Trojske kone v PC (nmklo.dll, NS13.tmp ...)
Napsal: 18 srp 2010 14:50
Zdravim, pred par dnami mi AVG začal pri kazdom zapnuti PC vyhadzovat, ze mam v PC trojana nmklo.dll a po presunuti do virusoveho trezora sa tento subor objavi znova pri kazdom zapnuti/restarte... Len za posledne 2 dni naslo tuto haved ( http://img411.imageshack.us/f/avgg.jpg/ )...
log RSIT:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Pavel Lorinc at 2010-08-18 15:27:34
Systém Microsoft Windows XP Home Edition Service Pack 2
System drive C: has 54 GB (71%) free of 76 GB
Total RAM: 1406 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:27:49, on 18.8.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17055)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Spamihilator\spamihilator.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG9\avgam.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Pavel Lorinc\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Documents and Settings\Pavel Lorinc\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\drivers\31.exe
C:\Program Files\AVG\AVG9\avgui.exe
C:\Documents and Settings\Pavel Lorinc\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavel Lorinc\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavel Lorinc\Desktop\RSIT.exe
C:\Program Files\trend micro\Pavel Lorinc.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [Spamihilator] "C:\Program Files\Spamihilator\spamihilator.exe"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Regedit32] C:\WINDOWS\system32\regedit.exe
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 6623758656
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://195.65.142.237/activex/AxisCamControl.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe
O23 - Service: AVG E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
--
End of file - 10639 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Automatic troubleshooting.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-854245398-299502267-839522115-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-854245398-299502267-839522115-1004UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-08-18 1619296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-09-28 110652]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll [2010-06-30 2102600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2007-10-26 2403392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-12-11 764912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2008-12-30 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-02-18 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-02-18 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ecdee021-0d17-467f-a1ff-c7a115230949}]
free-downloads.net Toolbar - C:\Program Files\free-downloads.net\tbfree.dll [2008-02-14 1555480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2007-10-26 2403392]
{ecdee021-0d17-467f-a1ff-c7a115230949} - free-downloads.net Toolbar - C:\Program Files\free-downloads.net\tbfree.dll [2008-02-14 1555480]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll [2010-06-30 2102600]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DLA"=C:\WINDOWS\System32\DLA\DLACTRLW.EXE [2005-09-28 122940]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-07-27 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-07-27 81920]
"Spamihilator"=C:\Program Files\Spamihilator\spamihilator.exe [2008-01-06 1003520]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2007-04-11 56080]
"Logitech Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2007-04-11 56080]
"Regedit32"=C:\WINDOWS\system32\regedit.exe []
"AVG9_TRAY"=C:\PROGRA~1\AVG\AVG9\avgtray.exe [2010-08-18 2065760]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2006-02-28 15360]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-09-09 90112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2010-08-18 12536]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Spamihilator\dccproc.exe"="C:\Program Files\Spamihilator\dccproc.exe:*:Enabled:dccproc"
"C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe"="C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater"
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"C:\Program Files\Microsoft LifeCam\LifeExp.exe"="C:\Program Files\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\QuickTime\QuickTimePlayer.exe"="C:\Program Files\QuickTime\QuickTimePlayer.exe:*:Enabled:QuickTime Player"
"C:\Program Files\Microsoft LifeCam\LifeCam.exe"="C:\Program Files\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service"
"C:\Program Files\Java\jre6\launch4j-tmp\frd.exe"="C:\Program Files\Java\jre6\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\DOCUME~1\PAVELL~1\LOCALS~1\Temp\NS302.tmp"="C:\DOCUME~1\PAVELL~1\LOCALS~1\Temp\NS302.tmp:*:Enabled:Microsoft Office"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\WINDOWS\TEMP\NS13.tmp"="C:\WINDOWS\TEMP\NS13.tmp:*:Enabled:Microsoft Office"
"C:\WINDOWS\TEMP\NS10.tmp"="C:\WINDOWS\TEMP\NS10.tmp:*:Enabled:Microsoft Office"
"C:\WINDOWS\TEMP\NS11.tmp"="C:\WINDOWS\TEMP\NS11.tmp:*:Enabled:Microsoft Office"
"C:\Program Files\AVG\AVG9\avgam.exe"="C:\Program Files\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe"
"C:\Program Files\AVG\AVG9\avgdiagex.exe"="C:\Program Files\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe"
"C:\Program Files\AVG\AVG9\avgemc.exe"="C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG9\avgupd.exe"="C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG9\avgnsx.exe"="C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\WINDOWS\TEMP\NS3.tmp"="C:\WINDOWS\TEMP\NS3.tmp:*:Enabled:Microsoft Office"
"C:\WINDOWS\TEMP\NS12.tmp"="C:\WINDOWS\TEMP\NS12.tmp:*:Enabled:Microsoft Office"
"C:\WINDOWS\TEMP\NS33.tmp"="C:\WINDOWS\TEMP\NS33.tmp:*:Enabled:Microsoft Office"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2010-08-18 15:27:34 ----D---- C:\rsit
2010-08-18 15:21:03 ----A---- C:\WINDOWS\system32\drivers\31.exe
2010-08-18 14:37:25 ----D---- C:\WINDOWS\Prefetch
2010-08-18 13:00:33 ----A---- C:\WINDOWS\SEC11EE.tmp
2010-08-18 12:50:39 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2010-08-18 12:50:39 ----A---- C:\WINDOWS\system32\wmpasf.dll
2010-08-18 12:50:39 ----A---- C:\WINDOWS\system32\wmp.dll
2010-08-18 12:50:39 ----A---- C:\WINDOWS\system32\wmerror.dll
2010-08-18 12:50:39 ----A---- C:\WINDOWS\system32\msxml6r.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\mp4sdmod.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\mp43dmod.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\ir50_qcx.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\ir50_qc.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\ir50_32.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\ir41_qcx.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\ir41_qc.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\hccoin.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\fsquirt.exe
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\bthserv.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\bthci.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\xpsp3res.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\xmllite.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\wshbth.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\wmphoto.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\windowscodecsext.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\windowscodecs.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\verclsid.exe
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\sdhcinst.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\photometadatahandler.dll
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\tunmp.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\sffp_sd.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\sffdisk.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\mssmbios.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\amdk7.sys
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\xpsp2res.dll
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\pidgen.dll
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\p2pgasvc.dll
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\logman.exe
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\kbdukx.dll
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\encdec.dll
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\dxdiagn.dll
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\drivers\usb8023x.sys
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\drivers\rndismpx.sys
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\dpcdll.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\wscntfy.exe
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\w3ssl.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\smbinst.exe
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\sbeio.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\sbe.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\pnrpnsp.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\p2psvc.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\p2pgraph.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\msftedit.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\msdadiag.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\kbdsmsno.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\kbdmlt47.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\kbdfi1.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\iuengine.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\httpapi.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\fwcfg.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\dsprpres.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\drivers\ip6fw.sys
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\drivers\http.sys
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\xpsp1res.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\xmlprovi.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\xmlprov.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\wscsvc.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\winshfhc.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\winhttp.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\winbrand.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\twext.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\spnpinst.exe
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\proxycfg.exe
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\powercfg.exe
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\mssap.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\kbdsmsfi.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\kbdinmal.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\kbdinbe1.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\fltmc.exe
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\drivers\fltmgr.sys
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\d3d9.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\cmsetacl.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\btpanui.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\xpob2res.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\strmfilt.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\p2p.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\kbdno1.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\kbdmlt48.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\kbdmaori.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\kbdinben.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\encapi.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\blastcln.exe
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\auditusr.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\winhlp32.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\twain_32.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\atmlib.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\atmadm.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\at.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\asycfilt.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\asferror.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\apphelp.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\amstream.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\alrsvc.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\alg.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\ahui.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\adsnt.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\adsmsext.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\adsldpc.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\adsldp.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\actxprxy.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\actmovie.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\activeds.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\aclui.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\6to4svc.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\regedit.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\hh.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\explorer.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cryptnet.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cryptext.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cryptdll.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\crypt32.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\credui.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\conime.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\confmsp.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\comuid.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\comres.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\compstui.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\compatui.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\colbact.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cnbjmon.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmutil.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmstp.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmmon32.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmdl32.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmdial32.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmcfg32.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\clusapi.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\clipsrv.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cliconfg.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cliconfg.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cisvc.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\ciodm.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cic.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cfgmgr32.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\certmgr.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\certcli.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cdosys.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cdfview.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\capesnpn.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\camocx.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cabview.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cabinet.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\browsewm.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\browseui.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\browser.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\browselc.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\bidispl.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\batt.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\batmeter.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\basesrv.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\avifil32.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\autolfn.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\autofmt.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\authz.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\audiosrv.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\attrib.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\faultrep.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\exts.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\extrac32.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\expsrv.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\eventlog.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\eudcedit.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\esent.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\es.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\ersvc.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\els.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dxmasf.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dxdiag.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dx8vb.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dx7vb.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dwwin.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dvdupgrd.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\duser.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dumprep.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dswave.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsuiext.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dssenh.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dssec.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsquery.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsprop.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsound3d.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsound.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dskquoui.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dskquota.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsdmoprp.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsdmo.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\ds32gt.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\drprov.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpwsockx.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpvvox.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpvsetup.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpvoice.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpvacm.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpnet.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dplayx.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\docprop2.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dnsapi.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmutil.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmusic.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmsynth.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmstyle.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmserver.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmscript.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmremote.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmloader.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmime.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmdlgs.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmcompos.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmband.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmadmin.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dllhost.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dispex.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\diskpart.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\diskcopy.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dinput8.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dinput.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\digest.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\diantz.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dhcpmon.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dgnet.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dfsshlex.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dfrgui.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dfrgsnap.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dfrgntfs.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dfrgfat.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\devmgr.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\devenum.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\defrag.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\ddrawex.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\ddraw.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\ddeshare.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dciman32.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dbnmpntw.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dbnetlib.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dbmsrpcn.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dbghelp.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\davclnt.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\datime.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dataclen.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\danim.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\d3dim700.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\d3d8.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\ctfmon.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\csrss.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\cscui.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\cscript.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\cscdll.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\cryptui.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\imeshare.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\imapi.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\ils.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\igmpagnt.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\ifmon.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\iexpress.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\idq.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\icmp.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\icm32.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\iccvid.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\iasrad.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\htui.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hotplug.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hnetwiz.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hlink.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hidserv.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hid.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hhsetup.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\help.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\h323msp.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\grpconv.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\gpkrsrc.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\glu32.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\gdi32.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\framebuf.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\forcedos.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\fontview.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\fontsub.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\fontext.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\fldrclnr.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\findstr.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\filemgmt.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\feclient.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mpg4dmod.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\moricons.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\more.com
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\modemui.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mobsync.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mobsync.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mmcshext.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mmcbase.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mmc.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mlang.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mimefilt.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\miglibnt.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\midimap.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mfcsubs.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mfc42.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mfc40u.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mf3216.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mdminst.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mciwave.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mciseq.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mciqtz32.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mciavi32.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mcastmib.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\makecab.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\magnify.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\lsass.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\lprhelp.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\lpk.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\logonui.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\localui.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\localsec.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\loadperf.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\lmrt.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\linkinfo.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\licdll.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\keymgr.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\kerberos.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\kd1394.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\kbdnec.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\kbd106.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\jgpl400.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\jgdw400.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\iyuv_32.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ixsso.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\itss.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\itircl.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\isign32.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipxwan.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipxroute.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipv6mon.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipv6.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipsmsnap.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipsecsvc.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipsecsnp.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ippromon.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipmontr.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\iphlpapi.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipconfig.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\input.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\initpki.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\inetres.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\inetppui.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\inetpp.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\inetmib1.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\imm32.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mstask.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msrle32.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msprivs.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mspatcha.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msorcl32.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msorc32r.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msnsspc.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mslbui.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msjint40.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msisip.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msimtf.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msimsg.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msimg32.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msihnd.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msiexec.exe
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msieftp.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msidle.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msident.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msi.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msgina.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdxmlc.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdmo.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdart.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msctfp.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msctf.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mscpxl32.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mscpx32r.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msconf.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mscms.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msasn1.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msapsspc.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msafd.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msacm32.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mprdim.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mprapi.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mpr.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\nddeapi.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\narrator.exe
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mydocs.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mtxclu.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msyuv.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msxml2.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msxml.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mswsock.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mswebdvd.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msw3prt.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvidctl.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvfw32.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvcrt40.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvcrt.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvcp60.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvcirt.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvbvm60.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msutb.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mstlsapi.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\powrprof.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\polstore.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\pjlmon.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ping.exe
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\pid.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\photowiz.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\perfproc.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\perfos.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\perfnet.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\perfmon.exe
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\perfdisk.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\pdh.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\pautoenr.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\packager.exe
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\osuninst.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\osk.exe
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\opengl32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\olepro32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\oleprn.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\oledlg.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\olecli32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ole32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\offfilt.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odtext32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odpdx32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odfox32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odexl32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\oddbse32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbctrac.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcp32r.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcjt32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcji32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcint.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbccu32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbccr32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbccp32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcconf.exe
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcconf.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcbcp.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcad32.exe
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbc32gt.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbc32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ocmanage.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\objsel.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\oakley.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ntvdmd.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ntshrui.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ntmssvc.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ntmsmgr.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ntmsdba.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ntmsapi.dll
log RSIT:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Pavel Lorinc at 2010-08-18 15:27:34
Systém Microsoft Windows XP Home Edition Service Pack 2
System drive C: has 54 GB (71%) free of 76 GB
Total RAM: 1406 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:27:49, on 18.8.2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17055)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Spamihilator\spamihilator.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG9\avgam.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Pavel Lorinc\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Documents and Settings\Pavel Lorinc\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\drivers\31.exe
C:\Program Files\AVG\AVG9\avgui.exe
C:\Documents and Settings\Pavel Lorinc\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavel Lorinc\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Pavel Lorinc\Desktop\RSIT.exe
C:\Program Files\trend micro\Pavel Lorinc.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.sk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [Spamihilator] "C:\Program Files\Spamihilator\spamihilator.exe"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Regedit32] C:\WINDOWS\system32\regedit.exe
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 6623758656
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://195.65.142.237/activex/AxisCamControl.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe
O23 - Service: AVG E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
--
End of file - 10639 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Automatic troubleshooting.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-854245398-299502267-839522115-1004Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-854245398-299502267-839522115-1004UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-08-18 1619296]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-09-28 110652]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll [2010-06-30 2102600]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2007-10-26 2403392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-12-11 764912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2008-12-30 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-02-18 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-02-18 79648]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ecdee021-0d17-467f-a1ff-c7a115230949}]
free-downloads.net Toolbar - C:\Program Files\free-downloads.net\tbfree.dll [2008-02-14 1555480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2007-10-26 2403392]
{ecdee021-0d17-467f-a1ff-c7a115230949} - free-downloads.net Toolbar - C:\Program Files\free-downloads.net\tbfree.dll [2008-02-14 1555480]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll [2010-06-30 2102600]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DLA"=C:\WINDOWS\System32\DLA\DLACTRLW.EXE [2005-09-28 122940]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-07-27 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-07-27 81920]
"Spamihilator"=C:\Program Files\Spamihilator\spamihilator.exe [2008-01-06 1003520]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2007-04-11 56080]
"Logitech Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2007-04-11 56080]
"Regedit32"=C:\WINDOWS\system32\regedit.exe []
"AVG9_TRAY"=C:\PROGRA~1\AVG\AVG9\avgtray.exe [2010-08-18 2065760]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2006-02-28 15360]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-09-09 90112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2010-08-18 12536]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli
scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Spamihilator\dccproc.exe"="C:\Program Files\Spamihilator\dccproc.exe:*:Enabled:dccproc"
"C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe"="C:\Program Files\Nokia\Nokia Software Updater\nsu_ui_client.exe:*:Enabled:Nokia Software Updater"
"C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="C:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"C:\Program Files\Microsoft LifeCam\LifeExp.exe"="C:\Program Files\Microsoft LifeCam\LifeExp.exe:*:Enabled:LifeExp.exe"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\QuickTime\QuickTimePlayer.exe"="C:\Program Files\QuickTime\QuickTimePlayer.exe:*:Enabled:QuickTime Player"
"C:\Program Files\Microsoft LifeCam\LifeCam.exe"="C:\Program Files\Microsoft LifeCam\LifeCam.exe:*:Enabled:LifeCam.exe"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour Service"
"C:\Program Files\Java\jre6\launch4j-tmp\frd.exe"="C:\Program Files\Java\jre6\launch4j-tmp\frd.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\DOCUME~1\PAVELL~1\LOCALS~1\Temp\NS302.tmp"="C:\DOCUME~1\PAVELL~1\LOCALS~1\Temp\NS302.tmp:*:Enabled:Microsoft Office"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\WINDOWS\TEMP\NS13.tmp"="C:\WINDOWS\TEMP\NS13.tmp:*:Enabled:Microsoft Office"
"C:\WINDOWS\TEMP\NS10.tmp"="C:\WINDOWS\TEMP\NS10.tmp:*:Enabled:Microsoft Office"
"C:\WINDOWS\TEMP\NS11.tmp"="C:\WINDOWS\TEMP\NS11.tmp:*:Enabled:Microsoft Office"
"C:\Program Files\AVG\AVG9\avgam.exe"="C:\Program Files\AVG\AVG9\avgam.exe:*:Enabled:avgam.exe"
"C:\Program Files\AVG\AVG9\avgdiagex.exe"="C:\Program Files\AVG\AVG9\avgdiagex.exe:*:Enabled:avgdiagex.exe"
"C:\Program Files\AVG\AVG9\avgemc.exe"="C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG9\avgupd.exe"="C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG9\avgnsx.exe"="C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\WINDOWS\TEMP\NS3.tmp"="C:\WINDOWS\TEMP\NS3.tmp:*:Enabled:Microsoft Office"
"C:\WINDOWS\TEMP\NS12.tmp"="C:\WINDOWS\TEMP\NS12.tmp:*:Enabled:Microsoft Office"
"C:\WINDOWS\TEMP\NS33.tmp"="C:\WINDOWS\TEMP\NS33.tmp:*:Enabled:Microsoft Office"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2010-08-18 15:27:34 ----D---- C:\rsit
2010-08-18 15:21:03 ----A---- C:\WINDOWS\system32\drivers\31.exe
2010-08-18 14:37:25 ----D---- C:\WINDOWS\Prefetch
2010-08-18 13:00:33 ----A---- C:\WINDOWS\SEC11EE.tmp
2010-08-18 12:50:39 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2010-08-18 12:50:39 ----A---- C:\WINDOWS\system32\wmpasf.dll
2010-08-18 12:50:39 ----A---- C:\WINDOWS\system32\wmp.dll
2010-08-18 12:50:39 ----A---- C:\WINDOWS\system32\wmerror.dll
2010-08-18 12:50:39 ----A---- C:\WINDOWS\system32\msxml6r.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\mp4sdmod.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\mp43dmod.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\ir50_qcx.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\ir50_qc.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\ir50_32.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\ir41_qcx.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\ir41_qc.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\hccoin.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\fsquirt.exe
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\bthserv.dll
2010-08-18 12:50:38 ----A---- C:\WINDOWS\system32\bthci.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\xpsp3res.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\xmllite.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\wshbth.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\wmphoto.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\windowscodecsext.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\windowscodecs.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\verclsid.exe
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\sdhcinst.dll
2010-08-18 12:50:37 ----A---- C:\WINDOWS\system32\photometadatahandler.dll
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\tunmp.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\sffp_sd.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\sffdisk.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\mssmbios.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\intelppm.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2010-08-18 12:50:36 ----A---- C:\WINDOWS\system32\drivers\amdk7.sys
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\xpsp2res.dll
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\pidgen.dll
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\p2pgasvc.dll
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\logman.exe
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\kbdukx.dll
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\encdec.dll
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\dxdiagn.dll
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\drivers\usb8023x.sys
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\drivers\rndismpx.sys
2010-08-18 12:50:34 ----A---- C:\WINDOWS\system32\dpcdll.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\wscntfy.exe
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\w3ssl.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\smbinst.exe
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\sbeio.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\sbe.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\pnrpnsp.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\p2psvc.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\p2pgraph.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\msftedit.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\msdadiag.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\kbdsmsno.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\kbdmlt47.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\kbdfi1.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\iuengine.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\httpapi.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\fwcfg.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\dsprpres.dll
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\drivers\ip6fw.sys
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\drivers\http.sys
2010-08-18 12:50:33 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\xpsp1res.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\xmlprovi.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\xmlprov.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\wscsvc.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\winshfhc.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\winhttp.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\winbrand.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\twext.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\spnpinst.exe
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\proxycfg.exe
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\powercfg.exe
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\mssap.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\kbdsmsfi.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\kbdinmal.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\kbdinbe1.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\fltmc.exe
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\drivers\fltmgr.sys
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\d3d9.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\cmsetacl.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\btpanui.dll
2010-08-18 12:50:32 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\xpob2res.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\strmfilt.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\p2p.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\kbdno1.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\kbdmlt48.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\kbdmaori.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\kbdinben.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\encapi.dll
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\blastcln.exe
2010-08-18 12:50:31 ----A---- C:\WINDOWS\system32\auditusr.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\winhlp32.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\twain_32.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\atmlib.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\atmadm.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\at.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\asycfilt.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\asferror.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\apphelp.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\amstream.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\alrsvc.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\alg.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\ahui.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\adsnt.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\adsmsext.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\adsldpc.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\adsldp.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\actxprxy.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\actmovie.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\activeds.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\aclui.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\system32\6to4svc.dll
2010-08-18 12:50:22 ----A---- C:\WINDOWS\regedit.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\hh.exe
2010-08-18 12:50:22 ----A---- C:\WINDOWS\explorer.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cryptnet.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cryptext.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cryptdll.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\crypt32.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\credui.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\conime.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\confmsp.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\comuid.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\comres.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\compstui.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\compatui.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\colbact.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cnbjmon.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmutil.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmstp.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmmon32.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmdl32.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmdial32.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cmcfg32.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\clusapi.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\clipsrv.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cliconfg.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cliconfg.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cisvc.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\ciodm.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cic.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cfgmgr32.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\certmgr.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\certcli.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cdosys.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cdfview.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\capesnpn.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\camocx.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cabview.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\cabinet.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\browsewm.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\browseui.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\browser.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\browselc.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\bidispl.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\batt.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\batmeter.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\basesrv.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\avifil32.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\autolfn.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\autofmt.exe
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\authz.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\audiosrv.dll
2010-08-18 12:50:21 ----A---- C:\WINDOWS\system32\attrib.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\faultrep.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\exts.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\extrac32.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\expsrv.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\eventlog.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\eudcedit.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\esent.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\es.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\ersvc.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\els.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dxmasf.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dxdiag.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dx8vb.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dx7vb.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dwwin.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dvdupgrd.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\duser.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dumprep.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dswave.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsuiext.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dssenh.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dssec.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsquery.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsprop.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsound3d.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsound.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dskquoui.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dskquota.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsdmoprp.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dsdmo.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\ds32gt.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\drprov.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpwsockx.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpvvox.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpvsetup.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpvoice.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpvacm.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpnet.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dplayx.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\docprop2.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dnsapi.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmutil.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmusic.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmsynth.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmstyle.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmserver.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmscript.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmremote.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmloader.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmime.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmdlgs.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmcompos.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmband.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dmadmin.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dllhost.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dispex.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\diskpart.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\diskcopy.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dinput8.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dinput.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\digest.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\diantz.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dhcpmon.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dgnet.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dfsshlex.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dfrgui.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dfrgsnap.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dfrgntfs.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dfrgfat.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\devmgr.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\devenum.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\defrag.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\ddrawex.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\ddraw.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\ddeshare.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dciman32.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dbnmpntw.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dbnetlib.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dbmsrpcn.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dbghelp.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\davclnt.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\datime.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\dataclen.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\danim.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\d3dim700.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\d3d8.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\ctfmon.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\csrss.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\cscui.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\cscript.exe
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\cscdll.dll
2010-08-18 12:50:20 ----A---- C:\WINDOWS\system32\cryptui.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\imeshare.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\imapi.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\ils.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\igmpagnt.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\ifmon.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\iexpress.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\idq.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\icmp.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\icm32.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\iccvid.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\iasrad.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\htui.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hotplug.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hnetwiz.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hlink.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hidserv.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hid.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\hhsetup.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\help.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\h323msp.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\grpconv.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\gpkrsrc.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\glu32.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\gdi32.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\framebuf.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\forcedos.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\fontview.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\fontsub.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\fontext.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\fldrclnr.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\findstr.exe
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\filemgmt.dll
2010-08-18 12:50:19 ----A---- C:\WINDOWS\system32\feclient.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mpg4dmod.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\moricons.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\more.com
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\modemui.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mobsync.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mobsync.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mmcshext.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mmcbase.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mmc.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mlang.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mimefilt.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\miglibnt.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\midimap.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mfcsubs.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mfc42.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mfc40u.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mf3216.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mdminst.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mciwave.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mciseq.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mciqtz32.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mciavi32.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\mcastmib.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\makecab.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\magnify.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\lsass.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\lprhelp.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\lpk.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\logonui.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\localui.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\localsec.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\loadperf.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\lmrt.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\linkinfo.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\licdll.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\keymgr.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\kerberos.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\kd1394.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\kbdnec.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\kbd106.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\jgpl400.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\jgdw400.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\iyuv_32.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ixsso.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\itss.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\itircl.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\isign32.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipxwan.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipxroute.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipv6mon.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipv6.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipsmsnap.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipsecsvc.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipsecsnp.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ippromon.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipmontr.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\iphlpapi.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\ipconfig.exe
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\input.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\initpki.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\inetres.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\inetppui.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\inetpp.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\inetmib1.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-08-18 12:50:18 ----A---- C:\WINDOWS\system32\imm32.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mstask.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msrle32.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msprivs.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mspatcha.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msorcl32.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msorc32r.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msnsspc.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mslbui.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msjint40.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msisip.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msimtf.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msimsg.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msimg32.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msihnd.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msiexec.exe
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msieftp.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msidle.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msident.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msi.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msgina.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdxmlc.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdmo.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msdart.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msctfp.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msctf.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mscpxl32.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mscpx32r.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msconf.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mscms.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msasn1.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msapsspc.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msafd.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\msacm32.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mprdim.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mprapi.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mpr.dll
2010-08-18 12:50:17 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\nddeapi.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\narrator.exe
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mydocs.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mtxclu.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msyuv.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msxml2.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msxml.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mswsock.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mswebdvd.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msw3prt.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvidctl.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvfw32.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvcrt40.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvcrt.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvcp60.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvcirt.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msvbvm60.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\msutb.dll
2010-08-18 12:50:16 ----A---- C:\WINDOWS\system32\mstlsapi.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\powrprof.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\polstore.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\pjlmon.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ping.exe
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\pid.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\photowiz.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\perfproc.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\perfos.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\perfnet.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\perfmon.exe
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\perfdisk.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\pdh.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\pautoenr.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\packager.exe
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\osuninst.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\osk.exe
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\opengl32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\olepro32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\oleprn.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\oledlg.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\olecli32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ole32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\offfilt.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odtext32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odpdx32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odfox32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odexl32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\oddbse32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbctrac.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcp32r.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcjt32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcji32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcint.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbccu32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbccr32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbccp32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcconf.exe
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcconf.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcbcp.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbcad32.exe
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbc32gt.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\odbc32.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ocmanage.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\objsel.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\oakley.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ntvdmd.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ntshrui.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ntmssvc.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ntmsmgr.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ntmsdba.dll
2010-08-18 12:50:15 ----A---- C:\WINDOWS\system32\ntmsapi.dll
Stahnete a ulozte na plochu Combofix 
Musim ten bohuzel od PC, budu tu az vecer tak kouknu na log at to domazem co zustalo 
