Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

reformatted and still redirected


  • This topic is locked This topic is locked
11 replies to this topic

#1 toxicpuke

toxicpuke

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:05:29 PM

Posted 24 July 2010 - 05:09 PM

After reformatting my cumputer i still get redirected when browsing on the internet. Any help would be great for this headache. Have the dds stuff here and im not doing the gmer thing because it froze and i had to reformat after i couldnt restart my computer.

Attached Files


Edited by hamluis, 24 July 2010 - 06:17 PM.
Moved from XP to Malware Removal Logs forum ~ Hamluis.


BC AdBot (Login to Remove)

 


#2 suebaby41

suebaby41

    W.A.M. (Women Against Malware)


  • Malware Response Team
  • 6,248 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:South Carolina, USA
  • Local time:06:29 PM

Posted 02 August 2010 - 04:00 PM

Welcome to the BleepingComputer Forums.

Since it has been a few days since you scanned your computer with HijackThis, we will need a new HijackThis log. If you have not already downloaded Random's System Information Tool (RSIT), please download Random's System Information Tool (RSIT) by random/random which includes a HijackThis log and save it to your desktop. If you have RSIT already on your computer, please run it again.
  1. Double click on RSIT.exe to run RSIT.
  2. Click Continue at the disclaimer screen.
  3. Please post the contents of log.txt.
Thank you for your patience.

Please see Preparation Guide for use before posting about your potential Malware problem.

If you have already posted this log at another forum or if you decide to seek help at another forum, please let us know. There is a shortage of helpers and taking the time of two volunteer helpers means that someone else may not be helped.

Please post your HijackThis log as a reply to this thread and not as an attachment. I am always leery of opening attachments so I always request that HijackThis logs are to be posted as a reply to the thread. I do not think that you are attaching anything scary but others may do so.

While we are working on your HijackThis log, please:
  1. Reply to this thread; do not start another!
  2. Do not make any changes on your computer during the cleaning process or download/add programs on your computer unless instructed to do so.
  3. Do not run any other tool until instructed to do so!
  4. Let me know if any of the links do not work or if any of the tools do not work.
  5. Tell me about problems or symptoms that occur during the fix.
  6. Do not run any other programs or open any other windows while doing a fix.
  7. Ask any questions that you have regarding the fix(es), the infection(s), the performance of your computer, etc.
Thanks.
You don't stop laughing when you get old; you get old when you stop laughing.
A Member of U-N-I-T-E (Unified Network of Instructors and Trained Eliminators)
Malware Removal University Masters Graduate

Posted Image
Join The Fight Against Malware
No reply within 5 days will result in your topic being closed. If you need more time, please let me know by posting in this topic so that your topic will not be closed.

#3 toxicpuke

toxicpuke
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:05:29 PM

Posted 04 August 2010 - 06:49 AM

Hey thanks. I loaded a few things on my computer sense the last time like malwarebytes and hijackthis to keep my computer from getting more messed up.

Here is my RSIT log

Logfile of random's system information tool 1.08 (written by random/random)
Run by toxicpuke at 2010-08-04 00:57:58
Microsoft Windows XP Professional Service Pack 3
System drive C: has 116 GB (76%) free of 153 GB
Total RAM: 3326 MB (81% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:57:58 AM, on 8/4/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\Mixer.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\toxicpuke\Local Settings\Temporary Internet Files\Content.IE5\AQDPEPLZ\RSIT[1].exe
C:\Program Files\trend micro\toxicpuke.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKCU\..\Run: [cdloader] "C:\Documents and Settings\toxicpuke\Application Data\mjusbsp\cdloader2.exe" MAGICJACK
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1279309911140
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

--
End of file - 4381 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"C-Media Mixer"=Mixer.exe /startup []
"SoundMAXPnP"=C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe [2003-05-29 790528]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cdloader"=C:\Documents and Settings\toxicpuke\Application Data\mjusbsp\cdloader2.exe [2010-02-26 50520]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-05-27 159744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\THQ\Company of Heroes\RelicCOH.exe"="C:\Program Files\THQ\Company of Heroes\RelicCOH.exe:*:Enabled:Company of Heroes"
"C:\Program Files\Steam\steamapps\common\left 4 dead\left4dead.exe"="C:\Program Files\Steam\steamapps\common\left 4 dead\left4dead.exe:*:Enabled:Left 4 Dead"
"C:\Program Files\THQ\Company of Heroes\RelicDownloader\RelicDownloader.exe"="C:\Program Files\THQ\Company of Heroes\RelicDownloader\RelicDownloader.exe:*:Enabled:Relic Downloader"
"C:\Documents and Settings\toxicpuke\Application Data\mjusbsp\magicJack.exe"="C:\Documents and Settings\toxicpuke\Application Data\mjusbsp\magicJack.exe:*:Enabled:magicJack"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 2 months======

2010-08-04 00:56:59 ----D---- C:\rsit
2010-07-31 19:37:33 ----D---- C:\Program Files\StarCraft II
2010-07-31 19:37:33 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2010-07-31 19:37:33 ----D---- C:\Documents and Settings\All Users\Application Data\Blizzard Entertainment
2010-07-31 19:31:41 ----D---- C:\WINDOWS\Prefetch
2010-07-31 19:26:47 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-07-31 19:26:37 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-07-31 19:26:25 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-07-31 19:26:15 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2010-07-31 19:26:07 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-07-31 19:25:58 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-07-31 19:25:48 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-07-31 19:25:39 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-07-31 19:25:30 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-07-31 19:25:21 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-07-31 19:25:12 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-07-31 19:25:03 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-07-31 19:24:51 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-07-31 19:24:42 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-07-31 19:24:32 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-07-31 19:24:23 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-07-31 19:24:13 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-07-31 19:24:05 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-07-31 19:23:55 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-07-31 19:23:46 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-07-31 19:23:36 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-07-31 19:23:28 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-07-31 19:23:17 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-07-31 19:23:08 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-07-31 19:22:58 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-07-31 19:22:49 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-07-31 19:22:40 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-07-31 19:22:30 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-07-31 19:22:21 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-07-31 19:22:12 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-07-31 19:22:02 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-07-31 19:21:51 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-07-31 19:21:42 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-07-31 19:21:31 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-07-31 19:21:21 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-07-31 19:21:12 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-07-31 19:20:55 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-07-31 19:20:46 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-07-31 19:20:37 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-07-31 19:20:27 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2010-07-31 19:20:17 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-07-31 19:20:08 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-07-31 19:19:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-07-31 19:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-07-31 19:19:40 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-07-31 19:19:30 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-07-31 19:19:17 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-07-31 19:19:07 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-07-31 19:18:57 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_1$
2010-07-31 19:18:41 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2010-07-31 19:18:09 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-07-31 19:18:00 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-07-31 19:17:49 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-07-31 19:17:39 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-07-31 19:17:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-07-31 19:17:20 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-07-31 19:17:10 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-07-31 19:17:00 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-07-31 19:16:50 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-07-31 19:16:40 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$
2010-07-31 19:16:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2010-07-31 19:12:34 ----D---- C:\WINDOWS\system32\scripting
2010-07-31 19:12:34 ----D---- C:\WINDOWS\system32\en
2010-07-31 19:12:34 ----D---- C:\WINDOWS\system32\bits
2010-07-31 19:12:34 ----D---- C:\WINDOWS\l2schemas
2010-07-31 19:09:20 ----D---- C:\WINDOWS\network diagnostic
2010-07-31 19:05:13 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-07-31 19:00:43 ----N---- C:\WINDOWS\system32\wlanapi.dll
2010-07-31 19:00:42 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2010-07-31 19:00:42 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2010-07-31 19:00:42 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2010-07-31 19:00:42 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2010-07-31 19:00:42 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2010-07-31 19:00:42 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2010-07-31 19:00:42 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2010-07-31 19:00:41 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2010-07-31 19:00:41 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2010-07-31 19:00:41 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2010-07-31 19:00:41 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2010-07-31 19:00:40 ----N---- C:\WINDOWS\system32\tspkg.dll
2010-07-31 19:00:40 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2010-07-31 19:00:38 ----N---- C:\WINDOWS\system32\spupdwxp.exe
2010-07-31 19:00:38 ----A---- C:\WINDOWS\system32\spdwnwxp.exe
2010-07-31 19:00:37 ----N---- C:\WINDOWS\system32\slserv.exe
2010-07-31 19:00:37 ----N---- C:\WINDOWS\system32\slrundll.exe
2010-07-31 19:00:37 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2010-07-31 19:00:37 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2010-07-31 19:00:37 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2010-07-31 19:00:37 ----N---- C:\WINDOWS\slrundll.exe
2010-07-31 19:00:36 ----N---- C:\WINDOWS\system32\slgen.dll
2010-07-31 19:00:36 ----N---- C:\WINDOWS\system32\slextspk.dll
2010-07-31 19:00:36 ----N---- C:\WINDOWS\system32\slcoinst.dll
2010-07-31 19:00:36 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2010-07-31 19:00:36 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2010-07-31 19:00:36 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2010-07-31 19:00:36 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2010-07-31 19:00:36 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2010-07-31 19:00:35 ----N---- C:\WINDOWS\system32\setupn.exe
2010-07-31 19:00:35 ----N---- C:\WINDOWS\system32\s3gnb.dll
2010-07-31 19:00:35 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2010-07-31 19:00:35 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2010-07-31 19:00:35 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2010-07-31 19:00:35 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2010-07-31 19:00:34 ----N---- C:\WINDOWS\system32\rasqec.dll
2010-07-31 19:00:34 ----N---- C:\WINDOWS\system32\qutil.dll
2010-07-31 19:00:34 ----N---- C:\WINDOWS\system32\qcliprov.dll
2010-07-31 19:00:34 ----N---- C:\WINDOWS\system32\qagentrt.dll
2010-07-31 19:00:34 ----N---- C:\WINDOWS\system32\qagent.dll
2010-07-31 19:00:33 ----N---- C:\WINDOWS\system32\onex.dll
2010-07-31 19:00:33 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2010-07-31 19:00:33 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2010-07-31 19:00:32 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2010-07-31 19:00:31 ----N---- C:\WINDOWS\system32\napstat.exe
2010-07-31 19:00:31 ----N---- C:\WINDOWS\system32\napmontr.dll
2010-07-31 19:00:31 ----N---- C:\WINDOWS\system32\napipsec.dll
2010-07-31 19:00:31 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2010-07-31 19:00:31 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2010-07-31 19:00:31 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2010-07-31 19:00:31 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2010-07-31 19:00:31 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2010-07-31 19:00:31 ----A---- C:\WINDOWS\system32\msxml6r.dll
2010-07-31 19:00:30 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2010-07-31 19:00:30 ----N---- C:\WINDOWS\system32\mssha.dll
2010-07-31 19:00:27 ----N---- C:\WINDOWS\system32\mmcperf.exe
2010-07-31 19:00:27 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-07-31 19:00:26 ----N---- C:\WINDOWS\system32\mmcex.dll
2010-07-31 19:00:26 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-07-31 19:00:26 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2010-07-31 19:00:26 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2010-07-31 19:00:23 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2010-07-31 19:00:23 ----N---- C:\WINDOWS\system32\kmsvc.dll
2010-07-31 19:00:23 ----N---- C:\WINDOWS\system32\kbdpash.dll
2010-07-31 19:00:23 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2010-07-31 19:00:23 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2010-07-31 19:00:23 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2010-07-31 19:00:20 ----N---- C:\WINDOWS\system32\smtpapi.dll
2010-07-31 19:00:20 ----N---- C:\WINDOWS\system32\rwnh.dll
2010-07-31 19:00:19 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2010-07-31 19:00:19 ----N---- C:\WINDOWS\system32\comsdupd.exe
2010-07-31 19:00:18 ----N---- C:\WINDOWS\system32\ieencode.dll
2010-07-31 19:00:18 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2010-07-31 19:00:18 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2010-07-31 19:00:18 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2010-07-31 19:00:18 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2010-07-31 19:00:18 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2010-07-31 19:00:18 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2010-07-31 19:00:18 ----N---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2010-07-31 19:00:17 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2010-07-31 19:00:16 ----N---- C:\WINDOWS\system32\faxpatch.exe
2010-07-31 19:00:16 ----N---- C:\WINDOWS\system32\eapsvc.dll
2010-07-31 19:00:16 ----N---- C:\WINDOWS\system32\eapqec.dll
2010-07-31 19:00:16 ----N---- C:\WINDOWS\system32\eappprxy.dll
2010-07-31 19:00:16 ----N---- C:\WINDOWS\system32\eapphost.dll
2010-07-31 19:00:16 ----N---- C:\WINDOWS\system32\eappgnui.dll
2010-07-31 19:00:16 ----N---- C:\WINDOWS\system32\eappcfg.dll
2010-07-31 19:00:16 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2010-07-31 19:00:16 ----N---- C:\WINDOWS\system32\eapolqec.dll
2010-07-31 19:00:16 ----A---- C:\WINDOWS\003252_.tmp
2010-07-31 19:00:15 ----N---- C:\WINDOWS\system32\dot3ui.dll
2010-07-31 19:00:15 ----N---- C:\WINDOWS\system32\dot3svc.dll
2010-07-31 19:00:15 ----N---- C:\WINDOWS\system32\dot3msm.dll
2010-07-31 19:00:15 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-07-31 19:00:15 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2010-07-31 19:00:15 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2010-07-31 19:00:15 ----N---- C:\WINDOWS\system32\dot3api.dll
2010-07-31 19:00:14 ----N---- C:\WINDOWS\system32\dimsroam.dll
2010-07-31 19:00:14 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2010-07-31 19:00:14 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2010-07-31 19:00:14 ----N---- C:\WINDOWS\system32\credssp.dll
2010-07-31 19:00:12 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\azroles.dll
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2010-07-31 19:00:11 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2010-07-31 19:00:10 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2010-07-17 00:23:21 ----HDC---- C:\WINDOWS\$NtUninstallKB956744_0$
2010-07-16 21:22:26 ----HDC---- C:\WINDOWS\$NtUninstallKB971737_0$
2010-07-16 21:22:20 ----HDC---- C:\WINDOWS\$NtUninstallKB970430_0$
2010-07-16 21:21:45 ----D---- C:\WINDOWS\ie8updates
2010-07-16 21:21:31 ----D---- C:\WINDOWS\WBEM
2010-07-16 21:20:36 ----HDC---- C:\WINDOWS\ie8
2010-07-16 18:54:03 ----HDC---- C:\WINDOWS\$NtUninstallKB963093$
2010-07-16 18:53:45 ----HDC---- C:\WINDOWS\$NtUninstallKB961118_0$
2010-07-16 18:53:33 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2010-07-16 18:53:30 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2010-07-16 18:53:23 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2010-07-16 18:53:11 ----HDC---- C:\WINDOWS\$NtUninstallKB950749$
2010-07-16 18:53:06 ----HDC---- C:\WINDOWS\$NtUninstallKB945553$
2010-07-16 18:53:00 ----HDC---- C:\WINDOWS\$NtUninstallKB943055$
2010-07-16 18:52:52 ----HDC---- C:\WINDOWS\$NtUninstallKB946026$
2010-07-16 18:52:41 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2010-07-16 18:52:34 ----HDC---- C:\WINDOWS\$NtUninstallKB944653$
2010-07-16 18:52:29 ----HDC---- C:\WINDOWS\$NtUninstallKB936357$
2010-07-16 18:52:24 ----HDC---- C:\WINDOWS\$NtUninstallKB938127$
2010-07-16 18:52:20 ----HDC---- C:\WINDOWS\$NtUninstallKB938828$
2010-07-16 18:52:15 ----HDC---- C:\WINDOWS\$NtUninstallKB925398_WMP64$
2010-07-16 18:52:06 ----HDC---- C:\WINDOWS\$NtUninstallKB929123$
2010-07-16 18:52:01 ----HDC---- C:\WINDOWS\$NtUninstallKB927891$
2010-07-16 18:51:56 ----HDC---- C:\WINDOWS\$NtUninstallKB930916$
2010-07-16 18:51:51 ----HDC---- C:\WINDOWS\$NtUninstallKB920213$
2010-07-16 18:51:46 ----HDC---- C:\WINDOWS\$NtUninstallKB890046$
2010-07-16 18:51:00 ----HDC---- C:\WINDOWS\$NtUninstallKB932168$
2010-07-16 18:50:53 ----HDC---- C:\WINDOWS\$NtUninstallKB931261$
2010-07-16 18:50:49 ----HDC---- C:\WINDOWS\$NtUninstallKB930178$
2010-07-16 18:50:44 ----HDC---- C:\WINDOWS\$NtUninstallKB925902$
2010-07-16 18:50:28 ----HDC---- C:\WINDOWS\$NtUninstallKB925876$
2010-07-16 18:50:23 ----HDC---- C:\WINDOWS\$NtUninstallKB925720$
2010-07-16 18:50:17 ----HDC---- C:\WINDOWS\$NtUninstallKB926436$
2010-07-16 18:50:12 ----HDC---- C:\WINDOWS\$NtUninstallKB918118$
2010-07-16 18:50:07 ----HDC---- C:\WINDOWS\$NtUninstallKB927779$
2010-07-16 18:50:03 ----HDC---- C:\WINDOWS\$NtUninstallKB924667$
2010-07-16 18:49:58 ----HDC---- C:\WINDOWS\$NtUninstallKB927802$
2010-07-16 18:49:53 ----HDC---- C:\WINDOWS\$NtUninstallKB928843$
2010-07-16 18:49:48 ----HDC---- C:\WINDOWS\$NtUninstallKB928255$
2010-07-16 18:49:43 ----HDC---- C:\WINDOWS\$NtUninstallKB926255$
2010-07-16 18:49:38 ----HDC---- C:\WINDOWS\$NtUninstallKB923980$
2010-07-16 18:49:33 ----HDC---- C:\WINDOWS\$NtUninstallKB923191$
2010-07-16 18:49:28 ----HDC---- C:\WINDOWS\$NtUninstallKB920872$
2010-07-16 18:49:22 ----HDC---- C:\WINDOWS\$NtUninstallKB916595$
2010-07-16 18:49:16 ----HDC---- C:\WINDOWS\$NtUninstallKB922582$
2010-07-16 18:49:09 ----HDC---- C:\WINDOWS\$NtUninstallKB920683$
2010-07-16 18:49:05 ----HDC---- C:\WINDOWS\$NtUninstallKB920670$
2010-07-16 18:49:00 ----HDC---- C:\WINDOWS\$NtUninstallKB914388$
2010-07-16 18:48:55 ----HDC---- C:\WINDOWS\$NtUninstallKB911280$
2010-07-16 18:48:50 ----HDC---- C:\WINDOWS\$NtUninstallKB913580$
2010-07-16 18:48:45 ----HDC---- C:\WINDOWS\$NtUninstallKB918439$
2010-07-16 18:48:41 ----HDC---- C:\WINDOWS\$NtUninstallKB914389$
2010-07-16 18:48:36 ----HDC---- C:\WINDOWS\$NtUninstallKB908531$
2010-07-16 18:48:31 ----HDC---- C:\WINDOWS\$NtUninstallKB900485$
2010-07-16 18:48:25 ----HDC---- C:\WINDOWS\$NtUninstallKB911562$
2010-07-16 18:48:20 ----HDC---- C:\WINDOWS\$NtUninstallKB911564$
2010-07-16 18:48:11 ----HDC---- C:\WINDOWS\$NtUninstallKB911927$
2010-07-16 18:48:06 ----HDC---- C:\WINDOWS\$NtUninstallKB910437$
2010-07-16 18:48:00 ----HDC---- C:\WINDOWS\$NtUninstallKB900725$
2010-07-16 18:47:52 ----HDC---- C:\WINDOWS\$NtUninstallKB905749$
2010-07-16 18:47:28 ----HDC---- C:\WINDOWS\$NtUninstallKB905414$
2010-07-16 18:47:22 ----HDC---- C:\WINDOWS\$NtUninstallKB901017$
2010-07-16 18:47:13 ----HDC---- C:\WINDOWS\$NtUninstallKB902400$
2010-07-16 18:47:07 ----HDC---- C:\WINDOWS\$NtUninstallKB894391$
2010-07-16 18:47:03 ----HDC---- C:\WINDOWS\$NtUninstallKB896423$
2010-07-16 18:46:59 ----HDC---- C:\WINDOWS\$NtUninstallKB899591$
2010-07-16 18:46:54 ----HDC---- C:\WINDOWS\$NtUninstallKB893756$
2010-07-16 18:46:48 ----HDC---- C:\WINDOWS\$NtUninstallKB896358$
2010-07-16 18:46:42 ----HDC---- C:\WINDOWS\$NtUninstallKB890859$
2010-07-16 18:46:37 ----HDC---- C:\WINDOWS\$NtUninstallKB901214$
2010-07-16 18:46:31 ----HDC---- C:\WINDOWS\$NtUninstallKB896344$
2010-07-16 18:46:26 ----HDC---- C:\WINDOWS\$NtUninstallKB885835$
2010-07-16 18:46:21 ----HDC---- C:\WINDOWS\$NtUninstallKB887472$
2010-07-16 18:46:16 ----HDC---- C:\WINDOWS\$NtUninstallKB888302$
2010-07-16 18:46:12 ----HDC---- C:\WINDOWS\$NtUninstallKB885836$
2010-07-16 18:46:08 ----HDC---- C:\WINDOWS\$NtUninstallKB886185$
2010-07-16 18:46:03 ----HDC---- C:\WINDOWS\$NtUninstallKB873339$
2010-07-16 18:41:13 ----N---- C:\WINDOWS\system32\tsgqec.dll
2010-07-16 18:41:13 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2010-07-16 18:41:13 ----N---- C:\WINDOWS\system32\aaclient.dll
2010-07-16 18:33:54 ----A---- C:\WINDOWS\mixerdef.ini
2010-07-16 17:59:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593_0$
2010-07-16 17:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$
2010-07-16 17:59:20 ----HDC---- C:\WINDOWS\$NtUninstallKB979559_0$
2010-07-16 17:59:15 ----HDC---- C:\WINDOWS\$NtUninstallKB975562_0$
2010-07-16 17:59:03 ----HDC---- C:\WINDOWS\$NtUninstallKB979482_0$
2010-07-16 17:58:51 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-07-16 17:58:46 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-07-16 17:58:42 ----HDC---- C:\WINDOWS\$NtUninstallKB980218_0$
2010-07-16 17:58:36 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2010-07-16 17:58:31 ----HDC---- C:\WINDOWS\$NtUninstallKB978542_0$
2010-07-16 17:58:26 ----HDC---- C:\WINDOWS\$NtUninstallKB978601_0$
2010-07-16 17:58:18 ----HDC---- C:\WINDOWS\$NtUninstallKB979683_0$
2010-07-16 17:58:13 ----HDC---- C:\WINDOWS\$NtUninstallKB978338_0$
2010-07-16 17:58:08 ----HDC---- C:\WINDOWS\$NtUninstallKB979309_0$
2010-07-16 17:58:04 ----HDC---- C:\WINDOWS\$NtUninstallKB981350$
2010-07-16 17:58:00 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-07-16 17:57:56 ----HDC---- C:\WINDOWS\$NtUninstallKB980232_0$
2010-07-16 17:57:49 ----HDC---- C:\WINDOWS\$NtUninstallKB975561_0$
2010-07-16 17:57:44 ----HDC---- C:\WINDOWS\$NtUninstallKB978706_0$
2010-07-16 17:57:39 ----HDC---- C:\WINDOWS\$NtUninstallKB971468_0$
2010-07-16 17:57:34 ----HDC---- C:\WINDOWS\$NtUninstallKB977914_0$
2010-07-16 17:57:28 ----HDC---- C:\WINDOWS\$NtUninstallKB975560_0$
2010-07-16 17:57:21 ----HDC---- C:\WINDOWS\$NtUninstallKB978037_0$
2010-07-16 17:57:17 ----HDC---- C:\WINDOWS\$NtUninstallKB975713_0$
2010-07-16 17:57:12 ----HDC---- C:\WINDOWS\$NtUninstallKB972270_0$
2010-07-16 17:57:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-07-16 17:57:01 ----HDC---- C:\WINDOWS\$NtUninstallKB955759_0$
2010-07-16 17:56:56 ----HDC---- C:\WINDOWS\$NtUninstallKB974392_0$
2010-07-16 17:56:51 ----HDC---- C:\WINDOWS\$NtUninstallKB974318_0$
2010-07-16 17:56:46 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2010-07-16 17:56:42 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_0$
2010-07-16 17:56:37 ----HDC---- C:\WINDOWS\$NtUninstallKB975467_0$
2010-07-16 17:56:30 ----HDC---- C:\WINDOWS\$NtUninstallKB968389_0$
2010-07-16 17:56:25 ----HDC---- C:\WINDOWS\$NtUninstallKB969059_0$
2010-07-16 17:56:22 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-07-16 17:56:17 ----HDC---- C:\WINDOWS\$NtUninstallKB974112_0$
2010-07-16 17:56:13 ----HDC---- C:\WINDOWS\$NtUninstallKB974571_0$
2010-07-16 17:56:09 ----HDC---- C:\WINDOWS\$NtUninstallKB975025_0$
2010-07-16 17:56:05 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-07-16 17:56:02 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-07-16 17:55:54 ----HDC---- C:\WINDOWS\$NtUninstallKB956844_0$
2010-07-16 17:55:44 ----A---- C:\WINDOWS\system32\MRT.exe
2010-07-16 17:55:39 ----HDC---- C:\WINDOWS\$NtUninstallKB932823-v3$
2010-07-16 17:45:59 ----HDC---- C:\WINDOWS\$NtUninstallKB971657_0$
2010-07-16 17:45:53 ----HDC---- C:\WINDOWS\$NtUninstallKB973815_0$
2010-07-16 17:45:48 ----HDC---- C:\WINDOWS\$NtUninstallKB960859_0$
2010-07-16 17:45:43 ----HDC---- C:\WINDOWS\$NtUninstallKB973507_0$
2010-07-16 17:45:38 ----D---- C:\WINDOWS\ServicePackFiles
2010-07-16 17:45:36 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2010-07-16 17:45:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973869_0$
2010-07-16 17:45:24 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2010-07-16 17:45:16 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$
2010-07-16 17:41:04 ----D---- C:\WINDOWS\system32\XPSViewer
2010-07-16 17:41:01 ----D---- C:\Program Files\MSBuild
2010-07-16 17:40:56 ----D---- C:\Program Files\Reference Assemblies
2010-07-16 17:40:28 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-07-16 17:40:27 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-07-16 17:40:27 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-07-16 17:40:27 ----D---- C:\c6f925ab8d1cba4d3a1b90d1ced23b
2010-07-16 17:37:01 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2010-07-16 17:36:48 ----D---- C:\Program Files\MSXML 6.0
2010-07-16 17:35:57 ----HDC---- C:\WINDOWS\$NtUninstallKB970238_0$
2010-07-16 17:35:53 ----HDC---- C:\WINDOWS\$NtUninstallKB961501_0$
2010-07-16 17:35:49 ----HDC---- C:\WINDOWS\$NtUninstallKB959426_0$
2010-07-16 17:35:44 ----HDC---- C:\WINDOWS\$NtUninstallKB960803_0$
2010-07-16 17:35:38 ----HDC---- C:\WINDOWS\$NtUninstallKB952004_0$
2010-07-16 17:35:28 ----HDC---- C:\WINDOWS\$NtUninstallKB956572_0$
2010-07-16 17:35:21 ----HDC---- C:\WINDOWS\$NtUninstallKB923561_0$
2010-07-16 17:35:15 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
2010-07-16 17:29:53 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$
2010-07-16 17:29:49 ----HDC---- C:\WINDOWS\$NtUninstallKB960225_0$
2010-07-16 17:29:44 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$
2010-07-16 17:29:40 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$
2010-07-16 17:29:35 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$
2010-07-16 17:29:31 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$
2010-07-16 17:29:27 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
2010-07-16 17:29:23 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
2010-07-16 17:29:19 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
2010-07-16 17:29:15 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$
2010-07-16 17:29:09 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2010-07-16 17:29:01 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$
2010-07-16 17:29:01 ----D---- C:\Documents and Settings\toxicpuke\Application Data\Windows Desktop Search
2010-07-16 17:28:41 ----D---- C:\WINDOWS\system32\GroupPolicy
2010-07-16 17:28:41 ----D---- C:\WINDOWS\system32\en-US
2010-07-16 17:28:41 ----D---- C:\Program Files\Windows Desktop Search
2010-07-16 17:28:29 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
2010-07-16 17:28:25 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4_0$
2010-07-16 17:28:20 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$
2010-07-16 17:28:19 ----A---- C:\WINDOWS\system32\xmllite.dll
2010-07-16 17:28:14 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
2010-07-16 17:28:10 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$
2010-07-16 17:28:06 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2010-07-16 17:27:58 ----HDC---- C:\WINDOWS\$NtUninstallKB926239$
2010-07-16 17:27:54 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-07-16 17:27:53 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2010-07-16 17:27:43 ----D---- C:\Program Files\Windows Media Connect 2
2010-07-16 17:27:36 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2010-07-16 17:27:13 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2010-07-16 17:27:05 ----D---- C:\WINDOWS\system32\LogFiles
2010-07-16 17:27:05 ----D---- C:\WINDOWS\system32\drivers\UMDF
2010-07-16 17:27:01 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2010-07-16 17:26:50 ----HDC---- C:\WINDOWS\$NtUninstallKB891122$
2010-07-16 17:26:39 ----D---- C:\WINDOWS\RegisteredPackages
2010-07-16 17:26:32 ----D---- C:\Program Files\HP Wireless Keyboard
2010-07-16 17:26:29 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2010-07-16 17:26:27 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-07-16 17:26:26 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2010-07-16 17:26:24 ----A---- C:\WINDOWS\system32\drivers\dmusic.sys
2010-07-16 17:26:21 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2010-07-16 17:26:19 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2010-07-16 17:26:18 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2010-07-16 17:26:17 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2010-07-16 17:26:16 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2010-07-16 17:26:15 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2010-07-16 17:26:13 ----A---- C:\WINDOWS\system32\drivers\mspqm.sys
2010-07-16 17:26:12 ----A---- C:\WINDOWS\system32\drivers\mspclock.sys
2010-07-16 17:26:09 ----A---- C:\WINDOWS\system32\drivers\gameenum.sys
2010-07-16 17:25:57 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-07-16 17:25:57 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2010-07-16 17:25:57 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2010-07-16 17:24:59 ----RSD---- C:\WINDOWS\assembly
2010-07-16 17:24:59 ----D---- C:\WINDOWS\system32\URTTemp
2010-07-16 17:24:59 ----D---- C:\WINDOWS\Microsoft.NET
2010-07-16 17:23:35 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-07-16 17:17:12 ----N---- C:\WINDOWS\system32\xpsp4res.dll
2010-07-16 17:17:12 ----A---- C:\WINDOWS\system32\xpsp3res.dll
2010-07-16 17:15:54 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2010-07-16 17:13:58 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2010-07-16 17:09:21 ----D---- C:\WINDOWS\system32\PreInstall
2010-07-16 17:09:21 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-07-16 17:09:20 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-07-16 17:09:20 ----HD---- C:\WINDOWS\$hf_mig$
2010-07-16 17:08:58 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2010-07-16 15:52:14 ----A---- C:\WINDOWS\system32\wups2.dll
2010-07-16 15:52:14 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2010-07-16 15:52:13 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-07-16 15:52:13 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2010-07-16 15:52:13 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2010-07-16 15:50:19 ----D---- C:\Program Files\Intel
2010-07-16 15:50:14 ----A---- C:\WINDOWS\system32\PROUnstl.exe
2010-07-16 15:37:44 ----D---- C:\Documents and Settings\toxicpuke\Application Data\Identities
2010-07-16 15:37:40 ----HD---- C:\Program Files\Uninstall Information
2010-07-16 15:37:21 ----ASH---- C:\Documents and Settings\toxicpuke\Application Data\desktop.ini
2010-07-16 15:37:20 ----SD---- C:\Documents and Settings\toxicpuke\Application Data\Microsoft
2010-07-16 15:20:04 ----D---- C:\WINDOWS\SoftwareDistribution
2010-07-16 15:20:01 ----SD---- C:\WINDOWS\system32\Microsoft
2010-07-16 15:20:01 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-07-16 15:16:40 ----D---- C:\WINDOWS\system32\xircom
2010-07-16 15:16:40 ----D---- C:\Program Files\xerox
2010-07-16 15:16:40 ----D---- C:\Program Files\microsoft frontpage
2010-07-16 15:16:18 ----RASH---- C:\MSDOS.SYS
2010-07-16 15:16:18 ----RASH---- C:\IO.SYS
2010-07-16 15:16:18 ----A---- C:\WINDOWS\control.ini
2010-07-16 15:16:18 ----A---- C:\CONFIG.SYS
2010-07-16 15:16:18 ----A---- C:\AUTOEXEC.BAT
2010-07-16 15:16:10 ----A---- C:\WINDOWS\OEWABLog.txt
2010-07-16 15:16:06 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-07-16 15:15:24 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-07-16 15:15:24 ----RD---- C:\WINDOWS\Offline Web Pages
2010-07-16 15:15:24 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-07-16 15:15:19 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-07-16 15:15:15 ----HD---- C:\Program Files\WindowsUpdate
2010-07-16 15:14:59 ----D---- C:\WINDOWS\system32\DirectX
2010-07-16 15:14:42 ----A---- C:\WINDOWS\system32\atrace.dll
2010-07-16 15:14:40 ----A---- C:\WINDOWS\system32\desktop.ini
2010-07-16 15:14:40 ----A---- C:\WINDOWS\desktop.ini
2010-07-16 15:14:35 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-07-16 15:14:34 ----A---- C:\WINDOWS\system32\acctres.dll
2010-07-16 15:14:33 ----D---- C:\Program Files\Common Files\Services
2010-07-16 15:14:31 ----SD---- C:\WINDOWS\Tasks
2010-07-16 15:14:31 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-07-16 15:14:30 ----D---- C:\Program Files\Common Files\MSSoap
2010-07-16 15:14:27 ----D---- C:\WINDOWS\system32\Macromed
2010-07-16 15:14:27 ----D---- C:\WINDOWS\srchasst
2010-07-16 15:14:24 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-07-16 15:14:24 ----A---- C:\WINDOWS\system32\wups.dll
2010-07-16 15:14:24 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-07-16 15:14:24 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-07-16 15:14:24 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-07-16 15:14:24 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-07-16 15:14:24 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-07-16 15:14:24 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-07-16 15:14:24 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-07-16 15:14:24 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-07-16 15:14:24 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-07-16 15:14:23 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-07-16 15:14:23 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-07-16 15:14:20 ----D---- C:\Program Files\Movie Maker
2010-07-16 15:14:17 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-07-16 15:14:17 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-07-16 15:14:17 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-07-16 15:14:17 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-07-16 15:14:15 ----A---- C:\WINDOWS\system32\fltmc.exe
2010-07-16 15:14:15 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-07-16 15:14:15 ----A---- C:\WINDOWS\system32\drivers\fltmgr.sys
2010-07-16 15:14:14 ----D---- C:\WINDOWS\system32\Restore
2010-07-16 15:14:14 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-07-16 15:14:14 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-07-16 15:14:14 ----A---- C:\WINDOWS\system32\srclient.dll
2010-07-16 15:14:14 ----A---- C:\WINDOWS\system32\ils.dll
2010-07-16 15:14:14 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2010-07-16 15:14:13 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-07-16 15:14:13 ----A---- C:\WINDOWS\system32\msconf.dll
2010-07-16 15:14:13 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-07-16 15:14:13 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-07-16 15:14:13 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-07-16 15:14:11 ----D---- C:\Program Files\NetMeeting
2010-07-16 15:14:11 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-07-16 15:14:11 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-07-16 15:14:10 ----A---- C:\WINDOWS\system32\inetres.dll
2010-07-16 15:14:10 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-07-16 15:14:08 ----D---- C:\Program Files\Outlook Express
2010-07-16 15:14:08 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-07-16 15:14:08 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-07-16 15:14:08 ----A---- C:\WINDOWS\system32\mstask.dll
2010-07-16 15:14:08 ----A---- C:\WINDOWS\system32\isign32.dll
2010-07-16 15:14:08 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-07-16 15:14:08 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-07-16 15:14:08 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-07-16 15:14:03 ----D---- C:\Program Files\Common Files\System
2010-07-16 15:14:01 ----D---- C:\Program Files\Internet Explorer
2010-07-16 15:13:33 ----D---- C:\Program Files\ComPlus Applications
2010-07-16 15:13:31 ----A---- C:\WINDOWS\vbaddin.ini
2010-07-16 15:13:31 ----A---- C:\WINDOWS\vb.ini
2010-07-16 15:13:27 ----D---- C:\WINDOWS\Registration
2010-07-16 15:13:21 ----D---- C:\Program Files\Windows Media Player
2010-07-16 15:13:21 ----D---- C:\Program Files\Online Services
2010-07-16 15:13:17 ----D---- C:\Program Files\Messenger
2010-07-16 15:13:14 ----D---- C:\Program Files\MSN Gaming Zone
2010-07-16 15:13:14 ----A---- C:\WINDOWS\system32\write.exe
2010-07-16 15:13:06 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-07-16 15:13:06 ----A---- C:\WINDOWS\system32\hticons.dll
2010-07-16 15:13:06 ----A---- C:\WINDOWS\system32\avwav.dll
2010-07-16 15:13:06 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-07-16 15:13:06 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-07-16 15:13:05 ----A---- C:\WINDOWS\system32\winchat.exe
2010-07-16 15:13:00 ----A---- C:\WINDOWS\system32\getuname.dll
2010-07-16 15:13:00 ----A---- C:\WINDOWS\system32\charmap.exe
2010-07-16 15:13:00 ----A---- C:\WINDOWS\system32\calc.exe
2010-07-16 15:12:59 ----A---- C:\WINDOWS\system32\winmine.exe
2010-07-16 15:12:59 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-07-16 15:12:59 ----A---- C:\WINDOWS\system32\sol.exe
2010-07-16 15:12:59 ----A---- C:\WINDOWS\system32\reset.exe
2010-07-16 15:12:59 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-07-16 15:12:59 ----A---- C:\WINDOWS\system32\freecell.exe
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\tskill.exe
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\tscon.exe
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\shadow.exe
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\regini.exe
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\msg.exe
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\logoff.exe
2010-07-16 15:12:58 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-07-16 15:12:57 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-07-16 15:12:57 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-07-16 15:12:57 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-07-16 15:12:57 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-07-16 15:12:57 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-07-16 15:12:57 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-07-16 15:12:57 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-07-16 15:12:56 ----A---- C:\WINDOWS\system32\stclient.dll
2010-07-16 15:12:56 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-07-16 15:12:52 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-07-16 15:12:43 ----D---- C:\Program Files\MSN
2010-07-16 15:12:42 ----D---- C:\Program Files\Windows NT
2010-07-16 15:12:42 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-07-16 15:12:42 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-07-16 15:12:42 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-07-16 15:12:42 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-07-16 15:12:41 ----A---- C:\WINDOWS\system32\spider.exe
2010-07-16 15:12:41 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-07-16 15:12:41 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2010-07-16 15:12:41 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2010-07-16 15:12:41 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2010-07-16 15:12:41 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-07-16 15:12:40 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2010-07-16 15:12:40 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-07-16 15:12:40 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-07-16 15:12:40 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-07-16 15:12:40 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-07-16 15:12:40 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-07-16 15:12:40 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-07-16 15:12:40 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-07-16 15:12:40 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-07-16 15:12:40 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-07-16 15:12:39 ----D---- C:\WINDOWS\system32\MsDtc
2010-07-16 15:12:39 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-07-16 15:12:39 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-07-16 15:12:39 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-07-16 15:12:39 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-07-16 15:12:39 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-07-16 15:12:39 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-07-16 15:12:39 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-07-16 15:12:39 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-07-16 15:12:39 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-07-16 15:12:38 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-07-16 15:12:38 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-07-16 15:12:38 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-07-16 15:12:38 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-07-16 15:12:37 ----D---- C:\WINDOWS\system32\Com
2010-07-16 15:12:37 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-07-16 15:12:37 ----A---- C:\WINDOWS\system32\colbact.dll
2010-07-16 15:12:37 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-07-16 15:12:37 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-07-16 15:12:37 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-07-16 15:12:37 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-07-16 15:12:36 ----A---- C:\WINDOWS\system32\comuid.dll
2010-07-16 15:12:36 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-07-16 15:12:31 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-07-16 15:12:31 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-07-16 15:12:31 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-07-16 15:12:31 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-07-16 15:12:25 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2010-07-16 15:12:24 ----A---- C:\WINDOWS\system32\drivers\termdd.sys

======List of files/folders modified in the last 2 months======

2010-08-04 00:57:58 ----D---- C:\Program Files\Trend Micro
2010-08-04 00:34:22 ----D---- C:\WINDOWS\system32\CatRoot2
2010-08-04 00:33:46 ----D---- C:\WINDOWS\system32
2010-08-03 19:09:44 ----D---- C:\WINDOWS\temp
2010-08-01 07:41:34 ----D---- C:\WINDOWS
2010-07-31 20:51:42 ----RD---- C:\Program Files
2010-07-31 20:51:42 ----D---- C:\Program Files\Common Files
2010-07-31 19:33:53 ----A---- C:\WINDOWS\setuplog.txt
2010-07-31 19:33:17 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-07-31 19:32:27 ----HD---- C:\WINDOWS\inf
2010-07-31 19:31:16 ----D---- C:\WINDOWS\system32\Setup
2010-07-31 19:31:16 ----D---- C:\WINDOWS\AppPatch
2010-07-31 19:31:15 ----D---- C:\WINDOWS\system32\wbem
2010-07-31 19:31:14 ----RSD---- C:\WINDOWS\Fonts
2010-07-31 19:31:06 ----D---- C:\WINDOWS\system32\drivers
2010-07-31 19:30:02 ----D---- C:\WINDOWS\security
2010-07-31 19:26:49 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-07-31 19:26:49 ----D---- C:\WINDOWS\system32\CatRoot
2010-07-31 19:12:56 ----D---- C:\WINDOWS\WinSxS
2010-07-31 19:12:44 ----D---- C:\WINDOWS\system32\inetsrv
2010-07-31 19:12:44 ----D---- C:\WINDOWS\ime
2010-07-31 19:12:44 ----D---- C:\WINDOWS\Help
2010-07-31 19:12:35 ----D---- C:\WINDOWS\system32\usmt
2010-07-31 19:12:34 ----D---- C:\WINDOWS\PeerNet
2010-07-31 19:10:59 ----D---- C:\WINDOWS\system32\npp
2010-07-31 19:10:59 ----D---- C:\WINDOWS\mui
2010-07-31 19:10:58 ----D---- C:\WINDOWS\msagent
2010-07-31 19:10:34 ----D---- C:\WINDOWS\system32\oobe
2010-07-31 19:05:11 ----D---- C:\WINDOWS\ehome
2010-07-31 18:49:30 ----D---- C:\WINDOWS\Debug
2010-07-16 21:21:25 ----D---- C:\WINDOWS\Media
2010-07-16 17:40:35 ----D---- C:\WINDOWS\system32\spool
2010-07-16 17:39:42 ----D---- C:\WINDOWS\pchealth
2010-07-16 17:27:46 ----A---- C:\WINDOWS\win.ini
2010-07-16 17:25:05 ----D---- C:\WINDOWS\system32\mui
2010-07-16 15:37:20 ----D---- C:\Documents and Settings
2010-07-16 15:16:06 ----A---- C:\WINDOWS\ODBCINST.INI
2010-07-16 15:15:56 ----ASH---- C:\WINDOWS\fonts\desktop.ini
2010-07-16 15:15:26 ----RD---- C:\WINDOWS\Web
2010-07-16 15:13:11 ----D---- C:\WINDOWS\Cursors
2010-07-16 15:11:36 ----A---- C:\Boot.bak
2010-07-12 04:55:38 ----A---- C:\WINDOWS\system32\lsdelete.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Intel AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-13 42368]
R0 Lbd;Lbd; C:\WINDOWS\system32\DRIVERS\Lbd.sys [2010-07-12 64288]
R0 ohci1394;VIA OHCI Compliant IEEE 1394 Host Controller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2003-03-13 100224]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-05-27 4830720]
R3 cmpci;C-Media PCI Audio Driver (WDM); C:\WINDOWS\system32\drivers\cmaudio.sys [2002-11-18 377358]
R3 E1000;Intel® PRO/1000 Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1000325.sys [2008-08-20 171152]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-04 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-06-02 578304]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 MidiSyn;MidiSyn; C:\WINDOWS\system32\drivers\MidiSyn.sys [2002-09-20 235100]
S3 usbaudio;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-05-27 602112]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2010-07-12 1352832]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
My first DDS Log


DDS (Ver_10-03-17.01) - NTFSx86
Run by toxicpuke at 1:03:06.37 on Wed 08/04/2010
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3326.2684 [GMT -4:00]

AV: Lavasoft Ad-Watch Live! Anti-Virus *On-access scanning enabled* (Updated) {A1C4F2E0-7FDE-4917-AFAE-013EFC3EDE33}

============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\Mixer.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\toxicpuke\Desktop\dds.scr
C:\Program Files\Skype\Toolbars\Shared\SkypeNames2.exe

============== Pseudo HJT Report ===============

BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
uRun: [cdloader] "c:\documents and settings\toxicpuke\application data\mjusbsp\cdloader2.exe" MAGICJACK
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [C-Media Mixer] Mixer.exe /startup
mRun: [SoundMAXPnP] c:\program files\analog devices\soundmax\SMax4PNP.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1279309911140
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll

============= SERVICES / DRIVERS ===============

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2002-1-1 64288]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2010-7-12 1352832]

=============== Created Last 30 ================

2010-07-31 23:37:33 0 d-----w- c:\program files\StarCraft II
2010-07-31 23:37:33 0 d-----w- c:\program files\common files\Blizzard Entertainment
2010-07-31 23:37:33 0 d-----w- c:\docume~1\alluse~1\applic~1\Blizzard Entertainment
2010-07-31 23:12:34 0 d-----w- c:\windows\system32\scripting
2010-07-31 23:12:34 0 d-----w- c:\windows\system32\en
2010-07-31 23:12:34 0 d-----w- c:\windows\system32\bits
2010-07-31 23:12:34 0 d-----w- c:\windows\l2schemas
2010-07-31 23:09:20 0 d-----w- c:\windows\network diagnostic
2010-07-17 04:20:32 0 d-sh--w- c:\documents and settings\toxicpuke\IECompatCache
2010-07-17 04:20:21 0 d-sh--w- c:\documents and settings\toxicpuke\PrivacIE
2010-07-17 03:29:06 0 d-sh--w- c:\documents and settings\toxicpuke\IETldCache
2010-07-17 01:21:49 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2010-07-17 01:21:49 599040 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2010-07-17 01:21:49 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2010-07-17 01:21:49 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2010-07-17 01:21:49 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll
2010-07-17 01:21:49 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2010-07-17 01:21:49 11076096 -c----w- c:\windows\system32\dllcache\ieframe.dll
2010-07-17 01:21:45 0 d-----w- c:\windows\ie8updates
2010-07-17 01:21:43 41984 -c----w- c:\windows\system32\dllcache\iecompat.dll
2010-07-17 01:20:36 0 dc-h--w- c:\windows\ie8
2010-07-16 22:43:44 1089593 -c----w- c:\windows\system32\dllcache\ntprint.cat
2010-07-16 22:41:13 53248 ------w- c:\windows\system32\tsgqec.dll
2010-07-16 22:41:13 290304 ------w- c:\windows\system32\rhttpaa.dll
2010-07-16 22:41:13 136192 ------w- c:\windows\system32\aaclient.dll
2010-07-16 22:33:54 25 ----a-w- c:\windows\mixerdef.ini
2010-07-16 21:45:38 0 d-----w- c:\windows\ServicePackFiles
2010-07-16 21:41:04 0 d-----w- c:\windows\system32\XPSViewer
2010-07-16 21:40:28 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2010-07-16 21:40:28 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2010-07-16 21:40:28 117760 ------w- c:\windows\system32\prntvpt.dll
2010-07-16 21:40:27 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2010-07-16 21:40:27 575488 ------w- c:\windows\system32\xpsshhdr.dll
2010-07-16 21:40:27 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2010-07-16 21:40:27 1676288 ------w- c:\windows\system32\xpssvcs.dll
2010-07-16 21:40:27 0 d-----w- C:\c6f925ab8d1cba4d3a1b90d1ced23b
2010-07-16 21:36:48 0 d-----w- c:\program files\MSXML 6.0
2010-07-16 21:29:01 0 d-----w- c:\docume~1\toxicp~1\applic~1\Windows Desktop Search
2010-07-16 21:28:41 0 d-----w- c:\windows\system32\GroupPolicy
2010-07-16 21:28:41 0 d-----w- c:\program files\Windows Desktop Search
2010-07-16 21:27:43 0 d-----w- c:\program files\Windows Media Connect 2
2010-07-16 21:27:05 0 d-----w- c:\windows\system32\LogFiles
2010-07-16 21:26:32 0 d-----w- c:\program files\HP Wireless Keyboard
2010-07-16 21:25:57 60160 ----a-w- c:\windows\system32\drivers\drmk.sys
2010-07-16 21:25:57 4096 ----a-w- c:\windows\system32\ksuser.dll
2010-07-16 21:25:57 146048 ----a-w- c:\windows\system32\drivers\portcls.sys
2010-07-16 21:25:57 129536 ----a-w- c:\windows\system32\ksproxy.ax
2010-07-16 21:24:59 0 d-----w- c:\windows\system32\URTTemp
2010-07-16 21:24:34 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2010-07-16 21:22:43 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2010-07-16 21:22:29 353792 -c----w- c:\windows\system32\dllcache\srv.sys
2010-07-16 21:21:48 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2010-07-16 21:21:48 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2010-07-16 21:21:42 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2010-07-16 21:16:35 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2010-07-16 21:15:54 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2010-07-16 21:15:54 272128 ------w- c:\windows\system32\drivers\bthport.sys
2010-07-16 21:15:52 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2010-07-16 21:09:21 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2010-07-16 21:09:21 0 d-----w- c:\windows\system32\PreInstall
2010-07-16 21:09:20 0 d--h--w- c:\windows\$hf_mig$
2010-07-16 19:15:32 0 d-sh--w- c:\documents and settings\all users\DRM
2010-07-16 19:15:15 0 d--h--w- c:\program files\WindowsUpdate
2010-07-16 19:14:30 0 d-----w- c:\program files\common files\MSSoap
2010-07-16 19:13:21 0 d-----w- c:\program files\Online Services
2010-07-16 19:13:17 0 d-----w- c:\program files\Messenger
2010-07-16 19:13:14 0 d-----w- c:\program files\MSN Gaming Zone
2010-07-16 19:12:42 0 d-----w- c:\program files\Windows NT

==================== Find3M ====================

2010-07-16 19:13:41 21640 ----a-w- c:\windows\system32\emptyregdb.dat
2010-07-12 08:55:39 64288 ----a-w- c:\windows\system32\drivers\Lbd.sys
2010-07-12 08:55:38 15880 ----a-w- c:\windows\system32\lsdelete.exe
2010-05-27 17:12:30 45056 ----a-w- c:\windows\system32\aticalrt.dll
2010-05-27 17:12:24 45056 ----a-w- c:\windows\system32\aticalcl.dll
2010-05-27 17:10:48 4071424 ----a-w- c:\windows\system32\aticaldd.dll
2010-05-27 17:05:12 15208448 ----a-w- c:\windows\system32\atioglxx.dll
2010-05-27 17:02:50 311296 ----a-w- c:\windows\system32\atiiiexx.dll
2010-05-27 16:59:44 446464 ----a-w- c:\windows\system32\ATIDEMGX.dll
2010-05-27 16:58:50 299520 ----a-w- c:\windows\system32\ati2dvag.dll
2010-05-27 16:54:08 3699936 ----a-w- c:\windows\system32\ati3duag.dll
2010-05-27 16:46:10 208896 ----a-w- c:\windows\system32\atipdlxx.dll
2010-05-27 16:46:00 155648 ----a-w- c:\windows\system32\Oemdspif.dll
2010-05-27 16:45:54 26112 ----a-w- c:\windows\system32\Ati2mdxx.exe
2010-05-27 16:45:48 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2010-05-27 16:45:40 159744 ----a-w- c:\windows\system32\ati2evxx.dll
2010-05-27 16:44:36 602112 ----a-w- c:\windows\system32\ati2evxx.exe
2010-05-27 16:43:30 53248 ----a-w- c:\windows\system32\ATIDDC.DLL
2010-05-27 16:42:48 143360 ----a-w- c:\windows\system32\atiapfxx.exe
2010-05-27 16:41:28 2256512 ----a-w- c:\windows\system32\ativvaxx.dll
2010-05-27 16:41:00 887724 ----a-w- c:\windows\system32\ativva6x.dat
2010-05-27 16:39:44 573440 ----a-w- c:\windows\system32\atikvmag.dll
2010-05-27 16:38:08 184320 ----a-w- c:\windows\system32\atiadlxx.dll
2010-05-27 16:37:50 17408 ----a-w- c:\windows\system32\atitvo32.dll
2010-05-27 16:35:56 393216 ----a-w- c:\windows\system32\atiok3x2.dll
2010-05-27 16:33:24 692224 ----a-w- c:\windows\system32\ati2cqag.dll
2010-05-27 16:29:12 65536 ----a-w- c:\windows\system32\atimpc32.dll
2010-05-27 16:29:12 65536 ----a-w- c:\windows\system32\amdpcom32.dll
2010-05-06 10:41:53 916480 ----a-w- c:\windows\system32\wininet.dll

============= FINISH: 1:03:32.17 ===============

Ill just personally mail you the 2nd dds Log sense it has my I.P adress in it.

#4 suebaby41

suebaby41

    W.A.M. (Women Against Malware)


  • Malware Response Team
  • 6,248 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:South Carolina, USA
  • Local time:06:29 PM

Posted 04 August 2010 - 05:39 PM

Please download ComboFix.
Alternate Link 1
Alternate Link 2

* IMPORTANT !!! Save ComboFix.exe to your Desktop.
  1. Double click on ComboFix and follow the prompts.
  2. As part of its process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it is strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  3. Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
  4. **Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue its malware removal procedures.
  5. After the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:
    QUOTE
    The Recovery Console was successfully installed. Click 'Yes' to continue scanning for malware.
    Click 'No' to exit.
  6. Click Yes, to continue scanning for malware.
  7. When finished, it will produce a log for you. Please include the C:\ComboFix.txt in your next reply.
  8. Notes:
    • Do not mouse-click Combofix's window while it is running. That may cause it to stall.
    • ComboFix may reset a number of Internet Explorer's settings, including making IE the default browser.
    • ComboFix prevents autorun of ALL CD, floppy and USB devices to assist with malware removal and increase security. If this is an issue or makes it difficult for you -- please tell me.
    • ComboFix disconnects your machine from the Internet. The connection is automatically restored before ComboFix completes its run. If ComboFix runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
Please post:
  • C:\ComboFix.txt (the log from ComboFix)
  • a new HijackThis log

You don't stop laughing when you get old; you get old when you stop laughing.
A Member of U-N-I-T-E (Unified Network of Instructors and Trained Eliminators)
Malware Removal University Masters Graduate

Posted Image
Join The Fight Against Malware
No reply within 5 days will result in your topic being closed. If you need more time, please let me know by posting in this topic so that your topic will not be closed.

#5 suebaby41

suebaby41

    W.A.M. (Women Against Malware)


  • Malware Response Team
  • 6,248 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:South Carolina, USA
  • Local time:06:29 PM

Posted 05 August 2010 - 04:44 PM

Let's do two other things. Often redirection is caused by a DNS and Hosts file hijack. Flush and restore both.

Clean Hosts File
    * Access folder C:\WINDOWS\SYSTEM32\DRIVERS\ETC in Explorer.
    * Open file HOSTS in Notepad . Before making changes, do a Save As and save a backup of this file as HOSTS.BAK .
    * Reopen the HOSTS file.
    * Delete all entries in this file except for the following and any other entries you are sure have legitimate uses:

    127.0.0.1 localhost

    * Save the file.
Note: If you use customized Hosts Files such as the mvps hosts file, you will need to download and install it again. Make sure you read the instructions on how to install the hosts file. There is a good tutorial HERE.

Flush DNS:
    * Open up a command prompt Start > Run > "cmd.exe" > OK.
    * Type in the command ipconfig /flushdns.

You don't stop laughing when you get old; you get old when you stop laughing.
A Member of U-N-I-T-E (Unified Network of Instructors and Trained Eliminators)
Malware Removal University Masters Graduate

Posted Image
Join The Fight Against Malware
No reply within 5 days will result in your topic being closed. If you need more time, please let me know by posting in this topic so that your topic will not be closed.

#6 toxicpuke

toxicpuke
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:05:29 PM

Posted 06 August 2010 - 10:49 AM

I was going to copy paste my combofix log and my Hijack this log, but my internet explorer just freezes.

Attached Files



#7 toxicpuke

toxicpuke
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:05:29 PM

Posted 06 August 2010 - 10:51 AM

Hijackthis Log

Logfile of random's system information tool 1.08 (written by random/random)
Run by toxicpuke at 2002-01-02 11:34:28
Microsoft Windows XP Professional Service Pack 3
System drive C: has 118 GB (78%) free of 153 GB
Total RAM: 3326 MB (86% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:34:30 AM, on 1/2/2002
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Mixer.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\toxicpuke\Local Settings\Temporary Internet Files\Content.IE5\ZADND9DT\RSIT[1].exe
C:\Program Files\trend micro\toxicpuke.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKCU\..\Run: [cdloader] "C:\Documents and Settings\toxicpuke\Application Data\mjusbsp\cdloader2.exe" MAGICJACK
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1279309911140
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

--
End of file - 4271 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"C-Media Mixer"=Mixer.exe /startup []
"SoundMAXPnP"=C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe [2003-05-29 790528]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cdloader"=C:\Documents and Settings\toxicpuke\Application Data\mjusbsp\cdloader2.exe [2010-02-26 50520]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-05-27 159744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\THQ\Company of Heroes\RelicCOH.exe"="C:\Program Files\THQ\Company of Heroes\RelicCOH.exe:*:Enabled:Company of Heroes"
"C:\Program Files\Steam\steamapps\common\left 4 dead\left4dead.exe"="C:\Program Files\Steam\steamapps\common\left 4 dead\left4dead.exe:*:Enabled:Left 4 Dead"
"C:\Program Files\THQ\Company of Heroes\RelicDownloader\RelicDownloader.exe"="C:\Program Files\THQ\Company of Heroes\RelicDownloader\RelicDownloader.exe:*:Enabled:Relic Downloader"
"C:\Documents and Settings\toxicpuke\Application Data\mjusbsp\magicJack.exe"="C:\Documents and Settings\toxicpuke\Application Data\mjusbsp\magicJack.exe:*:Enabled:magicJack"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-08-03 23:56:59 ----D---- C:\rsit
2010-07-31 18:37:33 ----D---- C:\Program Files\StarCraft II
2010-07-31 18:37:33 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2010-07-31 18:37:33 ----D---- C:\Documents and Settings\All Users\Application Data\Blizzard Entertainment
2010-07-31 18:31:41 ----D---- C:\WINDOWS\Prefetch
2010-07-31 18:26:47 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-07-31 18:26:37 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-07-31 18:26:25 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-07-31 18:26:15 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2010-07-31 18:26:07 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-07-31 18:25:58 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-07-31 18:25:48 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-07-31 18:25:39 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-07-31 18:25:30 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-07-31 18:25:21 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-07-31 18:25:12 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-07-31 18:25:03 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-07-31 18:24:51 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-07-31 18:24:42 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-07-31 18:24:32 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-07-31 18:24:23 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-07-31 18:24:13 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-07-31 18:24:05 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-07-31 18:23:55 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-07-31 18:23:46 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-07-31 18:23:36 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-07-31 18:23:28 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-07-31 18:23:17 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-07-31 18:23:08 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-07-31 18:22:58 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-07-31 18:22:49 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-07-31 18:22:40 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-07-31 18:22:30 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-07-31 18:22:21 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-07-31 18:22:12 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-07-31 18:22:02 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-07-31 18:21:51 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-07-31 18:21:42 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-07-31 18:21:31 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-07-31 18:21:21 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-07-31 18:21:12 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-07-31 18:20:55 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-07-31 18:20:46 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-07-31 18:20:37 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-07-31 18:20:27 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2010-07-31 18:20:17 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-07-31 18:20:08 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-07-31 18:19:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-07-31 18:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-07-31 18:19:40 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-07-31 18:19:30 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-07-31 18:19:17 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-07-31 18:19:07 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-07-31 18:18:57 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_1$
2010-07-31 18:18:41 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2010-07-31 18:18:09 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-07-31 18:18:00 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-07-31 18:17:49 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-07-31 18:17:39 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-07-31 18:17:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-07-31 18:17:20 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-07-31 18:17:10 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-07-31 18:17:00 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-07-31 18:16:50 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-07-31 18:16:40 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$
2010-07-31 18:16:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2010-07-31 18:12:34 ----D---- C:\WINDOWS\system32\scripting
2010-07-31 18:12:34 ----D---- C:\WINDOWS\system32\en
2010-07-31 18:12:34 ----D---- C:\WINDOWS\system32\bits
2010-07-31 18:12:34 ----D---- C:\WINDOWS\l2schemas
2010-07-31 18:09:20 ----D---- C:\WINDOWS\network diagnostic
2010-07-31 18:05:13 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-07-31 18:00:43 ----N---- C:\WINDOWS\system32\wlanapi.dll
2010-07-31 18:00:42 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2010-07-31 18:00:42 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2010-07-31 18:00:42 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2010-07-31 18:00:42 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2010-07-31 18:00:42 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2010-07-31 18:00:42 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2010-07-31 18:00:42 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2010-07-31 18:00:41 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2010-07-31 18:00:41 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2010-07-31 18:00:41 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2010-07-31 18:00:41 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2010-07-31 18:00:40 ----N---- C:\WINDOWS\system32\tspkg.dll
2010-07-31 18:00:40 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2010-07-31 18:00:38 ----N---- C:\WINDOWS\system32\spupdwxp.exe
2010-07-31 18:00:38 ----A---- C:\WINDOWS\system32\spdwnwxp.exe
2010-07-31 18:00:37 ----N---- C:\WINDOWS\system32\slserv.exe
2010-07-31 18:00:37 ----N---- C:\WINDOWS\system32\slrundll.exe
2010-07-31 18:00:37 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2010-07-31 18:00:37 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2010-07-31 18:00:37 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2010-07-31 18:00:37 ----N---- C:\WINDOWS\slrundll.exe
2010-07-31 18:00:36 ----N---- C:\WINDOWS\system32\slgen.dll
2010-07-31 18:00:36 ----N---- C:\WINDOWS\system32\slextspk.dll
2010-07-31 18:00:36 ----N---- C:\WINDOWS\system32\slcoinst.dll
2010-07-31 18:00:36 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2010-07-31 18:00:36 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2010-07-31 18:00:36 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2010-07-31 18:00:36 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2010-07-31 18:00:36 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2010-07-31 18:00:35 ----N---- C:\WINDOWS\system32\setupn.exe
2010-07-31 18:00:35 ----N---- C:\WINDOWS\system32\s3gnb.dll
2010-07-31 18:00:35 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2010-07-31 18:00:35 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2010-07-31 18:00:35 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2010-07-31 18:00:35 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2010-07-31 18:00:34 ----N---- C:\WINDOWS\system32\rasqec.dll
2010-07-31 18:00:34 ----N---- C:\WINDOWS\system32\qutil.dll
2010-07-31 18:00:34 ----N---- C:\WINDOWS\system32\qcliprov.dll
2010-07-31 18:00:34 ----N---- C:\WINDOWS\system32\qagentrt.dll
2010-07-31 18:00:34 ----N---- C:\WINDOWS\system32\qagent.dll
2010-07-31 18:00:33 ----N---- C:\WINDOWS\system32\onex.dll
2010-07-31 18:00:33 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2010-07-31 18:00:33 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2010-07-31 18:00:32 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2010-07-31 18:00:31 ----N---- C:\WINDOWS\system32\napstat.exe
2010-07-31 18:00:31 ----N---- C:\WINDOWS\system32\napmontr.dll
2010-07-31 18:00:31 ----N---- C:\WINDOWS\system32\napipsec.dll
2010-07-31 18:00:31 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2010-07-31 18:00:31 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2010-07-31 18:00:31 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2010-07-31 18:00:31 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2010-07-31 18:00:31 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2010-07-31 18:00:31 ----A---- C:\WINDOWS\system32\msxml6r.dll
2010-07-31 18:00:30 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2010-07-31 18:00:30 ----N---- C:\WINDOWS\system32\mssha.dll
2010-07-31 18:00:27 ----N---- C:\WINDOWS\system32\mmcperf.exe
2010-07-31 18:00:27 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-07-31 18:00:26 ----N---- C:\WINDOWS\system32\mmcex.dll
2010-07-31 18:00:26 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-07-31 18:00:26 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2010-07-31 18:00:26 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2010-07-31 18:00:23 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2010-07-31 18:00:23 ----N---- C:\WINDOWS\system32\kmsvc.dll
2010-07-31 18:00:23 ----N---- C:\WINDOWS\system32\kbdpash.dll
2010-07-31 18:00:23 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2010-07-31 18:00:23 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2010-07-31 18:00:23 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2010-07-31 18:00:20 ----N---- C:\WINDOWS\system32\smtpapi.dll
2010-07-31 18:00:20 ----N---- C:\WINDOWS\system32\rwnh.dll
2010-07-31 18:00:19 ----N---- C:\WINDOWS\system32\drivers\irbus.sys
2010-07-31 18:00:19 ----N---- C:\WINDOWS\system32\comsdupd.exe
2010-07-31 18:00:18 ----N---- C:\WINDOWS\system32\ieencode.dll
2010-07-31 18:00:18 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2010-07-31 18:00:18 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2010-07-31 18:00:18 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2010-07-31 18:00:18 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2010-07-31 18:00:18 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2010-07-31 18:00:18 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2010-07-31 18:00:18 ----N---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2010-07-31 18:00:17 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2010-07-31 18:00:16 ----N---- C:\WINDOWS\system32\faxpatch.exe
2010-07-31 18:00:16 ----N---- C:\WINDOWS\system32\eapsvc.dll
2010-07-31 18:00:16 ----N---- C:\WINDOWS\system32\eapqec.dll
2010-07-31 18:00:16 ----N---- C:\WINDOWS\system32\eappprxy.dll
2010-07-31 18:00:16 ----N---- C:\WINDOWS\system32\eapphost.dll
2010-07-31 18:00:16 ----N---- C:\WINDOWS\system32\eappgnui.dll
2010-07-31 18:00:16 ----N---- C:\WINDOWS\system32\eappcfg.dll
2010-07-31 18:00:16 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2010-07-31 18:00:16 ----N---- C:\WINDOWS\system32\eapolqec.dll
2010-07-31 18:00:16 ----A---- C:\WINDOWS\003252_.tmp
2010-07-31 18:00:15 ----N---- C:\WINDOWS\system32\dot3ui.dll
2010-07-31 18:00:15 ----N---- C:\WINDOWS\system32\dot3svc.dll
2010-07-31 18:00:15 ----N---- C:\WINDOWS\system32\dot3msm.dll
2010-07-31 18:00:15 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-07-31 18:00:15 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2010-07-31 18:00:15 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2010-07-31 18:00:15 ----N---- C:\WINDOWS\system32\dot3api.dll
2010-07-31 18:00:14 ----N---- C:\WINDOWS\system32\dimsroam.dll
2010-07-31 18:00:14 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2010-07-31 18:00:14 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2010-07-31 18:00:14 ----N---- C:\WINDOWS\system32\credssp.dll
2010-07-31 18:00:12 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\azroles.dll
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2010-07-31 18:00:11 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2010-07-31 18:00:10 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2010-07-16 23:23:21 ----HDC---- C:\WINDOWS\$NtUninstallKB956744_0$
2010-07-16 20:22:26 ----HDC---- C:\WINDOWS\$NtUninstallKB971737_0$
2010-07-16 20:22:20 ----HDC---- C:\WINDOWS\$NtUninstallKB970430_0$
2010-07-16 20:21:45 ----D---- C:\WINDOWS\ie8updates
2010-07-16 20:21:31 ----D---- C:\WINDOWS\WBEM
2010-07-16 20:20:36 ----HDC---- C:\WINDOWS\ie8
2010-07-16 17:54:03 ----HDC---- C:\WINDOWS\$NtUninstallKB963093$
2010-07-16 17:53:45 ----HDC---- C:\WINDOWS\$NtUninstallKB961118_0$
2010-07-16 17:53:33 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2010-07-16 17:53:30 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2010-07-16 17:53:23 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2010-07-16 17:53:11 ----HDC---- C:\WINDOWS\$NtUninstallKB950749$
2010-07-16 17:53:06 ----HDC---- C:\WINDOWS\$NtUninstallKB945553$
2010-07-16 17:53:00 ----HDC---- C:\WINDOWS\$NtUninstallKB943055$
2010-07-16 17:52:52 ----HDC---- C:\WINDOWS\$NtUninstallKB946026$
2010-07-16 17:52:41 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2010-07-16 17:52:34 ----HDC---- C:\WINDOWS\$NtUninstallKB944653$
2010-07-16 17:52:29 ----HDC---- C:\WINDOWS\$NtUninstallKB936357$
2010-07-16 17:52:24 ----HDC---- C:\WINDOWS\$NtUninstallKB938127$
2010-07-16 17:52:20 ----HDC---- C:\WINDOWS\$NtUninstallKB938828$
2010-07-16 17:52:15 ----HDC---- C:\WINDOWS\$NtUninstallKB925398_WMP64$
2010-07-16 17:52:06 ----HDC---- C:\WINDOWS\$NtUninstallKB929123$
2010-07-16 17:52:01 ----HDC---- C:\WINDOWS\$NtUninstallKB927891$
2010-07-16 17:51:56 ----HDC---- C:\WINDOWS\$NtUninstallKB930916$
2010-07-16 17:51:51 ----HDC---- C:\WINDOWS\$NtUninstallKB920213$
2010-07-16 17:51:46 ----HDC---- C:\WINDOWS\$NtUninstallKB890046$
2010-07-16 17:51:00 ----HDC---- C:\WINDOWS\$NtUninstallKB932168$
2010-07-16 17:50:53 ----HDC---- C:\WINDOWS\$NtUninstallKB931261$
2010-07-16 17:50:49 ----HDC---- C:\WINDOWS\$NtUninstallKB930178$
2010-07-16 17:50:44 ----HDC---- C:\WINDOWS\$NtUninstallKB925902$
2010-07-16 17:50:28 ----HDC---- C:\WINDOWS\$NtUninstallKB925876$
2010-07-16 17:50:23 ----HDC---- C:\WINDOWS\$NtUninstallKB925720$
2010-07-16 17:50:17 ----HDC---- C:\WINDOWS\$NtUninstallKB926436$
2010-07-16 17:50:12 ----HDC---- C:\WINDOWS\$NtUninstallKB918118$
2010-07-16 17:50:07 ----HDC---- C:\WINDOWS\$NtUninstallKB927779$
2010-07-16 17:50:03 ----HDC---- C:\WINDOWS\$NtUninstallKB924667$
2010-07-16 17:49:58 ----HDC---- C:\WINDOWS\$NtUninstallKB927802$
2010-07-16 17:49:53 ----HDC---- C:\WINDOWS\$NtUninstallKB928843$
2010-07-16 17:49:48 ----HDC---- C:\WINDOWS\$NtUninstallKB928255$
2010-07-16 17:49:43 ----HDC---- C:\WINDOWS\$NtUninstallKB926255$
2010-07-16 17:49:38 ----HDC---- C:\WINDOWS\$NtUninstallKB923980$
2010-07-16 17:49:33 ----HDC---- C:\WINDOWS\$NtUninstallKB923191$
2010-07-16 17:49:28 ----HDC---- C:\WINDOWS\$NtUninstallKB920872$
2010-07-16 17:49:22 ----HDC---- C:\WINDOWS\$NtUninstallKB916595$
2010-07-16 17:49:16 ----HDC---- C:\WINDOWS\$NtUninstallKB922582$
2010-07-16 17:49:09 ----HDC---- C:\WINDOWS\$NtUninstallKB920683$
2010-07-16 17:49:05 ----HDC---- C:\WINDOWS\$NtUninstallKB920670$
2010-07-16 17:49:00 ----HDC---- C:\WINDOWS\$NtUninstallKB914388$
2010-07-16 17:48:55 ----HDC---- C:\WINDOWS\$NtUninstallKB911280$
2010-07-16 17:48:50 ----HDC---- C:\WINDOWS\$NtUninstallKB913580$
2010-07-16 17:48:45 ----HDC---- C:\WINDOWS\$NtUninstallKB918439$
2010-07-16 17:48:41 ----HDC---- C:\WINDOWS\$NtUninstallKB914389$
2010-07-16 17:48:36 ----HDC---- C:\WINDOWS\$NtUninstallKB908531$
2010-07-16 17:48:31 ----HDC---- C:\WINDOWS\$NtUninstallKB900485$
2010-07-16 17:48:25 ----HDC---- C:\WINDOWS\$NtUninstallKB911562$
2010-07-16 17:48:20 ----HDC---- C:\WINDOWS\$NtUninstallKB911564$
2010-07-16 17:48:11 ----HDC---- C:\WINDOWS\$NtUninstallKB911927$
2010-07-16 17:48:06 ----HDC---- C:\WINDOWS\$NtUninstallKB910437$
2010-07-16 17:48:00 ----HDC---- C:\WINDOWS\$NtUninstallKB900725$
2010-07-16 17:47:52 ----HDC---- C:\WINDOWS\$NtUninstallKB905749$
2010-07-16 17:47:28 ----HDC---- C:\WINDOWS\$NtUninstallKB905414$
2010-07-16 17:47:22 ----HDC---- C:\WINDOWS\$NtUninstallKB901017$
2010-07-16 17:47:13 ----HDC---- C:\WINDOWS\$NtUninstallKB902400$
2010-07-16 17:47:07 ----HDC---- C:\WINDOWS\$NtUninstallKB894391$
2010-07-16 17:47:03 ----HDC---- C:\WINDOWS\$NtUninstallKB896423$
2010-07-16 17:46:59 ----HDC---- C:\WINDOWS\$NtUninstallKB899591$
2010-07-16 17:46:54 ----HDC---- C:\WINDOWS\$NtUninstallKB893756$
2010-07-16 17:46:48 ----HDC---- C:\WINDOWS\$NtUninstallKB896358$
2010-07-16 17:46:42 ----HDC---- C:\WINDOWS\$NtUninstallKB890859$
2010-07-16 17:46:37 ----HDC---- C:\WINDOWS\$NtUninstallKB901214$
2010-07-16 17:46:31 ----HDC---- C:\WINDOWS\$NtUninstallKB896344$
2010-07-16 17:46:26 ----HDC---- C:\WINDOWS\$NtUninstallKB885835$
2010-07-16 17:46:21 ----HDC---- C:\WINDOWS\$NtUninstallKB887472$
2010-07-16 17:46:16 ----HDC---- C:\WINDOWS\$NtUninstallKB888302$
2010-07-16 17:46:12 ----HDC---- C:\WINDOWS\$NtUninstallKB885836$
2010-07-16 17:46:08 ----HDC---- C:\WINDOWS\$NtUninstallKB886185$
2010-07-16 17:46:03 ----HDC---- C:\WINDOWS\$NtUninstallKB873339$
2010-07-16 17:41:13 ----N---- C:\WINDOWS\system32\tsgqec.dll
2010-07-16 17:41:13 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2010-07-16 17:41:13 ----N---- C:\WINDOWS\system32\aaclient.dll
2010-07-16 17:33:54 ----A---- C:\WINDOWS\mixerdef.ini
2010-07-16 16:59:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593_0$
2010-07-16 16:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$
2010-07-16 16:59:20 ----HDC---- C:\WINDOWS\$NtUninstallKB979559_0$
2010-07-16 16:59:15 ----HDC---- C:\WINDOWS\$NtUninstallKB975562_0$
2010-07-16 16:59:03 ----HDC---- C:\WINDOWS\$NtUninstallKB979482_0$
2010-07-16 16:58:51 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-07-16 16:58:46 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-07-16 16:58:42 ----HDC---- C:\WINDOWS\$NtUninstallKB980218_0$
2010-07-16 16:58:36 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2010-07-16 16:58:31 ----HDC---- C:\WINDOWS\$NtUninstallKB978542_0$
2010-07-16 16:58:26 ----HDC---- C:\WINDOWS\$NtUninstallKB978601_0$
2010-07-16 16:58:18 ----HDC---- C:\WINDOWS\$NtUninstallKB979683_0$
2010-07-16 16:58:13 ----HDC---- C:\WINDOWS\$NtUninstallKB978338_0$
2010-07-16 16:58:08 ----HDC---- C:\WINDOWS\$NtUninstallKB979309_0$
2010-07-16 16:58:04 ----HDC---- C:\WINDOWS\$NtUninstallKB981350$
2010-07-16 16:58:00 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-07-16 16:57:56 ----HDC---- C:\WINDOWS\$NtUninstallKB980232_0$
2010-07-16 16:57:49 ----HDC---- C:\WINDOWS\$NtUninstallKB975561_0$
2010-07-16 16:57:44 ----HDC---- C:\WINDOWS\$NtUninstallKB978706_0$
2010-07-16 16:57:39 ----HDC---- C:\WINDOWS\$NtUninstallKB971468_0$
2010-07-16 16:57:34 ----HDC---- C:\WINDOWS\$NtUninstallKB977914_0$
2010-07-16 16:57:28 ----HDC---- C:\WINDOWS\$NtUninstallKB975560_0$
2010-07-16 16:57:21 ----HDC---- C:\WINDOWS\$NtUninstallKB978037_0$
2010-07-16 16:57:17 ----HDC---- C:\WINDOWS\$NtUninstallKB975713_0$
2010-07-16 16:57:12 ----HDC---- C:\WINDOWS\$NtUninstallKB972270_0$
2010-07-16 16:57:07 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-07-16 16:57:01 ----HDC---- C:\WINDOWS\$NtUninstallKB955759_0$
2010-07-16 16:56:56 ----HDC---- C:\WINDOWS\$NtUninstallKB974392_0$
2010-07-16 16:56:51 ----HDC---- C:\WINDOWS\$NtUninstallKB974318_0$
2010-07-16 16:56:46 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2010-07-16 16:56:42 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_0$
2010-07-16 16:56:37 ----HDC---- C:\WINDOWS\$NtUninstallKB975467_0$
2010-07-16 16:56:30 ----HDC---- C:\WINDOWS\$NtUninstallKB968389_0$
2010-07-16 16:56:25 ----HDC---- C:\WINDOWS\$NtUninstallKB969059_0$
2010-07-16 16:56:22 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-07-16 16:56:17 ----HDC---- C:\WINDOWS\$NtUninstallKB974112_0$
2010-07-16 16:56:13 ----HDC---- C:\WINDOWS\$NtUninstallKB974571_0$
2010-07-16 16:56:09 ----HDC---- C:\WINDOWS\$NtUninstallKB975025_0$
2010-07-16 16:56:05 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-07-16 16:56:02 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-07-16 16:55:54 ----HDC---- C:\WINDOWS\$NtUninstallKB956844_0$
2010-07-16 16:55:44 ----A---- C:\WINDOWS\system32\MRT.exe
2010-07-16 16:55:39 ----HDC---- C:\WINDOWS\$NtUninstallKB932823-v3$
2010-07-16 16:45:59 ----HDC---- C:\WINDOWS\$NtUninstallKB971657_0$
2010-07-16 16:45:53 ----HDC---- C:\WINDOWS\$NtUninstallKB973815_0$
2010-07-16 16:45:48 ----HDC---- C:\WINDOWS\$NtUninstallKB960859_0$
2010-07-16 16:45:43 ----HDC---- C:\WINDOWS\$NtUninstallKB973507_0$
2010-07-16 16:45:38 ----D---- C:\WINDOWS\ServicePackFiles
2010-07-16 16:45:36 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2010-07-16 16:45:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973869_0$
2010-07-16 16:45:24 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2010-07-16 16:45:16 ----HDC---- C:\WINDOWS\$NtUninstallKB971032$
2010-07-16 16:41:04 ----D---- C:\WINDOWS\system32\XPSViewer
2010-07-16 16:41:01 ----D---- C:\Program Files\MSBuild
2010-07-16 16:40:56 ----D---- C:\Program Files\Reference Assemblies
2010-07-16 16:40:28 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-07-16 16:40:27 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-07-16 16:40:27 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-07-16 16:40:27 ----D---- C:\c6f925ab8d1cba4d3a1b90d1ced23b
2010-07-16 16:37:01 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2010-07-16 16:36:48 ----D---- C:\Program Files\MSXML 6.0
2010-07-16 16:35:57 ----HDC---- C:\WINDOWS\$NtUninstallKB970238_0$
2010-07-16 16:35:53 ----HDC---- C:\WINDOWS\$NtUninstallKB961501_0$
2010-07-16 16:35:49 ----HDC---- C:\WINDOWS\$NtUninstallKB959426_0$
2010-07-16 16:35:44 ----HDC---- C:\WINDOWS\$NtUninstallKB960803_0$
2010-07-16 16:35:38 ----HDC---- C:\WINDOWS\$NtUninstallKB952004_0$
2010-07-16 16:35:28 ----HDC---- C:\WINDOWS\$NtUninstallKB956572_0$
2010-07-16 16:35:21 ----HDC---- C:\WINDOWS\$NtUninstallKB923561_0$
2010-07-16 16:35:15 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
2010-07-16 16:29:53 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$
2010-07-16 16:29:49 ----HDC---- C:\WINDOWS\$NtUninstallKB960225_0$
2010-07-16 16:29:44 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$
2010-07-16 16:29:40 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$
2010-07-16 16:29:35 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$
2010-07-16 16:29:31 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$
2010-07-16 16:29:27 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
2010-07-16 16:29:23 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
2010-07-16 16:29:19 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
2010-07-16 16:29:15 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$
2010-07-16 16:29:09 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2010-07-16 16:29:01 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$
2010-07-16 16:29:01 ----D---- C:\Documents and Settings\toxicpuke\Application Data\Windows Desktop Search
2010-07-16 16:28:41 ----D---- C:\WINDOWS\system32\GroupPolicy
2010-07-16 16:28:41 ----D---- C:\WINDOWS\system32\en-US
2010-07-16 16:28:41 ----D---- C:\Program Files\Windows Desktop Search
2010-07-16 16:28:29 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
2010-07-16 16:28:25 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4_0$
2010-07-16 16:28:20 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$
2010-07-16 16:28:19 ----A---- C:\WINDOWS\system32\xmllite.dll
2010-07-16 16:28:14 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
2010-07-16 16:28:10 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$
2010-07-16 16:28:06 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2010-07-16 16:27:58 ----HDC---- C:\WINDOWS\$NtUninstallKB926239$
2010-07-16 16:27:54 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-07-16 16:27:53 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2010-07-16 16:27:43 ----D---- C:\Program Files\Windows Media Connect 2
2010-07-16 16:27:36 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2010-07-16 16:27:13 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2010-07-16 16:27:05 ----D---- C:\WINDOWS\system32\LogFiles
2010-07-16 16:27:05 ----D---- C:\WINDOWS\system32\drivers\UMDF
2010-07-16 16:27:01 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2010-07-16 16:26:50 ----HDC---- C:\WINDOWS\$NtUninstallKB891122$
2010-07-16 16:26:39 ----D---- C:\WINDOWS\RegisteredPackages
2010-07-16 16:26:32 ----D---- C:\Program Files\HP Wireless Keyboard
2010-07-16 16:26:29 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2010-07-16 16:26:27 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-07-16 16:26:26 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2010-07-16 16:26:24 ----A---- C:\WINDOWS\system32\drivers\dmusic.sys
2010-07-16 16:26:21 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2010-07-16 16:26:19 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2010-07-16 16:26:18 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2010-07-16 16:26:17 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2010-07-16 16:26:16 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2010-07-16 16:26:15 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2010-07-16 16:26:13 ----A---- C:\WINDOWS\system32\drivers\mspqm.sys
2010-07-16 16:26:12 ----A---- C:\WINDOWS\system32\drivers\mspclock.sys
2010-07-16 16:26:09 ----A---- C:\WINDOWS\system32\drivers\gameenum.sys
2010-07-16 16:25:57 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-07-16 16:25:57 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2010-07-16 16:25:57 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2010-07-16 16:24:59 ----RSD---- C:\WINDOWS\assembly
2010-07-16 16:24:59 ----D---- C:\WINDOWS\system32\URTTemp
2010-07-16 16:24:59 ----D---- C:\WINDOWS\Microsoft.NET
2010-07-16 16:23:35 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-07-16 16:17:12 ----N---- C:\WINDOWS\system32\xpsp4res.dll
2010-07-16 16:17:12 ----A---- C:\WINDOWS\system32\xpsp3res.dll
2010-07-16 16:15:54 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2010-07-16 16:13:58 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2010-07-16 16:09:21 ----D---- C:\WINDOWS\system32\PreInstall
2010-07-16 16:09:21 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-07-16 16:09:20 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-07-16 16:09:20 ----HD---- C:\WINDOWS\$hf_mig$
2010-07-16 16:08:58 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2010-07-16 14:52:14 ----A---- C:\WINDOWS\system32\wups2.dll
2010-07-16 14:52:14 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2010-07-16 14:52:13 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-07-16 14:52:13 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2010-07-16 14:52:13 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2010-07-16 14:50:19 ----D---- C:\Program Files\Intel
2010-07-16 14:50:14 ----A---- C:\WINDOWS\system32\PROUnstl.exe
2010-07-16 14:37:44 ----D---- C:\Documents and Settings\toxicpuke\Application Data\Identities
2010-07-16 14:37:40 ----HD---- C:\Program Files\Uninstall Information
2010-07-16 14:37:21 ----ASH---- C:\Documents and Settings\toxicpuke\Application Data\desktop.ini
2010-07-16 14:37:20 ----SD---- C:\Documents and Settings\toxicpuke\Application Data\Microsoft
2010-07-16 14:20:04 ----D---- C:\WINDOWS\SoftwareDistribution
2010-07-16 14:20:01 ----SD---- C:\WINDOWS\system32\Microsoft
2010-07-16 14:20:01 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-07-16 14:16:40 ----D---- C:\WINDOWS\system32\xircom
2010-07-16 14:16:40 ----D---- C:\Program Files\xerox
2010-07-16 14:16:40 ----D---- C:\Program Files\microsoft frontpage
2010-07-16 14:16:18 ----RASH---- C:\MSDOS.SYS
2010-07-16 14:16:18 ----RASH---- C:\IO.SYS
2010-07-16 14:16:18 ----A---- C:\WINDOWS\control.ini
2010-07-16 14:16:18 ----A---- C:\CONFIG.SYS
2010-07-16 14:16:18 ----A---- C:\AUTOEXEC.BAT
2010-07-16 14:16:10 ----A---- C:\WINDOWS\OEWABLog.txt
2010-07-16 14:16:06 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-07-16 14:15:24 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-07-16 14:15:24 ----RD---- C:\WINDOWS\Offline Web Pages
2010-07-16 14:15:24 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-07-16 14:15:19 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-07-16 14:15:15 ----HD---- C:\Program Files\WindowsUpdate
2010-07-16 14:14:59 ----D---- C:\WINDOWS\system32\DirectX
2010-07-16 14:14:42 ----A---- C:\WINDOWS\system32\atrace.dll
2010-07-16 14:14:40 ----A---- C:\WINDOWS\system32\desktop.ini
2010-07-16 14:14:40 ----A---- C:\WINDOWS\desktop.ini
2010-07-16 14:14:35 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-07-16 14:14:34 ----A---- C:\WINDOWS\system32\acctres.dll
2010-07-16 14:14:33 ----D---- C:\Program Files\Common Files\Services
2010-07-16 14:14:31 ----SD---- C:\WINDOWS\Tasks
2010-07-16 14:14:31 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-07-16 14:14:30 ----D---- C:\Program Files\Common Files\MSSoap
2010-07-16 14:14:27 ----D---- C:\WINDOWS\system32\Macromed
2010-07-16 14:14:27 ----D---- C:\WINDOWS\srchasst
2010-07-16 14:14:24 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-07-16 14:14:24 ----A---- C:\WINDOWS\system32\wups.dll
2010-07-16 14:14:24 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-07-16 14:14:24 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-07-16 14:14:24 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-07-16 14:14:24 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-07-16 14:14:24 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-07-16 14:14:24 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-07-16 14:14:24 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-07-16 14:14:24 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-07-16 14:14:24 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-07-16 14:14:23 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-07-16 14:14:23 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-07-16 14:14:20 ----D---- C:\Program Files\Movie Maker
2010-07-16 14:14:17 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-07-16 14:14:17 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-07-16 14:14:17 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-07-16 14:14:17 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-07-16 14:14:15 ----A---- C:\WINDOWS\system32\fltmc.exe
2010-07-16 14:14:15 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-07-16 14:14:15 ----A---- C:\WINDOWS\system32\drivers\fltmgr.sys
2010-07-16 14:14:14 ----D---- C:\WINDOWS\system32\Restore
2010-07-16 14:14:14 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-07-16 14:14:14 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-07-16 14:14:14 ----A---- C:\WINDOWS\system32\srclient.dll
2010-07-16 14:14:14 ----A---- C:\WINDOWS\system32\ils.dll
2010-07-16 14:14:14 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2010-07-16 14:14:13 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-07-16 14:14:13 ----A---- C:\WINDOWS\system32\msconf.dll
2010-07-16 14:14:13 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-07-16 14:14:13 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-07-16 14:14:13 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-07-16 14:14:11 ----D---- C:\Program Files\NetMeeting
2010-07-16 14:14:11 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-07-16 14:14:11 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-07-16 14:14:10 ----A---- C:\WINDOWS\system32\inetres.dll
2010-07-16 14:14:10 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-07-16 14:14:08 ----D---- C:\Program Files\Outlook Express
2010-07-16 14:14:08 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-07-16 14:14:08 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-07-16 14:14:08 ----A---- C:\WINDOWS\system32\mstask.dll
2010-07-16 14:14:08 ----A---- C:\WINDOWS\system32\isign32.dll
2010-07-16 14:14:08 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-07-16 14:14:08 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-07-16 14:14:08 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-07-16 14:14:03 ----D---- C:\Program Files\Common Files\System
2010-07-16 14:14:01 ----D---- C:\Program Files\Internet Explorer
2010-07-16 14:13:33 ----D---- C:\Program Files\ComPlus Applications
2010-07-16 14:13:31 ----A---- C:\WINDOWS\vbaddin.ini
2010-07-16 14:13:31 ----A---- C:\WINDOWS\vb.ini
2010-07-16 14:13:27 ----D---- C:\WINDOWS\Registration
2010-07-16 14:13:21 ----D---- C:\Program Files\Windows Media Player
2010-07-16 14:13:21 ----D---- C:\Program Files\Online Services
2010-07-16 14:13:17 ----D---- C:\Program Files\Messenger
2010-07-16 14:13:14 ----D---- C:\Program Files\MSN Gaming Zone
2010-07-16 14:13:14 ----A---- C:\WINDOWS\system32\write.exe
2010-07-16 14:13:06 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-07-16 14:13:06 ----A---- C:\WINDOWS\system32\hticons.dll
2010-07-16 14:13:06 ----A---- C:\WINDOWS\system32\avwav.dll
2010-07-16 14:13:06 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-07-16 14:13:06 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-07-16 14:13:05 ----A---- C:\WINDOWS\system32\winchat.exe
2010-07-16 14:13:00 ----A---- C:\WINDOWS\system32\getuname.dll
2010-07-16 14:13:00 ----A---- C:\WINDOWS\system32\charmap.exe
2010-07-16 14:13:00 ----A---- C:\WINDOWS\system32\calc.exe
2010-07-16 14:12:59 ----A---- C:\WINDOWS\system32\winmine.exe
2010-07-16 14:12:59 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-07-16 14:12:59 ----A---- C:\WINDOWS\system32\sol.exe
2010-07-16 14:12:59 ----A---- C:\WINDOWS\system32\reset.exe
2010-07-16 14:12:59 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-07-16 14:12:59 ----A---- C:\WINDOWS\system32\freecell.exe
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\tskill.exe
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\tscon.exe
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\shadow.exe
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\regini.exe
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\msg.exe
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\logoff.exe
2010-07-16 14:12:58 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-07-16 14:12:57 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-07-16 14:12:57 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-07-16 14:12:57 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-07-16 14:12:57 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-07-16 14:12:57 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-07-16 14:12:57 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-07-16 14:12:57 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-07-16 14:12:56 ----A---- C:\WINDOWS\system32\stclient.dll
2010-07-16 14:12:56 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-07-16 14:12:52 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-07-16 14:12:43 ----D---- C:\Program Files\MSN
2010-07-16 14:12:42 ----D---- C:\Program Files\Windows NT
2010-07-16 14:12:42 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-07-16 14:12:42 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-07-16 14:12:42 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-07-16 14:12:42 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-07-16 14:12:41 ----A---- C:\WINDOWS\system32\spider.exe
2010-07-16 14:12:41 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-07-16 14:12:41 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2010-07-16 14:12:41 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2010-07-16 14:12:41 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2010-07-16 14:12:41 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-07-16 14:12:40 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2010-07-16 14:12:40 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-07-16 14:12:40 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-07-16 14:12:40 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-07-16 14:12:40 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-07-16 14:12:40 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-07-16 14:12:40 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-07-16 14:12:40 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-07-16 14:12:40 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-07-16 14:12:40 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-07-16 14:12:39 ----D---- C:\WINDOWS\system32\MsDtc
2010-07-16 14:12:39 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-07-16 14:12:39 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-07-16 14:12:39 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-07-16 14:12:39 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-07-16 14:12:39 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-07-16 14:12:39 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-07-16 14:12:39 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-07-16 14:12:39 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-07-16 14:12:39 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-07-16 14:12:38 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-07-16 14:12:38 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-07-16 14:12:38 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-07-16 14:12:38 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-07-16 14:12:37 ----D---- C:\WINDOWS\system32\Com
2010-07-16 14:12:37 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-07-16 14:12:37 ----A---- C:\WINDOWS\system32\colbact.dll
2010-07-16 14:12:37 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-07-16 14:12:37 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-07-16 14:12:37 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-07-16 14:12:37 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-07-16 14:12:36 ----A---- C:\WINDOWS\system32\comuid.dll
2010-07-16 14:12:36 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-07-16 14:12:31 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-07-16 14:12:31 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-07-16 14:12:31 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-07-16 14:12:31 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-07-16 14:12:25 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2010-07-16 14:12:24 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2010-03-30 23:16:34 ----A---- C:\WINDOWS\system32\PresentationHostProxy.dll
2010-03-30 23:10:40 ----A---- C:\WINDOWS\system32\PresentationHost.exe
2009-11-07 00:07:08 ----A---- C:\WINDOWS\system32\netfxperf.dll
2009-11-07 00:07:04 ----A---- C:\WINDOWS\system32\mscoree.dll
2009-11-07 00:06:46 ----A---- C:\WINDOWS\system32\dfshim.dll
2009-08-19 16:07:18 ----N---- C:\WINDOWS\system32\msxml6.dll
2009-03-10 21:18:14 ----N---- C:\WINDOWS\system32\WgaTray.exe
2009-03-10 21:18:00 ----N---- C:\WINDOWS\system32\WgaLogon.dll
2009-03-08 13:22:46 ----N---- C:\WINDOWS\system32\ieframe.dll.mui
2009-03-08 13:22:30 ----N---- C:\WINDOWS\system32\msrating.dll.mui
2009-03-08 13:22:18 ----N---- C:\WINDOWS\system32\mshta.exe.mui
2009-03-08 13:21:06 ----N---- C:\WINDOWS\system32\ie4uinit.exe.mui
2009-03-08 13:21:06 ----N---- C:\WINDOWS\system32\advpack.dll.mui
2009-03-08 13:20:54 ----N---- C:\WINDOWS\system32\iedkcs32.dll.mui
2009-03-08 03:39:48 ----A---- C:\WINDOWS\system32\ieframe.dll
2009-03-08 03:34:48 ----N---- C:\WINDOWS\system32\WinFXDocObj.exe
2009-03-08 03:32:52 ----A---- C:\WINDOWS\system32\ieudinit.exe
2009-03-08 03:32:26 ----A---- C:\WINDOWS\system32\msfeeds.dll
2009-03-08 03:32:22 ----A---- C:\WINDOWS\system32\iertutil.dll
2009-03-08 03:31:54 ----N---- C:\WINDOWS\system32\msfeedssync.exe
2009-03-08 03:31:52 ----N---- C:\WINDOWS\system32\icardie.dll
2009-03-08 03:31:52 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2009-03-08 03:22:46 ----N---- C:\WINDOWS\system32\ieui.dll
2009-03-08 03:11:12 ----N---- C:\WINDOWS\system32\ieapfltr.dll
2009-01-07 17:20:38 ----A---- C:\WINDOWS\system32\nlsdl.dll
2009-01-07 17:20:36 ----A---- C:\WINDOWS\system32\normaliz.dll
2009-01-07 17:20:36 ----A---- C:\WINDOWS\system32\idndl.dll
2009-01-07 17:20:18 ----A---- C:\WINDOWS\system32\msdbg2.dll
2008-12-11 15:13:38 ----A---- C:\WINDOWS\system32\Ncs2Setp.dll
2008-12-11 15:06:30 ----A---- C:\WINDOWS\system32\ncs2dmix.dll
2008-12-11 15:06:18 ----A---- C:\WINDOWS\system32\accesor.dll
2008-12-11 14:44:28 ----A---- C:\WINDOWS\system32\ncs2instutility.dll
2008-12-11 14:32:46 ----A---- C:\WINDOWS\system32\ncscolib.dll
2008-11-26 18:20:38 ----A---- C:\WINDOWS\system32\drivers\iqvw32.sys
2008-11-12 02:28:14 ----A---- C:\WINDOWS\system32\drivers\ianswxp.sys
2008-08-28 16:37:54 ----A---- C:\WINDOWS\system32\NicInstG.dll
2008-08-20 13:18:42 ----A---- C:\WINDOWS\system32\drivers\e1000325.sys
2008-07-29 20:10:04 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2008-07-29 20:10:04 ----A---- C:\WINDOWS\system32\evr.dll
2008-07-29 20:10:04 ----A---- C:\WINDOWS\system32\dxva2.dll
2008-07-29 18:59:58 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2008-07-29 18:59:58 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2008-07-29 18:59:58 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2008-07-29 18:24:50 ----A---- C:\WINDOWS\system32\infocardapi.dll
2008-07-29 18:24:50 ----A---- C:\WINDOWS\system32\icardres.dll
2008-07-29 18:24:50 ----A---- C:\WINDOWS\system32\icardagt.exe
2008-07-29 04:49:58 ----A---- C:\WINDOWS\system32\icardres.dll.mui
2008-07-25 10:16:58 ----A---- C:\WINDOWS\system32\mscories.dll
2008-07-25 10:16:58 ----A---- C:\WINDOWS\system32\mscorier.dll
2008-05-26 21:21:26 ----N---- C:\WINDOWS\system32\mssrch.dll
2008-05-26 21:21:08 ----N---- C:\WINDOWS\system32\tquery.dll
2008-05-26 21:19:36 ----N---- C:\WINDOWS\system32\oeph.dll
2008-05-26 21:19:28 ----N---- C:\WINDOWS\system32\UncPH.dll
2008-05-26 21:19:28 ----N---- C:\WINDOWS\system32\UncNE.dll
2008-05-26 21:19:26 ----N---- C:\WINDOWS\system32\UncRes.dll
2008-05-26 21:19:22 ----N---- C:\WINDOWS\system32\UncDMS.dll
2008-05-26 21:19:20 ----N---- C:\WINDOWS\system32\UncCplExt.dll
2008-05-26 21:19:16 ----N---- C:\WINDOWS\system32\oephRes.dll
2008-05-26 21:18:56 ----N---- C:\WINDOWS\system32\mssphtb.dll
2008-05-26 21:18:44 ----N---- C:\WINDOWS\system32\searchindexer.exe
2008-05-26 21:18:44 ----N---- C:\WINDOWS\system32\mssphtb.dll.mui
2008-05-26 21:18:42 ----N---- C:\WINDOWS\system32\msstrc.dll
2008-05-26 21:18:34 ----N---- C:\WINDOWS\system32\xmlfilter.dll
2008-05-26 21:18:34 ----N---- C:\WINDOWS\system32\msshsq.dll
2008-05-26 21:18:32 ----N---- C:\WINDOWS\system32\rtffilt.dll
2008-05-26 21:18:26 ----A---- C:\WINDOWS\system32\mssph.dll
2008-05-26 21:18:22 ----N---- C:\WINDOWS\system32\searchindexer.exe.mui
2008-05-26 21:18:18 ----N---- C:\WINDOWS\system32\searchprotocolhost.exe
2008-05-26 21:18:08 ----N---- C:\WINDOWS\system32\propdefs.dll
2008-05-26 21:17:58 ----N---- C:\WINDOWS\system32\mssrch.dll.mui
2008-05-26 21:17:56 ----N---- C:\WINDOWS\system32\searchfilterhost.exe
2008-05-26 21:17:54 ----N---- C:\WINDOWS\system32\mssph.dll.mui
2008-05-26 21:17:48 ----N---- C:\WINDOWS\system32\propsys.dll
2008-05-26 21:17:44 ----N---- C:\WINDOWS\system32\msscb.dll
2008-05-26 21:17:38 ----N---- C:\WINDOWS\system32\msshooks.dll
2008-05-26 21:17:36 ----N---- C:\WINDOWS\system32\tquery.dll.mui
2008-05-26 21:17:30 ----N---- C:\WINDOWS\system32\srchadmin.dll
2008-05-26 21:17:28 ----N---- C:\WINDOWS\system32\mssprxy.dll
2008-05-26 21:17:26 ----N---- C:\WINDOWS\system32\mssitlb.dll
2008-05-26 21:17:26 ----N---- C:\WINDOWS\system32\msscntrs.dll
2008-05-26 21:17:12 ----N---- C:\WINDOWS\system32\srchadmin.dll.mui
2008-05-26 21:17:12 ----N---- C:\WINDOWS\system32\propsys.dll.mui
2008-03-20 17:06:36 ----A---- C:\WINDOWS\system32\LegitCheckControl.dll
2007-12-14 11:06:06 ----A---- C:\WINDOWS\system32\e1000msg.dll
2007-11-28 16:25:14 ----A---- C:\WINDOWS\system32\PRONtObj.dll
2007-09-27 09:51:02 ----N---- C:\WINDOWS\system32\idxcntrs.ini
2007-09-27 09:48:48 ----N---- C:\WINDOWS\system32\gsrvctr.ini
2007-09-27 09:48:28 ----N---- C:\WINDOWS\system32\gthrctr.ini
2007-08-06 23:28:34 ----A---- C:\WINDOWS\system32\NicCo2.dll
2006-10-24 11:30:20 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2006-10-24 11:30:06 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2006-10-24 11:30:00 ----N---- C:\WINDOWS\system32\wmphoto.dll
2006-10-24 11:29:50 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2006-10-18 20:47:22 ----N---- C:\WINDOWS\system32\WPDShServiceObj.dll
2006-10-18 20:47:22 ----N---- C:\WINDOWS\system32\wpdshextres.dll
2006-10-18 20:47:22 ----N---- C:\WINDOWS\system32\WpdShext.dll
2006-10-18 20:47:22 ----N---- C:\WINDOWS\system32\WMVXENCD.dll
2006-10-18 20:47:22 ----N---- C:\WINDOWS\system32\WMVSENCD.dll
2006-10-18 20:47:22 ----N---- C:\WINDOWS\system32\WMVSDECD.dll
2006-10-18 20:47:22 ----N---- C:\WINDOWS\system32\WMVENCOD.dll
2006-10-18 20:47:22 ----N---- C:\WINDOWS\system32\WMVDECOD.dll
2006-10-18 20:47:20 ----N---- C:\WINDOWS\system32\wmpsrcwp.dll
2006-10-18 20:47:20 ----N---- C:\WINDOWS\system32\wmpps.dll
2006-10-18 20:47:20 ----N---- C:\WINDOWS\system32\wmpmde.dll
2006-10-18 20:47:20 ----N---- C:\WINDOWS\system32\wmpencen.dll
2006-10-18 20:47:20 ----N---- C:\WINDOWS\system32\wmpeffects.dll
2006-10-18 20:47:20 ----N---- C:\WINDOWS\system32\wmdrmsdk.dll
2006-10-18 20:47:18 ----N---- C:\WINDOWS\system32\PortableDeviceWMDRM.dll
2006-10-18 20:47:18 ----N---- C:\WINDOWS\system32\PortableDeviceWiaCompat.dll
2006-10-18 20:47:18 ----N---- C:\WINDOWS\system32\PortableDeviceTypes.dll
2006-10-18 20:47:18 ----N---- C:\WINDOWS\system32\PortableDeviceClassExtension.dll
2006-10-18 20:47:18 ----N---- C:\WINDOWS\system32\PortableDeviceApi.dll
2006-10-18 20:47:14 ----N---- C:\WINDOWS\system32\MPG4DECD.dll
2006-10-18 20:47:14 ----N---- C:\WINDOWS\system32\MP4SDECD.dll
2006-10-18 20:47:14 ----N---- C:\WINDOWS\system32\MP43DECD.dll
2006-10-18 20:47:14 ----N---- C:\WINDOWS\system32\MFPLAT.dll
2006-10-18 20:47:08 ----N---- C:\WINDOWS\system32\audiodev.dll
2006-10-18 19:00:46 ----N---- C:\WINDOWS\system32\drmupgds.exe
2006-10-18 19:00:14 ----N---- C:\WINDOWS\system32\wpdshextautoplay.exe
2006-10-02 14:28:42 ----N---- C:\WINDOWS\system32\msdelta.dll
2006-09-28 19:13:26 ----N---- C:\WINDOWS\system32\WUDFCoinstaller.dll
2006-09-28 18:00:34 ----N---- C:\WINDOWS\system32\drivers\WudfRd.sys
2006-09-28 17:56:38 ----N---- C:\WINDOWS\system32\WUDFx.dll
2006-09-28 17:56:38 ----N---- C:\WINDOWS\system32\WudfHost.exe
2006-09-28 17:56:16 ----N---- C:\WINDOWS\system32\WudfPlatform.dll
2006-09-28 17:56:14 ----N---- C:\WINDOWS\system32\WudfSvc.dll
2006-09-28 17:55:50 ----N---- C:\WINDOWS\system32\drivers\WudfPf.sys
2006-08-24 15:15:06 ----A---- C:\WINDOWS\system32\rgb9rast_2.dll
2006-06-29 13:58:52 ----A---- C:\WINDOWS\fonts\GlobalUserInterface.CompositeFont
2006-06-29 13:53:56 ----A---- C:\WINDOWS\fonts\GlobalSansSerif.CompositeFont
2006-04-18 14:39:28 ----A---- C:\WINDOWS\fonts\GlobalSerif.CompositeFont
2006-04-18 14:39:28 ----A---- C:\WINDOWS\fonts\GlobalMonospace.CompositeFont
2006-04-07 10:07:26 ----A---- C:\WINDOWS\system32\ncscrt8_p.dll
2006-04-07 10:05:52 ----A---- C:\WINDOWS\system32\ncscrt8.dll
2006-03-16 19:38:01 ----N---- C:\WINDOWS\system32\verclsid.exe
2005-10-28 22:49:42 ----N---- C:\WINDOWS\system32\pintool.exe
2005-10-28 22:49:40 ----N---- C:\WINDOWS\system32\ifxcardm.dll
2005-10-28 22:49:40 ----N---- C:\WINDOWS\system32\bcsprsrc.dll
2005-10-28 22:49:40 ----N---- C:\WINDOWS\system32\axaltocm.dll
2005-10-28 15:40:16 ----N---- C:\WINDOWS\system32\basecsp.dll
2005-04-06 09:47:42 ----A---- C:\WINDOWS\system32\Coinstal.dll
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\wpdtrace.dll
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\wpdsp.dll
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\wpdmtpus.dll
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\wpdmtpdr.dll
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\wpdmtp.dll
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\wpdconns.dll
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\wpd_ci.dll
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\WMVADVE.DLL
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\WMVADVD.dll
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\wmdrmnet.dll
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\wmdrmdev.dll
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\wdfmgr.exe
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\wdfapi.dll
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\uwdf.exe
2005-01-28 12:44:28 ----A---- C:\WINDOWS\system32\drivers\wpdusb.sys
2004-08-04 07:00:00 ----RASH---- C:\NTDETECT.COM
2004-08-04 07:00:00 ----R---- C:\WINDOWS\system32\rsop.msc
2004-08-04 07:00:00 ----R---- C:\WINDOWS\system32\perfmon.msc
2004-08-04 07:00:00 ----N---- C:\WINDOWS\system32\occache.dll
2004-08-04 07:00:00 ----N---- C:\WINDOWS\system32\mstime.dll
2004-08-04 07:00:00 ----N---- C:\WINDOWS\system32\jsproxy.dll
2004-08-04 07:00:00 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2004-08-04 07:00:00 ----N---- C:\WINDOWS\system32\ie4uinit.exe
2004-08-04 07:00:00 ----ASH---- C:\WINDOWS\fonts\desktop.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\winhlp32.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\winhelp.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\win.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\vmmreg32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\twunk_32.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\twunk_16.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\twain_32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\twain.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\zipfldr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\xpsp2res.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\xpsp1res.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\xpob2res.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\xmlprovi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\xmlprov.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\xenroll.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\xcopy.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\xactsrv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wzcdlg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wupdmgr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wtsapi32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wstdecod.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wsock32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wsnmp32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wshtcpip.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wshrm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wshnetbs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wshisn.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wship6.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wshext.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wshcon.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wshbth.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wshatm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wsecedit.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wscsvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wscript.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wscntfy.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ws2help.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ws2_32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wpabaln.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wowexec.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wowdeb.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wow32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmvdmoe2.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmvdmod.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\WMVCore.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmstream.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\WMSPDMOE.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmspdmod.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmsdmoe2.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmsdmoe.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmsdmod.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmpui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmpshell.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmploc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmpcore.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmpcd.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmpasf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\WMNetmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmiscmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmiprop.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmidx.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmerror.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmerrenu.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmdmps.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmdmlog.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wmasf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\WMADMOE.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\WMADMOD.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wlnotify.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wldap32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wkssvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winver.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wintrust.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winstrm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winsta.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winsrv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winspool.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winsock.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winshfhc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winscard.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winrnr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winntbbu.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winnls.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winmsd.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winmm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winlogon.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winipsec.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wininet.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winhttp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winhlp32.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winfax.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\winbrand.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\win87em.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\win32spl.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\win32k.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\win.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wifeman.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wiavusd.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wiavideo.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wiashext.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wiaservc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wiascr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wiadss.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wiadefui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wiaacmgr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wextract.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\webvw.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\webhits.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\webclnt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\webcheck.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wdigest.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wavemsp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\watchdog.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\w3ssl.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\w32topl.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\w32tm.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\w32time.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vwipxspx.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vwipxspx.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vssvc.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vssapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vssadmin.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vss_ps.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vjoy.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vga64k.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vga256.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vga.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vfpodbc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\version.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\verifier.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\verifier.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ver.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vdmredir.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vdmdbg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vcdex.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vbscript.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\vbajet32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\uxtheme.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\utilman.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\utildll.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usp10.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\userinit.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\userenv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\user32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\user.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usbmon.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\urlmon.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\url.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ureg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ups.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\upnpui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\upnphost.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\upnpcont.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\upnp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\untfs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\unlodctr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\uniplat.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\unimdmat.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\umdmxfrm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\umandlg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ulib.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ufat.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\udhisapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\typeperf.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\typelib.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\txflog.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\twext.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tsddd.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tsd32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tsappcmp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\trkwks.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tree.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\traffic.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tracert6.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tracert.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tracerpt.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tourstart.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\toolhelp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tlntsvrp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tlntsvr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tlntsess.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tlntadmn.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\themeui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tftp.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\termmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\telnet.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tcpsvcs.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tcpmonui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tcpmon.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tcpmon.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tcpmib.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tcmsetup.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\taskmgr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\taskman.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tasklist.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\taskkill.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tapiui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tapisrv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tapiperf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tapi32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tapi3.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\tapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\t2embed.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\systray.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\systeminfo.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\syssetup.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sysocmgr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\syskey.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sysinv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sysedit.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\syncui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\synceng.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\syncapp.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sxs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\swprv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\svcpack.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\svchost.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\subst.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\strmfilt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\strmdll.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\storage.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\stobject.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\stimon.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sti_ci.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sti.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\srvsvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sqlwoa.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sqlwid.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sqlunirl.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sqlsrv32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sprestrt.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\spoolsv.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\spoolss.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\spnpinst.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\spiisupd.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sort.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\softpub.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\snmpsnap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\snmpapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\smss.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\smlogsvc.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\smlogcfg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\smbinst.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\slbrccsp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\slbiop.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\slbcsp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\slayerxp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\skeys.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\skdll.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sisbkup.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sigverif.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sigtab.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shutdown.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shsvcs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shscrap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shrpubw.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shmgrate.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shmedia.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shlwapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shimgvw.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shimeng.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shgina.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shfolder.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shellstyle.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shell32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shell.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shdocvw.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\shdoclc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\share.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sfmapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sfcfiles.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sfc_os.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sfc.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sfc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\setver.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\setupdll.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\setupapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\setup.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sethc.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\serwvdrv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\services.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\services.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\serialui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\senscfg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sensapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sens.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sendmail.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sendcmsg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\security.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\secur32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\secpol.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\seclogon.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\secedit.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sdpblb.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sdhcinst.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sdbinst.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\scrrun.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\scrobj.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\scriptpw.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\scredir.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sclgntfy.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\schtasks.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\schannel.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\scesrv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\scecli.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sccsccp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sccbase.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\scardsvr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\scardssp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\scarddlg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sc.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sbeio.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sbe.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\savedump.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\samsrv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\samlib.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\runonce.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rundll32.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\runas.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rtutils.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rtm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rtipxmib.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rtcshare.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsvpsp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsvpperf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsvpmsg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsvp.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsvp.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsopprov.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsnotify.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsmui.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsmsink.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsmps.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsm.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rshx32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsh.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsfsaps.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rsaenh.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rpcss.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rpcns4.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\routetab.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\routemon.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\route.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rnr20.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\riched32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\riched20.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rexec.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\resutils.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\replace.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rend.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\relog.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\regwizc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\regwiz.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\regsvr32.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\regsvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\regedt32.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\regapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\reg.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\redir.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\recover.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rdpdd.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rcp.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rcimlby.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rcbdyctl.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rastls.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rastapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasser.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rassapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasrad.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasppp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasphone.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasmxs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasmontr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasmans.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasman.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasdlg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasdial.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasctrs.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasctrs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\raschap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasautou.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasauto.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasapi32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\query.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\quartz.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\qosname.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\qedwipes.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\qedit.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\qdvd.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\qdv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\qcap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\qasf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pubprn.vbs
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pstorsvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pstorec.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\psnppagn.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pschdprf.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pschdprf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\psbase.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\psapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\proxycfg.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\proquota.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\progman.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\profmap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\prodspec.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\prnqctl.vbs
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\prnport.vbs
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\prnmngr.vbs
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\prnjobs.vbs
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\prndrvr.vbs
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\prncnfg.vbs
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\printui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\print.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\prflbmsg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\powrprof.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\powercfg.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\polstore.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pnrpnsp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pngfilt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pmspl.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\plustab.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ping6.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ping.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pifmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pidgen.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\photowiz.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\perfwci.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\perfts.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\perfproc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\perfos.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\perfnw.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\perfnet.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\perfmon.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\perffilt.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\perfdisk.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\perfctrs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\perfci.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pentnt.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pdh.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pautoenr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pathping.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\panmap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\pagefileconfig.vbs
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\packager.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\p2psvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\p2pgraph.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\p2pgasvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\p2p.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\osuninst.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\osuninst.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\osk.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\opengl32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\openfiles.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\olethk32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\olesvr32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\olesvr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\olepro32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\oleprn.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\oledlg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\olecnv32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\olecli32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\olecli.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\oleaut32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\oleaccrc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\oleacc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ole32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ole2nls.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ole2disp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ole2.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\offfilt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odtext32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odpdx32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odfox32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odexl32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\oddbse32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbctrac.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbcp32r.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbcjt32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbcji32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbcint.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbccu32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbccr32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbccp32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbcconf.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbcconf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbcbcp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbcad32.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbc32gt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbc32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\odbc16gt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ocmanage.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\objsel.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\oakley.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nwwks.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nwscript.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nwprovau.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nwevent.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nwcfg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nwapi32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nwapi16.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nw16.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntvdmd.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntvdm.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntshrui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntsdexts.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntsd.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntprint.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntmssvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntmsoprq.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntmsmgr.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntmsmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntmsevt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntmsdba.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntmsapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntmarta.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntlsapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntlanui2.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntlanui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntlanman.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntio804.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntio412.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntio411.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntio404.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntio.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntdsbcli.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntdsapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntdos804.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntdos412.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntdos411.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntdos404.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntdos.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntdll.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ntbackup.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nslookup.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\npptools.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\notepad.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nlsfunc.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nlhtml.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\newdev.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netui2.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netui1.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netui0.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netstat.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netshell.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netsh.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netsetup.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netrap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netplwiz.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netmsg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netman.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netlogon.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netid.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\neth.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netevent.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netdde.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netcfgx.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netapi32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\netapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\net1.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\net.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nddenb32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nddeapir.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nddeapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ncxpnt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\nbtstat.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\narrhook.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\narrator.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mydocs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mycomput.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mtxclu.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msxmlr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msxml3r.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msxml3.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msxml2r.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msxml2.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msxml.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msxbde40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mswstr10.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mswsock.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mswmdm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mswebdvd.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mswdat10.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msw3prt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msvideo.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msvidctl.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msvidc32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msvfw32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msvcrt40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msvcrt20.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msvcrt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msvcp60.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msvcp50.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msvcirt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msvbvm60.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msvbvm50.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msv1_0.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msutb.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mstlsapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mstext40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msswchx.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msswch.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mssip32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mssign32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msscp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mssap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msrle32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msrepl40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msrecr40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msrd3x40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msrd2x40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msrclr40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msrating.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msratelc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msr2cenu.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msr2c.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msprivs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msports.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mspmsp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mspmsnsv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mspbde40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mspatcha.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msorcl32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msorc32r.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msobjs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msnsspc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msnetobj.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msltus40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msls31.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mslbui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msjtes40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msjter40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msjint40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msjetoledb40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msjet40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msisip.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msimtf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msimsg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msimg32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msihnd.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msiexec.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msieftp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msidntld.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msidle.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msident.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mshtmler.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mshtmled.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mshtml.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mshta.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msgsvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msgina.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msftedit.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msexcl40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msexch40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msencode.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msdxmlc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msdmo.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msdart.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msdadiag.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msctfp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msctf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mscpxl32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mscpx32r.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mscms.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mscdexnt.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mscat32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msaudite.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msasn1.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msapsspc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msafd.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msacm32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msacm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\msaatext.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mrinfo.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqutil.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqupgrd.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqtrig.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqtgsvc.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqsvc.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqsnap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqsec.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqrtdep.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqrt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqqm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqperf.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqperf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqoa.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqise.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqgentr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqdscli.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqcertui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqbkup.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mqad.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mprui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mprmsg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mprdim.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mprddm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mprapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mpr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mpnotify.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\MPG4DMOD.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\MP4SDMOD.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\MP43DMOD.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mountvol.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\moricons.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\more.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\modex.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\modemui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mode.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mobsync.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mobsync.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mmutilse.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mmsystem.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mmdrv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mmcshext.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mmcbase.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mmc.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mll_qic.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mll_mtf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mll_hp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mlang.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mimefilt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\migpwd.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\miglibnt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\midimap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mfcsubs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mfc42u.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mfc42.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mfc40u.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mfc40.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mf3216.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mem.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mdminst.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mdhcp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mciwave.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mciseq.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mciqtz32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mciole32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mciole16.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mcicda.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mciavi32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mchgrcoi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mcdsrv32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mcd32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mcastmib.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mapistub.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\makecab.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\magnify.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mag_hook.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lzexpand.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lz32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lusrmgr.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lsass.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lsasrv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lprmonui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lprhelp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lpr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lpq.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lpk.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\logonui.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\logman.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\login.cmd
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\loghours.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\logagent.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lodctr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\locator.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\localui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\localspl.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\localsec.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\loadperf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\loadfix.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lnkstub.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lmrt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lmhsvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\linkinfo.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\lights.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\licmgr10.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\licdll.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\LAPRXY.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\langwrbk.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\label.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\krnl386.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\keymgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\keyboard.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\key01.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kernel32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kerberos.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kdcom.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kd1394.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdusx.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdusr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdusl.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdus.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdukx.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbduk.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdsw.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdsp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdsmsno.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdsmsfi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdsg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdsf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdpo.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdno1.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdno.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdnec.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdne.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdmlt48.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdmlt47.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdmaori.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdmac.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdla.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdit142.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdit.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdir.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdinmal.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdinben.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdinbe1.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdic.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdgr1.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdgae.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdfr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdfo.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdfi1.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdfi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdfc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdes.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbddv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdda.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdcan.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdca.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdbr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdbene.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kbdbe.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\kb16.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\jscript.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\jobexec.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\jgsh400.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\jgsd400.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\jgpl400.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\jgmd400.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\jgdw400.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\jgaw400.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\jet500.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ixsso.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iuengine.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\itss.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\itircl.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ir50_qcx.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ir50_qc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ir50_32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ir41_qcx.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ir41_qc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ir32_32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipxwan.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipxsap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipxrtmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipxroute.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipxrip.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipxpromn.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipxmontr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipv6mon.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipv6.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipsmsnap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipsecsvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipsecsnp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipsec6.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iprtprio.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iprop.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ippromon.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipmontr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iphlpapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ipconfig.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iologmsg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\inseng.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\input.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\initpki.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\infosoft.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\inetppui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\inetpp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\inetmib1.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\inetcplc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\imm32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\imgutil.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\imeshare.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\imapi.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\imagehlp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iissuba.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\igmpagnt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ifsutil.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ifmon.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iexpress.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iesetup.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iernonce.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iepeers.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ieakui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ieaksie.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ieakeng.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\idq.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\icmui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\icmp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\icm32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iccvid.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iassvcs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iassdo.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iassam.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iasrecst.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iasrad.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iaspolcy.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iasnap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iashlpr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iasads.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\iasacct.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\htui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\httpapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\hotplug.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\hostname.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\hnetwiz.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\hnetmon.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\hlink.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\himem.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\hhsetup.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\help.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\hccoin.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\HAL.DLL
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\h323msp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\grpconv.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\graphics.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\graftabl.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\gpupdate.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\gptext.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\gpresult.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\gpkrsrc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\gpkcsp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\gpedit.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\gpedit.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\glu32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\glmf32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\getmac.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\gdi32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\gdi.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\gcdef.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fwcfg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ftsrch.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ftp.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fsutil.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fsusd.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fsquirt.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fsmgmt.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\framebuf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\format.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\forcedos.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fontview.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fontsub.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fontext.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fmifs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fldrclnr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fixmapi.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\finger.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\findstr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\find.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\filemgmt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\feclient.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fdeploy.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fde.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fc.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\faultrep.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\fastopen.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\exts.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\extrac32.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\extmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\expsrv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\expand.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\exe2bin.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\eventvwr.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\eventvwr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\eventtriggers.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\eventquery.vbs
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\eventlog.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\eventcreate.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\eventcls.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\eula.txt
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\eudcedit.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\esentutl.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\esentprf.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\esentprf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\esent97.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\esent.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\es.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ersvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\encdec.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\encapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\els.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\efsadu.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\edlin.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\edit.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dxtrans.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dxmasf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dxdiagn.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dxdiag.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dx8vb.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dx7vb.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dwwin.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dvdupgrd.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\duser.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dumprep.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dswave.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dsuiext.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dssenh.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dssec.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dsquery.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dsprpres.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dsprop.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dsound3d.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dsound.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dskquoui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dskquota.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dsdmoprp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dsdmo.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dsauth.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ds32gt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ds16gt.dLL
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drwtsn32.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drwatson.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drprov.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drmv2clt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drmstor.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drmclien.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ws2ifsl.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\wmilib.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\volsnap.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\videoprt.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\vga.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\usbd.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\update.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\tdi.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\tcpip6.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\tape.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\smclib.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\sfloppy.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\sffp_sd.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\sffdisk.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\serial.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\serenum.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\secdrv.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\scsiport.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\rootmdm.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\rndismp.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\rdpcdd.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\rawwan.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\raspti.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\raspptp.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\rasacd.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ptilink.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\psched.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\pcmcia.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\pciidex.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\pciide.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\parvdm.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\oprghdlr.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ohci1394.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\nwrdr.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\nwlnkspx.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\nwlnknb.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\nwlnkipx.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\nwlnkfwd.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\nwlnkflt.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\null.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\nmnt.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\netbios.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ndiswan.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\msgpc.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\msfs.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\mqac.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\mnmdd.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\mcd.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\kbdclass.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\isapnp.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ipsec.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ipnat.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ipinip.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ipfltdrv.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ip6fw.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\imapi.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\i8042prt.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\http.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\hidclass.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\gmreadme.txt
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\ftdisk.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\fs_rec.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\flpydisk.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\fips.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\fdc.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\dxgthk.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\dxg.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\dxapi.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\dmload.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\dmio.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\dmboot.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\diskdump.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\disk.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\classpnp.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\cdrom.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\cdfs.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\cbidf2k.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\beep.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\atmuni.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\atmlane.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\atmepvc.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\atmarpc.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\atapi.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\asyncmac.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\acpiec.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\drivers\1394bus.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\driverquery.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpwsockx.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpwsock.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpvvox.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpvsetup.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpvoice.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpvacm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpserial.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpnwsock.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpnmodem.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpnet.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dplayx.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dplay.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dpcdll.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dosx.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\doskey.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\docprop2.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\docprop.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dnsapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmusic.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmsynth.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmstyle.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmserver.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmscript.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmremote.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmocx.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmloader.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmintf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmime.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmdskres.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmdlgs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmconfig.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmcompos.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmband.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dmadmin.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dllhst3g.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dllhost.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dispex.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\diskperf.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\diskpart.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\diskmgmt.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\diskcopy.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\diskcopy.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\diskcomp.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dinput8.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dinput.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dimap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\digest.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\diantz.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\diactfrm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dhcpsapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dhcpmon.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dgnet.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dfsshlex.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dfrgui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dfrgsnap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dfrgres.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dfrgntfs.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dfrgfat.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dfrg.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\devmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\devmgmt.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\devenum.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\deskperf.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\deskmon.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\deskadp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\defrag.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\debug.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ddrawex.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ddraw.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ddeshare.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ddeml.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dciman32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dbnmpntw.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dbnetlib.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dbmsrpcn.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dbghelp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dbgeng.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\davclnt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\datime.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dataclen.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\danim.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\d3dxof.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\d3drm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\d3dramp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\d3dpmesh.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\d3dim700.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\d3dim.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\d3d9.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\d3d8.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ctl3dv2.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ctl3d32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ctfmon.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\csseqchk.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\csrss.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\csrsrv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cscui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cscript.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cscdll.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cryptui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cryptnet.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cryptext.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cryptdll.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\crypt32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\crtdll.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\credui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\country.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\corpol.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\convert.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\control.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\console.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\conime.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\confmsp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\comres.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\compstui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\compobj.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\compmgmt.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\compatui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\compact.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\comp.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\commdlg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\command.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\comdlg32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\comctl32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\comcat.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cnvfat.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cnetcfg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cmutil.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cmstp.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cmsetacl.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cmpbk32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cmmon32.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cmdl32.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cmdial32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cmd.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cmcfg32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\clusapi.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\clipsrv.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cliconfg.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cliconfg.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\clb.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ckcnv.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cisvc.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cipher.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ciodm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cidaemon.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cic.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ciadv.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ciadmin.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\chkntfs.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\chkdsk.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\chcp.com
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cfgmgr32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cewmdm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\certmgr.msc
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\certmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\certcli.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cdosys.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cdm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cdfview.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ccfgnt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cards.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\capesnpn.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\camocx.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cacls.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cabview.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\cabinet.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\btpanui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\bthserv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\bthci.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\browsewm.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\browseui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\browser.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\browselc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\bootvrfy.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\bootvid.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\bootok.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\bootcfg.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\blastcln.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\blackbox.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\bidispl.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\batmeter.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\basesrv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\avifile.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\avifil32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\avicap32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\avicap.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\autolfn.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\autofmt.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\autodisc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\autoconv.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\autochk.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\authz.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\auditusr.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\audiosrv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\attrib.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\atmpvcno.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\atmlib.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\atmfd.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\atmadm.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\atl.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\atkctrs.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\at.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\asycfilt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\asr_pfu.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\asr_ldm.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\asr_fmt.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\asferror.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\arp.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\appmgr.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\appmgmts.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\apphelp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\append.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\apcups.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ansi.sys
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\amstream.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\alrsvc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\alg.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\ahui.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\advpack.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\advapi32.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\adsnw.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\adsnt.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\adsnds.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\adsmsext.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\adsldpc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\adsldp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\adptif.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\admparse.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\actxprxy.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\actmovie.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\activeds.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\aclui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\acledit.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\aaaamon.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\6to4svc.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\regedit.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\msdfmap.ini
2004-08-04 07:00:00 ----A---- C:\WINDOWS\hh.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\explorer.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\_default.pif
2004-08-03 19:56:48 ----A---- C:\WINDOWS\system32\wzcsvc.dll
2004-08-03 19:56:48 ----A---- C:\WINDOWS\system32\wzcsapi.dll
2004-08-03 19:56:46 ----A---- C:\WINDOWS\system32\pjlmon.dll
2004-08-03 19:56:46 ----A---- C:\WINDOWS\system32\pid.dll
2004-08-03 19:56:46 ----A---- C:\WINDOWS\system32\msyuv.dll
2004-08-03 19:56:44 ----A---- C:\WINDOWS\system32\iyuv_32.dll
2004-08-03 19:56:44 ----A---- C:\WINDOWS\system32\hid.dll
2004-08-03 19:56:44 ----A---- C:\WINDOWS\system32\dmutil.dll
2004-08-03 19:56:42 ----A---- C:\WINDOWS\system32\cnbjmon.dll
2004-08-03 18:15:22 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2004-08-03 18:09:56 ----A---- C:\WINDOWS\system32\drivers\sonydcam.sys
2004-08-03 18:08:58 ----A---- C:\WINDOWS\system32\drivers\usbintel.sys
2004-08-03 18:08:06 ----A---- C:\WINDOWS\system32\drivers\modem.sys
2004-08-03 18:08:04 ----A---- C:\WINDOWS\system32\drivers\stream.sys
2004-08-03 18:07:48 ----A---- C:\WINDOWS\system32\drivers\mssmbios.sys
2004-08-03 18:07:46 ----A---- C:\WINDOWS\system32\drivers\mf.sys
2004-08-03 18:03:18 ----A---- C:\WINDOWS\system32\drivers\tunmp.sys
2004-08-03 18:03:14 ----A---- C:\WINDOWS\system32\drivers\ndisuio.sys
2004-08-03 17:59:22 ----A---- C:\WINDOWS\system32\drivers\crusoe.sys
2004-08-03 17:59:22 ----A---- C:\WINDOWS\system32\drivers\amdk7.sys
2004-08-03 17:59:20 ----A---- C:\WINDOWS\system32\drivers\p3.sys
2004-08-03 17:59:20 ----A---- C:\WINDOWS\system32\drivers\amdk6.sys
2004-08-03 17:59:18 ----A---- C:\WINDOWS\system32\drivers\processr.sys
2004-08-03 17:59:08 ----A---- C:\WINDOWS\system32\drivers\parport.sys
2004-08-03 17:59:02 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2004-08-03 17:58:42 ----A---- C:\WINDOWS\system32\drivers\swenum.sys
2004-08-03 17:58:34 ----A---- C:\WINDOWS\system32\drivers\mouclass.sys
2004-08-03 17:58:30 ----A---- C:\WINDOWS\system32\drivers\nic1394.sys
2004-08-03 17:58:30 ----A---- C:\WINDOWS\system32\drivers\arp1394.sys
2003-12-04 12:47:10 ----A---- C:\WINDOWS\system32\SetupKey.exe
2002-11-18 14:51:40 ----A---- C:\WINDOWS\system32\drivers\cmaudio.sys
2002-10-15 17:00:20 ----A---- C:\WINDOWS\mixer.exe
2002-10-09 08:38:24 ----A---- C:\WINDOWS\system32\cmnprop.dll
2002-07-11 10:24:50 ----A---- C:\WINDOWS\cmuninst.exe
2002-01-07 18:49:27 ----D---- C:\Config.Msi
2002-01-07 16:36:36 ----D---- C:\Documents and Settings\toxicpuke\Application Data\Windows Search
2002-01-07 16:32:23 ----D---- C:\Documents and Settings\All Users\Application Data\SITEguard
2002-01-07 16:31:31 ----D---- C:\Program Files\Common Files\iS3
2002-01-07 16:31:31 ----D---- C:\Documents and Settings\All Users\Application Data\STOPzilla!
2002-01-07 16:21:19 ----D---- C:\Documents and Settings\toxicpuke\Application Data\PeaZip
2002-01-07 16:20:45 ----D---- C:\Program Files\PeaZip
2002-01-06 21:43:56 ----A---- C:\Boot.bak
2002-01-06 21:43:42 ----RASHD---- C:\cmdcons
2002-01-06 21:39:28 ----A---- C:\WINDOWS\zip.exe
2002-01-06 21:39:28 ----A---- C:\WINDOWS\SWXCACLS.exe
2002-01-06 21:39:28 ----A---- C:\WINDOWS\SWSC.exe
2002-01-06 21:39:28 ----A---- C:\WINDOWS\SWREG.exe
2002-01-06 21:39:28 ----A---- C:\WINDOWS\sed.exe
2002-01-06 21:39:28 ----A---- C:\WINDOWS\PEV.exe
2002-01-06 21:39:28 ----A---- C:\WINDOWS\NIRCMD.exe
2002-01-06 21:39:28 ----A---- C:\WINDOWS\grep.exe
2002-01-06 21:39:18 ----D---- C:\WINDOWS\ERDNT
2002-01-06 21:38:40 ----D---- C:\Qoobox
2002-01-05 16:37:19 ----D---- C:\Documents and Settings\toxicpuke\Application Data\Malwarebytes
2002-01-05 16:37:11 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2002-01-05 16:37:11 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2002-01-05 16:37:10 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2002-01-05 16:37:10 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2002-01-05 16:32:04 ----D---- C:\Program Files\Trend Micro
2002-01-04 22:43:13 ----D---- C:\Documents and Settings\toxicpuke\Application Data\skypePM
2002-01-04 22:42:08 ----D---- C:\Documents and Settings\toxicpuke\Application Data\Skype
2002-01-04 22:39:49 ----D---- C:\Program Files\Common Files\Skype
2002-01-04 22:39:45 ----RD---- C:\Program Files\Skype
2002-01-04 22:39:39 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2002-01-04 02:32:37 ----RHD---- C:\Documents and Settings\toxicpuke\Application Data\SecuROM
2002-01-04 02:32:36 ----A---- C:\WINDOWS\system32\CmdLineExt.dll
2002-01-02 11:26:54 ----D---- C:\WINDOWS\temp
2002-01-02 11:26:52 ----A---- C:\ComboFix.txt
2002-01-02 11:14:15 ----A---- C:\WINDOWS\MBR.exe
2002-01-01 21:34:08 ----A---- C:\WINDOWS\system32\lsdelete.exe
2002-01-01 19:02:11 ----A---- C:\WINDOWS\system32\drivers\Lbd.sys
2002-01-01 19:02:09 ----A---- C:\WINDOWS\system32\drivers\SBREDrv.sys
2002-01-01 18:30:34 ----HDC---- C:\Documents and Settings\All Users\Application Data\{BD986C1B-72EC-4B82-B47B-6CAC4E6F494E}
2002-01-01 18:30:21 ----D---- C:\Program Files\Lavasoft
2002-01-01 18:30:21 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2002-01-01 18:02:49 ----D---- C:\Documents and Settings\toxicpuke\Application Data\mjusbsp
2002-01-01 18:02:38 ----A---- C:\WINDOWS\system32\drivers\usbaudio.sys
2002-01-01 17:41:11 ----A---- C:\WINDOWS\system32\drivers\MidiSyn.sys
2002-01-01 17:40:58 ----A---- C:\WINDOWS\system32\drivers\smsens.sys
2002-01-01 17:40:58 ----A---- C:\WINDOWS\system32\drivers\aeaudio.sys
2002-01-01 17:40:57 ----A---- C:\WINDOWS\system32\wdmioctl.dll
2002-01-01 17:40:56 ----HD---- C:\Program Files\InstallShield Installation Information
2002-01-01 17:40:56 ----D---- C:\WINDOWS\VirtualEar
2002-01-01 17:40:56 ----D---- C:\Program Files\Analog Devices
2002-01-01 17:40:56 ----A---- C:\WINDOWS\system32\virtear.dll
2002-01-01 17:40:56 ----A---- C:\WINDOWS\system32\SMMedia.dll
2002-01-01 17:40:56 ----A---- C:\WINDOWS\system32\DSndUp.exe
2002-01-01 17:40:56 ----A---- C:\WINDOWS\system32\drivers\smwdm.sys
2002-01-01 17:40:56 ----A---- C:\WINDOWS\system32\CleanUp.exe
2002-01-01 17:40:50 ----D---- C:\Program Files\Common Files\InstallShield
2002-01-01 08:27:48 ----A---- C:\WINDOWS\system32\h323log.txt
2002-01-01 07:17:16 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2002-01-01 07:17:03 ----A---- C:\WINDOWS\system32\hidserv.dll
2002-01-01 07:16:22 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2002-01-01 07:16:04 ----A---- C:\WINDOWS\system32\drivers\enum1394.sys
2002-01-01 07:15:51 ----A---- C:\WINDOWS\system32\drivers\intelide.sys
2002-01-01 07:15:43 ----A---- C:\WINDOWS\system32\drivers\agp440.sys
2002-01-01 07:15:35 ----A---- C:\WINDOWS\system32\usbui.dll
2002-01-01 07:14:37 ----SHD---- C:\WINDOWS\Installer
2002-01-01 07:14:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2002-01-01 07:14:36 ----D---- C:\Program Files\Common Files\ODBC
2002-01-01 07:14:36 ----A---- C:\WINDOWS\ODBCINST.INI
2002-01-01 07:14:33 ----RD---- C:\Program Files
2002-01-01 07:14:33 ----D---- C:\Program Files\Common Files\SpeechEngines
2002-01-01 07:14:33 ----D---- C:\Program Files\Common Files\Microsoft Shared
2002-01-01 07:14:33 ----D---- C:\Program Files\Common Files
2002-01-01 07:14:30 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2002-01-01 07:14:30 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2002-01-01 07:14:30 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2002-01-01 07:14:27 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2002-01-01 07:14:27 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2002-01-01 07:14:27 ----RA---- C:\WINDOWS\system32\kbdur.dll
2002-01-01 07:14:27 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2002-01-01 07:14:27 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2002-01-01 07:14:27 ----RA---- C:\WINDOWS\system32\kbdru.dll
2002-01-01 07:14:27 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2002-01-01 07:14:27 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2002-01-01 07:14:27 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2002-01-01 07:14:27 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2002-01-01 07:14:27 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2002-01-01 07:14:27 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2002-01-01 07:14:25 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2002-01-01 07:14:25 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2002-01-01 07:14:25 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2002-01-01 07:14:25 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2002-01-01 07:14:25 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2002-01-01 07:14:25 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2002-01-01 07:14:25 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2002-01-01 07:14:23 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2002-01-01 07:14:23 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2002-01-01 07:14:23 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2002-01-01 07:14:23 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2002-01-01 07:14:23 ----RA---- C:\WINDOWS\system32\kbdest.dll
2002-01-01 07:14:21 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2002-01-01 07:14:21 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2002-01-01 07:14:21 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2002-01-01 07:14:21 ----RA---- C:\WINDOWS\system32\kbdro.dll
2002-01-01 07:14:21 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2002-01-01 07:14:21 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2002-01-01 07:14:21 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2002-01-01 07:14:21 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2002-01-01 07:14:21 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2002-01-01 07:14:21 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2002-01-01 07:14:21 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2002-01-01 07:14:21 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2002-01-01 07:14:21 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2002-01-01 07:14:17 ----A---- C:\WINDOWS\system32\irclass.dll
2002-01-01 07:14:17 ----A---- C:\WINDOWS\system32\dgsetup.dll
2002-01-01 07:14:17 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2002-01-01 07:14:16 ----A---- C:\WINDOWS\system32\spxcoins.dll
2002-01-01 07:14:16 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2002-01-01 07:14:12 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2002-01-01 07:14:12 ----A---- C:\WINDOWS\TASKMAN.EXE
2002-01-01 07:14:11 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2002-01-01 07:14:11 ----A---- C:\WINDOWS\system32\batt.dll
2002-01-01 07:14:10 ----A---- C:\WINDOWS\notepad.exe
2002-01-01 07:14:09 ----A---- C:\WINDOWS\system32\storprop.dll
2002-01-01 07:14:01 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2002-01-01 07:12:19 ----RA---- C:\WINDOWS\SET8.tmp
2002-01-01 07:12:17 ----RA---- C:\WINDOWS\SET4.tmp
2002-01-01 07:12:16 ----RA---- C:\WINDOWS\SET3.tmp
2002-01-01 07:12:11 ----D---- C:\WINDOWS\system32\CatRoot2
2002-01-01 07:12:11 ----D---- C:\WINDOWS\system32\CatRoot
2002-01-01 07:12:05 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2002-01-01 07:11:51 ----A---- C:\WINDOWS\setuplog.txt
2002-01-01 07:11:48 ----D---- C:\Documents and Settings
2002-01-01 07:11:47 ----SHD---- C:\System Volume Information
2002-01-01 07:10:32 ----RASH---- C:\boot.ini
2002-01-01 07:05:43 ----RSHDC---- C:\WINDOWS\system32\dllcache
2002-01-01 07:05:43 ----RSD---- C:\WINDOWS\Fonts
2002-01-01 07:05:43 ----RD---- C:\WINDOWS\Web
2002-01-01 07:05:43 ----HD---- C:\WINDOWS\inf
2002-01-01 07:05:43 ----D---- C:\WINDOWS\WinSxS
2002-01-01 07:05:43 ----D---- C:\WINDOWS\twain_32
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\wins
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\wbem
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\usmt
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\spool
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\ShellExt
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\Setup
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\ras
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\oobe
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\npp
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\mui
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\inetsrv
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\IME
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\icsxml
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\ias
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\export
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\drivers\etc
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\drivers\disdn
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\drivers
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\dhcp
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\config
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\3com_dmi
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\3076
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\2052
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\1054
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\1042
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\1041
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\1037
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\1033
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\1031
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\1028
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32\1025
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system32
2002-01-01 07:05:43 ----D---- C:\WINDOWS\system
2002-01-01 07:05:43 ----D---- C:\WINDOWS\security
2002-01-01 07:05:43 ----D---- C:\WINDOWS\Resources
2002-01-01 07:05:43 ----D---- C:\WINDOWS\repair
2002-01-01 07:05:43 ----D---- C:\WINDOWS\Provisioning
2002-01-01 07:05:43 ----D---- C:\WINDOWS\PeerNet
2002-01-01 07:05:43 ----D---- C:\WINDOWS\pchealth
2002-01-01 07:05:43 ----D---- C:\WINDOWS\mui
2002-01-01 07:05:43 ----D---- C:\WINDOWS\msapps
2002-01-01 07:05:43 ----D---- C:\WINDOWS\msagent
2002-01-01 07:05:43 ----D---- C:\WINDOWS\Media
2002-01-01 07:05:43 ----D---- C:\WINDOWS\java
2002-01-01 07:05:43 ----D---- C:\WINDOWS\ime
2002-01-01 07:05:43 ----D---- C:\WINDOWS\Help
2002-01-01 07:05:43 ----D---- C:\WINDOWS\ehome
2002-01-01 07:05:43 ----D---- C:\WINDOWS\Driver Cache
2002-01-01 07:05:43 ----D---- C:\WINDOWS\Debug
2002-01-01 07:05:43 ----D---- C:\WINDOWS\Cursors
2002-01-01 07:05:43 ----D---- C:\WINDOWS\Connection Wizard
2002-01-01 07:05:43 ----D---- C:\WINDOWS\Config
2002-01-01 07:05:43 ----D---- C:\WINDOWS\AppPatch
2002-01-01 07:05:43 ----D---- C:\WINDOWS\addins
2002-01-01 07:05:43 ----D---- C:\WINDOWS
2002-01-01 07:05:42 ----ASH---- C:\pagefile.sys
2002-01-01 03:01:58 ----D---- C:\Program Files\Steam
2002-01-01 02:50:27 ----D---- C:\Documents and Settings\toxicpuke\Application Data\Adobe
2002-01-01 02:50:06 ----D---- C:\Documents and Settings\All Users\Application Data\NOS
2002-01-01 02:44:02 ----D---- C:\Program Files\THQ
2002-01-01 02:44:02 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2002-01-01 02:44:02 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2002-01-01 02:44:01 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2002-01-01 02:43:59 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2002-01-01 02:42:28 ----SHD---- C:\WINDOWS\ftpcache
2002-01-01 02:33:58 ----D---- C:\Documents and Settings\toxicpuke\Application Data\ATI
2002-01-01 02:33:58 ----D---- C:\Documents and Settings\All Users\Application Data\ATI
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\Oemdspif.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\ativvaxx.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\ativcoxx.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\atitvo32.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\atiok3x2.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\atioglxx.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\atimpc32.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\ATIDEMGX.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\ATIDDC.DLL
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\aticalrt.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\aticaldd.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\aticalcl.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\atibtmon.exe
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\ati3duag.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\Ati2mdxx.exe
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\ati2evxx.exe
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\ati2evxx.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\ati2edxx.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\ati2dvag.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\ati2cqag.dll
2002-01-01 02:29:36 ----A---- C:\WINDOWS\system32\amdpcom32.dll
2002-01-01 02:29:35 ----DC---- C:\WINDOWS\system32\DRVSTORE
2002-01-01 02:29:35 ----A---- C:\WINDOWS\system32\atipdlxx.dll
2002-01-01 02:29:35 ----A---- C:\WINDOWS\system32\ATIODE.exe
2002-01-01 02:29:35 ----A---- C:\WINDOWS\system32\atikvmag.dll
2002-01-01 02:29:35 ----A---- C:\WINDOWS\system32\atiiiexx.dll
2002-01-01 02:29:27 ----D---- C:\Program Files\ATI
2002-01-01 02:29:10 ----D---- C:\Program Files\ATI Technologies
2002-01-01 02:28:26 ----D---- C:\ATI
2002-01-01 02:28:12 ----A---- C:\WINDOWS\system32\drivers\usbstor.sys
2002-01-01 02:18:52 ----D---- C:\Documents and Settings\toxicpuke\Application Data\Macromedia

======List of files/folders modified in the last 1 months======

2009-11-27 11:07:35 ----A---- C:\WINDOWS\system32\tsbyuv.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wowfaxui.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\wowfax.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrvpa.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrvoica.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrv80a.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrv42a.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrsvpia.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrshuta.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrsdpia.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrrtosa.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrprbda.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrmlnka.exe
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrlbva.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrfaxa.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrdtea.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrdpa.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrcoina.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\usrcntra.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\streamci.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sprio800.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\sprio600.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\spnike.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\paqsp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\mdwmdmsp.dll
2004-08-04 07:00:00 ----A---- C:\WINDOWS\system32\dvdplay.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 agp440;Intel AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-13 42368]
R0 Lbd;Lbd; C:\WINDOWS\system32\DRIVERS\Lbd.sys [2010-07-12 64288]
R0 ohci1394;VIA OHCI Compliant IEEE 1394 Host Controller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2003-03-13 100224]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-05-27 4830720]
R3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
R3 cmpci;C-Media PCI Audio Driver (WDM); C:\WINDOWS\system32\drivers\cmaudio.sys [2002-11-18 377358]
R3 E1000;Intel® PRO/1000 Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e1000325.sys [2008-08-20 171152]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-04 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2003-06-02 578304]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 mbr;mbr; \??\C:\DOCUME~1\TOXICP~1\LOCALS~1\Temp\mbr.sys []
S3 MidiSyn;MidiSyn; C:\WINDOWS\system32\drivers\MidiSyn.sys [2002-09-20 235100]
S3 usbaudio;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-05-27 602112]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2010-07-12 1352832]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------


#8 toxicpuke

toxicpuke
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:05:29 PM

Posted 06 August 2010 - 11:08 AM

Also flushed the DNS. The Ip was just as you said it should be.

#9 suebaby41

suebaby41

    W.A.M. (Women Against Malware)


  • Malware Response Team
  • 6,248 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:South Carolina, USA
  • Local time:06:29 PM

Posted 06 August 2010 - 01:16 PM

Have you done the Hosts file yet? How is your computer behaving? Any improvement?
You don't stop laughing when you get old; you get old when you stop laughing.
A Member of U-N-I-T-E (Unified Network of Instructors and Trained Eliminators)
Malware Removal University Masters Graduate

Posted Image
Join The Fight Against Malware
No reply within 5 days will result in your topic being closed. If you need more time, please let me know by posting in this topic so that your topic will not be closed.

#10 toxicpuke

toxicpuke
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:05:29 PM

Posted 06 August 2010 - 08:59 PM

So far i have not been redircted any (knock on wood). Gotta say i know how to check the ip config but that flush command looks very usefull and is new for me. Thank you so much suebaby41 thumbup.gif ! Any tips to keep this from happening again? Also how do you get such a cool job?

#11 suebaby41

suebaby41

    W.A.M. (Women Against Malware)


  • Malware Response Team
  • 6,248 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:South Carolina, USA
  • Local time:06:29 PM

Posted 07 August 2010 - 10:00 AM

If you are interesting in doing malware removal as a volunteer, there are several schools where you can apply.
There are several forums that have Malware Removal Training.

BleepingComputer

Malware Removal Training Program, Learn how to use HijackThis to remove malware!

Geeks To Go Forums - Geek U

Would you like to learn to fight malware?, Join Geek U!

Malware Removal Forums -

Malware Removal University

What The Tech Forums -
What The Tech Classroom




You may be interested in Freeware Replacements For Common Commercial Apps.

Tips To Protect Your Computer
  • Avoid clicking on links in instant messages.
  • Avoid opening email attachments.
  • Avoid visiting every poker site on the net.
  • Avoid downloading all that free cute junk.
  • Avoid using the peer-to-peer file sharing.
  • Avoid getting those handy toolbar doodads for your browsers.
  • Malware is out there just waiting to pounce on your system if you only pass by where they are lurking which may be at some seemingly innocent web site. Be careful because some of the malware are so vicious that no one can possibly save you once you let them in.
  • Remember that new malware emerges every week of the year. Take responsibility for protecting your system because you are its first and best defense.
Tools Downloaded To Clean Your Computer

I may have asked you to install some tools. Whether or not you need to keep these programs must be decided by you. If you choose to uninstall them, follow these directions:
  1. Click Start > Control Panel.
  2. In Control Panel, double-click Add or Remove Programs.
  3. In Add or Remove Programs, highlight the program, click Remove.
  4. Close the Add or Remove Programs and the Control Panel windows.
Optional Tools:
  1. ATF-Cleaner cleans all user temp folders, Java cache, (which seems to be harboring more and more malware), the cache, cookies, history, download history, visited links and saved passwords. Scan weekly if you have high Internet use.
  2. Trend Micro's HijackThis or random's System Information Tool (RSIT) may be uninstalled; however, if you should ever encounter another problem and seek help in this forum or others like it, you will need to download this application.
  3. SUPERAntiSpyware scans, detects, and removes spyware on your computer.
  4. Malwarebytes ' Anti-Malware scans, detects, and removes malware on your computer.
  5. a-squared Free scans, detects, and removes trojans, worms, spyware on your computer.
  6. Spybot S&D scans, detects, and removes malware on your computer.
If you have changed the default settings for files/folders, please restore the default settings for files/folders.
  1. Go to My Computer.
  2. Select the Tools menu and click Folder Options.
  3. Click the View tab.
  4. Under Advanced Settings, click the Restore Defaults button in the lower right corner.
  5. Click Apply and then the OK and close My Computer.
Please take the time to read the "Steps To Keep Your Computer Clean And Secure" below.

STEPS TO KEEP YOUR COMPUTER CLEAN AND SECURE:

Please follow these simple steps in order to keep your computer clean and secure:
  1. Disable and Enable System Restore. After cleaning, you will need to disable the System Restore function For Windows XP.
    Files placed in the System volume information folder are source files for the System Restore function that is available in Windows XP operating system. Files that were healed were moved in their original INFECTED state into this folder and it is necessary to DELETE them by following these steps:
    1. Close all open programs. Then right-click My Computer on the Windows' desktop
    2. Click on Properties.
    3. Click on the System Restore tab.
    4. Check Turn off System Restore on all drives.
    5. Restart the system.
    6. Enable System Restore by going through the first four steps again and uncheck the item mentioned in Step d.
    7. You can find instructions on how to disable and enable system restore in the Windows XP System Restore Guide.
  2. Make your Internet Explorer more secure: This can be done by following these simple instructions:
    1. From within Internet Explorer click on the Tools menu and then click on Options.
    2. Click once on the Security tab
    3. Click once on the Internet icon so it becomes highlighted.
    4. Click once on the Custom Level button.
      • Change the Download signed ActiveX controls to Prompt
      • Change the Download unsigned ActiveX controls to Disable
      • Change the Initialize and script ActiveX controls not marked as safe to Disable
      • Change the Installation of desktop items to Prompt
      • Change the Launching programs and files in an IFRAME to Prompt
      • Change the Navigate sub frames across different domains to Prompt
    5. When all these settings have been made, click on the OK button.
    6. If it asks you if you want to save the settings, press the Yes button.
    7. Click Apply > OK button and then the OK to exit the Internet Properties page.
  3. Use a Firewall: - I cannot stress how important it is that you use a Firewall on your computer.  Without a firewall your computer is susceptible to being hacked and taken over. Simply using a Firewall in its default configuration can lower your risk greatly. For an article on Firewalls and a listing of some available ones see the link below:
    Computer Safety On line - Software Firewalls. For more information about firewalls, and why a two-way firewall is better than the Windows XP one-way firewall, please read Understanding and Using Firewalls.
  4. Use An Antivirus Software and Keep It Updated: - It is very important that your computer has an antivirus software running on your machine.  This alone can save you a lot of trouble with malware in the future.  It is imperative that you update your antivirus software at least once a week (Even more if you wish). If you do not update your antivirus software, then it will not be able to catch any of the new variants that may come out. For an article on antivirus programs and a listing of some available ones see the link below:
    Computer Safety On line - Anti-Virus
  5. Visit Microsoft's Windows Update Site Frequently: It is important that you visit Microsoft Windows Update regularly. This will ensure your computer has the latest security updates available installed on your computer. If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.
  6. You should scan your computer with Spybot S&D on a regular basis just as you would an anti- virus software. A tutorial on installing & using this product can be found here:
    Using Spybot - Search & Destroy to remove Spyware from Your Computer
  7. Update SpywareBlaster (at least weekly): SpywareBlaster will add a large list of programs and sites into your Internet Explorer and Firec settings that will protect you from running and downloading known malicious programs. An article on anti-malware products with links for this program and others can be found here:
    Computer Safety on line Anti Malware
  8. Use the hosts file: Every version of windows has a hosts file as part of them. In a very basic sense, they are used to locate web pages. We can customize a hosts file so that it blocks certain web pages. However, it can slow down certain computers. This is why using a hosts file is optional. Download mvps hosts file Make sure you read the instructions on how to install the hosts file. There is a good tutorial HERE If you decide to download the hosts file, the slowdown problems can usually be avoided by following these steps:
    1. Click the start button on the task bar at the bottom of your screen
    2. Click run
    3. In the dialog box, type services.msc
    4. hit enter, then locate dns client
    5. Highlight it, then doubleclick it.
    6. On the dropdown box, change the setting from automatic to manual.
    7. Click OK.
  9. Use an alternative instant messenger program:.Trillian and Miranda IM These are Malware free Instant Messenger programs which allow you to connect to multiple IM services in one program! (AOL, Yahoo, ICQ, IRC, MSN)
  10. Please read Tony Klein's excellent article: How I got Infected in the First Place
  11. Please read Understanding Spyware, Browser Hijackers, and Dialers
  12. Please read Simple and easy ways to keep your computer safe and secure on the Internet.
  13. If you are using Internet Explorer, please consider using an alternate browser: Mozilla's Firefox browser is fantastic; it is much more secure than Internet Explorer, immune to almost all known browser hijackers, and also has the best built in popup blocker (as an added benefit!) that I have ever seen.
    Another good browser is Opera . Opera 9 comes loaded with the tools to keep you productive and safe. Try it today, it's absolutely free. Some of the Opera features are: Customization, BitTorrent, Content blocker, Add your favorite search engines, Thumbnail preview of tabs, Widgets, Transfer manager, Tabbed browsing, Password manager, Sessions (You can save a collection of open tabs as a session, for later retrieval, or start with the pages you had open when Opera was last closed.), Keyboard Shortcuts, Cookie control, a multitude of languages, Validate code, Toggle graphics and style sheets, and Special features such as Full-screen mode, Kiosk mode.
  14. Update all these programs regularly: Make sure you update all the programs I have listed regularly. Without regular updates you WILL NOT be protected when new malicious programs are released.
  15. If your computer was infected by a website, a program, IM, MSN, or p2p, check this site because it is Time To Fight Back.
Follow these steps and your potential for being infected again will reduce dramatically.
Good luck!

This subject is now closed. If you need this topic reopened, please contact a member of the HJT Team and we will reopen it for you. Include the address of this thread in your request. If you should have a new issue, please start a new topic. This applies only to the original topic starter. Everyone else please begin a New Topic.

Edited by suebaby41, 07 August 2010 - 10:02 AM.

You don't stop laughing when you get old; you get old when you stop laughing.
A Member of U-N-I-T-E (Unified Network of Instructors and Trained Eliminators)
Malware Removal University Masters Graduate

Posted Image
Join The Fight Against Malware
No reply within 5 days will result in your topic being closed. If you need more time, please let me know by posting in this topic so that your topic will not be closed.

#12 suebaby41

suebaby41

    W.A.M. (Women Against Malware)


  • Malware Response Team
  • 6,248 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:South Carolina, USA
  • Local time:06:29 PM

Posted 15 August 2010 - 09:29 AM

This subject is now closed. If you need this topic reopened, please contact a member of the HJT Team and we will reopen it for you. Include the address of this thread in your request. If you should have a new issue, please start a new topic. This applies only to the original topic starter. Everyone else please begin a New Topic.
You don't stop laughing when you get old; you get old when you stop laughing.
A Member of U-N-I-T-E (Unified Network of Instructors and Trained Eliminators)
Malware Removal University Masters Graduate

Posted Image
Join The Fight Against Malware
No reply within 5 days will result in your topic being closed. If you need more time, please let me know by posting in this topic so that your topic will not be closed.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users