lucetflo

J'arrive plus à avoir Internet sur l'ordi infecté, je passe donc par un autre ordi. A priori, j'ai un combofix périmé ? Pendant l'opération, il a redémarré une fois Mais ca a semblé marché... le fichier cache ne revient plus sur la clé !!!! Finit ? En tout cas bravo les gars .... vous travaillez comme des pros.... (et je referai appel avec vous.... l'Asie c'est bourré de virus ). ComboFix 09-09-24.01 - SFE 07/10/2009 20:22.3.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.874.33.1033.18.511.344 [GMT 2:00] Running from: c:\documents and settings\SFE\Desktop\ComboFix.exe Command switches used :: c:\documents and settings\SFE\Desktop\CFScript.txt AV: BitDefender Antivirus *On-access scanning disabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB} * Created a new restore point . - REDUCED FUNCTIONALITY MODE - file zipped: c:\windows\system32\wbem\wmisrsv.exe . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\system32\wbem\wmisrsv.exe . ((((((((((((((((((((((((( Files Created from 2009-09-07 to 2009-10-07 ))))))))))))))))))))))))))))))) . No new files created in this timespan . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-10-07 18:07 . 2005-07-24 01:47 11656 ----a-w- c:\windows\system32\drivers\minidrv32.sys 2009-07-13 06:36 . 2005-07-24 00:25 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-07-13 06:36 . 2005-07-24 00:25 19096 ----a-w- c:\windows\system32\drivers\mbam.sys . ------- Sigcheck ------- [-] 2009-01-15 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys [-] 2009-01-15 . D3E6E733F4CE1449EB09E5351AF36607 . 2352256 . . [5.1.2600.5657] . . c:\windows\system32\ntoskrnl.exe [-] 2009-01-15 . 0FB0036ACEA470CC670C4919FE53007F . 78360 . . [7.2.6001.788] . . c:\windows\system32\wuauclt.exe [-] 2009-01-15 . 58B388EA22C89493F96CEDD39D91FF09 . 1524736 . . [6.00.2900.5634] . . c:\windows\explorer.exe [-] 2009-01-15 . 362BC5AF8EAF712832C58CC13AE05750 . 1614848 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll [-] 2009-01-15 . 90F970A51E503B2931CED98E5BCDF375 . 2229120 . . [5.1.2600.5657] . . c:\windows\system32\ntkrnlpa.exe . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "LClock"="c:\program files\LClock\LClock.exe" [2004-09-19 65536] "SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2009-01-15 208952] "PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2009-01-15 455168] "PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2009-01-15 455168] "laokey.exe"="c:\program files\LSWin\LaoKey.exe" [2000-12-05 155144] "BluetoothAuthenticationAgent"="bthprops.cpl" - c:\windows\system32\bthprops.cpl [2009-01-15 110592] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2009-01-15 15360] "LClock"="c:\program files\LClock\LClock.exe" [2004-09-19 65536] c:\documents and settings\SFE\Start Menu\Programs\Startup\ Anti-Autorun.lnk - c:\program files\Prg Chris\Anti-Autorun.inf\Anti-Autorun.inf.exe [2005-7-17 251904] [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= S2 WMISRSV;WMI Security Service;"c:\windows\system32\wbem\wmisrsv.exe" --> c:\windows\system32\wbem\wmisrsv.exe [?] S3 dnapdjch;dnapdjch;\??\c:\windows\System32\Drivers\dnapdjch.sys --> c:\windows\System32\Drivers\dnapdjch.sys [?] S3 minidrv32;MiniPort Driver Hub;c:\windows\system32\drivers\minidrv32.sys [24/07/2005 03:47 11656] . . ------- Supplementary Scan ------- . IE: E&xport to Microsoft Excel - c:\progra~1\Microsoft Office\OFFICE11\EXCEL.EXE/3000 FF - ProfilePath - c:\documents and settings\SFE\Application Data\Mozilla\Firefox\Profiles\amgs5lr4.default\ FF - prefs.js: browser.search.selectedEngine - Google . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-10-07 20:23 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . --------------------- DLLs Loaded Under Running Processes --------------------- - - - - - - - > 'explorer.exe'(1908) c:\windows\system32\SHDOCVW.dll c:\program files\LSWin\KMap.dll c:\windows\system32\MSVCRT40.dll c:\windows\system32\msi.dll c:\program files\LClock\LC.dll c:\windows\system32\wpdshserviceobj.dll c:\windows\system32\portabledevicetypes.dll c:\windows\system32\portabledeviceapi.dll . ------------------------ Other Running Processes ------------------------ . c:\windows\system32\rundll32.exe . ************************************************************************** . Completion time: 2009-10-07 20:24 - machine was rebooted ComboFix-quarantined-files.txt 2009-10-07 18:24 ComboFix2.txt 2009-09-26 08:32 ComboFix3.txt 2009-09-26 07:48 Pre-Run: 36 382 269 440 bytes free Post-Run: 36 359 819 264 bytes free 101

bon les gars, désolé du silence radio, cause : typhon, inondations, situation de crise. je m'y remets et je vous tiens au courant

Voily voila.... les pros. Encore du boulot. Ca à bien marché. ComboFix 09-09-24.01 - SFE 26/09/2009 10:28.2.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.874.33.1033.18.511.357 [GMT 2:00] Running from: c:\documents and settings\SFE\Desktop\ComboFix.exe Command switches used :: c:\documents and settings\SFE\Desktop\WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe AV: BitDefender Antivirus *On-access scanning disabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB} . ((((((((((((((((((((((((( Files Created from 2009-08-26 to 2009-09-26 ))))))))))))))))))))))))))))))) . No new files created in this timespan . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-09-26 08:18 . 2005-07-24 01:47 11656 ----a-w- c:\windows\system32\drivers\minidrv32.sys 2009-09-05 05:45 . 2005-07-23 17:56 580096 --sh--r- c:\windows\system32\wbem\wmisrsv.exe 2009-07-13 06:36 . 2005-07-24 00:25 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-07-13 06:36 . 2005-07-24 00:25 19096 ----a-w- c:\windows\system32\drivers\mbam.sys . ------- Sigcheck ------- [-] 2009-01-15 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys [-] 2009-01-15 . D3E6E733F4CE1449EB09E5351AF36607 . 2352256 . . [5.1.2600.5657] . . c:\windows\system32\ntoskrnl.exe [-] 2009-01-15 . 0FB0036ACEA470CC670C4919FE53007F . 78360 . . [7.2.6001.788] . . c:\windows\system32\wuauclt.exe [-] 2009-01-15 . 58B388EA22C89493F96CEDD39D91FF09 . 1524736 . . [6.00.2900.5634] . . c:\windows\explorer.exe [-] 2009-01-15 . 362BC5AF8EAF712832C58CC13AE05750 . 1614848 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll [-] 2009-01-15 . 90F970A51E503B2931CED98E5BCDF375 . 2229120 . . [5.1.2600.5657] . . c:\windows\system32\ntkrnlpa.exe . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "LClock"="c:\program files\LClock\LClock.exe" [2004-09-19 65536] "SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2009-01-15 208952] "PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2009-01-15 455168] "PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2009-01-15 455168] "laokey.exe"="c:\program files\LSWin\LaoKey.exe" [2000-12-05 155144] "BluetoothAuthenticationAgent"="bthprops.cpl" - c:\windows\system32\bthprops.cpl [2009-01-15 110592] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2009-01-15 15360] "LClock"="c:\program files\LClock\LClock.exe" [2004-09-19 65536] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "_nltide_2"="shell32" [X] c:\documents and settings\SFE\Start Menu\Programs\Startup\ Anti-Autorun.lnk - c:\program files\Prg Chris\Anti-Autorun.inf\Anti-Autorun.inf.exe [2005-7-17 251904] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ytaxzqkk.sys] @="" [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 "FirewallOverride"=dword:00000001 "AntiVirusDisableNotify"=dword:00000001 "FirewallDisableNotify"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\WINDOWS\\system32\\wbem\\wmisrsv.exe"= "e:\\CACHE-20194029\\data.sys"= R2 WMISRSV;WMI Security Service;c:\windows\system32\wbem\wmisrsv.exe [23/07/2005 19:56 580096] R3 minidrv32;MiniPort Driver Hub;c:\windows\system32\drivers\minidrv32.sys [24/07/2005 03:47 11656] S3 dnapdjch;dnapdjch;\??\c:\windows\System32\Drivers\dnapdjch.sys --> c:\windows\System32\Drivers\dnapdjch.sys [?] . . ------- Supplementary Scan ------- . IE: E&xport to Microsoft Excel - c:\progra~1\Microsoft Office\OFFICE11\EXCEL.EXE/3000 FF - ProfilePath - c:\documents and settings\SFE\Application Data\Mozilla\Firefox\Profiles\amgs5lr4.default\ FF - prefs.js: browser.search.selectedEngine - Google . - - - - ORPHANS REMOVED - - - - HKLM-RunOnce-<NO NAME> - (no file) ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-09-26 10:30 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... c:\windows\system32\wbem\wmisrsv.exe [1444] 0x81A0C020 scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . --------------------- DLLs Loaded Under Running Processes --------------------- - - - - - - - > 'explorer.exe'(2528) c:\windows\system32\SHDOCVW.dll c:\program files\LSWin\KMap.dll c:\windows\system32\MSVCRT40.dll c:\windows\system32\msi.dll c:\program files\LClock\LC.dll c:\windows\system32\wpdshserviceobj.dll c:\windows\system32\portabledevicetypes.dll c:\windows\system32\portabledeviceapi.dll . Completion time: 2009-09-26 10:32 ComboFix-quarantined-files.txt 2009-09-26 08:31 ComboFix2.txt 2009-09-26 07:48 Pre-Run: 36 419 584 000 bytes free Post-Run: 36 400 734 208 bytes free WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect 108

ok les gars, je vais faire ca ajdh

ComboFix 09-09-24.01 - SFE 28/09/2009 22:17.1.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.3.874.33.1033.18.511.346 [GMT 2:00] Running from: c:\documents and settings\SFE\Desktop\ComboFix.exe AV: BitDefender Antivirus *On-access scanning disabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB} * Created a new restore point WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !! . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\system32\secupdat.dat . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Service_Passthru ((((((((((((((((((((((((( Files Created from 2009-08-28 to 2009-09-28 ))))))))))))))))))))))))))))))) . No new files created in this timespan . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-09-05 05:45 . 2005-07-23 17:56 580096 --sh--r- c:\windows\system32\wbem\wmisrsv.exe 2009-07-13 06:36 . 2005-07-24 00:25 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-07-13 06:36 . 2005-07-24 00:25 19096 ----a-w- c:\windows\system32\drivers\mbam.sys . ------- Sigcheck ------- [-] 2009-01-15 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys [-] 2009-01-15 . D3E6E733F4CE1449EB09E5351AF36607 . 2352256 . . [5.1.2600.5657] . . c:\windows\system32\ntoskrnl.exe [-] 2009-01-15 . 0FB0036ACEA470CC670C4919FE53007F . 78360 . . [7.2.6001.788] . . c:\windows\system32\wuauclt.exe [-] 2009-01-15 . 58B388EA22C89493F96CEDD39D91FF09 . 1524736 . . [6.00.2900.5634] . . c:\windows\explorer.exe [-] 2009-01-15 . 362BC5AF8EAF712832C58CC13AE05750 . 1614848 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll [-] 2009-01-15 . 90F970A51E503B2931CED98E5BCDF375 . 2229120 . . [5.1.2600.5657] . . c:\windows\system32\ntkrnlpa.exe . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "LClock"="c:\program files\LClock\LClock.exe" [2004-09-19 65536] "SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2009-01-15 208952] "PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2009-01-15 455168] "PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2009-01-15 455168] "laokey.exe"="c:\program files\LSWin\LaoKey.exe" [2000-12-05 155144] "BluetoothAuthenticationAgent"="bthprops.cpl" - c:\windows\system32\bthprops.cpl [2009-01-15 110592] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2009-01-15 15360] "LClock"="c:\program files\LClock\LClock.exe" [2004-09-19 65536] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "_nltide_2"="shell32" [X] c:\documents and settings\SFE\Start Menu\Programs\Startup\ Anti-Autorun.lnk - c:\program files\Prg Chris\Anti-Autorun.inf\Anti-Autorun.inf.exe [2005-7-17 251904] [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 "FirewallOverride"=dword:00000001 "AntiVirusDisableNotify"=dword:00000001 "FirewallDisableNotify"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\WINDOWS\\system32\\wbem\\wmisrsv.exe"= "e:\\CACHE-20194029\\data.sys"= R2 WMISRSV;WMI Security Service;c:\windows\system32\wbem\wmisrsv.exe [23/07/2005 19:56 580096] R3 minidrv32;MiniPort Driver Hub;c:\windows\system32\drivers\minidrv32.sys [24/07/2005 03:47 11656] S3 dnapdjch;dnapdjch;\??\c:\windows\System32\Drivers\dnapdjch.sys --> c:\windows\System32\Drivers\dnapdjch.sys [?] . . ------- Supplementary Scan ------- . IE: E&xport to Microsoft Excel - c:\progra~1\Microsoft Office\OFFICE11\EXCEL.EXE/3000 FF - ProfilePath - c:\documents and settings\SFE\Application Data\Mozilla\Firefox\Profiles\amgs5lr4.default\ FF - prefs.js: browser.search.selectedEngine - Google . - - - - ORPHANS REMOVED - - - - SafeBoot-ytaxzqkk.sys ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-09-28 22:21 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... c:\windows\system32\wbem\wmisrsv.exe [1324] 0x820EA658 scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . --------------------- DLLs Loaded Under Running Processes --------------------- - - - - - - - > 'explorer.exe'(3324) c:\windows\system32\SHDOCVW.dll c:\program files\LSWin\KMap.dll c:\windows\system32\MSVCRT40.dll c:\windows\system32\msi.dll c:\program files\LClock\LC.dll c:\windows\system32\wpdshserviceobj.dll c:\windows\system32\portabledevicetypes.dll c:\windows\system32\portabledeviceapi.dll . ------------------------ Other Running Processes ------------------------ . c:\windows\system32\rundll32.exe . ************************************************************************** . Completion time: 2009-09-28 22:22 - machine was rebooted ComboFix-quarantined-files.txt 2009-09-28 20:22 Pre-Run: 36 508 438 528 bytes free Post-Run: 36 454 539 264 bytes free 111

Oui j'ai remarqué aussi. L'année 2547.... c'est en fait l'année boudhique (je suis au Laos ). COncernant le changement 2007 puis 2005.... j''avoue c'est un mystère... qui m'a intrigué moi aussi en lisant le log. .... En tout cas vous lisez attentivement.... Bravo, pour le temps que vous passez à m'aider;

Voilà cher Appolo, les infos.... du boulot en perspective. Un grand merci à toi

info.txt logfile of random's system information tool 1.06 2005-07-27 05:41:36 ======Uninstall list====== -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf 7-Zip 4.64-->"C:\Program Files\7-Zip\Uninstall.exe" CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe" Kels' CPL Lite Pack!-->rundll32.exe advpack.dll,LaunchINFSection CPLBonus.inf,uninstall Lao Script for Windows-->C:\Program Files\LSWin\uninst.exe LClock-->C:\Program Files\LClock\Uninstall.exe Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Microsoft Office Professional Edition 2003-->MsiExec.exe /I{90110409-6000-11D3-8CFE-0150048383C9} Mozilla Firefox (3.5.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe" VideoLAN VLC media player 0.8.4a-->C:\Program Files\VideoLAN\VLC\uninstall.exe VirusTotal Uploader-->"C:\Program Files\VirusTotalUploader\uninstall.exe" ======Hosts File====== 127.0.0.1 msnfix.changelog.fr 127.0.0.1 www.incodesolutions.com 127.0.0.1 virusinfo.prevx.com 127.0.0.1 download.bleepingcomputer.com 127.0.0.1 www.dazhizhu.cn 127.0.0.1 foro.noticias3d.com 127.0.0.1 www.nabble.com 127.0.0.1 lurker.clamav.net 127.0.0.1 lexikon.ikarus.at 127.0.0.1 research.sunbelt-software.com ======Security center information====== AV: BitDefender Antivirus (disabled) ======System event log====== Computer Name: ILLUSION-DED233 Event Code: 4 Message: Broadcom 570x Gigabit Integrated Controller: The network link is down. Check to make sure the network cable is properly connected. Record Number: 81 Source Name: b57w2k Time Written: 20050723235711.000000+420 Event Type: warning User: Computer Name: ILLUSION-DED233 Event Code: 4 Message: Broadcom 570x Gigabit Integrated Controller: The network link is down. Check to make sure the network cable is properly connected. Record Number: 62 Source Name: b57w2k Time Written: 20050720185602.000000+420 Event Type: warning User: Computer Name: ILLUSION-DED233 Event Code: 20 Message: Printer Driver Microsoft Office Document Image Writer Driver for Windows NT x86 Version-3 was added or updated. Files:- mdigraph.dll, mdiui.dll, mdiui.dll. Record Number: 45 Source Name: Print Time Written: 20050717193503.000000+420 Event Type: warning User: NT AUTHORITY\SYSTEM Computer Name: ILLUSION-DED233 Event Code: 4 Message: Broadcom 570x Gigabit Integrated Controller: The network link is down. Check to make sure the network cable is properly connected. Record Number: 17 Source Name: b57w2k Time Written: 20050717191333.000000+420 Event Type: warning User: Computer Name: MACHINENAME Event Code: 4 Message: Broadcom 570x Gigabit Integrated Controller: The network link is down. Check to make sure the network cable is properly connected. Record Number: 5 Source Name: b57w2k Time Written: 20050718015010.000000+420 Event Type: warning User: =====Application event log===== Computer Name: ILLUSION-DED233 Event Code: 5603 Message: A provider, Rsop Planning Mode Provider, has been registered in the WMI namespace, root\RSOP, but did not specify the HostingModel property. This provider will be run using the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Ensure that provider has been reviewed for security behavior and update the HostingModel property of the provider registration to an account with the least privileges possible for the required functionality. Record Number: 15 Source Name: WinMgmt Time Written: 20050717185637.000000+420 Event Type: warning User: NT AUTHORITY\SYSTEM Computer Name: ILLUSION-DED233 Event Code: 5603 Message: A provider, Rsop Planning Mode Provider, has been registered in the WMI namespace, root\RSOP, but did not specify the HostingModel property. This provider will be run using the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Ensure that provider has been reviewed for security behavior and update the HostingModel property of the provider registration to an account with the least privileges possible for the required functionality. Record Number: 14 Source Name: WinMgmt Time Written: 20050717185637.000000+420 Event Type: warning User: NT AUTHORITY\SYSTEM Computer Name: ILLUSION-DED233 Event Code: 63 Message: A provider, CmdTriggerConsumer, has been registered in the WMI namespace, Root\cimv2, to use the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Record Number: 13 Source Name: WinMgmt Time Written: 20050717185637.000000+420 Event Type: warning User: NT AUTHORITY\SYSTEM Computer Name: ILLUSION-DED233 Event Code: 63 Message: A provider, CmdTriggerConsumer, has been registered in the WMI namespace, Root\cimv2, to use the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Record Number: 12 Source Name: WinMgmt Time Written: 20050717185636.000000+420 Event Type: warning User: NT AUTHORITY\SYSTEM Computer Name: ILLUSION-DED233 Event Code: 63 Message: A provider, HiPerfCooker_v1, has been registered in the WMI namespace, Root\WMI, to use the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Record Number: 11 Source Name: WinMgmt Time Written: 20050717185634.000000+420 Event Type: warning User: NT AUTHORITY\SYSTEM ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 13 Stepping 6, GenuineIntel "PROCESSOR_REVISION"=0d06 "NUMBER_OF_PROCESSORS"=1 "DEVMGR_SHOW_NONPRESENT_DEVICES"=1 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP -----------------EOF-----------------

Voici le log.txt Logfile of random's system information tool 1.06 (written by random/random) Run by SFE at 2005-07-27 05:41:29 Microsoft Windows XP Professional Service Pack 3 System drive C: has 35 GB (91%) free of 38 GB Total RAM: 511 MB (37% free) HijackThis download failed ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}] Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "IMJPMIG8.1"=C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2009-01-16 208952] "PHIME2002ASync"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2009-01-16 455168] "PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2009-01-16 455168] "laokey.exe"=C:\Program Files\LSWin\LaoKey.exe [2000-12-06 155144] "BluetoothAuthenticationAgent"=bthprops.cpl,,BluetoothAuthenticationAgent [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce] ""= [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2009-01-16 15360] "LClock"=C:\Program Files\LClock\LClock.exe [2004-09-19 65536] "SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088] C:\Documents and Settings\SFE\Start Menu\Programs\Startup Anti-Autorun.lnk - C:\Program Files\Prg Chris\Anti-Autorun.inf\Anti-Autorun.inf.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-01-16 241704] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2009-01-16 133632] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=255 "NoInstrumentation"=1 "NoDriveAutoRun"=3F3F3F3F "HonorAutoRunSetting"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"= "NoDriveAutoRun"= "NoDriveTypeAutoRun"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\WINDOWS\system32\wbem\wmisrsv.exe"="C:\WINDOWS\system32\wbem\wmisrsv.exe:*:Microsoft Enabled" "E:\CACHE-20194029\data.sys"="E:\CACHE-20194029\data.sys:*:Microsoft Enabled" "F:\CACHE-20194029\data.sys"="F:\CACHE-20194029\data.sys:*:Microsoft Enabled" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" ======List of files/folders created in the last 1 months====== 2009-01-16 01:40:31 ----RASH---- C:\NTDETECT.COM 2009-01-16 01:40:31 ----RA---- C:\WINDOWS\system32\kbdnec.dll 2009-01-16 01:40:31 ----R---- C:\WINDOWS\system32\rsop.msc 2009-01-16 01:40:31 ----R---- C:\WINDOWS\system32\perfmon.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\winhlp32.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\winhelp.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\win.ini 2009-01-16 01:40:31 ----A---- C:\WINDOWS\vmmreg32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\twunk_32.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\twunk_16.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\twain_32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\twain.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\zipfldr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\xpsp3res.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\xpsp2res.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\xpsp1res.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\xpob2res.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\xmlprovi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\xmlprov.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\xmllite.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\xenroll.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\xcopy.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\xactsrv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wzcdlg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wups2.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wupdmgr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wudfx.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wudfsvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wudfplatform.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wudfhost.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wudfcoinstaller.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wucltui.dll.mui 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wuapi.dll.mui 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wtsapi32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wstdecod.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wsock32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wsnmp32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wshtcpip.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\WshRm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wshnetbs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wshisn.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wship6.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wshext.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wshcon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wshatm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wsecedit.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wscsvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wscript.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wscntfy.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ws2help.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ws2_32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wpnpinst.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\WPDSp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wpdshserviceobj.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wpdshextres.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wpdshextautoplay.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wpdshext.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wpdmtpus.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wpdmtp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wpdconns.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wpd_ci.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wpabaln.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wowexec.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wowdeb.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wow32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmvxencd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmvsencd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmvsdecd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmvencod.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmvdmoe2.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmvdmod.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmvdecod.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmvcore.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmvadve.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmvadvd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmstream.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmspdmoe.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmspdmod.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmsdmoe2.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmsdmoe.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmsdmod.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmpui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmpsrcwp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmpshell.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmpps.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmpmde.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmploc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmphoto.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\WMPEncEn.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmpeffects.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmpdxm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmpcore.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmpcd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmpasf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmnetmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmiscmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmiprop.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmidx.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmerror.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmerrenu.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmdrmsdk.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmdrmnet.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmdrmdev.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmdmps.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmdmlog.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmasf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmadmoe.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wmadmod.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wlnotify.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wldap32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wlanapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wkssvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winver.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wintrust.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winstrm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winsta.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winsrv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winspool.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winsock.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winshfhc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winscard.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winrnr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winntbbu.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winnls.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winmsd.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winmm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winlogon.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winipsec.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wininet.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winhttp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winhlp32.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winfxdocobj.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winfax.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\windowscodecsext.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\windowscodecs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\winbrand.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\win87em.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\win32spl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\win.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wifeman.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wiavusd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wiavideo.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wiashext.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wiaservc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wiascr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wiadss.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wiadefui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wiaacmgr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\WgaTray.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\WgaLogon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wextract.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\webvw.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\webhits.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\webclnt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\webcheck.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wdigest.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wdfmgr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wdfapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wavemsp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\w3ssl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\w32topl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\w32tm.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\w32time.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vwipxspx.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vwipxspx.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vssvc.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vssapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vssadmin.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vss_ps.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vjoy.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\VistaCG.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vga64k.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vga256.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vga.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vfpodbc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\version.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\verifier.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\verifier.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\verclsid.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ver.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vdmredir.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vdmdbg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vcdex.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vbscript.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\vbajet32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\uxtheme.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\uWDF.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\utilman.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\utildll.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usp10.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\userinit.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\userenv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\user32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\user.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usbmon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\urlmon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\url.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ureg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ups.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\upnpui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\upnphost.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\upnpcont.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\upnp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\untfs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\unlodctr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\uniplat.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\unimdmat.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\umpnpmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\umdmxfrm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\umandlg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ulib.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\uireg.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ufat.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\udhisapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tzchange.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\typeperf.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\typelib.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\txflog.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\twext.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tspkg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tsddd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tsd32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tsappcmp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\trkwks.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tree.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\traffic.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tracert6.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tracert.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tracerpt.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tourstart.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\toolhelp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tlntsvrp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tlntsvr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tlntsess.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tlntadmn.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\themeui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tftp.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\termmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\telnet.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tcpsvcs.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tcpmonui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tcpmon.ini 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tcpmon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tcpmib.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tcmsetup.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\taskmgr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\taskman.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tasklist.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\taskkill.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tapiui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tapisrv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tapiperf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tapi32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tapi3.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\t2embed.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\systray.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\systeminfo.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\syssetup.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sysocmgr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\syskey.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sysinv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sysedit.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\syncui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\synceng.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\syncapp.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sxs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\swprv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\svcpack.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\svchost.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\subst.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\strmfilt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\strmdll.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\storage.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\stobject.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\stimon.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sti_ci.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sti.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ssdpsrv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ssdpapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\srvsvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sqlwoa.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sqlwid.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sqlunirl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sqlsrv32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sprestrt.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\spoolsv.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\spoolss.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\spnpinst.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\spiisupd.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sort.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\softpub.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\snmpsnap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\snmpapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\smss.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\smlogsvc.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\smlogcfg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\smbinst.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\slbrccsp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\slbiop.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\slbcsp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\slayerxp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\skeys.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\skdll.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sisbkup.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sigverif.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sigtab.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shutdown.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shsvcs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shscrap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shrpubw.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shmgrate.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shmedia.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shlwapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shimgvw.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shimeng.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shgina.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shfolder.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shellstyle.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shell32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shell.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shdocvw.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\shdoclc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\share.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sfmapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sfcfiles.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sfc_os.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sfc.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sfc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\setver.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\setupold.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\setupn.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\setupdll.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\setupapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\setup.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sethc.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\serwvdrv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\services.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\services.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\serialui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\senscfg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sensapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sens.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sendmail.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sendcmsg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\security.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\secur32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\SecProc_ssp_isv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\SecProc_ssp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\SecProc_isv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\SecProc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\secpol.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\seclogon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\secedit.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sdpblb.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sdbinst.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\scrrun.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\scrobj.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\scriptpw.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\scredir.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sclgntfy.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\schtasks.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\schannel.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\scesrv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\scecli.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sccsccp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sccbase.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\scardsvr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\scardssp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\scarddlg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sc.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sbeio.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sbe.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\savedump.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\samsrv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\samlib.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\runonce.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rundll32.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\runas.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rtutils.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rtm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rtipxmib.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rtcshare.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsvpsp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsvpperf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsvpmsg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsvp.ini 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsvp.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rspndr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsopprov.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsnotify.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsmui.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsmsink.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsmps.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsm.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rshx32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsh.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsfsaps.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rsaenh.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rpcss.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rpcrt4.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rpcns4.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\routetab.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\routemon.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\route.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rnr20.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\RmActivate_ssp_isv.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\RmActivate_ssp.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\RmActivate_isv.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\RmActivate.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\riched32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\riched20.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rexec.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\resutils.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\replace.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rend.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\relog.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\regwizc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\regwiz.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\regsvr32.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\regsvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\regedt32.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\regapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\reg.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\redir.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\recover.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rdpdd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rcp.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rcimlby.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rcbdyctl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rastls.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rastapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasser.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rassapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasrad.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasqec.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasppp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasphone.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasmxs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasmontr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasmans.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasman.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasdlg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasdial.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasctrs.ini 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasctrs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\raschap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasautou.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasauto.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasapi32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\rasadhlp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\qutil.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\query.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\quartz.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\qosname.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\qfecheck.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\qedwipes.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\qedit.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\qdvd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\qdv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\qcliprov.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\qcap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\qasf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\qagentrt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\qagent.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pubprn.vbs 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pstorsvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pstorec.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\psnppagn.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pschdprf.ini 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pschdprf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\psbase.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\psapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\proxycfg.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\proquota.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\progman.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\profmap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\prodspec.ini 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\prnqctl.vbs 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\prnport.vbs 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\prnmngr.vbs 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\prnjobs.vbs 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\prndrvr.vbs 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\prncnfg.vbs 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\printui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\print.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\prflbmsg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\presetup.cmd 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\powrprof.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\powercfg.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\portabledevicewmdrm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\portabledevicewiacompat.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\portabledevicetypes.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\portabledeviceclassextension.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\portabledeviceapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\polstore.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pnrpnsp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pngfilt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pmspl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\plustab.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pintool.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ping6.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ping.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pifmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pidgen.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\photowiz.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\photometadatahandler.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\perfwci.ini 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\perfts.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\perfproc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\perfos.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\perfnw.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\perfnet.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\perfmon.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\perffilt.ini 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\perfdisk.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\perfctrs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\perfci.ini 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pentnt.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pdh.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pautoenr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pathping.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\panmap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\pagefileconfig.vbs 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\packager.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\p2psvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\p2pnetsh.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\p2pgraph.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\p2pgasvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\p2p.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\osuninst.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\osuninst.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\osk.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\opengl32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\openfiles.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\onex.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\olethk32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\olesvr32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\olesvr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\olepro32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\oleprn.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\oledlg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\olecnv32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\olecli32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\olecli.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\oleaut32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\oleaccrc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\oleacc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ole32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ole2nls.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ole2disp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ole2.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\offfilt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odtext32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odpdx32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odfox32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odexl32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\oddbse32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbctrac.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbcp32r.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbcjt32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbcji32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbcint.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbccu32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbccr32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbccp32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbcconf.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbcconf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbcbcp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbcad32.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbc32gt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbc32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\odbc16gt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ocmanage.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\occache.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\objsel.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\oakley.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nwwks.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nwscript.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nwprovau.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nwevent.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nwcfg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nwapi32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nwapi16.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nw16.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntvdmd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntvdm.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntshrui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntsdexts.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntsd.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntprint.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntoskrnl.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntmssvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntmsoprq.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntmsmgr.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntmsmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntmsevt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntmsdba.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntmsapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntmarta.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntlsapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntlanui2.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntlanui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntlanman.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntdsbcli.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntdsapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntdll.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ntbackup.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nslookup.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\npptools.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\notepad.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\normaliz.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nlsfunc.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nlsdl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nlhtml.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\newdev.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netui2.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netui1.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netui0.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netstat.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netshell.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netsh.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netsetup.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netrap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netplwiz.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netmsg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netman.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netlogon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netid.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\neth.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netevent.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netdde.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netcfgx.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netapi32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\netapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\net1.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\net.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nddenb32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nddeapir.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nddeapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ncxpnt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ncobjapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\nbtstat.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\narrhook.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\narrator.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\napstat.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\napmontr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\napipsec.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mydocs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mycomput.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\muweb.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mucltui.dll.mui 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mucltui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mtxclu.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msxmlr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msxml6r.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msxml6.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msxml4r.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msxml4.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msxml3r.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msxml3.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msxml2r.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msxml2.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msxml.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msxbde40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mswstr10.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mswsock.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mswmdm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mswebdvd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mswdat10.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msw3prt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msvideo.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msvidctl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msvidc32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msvfw32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msvcrt40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msvcrt20.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msvcrt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msvcp60.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msvcp50.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msvcirt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msvbvm60.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msvbvm50.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msv1_0.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msutb.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mstlsapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mstime.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mstext40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msswchx.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msswch.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mssip32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mssign32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msshavmsg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mssha.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msscp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mssap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msrle32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msrepl40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msrecr40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msrd3x40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msrd2x40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msrclr40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msrating.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msratelc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msr2cenu.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msr2c.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msprivs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msports.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mspmsp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mspmsnsv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mspbde40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mspatcha.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msorcl32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msorc32r.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msobjs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msnsspc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msnetobj.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msltus40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msls31.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mslbui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msjtes40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msjter40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msjint40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msjetoledb40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msjet40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msisip.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\MSIMTF.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msimsg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msimg32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msihnd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msiexec.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msieftp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msidntld.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msidle.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msident.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mshtmler.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mshtmled.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mshtml.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mshta.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msgsvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msgina.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msftedit.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msfeedssync.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msfeedsbs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msfeeds.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msexcl40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msexch40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msencode.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msdxmlc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msdrm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msdmo.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msdelta.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msdart.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msdadiag.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\MSCTFP.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\MSCTF.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mscpxl32.dLL 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mscpx32r.dLL 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mscms.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mscdexnt.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mscat32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msaudite.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msasn1.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msapsspc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msafd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msacm32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msacm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\msaatext.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mrinfo.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqutil.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqupgrd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqtrig.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqtgsvc.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqsvc.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqsnap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqsec.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqrtdep.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqrt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqqm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqperf.ini 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqperf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqoa.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqlogmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqise.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqgentr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqdscli.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqcertui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqbkup.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mqad.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mprui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mprmsg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mprdim.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mprddm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mprapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mpr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mpnotify.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mpg4dmod.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mpg4decd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mp4sdmod.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mp4sdecd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mp43dmod.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mp43decd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mountvol.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\moricons.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\more.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\modex.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\modemui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mode.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mobsync.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mobsync.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mmutilse.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mmsystem.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mmdrv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mmcshext.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mmcperf.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mmcndmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mmcfxcommon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mmcex.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mmcbase.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mmc.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mll_qic.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mll_mtf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mll_hp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mlang.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mimefilt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\migpwd.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\miglibnt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\midimap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\microsoft.managementconsole.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mgmtapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mfplat.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mfcsubs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mfc42u.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mfc42.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mfc40u.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mfc40.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mf3216.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mem.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mdminst.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mdhcp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mciwave.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mciseq.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mciqtz32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mciole32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mciole16.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mcicda.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mciavi32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mchgrcoi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mcdsrv32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mcd32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mcastmib.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mapistub.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\makecab.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\magnify.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mag_hook.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lzexpand.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lz32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lusrmgr.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lsass.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lsasrv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lprmonui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lprhelp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lpr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lpq.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lpk.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\logonui.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\logman.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\login.cmd 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\loghours.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\logagent.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lodctr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\locator.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\localui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\localspl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\localsec.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\loadperf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\loadfix.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lnkstub.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lmrt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lmhsvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\linkinfo.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\lights.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\licmgr10.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\licdll.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\LegitCheckControl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\laprxy.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\langwrbk.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\label.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\l2gpstore.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\krnl386.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kmsvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\keymgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kernel32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kerberos.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kdcom.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kd1394.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdusx.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdusr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdusl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdus.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdukx.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbduk.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdsw.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdsp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdsmsno.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdsmsfi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdsg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdsf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdpo.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdpash.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdno1.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdno.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdnepr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdne.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdmlt48.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdmlt47.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdmaori.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdmac.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdla.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdiultn.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdit142.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdit.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdir.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdinmal.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdinben.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdinbe1.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdic.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdgr1.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdgae.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdfr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdfo.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdfi1.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdfi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdfc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdes.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbddv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdda.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdcan.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdca.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdbr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdbhc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdbene.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kbdbe.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\kb16.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\jsproxy.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\jscript.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\jobexec.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\jgsh400.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\jgsd400.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\jgpl400.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\jgmd400.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\jgdw400.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\jgaw400.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\jet500.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ixsso.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iuengine.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\itss.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\itircl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ir50_qcx.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ir50_qc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ir50_32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ir41_qcx.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ir41_qc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ir32_32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipxwan.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipxsap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipxrtmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipxroute.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipxrip.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipxpromn.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipxmontr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipv6mon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipv6.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipsmsnap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipsecsvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipsecsnp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipsec6.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iprtrmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iprtprio.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iprop.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ippromon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipnathlp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipmontr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iphlpapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ipconfig.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iologmsg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\inseng.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\input.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\initpki.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\infosoft.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\inetppui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\inetpp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\inetmib1.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\inetcplc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\imm32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\imgutil.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\imeshare.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\imapi2fs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\imapi2.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\imapi.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\imagehlp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iissuba.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\igmpagnt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ifxcardm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ifsutil.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ifmon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iexpress.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ieui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ieudinit.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iesetup.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iertutil.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iernonce.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iepeers.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ieframe.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ieencode.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iedkcs32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ieapfltr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ieakui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ieaksie.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ieakeng.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ie4uinit.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\idq.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\idndl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\icmui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\icmp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\icm32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iccvid.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\icardie.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iassvcs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iassdo.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iassam.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iasrecst.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iasrad.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iaspolcy.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iasnap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iashlpr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iasads.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\iasacct.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\htui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\httpapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\hotplug.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\hostname.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\hnetwiz.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\hnetmon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\hnetcfg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\hlink.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\hhsetup.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\help.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\h323msp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\grpconv.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\graphics.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\graftabl.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\gpupdate.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\gptext.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\gpresult.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\gpprefcl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\gpkrsrc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\gpkcsp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\gpedit.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\gpedit.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\glu32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\glmf32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\getmac.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\gdi32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\gdi.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\gcdef.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fwcfg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ftsrch.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ftp.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fsutil.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fsusd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fsmgmt.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\framebuf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\format.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\forcedos.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fontview.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fontsub.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\FontReg.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fontext.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fmifs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fldrclnr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fixmapi.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\finger.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\findstr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\find.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\filemgmt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\feclient.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fdeploy.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fde.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fc.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\faultrep.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\fastopen.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\exts.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\extrac32.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\extmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\expsrv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\expand.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\exe2bin.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eventvwr.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eventvwr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eventtriggers.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eventquery.vbs 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eventlog.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eventcreate.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eventcls.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eula.txt 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eudcedit.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\esentutl.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\esentprf.ini 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\esentprf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\esent97.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\esent.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\es.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ersvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\encdec.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\encapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\els.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\efsadu.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\edlin.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\edit.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eapsvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eapqec.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eappprxy.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eapphost.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eappgnui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eappcfg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eapp3hst.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\eapolqec.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dxtrans.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dxtmsft.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dxmasf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dxdiagn.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dxdiag.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dx8vb.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dx7vb.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dwwin.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dvdupgrd.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\duser.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dumprep.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dswave.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dsuiext.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dssenh.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dssec.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dsquery.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dsprpres.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dsprop.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dsound3d.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dsound.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dskquoui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dskquota.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dsdmoprp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dsdmo.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dsauth.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ds32gt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ds16gt.dLL 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\drwtsn32.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\drwatson.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\drprov.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\drmv2clt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\drmupgds.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\drmstor.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\drmclien.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\driverquery.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpwsockx.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpwsock.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpvvox.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpvsetup.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpvoice.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpvacm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpserial.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpnwsock.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpnsvr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpnmodem.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpnlobby.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpnhupnp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpnhpast.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpnet.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpnaddr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpmodemx.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dplayx.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dplaysvr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dplay.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dpcdll.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dot3ui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dot3svc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dot3msm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dot3gpclnt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dot3dlg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dot3cfg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dot3api.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dosx.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\doskey.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\docprop2.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\docprop.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dnsrslvr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dnsapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmusic.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmsynth.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmstyle.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmserver.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmscript.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmremote.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmocx.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmloader.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmintf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmime.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmdskres.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmdskmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmdlgs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmconfig.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmcompos.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmband.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dmadmin.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dllhst3g.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dllhost.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dispex.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\diskperf.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\diskpart.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\diskmgmt.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\diskcopy.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\diskcopy.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\diskcomp.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dinput8.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dinput.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dimsroam.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dimsntfy.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dimap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\digest.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\diantz.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\diactfrm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dhcpsapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dhcpqec.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dhcpmon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dgnet.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dfsshlex.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dfrgui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dfrgsnap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dfrgres.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dfrgntfs.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dfrgfat.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dfrg.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\devmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\devmgmt.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\devenum.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\deskperf.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\deskmon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\deskadp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\defrag.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\debug.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ddrawex.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ddraw.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ddeshare.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ddeml.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dciman32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dbnmpntw.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dbnetlib.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dbmsrpcn.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dbghelp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dbgeng.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\davclnt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\datime.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dataclen.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\danim.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\d3dxof.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\d3drm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\d3dramp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\d3dpmesh.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\d3dim700.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\d3dim.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\d3d9.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\d3d8thk.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\d3d8.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ctl3dv2.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ctl3d32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ctfmon.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\csseqchk.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\csrss.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\csrsrv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cscui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cscript.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cscdll.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cryptui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cryptsvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cryptnet.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cryptext.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cryptdll.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cryptdlg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\crypt32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\crtdll.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\credui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\credssp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\corpol.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\convert.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\control.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\console.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\conime.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\confmsp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\comres.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\compstui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\compobj.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\compmgmt.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\compatUI.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\compact.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\comp.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\commdlg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\command.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\comdlg32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\comctl32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\comcat.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cnvfat.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cnetcfg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cmutil.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cmstp.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cmsetACL.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cmpbk32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cmmon32.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cmdow.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cmdl32.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cmdial32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cmd.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cmcfg32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\clusapi.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\clipsrv.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cliconfg.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cliconfg.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cleanmgr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\clb.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ckcnv.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cisvc.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cipher.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ciodm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cidaemon.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cic.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ciadv.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ciadmin.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\chkntfs.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\chkdsk.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\chcp.com 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cfgmgr32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cewmdm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\certmgr.msc 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\certmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\certcli.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cdosys.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cdm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cdfview.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ccfgnt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cards.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\capesnpn.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\camocx.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cacls.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cabview.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\cabinet.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\btpanui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\browsewm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\browseui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\browser.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\browselc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\bootvrfy.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\bootvid.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\bootok.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\bootcfg.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\blastcln.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\blackbox.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\bidispl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\bcsprsrc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\batmeter.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\basesrv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\basecsp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\azroles.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\axaltocm.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\avifile.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\avifil32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\avicap32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\avicap.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\autolfn.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\autofmt.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\autodisc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\autoconv.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\autochk.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\authz.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\auditusr.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\audiosrv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\audiodev.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\attrib.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\atmpvcno.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\atmlib.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\atmfd.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\atmadm.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\atl.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\atkctrs.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\at.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\asycfilt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\asr_pfu.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\asr_ldm.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\asr_fmt.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\asferror.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\arp.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\appmgr.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\appmgmts.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\apphelp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\append.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\apcups.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\amstream.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\alrsvc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\alg.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\ahui.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\advpack.dll.mui 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\advpack.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\advapi32.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\adsnw.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\adsnt.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\adsnds.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\adsmsext.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\adsldpc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\adsldp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\adptif.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\admparse.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\actxprxy.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\actmovie.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\activeds.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\aclui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\acledit.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\aaaamon.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\6to4svc.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system.ini 2009-01-16 01:40:31 ----A---- C:\WINDOWS\regedit.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\msdfmap.ini 2009-01-16 01:40:31 ----A---- C:\WINDOWS\hh.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\explorer.exe 2008-08-15 02:39:46 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe 2008-04-23 00:03:42 ----A---- C:\WINDOWS\system32\wzcsvc.dll 2008-04-14 12:42:22 ----A---- C:\WINDOWS\system32\fsquirt.exe 2008-04-14 12:42:12 ----A---- C:\WINDOWS\system32\wzcsapi.dll 2008-04-14 12:42:12 ----A---- C:\WINDOWS\system32\wshbth.dll 2008-04-14 12:42:06 ----A---- C:\WINDOWS\system32\sdhcinst.dll 2008-04-14 12:42:04 ----A---- C:\WINDOWS\system32\pjlmon.dll 2008-04-14 12:42:04 ----A---- C:\WINDOWS\system32\pid.dll 2008-04-14 12:42:02 ----A---- C:\WINDOWS\system32\msyuv.dll 2008-04-14 12:41:56 ----A---- C:\WINDOWS\system32\iyuv_32.dll 2008-04-14 12:41:56 ----A---- C:\WINDOWS\system32\hid.dll 2008-04-14 12:41:56 ----A---- C:\WINDOWS\system32\hccoin.dll 2008-04-14 12:41:54 ----A---- C:\WINDOWS\system32\dmutil.dll 2008-04-14 12:41:52 ----A---- C:\WINDOWS\system32\cnbjmon.dll 2008-04-14 12:41:52 ----A---- C:\WINDOWS\system32\bthserv.dll 2008-04-14 12:41:52 ----A---- C:\WINDOWS\system32\bthci.dll 2008-04-02 18:08:44 ----A---- C:\WINDOWS\system32\hal.dll 2007-04-11 11:11:20 ----A---- C:\WINDOWS\system32\capicom.dll 2005-07-27 05:41:30 ----D---- C:\Program Files\trend micro 2005-07-27 05:41:29 ----D---- C:\rsit 2005-07-27 05:12:31 ----D---- C:\WINDOWS\system32\LogFiles 2005-07-25 06:23:23 ----D---- C:\Program Files\VirusTotalUploader 2005-07-25 05:35:50 ----D---- C:\WINDOWS\SxsCaPendDel 2005-07-25 05:34:19 ----SHD---- C:\Config.Msi 2005-07-25 05:31:09 ----A---- C:\WINDOWS\UninstallFirefox.exe 2005-07-25 05:30:49 ----D---- C:\Documents and Settings\SFE\Application Data\Mozilla 2005-07-25 05:30:48 ----D---- C:\Program Files\Mozilla Firefox 2005-07-24 22:37:58 ----RASHD---- C:\autorun.inf 2005-07-24 22:35:12 ----A---- C:\UsbFix.txt 2005-07-24 22:06:59 ----D---- C:\UsbFix 2005-07-24 08:12:17 ----HD---- C:\WINDOWS\system32\GroupPolicy 2005-07-24 07:47:15 ----D---- C:\Program Files\CCleaner 2005-07-24 07:38:29 ----A---- C:\WINDOWS\bdagent.INI 2005-07-24 07:25:44 ----D---- C:\Documents and Settings\SFE\Application Data\Malwarebytes 2005-07-24 07:25:36 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2005-07-24 07:25:35 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2005-07-24 07:03:03 ----D---- C:\Program Files\BitDefender 2005-07-24 07:03:03 ----D---- C:\Documents and Settings\All Users\Application Data\BitDefender 2005-07-24 07:02:18 ----D---- C:\Program Files\Common Files\BitDefender 2005-07-24 06:13:58 ----D---- C:\Documents and Settings\SFE\Application Data\Macromedia 2005-07-24 06:13:25 ----D---- C:\Documents and Settings\SFE\Application Data\Adobe 2005-07-24 05:53:25 ----SHD---- C:\RECYCLER 2005-07-18 01:51:42 ----A---- C:\WINDOWS\system32\h323log.txt 2005-07-18 01:51:05 ----D---- C:\Program Files\7-Zip 2005-07-18 01:50:09 ----A---- C:\WINDOWS\system32\w70n5msg.dll 2005-07-18 01:49:06 ----A---- C:\WINDOWS\system32\usbui.dll 2005-07-18 01:46:25 ----SHD---- C:\WINDOWS\Installer 2005-07-18 01:46:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2005-07-18 01:46:24 ----D---- C:\Program Files\Common Files\ODBC 2005-07-18 01:46:24 ----A---- C:\WINDOWS\ODBCINST.INI 2005-07-18 01:46:20 ----D---- C:\Program Files\Common Files\SpeechEngines 2005-07-18 01:46:19 ----RD---- C:\Program Files 2005-07-18 01:46:19 ----D---- C:\Program Files\Common Files\Microsoft Shared 2005-07-18 01:46:19 ----D---- C:\Program Files\Common Files 2005-07-18 01:46:11 ----A---- C:\WINDOWS\system32\uniime.dll 2005-07-18 01:45:59 ----A---- C:\WINDOWS\system32\c_g18030.dll 2005-07-18 01:45:58 ----A---- C:\WINDOWS\system32\kbdlk41j.dll 2005-07-18 01:45:58 ----A---- C:\WINDOWS\system32\kbdlk41a.dll 2005-07-18 01:45:57 ----A---- C:\WINDOWS\system32\kbdibm02.dll 2005-07-18 01:45:57 ----A---- C:\WINDOWS\system32\kbdax2.dll 2005-07-18 01:45:57 ----A---- C:\WINDOWS\system32\kbd106n.dll 2005-07-18 01:45:57 ----A---- C:\WINDOWS\system32\kbd101.dll 2005-07-18 01:45:57 ----A---- C:\WINDOWS\system32\imjp81k.dll 2005-07-18 01:45:57 ----A---- C:\WINDOWS\system32\f3ahvoas.dll 2005-07-18 01:45:50 ----RA---- C:\WINDOWS\system32\kbdgeo.dll 2005-07-18 01:45:50 ----RA---- C:\WINDOWS\system32\kbdarmw.dll 2005-07-18 01:45:50 ----RA---- C:\WINDOWS\system32\kbdarme.dll 2005-07-18 01:45:50 ----A---- C:\WINDOWS\system32\Thawbrkr.dll 2005-07-18 01:45:49 ----RA---- C:\WINDOWS\system32\kbdinkan.dll 2005-07-18 01:45:48 ----RA---- C:\WINDOWS\system32\kbdintel.dll 2005-07-18 01:45:48 ----RA---- C:\WINDOWS\system32\kbdintam.dll 2005-07-18 01:45:48 ----RA---- C:\WINDOWS\system32\kbdinpun.dll 2005-07-18 01:45:48 ----RA---- C:\WINDOWS\system32\kbdinmar.dll 2005-07-18 01:45:48 ----RA---- C:\WINDOWS\system32\kbdinhin.dll 2005-07-18 01:45:48 ----RA---- C:\WINDOWS\system32\kbdinguj.dll 2005-07-18 01:45:48 ----RA---- C:\WINDOWS\system32\kbdindev.dll 2005-07-18 01:45:48 ----A---- C:\WINDOWS\system32\c_iscii.dll 2005-07-18 01:45:47 ----RA---- C:\WINDOWS\system32\kbdvntc.dll 2005-07-18 01:45:44 ----RA---- C:\WINDOWS\system32\kbdurdu.dll 2005-07-18 01:45:44 ----RA---- C:\WINDOWS\system32\kbdsyr2.dll 2005-07-18 01:45:44 ----RA---- C:\WINDOWS\system32\kbdsyr1.dll 2005-07-18 01:45:44 ----RA---- C:\WINDOWS\system32\kbdfa.dll 2005-07-18 01:45:44 ----RA---- C:\WINDOWS\system32\kbddiv2.dll 2005-07-18 01:45:44 ----RA---- C:\WINDOWS\system32\kbddiv1.dll 2005-07-18 01:45:44 ----RA---- C:\WINDOWS\system32\kbda3.dll 2005-07-18 01:45:44 ----A---- C:\WINDOWS\system32\kbdusa.dll 2005-07-18 01:45:43 ----RA---- C:\WINDOWS\system32\kbda2.dll 2005-07-18 01:45:43 ----RA---- C:\WINDOWS\system32\kbda1.dll 2005-07-18 01:45:39 ----RA---- C:\WINDOWS\system32\kbdheb.dll 2005-07-18 01:45:30 ----RA---- C:\WINDOWS\system32\kbdth3.dll 2005-07-18 01:45:30 ----RA---- C:\WINDOWS\system32\kbdth2.dll 2005-07-18 01:45:30 ----RA---- C:\WINDOWS\system32\kbdth1.dll 2005-07-18 01:45:30 ----RA---- C:\WINDOWS\system32\kbdth0.dll 2005-07-18 01:45:29 ----A---- C:\WINDOWS\system32\ftlx041e.dll 2005-07-18 01:45:29 ----A---- C:\WINDOWS\system32\chsbrkr.dll 2005-07-18 01:45:28 ----A---- C:\WINDOWS\system32\korwbrkr.dll 2005-07-18 01:45:28 ----A---- C:\WINDOWS\system32\chtbrkr.dll 2005-07-18 01:45:27 ----A---- C:\WINDOWS\system32\msir3jp.dll 2005-07-18 01:45:06 ----A---- C:\WINDOWS\system32\kbd101a.dll 2005-07-18 01:44:54 ----A---- C:\WINDOWS\system32\kbdnecNT.dll 2005-07-18 01:44:54 ----A---- C:\WINDOWS\system32\kbdnecAT.dll 2005-07-18 01:44:54 ----A---- C:\WINDOWS\system32\kbdnec95.dll 2005-07-18 01:44:31 ----A---- C:\WINDOWS\system32\c_is2022.dll 2005-07-18 01:44:30 ----A---- C:\WINDOWS\system32\kbdkor.dll 2005-07-18 01:44:30 ----A---- C:\WINDOWS\system32\kbdjpn.dll 2005-07-18 01:44:30 ----A---- C:\WINDOWS\system32\kbd106.dll 2005-07-18 01:44:30 ----A---- C:\WINDOWS\system32\kbd103.dll 2005-07-18 01:44:30 ----A---- C:\WINDOWS\system32\kbd101c.dll 2005-07-18 01:44:27 ----A---- C:\WINDOWS\system32\kbd101b.dll 2005-07-18 01:44:25 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2005-07-18 01:44:25 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2005-07-18 01:44:25 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2005-07-18 01:44:23 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2005-07-18 01:44:23 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2005-07-18 01:44:23 ----RA---- C:\WINDOWS\system32\kbdur.dll 2005-07-18 01:44:23 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2005-07-18 01:44:23 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2005-07-18 01:44:23 ----RA---- C:\WINDOWS\system32\kbdru.dll 2005-07-18 01:44:23 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2005-07-18 01:44:23 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2005-07-18 01:44:23 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2005-07-18 01:44:23 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2005-07-18 01:44:23 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2005-07-18 01:44:23 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2005-07-18 01:44:21 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2005-07-18 01:44:21 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2005-07-18 01:44:21 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2005-07-18 01:44:21 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2005-07-18 01:44:21 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2005-07-18 01:44:21 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2005-07-18 01:44:21 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2005-07-18 01:44:20 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2005-07-18 01:44:20 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2005-07-18 01:44:20 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2005-07-18 01:44:20 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2005-07-18 01:44:20 ----RA---- C:\WINDOWS\system32\kbdest.dll 2005-07-18 01:44:19 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2005-07-18 01:44:19 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2005-07-18 01:44:19 ----RA---- C:\WINDOWS\system32\kbdro.dll 2005-07-18 01:44:19 ----RA---- C:\WINDOWS\system32\kbdpl1.dll 2005-07-18 01:44:19 ----RA---- C:\WINDOWS\system32\kbdpl.dll 2005-07-18 01:44:19 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2005-07-18 01:44:19 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2005-07-18 01:44:18 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2005-07-18 01:44:18 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2005-07-18 01:44:18 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2005-07-18 01:44:18 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2005-07-18 01:44:18 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2005-07-18 01:44:18 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2005-07-18 01:44:13 ----A---- C:\WINDOWS\system32\spxcoins.dll 2005-07-18 01:44:13 ----A---- C:\WINDOWS\system32\irclass.dll 2005-07-18 01:44:13 ----A---- C:\WINDOWS\system32\dgsetup.dll 2005-07-18 01:44:13 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2005-07-18 01:44:12 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2005-07-18 01:44:10 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2005-07-18 01:44:10 ----A---- C:\WINDOWS\TASKMAN.EXE 2005-07-18 01:44:10 ----A---- C:\WINDOWS\system32\batt.dll 2005-07-18 01:44:09 ----A---- C:\WINDOWS\system32\storprop.dll 2005-07-18 01:44:09 ----A---- C:\WINDOWS\NOTEPAD.EXE 2005-07-18 01:43:57 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini 2005-07-18 01:43:50 ----RA---- C:\WINDOWS\SET8.tmp 2005-07-18 01:43:47 ----RA---- C:\WINDOWS\SET4.tmp 2005-07-18 01:43:46 ----RA---- C:\WINDOWS\SET3.tmp 2005-07-18 01:43:40 ----D---- C:\WINDOWS\system32\CatRoot2 2005-07-18 01:43:40 ----D---- C:\WINDOWS\system32\CatRoot 2005-07-18 01:43:34 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2005-07-18 01:43:16 ----A---- C:\WINDOWS\system32\W20NCPA.dll 2005-07-18 01:43:16 ----A---- C:\WINDOWS\system32\W20MLRes.dll 2005-07-18 01:42:41 ----D---- C:\Documents and Settings 2005-07-18 01:42:40 ----SHD---- C:\System Volume Information 2005-07-18 01:42:11 ----SH---- C:\boot.ini 2005-07-18 01:35:01 ----SD---- C:\WINDOWS\Downloaded Program Files 2005-07-18 01:35:01 ----RSD---- C:\WINDOWS\Fonts 2005-07-18 01:35:01 ----RD---- C:\WINDOWS\Web 2005-07-18 01:35:01 ----HD---- C:\WINDOWS\inf 2005-07-18 01:35:01 ----D---- C:\WINDOWS\WinSxS 2005-07-18 01:35:01 ----D---- C:\WINDOWS\WBEM 2005-07-18 01:35:01 ----D---- C:\WINDOWS\twain_32 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\wins 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\wbem 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\usmt 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\spool 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\ShellExt 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\Setup 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\scripting 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\ras 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\PreInstall 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\oobe 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\npp 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\mui 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\Macromed 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\inetsrv 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\IME 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\icsxml 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\ias 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\export 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\en-US 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\en 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\drivers 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\dhcp 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\config 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\3com_dmi 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\3076 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\2052 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\1054 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\1042 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\1041 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\1037 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\1033 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\1031 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\1028 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32\1025 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system32 2005-07-18 01:35:01 ----D---- C:\WINDOWS\system 2005-07-18 01:35:01 ----D---- C:\WINDOWS\SoftwareDistribution 2005-07-18 01:35:01 ----D---- C:\WINDOWS\security 2005-07-18 01:35:01 ----D---- C:\WINDOWS\Resources 2005-07-18 01:35:01 ----D---- C:\WINDOWS\repair 2005-07-18 01:35:01 ----D---- C:\WINDOWS\Provisioning 2005-07-18 01:35:01 ----D---- C:\WINDOWS\PeerNet 2005-07-18 01:35:01 ----D---- C:\WINDOWS\pchealth 2005-07-18 01:35:01 ----D---- C:\WINDOWS\Offline Web Pages 2005-07-18 01:35:01 ----D---- C:\WINDOWS\NLDRV 2005-07-18 01:35:01 ----D---- C:\WINDOWS\Network Diagnostic 2005-07-18 01:35:01 ----D---- C:\WINDOWS\mui 2005-07-18 01:35:01 ----D---- C:\WINDOWS\msapps 2005-07-18 01:35:01 ----D---- C:\WINDOWS\msagent 2005-07-18 01:35:01 ----D---- C:\WINDOWS\Media 2005-07-18 01:35:01 ----D---- C:\WINDOWS\L2Schemas 2005-07-18 01:35:01 ----D---- C:\WINDOWS\java 2005-07-18 01:35:01 ----D---- C:\WINDOWS\ime 2005-07-18 01:35:01 ----D---- C:\WINDOWS\Help 2005-07-18 01:35:01 ----D---- C:\WINDOWS\ehome 2005-07-18 01:35:01 ----D---- C:\WINDOWS\Driver Cache 2005-07-18 01:35:01 ----D---- C:\WINDOWS\Debug 2005-07-18 01:35:01 ----D---- C:\WINDOWS\Cursors 2005-07-18 01:35:01 ----D---- C:\WINDOWS\Connection Wizard 2005-07-18 01:35:01 ----D---- C:\WINDOWS\Config 2005-07-18 01:35:01 ----D---- C:\WINDOWS\AppPatch 2005-07-18 01:35:01 ----D---- C:\WINDOWS\addins 2005-07-18 01:35:01 ----D---- C:\WINDOWS 2005-07-18 01:35:01 ----AD---- C:\WINDOWS\Temp 2005-07-17 19:58:01 ----D---- C:\Documents and Settings\SFE\Application Data\vlc 2005-07-17 19:49:41 ----D---- C:\Program Files\VideoLAN 2005-07-17 19:46:51 ----D---- C:\Program Files\Prg Chris 2005-07-17 19:46:12 ----D---- C:\Program Files\Spybot - Search & Destroy 2005-07-17 19:46:12 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2005-07-17 19:40:42 ----RA---- C:\WINDOWS\system32\ThaiLao.dll 2005-07-17 19:40:41 ----RA---- C:\WINDOWS\system32\LSWin32.dll 2005-07-17 19:40:37 ----D---- C:\Program Files\LSWin 2005-07-17 19:35:09 ----A---- C:\WINDOWS\ODBC.INI 2005-07-17 19:35:03 ----A---- C:\WINDOWS\system32\mdimon.dll 2005-07-17 19:34:02 ----D---- C:\Program Files\Microsoft.NET 2005-07-17 19:33:58 ----D---- C:\Program Files\Microsoft ActiveSync 2005-07-17 19:33:34 ----D---- C:\Program Files\Common Files\DESIGNER 2005-07-17 19:33:20 ----D---- C:\WINDOWS\SHELLNEW 2005-07-17 19:31:47 ----D---- C:\Program Files\Microsoft Office 2005-07-17 19:30:13 ----RHD---- C:\MSOCache 2005-07-17 19:16:06 ----D---- C:\Documents and Settings\SFE\Application Data\Identities 2005-07-17 19:16:02 ----HD---- C:\Program Files\Uninstall Information 2005-07-17 19:15:06 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage 2005-07-17 19:15:00 ----ASH---- C:\Documents and Settings\SFE\Application Data\desktop.ini 2005-07-17 19:14:59 ----SD---- C:\Documents and Settings\SFE\Application Data\Microsoft 2005-07-17 19:14:56 ----SHD---- C:\WINDOWS\CSC 2005-07-17 19:13:32 ----D---- C:\WINDOWS\Prefetch 2005-07-17 19:13:31 ----SD---- C:\WINDOWS\system32\Microsoft 2005-07-17 19:13:31 ----A---- C:\WINDOWS\SchedLgU.Txt 2005-07-17 19:00:44 ----N---- C:\WINDOWS\system32\spmsg.dll 2005-07-17 19:00:43 ----HD---- C:\WINDOWS\$hf_mig$ 2005-07-17 19:00:26 ----A---- C:\WINDOWS\control.ini 2005-07-17 19:00:26 ----A---- C:\AUTOEXEC.BAT 2005-07-17 19:00:05 ----D---- C:\WINDOWS\system32\dllcache 2005-07-17 19:00:05 ----A---- C:\WINDOWS\system32\mapi32.dll 2005-07-17 18:58:43 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2005-07-17 18:58:38 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2005-07-17 18:58:30 ----HD---- C:\Program Files\WindowsUpdate 2005-07-17 18:58:06 ----D---- C:\WINDOWS\system32\DirectX 2005-07-17 18:57:59 ----A---- C:\WINDOWS\system32\atrace.dll 2005-07-17 18:57:56 ----A---- C:\WINDOWS\system32\desktop.ini 2005-07-17 18:57:56 ----A---- C:\WINDOWS\desktop.ini 2005-07-17 18:57:51 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2005-07-17 18:57:50 ----A---- C:\WINDOWS\system32\acctres.dll 2005-07-17 18:57:49 ----D---- C:\Program Files\Common Files\Services 2005-07-17 18:57:47 ----SD---- C:\WINDOWS\Tasks 2005-07-17 18:57:47 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2005-07-17 18:57:46 ----D---- C:\Program Files\Common Files\MSSoap 2005-07-17 18:57:42 ----D---- C:\WINDOWS\srchasst 2005-07-17 18:57:40 ----A---- C:\WINDOWS\system32\wuweb.dll 2005-07-17 18:57:39 ----A---- C:\WINDOWS\system32\wups.dll 2005-07-17 18:57:39 ----A---- C:\WINDOWS\system32\wucltui.dll 2005-07-17 18:57:39 ----A---- C:\WINDOWS\system32\wuauserv.dll 2005-07-17 18:57:39 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2005-07-17 18:57:39 ----A---- C:\WINDOWS\system32\wuaueng.dll 2005-07-17 18:57:38 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2005-07-17 18:57:38 ----A---- C:\WINDOWS\system32\wuauclt.exe 2005-07-17 18:57:38 ----A---- C:\WINDOWS\system32\wuapi.dll 2005-07-17 18:57:38 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2005-07-17 18:57:38 ----A---- C:\WINDOWS\system32\qmgr.dll 2005-07-17 18:57:38 ----A---- C:\WINDOWS\system32\bitsprx4.dll 2005-07-17 18:57:38 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2005-07-17 18:57:38 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2005-07-17 18:57:34 ----D---- C:\Program Files\Movie Maker 2005-07-17 18:57:17 ----A---- C:\WINDOWS\system32\safrslv.dll 2005-07-17 18:57:17 ----A---- C:\WINDOWS\system32\safrdm.dll 2005-07-17 18:57:17 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2005-07-17 18:57:17 ----A---- C:\WINDOWS\system32\racpldlg.dll 2005-07-17 18:57:13 ----D---- C:\WINDOWS\system32\Restore 2005-07-17 18:57:13 ----A---- C:\WINDOWS\system32\srsvc.dll 2005-07-17 18:57:13 ----A---- C:\WINDOWS\system32\srrstr.dll 2005-07-17 18:57:13 ----A---- C:\WINDOWS\system32\srclient.dll 2005-07-17 18:57:13 ----A---- C:\WINDOWS\system32\fltMc.exe 2005-07-17 18:57:13 ----A---- C:\WINDOWS\system32\fltlib.dll 2005-07-17 18:57:12 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2005-07-17 18:57:12 ----A---- C:\WINDOWS\system32\msconf.dll 2005-07-17 18:57:12 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2005-07-17 18:57:12 ----A---- C:\WINDOWS\system32\mnmdd.dll 2005-07-17 18:57:12 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2005-07-17 18:57:12 ----A---- C:\WINDOWS\system32\ils.dll 2005-07-17 18:57:09 ----D---- C:\Program Files\NetMeeting 2005-07-17 18:57:09 ----A---- C:\WINDOWS\system32\msoert2.dll 2005-07-17 18:57:09 ----A---- C:\WINDOWS\system32\msoeacct.dll 2005-07-17 18:57:08 ----A---- C:\WINDOWS\system32\inetres.dll 2005-07-17 18:57:08 ----A---- C:\WINDOWS\system32\inetcomm.dll 2005-07-17 18:57:06 ----D---- C:\Program Files\Outlook Express 2005-07-17 18:57:06 ----A---- C:\WINDOWS\system32\schedsvc.dll 2005-07-17 18:57:06 ----A---- C:\WINDOWS\system32\mstinit.exe 2005-07-17 18:57:06 ----A---- C:\WINDOWS\system32\mstask.dll 2005-07-17 18:57:05 ----A---- C:\WINDOWS\system32\isign32.dll 2005-07-17 18:57:05 ----A---- C:\WINDOWS\system32\inetcfg.dll 2005-07-17 18:57:05 ----A---- C:\WINDOWS\system32\icwphbk.dll 2005-07-17 18:57:05 ----A---- C:\WINDOWS\system32\icwdial.dll 2005-07-17 18:57:00 ----D---- C:\Program Files\Common Files\System 2005-07-17 18:56:56 ----D---- C:\Program Files\Internet Explorer 2005-07-17 18:56:06 ----D---- C:\Program Files\ComPlus Applications 2005-07-17 18:56:03 ----A---- C:\WINDOWS\vbaddin.ini 2005-07-17 18:56:03 ----A---- C:\WINDOWS\vb.ini 2005-07-17 18:55:56 ----D---- C:\WINDOWS\Registration 2005-07-17 18:55:46 ----D---- C:\Program Files\Online Services 2005-07-17 18:55:33 ----D---- C:\Program Files\LClock 2005-07-17 18:54:48 ----D---- C:\Program Files\System 2005-07-17 18:54:43 ----D---- C:\WINDOWS\VistaDrive 2005-07-17 18:54:35 ----D---- C:\Program Files\Windows Media Connect 2 2005-07-17 18:54:34 ----D---- C:\Program Files\Windows Media Player 2005-07-17 18:54:32 ----D---- C:\Program Files\Messenger 2005-07-17 18:54:29 ----D---- C:\Program Files\MSN Gaming Zone 2005-07-17 18:54:29 ----A---- C:\WINDOWS\system32\write.exe 2005-07-17 18:54:20 ----A---- C:\WINDOWS\system32\sndvol32.exe 2005-07-17 18:54:20 ----A---- C:\WINDOWS\system32\hticons.dll 2005-07-17 18:54:20 ----A---- C:\WINDOWS\system32\avwav.dll 2005-07-17 18:54:20 ----A---- C:\WINDOWS\system32\avtapi.dll 2005-07-17 18:54:20 ----A---- C:\WINDOWS\system32\avmeter.dll 2005-07-17 18:54:19 ----A---- C:\WINDOWS\system32\winchat.exe 2005-07-17 18:54:14 ----A---- C:\WINDOWS\system32\getuname.dll 2005-07-17 18:54:13 ----A---- C:\WINDOWS\system32\charmap.exe 2005-07-17 18:54:13 ----A---- C:\WINDOWS\system32\calc.exe 2005-07-17 18:54:12 ----A---- C:\WINDOWS\system32\winmine.exe 2005-07-17 18:54:12 ----A---- C:\WINDOWS\system32\sol.exe 2005-07-17 18:54:12 ----A---- C:\WINDOWS\system32\reset.exe 2005-07-17 18:54:12 ----A---- C:\WINDOWS\system32\mshearts.exe 2005-07-17 18:54:12 ----A---- C:\WINDOWS\system32\freecell.exe 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\tslabels.ini 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\tskill.exe 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\tscon.exe 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\shadow.exe 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\rwinsta.exe 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\regini.exe 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\qwinsta.exe 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\qappsrv.exe 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\msg.exe 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\logoff.exe 2005-07-17 18:54:11 ----A---- C:\WINDOWS\system32\cdmodem.dll 2005-07-17 18:54:10 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2005-07-17 18:54:05 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2005-07-17 18:53:55 ----D---- C:\Program Files\MSN 2005-07-17 18:53:54 ----A---- C:\WINDOWS\system32\sndrec32.exe 2005-07-17 18:53:54 ----A---- C:\WINDOWS\system32\accwiz.exe 2005-07-17 18:53:53 ----D---- C:\Program Files\Windows NT 2005-07-17 18:53:53 ----A---- C:\WINDOWS\system32\mspaint.exe 2005-07-17 18:53:53 ----A---- C:\WINDOWS\system32\mplay32.exe 2005-07-17 18:53:53 ----A---- C:\WINDOWS\system32\hypertrm.dll 2005-07-17 18:53:52 ----A---- C:\WINDOWS\system32\spider.exe 2005-07-17 18:53:52 ----A---- C:\WINDOWS\system32\clipbrd.exe 2005-07-17 18:53:51 ----A---- C:\WINDOWS\system32\tsgqec.dll 2005-07-17 18:53:51 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2005-07-17 18:53:51 ----A---- C:\WINDOWS\system32\rhttpaa.dll 2005-07-17 18:53:51 ----A---- C:\WINDOWS\system32\aaclient.dll 2005-07-17 18:53:50 ----A---- C:\WINDOWS\system32\sessmgr.exe 2005-07-17 18:53:50 ----A---- C:\WINDOWS\system32\remotepg.dll 2005-07-17 18:53:50 ----A---- C:\WINDOWS\system32\rdshost.exe 2005-07-17 18:53:50 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2005-07-17 18:53:50 ----A---- C:\WINDOWS\system32\mstscax.dll 2005-07-17 18:53:50 ----A---- C:\WINDOWS\system32\mstsc.exe 2005-07-17 18:53:49 ----D---- C:\WINDOWS\system32\MsDtc 2005-07-17 18:53:49 ----A---- C:\WINDOWS\system32\termsrv.dll 2005-07-17 18:53:49 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2005-07-17 18:53:49 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2005-07-17 18:53:49 ----A---- C:\WINDOWS\system32\rdpclip.exe 2005-07-17 18:53:49 ----A---- C:\WINDOWS\system32\rdchost.dll 2005-07-17 18:53:49 ----A---- C:\WINDOWS\system32\qprocess.exe 2005-07-17 18:53:49 ----A---- C:\WINDOWS\system32\mtxoci.dll 2005-07-17 18:53:49 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2005-07-17 18:53:49 ----A---- C:\WINDOWS\system32\icaapi.dll 2005-07-17 18:53:49 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2005-07-17 18:53:48 ----A---- C:\WINDOWS\system32\xolehlp.dll 2005-07-17 18:53:48 ----A---- C:\WINDOWS\system32\msdtctm.dll 2005-07-17 18:53:48 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2005-07-17 18:53:48 ----A---- C:\WINDOWS\system32\msdtclog.dll 2005-07-17 18:53:48 ----A---- C:\WINDOWS\system32\msdtc.exe 2005-07-17 18:53:47 ----D---- C:\WINDOWS\system32\Com 2005-07-17 18:53:47 ----A---- C:\WINDOWS\system32\stclient.dll 2005-07-17 18:53:47 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2005-07-17 18:53:47 ----A---- C:\WINDOWS\system32\mtxex.dll 2005-07-17 18:53:47 ----A---- C:\WINDOWS\system32\mtxdm.dll 2005-07-17 18:53:47 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2005-07-17 18:53:47 ----A---- C:\WINDOWS\system32\comrepl.dll 2005-07-17 18:53:47 ----A---- C:\WINDOWS\system32\comaddin.dll 2005-07-17 18:53:47 ----A---- C:\WINDOWS\system32\colbact.dll 2005-07-17 18:53:46 ----A---- C:\WINDOWS\system32\comsvcs.dll 2005-07-17 18:53:46 ----A---- C:\WINDOWS\system32\clbcatex.dll 2005-07-17 18:53:46 ----A---- C:\WINDOWS\system32\catsrvut.dll 2005-07-17 18:53:46 ----A---- C:\WINDOWS\system32\catsrvps.dll 2005-07-17 18:53:46 ----A---- C:\WINDOWS\system32\catsrv.dll 2005-07-17 18:53:45 ----A---- C:\WINDOWS\system32\comuid.dll 2005-07-17 18:53:45 ----A---- C:\WINDOWS\system32\comsnap.dll 2005-07-17 18:53:45 ----A---- C:\WINDOWS\system32\clbcatq.dll 2005-07-17 18:53:39 ----A---- C:\WINDOWS\system32\servdeps.dll 2005-07-17 18:53:39 ----A---- C:\WINDOWS\system32\mmfutil.dll 2005-07-17 18:53:39 ----A---- C:\WINDOWS\system32\licwmi.dll 2005-07-17 18:53:39 ----A---- C:\WINDOWS\system32\cmprops.dll ======List of files/folders modified in the last 1 months====== 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wowfaxui.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\wowfax.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrvpa.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrvoica.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrv80a.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrv42a.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrsvpia.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrshuta.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrsdpia.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrrtosa.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrprbda.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrmlnka.exe 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrlbva.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrfaxa.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrdtea.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrdpa.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrcoina.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\usrcntra.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\tsbyuv.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\streamci.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sprio800.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\sprio600.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\spnike.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\paqsp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\mdwmdmsp.dll 2009-01-16 01:40:31 ----A---- C:\WINDOWS\system32\dvdplay.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2009-01-16 36352] R2 rspndr;Link-Layer Topology Discovery Responder; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2009-01-16 62848] R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2008-09-11 176640] R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952] R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368] R3 minidrv32;MiniPort Driver Hub; \??\C:\WINDOWS\system32\drivers\minidrv32.sys [] R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160] R3 Passthru;Service; C:\WINDOWS\system32\DRIVERS\ndisvvan.sys [2005-07-27 53760] R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2009-01-16 30336] R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2009-01-16 59520] R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2009-01-16 20608] R3 w70n51;Intel® PRO/Wireless 7100 Adapter Driver for Windows XP; C:\WINDOWS\system32\DRIVERS\w70n51.sys [2006-08-02 674560] S3 BTHPORT;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2009-01-16 272128] S3 BTHUSB;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-14 18944] S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-01-16 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-01-16 82944] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2009-01-16 14336] R2 WMISRSV;WMI Security Service; C:\WINDOWS\system32\wbem\wmisrsv.exe [2009-09-05 580096] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2009-01-16 14336] -----------------EOF-----------------

Les dernières nouvelles. 1 je suis vraiment désolé, d'avoir posté sur un autre forum (je suis pas habitué de la chose.... du coup je me suis dis que j'aurais plus de chance en essayant sur 2 sites ), je me suis excusé sur l'autre forum et j'ai mis un lien vers Zabulon. 2 Pour Virus Total, pas facile. Impossible de l'envoyer (en analyse, ou avec mon email ). Du coup je l'ai mis dans une archive et j'ai envoyé l'archive (j"espère que ca ne va fausser les résultats ). 3 Merci pour le temps que tu m'accordes. 4 lors de la manoeuvre, antivir dis que le fichier cache est le virus suivant : BDS/IRCBot.580096S.1 4 Antivirus Version Dernière mise à jour Résultat a-squared 4.5.0.24 2009.09.22 - AhnLab-V3 5.0.0.2 2009.09.22 - AntiVir 7.9.1.23 2009.09.22 - Antiy-AVL 2.0.3.7 2009.09.22 Trojan/Win32.Agent Authentium 5.1.2.4 2009.09.21 - Avast 4.8.1351.0 2009.09.21 Win32:Rootkit-gen AVG 8.5.0.412 2009.09.22 - BitDefender 7.2 2009.09.22 - CAT-QuickHeal 10.00 2009.09.22 - ClamAV 0.94.1 2009.09.22 - Comodo 2402 2009.09.22 Backdoor.Win32.IRCBot.mdf DrWeb 5.0.0.12182 2009.09.22 BackDoor.IRC.Bot.137 eSafe 7.0.17.0 2009.09.21 - eTrust-Vet 31.6.6753 2009.09.22 - F-Prot 4.5.1.85 2009.09.21 W32/Themida_Packed!Eldorado F-Secure 8.0.14470.0 2009.09.22 Backdoor.Win32.IRCBot.mdf Fortinet 3.120.0.0 2009.09.22 - GData 19 2009.09.22 Win32:Rootkit-gen Ikarus T3.1.1.72.0 2009.09.22 - Jiangmin 11.0.800 2009.09.22 Backdoor/IRCBot.hfz K7AntiVirus 7.10.851 2009.09.22 - Kaspersky 7.0.0.125 2009.09.22 Backdoor.Win32.IRCBot.mdf McAfee 5748 2009.09.21 - McAfee+Artemis 5748 2009.09.21 - McAfee-GW-Edition 6.8.5 2009.09.22 - Microsoft 1.5005 2009.09.22 Backdoor:Win32/IRCbot.gen!S NOD32 4447 2009.09.22 - Norman 6.01.09 2009.09.22 W32/Ircbot.ATZE nProtect 2009.1.8.0 2009.09.22 - Panda 10.0.2.2 2009.09.22 - PCTools 4.4.2.0 2009.09.22 - Prevx 3.0 2009.09.22 - Rising 21.48.14.00 2009.09.22 - Sophos 4.45.0 2009.09.22 - Sunbelt 3.2.1858.2 2009.09.22 - Symantec 1.4.4.12 2009.09.22 - TheHacker 6.5.0.2.014 2009.09.21 - TrendMicro 8.950.0.1094 2009.09.22 - VBA32 3.12.10.10 2009.09.21 - ViRobot 2009.9.22.1948 2009.09.22 - VirusBuster 4.6.5.0 2009.09.22 - Information additionnelle File size: 573645 bytes MD5...: c647671439694511a3c23c595c588536 SHA1..: ebeeb5d05e51228131202e334ea1b000936fc910 SHA256: 38f09cf5babd8bbcabdb52ba2b93cb77be112593263e39bfe7fa88847c69d171 ssdeep: 12288:rj9Ki0cN99u6qF/CRP3g3VA2oU227GEnoevPlQ1JTtiHO+:rpbft8KP3Go<br>UR7iIOhif<br> PEiD..: - PEInfo: - RDS...: NSRL Reference Data Set<br>- pdfid.: - trid..: 7-Zip compressed archive (100.0%) sigcheck:<br>publisher....: n/a<br>copyright....: n/a<br>product......: n/a<br>description..: n/a<br>original name: n/a<br>internal name: n/a<br>file version.: n/a<br>comments.....: n/a<br>signers......: -<br>signing date.: -<br>verified.....: Unsigned<br> packers (F-Prot): 7Z, Themida Le résultat : Antivirus Version Dernière mise à jour Résultat a-squared 4.5.0.24 2009.09.22 - AhnLab-V3 5.0.0.2 2009.09.22 - AntiVir 7.9.1.23 2009.09.22 - Antiy-AVL 2.0.3.7 2009.09.22 Trojan/Win32.Agent Authentium 5.1.2.4 2009.09.21 - Avast 4.8.1351.0 2009.09.21 Win32:Rootkit-gen AVG 8.5.0.412 2009.09.22 - BitDefender 7.2 2009.09.22 - CAT-QuickHeal 10.00 2009.09.22 - ClamAV 0.94.1 2009.09.22 - Comodo 2402 2009.09.22 Backdoor.Win32.IRCBot.mdf DrWeb 5.0.0.12182 2009.09.22 BackDoor.IRC.Bot.137 eSafe 7.0.17.0 2009.09.21 - eTrust-Vet 31.6.6753 2009.09.22 - F-Prot 4.5.1.85 2009.09.21 W32/Themida_Packed!Eldorado F-Secure 8.0.14470.0 2009.09.22 Backdoor.Win32.IRCBot.mdf Fortinet 3.120.0.0 2009.09.22 - GData 19 2009.09.22 Win32:Rootkit-gen Ikarus T3.1.1.72.0 2009.09.22 - Jiangmin 11.0.800 2009.09.22 Backdoor/IRCBot.hfz K7AntiVirus 7.10.851 2009.09.22 - Kaspersky 7.0.0.125 2009.09.22 Backdoor.Win32.IRCBot.mdf McAfee 5748 2009.09.21 - McAfee+Artemis 5748 2009.09.21 - McAfee-GW-Edition 6.8.5 2009.09.22 - Microsoft 1.5005 2009.09.22 Backdoor:Win32/IRCbot.gen!S NOD32 4447 2009.09.22 - Norman 6.01.09 2009.09.22 W32/Ircbot.ATZE nProtect 2009.1.8.0 2009.09.22 - Panda 10.0.2.2 2009.09.22 - PCTools 4.4.2.0 2009.09.22 - Prevx 3.0 2009.09.22 - Rising 21.48.14.00 2009.09.22 - Sophos 4.45.0 2009.09.22 - Sunbelt 3.2.1858.2 2009.09.22 - Symantec 1.4.4.12 2009.09.22 - TheHacker 6.5.0.2.014 2009.09.21 - TrendMicro 8.950.0.1094 2009.09.22 - VBA32 3.12.10.10 2009.09.21 - ViRobot 2009.9.22.1948 2009.09.22 - VirusBuster 4.6.5.0 2009.09.22 - Information additionnelle File size: 573645 bytes MD5...: c647671439694511a3c23c595c588536 SHA1..: ebeeb5d05e51228131202e334ea1b000936fc910 SHA256: 38f09cf5babd8bbcabdb52ba2b93cb77be112593263e39bfe7fa88847c69d171 ssdeep: 12288:rj9Ki0cN99u6qF/CRP3g3VA2oU227GEnoevPlQ1JTtiHO+:rpbft8KP3Go<br>UR7iIOhif<br> PEiD..: - PEInfo: - RDS...: NSRL Reference Data Set<br>- pdfid.: - trid..: 7-Zip compressed archive (100.0%) sigcheck:<br>publisher....: n/a<br>copyright....: n/a<br>product......: n/a<br>description..: n/a<br>original name: n/a<br>internal name: n/a<br>file version.: n/a<br>comments.....: n/a<br>signers......: -<br>signing date.: -<br>verified.....: Unsigned<br> packers (F-Prot): 7Z, Themida

Ci-dessous les rapports : Les clés sont vaccinés, mais le dossier cache vient encore tout seul sur la clé. (ce qui veut dire que si je branche une clé non-vaccinée, je me choppes le virus ? ) Merci pour ton aide. les voilà : le premier. ############################## | UsbFix V6.036 | User : SFE (Administrators) # ILLUSION-DED233 Update on 21/09/2009 by Chiquitine29, C_XX & Chimay8 Start at: 22:11:57 | 24/7/2548 Website : http://pagesperso-orange.fr/NosTools/index.html Intel® Pentium® M processor 1.50GHz Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 3 Internet Explorer 7.0.5730.13 Windows Firewall Status : Disabled AV : BitDefender Antivirus 13.0.13 [ (!) Disabled | Updated ] C:\ -> Local Fixed Disk # 37.26 Go (33.93 Go free) # NTFS D:\ -> CD-ROM Disc E:\ -> Removable Disk # 497.99 Mo (370.71 Mo free) [uSB SFE] # FAT32 F:\ -> Removable Disk # 7.45 Go (7.45 Go free) [sOM] # FAT32 ############################## | Processus actifs | C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\alg.exe C:\Program Files\LSWin\LaoKey.exe C:\Program Files\BitDefender\BitDefender 2010\bdagent.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\LClock\LClock.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Prg Chris\Anti-Autorun.inf\Anti-Autorun.inf.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\wbem\wmiprvse.exe ################## | Fichiers # Dossiers infectieux | E:\autorun.inf F:\autorun.inf ################## | Registre # Clés Run infectieuses | ################## | Registre # Mountpoints2 | HKCU\..\..\Explorer\MountPoints2\{b4447730-f915-11d9-b348-000cf1530176} Shell\AutoRun\command =cmd /c start "" "CACHE-20194029\data.sys" Shell\explore\command =cmd /c start "" "CACHE-20194029\data.sys" Shell\open\command =cmd /c start "" "CACHE-20194029\data.sys" ################## | ! Fin du rapport # UsbFix V6.036 ! | Le deuxième. ############################# | UsbFix V6.036 | User : SFE () # ILLUSION-DED233 Update on 21/09/2009 by Chiquitine29, C_XX & Chimay8 Start at: 22:35:17 | 24/7/2548 Website : http://pagesperso-orange.fr/NosTools/index.html Intel® Pentium® M processor 1.50GHz Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 3 Internet Explorer 7.0.5730.13 Windows Firewall Status : Enabled AV : BitDefender Antivirus 13.0.13 [ (!) Disabled | Updated ] C:\ -> Local Fixed Disk # 37.26 Go (33.91 Go free) # NTFS D:\ -> CD-ROM Disc E:\ -> Removable Disk # 497.99 Mo (370.71 Mo free) [uSB SFE] # FAT32 F:\ -> Removable Disk # 7.45 Go (7.45 Go free) [sOM] # FAT32 ############################## | Processus actifs | C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe C:\Program Files\BitDefender\BitDefender 2010\vsserv.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\logonui.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\userinit.exe C:\WINDOWS\system32\WgaTray.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\alg.exe ################## | Fichiers # Dossiers infectieux | Supprimé ! E:\autorun.inf F:\autorun.inf -> fichier appelé : "F:\cmd /c start "" "CACHE-20194029\data.sys"" ( Absent ! ) F:\autorun.inf -> fichier appelé : "F:\cmd /c start "" "CACHE-20194029\data.sys"" ( Absent ! ) Supprimé ! F:\autorun.inf ################## | Registre # Clés Run infectieuses | Supprimé ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRecentDocsHistory" Supprimé ! [HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoRecentDocsMenu" ################## | Registre # Mountpoints2 | Supprimé ! HKCU\...\Explorer\MountPoints2\{b4447730-f915-11d9-b348-000cf1530176}\Shell\AutoRun\Command ################## | Listing des fichiers présent | [07/17/2005 07:00 PM|--a------|0] C:\AUTOEXEC.BAT [07/17/2005 06:51 PM|---hs----|211] C:\boot.ini [07/17/2005 07:00 PM|--a------|0] C:\CONFIG.SYS [07/17/2005 07:00 PM|-rahs----|0] C:\IO.SYS [07/17/2005 07:00 PM|-rahs----|0] C:\MSDOS.SYS [01/16/2009 01:40 AM|-rahs----|47564] C:\NTDETECT.COM [01/16/2009 01:40 AM|-rahs----|250048] C:\ntldr [?|?|?] C:\pagefile.sys [07/24/2005 10:37 PM|--a------|2642] C:\UsbFix.txt [06/16/2009 12:02 PM|--a------|35650] E:\Station malaria pres Etude malaria FR laoV2 fr.pdf [04/28/2009 04:42 PM|--a------|177664] E:\ÇѢѴ.ppt [06/11/2009 01:54 PM|--a------|87040] E:\Book1.xls [06/16/2009 11:55 AM|--a------|25600] E:\Concours Infirmier 2009 Lao.doc [06/25/2009 08:09 AM|--a------|10] E:\K94A8BE29Z.txt [04/29/2009 05:06 PM|--a------|73728] E:\List kon djep none hong mow 2009.xls [05/25/2009 03:31 PM|--a------|1101824] E:\Louamluc.xls [04/30/2009 09:29 AM|--a------|177664] E:\Luc.ppt [06/16/2009 12:16 PM|--a------|266167] E:\malaria X30.pdf [06/01/2009 03:47 PM|--a------|8798115] E:\Movie.wmv [06/02/2009 03:59 PM|--a------|8910001] E:\Movie_0002.wmv [02/22/2009 09:49 PM|--a------|1160192] E:\New Microsoft Excel Worksheet.xls [06/02/2009 04:22 PM|--a------|18614379] E:\Movie_0003.wmv [06/02/2009 04:49 PM|--a------|17254319] E:\Movie_0004.wmv [06/22/2009 04:51 PM|--a------|17238571] E:\Movie_0005.wmv [01/30/2009 01:44 PM|--a------|2315762] E:\Untitled (2).pdf [04/23/2009 03:13 PM|--a------|447488] E:\anti_autorun.inf141.exe [04/29/2009 05:05 PM|--a------|146944] E:\pagnat.xls [06/25/2009 04:45 PM|--a------|135168] E:\Malaria1.doc [07/03/2009 03:42 PM|--a------|19968] E:\ÅÒ¢×è.doc [03/25/2009 05:07 PM|--a------|191488] E:\Glascow Score.ppt [07/16/2009 08:33 AM|--a------|423424] E:\Pr?sentation de cas lao.ppt [07/16/2009 01:00 PM|--a------|22016] E:\Nouveau Microsoft Word Document.doc [07/19/2009 06:14 PM|--a------|2065152] E:\TeamViewer_Setup_fr.exe [07/20/2009 10:27 PM|--a------|2499072] E:\officemath(1).msi [07/21/2009 12:05 PM|--a------|2945816] E:\dotnetfx3setup.exe [07/23/2009 09:19 AM|--a------|448000] E:\Pr?sentation de cas laov2.ppt [08/13/2009 09:02 AM|--a------|206336] E:\Concours Infirmier 2009 Lao3.doc [08/13/2009 09:18 AM|--a------|26624] E:\Feuille de maintenance Lao.doc [08/26/2009 01:44 PM|--a------|296] E:\WMPInfo.xml [03/31/2008 05:40 AM|--a------|131072] E:\USBCillin.exe [05/05/1999 10:22 PM|--a------|471040] E:\KERNEL32.DLL [02/17/2009 02:19 PM|--a------|2082] E:\readme.txt [09/14/2009 09:18 AM|--a------|1232104] E:\UsbFix.exe [07/24/2005 10:33 PM|--a------|2307] E:\UsbFix.txt [07/24/2005 10:35 PM|--a------|1048] E:\BOOTEX.LOG [07/24/2005 10:37 PM|-rahs----|523] E:\autorun.inf [07/24/2005 07:48 AM|--a------|19342] F:\cc_20050724_074820.reg [07/24/2005 10:35 PM|--a------|936] F:\BOOTEX.LOG [07/24/2005 10:37 PM|-rahs----|523] F:\autorun.inf ################## | Vaccination | # C:\autorun.inf -> Folder created by UsbFix. # E:\autorun.inf -> Folder created by UsbFix. # F:\autorun.inf -> Folder created by UsbFix.

Merci pour ta réponse. Je vais faire ca se soir.... (je suis au Laos actuellement, donc il y a un peu de décalage horaire ). Je te tiens au courant.

Bonjour, J'ai ANtivir comme antivirus, j'en suis satisfait. J'ai choppé un virus via une clé Usb, et maintenant mon ordinateur contamine toute clé USB que je branche à travers 2 fichiers cachés : -autorun.inf -Cache-20194029 J'ai essayé Spybot, Malvaresbytes, CCleaner. sans succès. Puis désintallé Antivir, et essayer Kaspersky (version d'evaluation ) puis Bitdefender (idem ) Toujours sans succès. Si qql à un avis. Merci ++ (bon au pire je reformatte, mais comme 5 de mes potes on le meme virus.... ca serait cool de trouver une solution ) Luc