TechGenix and SolarWinds have partnered to provide a fully-functional, free 21-day trial version of SolarWinds ipMonitor, the WindowsNetworking.com Readers' Choice Award Winner for monitoring applications, servers, and network devices to all visitors who join Security Forums. Sign up to Security Forums and get your copy today! Existing members can pick up a copy from the Members Area.
| View previous topic :: View next topic |
| Author |
Message |
SifuMike
SF Mod - S.M.A.R.T. Leader
Joined: 17 May 2004
Posts: 8944
Location: Vancouver (not BC) WA (not DC)
|
 Posted: Sun Apr 19, 2009 7:01 pm Post subject: |
 |
|
| Quote: |
| So when you click on start update in antivir it doesn't work? |
Yes, it works for me. That is called manual updating. You said it did not update automatically, so was I assuming you ment that you did thought it updated itself automaticly.
When you click on Start Update and you are connect to the Internet, then the program should update itself.
Any error messages when you press the update button and it does not update 
| Quote: |
| Anyways, I update antivir now by manually download the updates from internet and install them into my antivir |
You should not have to do that  
Can you try this.
Go to your Antivir folder in programs, and look for the file preupd.exe.
Click or double click it and see if you are able to update.
If no joy then try uninstalling AntiVir, then reinstalling it. Make sure your firewall is stopping you from down loading it.
Let me know 
|
|
| Back to top |
|
 |
akela
New Member
Joined: 14 Apr 2009
Posts: 27
|
| Posted: Mon Apr 20, 2009 5:54 am Post subject: |
|
|
|
I have no such file in my folder, only update.exe
|
|
| Back to top |
|
|
SifuMike
SF Mod - S.M.A.R.T. Leader
Joined: 17 May 2004
Posts: 8944
Location: Vancouver (not BC) WA (not DC)
|
| Posted: Mon Apr 20, 2009 6:31 am Post subject: |
|
|
I have both update.exe and preupd.exe in the folder C:\Personal Files\Avira antivvir personal edition classic\
Try uninstalling AntiVir, then reinstalling it. Make sure your firewall is turned off.
See if you can update Antivir. Go to the Antivir icon on the task bar, and rt click on it, then click Start Update.
Any error messages when you press the update button?
|
|
| Back to top |
|
|
akela
New Member
Joined: 14 Apr 2009
Posts: 27
|
| Posted: Tue Apr 21, 2009 1:33 am Post subject: |
|
|
I still have the occasional redirect on google... I wonder if this have to do still with the problem of updating my antivirus.
ok, about avira, I still can't update it by right clicking and then say 'start update'. Also, after reinstall, that exe you asked me for is still not there.
I have a copy of my report on the update error I will post here:
Avira AntiVir Personal - Free Antivirus Updater
Creation time: Mon Apr 20 17:17:41 2009
Operating system:
Windows XP (Service Pack 3) [5.1.2600]
Product information:
Product version: 9.0.0.386
Updater: C:\Program Files\Avira\AntiVir Desktop\update.exe 09.00.00.42
Plugin: C:\Program Files\Avira\AntiVir Desktop\updext.dll 09.00.00.06
Temp Directory: C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\
Backup folder: C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\BACKUP\
Installation Directory: C:\Program Files\Avira\AntiVir Desktop\
Updater folder: C:\Program Files\Avira\AntiVir Desktop\
AppData folder: C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\
[UPD] [INFO] Checking whether newer files are available.
[UPD] [INFO] Select update server 'http://62.146.66.178/update'.
[UPD] [INFO] Downloading of 'http://62.146.66.178/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.178/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.178/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.178/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.178/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.178/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://80.190.143.239/update'.
[UPD] [INFO] Downloading of 'http://80.190.143.239/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.239/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.239/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.239/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.239/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.239/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://62.146.66.179/update'.
[UPD] [INFO] Downloading of 'http://62.146.66.179/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.179/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.179/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.179/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.179/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.179/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://62.146.66.183/update'.
[UPD] [INFO] Downloading of 'http://62.146.66.183/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.183/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.183/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.183/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.183/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.183/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://62.146.66.181/update'.
[UPD] [INFO] Downloading of 'http://62.146.66.181/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.181/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.181/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.181/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.181/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.181/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://80.190.143.230/update'.
[UPD] [INFO] Downloading of 'http://80.190.143.230/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.230/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.230/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.230/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.230/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.230/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://62.146.66.184/update'.
[UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.184/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.184/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.184/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://80.190.143.235/update'.
[UPD] [INFO] Downloading of 'http://80.190.143.235/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.235/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.235/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.235/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.235/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.235/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://80.190.143.236/update'.
[UPD] [INFO] Downloading of 'http://80.190.143.236/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.236/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.236/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.236/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.236/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.236/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://62.146.66.182/update'.
[UPD] [INFO] Downloading of 'http://62.146.66.182/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.182/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.182/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.182/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.182/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.182/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://62.146.66.182/update'.
[UPD] [INFO] Downloading of 'http://62.146.66.182/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.182/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.182/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.182/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.182/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.182/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://62.146.66.183/update'.
[UPD] [INFO] Downloading of 'http://62.146.66.183/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.183/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.183/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.183/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.183/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.183/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://62.146.66.184/update'.
[UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.184/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.184/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.184/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://80.190.143.235/update'.
[UPD] [INFO] Downloading of 'http://80.190.143.235/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.235/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.235/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.235/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.235/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.235/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://80.190.143.236/update'.
[UPD] [INFO] Downloading of 'http://80.190.143.236/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.236/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.236/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.236/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.236/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.236/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://62.146.66.178/update'.
[UPD] [INFO] Downloading of 'http://62.146.66.178/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.178/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.178/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.178/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.178/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.178/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://62.146.66.179/update'.
[UPD] [INFO] Downloading of 'http://62.146.66.179/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.179/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.179/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.179/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.179/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.179/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://80.190.143.239/update'.
[UPD] [INFO] Downloading of 'http://80.190.143.239/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.239/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.239/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.239/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.239/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.239/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://80.190.143.230/update'.
[UPD] [INFO] Downloading of 'http://80.190.143.230/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.230/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.230/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.230/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://80.190.143.230/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://80.190.143.230/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://62.146.66.181/update'.
[UPD] [INFO] Downloading of 'http://62.146.66.181/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.181/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.181/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.181/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.181/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.181/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://62.146.66.184/update'.
[UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.184/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.184/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://62.146.66.184/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager:HTTP status code 403 was obtained when downloading file 'http://62.146.66.184/update/idx/master.idx'
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Select update server 'http://perspeak.avira-update.com/update'.
[UPD] [INFO] Downloading of 'http://perspeak.avira-update.com/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager: The function WinINet::InternetOpenUrl() 'http://perspeak.avira-update.com/update/idx/master.idx' failed. Error: The server name or address could not be resolved
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://perspeak.avira-update.com/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager: The function WinINet::InternetOpenUrl() 'http://perspeak.avira-update.com/update/idx/master.idx' failed. Error: The server name or address could not be resolved
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPD] [INFO] Downloading of 'http://perspeak.avira-update.com/update/idx/master.idx' to 'C:\Documents and Settings\All Users\Application Data\Avira\AntiVir Desktop\TEMP\UPDATE\idx\master.idx'.
[UPDLIB] [ERROR] Download manager: The function WinINet::InternetOpenUrl() 'http://perspeak.avira-update.com/update/idx/master.idx' failed. Error: The server name or address could not be resolved
[UPDLIB] [ERROR] Download manager: An error occurred inside the WinINet library.
[UPDLIB] [ERROR] No other server available.
[UPD] [ERROR] Generation of update structure failed. UpdateLib delivers error 8.
Summary:
********
0 Files downloaded
0 Files installed
17:19:57 The update failed!
|
|
| Back to top |
|
|
SifuMike
SF Mod - S.M.A.R.T. Leader
Joined: 17 May 2004
Posts: 8944
Location: Vancouver (not BC) WA (not DC)
|
| Posted: Tue Apr 21, 2009 3:55 am Post subject: |
|
|
The 403 Forbidden HTTP status code indicates that the client was able to communicate with the server, but the server doesn't let the user access what was requested.
It may be the server was busy. Millions of people updating AntiVir can oveload the servers. Did you try udpating at different times of day and night?
Are you using a firewall or proxy?
If so, is the firewall disabled when you are trying to update Avira AnitVir?
Are you using a router?
Please disconnect your computer from the router, then reset your router and put a password on it.
Before you hook it back up, run a scan with your AntiVirus. If it comes back clean then hook your computer back to the router and see if the redirects stop.
If no joy, then click Start>Run> Type in (or copy and paste) ipconfig /flushdns and hit enter.
You may not see anything happen, or just a quick flash, but that's normal. Reboot and see if the computer itself is better.
|
|
| Back to top |
|
|
akela
New Member
Joined: 14 Apr 2009
Posts: 27
|
| Posted: Thu Apr 23, 2009 5:38 pm Post subject: |
|
|
Well, it's weird though that all updates of other software programs work fine (Ad aware works fine and Online Armor). Only my anti virus program doesn't want to update...
I tried everything but with no luck, also redirects still occure, considering reformating my computer again as I have no idea anymore how to fix the problem.
|
|
| Back to top |
|
|
SifuMike
SF Mod - S.M.A.R.T. Leader
Joined: 17 May 2004
Posts: 8944
Location: Vancouver (not BC) WA (not DC)
|
| Posted: Thu Apr 23, 2009 6:32 pm Post subject: |
|
|
Hi,
There is a new infection going around that can cause redirection.
Please note that all instructions given are customised for this computer only, the tools used may cause damage if used on a computer with different infections.
If you think you have similar problems, please post a log in the HJT forum and wait for help.
Please refrain from making any changes to your system (updating Windows, installing applications, removing files, etc.) from now on as it might prolong handling your log and make the job for both of us more difficult.
We need to go to the registry:
Please go to C:\Windows folder.
Locate regedit.exe and rename it to copy.exe
Double-click copy.exe, the registry editor opens.
In the left pane navigate to the following key:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\[b]Drivers32
Select Drivers32 under File menu select Export... give it a name like drivers32 and save it somewhere you can find it on your desktop.
Close the registry editor and locate the saved file, rename it to drivers32.txt to open. Post the content to your reply.
Last edited by SifuMike on Thu Apr 23, 2009 11:22 pm; edited 1 time in total |
|
| Back to top |
|
|
akela
New Member
Joined: 14 Apr 2009
Posts: 27
|
| Posted: Thu Apr 23, 2009 7:46 pm Post subject: |
|
|
Ok, done the instructions as per your request. My regedit.exe is still named copy.exe (no instructions yet to rename it to regedit). Also understood, no windowsupdates etc!
"msacm.trspch"="tssoft32.acm"
"vidc.cvid"="iccvid.dll"
"vidc.I420"="msh263.drv"
"vidc.iv31"="ir32_32.dll"
"vidc.iv32"="ir32_32.dll"
"vidc.iv41"="ir41_32.ax"
"vidc.iyuv"="iyuv_32.dll"
"vidc.mrle"="msrle32.dll"
"vidc.msvc"="msvidc32.dll"
"vidc.uyvy"="msyuv.dll"
"vidc.yuy2"="msyuv.dll"
"vidc.yvu9"="tsbyuv.dll"
"vidc.yvyu"="msyuv.dll"
"wavemapper"="msacm32.drv"
"msacm.msg723"="msg723.acm"
"vidc.M263"="msh263.drv"
"vidc.M261"="msh261.drv"
"msacm.msaudio1"="msaud32.acm"
"msacm.sl_anet"="sl_anet.acm"
"msacm.iac2"="C:\\WINDOWS\\system32\\iac25_32.ax"
"vidc.iv50"="ir50_32.dll"
"msacm.l3acm"="C:\\WINDOWS\\system32\\l3codeca.acm"
"msacm.siren"="sirenacm.dll"
"midi"="wdmaud.drv"
"mixer"="wdmaud.drv"
"wave"="wdmaud.drv"
"wave1"="serwvdrv.dll"
"mixer1"="wdmaud.drv"
"wave2"="wdmaud.drv"
"mixer2"="wdmaud.drv"
"wave3"="wdmaud.drv"
"mixer3"="wdmaud.drv"
"wave4"="wdmaud.drv"
"mixer4"="wdmaud.drv"
"wave5"="wdmaud.drv"
"mixer5"="wdmaud.drv"
"wave6"="wdmaud.drv"
"mixer6"="wdmaud.drv"
"wave7"="wdmaud.drv"
"mixer7"="wdmaud.drv"
"wave8"="wdmaud.drv"
"mixer8"="wdmaud.drv"
"wave9"="wdmaud.drv"
"mixer9"="wdmaud.drv"
"aux"="C:\\WINDOWS\\system32\\..\\jsyqkwx.rll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\Terminal Server]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32\Terminal Server\RDP]
"wave"="rdpsnd.dll"
"mixer"="rdpsnd.dll"
"MaxBandwidth"=dword:000056b9
"wavemapper"="msacm32.drv"
"EnableMP3Codec"=dword:00000001
"midimapper"="midimap.dll"
|
|
| Back to top |
|
|
SifuMike
SF Mod - S.M.A.R.T. Leader
Joined: 17 May 2004
Posts: 8944
Location: Vancouver (not BC) WA (not DC)
|
| Posted: Thu Apr 23, 2009 8:09 pm Post subject: |
|
|
No need to rename copy.exe back.
When you made a copy of regedit.exe Windows generated regedit.exe again and it is there now.
After you completed the second step go to start => run =>type regedit in the run box and click OK.
If the regedit opens remove copy.exe
- Open copy.exe again.
Navigate to the same key.
Select Drivers32, in the right pane right click the following value select Delete.
Confirm the deletion and close the registry editor:
aux
- Reboot the computer and delete the following files
C:\WINDOWS\\system32\jsyqkwx.rll
If you could not find the file make sure you can see all the hidden and system files. Instructions on how to do this can be found here:
How to see hidden files in Windows
- Download random's system information tool (RSIT) by random/random from here and save it to your desktop.
- Double click on RSIT.exe to run RSIT.
- Set the list of Files/Folders created to 3 Months.
- Click Continue at the disclaimer screen.
- Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)
Note 1: If you have difficulty finding the logs, the logs are in this folder: C:\rsit
Note 2: The tool takes not more than one minute to scan the system.
|
|
| Back to top |
|
|
akela
New Member
Joined: 14 Apr 2009
Posts: 27
|
| Posted: Thu Apr 23, 2009 10:27 pm Post subject: |
|
|
after step 1 I tried to locate file 'jsyqkwx.rll' but it's not in my system32 folder but directly in my windows folder.... should I delete that one??
WINDOWS/jsyqkwx.rll in stead of what you said WINDOWS/SYSTEM32/jsyqkwx.rll
|
|
| Back to top |
|
|
SifuMike
SF Mod - S.M.A.R.T. Leader
Joined: 17 May 2004
Posts: 8944
Location: Vancouver (not BC) WA (not DC)
|
| Posted: Thu Apr 23, 2009 10:55 pm Post subject: |
|
|
No. leave it alone.
How is the computer running
|
|
| Back to top |
|
|
akela
New Member
Joined: 14 Apr 2009
Posts: 27
|
| Posted: Thu Apr 23, 2009 11:09 pm Post subject: |
|
|
Gues what! Antivir updates again when I click 'start update' and so far no redirects in google...
I am not going to sing too soon, but I think you might have found the problem!!!
Thanks a million!
|
|
| Back to top |
|
|
SifuMike
SF Mod - S.M.A.R.T. Leader
Joined: 17 May 2004
Posts: 8944
Location: Vancouver (not BC) WA (not DC)
|
| Posted: Thu Apr 23, 2009 11:14 pm Post subject: |
|
|
Try if for a day and let me know.
In the meantime, run the RSIT per insturctions in my previous post.
|
|
| Back to top |
|
|
akela
New Member
Joined: 14 Apr 2009
Posts: 27
|
| Posted: Thu Apr 23, 2009 11:22 pm Post subject: |
|
|
Log txt:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Owner at 2009-04-23 15:05:12
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 44 GB (77%) free of 57 GB
Total RAM: 1023 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:05:39 PM, on 23/04/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Tall Emu\Online Armor\oasrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Tall Emu\Online Armor\oacat.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Tall Emu\Online Armor\oaui.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Tall Emu\Online Armor\oahlp.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Owner\Desktop\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Trend Micro\HijackThis\Owner.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [@OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\oaui.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra button: Rip YouTube File - {38E51477-DDB4-4aed-9D61-D0C193E10749} - C:\Program Files\AllMusicConverter\YouTubeRipper.dll
O9 - Extra 'Tools' menuitem: Rip YouTube file embedded in this page - {38E51477-DDB4-4aed-9D61-D0C193E10749} - C:\Program Files\AllMusicConverter\YouTubeRipper.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1239296595420
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Update Service (gupdate1c9bcb4909606fa) (gupdate1c9bcb4909606fa) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Online Armor Helper Service (OAcat) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oacat.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: SoundMovieServer - SoundMovieServer - C:\WINDOWS\system32\snmvtsvc.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Online Armor (SvcOnlineArmor) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oasrv.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.8\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.0.51b\bin\mysqld-nt.exe
--
End of file - 9197 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-05-30 1410344]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-04-09 320920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
AcroIEToolbarHelper Class - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-04-09 35840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-04-09 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]
Locked
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-06-18 67584]
"Acrobat Assistant 7.0"=C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [2004-12-14 483328]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-01-05 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-04-02 342312]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-04-09 148888]
"Ad-Watch"=C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe [2009-03-09 515416]
"@OnlineArmor GUI"=C:\Program Files\Tall Emu\Online Armor\oaui.exe [2008-12-13 6223048]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-13 1695232]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Acrobat Speed Launcher.lnk - C:\WINDOWS\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe
C:\Documents and Settings\Owner\Start Menu\Programs\Startup
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2004-05-15 86016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"=C:\Program Files\DVDIdle Pro\DVDShell.dll [2004-10-09 49152]
"{4F07DA45-8170-4859-9B5F-037EF2970034}"=C:\PROGRA~1\TALLEM~1\ONLINE~1\oaevent.dll [2008-12-13 886984]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\wamp\bin\apache\apache2.2.8\bin\httpd.exe"="C:\wamp\bin\apache\apache2.2.8\bin\httpd.exe:*:Enabled:Apache HTTP Server"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
======List of files/folders created in the last 3 months======
2009-04-23 15:05:12 ----D---- C:\rsit
2009-04-21 21:10:47 ----A---- C:\WINDOWS\system32\~.exe
2009-04-20 17:16:06 ----D---- C:\Program Files\Avira
2009-04-20 17:16:06 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2009-04-20 17:11:57 ----SHD---- C:\Config.Msi
2009-04-19 15:49:25 ----D---- C:\Documents and Settings\Owner\Application Data\OnlineArmor
2009-04-19 15:49:25 ----D---- C:\Documents and Settings\All Users\Application Data\OnlineArmor
2009-04-19 15:48:33 ----D---- C:\Program Files\Tall Emu
2009-04-17 00:11:21 ----SHD---- C:\RECYCLER
2009-04-16 23:29:26 ----D---- C:\Program Files\Eusing Free Registry Cleaner
2009-04-16 23:16:43 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-04-16 16:46:50 ----A---- C:\WINDOWS\system32\lsdelete.exe
2009-04-16 15:26:12 ----D---- C:\Program Files\MSXML 4.0
2009-04-15 22:24:06 ----D---- C:\Program Files\Microsoft Games
2009-04-15 21:38:04 ----HDC---- C:\Documents and Settings\All Users\Application Data\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}
2009-04-15 21:37:50 ----D---- C:\Program Files\Lavasoft
2009-04-15 16:35:13 ----A---- C:\Boot.bak
2009-04-15 16:35:07 ----RASHD---- C:\cmdcons
2009-04-15 16:31:35 ----A---- C:\WINDOWS\zip.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\vFind.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\SWXCACLS.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\SWSC.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\SWREG.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\sed.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\NIRCMD.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\grep.exe
2009-04-15 16:31:25 ----D---- C:\WINDOWS\ERDNT
2009-04-15 15:11:07 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2009-04-15 15:10:58 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
2009-04-15 15:10:33 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2009-04-15 15:10:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2009-04-14 17:34:48 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2009-04-14 16:24:25 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2009-04-14 16:16:06 ----N---- C:\WINDOWS\system32\xpsp4res.dll
2009-04-14 10:25:48 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2009-04-13 22:36:35 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-04-13 22:25:58 ----D---- C:\Program Files\Trend Micro
2009-04-13 22:10:40 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-04-13 21:52:53 ----D---- C:\Program Files\Google
2009-04-13 21:52:52 ----D---- C:\Program Files\Common Files\DivX Shared
2009-04-13 21:52:50 ----D---- C:\Program Files\DivX
2009-04-13 12:18:37 ----A---- C:\WINDOWS\system32\mdimon.dll
2009-04-13 12:18:24 ----A---- C:\WINDOWS\system32\msonpmon.dll
2009-04-13 12:17:55 ----D---- C:\Program Files\Microsoft Works
2009-04-13 12:17:28 ----D---- C:\Program Files\Common Files\DESIGNER
2009-04-13 12:16:52 ----D---- C:\Program Files\Microsoft.NET
2009-04-13 12:14:37 ----D---- C:\WINDOWS\SHELLNEW
2009-04-13 12:14:02 ----D---- C:\Program Files\Microsoft Office
2009-04-13 12:14:01 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-04-13 12:13:31 ----RHD---- C:\MSOCache
2009-04-09 20:23:41 ----D---- C:\Documents and Settings\Owner\Application Data\Macromedia
2009-04-09 19:33:27 ----D---- C:\Documents and Settings\Owner\Application Data\OpenOffice.org
2009-04-09 19:31:27 ----D---- C:\Program Files\JRE
2009-04-09 19:31:24 ----D---- C:\Program Files\OpenOffice.org 3
2009-04-09 19:31:11 ----A---- C:\WINDOWS\system32\javaws.exe
2009-04-09 19:31:10 ----A---- C:\WINDOWS\system32\javaw.exe
2009-04-09 19:31:10 ----A---- C:\WINDOWS\system32\java.exe
2009-04-09 17:58:57 ----D---- C:\Program Files\Microsoft Streets & Trips
2009-04-09 17:58:57 ----D---- C:\Program Files\Microsoft Location Finder
2009-04-09 16:37:54 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2009-04-09 16:37:35 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2009-04-09 16:37:13 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2009-04-09 16:36:48 ----HDC---- C:\WINDOWS\$NtUninstallKB959772_WM11$
2009-04-09 16:36:43 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2009-04-09 16:36:29 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP11$
2009-04-09 16:12:14 ----D---- C:\Program Files\Mozilla Firefox
2009-04-09 16:02:27 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-04-09 16:02:27 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-04-09 16:01:26 ----D---- C:\WINDOWS\Sun
2009-04-09 16:00:57 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-04-09 15:45:25 ----D---- C:\Documents and Settings\Owner\Application Data\Apple Computer
2009-04-09 15:45:17 ----A---- C:\WINDOWS\system32\GEARAspi.dll
2009-04-09 15:44:57 ----D---- C:\Program Files\iPod
2009-04-09 15:44:53 ----D---- C:\Program Files\iTunes
2009-04-09 15:44:53 ----D---- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-04-09 15:44:32 ----D---- C:\Program Files\Bonjour
2009-04-09 15:43:56 ----D---- C:\Program Files\QuickTime
2009-04-09 15:43:54 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2009-04-09 15:43:40 ----D---- C:\Program Files\Apple Software Update
2009-04-09 15:43:10 ----D---- C:\Program Files\Common Files\Apple
2009-04-09 15:43:09 ----D---- C:\Documents and Settings\All Users\Application Data\Apple
2009-04-09 15:38:51 ----D---- C:\Documents and Settings\Owner\Application Data\skypePM
2009-04-09 15:37:29 ----D---- C:\Documents and Settings\Owner\Application Data\Skype
2009-04-09 15:36:26 ----D---- C:\Program Files\Skype
2009-04-09 15:36:25 ----D---- C:\Program Files\Common Files\Skype
2009-04-09 15:36:17 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2009-04-09 15:06:03 ----D---- C:\Documents and Settings\Owner\Application Data\WinRAR
2009-04-09 15:05:34 ----D---- C:\Program Files\WinRAR
2009-04-09 15:01:30 ----D---- C:\Documents and Settings\Owner\Application Data\Ahead
2009-04-09 15:01:17 ----A---- C:\WINDOWS\NeroDigital.ini
2009-04-09 14:49:51 ----D---- C:\Program Files\Alcohol Soft
2009-04-09 14:33:58 ----N---- C:\WINDOWS\UNNMP.exe
2009-04-09 14:31:58 ----A---- C:\WINDOWS\system32\NeroCheck.exe
2009-04-09 14:30:36 ----N---- C:\WINDOWS\UNNeroVision.exe
2009-04-09 14:30:36 ----N---- C:\WINDOWS\system32\msxml3a.dll
2009-04-09 14:29:37 ----D---- C:\Documents and Settings\All Users\Application Data\Ahead
2009-04-09 14:29:36 ----N---- C:\WINDOWS\system32\TwnLib4.dll
2009-04-09 14:29:35 ----N---- C:\WINDOWS\system32\ImagXRA7.dll
2009-04-09 14:29:35 ----N---- C:\WINDOWS\system32\ImagXR7.dll
2009-04-09 14:29:35 ----N---- C:\WINDOWS\system32\ImagXpr7.dll
2009-04-09 14:29:35 ----N---- C:\WINDOWS\system32\ImagX7.dll
2009-04-09 14:29:34 ----N---- C:\WINDOWS\system32\picn20.dll
2009-04-09 14:29:34 ----A---- C:\WINDOWS\system32\TwnLib20.dll
2009-04-09 14:29:31 ----D---- C:\Program Files\Common Files\Ahead
2009-04-09 14:29:25 ----D---- C:\Program Files\Ahead
2009-04-09 14:25:47 ----A---- C:\WINDOWS\DVDIdlePro.INI
2009-04-09 14:20:51 ----D---- C:\Program Files\Microsoft
2009-04-09 14:20:33 ----D---- C:\Program Files\Windows Live SkyDrive
2009-04-09 14:20:06 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-04-09 14:20:05 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2009-04-09 14:20:03 ----D---- C:\Program Files\Windows Live
2009-04-09 14:19:31 ----D---- C:\Program Files\Windows Media Connect 2
2009-04-09 14:19:05 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2009-04-09 14:18:02 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2009-04-09 14:17:55 ----D---- C:\Program Files\Common Files\Windows Live
2009-04-09 14:17:16 ----D---- C:\WINDOWS\system32\LogFiles
2009-04-09 14:17:10 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2009-04-09 14:04:44 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-04-09 14:04:31 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-04-09 13:50:16 ----D---- C:\WINDOWS\Prefetch
2009-04-09 13:47:58 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-04-09 13:47:50 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-04-09 13:47:44 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-04-09 13:47:37 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-04-09 13:47:31 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-04-09 13:47:25 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-04-09 13:47:17 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-04-09 13:47:10 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-04-09 13:47:04 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-04-09 13:46:56 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-04-09 13:46:50 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-04-09 13:46:44 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-04-09 13:46:38 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-04-09 13:46:31 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-04-09 13:46:24 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-04-09 13:46:18 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-04-09 13:46:11 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-04-09 13:46:05 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-04-09 13:46:00 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-04-09 13:45:53 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-04-09 13:45:47 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-04-09 13:41:46 ----D---- C:\WINDOWS\system32\scripting
2009-04-09 13:41:46 ----D---- C:\WINDOWS\l2schemas
2009-04-09 13:41:44 ----D---- C:\WINDOWS\system32\en
2009-04-09 13:41:44 ----D---- C:\WINDOWS\system32\bits
2009-04-09 13:38:33 ----D---- C:\WINDOWS\ServicePackFiles
2009-04-09 13:34:47 ----D---- C:\WINDOWS\network diagnostic
2009-04-09 13:29:17 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2009-04-09 13:29:14 ----D---- C:\WINDOWS\EHome
2009-04-09 13:16:46 ----A---- C:\WINDOWS\iun6002.exe
2009-04-09 13:16:44 ----D---- C:\Program Files\Codec Pack - All In 1
2009-04-09 13:13:43 ----A---- C:\WINDOWS\Codec Pack - All In 1 Setup Log.txt
2009-04-09 13:13:20 ----A---- C:\WINDOWS\system32\snmvtsvc.exe
2009-04-09 13:13:20 ----A---- C:\WINDOWS\system32\MusCVideo32.dll
2009-04-09 13:13:17 ----D---- C:\Program Files\AllMusicConverter
2009-04-09 13:12:32 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
2009-04-09 13:12:28 ----D---- C:\Program Files\DVDIdle Pro
2009-04-09 13:12:22 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
2009-04-09 13:12:06 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$
2009-04-09 13:11:57 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$
2009-04-09 13:11:45 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2009-04-09 13:11:33 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
2009-04-09 13:11:21 ----HDC---- C:\WINDOWS\$NtUninstallKB951698_0$
2009-04-09 13:11:09 ----HDC---- C:\WINDOWS\$NtUninstallKB960225_0$
2009-04-09 13:10:39 ----HDC---- C:\WINDOWS\$NtUninstallKB956841_0$
2009-04-09 13:09:55 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2_0$
2009-04-09 13:09:30 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-04-09 13:08:56 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$
2009-04-09 13:08:49 ----D---- C:\wamp
2009-04-09 13:08:43 ----HDC---- C:\WINDOWS\$NtUninstallKB957097_0$
2009-04-09 13:08:33 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
2009-04-09 13:07:30 ----HDC---- C:\WINDOWS\$NtUninstallKB958687_0$
2009-04-09 13:07:13 ----D---- C:\Documents and Settings\Owner\Application Data\FileZilla
2009-04-09 13:06:19 ----D---- C:\Program Files\FileZilla FTP Client
2009-04-09 13:04:09 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
2009-04-09 13:03:54 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$
2009-04-09 13:03:45 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2009-04-09 13:03:38 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$
2009-04-09 13:03:27 ----HDC---- C:\WINDOWS\$NtUninstallKB958690_0$
2009-04-09 13:03:13 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$
2009-04-09 13:00:58 ----HDC---- C:\WINDOWS\$NtUninstallKB954600_0$
2009-04-09 13:00:51 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$
2009-04-09 13:00:43 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$
2009-04-09 13:00:32 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$
2009-04-09 12:49:06 ----D---- C:\Documents and Settings\Owner\Application Data\Mozilla
2009-04-09 12:48:50 ----D---- C:\Program Files\Mozilla Thunderbird
2009-04-09 12:39:23 ----D---- C:\WINDOWS\ie8updates
2009-04-09 12:38:46 ----D---- C:\WINDOWS\WBEM
2009-04-09 12:36:50 ----HDC---- C:\WINDOWS\ie8
2009-04-09 12:36:50 ----D---- C:\WINDOWS\system32\en-US
2009-04-09 12:15:12 ----D---- C:\Documents and Settings\Owner\Application Data\AdobeUM
2009-04-09 12:12:57 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe Systems
2009-04-09 12:12:52 ----D---- C:\Documents and Settings\Owner\Application Data\Adobe
2009-04-09 12:12:49 ----D---- C:\Program Files\Common Files\Adobe Systems Shared
2009-04-09 12:11:23 ----D---- C:\Program Files\Common Files\Adobe
2009-04-09 12:10:39 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-04-09 12:10:18 ----D---- C:\Program Files\Adobe
2009-04-09 11:54:29 ----A---- C:\WINDOWS\system32\MRT.exe
2009-04-09 11:54:19 ----HDC---- C:\WINDOWS\$NtUninstallKB932823-v3$
2009-04-09 11:50:09 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-04-09 11:15:20 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2009-04-09 11:14:34 ----D---- C:\WINDOWS\system32\PreInstall
2009-04-09 11:14:33 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-04-09 11:14:32 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2009-04-09 11:14:32 ----HD---- C:\WINDOWS\$hf_mig$
2009-04-09 10:59:00 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-04-09 10:28:44 ----RASH---- C:\boot.ini
2009-04-09 10:27:49 ----A---- C:\WINDOWS\system32\winshfhc.dll
2009-04-09 10:27:48 ----A---- C:\WINDOWS\system32\blastcln.exe
2009-04-09 10:27:47 ----A---- C:\WINDOWS\system32\wmvdmoe2.dll
2009-04-09 10:27:47 ----A---- C:\WINDOWS\system32\wmvdmod.dll
2009-04-09 10:27:47 ----A---- C:\WINDOWS\system32\WMVCore.dll
2009-04-09 10:27:47 ----A---- C:\WINDOWS\system32\wmstream.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\WMSPDMOE.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\WMSPDMOD.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmsdmoe2.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmsdmoe.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmsdmod.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmpui.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmpshell.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmpasf.dll
2009-04-09 10:27:45 ----A---- C:\WINDOWS\system32\wmp.dll
2009-04-09 10:27:44 ----A---- C:\WINDOWS\system32\wmploc.dll
2009-04-09 10:27:44 ----A---- C:\WINDOWS\system32\wmpcore.dll
2009-04-09 10:27:44 ----A---- C:\WINDOWS\system32\wmpcd.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\WMNetmgr.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\wmidx.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\wmerror.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\wmdmps.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\wmdmlog.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\wmasf.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\WMADMOE.dll
2009-04-09 10:27:42 ----A---- C:\WINDOWS\system32\WMADMOD.dll
2009-04-09 10:27:42 ----A---- C:\WINDOWS\system32\strmdll.dll
2009-04-09 10:27:42 ----A---- C:\WINDOWS\system32\shmedia.dll
2009-04-09 10:27:41 ----A---- C:\WINDOWS\system32\mswmdm.dll
2009-04-09 10:27:41 ----A---- C:\WINDOWS\system32\msscp.dll
2009-04-09 10:27:41 ----A---- C:\WINDOWS\system32\mspmsp.dll
2009-04-09 10:27:41 ----A---- C:\WINDOWS\system32\mspmsnsv.dll
2009-04-09 10:27:41 ----A---- C:\WINDOWS\system32\msnetobj.dll
2009-04-09 10:27:41 ----A---- C:\WINDOWS\system32\msdxmlc.dll
2009-04-09 10:27:40 ----A---- C:\WINDOWS\system32\MPG4DMOD.dll
2009-04-09 10:27:40 ----A---- C:\WINDOWS\system32\MP4SDMOD.dll
2009-04-09 10:27:40 ----A---- C:\WINDOWS\system32\MP43DMOD.dll
2009-04-09 10:27:39 ----A---- C:\WINDOWS\system32\logagent.exe
2009-04-09 10:27:39 ----A---- C:\WINDOWS\system32\LAPRXY.dll
2009-04-09 10:27:39 ----A---- C:\WINDOWS\system32\dxmasf.dll
2009-04-09 10:27:39 ----A---- C:\WINDOWS\system32\drmv2clt.dll
2009-04-09 10:27:39 ----A---- C:\WINDOWS\system32\drmstor.dll
2009-04-09 10:27:38 ----A---- C:\WINDOWS\system32\drmclien.dll
2009-04-09 10:27:38 ----A---- C:\WINDOWS\system32\cewmdm.dll
2009-04-09 10:27:38 ----A---- C:\WINDOWS\system32\blackbox.dll
2009-04-09 10:27:38 ----A---- C:\WINDOWS\system32\asferror.dll
2009-04-09 10:27:22 ----A---- C:\WINDOWS\system32\osuninst.exe
2009-04-09 10:27:21 ----A---- C:\WINDOWS\vmmreg32.dll
2009-04-09 10:27:21 ----A---- C:\WINDOWS\system32\vga64k.dll
2009-04-09 10:27:21 ----A---- C:\WINDOWS\system32\vga256.dll
2009-04-09 10:27:18 ----A---- C:\WINDOWS\system32\spnpinst.exe
2009-04-09 10:27:11 ----RASH---- C:\NTDETECT.COM
2009-04-09 10:27:11 ----A---- C:\WINDOWS\system32\pentnt.exe
2009-04-09 10:27:11 ----A---- C:\WINDOWS\system32\odtext32.dll
2009-04-09 10:27:11 ----A---- C:\WINDOWS\system32\odpdx32.dll
2009-04-09 10:27:11 ----A---- C:\WINDOWS\system32\odfox32.dll
2009-04-09 10:27:11 ----A---- C:\WINDOWS\system32\odexl32.dll
2009-04-09 10:27:11 ----A---- C:\WINDOWS\system32\oddbse32.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msxbde40.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msvcrt20.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\mstext40.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msrepl40.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msrecr40.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msrd2x40.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msrclr40.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msr2cenu.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msr2c.dll
2009-04-09 10:27:07 ----A---- C:\WINDOWS\system32\mspbde40.dll
2009-04-09 10:27:07 ----A---- C:\WINDOWS\system32\msltus40.dll
2009-04-09 10:27:07 ----A---- C:\WINDOWS\system32\msexcl40.dll
2009-04-09 10:27:07 ----A---- C:\WINDOWS\system32\msexch40.dll
2009-04-09 10:27:06 ----A---- C:\WINDOWS\system32\lnkstub.exe
2009-04-09 10:27:05 ----A---- C:\WINDOWS\system32\migpwd.exe
2009-04-09 10:27:03 ----A---- C:\WINDOWS\system32\krnl386.exe
2009-04-09 10:27:03 ----A---- C:\WINDOWS\system32\ir50_qcx.dll
2009-04-09 10:27:03 ----A---- C:\WINDOWS\system32\ir50_qc.dll
2009-04-09 10:27:03 ----A---- C:\WINDOWS\system32\ir50_32.dll
2009-04-09 10:27:03 ----A---- C:\WINDOWS\system32\ir41_qcx.dll
2009-04-09 10:27:03 ----A---- C:\WINDOWS\system32\ir41_qc.dll
2009-04-09 10:27:01 ----A---- C:\WINDOWS\system32\d3dramp.dll
2009-04-09 10:27:01 ----A---- C:\WINDOWS\system32\ctl3d32.dll
2009-04-09 10:26:58 ----A---- C:\WINDOWS\system32\wmerrenu.dll
2009-04-09 10:26:53 ----A---- C:\WINDOWS\system32\xpsp2res.dll
2009-04-09 10:26:53 ----A---- C:\WINDOWS\system32\xpsp1res.dll
2009-04-09 10:26:53 ----A---- C:\WINDOWS\system32\xpob2res.dll
2009-04-09 10:26:51 ----A---- C:\WINDOWS\system32\edit.com
2009-04-09 10:26:47 ----A---- C:\WINDOWS\system32\mslbui.dll
2009-04-09 10:26:47 ----A---- C:\WINDOWS\system32\msimtf.dll
2009-04-09 10:26:46 ----A---- C:\WINDOWS\system32\msutb.dll
2009-04-09 10:26:46 ----A---- C:\WINDOWS\system32\msctfp.dll
2009-04-09 10:26:46 ----A---- C:\WINDOWS\system32\msctf.dll
2009-04-09 10:26:46 ----A---- C:\WINDOWS\system32\ctfmon.exe
2009-04-09 10:26:44 ----A---- C:\WINDOWS\system32\kbdinmal.dll
2009-04-09 10:26:44 ----A---- C:\WINDOWS\system32\kbdinben.dll
2009-04-09 10:26:44 ----A---- C:\WINDOWS\system32\kbdinbe1.dll
2009-04-09 10:26:31 ----A---- C:\WINDOWS\system32\zipfldr.dll
2009-04-09 10:26:30 ----A---- C:\WINDOWS\system32\xmlprovi.dll
2009-04-09 10:26:30 ----A---- C:\WINDOWS\system32\xmlprov.dll
2009-04-09 10:26:29 ----A---- C:\WINDOWS\system32\xenroll.dll
2009-04-09 10:26:29 ----A---- C:\WINDOWS\system32\xcopy.exe
2009-04-09 10:26:29 ----A---- C:\WINDOWS\system32\xactsrv.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wzcdlg.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wupdmgr.exe
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wtsapi32.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wstdecod.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wsock32.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wsnmp32.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshtcpip.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshrm.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshnetbs.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshisn.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wship6.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshext.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshcon.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshatm.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wscsvc.dll
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wscript.exe
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wscntfy.exe
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\ws2help.dll
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\ws2_32.dll
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wpabaln.exe
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wowexec.exe
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wowdeb.exe
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wow32.dll
2009-04-09 10:26:26 ----A---- C:\WINDOWS\system32\wmiprop.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\wmi.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\wlnotify.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\wldap32.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\wkssvc.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winver.exe
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\wintrust.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winstrm.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winsta.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winsrv.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winspool.exe
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winsock.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winscard.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winrnr.dll
2009-04-09 10:26:24 ----A---- C:\WINDOWS\system32\winntbbu.dll
2009-04-09 10:26:24 ----A---- C:\WINDOWS\system32\winnls.dll
2009-04-09 10:26:24 ----A---- C:\WINDOWS\system32\winmsd.exe
2009-04-09 10:26:24 ----A---- C:\WINDOWS\system32\winmm.dll
2009-04-09 10:26:24 ----A---- C:\WINDOWS\system32\winlogon.exe
2009-04-09 10:26:24 ----A---- C:\WINDOWS\system32\winipsec.dll
2009-04-09 10:26:23 ----A---- C:\WINDOWS\winhlp32.exe
2009-04-09 10:26:23 ----A---- C:\WINDOWS\winhelp.exe
2009-04-09 10:26:23 ----A---- C:\WINDOWS\system32\wininet.dll
2009-04-09 10:26:23 ----A---- C:\WINDOWS\system32\winhttp.dll
2009-04-09 10:26:23 ----A---- C:\WINDOWS\system32\winhlp32.exe
2009-04-09 10:26:23 ----A---- C:\WINDOWS\system32\winfax.dll
2009-04-09 10:26:22 ----A---- C:\WINDOWS\system32\winbrand.dll
2009-04-09 10:26:22 ----A---- C:\WINDOWS\system32\win87em.dll
2009-04-09 10:26:22 ----A---- C:\WINDOWS\system32\win32spl.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\win.ini
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\win.com
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wifeman.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiavusd.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiavideo.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiashext.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiaservc.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiascr.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiadss.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiadefui.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiaacmgr.exe
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wextract.exe
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\webvw.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\webhits.dll
2009-04-09 10:26:20 ----A---- C:\WINDOWS\system32\webclnt.dll
2009-04-09 10:26:20 ----A---- C:\WINDOWS\system32\webcheck.dll
2009-04-09 10:26:20 ----A---- C:\WINDOWS\system32\wdigest.dll
2009-04-09 10:26:17 ----A---- C:\WINDOWS\system32\wavemsp.dll
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\w32topl.dll
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\w32tm.exe
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\w32time.dll
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\vssvc.exe
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\vssapi.dll
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\vssadmin.exe
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\vss_ps.dll
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\vjoy.dll
2009-04-09 10:26:15 ----A---- C:\WINDOWS\system32\vga.dll
2009-04-09 10:26:15 ----A---- C:\WINDOWS\system32\vfpodbc.dll
2009-04-09 10:26:15 ----A---- C:\WINDOWS\system32\version.dll
2009-04-09 10:26:15 ----A---- C:\WINDOWS\system32\verifier.exe
2009-04-09 10:26:15 ----A---- C:\WINDOWS\system32\verifier.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\ver.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\vdmredir.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\vdmdbg.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\vcdex.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\vbscript.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\vbajet32.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\uxtheme.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\utilman.exe
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\utildll.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\usp10.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\userinit.exe
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\userenv.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\user32.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\user.exe
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\usbmon.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\urlmon.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\url.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\ureg.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\ups.exe
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\upnpui.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\upnphost.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\upnpcont.exe
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\upnp.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\untfs.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\unlodctr.exe
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\uniplat.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\unimdmat.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\umdmxfrm.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\umandlg.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\ulib.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\ufat.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\osuninst.dll
2009-04-09 10:26:11 ----A---- C:\WINDOWS\twunk_32.exe
2009-04-09 10:26:11 ----A---- C:\WINDOWS\twunk_16.exe
2009-04-09 10:26:11 ----A---- C:\WINDOWS\twain_32.dll
2009-04-09 10:26:11 ----A---- C:\WINDOWS\twain.dll
2009-04-09 10:26:11 ----A---- C:\WINDOWS\system32\udhisapi.dll
2009-04-09 10:26:11 ----A---- C:\WINDOWS\system32\typelib.dll
2009-04-09 10:26:11 ----A---- C:\WINDOWS\system32\txflog.dll
2009-04-09 10:26:11 ----A---- C:\WINDOWS\system32\twext.dll
2009-04-09 10:26:10 ----A---- C:\WINDOWS\system32\w3ssl.dll
2009-04-09 10:26:10 ----A---- C:\WINDOWS\system32\tsddd.dll
2009-04-09 10:26:10 ----A---- C:\WINDOWS\system32\tsd32.dll
2009-04-09 10:26:09 ----A---- C:\WINDOWS\system32\tsappcmp.dll
2009-04-09 10:26:09 ----A---- C:\WINDOWS\system32\trkwks.dll
2009-04-09 10:26:09 ----A---- C:\WINDOWS\system32\tree.com
2009-04-09 10:26:08 ----A---- C:\WINDOWS\system32\traffic.dll
2009-04-09 10:26:08 ----A---- C:\WINDOWS\system32\tracert6.exe
2009-04-09 10:26:08 ----A---- C:\WINDOWS\system32\tracert.exe
2009-04-09 10:26:08 ----A---- C:\WINDOWS\system32\toolhelp.dll
2009-04-09 10:26:07 ----A---- C:\WINDOWS\system32\themeui.dll
2009-04-09 10:26:07 ----A---- C:\WINDOWS\system32\tftp.exe
2009-04-09 10:26:07 ----A---- C:\WINDOWS\system32\termmgr.dll
2009-04-09 10:26:07 ----A---- C:\WINDOWS\system32\telnet.exe
2009-04-09 10:26:07 ----A---- C:\WINDOWS\system32\tcpsvcs.exe
2009-04-09 10:26:07 ----A---- C:\WINDOWS\system32\tcpmonui.dll
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tcpmon.ini
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tcpmon.dll
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tcpmib.dll
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tcmsetup.exe
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\taskmgr.exe
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\taskman.exe
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tapiui.dll
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tapisrv.dll
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tapiperf.dll
2009-04-09 10:26:05 ----A---- C:\WINDOWS\system32\tapi32.dll
2009-04-09 10:26:05 ----A---- C:\WINDOWS\system32\tapi3.dll
2009-04-09 10:26:05 ----A---- C:\WINDOWS\system32\tapi.dll
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\t2embed.dll
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\systray.exe
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\syssetup.dll
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\sysocmgr.exe
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\syskey.exe
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\sysinv.dll
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\sysedit.exe
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system.ini
2009-04-09 10:26:03 ----A---- C:\WINDOWS\system32\syncui.dll
2009-04-09 10:26:03 ----A---- C:\WINDOWS\system32\synceng.dll
2009-04-09 10:26:03 ----A---- C:\WINDOWS\system32\syncapp.exe
2009-04-09 10:26:03 ----A---- C:\WINDOWS\system32\sxs.dll
2009-04-09 10:26:03 ----A---- C:\WINDOWS\system32\swprv.dll
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\svcpack.dll
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\svchost.exe
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\subst.exe
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\strmfilt.dll
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\storage.dll
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\stobject.dll
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\stimon.exe
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\sti_ci.dll
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\sti.dll
2009-04-09 10:26:00 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2009-04-09 10:26:00 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2009-04-09 10:26:00 ----A---- C:\WINDOWS\system32\srvsvc.dll
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\sqlwoa.dll
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\sqlwid.dll
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\sqlunirl.dll
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\sqlsrv32.dll
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\sprestrt.exe
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\spoolsv.exe
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\spoolss.dll
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\sort.exe
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\softpub.dll
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\snmpsnap.dll
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\snmpapi.dll
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\smss.exe
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\smlogsvc.exe
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\smlogcfg.dll
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\smbinst.exe
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\slbrccsp.dll
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\slbiop.dll
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\slbcsp.dll
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\slayerxp.dll
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\skeys.exe
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\skdll.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\sisbkup.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\sigverif.exe
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\sigtab.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shutdown.exe
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shsvcs.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shscrap.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shrpubw.exe
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shmgrate.exe
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shlwapi.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shimgvw.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shimeng.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shgina.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shfolder.dll
2009-04-09 10:25:46 ----A---- C:\WINDOWS\system32\shell32.dll
2009-04-09 10:25:46 ----A---- C:\WINDOWS\system32\shell.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\shdocvw.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\shdoclc.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\share.exe
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\sfmapi.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\sfcfiles.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\sfc_os.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\sfc.exe
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\sfc.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\setver.exe
2009-04-09 10:25:44 ----A---- C:\WINDOWS\system32\setupdll.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\setupapi.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\setup.exe
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\sethc.exe
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\serwvdrv.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\services.msc
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\services.exe
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\serialui.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\senscfg.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\sensapi.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\sens.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\sendmail.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\sendcmsg.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\security.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\secur32.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\seclogon.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\sdpblb.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\sdbinst.exe
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\scrrun.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\scrobj.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\scredir.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\sclgntfy.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\schannel.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\scesrv.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\scecli.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\sccsccp.dll
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\sccbase.dll
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\scardsvr.exe
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\scardssp.dll
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\scarddlg.dll
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\sc.exe
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\sbeio.dll
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\sbe.dll
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\savedump.exe
2009-04-09 10:25:40 ----A---- C:\WINDOWS\system32\samsrv.dll
2009-04-09 10:25:40 ----A---- C:\WINDOWS\system32\samlib.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\runonce.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rundll32.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\runas.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rtutils.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rtm.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rtipxmib.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rtcshare.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsvpsp.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsvpperf.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsvpmsg.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsvp.ini
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsvp.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsmui.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsmsink.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsmps.dll
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rsm.exe
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rshx32.dll
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rsh.exe
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rsaenh.dll
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rpcss.dll
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rpcns4.dll
2009-04-09 10:25:37 ----A---- C:\WINDOWS\system32\routetab.dll
2009-04-09 10:25:37 ----A---- C:\WINDOWS\system32\routemon.exe
2009-04-09 10:25:37 ----A---- C:\WINDOWS\system32\route.exe
2009-04-09 10:25:37 ----A---- C:\WINDOWS\system32\rnr20.dll
2009-04-09 10:25:37 ----A---- C:\WINDOWS\system32\riched32.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\riched20.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\rexec.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\resutils.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\replace.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\rend.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\regwizc.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\regwiz.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\regsvr32.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\regsvc.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\regedt32.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\regapi.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\reg.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\msftedit.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\regedit.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\copy.exe
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\redir.exe
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\recover.exe
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rdpdd.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rcp.exe
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rcimlby.exe
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rcbdyctl.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rastls.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rastapi.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rasser.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rassapi.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rasrad.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\drprov.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasppp.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasphone.exe
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasmxs.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasmontr.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasmans.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasman.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasdlg.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasdial.exe
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasctrs.ini
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasctrs.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\raschap.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasautou.exe
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasauto.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasapi32.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2009-04-09 10:25:33 ----A---- C:\WINDOWS\system32\query.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\quartz.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qosname.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qedwipes.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qedit.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qdvd.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qdv.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qcap.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qasf.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\pubprn.vbs
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\pstorsvc.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\pstorec.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\psnppagn.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\pschdprf.ini
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\pschdprf.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\psbase.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\psapi.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\proxycfg.exe
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\proquota.exe
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\progman.exe
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\profmap.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\prodspec.ini
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\printui.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\print.exe
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\prflbmsg.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\powrprof.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\powercfg.exe
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\polstore.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\pnrpnsp.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\pngfilt.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\pmspl.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\plustab.dll
2009-04-09 10:25:30 ----A---- C:\WINDOWS\system32\ping6.exe
2009-04-09 10:25:30 ----A---- C:\WINDOWS\system32\ping.exe
2009-04-09 10:25:30 ----A---- C:\WINDOWS\system32\pifmgr.dll
2009-04-09 10:25:30 ----A---- C:\WINDOWS\system32\pidgen.dll
2009-04-09 10:25:30 ----A---- C:\WINDOWS\system32\photowiz.dll
2009-04-09 10:25:29 ----R---- C:\WINDOWS\system32\perfmon.msc
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfwci.ini
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfts.dll
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfproc.dll
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfos.dll
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfnet.dll
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfmon.exe
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perffilt.ini
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfdisk.dll
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfctrs.dll
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfci.ini
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\pdh.dll
2009-04-09 10:25:28 ----A---- C:\WINDOWS\system32\pautoenr.dll
2009-04-09 10:25:28 ----A---- C:\WINDOWS\system32\pathping.exe
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\panmap.dll
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\packager.exe
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\p2psvc.dll
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\p2pgraph.dll
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\p2pgasvc.dll
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\p2p.dll
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\osk.exe
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\opengl32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olethk32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olesvr32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olesvr.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olepro32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\oleprn.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\oledlg.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olecnv32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olecli32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olecli.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\oleaut32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\oleaccrc.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\oleacc.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\ole32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\ole2nls.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\ole2disp.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\ole2.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\offfilt.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbctrac.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbcp32r.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbcjt32.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbcji32.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbcint.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbccu32.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbccr32.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbccp32.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbcconf.exe
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbcconf.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbcbcp.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbcad32.exe
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbc32gt.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbc32.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbc16gt.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\ocmanage.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\occache.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\objsel.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\oakley.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\nwprovau.dll
2009-04-09 10:25:18 ----A---- C:\WINDOWS\system32\ntvdmd.dll
2009-04-09 10:25:18 ----A---- C:\WINDOWS\system32\ntvdm.exe
2009-04-09 10:25:18 ----A---- C:\WINDOWS\system32\ntshrui.dll
2009-04-09 10:25:17 ----A---- C:\WINDOWS\system32\ntsdexts.dll
2009-04-09 10:25:17 ----A---- C:\WINDOWS\system32\ntsd.exe
2009-04-09 10:25:16 ----A---- C:\WINDOWS\system32\ntprint.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmssvc.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmsoprq.msc
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmsmgr.msc
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmsmgr.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmsevt.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmsdba.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmsapi.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmarta.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntlsapi.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntlanui2.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntlanui.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntlanman.dll
2009-04-09 10:25:14 ----A---- C:\WINDOWS\system32\ntdsapi.dll
2009-04-09 10:25:14 ----A---- C:\WINDOWS\system32\ntdll.dll
2009-04-09 10:25:13 ----A---- C:\WINDOWS\system32\nslookup.exe
2009-04-09 10:25:13 ----A---- C:\WINDOWS\system32\npptools.dll
2009-04-09 10:25:12 ----A---- C:\WINDOWS\system32\notepad.exe
2009-04-09 10:25:11 ----A---- C:\WINDOWS\system32\nlsfunc.exe
2009-04-09 10:25:11 ----A---- C:\WINDOWS\system32\nlhtml.dll
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\newdev.dll
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netui2.dll
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netui1.dll
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netui0.dll
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netstat.exe
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netshell.dll
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netsh.exe
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netrap.dll
2009-04-09 10:25:09 ----A---- C:\WINDOWS\system32\netplwiz.dll
2009-04-09 10:25:09 ----A---- C:\WINDOWS\system32\netmsg.dll
2009-04-09 10:25:09 ----A---- C:\WINDOWS\system32\netman.dll
2009-04-09 10:25:09 ---
|
|
| Back to top |
|
|
SifuMike
SF Mod - S.M.A.R.T. Leader
Joined: 17 May 2004
Posts: 8944
Location: Vancouver (not BC) WA (not DC)
|
| Posted: Thu Apr 23, 2009 11:28 pm Post subject: |
|
|
|
Tthe log you posted is incomplete. It is much longer
|
|
| Back to top |
|
|
akela
New Member
Joined: 14 Apr 2009
Posts: 27
|
| Posted: Fri Apr 24, 2009 1:47 am Post subject: |
|
|
Logfile of random's system information tool 1.06 (written by random/random)
Run by Owner at 2009-04-23 17:44:57
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 44 GB (77%) free of 57 GB
Total RAM: 1023 MB (62% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:45:09 PM, on 23/04/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Tall Emu\Online Armor\oasrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Tall Emu\Online Armor\oacat.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Tall Emu\Online Armor\oaui.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Adobe\Acrobat 7.0\Acrobat\acrobat_sl.exe
C:\Program Files\Tall Emu\Online Armor\oahlp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Documents and Settings\Owner\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Owner.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [@OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\oaui.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra button: Rip YouTube File - {38E51477-DDB4-4aed-9D61-D0C193E10749} - C:\Program Files\AllMusicConverter\YouTubeRipper.dll
O9 - Extra 'Tools' menuitem: Rip YouTube file embedded in this page - {38E51477-DDB4-4aed-9D61-D0C193E10749} - C:\Program Files\AllMusicConverter\YouTubeRipper.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1239296595420
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Update Service (gupdate1c9bcb4909606fa) (gupdate1c9bcb4909606fa) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Online Armor Helper Service (OAcat) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oacat.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: SoundMovieServer - SoundMovieServer - C:\WINDOWS\system32\snmvtsvc.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Online Armor (SvcOnlineArmor) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oasrv.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.8\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.0.51b\bin\mysqld-nt.exe
--
End of file - 9087 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22BF413B-C6D2-4d91-82A9-A0F997BA588C}]
Skype add-on (mastermind) - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2008-05-30 1410344]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2009-04-09 320920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
AcroIEToolbarHelper Class - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-04-09 35840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-04-09 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14 225280]
Locked
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2004-06-18 67584]
"Acrobat Assistant 7.0"=C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe [2004-12-14 483328]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-01-05 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-04-02 342312]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-04-09 148888]
"Ad-Watch"=C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe [2009-03-09 515416]
"@OnlineArmor GUI"=C:\Program Files\Tall Emu\Online Armor\oaui.exe [2008-12-13 6223048]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-13 1695232]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Acrobat Speed Launcher.lnk - C:\WINDOWS\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe
C:\Documents and Settings\Owner\Start Menu\Programs\Startup
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2004-05-15 86016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"=C:\Program Files\DVDIdle Pro\DVDShell.dll [2004-10-09 49152]
"{4F07DA45-8170-4859-9B5F-037EF2970034}"=C:\PROGRA~1\TALLEM~1\ONLINE~1\oaevent.dll [2008-12-13 886984]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\wamp\bin\apache\apache2.2.8\bin\httpd.exe"="C:\wamp\bin\apache\apache2.2.8\bin\httpd.exe:*:Enabled:Apache HTTP Server"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
======List of files/folders created in the last 3 months======
2009-04-23 17:44:57 ----D---- C:\rsit
2009-04-21 21:10:47 ----A---- C:\WINDOWS\system32\~.exe
2009-04-20 17:16:06 ----D---- C:\Program Files\Avira
2009-04-20 17:16:06 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2009-04-20 17:11:57 ----SHD---- C:\Config.Msi
2009-04-19 15:49:25 ----D---- C:\Documents and Settings\Owner\Application Data\OnlineArmor
2009-04-19 15:49:25 ----D---- C:\Documents and Settings\All Users\Application Data\OnlineArmor
2009-04-19 15:48:33 ----D---- C:\Program Files\Tall Emu
2009-04-17 00:11:21 ----SHD---- C:\RECYCLER
2009-04-16 23:29:26 ----D---- C:\Program Files\Eusing Free Registry Cleaner
2009-04-16 23:16:43 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-04-16 16:46:50 ----A---- C:\WINDOWS\system32\lsdelete.exe
2009-04-16 15:26:12 ----D---- C:\Program Files\MSXML 4.0
2009-04-15 22:24:06 ----D---- C:\Program Files\Microsoft Games
2009-04-15 21:38:04 ----HDC---- C:\Documents and Settings\All Users\Application Data\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}
2009-04-15 21:37:50 ----D---- C:\Program Files\Lavasoft
2009-04-15 16:35:13 ----A---- C:\Boot.bak
2009-04-15 16:35:07 ----RASHD---- C:\cmdcons
2009-04-15 16:31:35 ----A---- C:\WINDOWS\zip.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\vFind.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\SWXCACLS.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\SWSC.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\SWREG.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\sed.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\NIRCMD.exe
2009-04-15 16:31:35 ----A---- C:\WINDOWS\grep.exe
2009-04-15 16:31:25 ----D---- C:\WINDOWS\ERDNT
2009-04-15 15:11:07 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2009-04-15 15:10:58 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
2009-04-15 15:10:33 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2009-04-15 15:10:10 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2009-04-14 17:34:48 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2009-04-14 16:24:25 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2009-04-14 16:16:06 ----N---- C:\WINDOWS\system32\xpsp4res.dll
2009-04-14 10:25:48 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2009-04-13 22:36:35 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-04-13 22:25:58 ----D---- C:\Program Files\Trend Micro
2009-04-13 22:10:40 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-04-13 21:52:53 ----D---- C:\Program Files\Google
2009-04-13 21:52:52 ----D---- C:\Program Files\Common Files\DivX Shared
2009-04-13 21:52:50 ----D---- C:\Program Files\DivX
2009-04-13 12:18:37 ----A---- C:\WINDOWS\system32\mdimon.dll
2009-04-13 12:18:24 ----A---- C:\WINDOWS\system32\msonpmon.dll
2009-04-13 12:17:55 ----D---- C:\Program Files\Microsoft Works
2009-04-13 12:17:28 ----D---- C:\Program Files\Common Files\DESIGNER
2009-04-13 12:16:52 ----D---- C:\Program Files\Microsoft.NET
2009-04-13 12:14:37 ----D---- C:\WINDOWS\SHELLNEW
2009-04-13 12:14:02 ----D---- C:\Program Files\Microsoft Office
2009-04-13 12:14:01 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-04-13 12:13:31 ----RHD---- C:\MSOCache
2009-04-09 20:23:41 ----D---- C:\Documents and Settings\Owner\Application Data\Macromedia
2009-04-09 19:33:27 ----D---- C:\Documents and Settings\Owner\Application Data\OpenOffice.org
2009-04-09 19:31:27 ----D---- C:\Program Files\JRE
2009-04-09 19:31:24 ----D---- C:\Program Files\OpenOffice.org 3
2009-04-09 19:31:11 ----A---- C:\WINDOWS\system32\javaws.exe
2009-04-09 19:31:10 ----A---- C:\WINDOWS\system32\javaw.exe
2009-04-09 19:31:10 ----A---- C:\WINDOWS\system32\java.exe
2009-04-09 17:58:57 ----D---- C:\Program Files\Microsoft Streets & Trips
2009-04-09 17:58:57 ----D---- C:\Program Files\Microsoft Location Finder
2009-04-09 16:37:54 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2009-04-09 16:37:35 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2009-04-09 16:37:13 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2009-04-09 16:36:48 ----HDC---- C:\WINDOWS\$NtUninstallKB959772_WM11$
2009-04-09 16:36:43 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2009-04-09 16:36:29 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP11$
2009-04-09 16:12:14 ----D---- C:\Program Files\Mozilla Firefox
2009-04-09 16:02:27 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-04-09 16:02:27 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-04-09 16:01:26 ----D---- C:\WINDOWS\Sun
2009-04-09 16:00:57 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-04-09 15:45:25 ----D---- C:\Documents and Settings\Owner\Application Data\Apple Computer
2009-04-09 15:45:17 ----A---- C:\WINDOWS\system32\GEARAspi.dll
2009-04-09 15:44:57 ----D---- C:\Program Files\iPod
2009-04-09 15:44:53 ----D---- C:\Program Files\iTunes
2009-04-09 15:44:53 ----D---- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-04-09 15:44:32 ----D---- C:\Program Files\Bonjour
2009-04-09 15:43:56 ----D---- C:\Program Files\QuickTime
2009-04-09 15:43:54 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2009-04-09 15:43:40 ----D---- C:\Program Files\Apple Software Update
2009-04-09 15:43:10 ----D---- C:\Program Files\Common Files\Apple
2009-04-09 15:43:09 ----D---- C:\Documents and Settings\All Users\Application Data\Apple
2009-04-09 15:38:51 ----D---- C:\Documents and Settings\Owner\Application Data\skypePM
2009-04-09 15:37:29 ----D---- C:\Documents and Settings\Owner\Application Data\Skype
2009-04-09 15:36:26 ----D---- C:\Program Files\Skype
2009-04-09 15:36:25 ----D---- C:\Program Files\Common Files\Skype
2009-04-09 15:36:17 ----D---- C:\Documents and Settings\All Users\Application Data\Skype
2009-04-09 15:06:03 ----D---- C:\Documents and Settings\Owner\Application Data\WinRAR
2009-04-09 15:05:34 ----D---- C:\Program Files\WinRAR
2009-04-09 15:01:30 ----D---- C:\Documents and Settings\Owner\Application Data\Ahead
2009-04-09 15:01:17 ----A---- C:\WINDOWS\NeroDigital.ini
2009-04-09 14:49:51 ----D---- C:\Program Files\Alcohol Soft
2009-04-09 14:33:58 ----N---- C:\WINDOWS\UNNMP.exe
2009-04-09 14:31:58 ----A---- C:\WINDOWS\system32\NeroCheck.exe
2009-04-09 14:30:36 ----N---- C:\WINDOWS\UNNeroVision.exe
2009-04-09 14:30:36 ----N---- C:\WINDOWS\system32\msxml3a.dll
2009-04-09 14:29:37 ----D---- C:\Documents and Settings\All Users\Application Data\Ahead
2009-04-09 14:29:36 ----N---- C:\WINDOWS\system32\TwnLib4.dll
2009-04-09 14:29:35 ----N---- C:\WINDOWS\system32\ImagXRA7.dll
2009-04-09 14:29:35 ----N---- C:\WINDOWS\system32\ImagXR7.dll
2009-04-09 14:29:35 ----N---- C:\WINDOWS\system32\ImagXpr7.dll
2009-04-09 14:29:35 ----N---- C:\WINDOWS\system32\ImagX7.dll
2009-04-09 14:29:34 ----N---- C:\WINDOWS\system32\picn20.dll
2009-04-09 14:29:34 ----A---- C:\WINDOWS\system32\TwnLib20.dll
2009-04-09 14:29:31 ----D---- C:\Program Files\Common Files\Ahead
2009-04-09 14:29:25 ----D---- C:\Program Files\Ahead
2009-04-09 14:25:47 ----A---- C:\WINDOWS\DVDIdlePro.INI
2009-04-09 14:20:51 ----D---- C:\Program Files\Microsoft
2009-04-09 14:20:33 ----D---- C:\Program Files\Windows Live SkyDrive
2009-04-09 14:20:06 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-04-09 14:20:05 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2009-04-09 14:20:03 ----D---- C:\Program Files\Windows Live
2009-04-09 14:19:31 ----D---- C:\Program Files\Windows Media Connect 2
2009-04-09 14:19:05 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2009-04-09 14:18:02 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2009-04-09 14:17:55 ----D---- C:\Program Files\Common Files\Windows Live
2009-04-09 14:17:16 ----D---- C:\WINDOWS\system32\LogFiles
2009-04-09 14:17:10 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2009-04-09 14:04:44 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-04-09 14:04:31 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-04-09 13:50:16 ----D---- C:\WINDOWS\Prefetch
2009-04-09 13:47:58 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-04-09 13:47:50 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-04-09 13:47:44 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-04-09 13:47:37 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-04-09 13:47:31 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-04-09 13:47:25 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-04-09 13:47:17 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-04-09 13:47:10 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-04-09 13:47:04 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-04-09 13:46:56 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-04-09 13:46:50 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-04-09 13:46:44 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-04-09 13:46:38 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-04-09 13:46:31 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-04-09 13:46:24 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-04-09 13:46:18 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-04-09 13:46:11 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-04-09 13:46:05 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-04-09 13:46:00 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-04-09 13:45:53 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-04-09 13:45:47 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-04-09 13:41:46 ----D---- C:\WINDOWS\system32\scripting
2009-04-09 13:41:46 ----D---- C:\WINDOWS\l2schemas
2009-04-09 13:41:44 ----D---- C:\WINDOWS\system32\en
2009-04-09 13:41:44 ----D---- C:\WINDOWS\system32\bits
2009-04-09 13:38:33 ----D---- C:\WINDOWS\ServicePackFiles
2009-04-09 13:34:47 ----D---- C:\WINDOWS\network diagnostic
2009-04-09 13:29:17 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2009-04-09 13:29:14 ----D---- C:\WINDOWS\EHome
2009-04-09 13:16:46 ----A---- C:\WINDOWS\iun6002.exe
2009-04-09 13:16:44 ----D---- C:\Program Files\Codec Pack - All In 1
2009-04-09 13:13:43 ----A---- C:\WINDOWS\Codec Pack - All In 1 Setup Log.txt
2009-04-09 13:13:20 ----A---- C:\WINDOWS\system32\snmvtsvc.exe
2009-04-09 13:13:20 ----A---- C:\WINDOWS\system32\MusCVideo32.dll
2009-04-09 13:13:17 ----D---- C:\Program Files\AllMusicConverter
2009-04-09 13:12:32 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
2009-04-09 13:12:28 ----D---- C:\Program Files\DVDIdle Pro
2009-04-09 13:12:22 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
2009-04-09 13:12:06 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$
2009-04-09 13:11:57 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$
2009-04-09 13:11:45 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2009-04-09 13:11:33 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
2009-04-09 13:11:21 ----HDC---- C:\WINDOWS\$NtUninstallKB951698_0$
2009-04-09 13:11:09 ----HDC---- C:\WINDOWS\$NtUninstallKB960225_0$
2009-04-09 13:10:39 ----HDC---- C:\WINDOWS\$NtUninstallKB956841_0$
2009-04-09 13:09:55 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2_0$
2009-04-09 13:09:30 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-04-09 13:08:56 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$
2009-04-09 13:08:49 ----D---- C:\wamp
2009-04-09 13:08:43 ----HDC---- C:\WINDOWS\$NtUninstallKB957097_0$
2009-04-09 13:08:33 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
2009-04-09 13:07:30 ----HDC---- C:\WINDOWS\$NtUninstallKB958687_0$
2009-04-09 13:07:13 ----D---- C:\Documents and Settings\Owner\Application Data\FileZilla
2009-04-09 13:06:19 ----D---- C:\Program Files\FileZilla FTP Client
2009-04-09 13:04:09 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
2009-04-09 13:03:54 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$
2009-04-09 13:03:45 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2009-04-09 13:03:38 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$
2009-04-09 13:03:27 ----HDC---- C:\WINDOWS\$NtUninstallKB958690_0$
2009-04-09 13:03:13 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$
2009-04-09 13:00:58 ----HDC---- C:\WINDOWS\$NtUninstallKB954600_0$
2009-04-09 13:00:51 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$
2009-04-09 13:00:43 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$
2009-04-09 13:00:32 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$
2009-04-09 12:49:06 ----D---- C:\Documents and Settings\Owner\Application Data\Mozilla
2009-04-09 12:48:50 ----D---- C:\Program Files\Mozilla Thunderbird
2009-04-09 12:39:23 ----D---- C:\WINDOWS\ie8updates
2009-04-09 12:38:46 ----D---- C:\WINDOWS\WBEM
2009-04-09 12:36:50 ----HDC---- C:\WINDOWS\ie8
2009-04-09 12:36:50 ----D---- C:\WINDOWS\system32\en-US
2009-04-09 12:15:12 ----D---- C:\Documents and Settings\Owner\Application Data\AdobeUM
2009-04-09 12:12:57 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe Systems
2009-04-09 12:12:52 ----D---- C:\Documents and Settings\Owner\Application Data\Adobe
2009-04-09 12:12:49 ----D---- C:\Program Files\Common Files\Adobe Systems Shared
2009-04-09 12:11:23 ----D---- C:\Program Files\Common Files\Adobe
2009-04-09 12:10:39 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-04-09 12:10:18 ----D---- C:\Program Files\Adobe
2009-04-09 11:54:29 ----A---- C:\WINDOWS\system32\MRT.exe
2009-04-09 11:54:19 ----HDC---- C:\WINDOWS\$NtUninstallKB932823-v3$
2009-04-09 11:50:09 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-04-09 11:15:20 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2009-04-09 11:14:34 ----D---- C:\WINDOWS\system32\PreInstall
2009-04-09 11:14:33 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-04-09 11:14:32 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2009-04-09 11:14:32 ----HD---- C:\WINDOWS\$hf_mig$
2009-04-09 10:59:00 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-04-09 10:28:44 ----RASH---- C:\boot.ini
2009-04-09 10:27:49 ----A---- C:\WINDOWS\system32\winshfhc.dll
2009-04-09 10:27:48 ----A---- C:\WINDOWS\system32\blastcln.exe
2009-04-09 10:27:47 ----A---- C:\WINDOWS\system32\wmvdmoe2.dll
2009-04-09 10:27:47 ----A---- C:\WINDOWS\system32\wmvdmod.dll
2009-04-09 10:27:47 ----A---- C:\WINDOWS\system32\WMVCore.dll
2009-04-09 10:27:47 ----A---- C:\WINDOWS\system32\wmstream.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\WMSPDMOE.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\WMSPDMOD.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmsdmoe2.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmsdmoe.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmsdmod.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmpui.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmpshell.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2009-04-09 10:27:46 ----A---- C:\WINDOWS\system32\wmpasf.dll
2009-04-09 10:27:45 ----A---- C:\WINDOWS\system32\wmp.dll
2009-04-09 10:27:44 ----A---- C:\WINDOWS\system32\wmploc.dll
2009-04-09 10:27:44 ----A---- C:\WINDOWS\system32\wmpcore.dll
2009-04-09 10:27:44 ----A---- C:\WINDOWS\system32\wmpcd.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\WMNetmgr.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\wmidx.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\wmerror.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\wmdmps.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\wmdmlog.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\wmasf.dll
2009-04-09 10:27:43 ----A---- C:\WINDOWS\system32\WMADMOE.dll
2009-04-09 10:27:42 ----A---- C:\WINDOWS\system32\WMADMOD.dll
2009-04-09 10:27:42 ----A---- C:\WINDOWS\system32\strmdll.dll
2009-04-09 10:27:42 ----A---- C:\WINDOWS\system32\shmedia.dll
2009-04-09 10:27:41 ----A---- C:\WINDOWS\system32\mswmdm.dll
2009-04-09 10:27:41 ----A---- C:\WINDOWS\system32\msscp.dll
2009-04-09 10:27:41 ----A---- C:\WINDOWS\system32\mspmsp.dll
2009-04-09 10:27:41 ----A---- C:\WINDOWS\system32\mspmsnsv.dll
2009-04-09 10:27:41 ----A---- C:\WINDOWS\system32\msnetobj.dll
2009-04-09 10:27:41 ----A---- C:\WINDOWS\system32\msdxmlc.dll
2009-04-09 10:27:40 ----A---- C:\WINDOWS\system32\MPG4DMOD.dll
2009-04-09 10:27:40 ----A---- C:\WINDOWS\system32\MP4SDMOD.dll
2009-04-09 10:27:40 ----A---- C:\WINDOWS\system32\MP43DMOD.dll
2009-04-09 10:27:39 ----A---- C:\WINDOWS\system32\logagent.exe
2009-04-09 10:27:39 ----A---- C:\WINDOWS\system32\LAPRXY.dll
2009-04-09 10:27:39 ----A---- C:\WINDOWS\system32\dxmasf.dll
2009-04-09 10:27:39 ----A---- C:\WINDOWS\system32\drmv2clt.dll
2009-04-09 10:27:39 ----A---- C:\WINDOWS\system32\drmstor.dll
2009-04-09 10:27:38 ----A---- C:\WINDOWS\system32\drmclien.dll
2009-04-09 10:27:38 ----A---- C:\WINDOWS\system32\cewmdm.dll
2009-04-09 10:27:38 ----A---- C:\WINDOWS\system32\blackbox.dll
2009-04-09 10:27:38 ----A---- C:\WINDOWS\system32\asferror.dll
2009-04-09 10:27:22 ----A---- C:\WINDOWS\system32\osuninst.exe
2009-04-09 10:27:21 ----A---- C:\WINDOWS\vmmreg32.dll
2009-04-09 10:27:21 ----A---- C:\WINDOWS\system32\vga64k.dll
2009-04-09 10:27:21 ----A---- C:\WINDOWS\system32\vga256.dll
2009-04-09 10:27:18 ----A---- C:\WINDOWS\system32\spnpinst.exe
2009-04-09 10:27:11 ----RASH---- C:\NTDETECT.COM
2009-04-09 10:27:11 ----A---- C:\WINDOWS\system32\pentnt.exe
2009-04-09 10:27:11 ----A---- C:\WINDOWS\system32\odtext32.dll
2009-04-09 10:27:11 ----A---- C:\WINDOWS\system32\odpdx32.dll
2009-04-09 10:27:11 ----A---- C:\WINDOWS\system32\odfox32.dll
2009-04-09 10:27:11 ----A---- C:\WINDOWS\system32\odexl32.dll
2009-04-09 10:27:11 ----A---- C:\WINDOWS\system32\oddbse32.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msxbde40.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msvcrt20.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\mstext40.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msrepl40.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msrecr40.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msrd2x40.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msrclr40.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msr2cenu.dll
2009-04-09 10:27:08 ----A---- C:\WINDOWS\system32\msr2c.dll
2009-04-09 10:27:07 ----A---- C:\WINDOWS\system32\mspbde40.dll
2009-04-09 10:27:07 ----A---- C:\WINDOWS\system32\msltus40.dll
2009-04-09 10:27:07 ----A---- C:\WINDOWS\system32\msexcl40.dll
2009-04-09 10:27:07 ----A---- C:\WINDOWS\system32\msexch40.dll
2009-04-09 10:27:06 ----A---- C:\WINDOWS\system32\lnkstub.exe
2009-04-09 10:27:05 ----A---- C:\WINDOWS\system32\migpwd.exe
2009-04-09 10:27:03 ----A---- C:\WINDOWS\system32\krnl386.exe
2009-04-09 10:27:03 ----A---- C:\WINDOWS\system32\ir50_qcx.dll
2009-04-09 10:27:03 ----A---- C:\WINDOWS\system32\ir50_qc.dll
2009-04-09 10:27:03 ----A---- C:\WINDOWS\system32\ir50_32.dll
2009-04-09 10:27:03 ----A---- C:\WINDOWS\system32\ir41_qcx.dll
2009-04-09 10:27:03 ----A---- C:\WINDOWS\system32\ir41_qc.dll
2009-04-09 10:27:01 ----A---- C:\WINDOWS\system32\d3dramp.dll
2009-04-09 10:27:01 ----A---- C:\WINDOWS\system32\ctl3d32.dll
2009-04-09 10:26:58 ----A---- C:\WINDOWS\system32\wmerrenu.dll
2009-04-09 10:26:53 ----A---- C:\WINDOWS\system32\xpsp2res.dll
2009-04-09 10:26:53 ----A---- C:\WINDOWS\system32\xpsp1res.dll
2009-04-09 10:26:53 ----A---- C:\WINDOWS\system32\xpob2res.dll
2009-04-09 10:26:51 ----A---- C:\WINDOWS\system32\edit.com
2009-04-09 10:26:47 ----A---- C:\WINDOWS\system32\mslbui.dll
2009-04-09 10:26:47 ----A---- C:\WINDOWS\system32\msimtf.dll
2009-04-09 10:26:46 ----A---- C:\WINDOWS\system32\msutb.dll
2009-04-09 10:26:46 ----A---- C:\WINDOWS\system32\msctfp.dll
2009-04-09 10:26:46 ----A---- C:\WINDOWS\system32\msctf.dll
2009-04-09 10:26:46 ----A---- C:\WINDOWS\system32\ctfmon.exe
2009-04-09 10:26:44 ----A---- C:\WINDOWS\system32\kbdinmal.dll
2009-04-09 10:26:44 ----A---- C:\WINDOWS\system32\kbdinben.dll
2009-04-09 10:26:44 ----A---- C:\WINDOWS\system32\kbdinbe1.dll
2009-04-09 10:26:31 ----A---- C:\WINDOWS\system32\zipfldr.dll
2009-04-09 10:26:30 ----A---- C:\WINDOWS\system32\xmlprovi.dll
2009-04-09 10:26:30 ----A---- C:\WINDOWS\system32\xmlprov.dll
2009-04-09 10:26:29 ----A---- C:\WINDOWS\system32\xenroll.dll
2009-04-09 10:26:29 ----A---- C:\WINDOWS\system32\xcopy.exe
2009-04-09 10:26:29 ----A---- C:\WINDOWS\system32\xactsrv.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wzcdlg.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wupdmgr.exe
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wtsapi32.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wstdecod.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wsock32.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wsnmp32.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshtcpip.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshrm.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshnetbs.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshisn.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wship6.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshext.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshcon.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wshatm.dll
2009-04-09 10:26:28 ----A---- C:\WINDOWS\system32\wscsvc.dll
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wscript.exe
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wscntfy.exe
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\ws2help.dll
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\ws2_32.dll
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wpabaln.exe
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wowexec.exe
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wowdeb.exe
2009-04-09 10:26:27 ----A---- C:\WINDOWS\system32\wow32.dll
2009-04-09 10:26:26 ----A---- C:\WINDOWS\system32\wmiprop.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\wmi.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\wlnotify.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\wldap32.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\wkssvc.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winver.exe
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\wintrust.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winstrm.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winsta.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winsrv.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winspool.exe
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winsock.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winscard.dll
2009-04-09 10:26:25 ----A---- C:\WINDOWS\system32\winrnr.dll
2009-04-09 10:26:24 ----A---- C:\WINDOWS\system32\winntbbu.dll
2009-04-09 10:26:24 ----A---- C:\WINDOWS\system32\winnls.dll
2009-04-09 10:26:24 ----A---- C:\WINDOWS\system32\winmsd.exe
2009-04-09 10:26:24 ----A---- C:\WINDOWS\system32\winmm.dll
2009-04-09 10:26:24 ----A---- C:\WINDOWS\system32\winlogon.exe
2009-04-09 10:26:24 ----A---- C:\WINDOWS\system32\winipsec.dll
2009-04-09 10:26:23 ----A---- C:\WINDOWS\winhlp32.exe
2009-04-09 10:26:23 ----A---- C:\WINDOWS\winhelp.exe
2009-04-09 10:26:23 ----A---- C:\WINDOWS\system32\wininet.dll
2009-04-09 10:26:23 ----A---- C:\WINDOWS\system32\winhttp.dll
2009-04-09 10:26:23 ----A---- C:\WINDOWS\system32\winhlp32.exe
2009-04-09 10:26:23 ----A---- C:\WINDOWS\system32\winfax.dll
2009-04-09 10:26:22 ----A---- C:\WINDOWS\system32\winbrand.dll
2009-04-09 10:26:22 ----A---- C:\WINDOWS\system32\win87em.dll
2009-04-09 10:26:22 ----A---- C:\WINDOWS\system32\win32spl.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\win.ini
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\win.com
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wifeman.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiavusd.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiavideo.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiashext.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiaservc.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiascr.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiadss.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiadefui.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wiaacmgr.exe
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\wextract.exe
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\webvw.dll
2009-04-09 10:26:21 ----A---- C:\WINDOWS\system32\webhits.dll
2009-04-09 10:26:20 ----A---- C:\WINDOWS\system32\webclnt.dll
2009-04-09 10:26:20 ----A---- C:\WINDOWS\system32\webcheck.dll
2009-04-09 10:26:20 ----A---- C:\WINDOWS\system32\wdigest.dll
2009-04-09 10:26:17 ----A---- C:\WINDOWS\system32\wavemsp.dll
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\w32topl.dll
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\w32tm.exe
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\w32time.dll
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\vssvc.exe
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\vssapi.dll
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\vssadmin.exe
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\vss_ps.dll
2009-04-09 10:26:16 ----A---- C:\WINDOWS\system32\vjoy.dll
2009-04-09 10:26:15 ----A---- C:\WINDOWS\system32\vga.dll
2009-04-09 10:26:15 ----A---- C:\WINDOWS\system32\vfpodbc.dll
2009-04-09 10:26:15 ----A---- C:\WINDOWS\system32\version.dll
2009-04-09 10:26:15 ----A---- C:\WINDOWS\system32\verifier.exe
2009-04-09 10:26:15 ----A---- C:\WINDOWS\system32\verifier.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\ver.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\vdmredir.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\vdmdbg.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\vcdex.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\vbscript.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\vbajet32.dll
2009-04-09 10:26:14 ----A---- C:\WINDOWS\system32\uxtheme.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\utilman.exe
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\utildll.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\usp10.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\userinit.exe
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\userenv.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\user32.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\user.exe
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\usbmon.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\urlmon.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\url.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\ureg.dll
2009-04-09 10:26:13 ----A---- C:\WINDOWS\system32\ups.exe
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\upnpui.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\upnphost.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\upnpcont.exe
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\upnp.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\untfs.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\unlodctr.exe
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\uniplat.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\unimdmat.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\umdmxfrm.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\umandlg.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\ulib.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\ufat.dll
2009-04-09 10:26:12 ----A---- C:\WINDOWS\system32\osuninst.dll
2009-04-09 10:26:11 ----A---- C:\WINDOWS\twunk_32.exe
2009-04-09 10:26:11 ----A---- C:\WINDOWS\twunk_16.exe
2009-04-09 10:26:11 ----A---- C:\WINDOWS\twain_32.dll
2009-04-09 10:26:11 ----A---- C:\WINDOWS\twain.dll
2009-04-09 10:26:11 ----A---- C:\WINDOWS\system32\udhisapi.dll
2009-04-09 10:26:11 ----A---- C:\WINDOWS\system32\typelib.dll
2009-04-09 10:26:11 ----A---- C:\WINDOWS\system32\txflog.dll
2009-04-09 10:26:11 ----A---- C:\WINDOWS\system32\twext.dll
2009-04-09 10:26:10 ----A---- C:\WINDOWS\system32\w3ssl.dll
2009-04-09 10:26:10 ----A---- C:\WINDOWS\system32\tsddd.dll
2009-04-09 10:26:10 ----A---- C:\WINDOWS\system32\tsd32.dll
2009-04-09 10:26:09 ----A---- C:\WINDOWS\system32\tsappcmp.dll
2009-04-09 10:26:09 ----A---- C:\WINDOWS\system32\trkwks.dll
2009-04-09 10:26:09 ----A---- C:\WINDOWS\system32\tree.com
2009-04-09 10:26:08 ----A---- C:\WINDOWS\system32\traffic.dll
2009-04-09 10:26:08 ----A---- C:\WINDOWS\system32\tracert6.exe
2009-04-09 10:26:08 ----A---- C:\WINDOWS\system32\tracert.exe
2009-04-09 10:26:08 ----A---- C:\WINDOWS\system32\toolhelp.dll
2009-04-09 10:26:07 ----A---- C:\WINDOWS\system32\themeui.dll
2009-04-09 10:26:07 ----A---- C:\WINDOWS\system32\tftp.exe
2009-04-09 10:26:07 ----A---- C:\WINDOWS\system32\termmgr.dll
2009-04-09 10:26:07 ----A---- C:\WINDOWS\system32\telnet.exe
2009-04-09 10:26:07 ----A---- C:\WINDOWS\system32\tcpsvcs.exe
2009-04-09 10:26:07 ----A---- C:\WINDOWS\system32\tcpmonui.dll
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tcpmon.ini
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tcpmon.dll
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tcpmib.dll
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tcmsetup.exe
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\taskmgr.exe
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\taskman.exe
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tapiui.dll
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tapisrv.dll
2009-04-09 10:26:06 ----A---- C:\WINDOWS\system32\tapiperf.dll
2009-04-09 10:26:05 ----A---- C:\WINDOWS\system32\tapi32.dll
2009-04-09 10:26:05 ----A---- C:\WINDOWS\system32\tapi3.dll
2009-04-09 10:26:05 ----A---- C:\WINDOWS\system32\tapi.dll
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\t2embed.dll
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\systray.exe
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\syssetup.dll
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\sysocmgr.exe
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\syskey.exe
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\sysinv.dll
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system32\sysedit.exe
2009-04-09 10:26:04 ----A---- C:\WINDOWS\system.ini
2009-04-09 10:26:03 ----A---- C:\WINDOWS\system32\syncui.dll
2009-04-09 10:26:03 ----A---- C:\WINDOWS\system32\synceng.dll
2009-04-09 10:26:03 ----A---- C:\WINDOWS\system32\syncapp.exe
2009-04-09 10:26:03 ----A---- C:\WINDOWS\system32\sxs.dll
2009-04-09 10:26:03 ----A---- C:\WINDOWS\system32\swprv.dll
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\svcpack.dll
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\svchost.exe
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\subst.exe
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\strmfilt.dll
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\storage.dll
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\stobject.dll
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\stimon.exe
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\sti_ci.dll
2009-04-09 10:26:02 ----A---- C:\WINDOWS\system32\sti.dll
2009-04-09 10:26:00 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2009-04-09 10:26:00 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2009-04-09 10:26:00 ----A---- C:\WINDOWS\system32\srvsvc.dll
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\sqlwoa.dll
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\sqlwid.dll
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\sqlunirl.dll
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\sqlsrv32.dll
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\sprestrt.exe
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\spoolsv.exe
2009-04-09 10:25:59 ----A---- C:\WINDOWS\system32\spoolss.dll
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\sort.exe
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\softpub.dll
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\snmpsnap.dll
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\snmpapi.dll
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\smss.exe
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\smlogsvc.exe
2009-04-09 10:25:49 ----A---- C:\WINDOWS\system32\smlogcfg.dll
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\smbinst.exe
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\slbrccsp.dll
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\slbiop.dll
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\slbcsp.dll
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\slayerxp.dll
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\skeys.exe
2009-04-09 10:25:48 ----A---- C:\WINDOWS\system32\skdll.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\sisbkup.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\sigverif.exe
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\sigtab.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shutdown.exe
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shsvcs.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shscrap.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shrpubw.exe
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shmgrate.exe
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shlwapi.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shimgvw.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shimeng.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shgina.dll
2009-04-09 10:25:47 ----A---- C:\WINDOWS\system32\shfolder.dll
2009-04-09 10:25:46 ----A---- C:\WINDOWS\system32\shell32.dll
2009-04-09 10:25:46 ----A---- C:\WINDOWS\system32\shell.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\shdocvw.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\shdoclc.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\share.exe
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\sfmapi.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\sfcfiles.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\sfc_os.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\sfc.exe
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\sfc.dll
2009-04-09 10:25:45 ----A---- C:\WINDOWS\system32\setver.exe
2009-04-09 10:25:44 ----A---- C:\WINDOWS\system32\setupdll.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\setupapi.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\setup.exe
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\sethc.exe
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\serwvdrv.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\services.msc
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\services.exe
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\serialui.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\senscfg.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\sensapi.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\sens.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\sendmail.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\sendcmsg.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\security.dll
2009-04-09 10:25:43 ----A---- C:\WINDOWS\system32\secur32.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\seclogon.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\sdpblb.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\sdbinst.exe
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\scrrun.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\scrobj.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\scredir.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\sclgntfy.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\schannel.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\scesrv.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\scecli.dll
2009-04-09 10:25:42 ----A---- C:\WINDOWS\system32\sccsccp.dll
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\sccbase.dll
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\scardsvr.exe
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\scardssp.dll
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\scarddlg.dll
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\sc.exe
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\sbeio.dll
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\sbe.dll
2009-04-09 10:25:41 ----A---- C:\WINDOWS\system32\savedump.exe
2009-04-09 10:25:40 ----A---- C:\WINDOWS\system32\samsrv.dll
2009-04-09 10:25:40 ----A---- C:\WINDOWS\system32\samlib.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\runonce.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rundll32.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\runas.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rtutils.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rtm.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rtipxmib.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rtcshare.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsvpsp.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsvpperf.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsvpmsg.dll
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsvp.ini
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsvp.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsmui.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsmsink.exe
2009-04-09 10:25:39 ----A---- C:\WINDOWS\system32\rsmps.dll
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rsm.exe
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rshx32.dll
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rsh.exe
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rsaenh.dll
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rpcss.dll
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2009-04-09 10:25:38 ----A---- C:\WINDOWS\system32\rpcns4.dll
2009-04-09 10:25:37 ----A---- C:\WINDOWS\system32\routetab.dll
2009-04-09 10:25:37 ----A---- C:\WINDOWS\system32\routemon.exe
2009-04-09 10:25:37 ----A---- C:\WINDOWS\system32\route.exe
2009-04-09 10:25:37 ----A---- C:\WINDOWS\system32\rnr20.dll
2009-04-09 10:25:37 ----A---- C:\WINDOWS\system32\riched32.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\riched20.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\rexec.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\resutils.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\replace.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\rend.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\regwizc.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\regwiz.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\regsvr32.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\regsvc.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\regedt32.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\regapi.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\reg.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\system32\msftedit.dll
2009-04-09 10:25:36 ----A---- C:\WINDOWS\regedit.exe
2009-04-09 10:25:36 ----A---- C:\WINDOWS\copy.exe
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\redir.exe
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\recover.exe
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rdpdd.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rcp.exe
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rcimlby.exe
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rcbdyctl.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rastls.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rastapi.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rasser.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rassapi.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\rasrad.dll
2009-04-09 10:25:35 ----A---- C:\WINDOWS\system32\drprov.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasppp.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasphone.exe
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasmxs.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasmontr.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasmans.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasman.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasdlg.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasdial.exe
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasctrs.ini
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasctrs.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\raschap.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasautou.exe
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasauto.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasapi32.dll
2009-04-09 10:25:34 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2009-04-09 10:25:33 ----A---- C:\WINDOWS\system32\query.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\quartz.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qosname.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qedwipes.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qedit.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qdvd.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qdv.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qcap.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\qasf.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\pubprn.vbs
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\pstorsvc.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\pstorec.dll
2009-04-09 10:25:32 ----A---- C:\WINDOWS\system32\psnppagn.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\pschdprf.ini
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\pschdprf.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\psbase.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\psapi.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\proxycfg.exe
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\proquota.exe
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\progman.exe
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\profmap.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\prodspec.ini
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\printui.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\print.exe
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\prflbmsg.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\powrprof.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\powercfg.exe
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\polstore.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\pnrpnsp.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\pngfilt.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\pmspl.dll
2009-04-09 10:25:31 ----A---- C:\WINDOWS\system32\plustab.dll
2009-04-09 10:25:30 ----A---- C:\WINDOWS\system32\ping6.exe
2009-04-09 10:25:30 ----A---- C:\WINDOWS\system32\ping.exe
2009-04-09 10:25:30 ----A---- C:\WINDOWS\system32\pifmgr.dll
2009-04-09 10:25:30 ----A---- C:\WINDOWS\system32\pidgen.dll
2009-04-09 10:25:30 ----A---- C:\WINDOWS\system32\photowiz.dll
2009-04-09 10:25:29 ----R---- C:\WINDOWS\system32\perfmon.msc
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfwci.ini
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfts.dll
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfproc.dll
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfos.dll
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfnet.dll
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfmon.exe
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perffilt.ini
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfdisk.dll
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfctrs.dll
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\perfci.ini
2009-04-09 10:25:29 ----A---- C:\WINDOWS\system32\pdh.dll
2009-04-09 10:25:28 ----A---- C:\WINDOWS\system32\pautoenr.dll
2009-04-09 10:25:28 ----A---- C:\WINDOWS\system32\pathping.exe
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\panmap.dll
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\packager.exe
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\p2psvc.dll
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\p2pgraph.dll
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\p2pgasvc.dll
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\p2p.dll
2009-04-09 10:25:27 ----A---- C:\WINDOWS\system32\osk.exe
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\opengl32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olethk32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olesvr32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olesvr.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olepro32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\oleprn.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\oledlg.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olecnv32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olecli32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\olecli.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\oleaut32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\oleaccrc.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\oleacc.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\ole32.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\ole2nls.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\ole2disp.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\ole2.dll
2009-04-09 10:25:26 ----A---- C:\WINDOWS\system32\offfilt.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbctrac.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbcp32r.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbcjt32.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbcji32.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbcint.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbccu32.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbccr32.dll
2009-04-09 10:25:20 ----A---- C:\WINDOWS\system32\odbccp32.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbcconf.exe
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbcconf.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbcbcp.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbcad32.exe
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbc32gt.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbc32.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\odbc16gt.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\ocmanage.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\occache.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\objsel.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\oakley.dll
2009-04-09 10:25:19 ----A---- C:\WINDOWS\system32\nwprovau.dll
2009-04-09 10:25:18 ----A---- C:\WINDOWS\system32\ntvdmd.dll
2009-04-09 10:25:18 ----A---- C:\WINDOWS\system32\ntvdm.exe
2009-04-09 10:25:18 ----A---- C:\WINDOWS\system32\ntshrui.dll
2009-04-09 10:25:17 ----A---- C:\WINDOWS\system32\ntsdexts.dll
2009-04-09 10:25:17 ----A---- C:\WINDOWS\system32\ntsd.exe
2009-04-09 10:25:16 ----A---- C:\WINDOWS\system32\ntprint.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmssvc.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmsoprq.msc
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmsmgr.msc
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmsmgr.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmsevt.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmsdba.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmsapi.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntmarta.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntlsapi.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntlanui2.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntlanui.dll
2009-04-09 10:25:15 ----A---- C:\WINDOWS\system32\ntlanman.dll
2009-04-09 10:25:14 ----A---- C:\WINDOWS\system32\ntdsapi.dll
2009-04-09 10:25:14 ----A---- C:\WINDOWS\system32\ntdll.dll
2009-04-09 10:25:13 ----A---- C:\WINDOWS\system32\nslookup.exe
2009-04-09 10:25:13 ----A---- C:\WINDOWS\system32\npptools.dll
2009-04-09 10:25:12 ----A---- C:\WINDOWS\system32\notepad.exe
2009-04-09 10:25:11 ----A---- C:\WINDOWS\system32\nlsfunc.exe
2009-04-09 10:25:11 ----A---- C:\WINDOWS\system32\nlhtml.dll
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\newdev.dll
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netui2.dll
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netui1.dll
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netui0.dll
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netstat.exe
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netshell.dll
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netsh.exe
2009-04-09 10:25:10 ----A---- C:\WINDOWS\system32\netrap.dll
2009-04-09 10:25:09 ----A---- C:\WINDOWS\system32\netplwiz.dll
2009-04-09 10:25:09 ----A---- C:\WINDOWS\system32\netmsg.dll
2009-04-09 10:25:09 ----A---- C:\WINDOWS\system32\netman.dll
2009-04-09 10:25:09 ----A---- C:\WINDOWS\system32\netlogon.dll
2009-04-09 10:25:09 ----A---- C:\WINDOWS\system32\netid.dll
2009-04-09 10:25:09
|
|
| Back to top |
|
|
|
