:08:11 ----A---- C:\Windows\system32\dimsroam.dll
2009-06-12 02:08:10 ----A---- C:\Windows\system32\shsetup.dll
2009-06-12 02:08:10 ----A---- C:\Windows\system32\rasmontr.dll
2009-06-12 02:08:10 ----A---- C:\Windows\system32\mscandui.dll
2009-06-12 02:08:10 ----A---- C:\Windows\system32\modemui.dll
2009-06-12 02:08:10 ----A---- C:\Windows\system32\chtbrkr.dll
2009-06-12 02:08:09 ----A---- C:\Windows\system32\wmdrmsdk.dll
2009-06-12 02:08:09 ----A---- C:\Windows\system32\wlgpclnt.dll
2009-06-12 02:08:09 ----A---- C:\Windows\system32\rdpwsx.dll
2009-06-12 02:08:09 ----A---- C:\Windows\system32\dataclen.dll
2009-06-12 02:08:09 ----A---- C:\Windows\system32\blackbox.dll
2009-06-12 02:08:08 ----A---- C:\Windows\system32\WSDMon.dll
2009-06-12 02:08:08 ----A---- C:\Windows\system32\wmpeffects.dll
2009-06-12 02:08:08 ----A---- C:\Windows\system32\smss.exe
2009-06-12 02:08:08 ----A---- C:\Windows\system32\netplwiz.dll
2009-06-12 02:08:08 ----A---- C:\Windows\system32\credui.dll
2009-06-12 02:08:07 ----A---- C:\Windows\system32\wpcsvc.dll
2009-06-12 02:08:07 ----A---- C:\Windows\system32\networkexplorer.dll
2009-06-12 02:08:07 ----A---- C:\Windows\system32\ifmon.dll
2009-06-12 02:08:07 ----A---- C:\Windows\system32\cipher.exe
2009-06-12 02:08:07 ----A---- C:\Windows\system32\certprop.dll
2009-06-12 02:08:06 ----A---- C:\Windows\system32\wscapi.dll
2009-06-12 02:08:06 ----A---- C:\Windows\system32\thawbrkr.dll
2009-06-12 02:08:06 ----A---- C:\Windows\system32\msscp.dll
2009-06-12 02:08:06 ----A---- C:\Windows\system32\msimtf.dll
2009-06-12 02:08:06 ----A---- C:\Windows\system32\logagent.exe
2009-06-12 02:08:06 ----A---- C:\Windows\system32\InkEd.dll
2009-06-12 02:08:06 ----A---- C:\Windows\system32\gpresult.exe
2009-06-12 02:08:05 ----A---- C:\Windows\system32\softkbd.dll
2009-06-12 02:08:05 ----A---- C:\Windows\system32\sendmail.dll
2009-06-12 02:08:05 ----A---- C:\Windows\system32\olepro32.dll
2009-06-12 02:08:05 ----A---- C:\Windows\system32\msctfui.dll
2009-06-12 02:08:05 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2009-06-12 02:08:05 ----A---- C:\Windows\system32\Apphlpdm.dll
2009-06-12 02:08:04 ----A---- C:\Windows\system32\wshbth.dll
2009-06-12 02:08:04 ----A---- C:\Windows\system32\version.dll
2009-06-12 02:08:04 ----A---- C:\Windows\system32\SLLUA.exe
2009-06-12 02:08:04 ----A---- C:\Windows\system32\puiapi.dll
2009-06-12 02:08:04 ----A---- C:\Windows\system32\mprapi.dll
2009-06-12 02:08:04 ----A---- C:\Windows\system32\input.dll
2009-06-12 02:08:04 ----A---- C:\Windows\system32\ExplorerFrame.dll
2009-06-12 02:08:04 ----A---- C:\Windows\system32\drmmgrtn.dll
2009-06-12 02:08:04 ----A---- C:\Windows\system32\dmsynth.dll
2009-06-12 02:08:04 ----A---- C:\Windows\system32\cdd.dll
2009-06-12 02:08:03 ----A---- C:\Windows\system32\msisip.dll
2009-06-12 02:08:03 ----A---- C:\Windows\system32\fc.exe
2009-06-12 02:08:02 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-06-12 02:08:02 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2009-06-12 02:08:02 ----A---- C:\Windows\system32\msjint40.dll
2009-06-12 02:08:02 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2009-06-12 02:08:02 ----A---- C:\Windows\system32\l2nacp.dll
2009-06-12 02:08:02 ----A---- C:\Windows\system32\ftp.exe
2009-06-12 02:08:02 ----A---- C:\Windows\system32\fdSSDP.dll
2009-06-12 02:08:02 ----A---- C:\Windows\system32\eapp3hst.dll
2009-06-12 02:08:02 ----A---- C:\Windows\system32\dmusic.dll
2009-06-12 02:08:02 ----A---- C:\Windows\system32\cscdll.dll
2009-06-12 02:08:02 ----A---- C:\Windows\system32\cscapi.dll
2009-06-12 02:08:01 ----A---- C:\Windows\system32\wsdchngr.dll
2009-06-12 02:08:01 ----A---- C:\Windows\system32\Storprop.dll
2009-06-12 02:08:01 ----A---- C:\Windows\system32\SMBHelperClass.dll
2009-06-12 02:08:01 ----A---- C:\Windows\system32\rrinstaller.exe
2009-06-12 02:08:01 ----A---- C:\Windows\system32\rasdial.exe
2009-06-12 02:08:01 ----A---- C:\Windows\system32\rasdiag.dll
2009-06-12 02:08:01 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2009-06-12 02:08:01 ----A---- C:\Windows\system32\ipconfig.exe
2009-06-12 02:08:01 ----A---- C:\Windows\system32\fdWCN.dll
2009-06-12 02:08:01 ----A---- C:\Windows\system32\eappcfg.dll
2009-06-12 02:08:01 ----A---- C:\Windows\system32\dot3cfg.dll
2009-06-12 02:08:01 ----A---- C:\Windows\system32\bthudtask.exe
2009-06-12 02:08:01 ----A---- C:\Windows\system32\bthci.dll
2009-06-12 02:08:01 ----A---- C:\Windows\system32\aaclient.dll
2009-06-12 02:08:00 ----A---- C:\Windows\system32\tscupgrd.exe
2009-06-12 02:08:00 ----A---- C:\Windows\system32\slcinst.dll
2009-06-12 02:08:00 ----A---- C:\Windows\system32\ocsetup.exe
2009-06-12 02:08:00 ----A---- C:\Windows\system32\nslookup.exe
2009-06-12 02:08:00 ----A---- C:\Windows\system32\networkitemfactory.dll
2009-06-12 02:08:00 ----A---- C:\Windows\system32\mfps.dll
2009-06-12 02:08:00 ----A---- C:\Windows\system32\hbaapi.dll
2009-06-12 02:08:00 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2009-06-12 02:08:00 ----A---- C:\Windows\system32\eappgnui.dll
2009-06-12 02:08:00 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2009-06-12 02:07:59 ----A---- C:\Windows\system32\tsgqec.dll
2009-06-12 02:07:59 ----A---- C:\Windows\system32\PNPXAssoc.dll
2009-06-12 02:07:59 ----A---- C:\Windows\system32\mmcico.dll
2009-06-12 02:07:59 ----A---- C:\Windows\system32\mfpmp.exe
2009-06-12 02:07:59 ----A---- C:\Windows\system32\fdeploy.dll
2009-06-12 02:07:58 ----A---- C:\Windows\system32\NcdProp.dll
2009-06-12 02:07:58 ----A---- C:\Windows\system32\iscsilog.dll
2009-06-12 02:07:58 ----A---- C:\Windows\system32\gpupdate.exe
2009-06-12 02:07:58 ----A---- C:\Windows\system32\csrstub.exe
2009-06-12 02:07:58 ----A---- C:\Windows\system32\cbsra.exe
2009-06-12 02:07:58 ----A---- C:\Windows\system32\bitsigd.dll
2009-06-12 02:07:58 ----A---- C:\Windows\system32\atmlib.dll
2009-06-12 02:07:57 ----A---- C:\Windows\system32\winrnr.dll
2009-06-12 02:07:57 ----A---- C:\Windows\system32\vdmdbg.dll
2009-06-12 02:07:57 ----A---- C:\Windows\system32\slwga.dll
2009-06-12 02:07:57 ----A---- C:\Windows\system32\odbcconf.dll
2009-06-12 02:07:57 ----A---- C:\Windows\system32\inetppui.dll
2009-06-12 02:07:56 ----A---- C:\Windows\system32\midimap.dll
2009-06-12 02:07:54 ----A---- C:\Windows\system32\spwmp.dll
2009-06-12 02:07:53 ----A---- C:\Windows\system32\wmploc.DLL
2009-06-12 02:07:53 ----A---- C:\Windows\system32\dxmasf.dll
2009-06-12 02:07:52 ----A---- C:\Windows\system32\msimsg.dll
2009-06-12 02:07:52 ----A---- C:\Windows\system32\mferror.dll
2009-06-12 02:07:52 ----A---- C:\Windows\system32\f3ahvoas.dll
2009-06-12 02:07:26 ----A---- C:\Windows\system32\SmiEngine.dll
2009-06-12 02:07:24 ----A---- C:\Windows\system32\wdscore.dll
2009-06-12 02:07:24 ----A---- C:\Windows\system32\PkgMgr.exe
2009-06-12 02:07:17 ----A---- C:\Windows\system32\drvstore.dll
2009-06-12 00:12:26 ----D---- C:\Program Files\Avanquest update
2009-06-12 00:12:25 ----D---- C:\ProgramData\BVRP Software
2009-06-11 23:41:09 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Media Player Classic
2009-06-11 22:36:01 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\DivX
2009-06-11 22:28:39 ----A---- C:\Windows\system32\rmoc3260.dll
2009-06-11 22:28:39 ----A---- C:\Windows\system32\pndx5032.dll
2009-06-11 22:28:39 ----A---- C:\Windows\system32\pndx5016.dll
2009-06-11 22:28:38 ----A---- C:\Windows\system32\pncrt.dll
2009-06-11 22:28:37 ----A---- C:\Windows\system32\unrar.dll
2009-06-11 22:28:36 ----A---- C:\Windows\avisplitter.ini
2009-06-11 22:28:33 ----A---- C:\Windows\system32\yv12vfw.dll
2009-06-11 22:28:29 ----A---- C:\Windows\system32\xvidvfw.dll
2009-06-11 22:28:29 ----A---- C:\Windows\system32\xvidcore.dll
2009-06-11 22:28:27 ----A---- C:\Windows\system32\pthreadGC2.dll
2009-06-11 22:28:27 ----A---- C:\Windows\system32\ff_vfw.dll.manifest
2009-06-11 22:28:27 ----A---- C:\Windows\system32\ff_vfw.dll
2009-06-11 22:28:24 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Real
2009-06-11 22:28:24 ----D---- C:\ProgramData\Real
2009-06-11 22:28:24 ----D---- C:\Program Files\K-Lite Codec Pack
2009-06-11 22:08:05 ----D---- C:\Program Files\DivX
2009-06-11 22:08:05 ----D---- C:\Program Files\Common Files\DivX Shared
2009-06-11 19:36:15 ----D---- C:\Program Files\MSXML 4.0
2009-06-11 18:58:00 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Apple Computer
2009-06-11 18:57:43 ----DC---- C:\Windows\system32\DRVSTORE
2009-06-11 18:57:43 ----A---- C:\Windows\system32\GEARAspi.dll
2009-06-11 18:57:18 ----D---- C:\Program Files\iPod
2009-06-11 18:57:16 ----D---- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-06-11 18:57:15 ----D---- C:\Program Files\iTunes
2009-06-11 18:55:20 ----D---- C:\Program Files\Bonjour
2009-06-11 18:51:44 ----D---- C:\Program Files\Common Files\Apple
2009-06-11 17:27:08 ----D---- C:\Program Files\Nero
2009-06-11 17:25:11 ----D---- C:\ProgramData\Nero
2009-06-11 17:25:11 ----D---- C:\Program Files\Common Files\Nero
2009-06-11 16:33:12 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\uTorrent
2009-06-11 11:28:38 ----A---- C:\Windows\system32\228305i9us3dz.dll
2009-06-10 22:47:49 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Tatara Systems
2009-06-10 22:42:05 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Reallusion
2009-06-10 22:42:05 ----D---- C:\ProgramData\Creative
2009-06-10 22:38:16 ----D---- C:\ProgramData\O2CM-CE
2009-06-10 22:38:16 ----D---- C:\Program Files\O2CM-CE
2009-06-10 16:32:26 ----D---- C:\Windows\system32\Lang
2009-06-10 16:32:26 ----A---- C:\Windows\system32\igxpun.exe
2009-06-10 16:32:26 ----A---- C:\Windows\system32\difxapi.dll
2009-06-10 16:24:04 ----A---- C:\Windows\system32\stcplx.dll
2009-06-10 16:24:04 ----A---- C:\Windows\system32\stapo.dll
2009-06-10 16:24:04 ----A---- C:\Windows\system32\st326162.dll
2009-06-10 15:27:05 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\WinRAR
2009-06-10 15:26:52 ----D---- C:\Program Files\Intel
2009-06-10 15:26:52 ----A---- C:\Windows\system32\CSVer.dll
2009-06-10 15:26:24 ----D---- C:\Intel
2009-06-09 22:36:51 ----D---- C:\Program Files\Common Files\Sony Shared
2009-06-09 22:35:18 ----D---- C:\Program Files\Sony
2009-06-09 22:34:18 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Sony
2009-06-09 20:29:03 ----A---- C:\Windows\system32\mshtml.dll
2009-06-09 20:29:02 ----A---- C:\Windows\system32\ieframe.dll
2009-06-09 20:29:00 ----A---- C:\Windows\system32\wininet.dll
2009-06-09 20:29:00 ----A---- C:\Windows\system32\urlmon.dll
2009-06-09 20:29:00 ----A---- C:\Windows\system32\iertutil.dll
2009-06-09 20:28:59 ----A---- C:\Windows\system32\jsproxy.dll
2009-06-09 20:28:59 ----A---- C:\Windows\system32\ieui.dll
2009-06-09 20:28:59 ----A---- C:\Windows\system32\iesetup.dll
2009-06-09 20:28:59 ----A---- C:\Windows\system32\iernonce.dll
2009-06-09 20:28:59 ----A---- C:\Windows\system32\iedkcs32.dll
2009-06-09 20:28:59 ----A---- C:\Windows\system32\ie4uinit.exe
2009-06-09 20:28:39 ----A---- C:\Windows\system32\localspl.dll
2009-06-09 20:25:01 ----A---- C:\Windows\system32\rpcrt4.dll
2009-06-09 10:09:12 ----D---- C:\Program Files\Microsoft Visual Studio
2009-06-09 10:05:12 ----D---- C:\Program Files\Microsoft Visual Studio 8
2009-06-08 22:27:04 ----D---- C:\ProgramData\Apple Computer
2009-06-08 22:27:04 ----D---- C:\Program Files\QuickTime
2009-06-08 22:20:22 ----D---- C:\ProgramData\Apple
2009-06-08 22:20:22 ----D---- C:\Program Files\Apple Software Update
2009-06-08 22:16:54 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Sony Setup
2009-06-08 22:16:28 ----D---- C:\Program Files\Sony Setup
2009-06-08 22:09:26 ----D---- C:\ProgramData\Sony Ericsson
2009-06-08 22:09:26 ----D---- C:\Program Files\Sony Ericsson
2009-06-08 22:07:54 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\InstallShield
2009-06-08 20:14:43 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Mozilla
2009-06-08 20:09:37 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\LimeWire
2009-06-08 19:58:41 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Creative
2009-06-08 19:13:40 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\CyberLink
2009-06-08 19:13:40 ----D---- C:\ProgramData\CyberLink
2009-06-08 19:04:20 ----A---- C:\Windows\system32\mshtmled.dll
2009-06-08 19:04:19 ----A---- C:\Windows\system32\msls31.dll
2009-06-08 19:04:19 ----A---- C:\Windows\system32\mshtmler.dll
2009-06-08 19:04:19 ----A---- C:\Windows\system32\icardie.dll
2009-06-08 19:04:19 ----A---- C:\Windows\system32\corpol.dll
2009-06-08 19:04:19 ----A---- C:\Windows\system32\admparse.dll
2009-06-08 19:04:18 ----A---- C:\Windows\system32\msfeedsbs.dll
2009-06-08 19:04:18 ----A---- C:\Windows\system32\licmgr10.dll
2009-06-08 19:04:18 ----A---- C:\Windows\system32\imgutil.dll
2009-06-08 19:04:18 ----A---- C:\Windows\system32\iepeers.dll
2009-06-08 19:04:18 ----A---- C:\Windows\system32\ieakeng.dll
2009-06-08 19:04:18 ----A---- C:\Windows\system32\dxtrans.dll
2009-06-08 19:04:18 ----A---- C:\Windows\system32\dxtmsft.dll
2009-06-08 19:04:17 ----A---- C:\Windows\system32\WinFXDocObj.exe
2009-06-08 19:04:17 ----A---- C:\Windows\system32\wextract.exe
2009-06-08 19:04:17 ----A---- C:\Windows\system32\webcheck.dll
2009-06-08 19:04:17 ----A---- C:\Windows\system32\occache.dll
2009-06-08 19:04:17 ----A---- C:\Windows\system32\mstime.dll
2009-06-08 19:04:17 ----A---- C:\Windows\system32\msrating.dll
2009-06-08 19:04:17 ----A---- C:\Windows\system32\msfeedssync.exe
2009-06-08 19:04:17 ----A---- C:\Windows\system32\inseng.dll
2009-06-08 19:04:17 ----A---- C:\Windows\system32\ieakui.dll
2009-06-08 19:04:17 ----A---- C:\Windows\system32\ieaksie.dll
2009-06-08 19:04:16 ----A---- C:\Windows\system32\vbscript.dll
2009-06-08 19:04:16 ----A---- C:\Windows\system32\pngfilt.dll
2009-06-08 19:04:16 ----A---- C:\Windows\system32\msfeeds.dll
2009-06-08 19:04:16 ----A---- C:\Windows\system32\jscript.dll
2009-06-08 19:04:16 ----A---- C:\Windows\system32\ieapfltr.dll
2009-06-08 19:04:16 ----A---- C:\Windows\system32\advpack.dll
2009-06-08 19:04:15 ----A---- C:\Windows\system32\url.dll
2009-06-08 19:04:14 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2009-06-08 19:04:14 ----A---- C:\Windows\system32\SetDepNx.exe
2009-06-08 19:04:14 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2009-06-08 19:04:14 ----A---- C:\Windows\system32\PDMSetup.exe
2009-06-08 19:04:14 ----A---- C:\Windows\system32\mshta.exe
2009-06-08 19:04:14 ----A---- C:\Windows\system32\iexpress.exe
2009-06-08 19:04:14 ----A---- C:\Windows\system32\ieUnatt.exe
2009-06-08 19:04:14 ----A---- C:\Windows\system32\iesysprep.dll
2009-06-08 18:55:38 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\WinPatrol
2009-06-08 18:54:40 ----D---- C:\Program Files\BillP Studios
2009-06-08 18:48:18 ----D---- C:\Program Files\WinRAR
2009-06-08 18:06:47 ----A---- C:\Windows\system32\netfxperf.dll
2009-06-08 17:44:28 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Macromedia
2009-06-08 17:44:24 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Adobe
2009-06-08 16:32:18 ----A---- C:\Windows\system32\wups2.dll
2009-06-08 16:32:18 ----A---- C:\Windows\system32\wucltux.dll
2009-06-08 16:32:18 ----A---- C:\Windows\system32\wuauclt.exe
2009-06-08 16:32:17 ----A---- C:\Windows\system32\wuaueng.dll
2009-06-08 16:31:28 ----A---- C:\Windows\system32\wups.dll
2009-06-08 16:31:28 ----A---- C:\Windows\system32\wudriver.dll
2009-06-08 16:31:27 ----A---- C:\Windows\system32\wuapi.dll
2009-06-08 16:31:02 ----A---- C:\Windows\system32\wuwebv.dll
2009-06-08 16:31:02 ----A---- C:\Windows\system32\wuapp.exe
2009-06-08 16:28:13 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Identities
2009-06-08 16:25:50 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Dell
2009-06-08 16:25:23 ----SD---- C:\Users\Carl Broomfield\AppData\Roaming\Microsoft
2009-06-08 16:25:23 ----D---- C:\Users\Carl Broomfield\AppData\Roaming\Media Center Programs
2009-06-08 16:23:31 ----SHD---- C:\ProgramData\Templates
2009-06-08 16:23:31 ----SHD---- C:\ProgramData\Start Menu
2009-06-08 16:23:31 ----SHD---- C:\ProgramData\Favorites
2009-06-08 16:23:31 ----SHD---- C:\ProgramData\Documents
2009-06-08 16:23:31 ----SHD---- C:\ProgramData\Desktop
2009-06-08 16:23:31 ----SHD---- C:\ProgramData\Application Data
2009-06-08 16:23:30 ----SHD---- C:\Documents and Settings
2009-06-02 09:23:22 ----A---- C:\Windows\z27939pambot4735.exe
2009-05-31 17:00:00 ----A---- C:\Windows\OA008Mon.exe
2009-05-28 23:58:46 ----A---- C:\Windows\32595hacktool2acz.dll
2009-05-28 02:37:48 ----A---- C:\Windows\5ezdow5loader1469.exe
2009-05-27 20:54:50 ----A---- C:\Windows\system32\20335trojz9.dll
2009-05-26 17:02:00 ----A---- C:\Windows\OA008Cfg.exe
2009-05-25 05:21:48 ----A---- C:\Windows\system32\klogon.dll
2009-05-15 15:21:17 ----A---- C:\Windows\48z39teal1955.dll
2009-05-14 23:32:23 ----A---- C:\Windows\system32\aazba9kdoor31975.dll
2009-05-14 04:41:49 ----A---- C:\Windows\system32\955z9sp5e9.dll
2009-05-10 19:17:33 ----A---- C:\Windows\97fdspzwar52374.exe
2009-05-09 19:37:21 ----A---- C:\Windows\system32\3356not-a-5iru9507z.exe
2009-05-06 11:46:21 ----A---- C:\Windows\6a20st9a5557z.dll
2009-05-06 00:40:07 ----A---- C:\Windows\system32\29z1ad5ware68.dll
2009-05-05 02:37:59 ----A---- C:\Windows\6d2fsteal17z59.dll
2009-05-01 22:02:28 ----A---- C:\Windows\system32\dpl100.dll
2009-05-01 22:02:26 ----A---- C:\Windows\system32\divx_xx16.dll
2009-05-01 22:02:26 ----A---- C:\Windows\system32\divx_xx11.dll
2009-05-01 22:02:26 ----A---- C:\Windows\system32\divx_xx0c.dll
2009-05-01 22:02:26 ----A---- C:\Windows\system32\divx_xx0a.dll
2009-05-01 22:02:26 ----A---- C:\Windows\system32\divx_xx07.dll
2009-05-01 22:02:26 ----A---- C:\Windows\system32\DivX.dll
2009-04-24 00:30:25 ----A---- C:\Windows\system32\4f90virz8905.exe
2009-04-21 00:03:25 ----A---- C:\Windows\19955spam5oz493.dll

======List of files/folders modified in the last 3 months======

2009-07-17 00:36:41 ----D---- C:\Windows\Temp
2009-07-17 00:33:54 ----D---- C:\Windows\system32\drivers
2009-07-17 00:33:53 ----RD---- C:\Program Files
2009-07-17 00:33:53 ----HD---- C:\ProgramData
2009-07-17 00:31:07 ----D---- C:\Windows\System32
2009-07-17 00:31:07 ----D---- C:\Windows\inf
2009-07-17 00:31:07 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-07-17 00:24:54 ----D---- C:\Windows
2009-07-17 00:18:43 ----SHD---- C:\System Volume Information
2009-07-16 23:59:48 ----SD---- C:\Windows\Downloaded Program Files
2009-07-16 23:44:28 ----D---- C:\Windows\system32\Tasks
2009-07-16 23:44:26 ----D---- C:\Windows\Tasks
2009-07-16 23:36:39 ----D---- C:\Windows\Debug
2009-07-16 23:07:26 ----SHD---- C:\Windows\Installer
2009-07-16 23:06:59 ----D---- C:\Windows\system32\catroot
2009-07-16 19:44:21 ----RSD---- C:\Windows\assembly
2009-07-16 19:40:42 ----D---- C:\Windows\system32\catroot2
2009-07-15 22:08:48 ----D---- C:\Windows\system32\WDI
2009-07-15 21:20:19 ----A---- C:\Windows\system32\deploytk.dll
2009-07-15 20:11:08 ----D---- C:\Windows\winsxs
2009-07-15 19:38:28 ----D---- C:\Program Files\Windows Mail
2009-07-15 19:38:06 ----D---- C:\ProgramData\Microsoft Help
2009-07-14 15:05:11 ----D---- C:\ProgramData\Adobe
2009-07-14 15:04:48 ----D---- C:\Program Files\Common Files\Adobe
2009-07-14 15:04:48 ----D---- C:\Program Files\Adobe
2009-07-14 14:50:59 ----RD---- C:\Users
2009-07-14 14:36:26 ----HD---- C:\Windows\system32\GroupPolicy
2009-07-14 14:20:47 ----D---- C:\Windows\Prefetch
2009-07-14 11:02:20 ----D---- C:\Windows\Help
2009-07-14 11:02:19 ----D---- C:\Program Files\Common Files
2009-07-11 15:06:43 ----D---- C:\Program Files\Common Files\microsoft shared
2009-07-08 09:11:30 ----D---- C:\Windows\Logs
2009-07-07 16:10:56 ----A---- C:\Windows\system32\mrt.exe
2009-06-30 19:47:30 ----D---- C:\Windows\Microsoft.NET
2009-06-29 16:31:06 ----D---- C:\Program Files\Internet Explorer
2009-06-17 23:40:17 ----D---- C:\Windows\ModemLogs
2009-06-17 01:24:53 ----RSD---- C:\Windows\Fonts
2009-06-12 02:57:41 ----D---- C:\Windows\rescache
2009-06-12 02:45:00 ----SHD---- C:\boot
2009-06-12 02:34:21 ----D---- C:\Program Files\Windows Sidebar
2009-06-12 02:34:21 ----D---- C:\Program Files\Windows Media Player
2009-06-12 02:34:21 ----D---- C:\Program Files\Windows Journal
2009-06-12 02:34:21 ----D---- C:\Program Files\Windows Collaboration
2009-06-12 02:34:21 ----D---- C:\Program Files\Windows Calendar
2009-06-12 02:34:21 ----D---- C:\Program Files\Movie Maker
2009-06-12 02:34:20 ----D---- C:\Program Files\Windows Photo Gallery
2009-06-12 02:34:20 ----D---- C:\Program Files\Common Files\System
2009-06-12 02:34:19 ----D---- C:\Windows\servicing
2009-06-12 02:34:19 ----D---- C:\Windows\ehome
2009-06-12 02:34:19 ----D---- C:\Program Files\Windows Defender
2009-06-12 02:34:17 ----D---- C:\Windows\system32\XPSViewer
2009-06-12 02:34:17 ----D---- C:\Windows\system32\sk-SK
2009-06-12 02:34:17 ----D---- C:\Windows\system32\lv-LV
2009-06-12 02:34:17 ----D---- C:\Windows\system32\ko-KR
2009-06-12 02:34:17 ----D---- C:\Windows\system32\hr-HR
2009-06-12 02:34:17 ----D---- C:\Windows\system32\et-EE
2009-06-12 02:34:17 ----D---- C:\Windows\system32\da-DK
2009-06-12 02:34:17 ----D---- C:\Windows\IME
2009-06-12 02:34:16 ----D---- C:\Windows\system32\en-US
2009-06-12 02:34:15 ----D---- C:\Windows\system32\sv-SE
2009-06-12 02:34:15 ----D---- C:\Windows\system32\SLUI
2009-06-12 02:34:15 ----D---- C:\Windows\system32\setup
2009-06-12 02:34:15 ----D---- C:\Windows\system32\ru-RU
2009-06-12 02:34:15 ----D---- C:\Windows\system32\pt-PT
2009-06-12 02:34:15 ----D---- C:\Windows\system32\oobe
2009-06-12 02:34:15 ----D---- C:\Windows\system32\migration
2009-06-12 02:34:15 ----D---- C:\Windows\system32\it-IT
2009-06-12 02:34:15 ----D---- C:\Windows\system32\hu-HU
2009-06-12 02:34:15 ----D---- C:\Windows\system32\he-IL
2009-06-12 02:34:15 ----D---- C:\Windows\system32\fr-FR
2009-06-12 02:34:15 ----D---- C:\Windows\system32\fi-FI
2009-06-12 02:34:15 ----D---- C:\Windows\system32\el-GR
2009-06-12 02:34:15 ----D---- C:\Windows\system32\de-DE
2009-06-12 02:34:15 ----D---- C:\Windows\system32\cs-CZ
2009-06-12 02:34:15 ----D---- C:\Windows\system32\AdvancedInstallers
2009-06-12 02:34:14 ----D---- C:\Windows\system32\zh-CN
2009-06-12 02:34:14 ----D---- C:\Windows\system32\sr-Latn-CS
2009-06-12 02:34:14 ----D---- C:\Windows\system32\manifeststore
2009-06-12 02:34:14 ----D---- C:\Windows\system32\en
2009-06-12 02:34:13 ----D---- C:\Windows\system32\zh-TW
2009-06-12 02:34:13 ----D---- C:\Windows\system32\uk-UA
2009-06-12 02:34:13 ----D---- C:\Windows\system32\th-TH
2009-06-12 02:34:13 ----D---- C:\Windows\system32\sl-SI
2009-06-12 02:34:13 ----D---- C:\Windows\system32\ro-RO
2009-06-12 02:34:13 ----D---- C:\Windows\system32\pl-PL
2009-06-12 02:34:13 ----D---- C:\Windows\system32\ja-JP
2009-06-12 02:34:13 ----D---- C:\Windows\system32\es-ES
2009-06-12 02:34:13 ----D---- C:\Windows\system32\bg-BG
2009-06-12 02:34:12 ----D---- C:\Windows\system32\wbem
2009-06-12 02:34:12 ----D---- C:\Windows\system32\tr-TR
2009-06-12 02:34:05 ----D---- C:\Windows\system32\pt-BR
2009-06-12 02:34:05 ----D---- C:\Windows\system32\nl-NL
2009-06-12 02:34:05 ----D---- C:\Windows\system32\nb-NO
2009-06-12 02:34:05 ----D---- C:\Windows\system32\migwiz
2009-06-12 02:34:05 ----D---- C:\Windows\system32\lt-LT
2009-06-12 02:34:05 ----D---- C:\Windows\system32\ar-SA
2009-06-12 02:33:54 ----D---- C:\Windows\AppPatch
2009-06-12 02:33:44 ----D---- C:\Windows\system32\Boot
2009-06-12 00:12:25 ----HD---- C:\Program Files\InstallShield Installation Information
2009-06-11 22:08:49 ----D---- C:\Program Files\Common Files\PX Storage Engine
2009-06-11 21:00:00 ----D---- C:\Windows\system32\LogFiles
2009-06-10 16:24:02 ----D---- C:\Program Files\IDT
2009-06-10 14:19:15 ----D---- C:\Program Files\Dell
2009-06-10 14:00:54 ----D---- C:\DELL
2009-06-09 23:44:09 ----D---- C:\Windows\system32\NDF
2009-06-09 23:40:24 ----SD---- C:\ProgramData\Microsoft
2009-06-09 21:14:36 ----D---- C:\Program Files\Microsoft Silverlight
2009-06-09 21:03:50 ----A---- C:\Windows\win.ini
2009-06-09 20:15:48 ----D---- C:\ProgramData\Dell
2009-06-09 10:23:38 ----D---- C:\Program Files\Microsoft Works
2009-06-09 10:09:33 ----D---- C:\Program Files\MSBuild
2009-06-09 10:09:10 ----D---- C:\Windows\ShellNew
2009-06-09 10:08:48 ----D---- C:\Program Files\Microsoft Office
2009-06-09 09:53:10 ----SHD---- C:\$Recycle.Bin
2009-06-08 20:17:43 ----D---- C:\Program Files\Microsoft
2009-06-08 20:17:10 ----D---- C:\Program Files\Windows Live
2009-06-08 19:06:12 ----D---- C:\Windows\PolicyDefinitions
2009-06-08 16:39:46 ----D---- C:\ProgramData\McAfee
2009-06-08 16:33:45 ----D---- C:\Windows\SoftwareDistribution
2009-05-31 17:02:00 ----A---- C:\Windows\system32\OA008Pin.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2009-05-24 128016]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2009-05-24 280592]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2009-05-15 21008]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2009-03-15 56268]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2008-09-16 46592]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2008-09-16 43008]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2008-09-16 38400]
R3 BCM42RLY;BCM42RLY; C:\Windows\system32\drivers\BCM42RLY.sys [2008-12-22 18424]
R3 BCM43XX;Dell Wireless WLAN Card Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2008-12-17 1331192]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys [2008-10-28 135936]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-12-01 2473472]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI; C:\Windows\system32\drivers\IntcHdmi.sys [2008-12-01 112128]
R3 k57nd60x;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60x.sys [2008-10-08 212992]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2009-05-16 19472]
R3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\Windows\system32\DRIVERS\mcdbus.sys [2009-02-24 116736]
R3 OA008Ufd;Creative Camera OA008 Upper Filter Driver; C:\Windows\system32\DRIVERS\OA008Ufd.sys [2009-03-06 133632]
R3 OA008Vid;Creative Camera OA008 Function Driver; C:\Windows\system32\DRIVERS\OA008Vid.sys [2009-05-06 274048]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt.sys [2009-03-16 398336]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-12-01 204464]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 e1express;Intel® PRO/1000 PCI Express Network Connection Driver; C:\Windows\system32\DRIVERS\e1e6032.sys [2008-01-21 220672]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2008-08-22 101504]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2006-11-02 2028032]
S3 s0017bus;Sony Ericsson Device 0017 driver (WDM); C:\Windows\system32\DRIVERS\s0017bus.sys [2008-05-27 90536]
S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s0017mdfl.sys [2008-05-27 15016]
S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s0017mdm.sys [2008-05-27 122152]
S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s0017mgmt.sys [2008-05-27 115496]
S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS); C:\Windows\system32\DRIVERS\s0017nd5.sys [2008-05-27 25768]
S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s0017obex.sys [2008-05-27 111912]
S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM); C:\Windows\system32\DRIVERS\s0017unic.sys [2008-05-27 117672]
S3 UMPass;Microsoft UMPass Driver; C:\Windows\system32\DRIVERS\umpass.sys [2008-01-21 7680]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-21 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\aestsrv.exe [2009-03-16 81920]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-06-05 144712]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 Diskeeper;Diskeeper; C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [2008-11-22 1333016]
R2 DockLoginService;Dock Login Service; C:\Program Files\Dell\DellDock\DockLogin.exe [2008-09-24 155648]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-29 935208]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 sprtsvc_DellSupportCenter;SupportSoft Sprocket Service (DellSupportCenter); C:\Program Files\Dell Support Center\bin\sprtsvc.exe [2008-10-04 201968]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\STacSV.exe [2009-03-16 254042]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-03-30 1533808]
R2 wltrysvc;Dell Wireless WLAN Tray Service; C:\Windows\System32\WLTRYSVC.EXE [2008-12-22 26112]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-06-05 541992]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-06-17 654848]
S3 GoToAssist;GoToAssist; C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe [2009-04-17 16680]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 AVP;Kaspersky Internet Security; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe [2009-05-25 303376]
S4 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]

-----------------EOF-----------------

BC AdBot (Login to Remove)

 


#2 etavares

etavares

    Bleepin' Remover


  • Malware Response Team
  • 15,514 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:59 AM

Posted 26 July 2009 - 04:06 PM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.

Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.

If you have already posted a DDS log, please do so again, as your situation may have changed.
Use the 'Add Reply' and add the new log to this thread.


Thanks and again sorry for the delay.

We need to see some information about what is happening in your machine. Please perform the following scan:
  • Download DDS by sUBs from one of the following links. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explaination about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE


If I don't respond within 2 days, please feel free to PM me.
Please don't ask for help via PM. The forums are there for a reason. Please post in the forums so others may benefit as well.

Posted Image
Unified Network of Instructors and Trusted Eliminators
 


#3 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:11:59 PM

Posted 01 August 2009 - 08:18 AM

Due to the lack of feedback this Topic is closed.

If you need this topic reopened, please request this by sending the moderating team a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users