keiko99

Inaktiv
  • Innholdsteller

    385
  • Ble med

  • Besøkte siden sist


Alt skrevet av keiko99

  1. keiko99 la til et innlegg i et emne kan dette ha noe med varmen for pcen min   

    sånn: http://dump.no/files/9ffc44677594/Report.htm

    hjelper dette bildet noe ? http://img31.imageshack.us/img31/8057/spillinn.jpg
    • 0
  2. keiko99 la til et innlegg i et emne kan dette ha noe med varmen for pcen min   

    jeg har avast! Antivirus.

    Bruk heller codebox eller spoiler altenativet.hmm hvordan ?

    skal starte opp i sikkerhetsmodus med nettverk.
    • 0
  3. keiko99 la til et innlegg i et emne kan dette ha noe med varmen for pcen min   

    tok ett bilde av fronten på pc. her: http://img29.imageshack.us/img29/955/26062009023e.jpg

    Denne er ikke så gammel pc

    var kanksje ikke lett og se hva den siste lampa viste da

    her har du raporten: file:///C:/Users/Roy%20Tangnes/Desktop/Report.htm (om du kan se den sånn da)
    • 0
  4. keiko99 la til et emne i Generelt om maskinvare   

    kan dette ha noe med varmen for pcen min
    Når jeg skal se innslag fra vg.no eller andre så stopper det ofte og den henger litt også

    kan dette ha noe med at det er alt for varmt for pc min. jeg har åpnet viduer og sideplata til maskinen, men det er først nå da
    • 6 svar
    • visninger
  5. keiko99 la til et innlegg i et emne Åpne porter for utorrent   

    forsatt ingen hjelp.. jeg kan legge ut enda ett svar fra en jeg kjenner:

    Application er programmet.
    Destination IP address er din interne ip. 192.168.1.X
    Destination Port Map er porten som programmet bruker.

    I Source IP Address skriver du 0.0.0.0
    I Destination IP Address skriver du din interne ip, som begynner på 192.168....
    I Source Netmask skriver du også 0.0.0.0
    I Destination Netmask skriver du 255.255.255.0
    I Destination port Start, End, og Map skriver du den porten du skal åpne.

    Mulig jeg tenker omvendt her, og da må du bytte om Source og Destination...

    jeg håper dere kan nå fortelle meg om dette er rett eller hjelpe meg mere
    • 0
  6. keiko99 la til et innlegg i et emne Åpne porter for utorrent   

    ¨jeg spurte noen andre... rart at ikke noen kunne srive sånn:
    Source IP adress er din IP-adresse. 192.168.1.X
    Source netmask er da 255.255.255.0
    Resten er portene, bare å fylle inn.

    jeg mangler svar fra en på dette.. kanskje dere kan hjelpe med det ?

    hva er Application ?
    hva er Destination IP Address ?

    hva er Destination Port Map ?
    • 0
  7. keiko99 la til et innlegg i et emne Åpne porter for utorrent   

    innstaler TeamViewer 4 da og hjelp meg... har ingen jeg og jeg vet om den siden du viser til, men jeg skjønner ikke mer av den grunn... rart det ikke kan finnes andre måter og hjelpe en på
    • 0
  8. keiko99 la til et innlegg i et emne Åpne porter for utorrent   

    skjønte ikke noe av det. jeg er heller ikke noe god i engelsk
    • 0
  9. keiko99 la til et emne i Bredbånd og Internettdeling   

    Åpne porter for utorrent
    jeg er ikke proff til dette så der flott om dere kan hjelpe meg med og fortelle hva jeg skal fylle inn her: http://img196.imageshack.us/img196/3413/spillinnz.jpg
    jeg må åpne alt fra 0 til slutten
    • 7 svar
    • visninger
  10. keiko99 la til et innlegg i et emne Åpne porter for uTorrent   

    trodde en kunne forsette tråder, :wall:
    • 0
  11. keiko99 la til et innlegg i et emne Åpne porter for uTorrent   

    kan dere hjelpe meg også jeg har Tilgin vood 452 ruter. har ett bilde her av der jeg skal gjøre min portering se link http://img196.imageshack.us/img196/3413/spillinnz.jpg
    • 0
  12. keiko99 la til et innlegg i et emne [LØST] Rss-feed På Nettsiden Min   

    skal jeg bare sette denne løst da eller ?
    • 0
  13. keiko99 la til et innlegg i et emne [LØST] Rss-feed På Nettsiden Min   

    nå skjønte jeg ikke helt hva du mener,... jeg har jo ingen nyheter på siden min
    • 0
  14. keiko99 la til et innlegg i et emne [LØST] Rss-feed På Nettsiden Min   

    hvordan finner jeg MySQL ?
    • 0
  15. keiko99 la til et innlegg i et emne [LØST] Rss-feed På Nettsiden Min   

    ok, men hvor finner jeg det...

    en annen fortalte meg på facebook at han brukte: rss modul til Joomla
    • 0
  16. keiko99 la til et innlegg i et emne [LØST] Rss-feed På Nettsiden Min   

    er det ingen som skjønner hva jeg mener ?
    • 0
  17. keiko99 la til et emne i HTML, XML og CSS   

    [LØST] Rss-feed På Nettsiden Min
    hvordan kan jeg legge inn slik at denne linken jeg viser til: http://www.ffksupporter.net/rss/forum.php kan komme frem på hovedsiden på min hjemme side ?

    vist dere ser på hvordan det ser ut på første siden til ffksupporet,net: http://www.ffksupporter.net/
    • 11 svar
    • visninger
  18. keiko99 la til et emne i Generelt om Internett   

    [LØST] legge ut videosnutt på youtube
    jeg har prøvd og laste opp en: Windows Media Audio-/Video-fil (.wmv), men det tror jeg ikke funker for når jeg prøver så bruker så alt for lang tid føre jeg det er opplastet, hvilket format må det være da ?

    jeg har lastet ned ett program som heter: Any Video Converter det kan jeg vel bruke for og convertere.
    • 3 svar
    • visninger
  19. keiko99 la til et innlegg i et emne [LØST] legge ut videosnutt på youtube   

    ja nå fikk jeg den inn på Uppladdade videoklipp.. hva skal jeg gjøre nå da ?
    • 0
  20. keiko99 la til et emne i Løst og inaktive saker   

    [LØST] rette på feil i oppstart på vista
    håper denne funker: http://www.imgnets.com/viewer.php?id=92672382.jpg

    denne er den samme: http://www.imgnets.com/viewer.php?id=92672382.jpg
    • 28 svar
    • visninger
  21. keiko99 la til et innlegg i et emne [LØST] rette på feil i oppstart på vista   

    er denne saken løst nå ?
    • 0
  22. keiko99 la til et innlegg i et emne [LØST] rette på feil i oppstart på vista   

    Combofix (klikk for å vise/skjule)

    ComboFix 08-12-18.01 - Roy Tangnes 2008-12-19 11:09:42.1 - NTFSx86
    Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1044.18.1022.179 [GMT 1:00]
    Kjører fra: c:\users\Roy Tangnes\Desktop\ComboFix.exe
    .

    ((((((((((((((((((((((((((((((((((((((( Andre slettinger )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    c:\windows\system32\mdm.exe
    c:\windows\System32\vuvvDcdd.ini
    c:\windows\system32\vuvvDcdd.ini2

    .
    ((((((((((((((((((((((((((( Filer Opprettet Fra 2008-11-19 til 2008-12-19 )))))))))))))))))))))))))))))))))
    .

    2008-12-19 01:20 . 2008-12-19 01:20 <DIR> d-------- C:\rsit
    2008-12-19 01:20 . 2008-12-19 01:20 <DIR> d-------- c:\program files\trend micro
    2008-12-18 15:07 . 2008-04-26 09:26 891,448 --a------ c:\windows\System32\drivers\tcpip.sys
    2008-12-18 04:42 . 2008-12-18 04:42 <DIR> d-------- C:\PerfLogs
    2008-12-18 04:07 . 2008-01-19 08:38 4,595,712 --a------ c:\windows\System32\AuthFWSnapin.dll
    2008-12-18 04:06 . 2008-01-19 08:33 8,139,264 --a------ c:\windows\System32\ssBranded.scr
    2008-12-18 04:05 . 2008-01-19 08:32 5,714,432 --a------ c:\windows\System32\logon.scr
    2008-12-18 04:04 . 2008-01-19 07:06 8,147,456 --a------ c:\windows\System32\wmploc.DLL
    2008-12-18 04:03 . 2008-01-19 08:33 599,552 --a------ c:\windows\System32\vsp1cln.exe
    2008-12-18 04:03 . 2008-01-19 08:36 357,888 --a------ c:\windows\System32\wbemcomn.dll
    2008-12-18 04:02 . 2008-01-19 08:36 704,512 --a------ c:\windows\System32\SmiEngine.dll
    2008-12-18 04:02 . 2008-01-19 08:36 139,264 --a------ c:\windows\System32\SmiInstaller.dll
    2008-12-18 04:02 . 2008-01-19 08:36 129,536 --a------ c:\windows\System32\sqmapi.dll
    2008-12-18 04:01 . 2008-01-19 08:36 218,624 --a------ c:\windows\System32\wdscore.dll
    2008-12-18 04:01 . 2008-01-19 08:33 130,560 --a------ c:\windows\System32\PkgMgr.exe
    2008-12-18 04:00 . 2008-01-19 08:34 305,152 --a------ c:\windows\System32\msdelta.dll
    2008-12-18 04:00 . 2008-01-19 08:34 258,560 --a------ c:\windows\System32\dpx.dll
    2008-12-18 04:00 . 2008-01-19 08:34 246,784 --a------ c:\windows\System32\drvstore.dll
    2008-12-18 04:00 . 2008-01-19 08:35 35,328 --a------ c:\windows\System32\mspatcha.dll
    2008-12-18 03:07 . 2008-12-18 03:07 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\FastStone
    2008-12-17 21:44 . 2008-12-13 07:23 1,659,392 --a------ c:\windows\System32\mshtml.tlb
    2008-12-17 16:55 . 2008-12-17 16:55 <DIR> d-------- c:\program files\CCleaner
    2008-12-17 15:18 . 2008-12-17 15:18 524,288 --ahs---- C:\ntuser.dat{86371218-cbcd-11dd-b6e4-001a92104d94}.TMContainer00000000000000000002.regtrans-ms
    2008-12-17 15:18 . 2008-12-17 15:18 524,288 --ahs---- C:\ntuser.dat{86371218-cbcd-11dd-b6e4-001a92104d94}.TMContainer00000000000000000001.regtrans-ms
    2008-12-17 15:18 . 2008-12-17 15:18 524,288 --ahs---- C:\ntuser.dat{8637120c-cbcd-11dd-b6e4-001a92104d94}.TMContainer00000000000000000002.regtrans-ms
    2008-12-17 15:18 . 2008-12-17 15:18 524,288 --ahs---- C:\ntuser.dat{8637120c-cbcd-11dd-b6e4-001a92104d94}.TMContainer00000000000000000001.regtrans-ms
    2008-12-17 15:18 . 2008-12-17 15:18 262,144 --a------ C:\ntuser.dat
    2008-12-17 15:18 . 2008-12-17 15:18 65,536 --ahs---- C:\ntuser.dat{86371218-cbcd-11dd-b6e4-001a92104d94}.TM.blf
    2008-12-17 15:18 . 2008-12-17 15:18 65,536 --ahs---- C:\ntuser.dat{8637120c-cbcd-11dd-b6e4-001a92104d94}.TM.blf
    2008-12-17 15:18 . 2008-12-17 15:18 5,120 --ah----- C:\ntuser.dat.LOG1
    2008-12-17 15:18 . 2008-12-17 15:18 0 --ah----- C:\ntuser.dat.LOG2
    2008-12-17 04:29 . 2008-12-17 04:29 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\Malwarebytes
    2008-12-17 04:29 . 2008-12-17 04:29 <DIR> d-------- c:\users\All Users\Malwarebytes
    2008-12-17 04:29 . 2008-12-17 04:29 <DIR> d-------- c:\programdata\Malwarebytes
    2008-12-17 04:29 . 2008-12-17 11:43 <DIR> d-------- c:\program files\Malwarebytes' Anti-Malware
    2008-12-17 04:29 . 2008-12-03 19:52 38,496 --a------ c:\windows\System32\drivers\mbamswissarmy.sys
    2008-12-17 04:29 . 2008-12-03 19:52 15,504 --a------ c:\windows\System32\drivers\mbam.sys
    2008-12-16 15:52 . 2008-12-16 15:52 <DIR> dr-h----- c:\users\Roy Tangnes\AppData\Roaming\SecuROM
    2008-12-16 15:52 . 2008-12-16 15:52 107,888 --a------ c:\windows\System32\CmdLineExt.dll
    2008-12-16 15:51 . 2008-12-16 15:51 <DIR> d-------- c:\program files\Hasbro
    2008-12-15 19:04 . 2008-12-19 11:14 12 --a------ c:\windows\bthservsdp.dat
    2008-12-14 14:41 . 2008-12-14 14:41 410,984 --a------ c:\windows\System32\deploytk.dll
    2008-12-14 14:37 . 2008-12-14 14:37 <DIR> d-------- c:\windows\Sun
    2008-12-14 09:10 . 2008-12-14 09:10 <DIR> d-------- c:\program files\FDRLab
    2008-12-13 20:39 . 2008-12-14 12:42 <DIR> d-------- C:\MINE OPPTAK
    2008-12-13 20:08 . 2008-12-13 21:40 <DIR> d-------- c:\windows\System32\Adobe
    2008-12-13 15:17 . 2008-12-13 15:17 <DIR> d-------- C:\Games
    2008-12-13 11:29 . 2008-12-19 02:59 69 --a------ c:\windows\NeroDigital.ini
    2008-12-13 11:23 . 2008-12-13 11:23 <DIR> d-------- c:\program files\DAEMON Tools Lite
    2008-12-13 11:19 . 2008-12-13 11:19 717,296 --a------ c:\windows\System32\drivers\sptd.sys
    2008-12-13 11:18 . 2008-12-13 11:18 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\DAEMON Tools
    2008-12-13 03:48 . 2008-12-13 03:48 <DIR> d-------- c:\program files\vtplus
    2008-12-13 03:48 . 2008-12-13 03:48 <DIR> d-------- c:\program files\Common Files\IviSDK
    2008-12-13 03:47 . 2008-12-16 02:21 <DIR> d-------- c:\program files\WinTV
    2008-12-13 03:47 . 2008-12-13 03:50 <DIR> d-------- C:\MyVideos
    2008-12-13 03:45 . 2008-12-13 03:45 <DIR> d-------- C:\Hauppauge
    2008-12-13 03:45 . 2007-02-06 10:27 185,728 --a------ c:\windows\System32\drivers\hcwPP2.sys
    2008-12-13 03:45 . 2007-02-06 10:26 99,840 --a------ c:\windows\System32\hcwCCnv2.ax
    2008-12-13 03:45 . 2007-02-06 10:26 95,232 --a------ c:\windows\System32\hcwPrxA2.ax
    2008-12-13 03:45 . 2007-01-15 04:43 16,382 --a------ c:\windows\System32\drivers\HcwMakoC.rom
    2008-12-13 03:45 . 2007-02-06 10:37 16,382 --a------ c:\windows\System32\drivers\HcwMakoB.rom
    2008-12-13 03:28 . 2008-12-13 03:28 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\Nero
    2008-12-13 03:25 . 2008-12-13 03:25 <DIR> d-------- c:\users\All Users\Nero
    2008-12-13 03:25 . 2008-12-13 03:25 <DIR> d-------- c:\programdata\Nero
    2008-12-13 03:25 . 2008-12-13 03:25 <DIR> d-------- c:\program files\Nero
    2008-12-13 03:25 . 2008-12-13 03:27 <DIR> d-------- c:\program files\Common Files\Nero
    2008-12-13 03:16 . 2008-12-14 14:41 <DIR> d-------- c:\program files\Java
    2008-12-13 03:16 . 2008-12-13 03:16 <DIR> d-------- c:\program files\Common Files\Java
    2008-12-13 03:15 . 2007-12-04 09:59 151,552 --a------ c:\windows\System32\SpamExpertsLSP.dll
    2008-12-13 03:14 . 2008-12-19 11:14 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\SpamExperts
    2008-12-13 03:14 . 2008-12-13 03:15 <DIR> d-------- c:\program files\SpamExperts
    2008-12-13 03:01 . 2008-12-13 03:01 <DIR> d-------- c:\users\All Users\IncrediMail
    2008-12-13 03:01 . 2008-12-13 03:02 <DIR> d-------- c:\users\All Users\IM
    2008-12-13 03:01 . 2008-12-13 03:01 <DIR> d-------- c:\programdata\IncrediMail
    2008-12-13 03:01 . 2008-12-13 03:02 <DIR> d-------- c:\programdata\IM
    2008-12-13 03:01 . 2008-12-13 03:14 <DIR> d-------- c:\program files\IncrediMail
    2008-12-13 02:56 . 2008-12-13 02:56 <DIR> d-------- c:\program files\FileZilla
    2008-12-13 02:50 . 2008-12-13 02:54 <DIR> d-------- c:\program files\BitLord
    2008-12-13 02:34 . 2008-12-13 02:35 <DIR> d-------- c:\users\All Users\Adobe
    2008-12-13 02:34 . 2008-12-13 02:34 <DIR> d-------- c:\program files\Common Files\Adobe
    2008-12-13 02:32 . 2008-12-13 02:32 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\vlc
    2008-12-13 02:31 . 2008-12-13 03:32 <DIR> d-------- c:\users\All Users\NOS
    2008-12-13 02:31 . 2008-12-13 03:32 <DIR> d-------- c:\programdata\NOS
    2008-12-13 02:31 . 2008-12-13 03:32 <DIR> d-------- c:\program files\NOS
    2008-12-13 02:30 . 2008-12-13 02:30 <DIR> d-------- c:\program files\VideoLAN
    2008-12-13 02:09 . 2008-12-13 02:09 0 --a------ c:\windows\nsreg.dat
    2008-12-13 02:08 . 2008-12-13 02:09 <DIR> d-------- c:\program files\Onlinebandit-no
    2008-12-13 02:06 . 2008-12-13 02:06 <DIR> d-------- c:\program files\FastStone Image Viewer
    2008-12-13 02:00 . 2008-12-16 22:39 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\Winamp
    2008-12-13 02:00 . 2008-12-13 02:00 <DIR> d-------- c:\program files\Winamp
    2008-12-13 01:56 . 2008-12-13 01:56 269,312 --a------ c:\windows\System32\es.dll
    2008-12-13 01:50 . 2008-12-13 01:50 1,809,944 --a------ c:\windows\System32\wuaueng.dll
    2008-12-13 01:50 . 2008-12-13 01:50 1,524,736 --a------ c:\windows\System32\wucltux.dll
    2008-12-13 01:50 . 2008-12-13 01:50 561,688 --a------ c:\windows\System32\wuapi.dll
    2008-12-13 01:50 . 2008-12-13 01:50 162,064 --a------ c:\windows\System32\wuwebv.dll
    2008-12-13 01:50 . 2008-12-13 01:50 83,456 --a------ c:\windows\System32\wudriver.dll
    2008-12-13 01:50 . 2008-12-13 01:50 51,224 --a------ c:\windows\System32\wuauclt.exe
    2008-12-13 01:50 . 2008-12-13 01:50 43,544 --a------ c:\windows\System32\wups2.dll
    2008-12-13 01:50 . 2008-12-13 01:50 34,328 --a------ c:\windows\System32\wups.dll
    2008-12-13 01:50 . 2008-12-13 01:50 31,232 --a------ c:\windows\System32\wuapp.exe
    2008-12-13 01:49 . 2008-12-13 03:47 483 --a------ c:\windows\ODBC.INI
    2008-12-13 01:49 . 2008-12-13 01:49 63 --a------ c:\windows\mdm.ini
    2008-12-13 01:49 . 2008-12-13 01:49 0 --a------ c:\windows\NSREX.INI
    2008-12-13 01:48 . 2008-12-13 01:48 35 --a------ c:\windows\vbaddin.ini
    2008-12-13 01:47 . 2008-12-13 01:47 <DIR> d-------- c:\windows\System32\Viewers
    2008-12-13 01:46 . 2008-12-13 01:46 <DIR> d-------- c:\program files\Microsoft FrontPage
    2008-12-13 01:45 . 2008-12-13 01:45 <DIR> d-------- c:\program files\Snapshot Viewer
    2008-12-13 01:44 . 2008-12-13 01:44 <DIR> d-------- c:\windows\Twain32
    2008-12-13 01:44 . 2008-12-13 01:44 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\Microsoft Web Folders
    2008-12-13 01:25 . 2008-12-13 01:25 361,984 --a------ c:\windows\System32\IPSECSVC.DLL
    2008-12-13 01:25 . 2008-12-13 01:25 272,896 --a------ c:\windows\System32\polstore.dll
    2008-12-13 01:25 . 2008-12-13 01:25 61,440 --a------ c:\windows\System32\winipsec.dll
    2008-12-13 01:25 . 2008-12-13 01:25 28,672 --a------ c:\windows\System32\FwRemoteSvr.dll
    2008-12-13 01:24 . 2008-12-13 01:24 1,820 --a------ c:\windows\System32\rasctrnm.h
    2008-12-13 01:23 . 2008-12-13 01:23 241,152 --a------ c:\windows\System32\PortableDeviceApi.dll
    2008-12-13 01:23 . 2008-12-13 01:23 160,768 --a------ c:\windows\System32\PortableDeviceTypes.dll
    2008-12-13 01:23 . 2008-12-13 01:23 94,720 --a------ c:\windows\System32\PortableDeviceClassExtension.dll
    2008-12-13 01:18 . 2008-12-13 01:18 428,544 --a------ c:\windows\System32\EncDec.dll
    2008-12-13 01:18 . 2008-12-13 01:18 293,376 --a------ c:\windows\System32\psisdecd.dll
    2008-12-13 01:18 . 2008-12-13 01:18 217,088 --a------ c:\windows\System32\psisrndr.ax
    2008-12-13 01:18 . 2008-12-13 01:18 177,664 --a------ c:\windows\System32\mpg2splt.ax
    2008-12-13 01:18 . 2008-12-13 01:18 80,896 --a------ c:\windows\System32\MSNP.ax
    2008-12-13 01:18 . 2008-12-13 01:18 69,632 --a------ c:\windows\System32\Mpeg2Data.ax
    2008-12-13 01:18 . 2008-12-13 01:18 57,856 --a------ c:\windows\System32\MSDvbNP.ax
    2008-12-13 01:15 . 2008-12-13 01:15 296,960 --a------ c:\windows\System32\gdi32.dll

    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2008-12-18 03:51 174 --sha-w c:\program files\desktop.ini
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Sidebar
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Photo Gallery
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Mail
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Journal
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Defender
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Collaboration
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Calendar
    2008-12-16 20:17 --------- d---a-w c:\program files\Common Files\LightScribe
    2008-12-13 21:39 --------- d-----w c:\program files\HP
    2008-12-13 02:48 --------- d--h--w c:\program files\InstallShield Installation Information
    2008-12-13 02:48 --------- d-----w c:\program files\Common Files\InstallShield
    2008-12-13 00:12 541,696 ----a-w c:\windows\AppPatch\AcLayers.dll
    2008-12-13 00:12 52,736 ----a-w c:\windows\AppPatch\iebrshim.dll
    2008-12-13 00:12 460,288 ----a-w c:\windows\AppPatch\AcSpecfc.dll
    2008-12-13 00:12 2,560 ----a-w c:\windows\AppPatch\AcRes.dll
    2008-12-13 00:12 2,154,496 ----a-w c:\windows\AppPatch\AcGenral.dll
    2008-12-13 00:12 173,056 ----a-w c:\windows\AppPatch\AcXtrnal.dll
    2008-12-12 20:52 --------- d-----w c:\program files\Google
    2008-12-12 20:50 --------- d-----w c:\programdata\Symantec
    2008-12-12 20:50 --------- d-----w c:\program files\Common Files\Symantec Shared
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Start-meny
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Skrivebord
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Programdata
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Maler
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Favoritter
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Dokumenter
    2008-12-12 20:27 --------- d-sh--w c:\program files\Fellesfiler
    1999-03-29 17:31 99,840 ----a-w c:\program files\Common Files\IRAABOUT.DLL
    1998-12-09 02:53 70,144 ----a-w c:\program files\Common Files\IRAMDMTR.DLL
    1998-12-09 02:53 48,640 ----a-w c:\program files\Common Files\IRALPTTR.DLL
    1998-12-09 02:53 31,744 ----a-w c:\program files\Common Files\IRAWEBTR.DLL
    1998-12-09 02:53 186,368 ----a-w c:\program files\Common Files\IRAREG.DLL
    1998-12-09 02:53 17,920 ----a-w c:\program files\Common Files\IRASRIAL.DLL
    .

    (((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret )))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Merk* tomme oppføringer & gyldige standardoppføringer vises ikke
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]
    "IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2008-11-09 243072]
    "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2007-12-13 1688872]
    "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-04-01 486856]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "CCUTRAYICON"="FactoryMode" [X]
    "hpsysdrv"="c:\hp\support\hpsysdrv.exe" [2006-09-28 65536]
    "KBD"="c:\hp\KBD\KbdStub.EXE" [2006-12-08 65536]
    "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2006-09-29 151552]
    "avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-11-26 81000]
    "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2007-08-31 1037736]
    "itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2006-11-21 813912]
    "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
    "NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]
    "NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-12-03 2213160]
    "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
    "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-14 136600]
    "NvSvc"="c:\windows\system32\nvsvc.dll" [2006-11-21 90191]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-11-21 7753728]
    "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-11-21 81920]
    "RtHDVCpl"="RtHDVCpl.exe" [2006-11-09 c:\windows\RtHDVCpl.exe]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
    "Launcher"="c:\windows\SMINST\launcher.exe" [2006-11-24 44136]

    c:\users\Roy Tangnes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    SpamExperts.lnk - c:\program files\SpamExperts\SpamExperts.exe [2008-01-22 77824]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "EnableLUA"= 0 (0x0)
    "EnableUIADesktopToggle"= 0 (0x0)

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "AppInit_DLLs"=c:\windows\system32\SpamExpertsLSP.dll

    [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk]
    path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
    backup=c:\windows\pss\Microsoft Office.lnk.CommonStartup
    backupExtension=.CommonStartup

    [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Symantec Fax Starter Edition Port.lnk]
    path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Symantec Fax Starter Edition Port.lnk
    backup=c:\windows\pss\Symantec Fax Starter Edition Port.lnk.CommonStartup
    backupExtension=.CommonStartup

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
    --a------ 2008-04-01 19:49 36352 c:\program files\Winamp\winampa.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-85557800-2749039883-1928264560-1001]
    "EnableNotificationsRef"=dword:00000001

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
    "{7DF2FA04-51DE-4AC3-A691-387985938CF6}"= UDP:c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.exe:SPCM
    "{4CE1C60D-8DF9-4907-B4F3-F7EDA448DED2}"= TCP:c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.exe:SPCM
    "{1676B1D8-2BFA-40E6-8132-6FA7722D2C89}"= UDP:c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe:Intel® Viiv Media Server
    "{22B69B6B-43BB-4618-8720-EFA9DF9A89FE}"= TCP:c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe:Intel® Viiv Media Server
    "{85BA1A2F-4540-48D0-B841-0E32F90E5762}"= UDP:c:\program files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe:Intel® Remoting Service
    "{8AC8DE4E-9690-45B8-BC4F-50DAA9BB1BD2}"= TCP:c:\program files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe:Intel® Remoting Service
    "{CB755BED-F20E-4C14-AD75-37AA28FA2D1C}"= TCP:9442:127.0.0.1:Intel® Viiv Media Server Discovery
    "{7C3259A7-4A13-40B3-B283-DB736C6F74BB}"= TCP:1900:LocalSubnet:LocalSubnet:Intel® Viiv Media Server UPnP Discovery
    "{BA6AEE06-D1B7-4335-A48C-5D0291F208BD}"= c:\program files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone)
    "TCP Query User{C17AB0AB-BD9C-4B63-B72F-2BFAAC3ADFBE}c:\\program files\\bitlord\\bitlord.exe"= UDP:c:\program files\bitlord\bitlord.exe:BitLord
    "UDP Query User{4C2E09D4-5398-455F-8C63-84372ADC0140}c:\\program files\\bitlord\\bitlord.exe"= TCP:c:\program files\bitlord\bitlord.exe:BitLord
    "{A3E0A545-B04B-44BA-B284-9470453D55B9}"= Disabled:UDP:c:\program files\IncrediMail\bin\ImpCnt.exe:IncrediMail
    "{987D0856-8199-4494-A6B1-14350956DECB}"= Disabled:TCP:c:\program files\IncrediMail\bin\ImpCnt.exe:IncrediMail
    "TCP Query User{8A82F0D2-E1AF-4789-B61D-E05BC60AFA81}c:\\program files\\spamexperts\\spamexperts.exe"= UDP:c:\program files\spamexperts\spamexperts.exe:SpamExperts Desktop
    "UDP Query User{A326485B-D489-4B7F-97F4-BF09F47811C4}c:\\program files\\spamexperts\\spamexperts.exe"= TCP:c:\program files\spamexperts\spamexperts.exe:SpamExperts Desktop
    "TCP Query User{D0EDD501-F2F3-4728-98CB-C525E41B3EE8}c:\\program files\\windows sidebar\\sidebar.exe"= UDP:c:\program files\windows sidebar\sidebar.exe:Windows Sidepanel
    "UDP Query User{F063B9F7-40B8-4566-86A6-DF19F9AFE0D0}c:\\program files\\windows sidebar\\sidebar.exe"= TCP:c:\program files\windows sidebar\sidebar.exe:Windows Sidepanel
    "TCP Query User{0017C26D-C817-404E-9268-70EF498FFC75}c:\\program files\\mozilla firefox\\firefox.exe"= UDP:c:\program files\mozilla firefox\firefox.exe:Firefox
    "UDP Query User{79BE2589-7850-4863-A2DF-6BEE9986A24B}c:\\program files\\mozilla firefox\\firefox.exe"= TCP:c:\program files\mozilla firefox\firefox.exe:Firefox
    "{77EDC8F8-4D8B-475D-A99B-F174AF79F3FF}"= c:\program files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone)
    "{E21D8413-473B-4026-A403-CB1E135D45CB}"= Disabled:UDP:c:\program files\IncrediMail\bin\IncMail.exe:IncrediMail
    "{F76FE482-DC35-40C2-8A08-95B1FF18DDD1}"= Disabled:TCP:c:\program files\IncrediMail\bin\IncMail.exe:IncrediMail
    "{55EB6989-B362-4F0C-8A37-AD3B56273A30}"= Disabled:UDP:c:\program files\IncrediMail\bin\ImApp.exe:IncrediMail
    "{E36B7B98-3768-416E-A65B-A6B4962D0930}"= Disabled:TCP:c:\program files\IncrediMail\bin\ImApp.exe:IncrediMail

    R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-12-13 111184]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys [2008-12-13 20560]
    R2 aswMonFlt;aswMonFlt;c:\windows\system32\DRIVERS\aswMonFlt.sys [2008-12-13 51792]
    R2 DQLWinService;DQLWinService;"c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe" [2006-09-03 208896]
    S2 IntelDHSvcConf;Intel DH Service;"c:\program files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe" [2006-05-10 29696]
    S3 HauppaugeTVServer;HauppaugeTVServer;c:\progra~1\WinTV\HCWTVS~1.EXE [2008-12-13 815104]
    S3 netr73;Tilgin MSA110 802.11b/g USB Network Adapter Driver for Vista;c:\windows\system32\DRIVERS\netr73.sys [2008-12-12 255488]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    bthsvcs REG_MULTI_SZ BthServ

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b9d854af-c8ff-11dd-9894-001a92104d94}]
    \shell\AutoRun\command - L:\setup.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b9d854bc-c8ff-11dd-9894-001a92104d94}]
    \shell\AutoRun\command - M:\setup.exe
    .
    - - - - TOMME PEKERE FJERNET - - - -

    BHO-{E114ECCE-A4CA-43AB-A5BE-AA2C3E7CF35A} - c:\windows\system32\ddcDvvuv.dll



    **************************************************************************

    catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-12-19 11:17:03
    Windows 6.0.6001 Service Pack 1 NTFS

    skanner skjulte prosesser ...

    skanner skjulte autostart-oppføringer ...

    skanner skjulte filer ...

    skanning vellykket
    skjulte filer: 0

    **************************************************************************
    .
    ------------------------ Andre Kjørende Prosesser ------------------------
    .
    c:\windows\System32\audiodg.exe
    c:\program files\Alwil Software\Avast4\aswUpdSv.exe
    c:\program files\Alwil Software\Avast4\ashServ.exe
    c:\windows\System32\conime.exe
    c:\program files\Alwil Software\Avast4\ashDisp.exe
    c:\program files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
    c:\program files\Common Files\LightScribe\LSSrvc.exe
    c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
    c:\windows\System32\rundll32.exe
    c:\program files\Microsoft IntelliPoint\dpupdchk.exe
    c:\windows\System32\WUDFHost.exe
    c:\program files\Alwil Software\Avast4\ashMaiSv.exe
    c:\program files\Alwil Software\Avast4\ashWebSv.exe
    c:\program files\Common Files\Nero\Lib\NMIndexingService.exe
    c:\program files\IncrediMail\bin\ImApp.exe
    c:\hp\KBD\kbd.exe
    .
    **************************************************************************
    .
    Tidspunkt ferdig: 2008-12-19 11:30:58 - maskinen ble startet på nytt
    ComboFix-quarantined-files.txt 2008-12-19 10:30:47

    Pre-Run: 354 063 372 288 byte ledig
    Post-Run: 354,239,721,472 byte ledig

    306 --- E O F --- 2008-12-18 14:14:53

    Fikk en feil melding underveis: ComboFix 08-12-18.01 - Roy Tangnes 2008-12-19 11:09:42.1 - NTFSx86
    Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1044.18.1022.179 [GMT 1:00]
    Kjører fra: c:\users\Roy Tangnes\Desktop\ComboFix.exe
    .

    ((((((((((((((((((((((((((((((((((((((( Andre slettinger )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    c:\windows\system32\mdm.exe
    c:\windows\System32\vuvvDcdd.ini
    c:\windows\system32\vuvvDcdd.ini2

    .
    ((((((((((((((((((((((((((( Filer Opprettet Fra 2008-11-19 til 2008-12-19 )))))))))))))))))))))))))))))))))
    .

    2008-12-19 01:20 . 2008-12-19 01:20 <DIR> d-------- C:\rsit
    2008-12-19 01:20 . 2008-12-19 01:20 <DIR> d-------- c:\program files\trend micro
    2008-12-18 15:07 . 2008-04-26 09:26 891,448 --a------ c:\windows\System32\drivers\tcpip.sys
    2008-12-18 04:42 . 2008-12-18 04:42 <DIR> d-------- C:\PerfLogs
    2008-12-18 04:07 . 2008-01-19 08:38 4,595,712 --a------ c:\windows\System32\AuthFWSnapin.dll
    2008-12-18 04:06 . 2008-01-19 08:33 8,139,264 --a------ c:\windows\System32\ssBranded.scr
    2008-12-18 04:05 . 2008-01-19 08:32 5,714,432 --a------ c:\windows\System32\logon.scr
    2008-12-18 04:04 . 2008-01-19 07:06 8,147,456 --a------ c:\windows\System32\wmploc.DLL
    2008-12-18 04:03 . 2008-01-19 08:33 599,552 --a------ c:\windows\System32\vsp1cln.exe
    2008-12-18 04:03 . 2008-01-19 08:36 357,888 --a------ c:\windows\System32\wbemcomn.dll
    2008-12-18 04:02 . 2008-01-19 08:36 704,512 --a------ c:\windows\System32\SmiEngine.dll
    2008-12-18 04:02 . 2008-01-19 08:36 139,264 --a------ c:\windows\System32\SmiInstaller.dll
    2008-12-18 04:02 . 2008-01-19 08:36 129,536 --a------ c:\windows\System32\sqmapi.dll
    2008-12-18 04:01 . 2008-01-19 08:36 218,624 --a------ c:\windows\System32\wdscore.dll
    2008-12-18 04:01 . 2008-01-19 08:33 130,560 --a------ c:\windows\System32\PkgMgr.exe
    2008-12-18 04:00 . 2008-01-19 08:34 305,152 --a------ c:\windows\System32\msdelta.dll
    2008-12-18 04:00 . 2008-01-19 08:34 258,560 --a------ c:\windows\System32\dpx.dll
    2008-12-18 04:00 . 2008-01-19 08:34 246,784 --a------ c:\windows\System32\drvstore.dll
    2008-12-18 04:00 . 2008-01-19 08:35 35,328 --a------ c:\windows\System32\mspatcha.dll
    2008-12-18 03:07 . 2008-12-18 03:07 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\FastStone
    2008-12-17 21:44 . 2008-12-13 07:23 1,659,392 --a------ c:\windows\System32\mshtml.tlb
    2008-12-17 16:55 . 2008-12-17 16:55 <DIR> d-------- c:\program files\CCleaner
    2008-12-17 15:18 . 2008-12-17 15:18 524,288 --ahs---- C:\ntuser.dat{86371218-cbcd-11dd-b6e4-001a92104d94}.TMContainer00000000000000000002.regtrans-ms
    2008-12-17 15:18 . 2008-12-17 15:18 524,288 --ahs---- C:\ntuser.dat{86371218-cbcd-11dd-b6e4-001a92104d94}.TMContainer00000000000000000001.regtrans-ms
    2008-12-17 15:18 . 2008-12-17 15:18 524,288 --ahs---- C:\ntuser.dat{8637120c-cbcd-11dd-b6e4-001a92104d94}.TMContainer00000000000000000002.regtrans-ms
    2008-12-17 15:18 . 2008-12-17 15:18 524,288 --ahs---- C:\ntuser.dat{8637120c-cbcd-11dd-b6e4-001a92104d94}.TMContainer00000000000000000001.regtrans-ms
    2008-12-17 15:18 . 2008-12-17 15:18 262,144 --a------ C:\ntuser.dat
    2008-12-17 15:18 . 2008-12-17 15:18 65,536 --ahs---- C:\ntuser.dat{86371218-cbcd-11dd-b6e4-001a92104d94}.TM.blf
    2008-12-17 15:18 . 2008-12-17 15:18 65,536 --ahs---- C:\ntuser.dat{8637120c-cbcd-11dd-b6e4-001a92104d94}.TM.blf
    2008-12-17 15:18 . 2008-12-17 15:18 5,120 --ah----- C:\ntuser.dat.LOG1
    2008-12-17 15:18 . 2008-12-17 15:18 0 --ah----- C:\ntuser.dat.LOG2
    2008-12-17 04:29 . 2008-12-17 04:29 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\Malwarebytes
    2008-12-17 04:29 . 2008-12-17 04:29 <DIR> d-------- c:\users\All Users\Malwarebytes
    2008-12-17 04:29 . 2008-12-17 04:29 <DIR> d-------- c:\programdata\Malwarebytes
    2008-12-17 04:29 . 2008-12-17 11:43 <DIR> d-------- c:\program files\Malwarebytes' Anti-Malware
    2008-12-17 04:29 . 2008-12-03 19:52 38,496 --a------ c:\windows\System32\drivers\mbamswissarmy.sys
    2008-12-17 04:29 . 2008-12-03 19:52 15,504 --a------ c:\windows\System32\drivers\mbam.sys
    2008-12-16 15:52 . 2008-12-16 15:52 <DIR> dr-h----- c:\users\Roy Tangnes\AppData\Roaming\SecuROM
    2008-12-16 15:52 . 2008-12-16 15:52 107,888 --a------ c:\windows\System32\CmdLineExt.dll
    2008-12-16 15:51 . 2008-12-16 15:51 <DIR> d-------- c:\program files\Hasbro
    2008-12-15 19:04 . 2008-12-19 11:14 12 --a------ c:\windows\bthservsdp.dat
    2008-12-14 14:41 . 2008-12-14 14:41 410,984 --a------ c:\windows\System32\deploytk.dll
    2008-12-14 14:37 . 2008-12-14 14:37 <DIR> d-------- c:\windows\Sun
    2008-12-14 09:10 . 2008-12-14 09:10 <DIR> d-------- c:\program files\FDRLab
    2008-12-13 20:39 . 2008-12-14 12:42 <DIR> d-------- C:\MINE OPPTAK
    2008-12-13 20:08 . 2008-12-13 21:40 <DIR> d-------- c:\windows\System32\Adobe
    2008-12-13 15:17 . 2008-12-13 15:17 <DIR> d-------- C:\Games
    2008-12-13 11:29 . 2008-12-19 02:59 69 --a------ c:\windows\NeroDigital.ini
    2008-12-13 11:23 . 2008-12-13 11:23 <DIR> d-------- c:\program files\DAEMON Tools Lite
    2008-12-13 11:19 . 2008-12-13 11:19 717,296 --a------ c:\windows\System32\drivers\sptd.sys
    2008-12-13 11:18 . 2008-12-13 11:18 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\DAEMON Tools
    2008-12-13 03:48 . 2008-12-13 03:48 <DIR> d-------- c:\program files\vtplus
    2008-12-13 03:48 . 2008-12-13 03:48 <DIR> d-------- c:\program files\Common Files\IviSDK
    2008-12-13 03:47 . 2008-12-16 02:21 <DIR> d-------- c:\program files\WinTV
    2008-12-13 03:47 . 2008-12-13 03:50 <DIR> d-------- C:\MyVideos
    2008-12-13 03:45 . 2008-12-13 03:45 <DIR> d-------- C:\Hauppauge
    2008-12-13 03:45 . 2007-02-06 10:27 185,728 --a------ c:\windows\System32\drivers\hcwPP2.sys
    2008-12-13 03:45 . 2007-02-06 10:26 99,840 --a------ c:\windows\System32\hcwCCnv2.ax
    2008-12-13 03:45 . 2007-02-06 10:26 95,232 --a------ c:\windows\System32\hcwPrxA2.ax
    2008-12-13 03:45 . 2007-01-15 04:43 16,382 --a------ c:\windows\System32\drivers\HcwMakoC.rom
    2008-12-13 03:45 . 2007-02-06 10:37 16,382 --a------ c:\windows\System32\drivers\HcwMakoB.rom
    2008-12-13 03:28 . 2008-12-13 03:28 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\Nero
    2008-12-13 03:25 . 2008-12-13 03:25 <DIR> d-------- c:\users\All Users\Nero
    2008-12-13 03:25 . 2008-12-13 03:25 <DIR> d-------- c:\programdata\Nero
    2008-12-13 03:25 . 2008-12-13 03:25 <DIR> d-------- c:\program files\Nero
    2008-12-13 03:25 . 2008-12-13 03:27 <DIR> d-------- c:\program files\Common Files\Nero
    2008-12-13 03:16 . 2008-12-14 14:41 <DIR> d-------- c:\program files\Java
    2008-12-13 03:16 . 2008-12-13 03:16 <DIR> d-------- c:\program files\Common Files\Java
    2008-12-13 03:15 . 2007-12-04 09:59 151,552 --a------ c:\windows\System32\SpamExpertsLSP.dll
    2008-12-13 03:14 . 2008-12-19 11:14 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\SpamExperts
    2008-12-13 03:14 . 2008-12-13 03:15 <DIR> d-------- c:\program files\SpamExperts
    2008-12-13 03:01 . 2008-12-13 03:01 <DIR> d-------- c:\users\All Users\IncrediMail
    2008-12-13 03:01 . 2008-12-13 03:02 <DIR> d-------- c:\users\All Users\IM
    2008-12-13 03:01 . 2008-12-13 03:01 <DIR> d-------- c:\programdata\IncrediMail
    2008-12-13 03:01 . 2008-12-13 03:02 <DIR> d-------- c:\programdata\IM
    2008-12-13 03:01 . 2008-12-13 03:14 <DIR> d-------- c:\program files\IncrediMail
    2008-12-13 02:56 . 2008-12-13 02:56 <DIR> d-------- c:\program files\FileZilla
    2008-12-13 02:50 . 2008-12-13 02:54 <DIR> d-------- c:\program files\BitLord
    2008-12-13 02:34 . 2008-12-13 02:35 <DIR> d-------- c:\users\All Users\Adobe
    2008-12-13 02:34 . 2008-12-13 02:34 <DIR> d-------- c:\program files\Common Files\Adobe
    2008-12-13 02:32 . 2008-12-13 02:32 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\vlc
    2008-12-13 02:31 . 2008-12-13 03:32 <DIR> d-------- c:\users\All Users\NOS
    2008-12-13 02:31 . 2008-12-13 03:32 <DIR> d-------- c:\programdata\NOS
    2008-12-13 02:31 . 2008-12-13 03:32 <DIR> d-------- c:\program files\NOS
    2008-12-13 02:30 . 2008-12-13 02:30 <DIR> d-------- c:\program files\VideoLAN
    2008-12-13 02:09 . 2008-12-13 02:09 0 --a------ c:\windows\nsreg.dat
    2008-12-13 02:08 . 2008-12-13 02:09 <DIR> d-------- c:\program files\Onlinebandit-no
    2008-12-13 02:06 . 2008-12-13 02:06 <DIR> d-------- c:\program files\FastStone Image Viewer
    2008-12-13 02:00 . 2008-12-16 22:39 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\Winamp
    2008-12-13 02:00 . 2008-12-13 02:00 <DIR> d-------- c:\program files\Winamp
    2008-12-13 01:56 . 2008-12-13 01:56 269,312 --a------ c:\windows\System32\es.dll
    2008-12-13 01:50 . 2008-12-13 01:50 1,809,944 --a------ c:\windows\System32\wuaueng.dll
    2008-12-13 01:50 . 2008-12-13 01:50 1,524,736 --a------ c:\windows\System32\wucltux.dll
    2008-12-13 01:50 . 2008-12-13 01:50 561,688 --a------ c:\windows\System32\wuapi.dll
    2008-12-13 01:50 . 2008-12-13 01:50 162,064 --a------ c:\windows\System32\wuwebv.dll
    2008-12-13 01:50 . 2008-12-13 01:50 83,456 --a------ c:\windows\System32\wudriver.dll
    2008-12-13 01:50 . 2008-12-13 01:50 51,224 --a------ c:\windows\System32\wuauclt.exe
    2008-12-13 01:50 . 2008-12-13 01:50 43,544 --a------ c:\windows\System32\wups2.dll
    2008-12-13 01:50 . 2008-12-13 01:50 34,328 --a------ c:\windows\System32\wups.dll
    2008-12-13 01:50 . 2008-12-13 01:50 31,232 --a------ c:\windows\System32\wuapp.exe
    2008-12-13 01:49 . 2008-12-13 03:47 483 --a------ c:\windows\ODBC.INI
    2008-12-13 01:49 . 2008-12-13 01:49 63 --a------ c:\windows\mdm.ini
    2008-12-13 01:49 . 2008-12-13 01:49 0 --a------ c:\windows\NSREX.INI
    2008-12-13 01:48 . 2008-12-13 01:48 35 --a------ c:\windows\vbaddin.ini
    2008-12-13 01:47 . 2008-12-13 01:47 <DIR> d-------- c:\windows\System32\Viewers
    2008-12-13 01:46 . 2008-12-13 01:46 <DIR> d-------- c:\program files\Microsoft FrontPage
    2008-12-13 01:45 . 2008-12-13 01:45 <DIR> d-------- c:\program files\Snapshot Viewer
    2008-12-13 01:44 . 2008-12-13 01:44 <DIR> d-------- c:\windows\Twain32
    2008-12-13 01:44 . 2008-12-13 01:44 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\Microsoft Web Folders
    2008-12-13 01:25 . 2008-12-13 01:25 361,984 --a------ c:\windows\System32\IPSECSVC.DLL
    2008-12-13 01:25 . 2008-12-13 01:25 272,896 --a------ c:\windows\System32\polstore.dll
    2008-12-13 01:25 . 2008-12-13 01:25 61,440 --a------ c:\windows\System32\winipsec.dll
    2008-12-13 01:25 . 2008-12-13 01:25 28,672 --a------ c:\windows\System32\FwRemoteSvr.dll
    2008-12-13 01:24 . 2008-12-13 01:24 1,820 --a------ c:\windows\System32\rasctrnm.h
    2008-12-13 01:23 . 2008-12-13 01:23 241,152 --a------ c:\windows\System32\PortableDeviceApi.dll
    2008-12-13 01:23 . 2008-12-13 01:23 160,768 --a------ c:\windows\System32\PortableDeviceTypes.dll
    2008-12-13 01:23 . 2008-12-13 01:23 94,720 --a------ c:\windows\System32\PortableDeviceClassExtension.dll
    2008-12-13 01:18 . 2008-12-13 01:18 428,544 --a------ c:\windows\System32\EncDec.dll
    2008-12-13 01:18 . 2008-12-13 01:18 293,376 --a------ c:\windows\System32\psisdecd.dll
    2008-12-13 01:18 . 2008-12-13 01:18 217,088 --a------ c:\windows\System32\psisrndr.ax
    2008-12-13 01:18 . 2008-12-13 01:18 177,664 --a------ c:\windows\System32\mpg2splt.ax
    2008-12-13 01:18 . 2008-12-13 01:18 80,896 --a------ c:\windows\System32\MSNP.ax
    2008-12-13 01:18 . 2008-12-13 01:18 69,632 --a------ c:\windows\System32\Mpeg2Data.ax
    2008-12-13 01:18 . 2008-12-13 01:18 57,856 --a------ c:\windows\System32\MSDvbNP.ax
    2008-12-13 01:15 . 2008-12-13 01:15 296,960 --a------ c:\windows\System32\gdi32.dll

    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2008-12-18 03:51 174 --sha-w c:\program files\desktop.ini
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Sidebar
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Photo Gallery
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Mail
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Journal
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Defender
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Collaboration
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Calendar
    2008-12-16 20:17 --------- d---a-w c:\program files\Common Files\LightScribe
    2008-12-13 21:39 --------- d-----w c:\program files\HP
    2008-12-13 02:48 --------- d--h--w c:\program files\InstallShield Installation Information
    2008-12-13 02:48 --------- d-----w c:\program files\Common Files\InstallShield
    2008-12-13 00:12 541,696 ----a-w c:\windows\AppPatch\AcLayers.dll
    2008-12-13 00:12 52,736 ----a-w c:\windows\AppPatch\iebrshim.dll
    2008-12-13 00:12 460,288 ----a-w c:\windows\AppPatch\AcSpecfc.dll
    2008-12-13 00:12 2,560 ----a-w c:\windows\AppPatch\AcRes.dll
    2008-12-13 00:12 2,154,496 ----a-w c:\windows\AppPatch\AcGenral.dll
    2008-12-13 00:12 173,056 ----a-w c:\windows\AppPatch\AcXtrnal.dll
    2008-12-12 20:52 --------- d-----w c:\program files\Google
    2008-12-12 20:50 --------- d-----w c:\programdata\Symantec
    2008-12-12 20:50 --------- d-----w c:\program files\Common Files\Symantec Shared
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Start-meny
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Skrivebord
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Programdata
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Maler
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Favoritter
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Dokumenter
    2008-12-12 20:27 --------- d-sh--w c:\program files\Fellesfiler
    1999-03-29 17:31 99,840 ----a-w c:\program files\Common Files\IRAABOUT.DLL
    1998-12-09 02:53 70,144 ----a-w c:\program files\Common Files\IRAMDMTR.DLL
    1998-12-09 02:53 48,640 ----a-w c:\program files\Common Files\IRALPTTR.DLL
    1998-12-09 02:53 31,744 ----a-w c:\program files\Common Files\IRAWEBTR.DLL
    1998-12-09 02:53 186,368 ----a-w c:\program files\Common Files\IRAREG.DLL
    1998-12-09 02:53 17,920 ----a-w c:\program files\Common Files\IRASRIAL.DLL
    .

    (((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret )))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Merk* tomme oppføringer & gyldige standardoppføringer vises ikke
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]
    "IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2008-11-09 243072]
    "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2007-12-13 1688872]
    "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-04-01 486856]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "CCUTRAYICON"="FactoryMode" [X]
    "hpsysdrv"="c:\hp\support\hpsysdrv.exe" [2006-09-28 65536]
    "KBD"="c:\hp\KBD\KbdStub.EXE" [2006-12-08 65536]
    "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2006-09-29 151552]
    "avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-11-26 81000]
    "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2007-08-31 1037736]
    "itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2006-11-21 813912]
    "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
    "NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]
    "NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-12-03 2213160]
    "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
    "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-14 136600]
    "NvSvc"="c:\windows\system32\nvsvc.dll" [2006-11-21 90191]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-11-21 7753728]
    "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-11-21 81920]
    "RtHDVCpl"="RtHDVCpl.exe" [2006-11-09 c:\windows\RtHDVCpl.exe]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
    "Launcher"="c:\windows\SMINST\launcher.exe" [2006-11-24 44136]

    c:\users\Roy Tangnes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    SpamExperts.lnk - c:\program files\SpamExperts\SpamExperts.exe [2008-01-22 77824]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "EnableLUA"= 0 (0x0)
    "EnableUIADesktopToggle"= 0 (0x0)

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "AppInit_DLLs"=c:\windows\system32\SpamExpertsLSP.dll

    [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk]
    path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
    backup=c:\windows\pss\Microsoft Office.lnk.CommonStartup
    backupExtension=.CommonStartup

    [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Symantec Fax Starter Edition Port.lnk]
    path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Symantec Fax Starter Edition Port.lnk
    backup=c:\windows\pss\Symantec Fax Starter Edition Port.lnk.CommonStartup
    backupExtension=.CommonStartup

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
    --a------ 2008-04-01 19:49 36352 c:\program files\Winamp\winampa.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-85557800-2749039883-1928264560-1001]
    "EnableNotificationsRef"=dword:00000001

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
    "{7DF2FA04-51DE-4AC3-A691-387985938CF6}"= UDP:c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.exe:SPCM
    "{4CE1C60D-8DF9-4907-B4F3-F7EDA448DED2}"= TCP:c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.exe:SPCM
    "{1676B1D8-2BFA-40E6-8132-6FA7722D2C89}"= UDP:c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe:Intel® Viiv Media Server
    "{22B69B6B-43BB-4618-8720-EFA9DF9A89FE}"= TCP:c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe:Intel® Viiv Media Server
    "{85BA1A2F-4540-48D0-B841-0E32F90E5762}"= UDP:c:\program files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe:Intel® Remoting Service
    "{8AC8DE4E-9690-45B8-BC4F-50DAA9BB1BD2}"= TCP:c:\program files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe:Intel® Remoting Service
    "{CB755BED-F20E-4C14-AD75-37AA28FA2D1C}"= TCP:9442:127.0.0.1:Intel® Viiv Media Server Discovery
    "{7C3259A7-4A13-40B3-B283-DB736C6F74BB}"= TCP:1900:LocalSubnet:LocalSubnet:Intel® Viiv Media Server UPnP Discovery
    "{BA6AEE06-D1B7-4335-A48C-5D0291F208BD}"= c:\program files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone)
    "TCP Query User{C17AB0AB-BD9C-4B63-B72F-2BFAAC3ADFBE}c:\\program files\\bitlord\\bitlord.exe"= UDP:c:\program files\bitlord\bitlord.exe:BitLord
    "UDP Query User{4C2E09D4-5398-455F-8C63-84372ADC0140}c:\\program files\\bitlord\\bitlord.exe"= TCP:c:\program files\bitlord\bitlord.exe:BitLord
    "{A3E0A545-B04B-44BA-B284-9470453D55B9}"= Disabled:UDP:c:\program files\IncrediMail\bin\ImpCnt.exe:IncrediMail
    "{987D0856-8199-4494-A6B1-14350956DECB}"= Disabled:TCP:c:\program files\IncrediMail\bin\ImpCnt.exe:IncrediMail
    "TCP Query User{8A82F0D2-E1AF-4789-B61D-E05BC60AFA81}c:\\program files\\spamexperts\\spamexperts.exe"= UDP:c:\program files\spamexperts\spamexperts.exe:SpamExperts Desktop
    "UDP Query User{A326485B-D489-4B7F-97F4-BF09F47811C4}c:\\program files\\spamexperts\\spamexperts.exe"= TCP:c:\program files\spamexperts\spamexperts.exe:SpamExperts Desktop
    "TCP Query User{D0EDD501-F2F3-4728-98CB-C525E41B3EE8}c:\\program files\\windows sidebar\\sidebar.exe"= UDP:c:\program files\windows sidebar\sidebar.exe:Windows Sidepanel
    "UDP Query User{F063B9F7-40B8-4566-86A6-DF19F9AFE0D0}c:\\program files\\windows sidebar\\sidebar.exe"= TCP:c:\program files\windows sidebar\sidebar.exe:Windows Sidepanel
    "TCP Query User{0017C26D-C817-404E-9268-70EF498FFC75}c:\\program files\\mozilla firefox\\firefox.exe"= UDP:c:\program files\mozilla firefox\firefox.exe:Firefox
    "UDP Query User{79BE2589-7850-4863-A2DF-6BEE9986A24B}c:\\program files\\mozilla firefox\\firefox.exe"= TCP:c:\program files\mozilla firefox\firefox.exe:Firefox
    "{77EDC8F8-4D8B-475D-A99B-F174AF79F3FF}"= c:\program files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone)
    "{E21D8413-473B-4026-A403-CB1E135D45CB}"= Disabled:UDP:c:\program files\IncrediMail\bin\IncMail.exe:IncrediMail
    "{F76FE482-DC35-40C2-8A08-95B1FF18DDD1}"= Disabled:TCP:c:\program files\IncrediMail\bin\IncMail.exe:IncrediMail
    "{55EB6989-B362-4F0C-8A37-AD3B56273A30}"= Disabled:UDP:c:\program files\IncrediMail\bin\ImApp.exe:IncrediMail
    "{E36B7B98-3768-416E-A65B-A6B4962D0930}"= Disabled:TCP:c:\program files\IncrediMail\bin\ImApp.exe:IncrediMail

    R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-12-13 111184]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys [2008-12-13 20560]
    R2 aswMonFlt;aswMonFlt;c:\windows\system32\DRIVERS\aswMonFlt.sys [2008-12-13 51792]
    R2 DQLWinService;DQLWinService;"c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe" [2006-09-03 208896]
    S2 IntelDHSvcConf;Intel DH Service;"c:\program files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe" [2006-05-10 29696]
    S3 HauppaugeTVServer;HauppaugeTVServer;c:\progra~1\WinTV\HCWTVS~1.EXE [2008-12-13 815104]
    S3 netr73;Tilgin MSA110 802.11b/g USB Network Adapter Driver for Vista;c:\windows\system32\DRIVERS\netr73.sys [2008-12-12 255488]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    bthsvcs REG_MULTI_SZ BthServ

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b9d854af-c8ff-11dd-9894-001a92104d94}]
    \shell\AutoRun\command - L:\setup.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b9d854bc-c8ff-11dd-9894-001a92104d94}]
    \shell\AutoRun\command - M:\setup.exe
    .
    - - - - TOMME PEKERE FJERNET - - - -

    BHO-{E114ECCE-A4CA-43AB-A5BE-AA2C3E7CF35A} - c:\windows\system32\ddcDvvuv.dll



    **************************************************************************

    catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-12-19 11:17:03
    Windows 6.0.6001 Service Pack 1 NTFS

    skanner skjulte prosesser ...

    skanner skjulte autostart-oppføringer ...

    skanner skjulte filer ...

    skanning vellykket
    skjulte filer: 0

    **************************************************************************
    .
    ------------------------ Andre Kjørende Prosesser ------------------------
    .
    c:\windows\System32\audiodg.exe
    c:\program files\Alwil Software\Avast4\aswUpdSv.exe
    c:\program files\Alwil Software\Avast4\ashServ.exe
    c:\windows\System32\conime.exe
    c:\program files\Alwil Software\Avast4\ashDisp.exe
    c:\program files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
    c:\program files\Common Files\LightScribe\LSSrvc.exe
    c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
    c:\windows\System32\rundll32.exe
    c:\program files\Microsoft IntelliPoint\dpupdchk.exe
    c:\windows\System32\WUDFHost.exe
    c:\program files\Alwil Software\Avast4\ashMaiSv.exe
    c:\program files\Alwil Software\Avast4\ashWebSv.exe
    c:\program files\Common Files\Nero\Lib\NMIndexingService.exe
    c:\program files\IncrediMail\bin\ImApp.exe
    c:\hp\KBD\kbd.exe
    .
    **************************************************************************
    .
    Tidspunkt ferdig: 2008-12-19 11:30:58 - maskinen ble startet på nytt
    ComboFix-quarantined-files.txt 2008-12-19 10:30:47

    Pre-Run: 354 063 372 288 byte ledig
    Post-Run: 354,239,721,472 byte ledig

    306 --- E O F --- 2008-12-18 14:14:53

    Fikk en feil melding underveis: ComboFix 08-12-18.01 - Roy Tangnes 2008-12-19 11:09:42.1 - NTFSx86
    Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1044.18.1022.179 [GMT 1:00]
    Kjører fra: c:\users\Roy Tangnes\Desktop\ComboFix.exe
    .

    ((((((((((((((((((((((((((((((((((((((( Andre slettinger )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    c:\windows\system32\mdm.exe
    c:\windows\System32\vuvvDcdd.ini
    c:\windows\system32\vuvvDcdd.ini2

    .
    ((((((((((((((((((((((((((( Filer Opprettet Fra 2008-11-19 til 2008-12-19 )))))))))))))))))))))))))))))))))
    .

    2008-12-19 01:20 . 2008-12-19 01:20 <DIR> d-------- C:\rsit
    2008-12-19 01:20 . 2008-12-19 01:20 <DIR> d-------- c:\program files\trend micro
    2008-12-18 15:07 . 2008-04-26 09:26 891,448 --a------ c:\windows\System32\drivers\tcpip.sys
    2008-12-18 04:42 . 2008-12-18 04:42 <DIR> d-------- C:\PerfLogs
    2008-12-18 04:07 . 2008-01-19 08:38 4,595,712 --a------ c:\windows\System32\AuthFWSnapin.dll
    2008-12-18 04:06 . 2008-01-19 08:33 8,139,264 --a------ c:\windows\System32\ssBranded.scr
    2008-12-18 04:05 . 2008-01-19 08:32 5,714,432 --a------ c:\windows\System32\logon.scr
    2008-12-18 04:04 . 2008-01-19 07:06 8,147,456 --a------ c:\windows\System32\wmploc.DLL
    2008-12-18 04:03 . 2008-01-19 08:33 599,552 --a------ c:\windows\System32\vsp1cln.exe
    2008-12-18 04:03 . 2008-01-19 08:36 357,888 --a------ c:\windows\System32\wbemcomn.dll
    2008-12-18 04:02 . 2008-01-19 08:36 704,512 --a------ c:\windows\System32\SmiEngine.dll
    2008-12-18 04:02 . 2008-01-19 08:36 139,264 --a------ c:\windows\System32\SmiInstaller.dll
    2008-12-18 04:02 . 2008-01-19 08:36 129,536 --a------ c:\windows\System32\sqmapi.dll
    2008-12-18 04:01 . 2008-01-19 08:36 218,624 --a------ c:\windows\System32\wdscore.dll
    2008-12-18 04:01 . 2008-01-19 08:33 130,560 --a------ c:\windows\System32\PkgMgr.exe
    2008-12-18 04:00 . 2008-01-19 08:34 305,152 --a------ c:\windows\System32\msdelta.dll
    2008-12-18 04:00 . 2008-01-19 08:34 258,560 --a------ c:\windows\System32\dpx.dll
    2008-12-18 04:00 . 2008-01-19 08:34 246,784 --a------ c:\windows\System32\drvstore.dll
    2008-12-18 04:00 . 2008-01-19 08:35 35,328 --a------ c:\windows\System32\mspatcha.dll
    2008-12-18 03:07 . 2008-12-18 03:07 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\FastStone
    2008-12-17 21:44 . 2008-12-13 07:23 1,659,392 --a------ c:\windows\System32\mshtml.tlb
    2008-12-17 16:55 . 2008-12-17 16:55 <DIR> d-------- c:\program files\CCleaner
    2008-12-17 15:18 . 2008-12-17 15:18 524,288 --ahs---- C:\ntuser.dat{86371218-cbcd-11dd-b6e4-001a92104d94}.TMContainer00000000000000000002.regtrans-ms
    2008-12-17 15:18 . 2008-12-17 15:18 524,288 --ahs---- C:\ntuser.dat{86371218-cbcd-11dd-b6e4-001a92104d94}.TMContainer00000000000000000001.regtrans-ms
    2008-12-17 15:18 . 2008-12-17 15:18 524,288 --ahs---- C:\ntuser.dat{8637120c-cbcd-11dd-b6e4-001a92104d94}.TMContainer00000000000000000002.regtrans-ms
    2008-12-17 15:18 . 2008-12-17 15:18 524,288 --ahs---- C:\ntuser.dat{8637120c-cbcd-11dd-b6e4-001a92104d94}.TMContainer00000000000000000001.regtrans-ms
    2008-12-17 15:18 . 2008-12-17 15:18 262,144 --a------ C:\ntuser.dat
    2008-12-17 15:18 . 2008-12-17 15:18 65,536 --ahs---- C:\ntuser.dat{86371218-cbcd-11dd-b6e4-001a92104d94}.TM.blf
    2008-12-17 15:18 . 2008-12-17 15:18 65,536 --ahs---- C:\ntuser.dat{8637120c-cbcd-11dd-b6e4-001a92104d94}.TM.blf
    2008-12-17 15:18 . 2008-12-17 15:18 5,120 --ah----- C:\ntuser.dat.LOG1
    2008-12-17 15:18 . 2008-12-17 15:18 0 --ah----- C:\ntuser.dat.LOG2
    2008-12-17 04:29 . 2008-12-17 04:29 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\Malwarebytes
    2008-12-17 04:29 . 2008-12-17 04:29 <DIR> d-------- c:\users\All Users\Malwarebytes
    2008-12-17 04:29 . 2008-12-17 04:29 <DIR> d-------- c:\programdata\Malwarebytes
    2008-12-17 04:29 . 2008-12-17 11:43 <DIR> d-------- c:\program files\Malwarebytes' Anti-Malware
    2008-12-17 04:29 . 2008-12-03 19:52 38,496 --a------ c:\windows\System32\drivers\mbamswissarmy.sys
    2008-12-17 04:29 . 2008-12-03 19:52 15,504 --a------ c:\windows\System32\drivers\mbam.sys
    2008-12-16 15:52 . 2008-12-16 15:52 <DIR> dr-h----- c:\users\Roy Tangnes\AppData\Roaming\SecuROM
    2008-12-16 15:52 . 2008-12-16 15:52 107,888 --a------ c:\windows\System32\CmdLineExt.dll
    2008-12-16 15:51 . 2008-12-16 15:51 <DIR> d-------- c:\program files\Hasbro
    2008-12-15 19:04 . 2008-12-19 11:14 12 --a------ c:\windows\bthservsdp.dat
    2008-12-14 14:41 . 2008-12-14 14:41 410,984 --a------ c:\windows\System32\deploytk.dll
    2008-12-14 14:37 . 2008-12-14 14:37 <DIR> d-------- c:\windows\Sun
    2008-12-14 09:10 . 2008-12-14 09:10 <DIR> d-------- c:\program files\FDRLab
    2008-12-13 20:39 . 2008-12-14 12:42 <DIR> d-------- C:\MINE OPPTAK
    2008-12-13 20:08 . 2008-12-13 21:40 <DIR> d-------- c:\windows\System32\Adobe
    2008-12-13 15:17 . 2008-12-13 15:17 <DIR> d-------- C:\Games
    2008-12-13 11:29 . 2008-12-19 02:59 69 --a------ c:\windows\NeroDigital.ini
    2008-12-13 11:23 . 2008-12-13 11:23 <DIR> d-------- c:\program files\DAEMON Tools Lite
    2008-12-13 11:19 . 2008-12-13 11:19 717,296 --a------ c:\windows\System32\drivers\sptd.sys
    2008-12-13 11:18 . 2008-12-13 11:18 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\DAEMON Tools
    2008-12-13 03:48 . 2008-12-13 03:48 <DIR> d-------- c:\program files\vtplus
    2008-12-13 03:48 . 2008-12-13 03:48 <DIR> d-------- c:\program files\Common Files\IviSDK
    2008-12-13 03:47 . 2008-12-16 02:21 <DIR> d-------- c:\program files\WinTV
    2008-12-13 03:47 . 2008-12-13 03:50 <DIR> d-------- C:\MyVideos
    2008-12-13 03:45 . 2008-12-13 03:45 <DIR> d-------- C:\Hauppauge
    2008-12-13 03:45 . 2007-02-06 10:27 185,728 --a------ c:\windows\System32\drivers\hcwPP2.sys
    2008-12-13 03:45 . 2007-02-06 10:26 99,840 --a------ c:\windows\System32\hcwCCnv2.ax
    2008-12-13 03:45 . 2007-02-06 10:26 95,232 --a------ c:\windows\System32\hcwPrxA2.ax
    2008-12-13 03:45 . 2007-01-15 04:43 16,382 --a------ c:\windows\System32\drivers\HcwMakoC.rom
    2008-12-13 03:45 . 2007-02-06 10:37 16,382 --a------ c:\windows\System32\drivers\HcwMakoB.rom
    2008-12-13 03:28 . 2008-12-13 03:28 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\Nero
    2008-12-13 03:25 . 2008-12-13 03:25 <DIR> d-------- c:\users\All Users\Nero
    2008-12-13 03:25 . 2008-12-13 03:25 <DIR> d-------- c:\programdata\Nero
    2008-12-13 03:25 . 2008-12-13 03:25 <DIR> d-------- c:\program files\Nero
    2008-12-13 03:25 . 2008-12-13 03:27 <DIR> d-------- c:\program files\Common Files\Nero
    2008-12-13 03:16 . 2008-12-14 14:41 <DIR> d-------- c:\program files\Java
    2008-12-13 03:16 . 2008-12-13 03:16 <DIR> d-------- c:\program files\Common Files\Java
    2008-12-13 03:15 . 2007-12-04 09:59 151,552 --a------ c:\windows\System32\SpamExpertsLSP.dll
    2008-12-13 03:14 . 2008-12-19 11:14 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\SpamExperts
    2008-12-13 03:14 . 2008-12-13 03:15 <DIR> d-------- c:\program files\SpamExperts
    2008-12-13 03:01 . 2008-12-13 03:01 <DIR> d-------- c:\users\All Users\IncrediMail
    2008-12-13 03:01 . 2008-12-13 03:02 <DIR> d-------- c:\users\All Users\IM
    2008-12-13 03:01 . 2008-12-13 03:01 <DIR> d-------- c:\programdata\IncrediMail
    2008-12-13 03:01 . 2008-12-13 03:02 <DIR> d-------- c:\programdata\IM
    2008-12-13 03:01 . 2008-12-13 03:14 <DIR> d-------- c:\program files\IncrediMail
    2008-12-13 02:56 . 2008-12-13 02:56 <DIR> d-------- c:\program files\FileZilla
    2008-12-13 02:50 . 2008-12-13 02:54 <DIR> d-------- c:\program files\BitLord
    2008-12-13 02:34 . 2008-12-13 02:35 <DIR> d-------- c:\users\All Users\Adobe
    2008-12-13 02:34 . 2008-12-13 02:34 <DIR> d-------- c:\program files\Common Files\Adobe
    2008-12-13 02:32 . 2008-12-13 02:32 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\vlc
    2008-12-13 02:31 . 2008-12-13 03:32 <DIR> d-------- c:\users\All Users\NOS
    2008-12-13 02:31 . 2008-12-13 03:32 <DIR> d-------- c:\programdata\NOS
    2008-12-13 02:31 . 2008-12-13 03:32 <DIR> d-------- c:\program files\NOS
    2008-12-13 02:30 . 2008-12-13 02:30 <DIR> d-------- c:\program files\VideoLAN
    2008-12-13 02:09 . 2008-12-13 02:09 0 --a------ c:\windows\nsreg.dat
    2008-12-13 02:08 . 2008-12-13 02:09 <DIR> d-------- c:\program files\Onlinebandit-no
    2008-12-13 02:06 . 2008-12-13 02:06 <DIR> d-------- c:\program files\FastStone Image Viewer
    2008-12-13 02:00 . 2008-12-16 22:39 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\Winamp
    2008-12-13 02:00 . 2008-12-13 02:00 <DIR> d-------- c:\program files\Winamp
    2008-12-13 01:56 . 2008-12-13 01:56 269,312 --a------ c:\windows\System32\es.dll
    2008-12-13 01:50 . 2008-12-13 01:50 1,809,944 --a------ c:\windows\System32\wuaueng.dll
    2008-12-13 01:50 . 2008-12-13 01:50 1,524,736 --a------ c:\windows\System32\wucltux.dll
    2008-12-13 01:50 . 2008-12-13 01:50 561,688 --a------ c:\windows\System32\wuapi.dll
    2008-12-13 01:50 . 2008-12-13 01:50 162,064 --a------ c:\windows\System32\wuwebv.dll
    2008-12-13 01:50 . 2008-12-13 01:50 83,456 --a------ c:\windows\System32\wudriver.dll
    2008-12-13 01:50 . 2008-12-13 01:50 51,224 --a------ c:\windows\System32\wuauclt.exe
    2008-12-13 01:50 . 2008-12-13 01:50 43,544 --a------ c:\windows\System32\wups2.dll
    2008-12-13 01:50 . 2008-12-13 01:50 34,328 --a------ c:\windows\System32\wups.dll
    2008-12-13 01:50 . 2008-12-13 01:50 31,232 --a------ c:\windows\System32\wuapp.exe
    2008-12-13 01:49 . 2008-12-13 03:47 483 --a------ c:\windows\ODBC.INI
    2008-12-13 01:49 . 2008-12-13 01:49 63 --a------ c:\windows\mdm.ini
    2008-12-13 01:49 . 2008-12-13 01:49 0 --a------ c:\windows\NSREX.INI
    2008-12-13 01:48 . 2008-12-13 01:48 35 --a------ c:\windows\vbaddin.ini
    2008-12-13 01:47 . 2008-12-13 01:47 <DIR> d-------- c:\windows\System32\Viewers
    2008-12-13 01:46 . 2008-12-13 01:46 <DIR> d-------- c:\program files\Microsoft FrontPage
    2008-12-13 01:45 . 2008-12-13 01:45 <DIR> d-------- c:\program files\Snapshot Viewer
    2008-12-13 01:44 . 2008-12-13 01:44 <DIR> d-------- c:\windows\Twain32
    2008-12-13 01:44 . 2008-12-13 01:44 <DIR> d-------- c:\users\Roy Tangnes\AppData\Roaming\Microsoft Web Folders
    2008-12-13 01:25 . 2008-12-13 01:25 361,984 --a------ c:\windows\System32\IPSECSVC.DLL
    2008-12-13 01:25 . 2008-12-13 01:25 272,896 --a------ c:\windows\System32\polstore.dll
    2008-12-13 01:25 . 2008-12-13 01:25 61,440 --a------ c:\windows\System32\winipsec.dll
    2008-12-13 01:25 . 2008-12-13 01:25 28,672 --a------ c:\windows\System32\FwRemoteSvr.dll
    2008-12-13 01:24 . 2008-12-13 01:24 1,820 --a------ c:\windows\System32\rasctrnm.h
    2008-12-13 01:23 . 2008-12-13 01:23 241,152 --a------ c:\windows\System32\PortableDeviceApi.dll
    2008-12-13 01:23 . 2008-12-13 01:23 160,768 --a------ c:\windows\System32\PortableDeviceTypes.dll
    2008-12-13 01:23 . 2008-12-13 01:23 94,720 --a------ c:\windows\System32\PortableDeviceClassExtension.dll
    2008-12-13 01:18 . 2008-12-13 01:18 428,544 --a------ c:\windows\System32\EncDec.dll
    2008-12-13 01:18 . 2008-12-13 01:18 293,376 --a------ c:\windows\System32\psisdecd.dll
    2008-12-13 01:18 . 2008-12-13 01:18 217,088 --a------ c:\windows\System32\psisrndr.ax
    2008-12-13 01:18 . 2008-12-13 01:18 177,664 --a------ c:\windows\System32\mpg2splt.ax
    2008-12-13 01:18 . 2008-12-13 01:18 80,896 --a------ c:\windows\System32\MSNP.ax
    2008-12-13 01:18 . 2008-12-13 01:18 69,632 --a------ c:\windows\System32\Mpeg2Data.ax
    2008-12-13 01:18 . 2008-12-13 01:18 57,856 --a------ c:\windows\System32\MSDvbNP.ax
    2008-12-13 01:15 . 2008-12-13 01:15 296,960 --a------ c:\windows\System32\gdi32.dll

    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2008-12-18 03:51 174 --sha-w c:\program files\desktop.ini
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Sidebar
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Photo Gallery
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Mail
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Journal
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Defender
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Collaboration
    2008-12-18 03:43 --------- d-----w c:\program files\Windows Calendar
    2008-12-16 20:17 --------- d---a-w c:\program files\Common Files\LightScribe
    2008-12-13 21:39 --------- d-----w c:\program files\HP
    2008-12-13 02:48 --------- d--h--w c:\program files\InstallShield Installation Information
    2008-12-13 02:48 --------- d-----w c:\program files\Common Files\InstallShield
    2008-12-13 00:12 541,696 ----a-w c:\windows\AppPatch\AcLayers.dll
    2008-12-13 00:12 52,736 ----a-w c:\windows\AppPatch\iebrshim.dll
    2008-12-13 00:12 460,288 ----a-w c:\windows\AppPatch\AcSpecfc.dll
    2008-12-13 00:12 2,560 ----a-w c:\windows\AppPatch\AcRes.dll
    2008-12-13 00:12 2,154,496 ----a-w c:\windows\AppPatch\AcGenral.dll
    2008-12-13 00:12 173,056 ----a-w c:\windows\AppPatch\AcXtrnal.dll
    2008-12-12 20:52 --------- d-----w c:\program files\Google
    2008-12-12 20:50 --------- d-----w c:\programdata\Symantec
    2008-12-12 20:50 --------- d-----w c:\program files\Common Files\Symantec Shared
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Start-meny
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Skrivebord
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Programdata
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Maler
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Favoritter
    2008-12-12 20:27 --------- d-sh--w c:\programdata\Dokumenter
    2008-12-12 20:27 --------- d-sh--w c:\program files\Fellesfiler
    1999-03-29 17:31 99,840 ----a-w c:\program files\Common Files\IRAABOUT.DLL
    1998-12-09 02:53 70,144 ----a-w c:\program files\Common Files\IRAMDMTR.DLL
    1998-12-09 02:53 48,640 ----a-w c:\program files\Common Files\IRALPTTR.DLL
    1998-12-09 02:53 31,744 ----a-w c:\program files\Common Files\IRAWEBTR.DLL
    1998-12-09 02:53 186,368 ----a-w c:\program files\Common Files\IRAREG.DLL
    1998-12-09 02:53 17,920 ----a-w c:\program files\Common Files\IRASRIAL.DLL
    .

    (((((((((((((((((((((((((((((((( Oppstartspunkter I Registeret )))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Merk* tomme oppføringer & gyldige standardoppføringer vises ikke
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]
    "IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2008-11-09 243072]
    "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2007-12-13 1688872]
    "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2008-04-01 486856]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "CCUTRAYICON"="FactoryMode" [X]
    "hpsysdrv"="c:\hp\support\hpsysdrv.exe" [2006-09-28 65536]
    "KBD"="c:\hp\KBD\KbdStub.EXE" [2006-12-08 65536]
    "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2006-09-29 151552]
    "avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-11-26 81000]
    "IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2007-08-31 1037736]
    "itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2006-11-21 813912]
    "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672]
    "NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]
    "NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-12-03 2213160]
    "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
    "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-14 136600]
    "NvSvc"="c:\windows\system32\nvsvc.dll" [2006-11-21 90191]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-11-21 7753728]
    "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-11-21 81920]
    "RtHDVCpl"="RtHDVCpl.exe" [2006-11-09 c:\windows\RtHDVCpl.exe]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
    "Launcher"="c:\windows\SMINST\launcher.exe" [2006-11-24 44136]

    c:\users\Roy Tangnes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    SpamExperts.lnk - c:\program files\SpamExperts\SpamExperts.exe [2008-01-22 77824]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "EnableLUA"= 0 (0x0)
    "EnableUIADesktopToggle"= 0 (0x0)

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "AppInit_DLLs"=c:\windows\system32\SpamExpertsLSP.dll

    [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk]
    path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
    backup=c:\windows\pss\Microsoft Office.lnk.CommonStartup
    backupExtension=.CommonStartup

    [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Symantec Fax Starter Edition Port.lnk]
    path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Symantec Fax Starter Edition Port.lnk
    backup=c:\windows\pss\Symantec Fax Starter Edition Port.lnk.CommonStartup
    backupExtension=.CommonStartup

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
    --a------ 2008-04-01 19:49 36352 c:\program files\Winamp\winampa.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-85557800-2749039883-1928264560-1001]
    "EnableNotificationsRef"=dword:00000001

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
    "{7DF2FA04-51DE-4AC3-A691-387985938CF6}"= UDP:c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.exe:SPCM
    "{4CE1C60D-8DF9-4907-B4F3-F7EDA448DED2}"= TCP:c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.exe:SPCM
    "{1676B1D8-2BFA-40E6-8132-6FA7722D2C89}"= UDP:c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe:Intel® Viiv Media Server
    "{22B69B6B-43BB-4618-8720-EFA9DF9A89FE}"= TCP:c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe:Intel® Viiv Media Server
    "{85BA1A2F-4540-48D0-B841-0E32F90E5762}"= UDP:c:\program files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe:Intel® Remoting Service
    "{8AC8DE4E-9690-45B8-BC4F-50DAA9BB1BD2}"= TCP:c:\program files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe:Intel® Remoting Service
    "{CB755BED-F20E-4C14-AD75-37AA28FA2D1C}"= TCP:9442:127.0.0.1:Intel® Viiv Media Server Discovery
    "{7C3259A7-4A13-40B3-B283-DB736C6F74BB}"= TCP:1900:LocalSubnet:LocalSubnet:Intel® Viiv Media Server UPnP Discovery
    "{BA6AEE06-D1B7-4335-A48C-5D0291F208BD}"= c:\program files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone)
    "TCP Query User{C17AB0AB-BD9C-4B63-B72F-2BFAAC3ADFBE}c:\\program files\\bitlord\\bitlord.exe"= UDP:c:\program files\bitlord\bitlord.exe:BitLord
    "UDP Query User{4C2E09D4-5398-455F-8C63-84372ADC0140}c:\\program files\\bitlord\\bitlord.exe"= TCP:c:\program files\bitlord\bitlord.exe:BitLord
    "{A3E0A545-B04B-44BA-B284-9470453D55B9}"= Disabled:UDP:c:\program files\IncrediMail\bin\ImpCnt.exe:IncrediMail
    "{987D0856-8199-4494-A6B1-14350956DECB}"= Disabled:TCP:c:\program files\IncrediMail\bin\ImpCnt.exe:IncrediMail
    "TCP Query User{8A82F0D2-E1AF-4789-B61D-E05BC60AFA81}c:\\program files\\spamexperts\\spamexperts.exe"= UDP:c:\program files\spamexperts\spamexperts.exe:SpamExperts Desktop
    "UDP Query User{A326485B-D489-4B7F-97F4-BF09F47811C4}c:\\program files\\spamexperts\\spamexperts.exe"= TCP:c:\program files\spamexperts\spamexperts.exe:SpamExperts Desktop
    "TCP Query User{D0EDD501-F2F3-4728-98CB-C525E41B3EE8}c:\\program files\\windows sidebar\\sidebar.exe"= UDP:c:\program files\windows sidebar\sidebar.exe:Windows Sidepanel
    "UDP Query User{F063B9F7-40B8-4566-86A6-DF19F9AFE0D0}c:\\program files\\windows sidebar\\sidebar.exe"= TCP:c:\program files\windows sidebar\sidebar.exe:Windows Sidepanel
    "TCP Query User{0017C26D-C817-404E-9268-70EF498FFC75}c:\\program files\\mozilla firefox\\firefox.exe"= UDP:c:\program files\mozilla firefox\firefox.exe:Firefox
    "UDP Query User{79BE2589-7850-4863-A2DF-6BEE9986A24B}c:\\program files\\mozilla firefox\\firefox.exe"= TCP:c:\program files\mozilla firefox\firefox.exe:Firefox
    "{77EDC8F8-4D8B-475D-A99B-F174AF79F3FF}"= c:\program files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone)
    "{E21D8413-473B-4026-A403-CB1E135D45CB}"= Disabled:UDP:c:\program files\IncrediMail\bin\IncMail.exe:IncrediMail
    "{F76FE482-DC35-40C2-8A08-95B1FF18DDD1}"= Disabled:TCP:c:\program files\IncrediMail\bin\IncMail.exe:IncrediMail
    "{55EB6989-B362-4F0C-8A37-AD3B56273A30}"= Disabled:UDP:c:\program files\IncrediMail\bin\ImApp.exe:IncrediMail
    "{E36B7B98-3768-416E-A65B-A6B4962D0930}"= Disabled:TCP:c:\program files\IncrediMail\bin\ImApp.exe:IncrediMail

    R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-12-13 111184]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys [2008-12-13 20560]
    R2 aswMonFlt;aswMonFlt;c:\windows\system32\DRIVERS\aswMonFlt.sys [2008-12-13 51792]
    R2 DQLWinService;DQLWinService;"c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe" [2006-09-03 208896]
    S2 IntelDHSvcConf;Intel DH Service;"c:\program files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe" [2006-05-10 29696]
    S3 HauppaugeTVServer;HauppaugeTVServer;c:\progra~1\WinTV\HCWTVS~1.EXE [2008-12-13 815104]
    S3 netr73;Tilgin MSA110 802.11b/g USB Network Adapter Driver for Vista;c:\windows\system32\DRIVERS\netr73.sys [2008-12-12 255488]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    bthsvcs REG_MULTI_SZ BthServ

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b9d854af-c8ff-11dd-9894-001a92104d94}]
    \shell\AutoRun\command - L:\setup.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b9d854bc-c8ff-11dd-9894-001a92104d94}]
    \shell\AutoRun\command - M:\setup.exe
    .
    - - - - TOMME PEKERE FJERNET - - - -

    BHO-{E114ECCE-A4CA-43AB-A5BE-AA2C3E7CF35A} - c:\windows\system32\ddcDvvuv.dll



    **************************************************************************

    catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-12-19 11:17:03
    Windows 6.0.6001 Service Pack 1 NTFS

    skanner skjulte prosesser ...

    skanner skjulte autostart-oppføringer ...

    skanner skjulte filer ...

    skanning vellykket
    skjulte filer: 0

    **************************************************************************
    .
    ------------------------ Andre Kjørende Prosesser ------------------------
    .
    c:\windows\System32\audiodg.exe
    c:\program files\Alwil Software\Avast4\aswUpdSv.exe
    c:\program files\Alwil Software\Avast4\ashServ.exe
    c:\windows\System32\conime.exe
    c:\program files\Alwil Software\Avast4\ashDisp.exe
    c:\program files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
    c:\program files\Common Files\LightScribe\LSSrvc.exe
    c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
    c:\windows\System32\rundll32.exe
    c:\program files\Microsoft IntelliPoint\dpupdchk.exe
    c:\windows\System32\WUDFHost.exe
    c:\program files\Alwil Software\Avast4\ashMaiSv.exe
    c:\program files\Alwil Software\Avast4\ashWebSv.exe
    c:\program files\Common Files\Nero\Lib\NMIndexingService.exe
    c:\program files\IncrediMail\bin\ImApp.exe
    c:\hp\KBD\kbd.exe
    .
    **************************************************************************
    .
    Tidspunkt ferdig: 2008-12-19 11:30:58 - maskinen ble startet på nytt
    ComboFix-quarantined-files.txt 2008-12-19 10:30:47

    Pre-Run: 354 063 372 288 byte ledig
    Post-Run: 354,239,721,472 byte ledig

    306 --- E O F --- 2008-12-18 14:14:53

    • 0
  23. keiko99 la til et innlegg i et emne [LØST] rette på feil i oppstart på vista   

    ja jeg håper du mener slikt da....


    Logg1 (klikk for å vise/skjule)
    Logfile of random's system information tool 1.05 (written by random/random)
    Run by Roy Tangnes at 2008-12-19 01:20:19
    Microsoft® Windows Vista™ Home Premium Service Pack 1
    System drive C: has 342 GB (91%) free of 376 GB
    Total RAM: 1022 MB (30% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 01:20:37, on 19.12.2008
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v8.00 (8.00.6001.18241)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\hp\support\hpsysdrv.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\WINDOWS\RtHDVCpl.exe
    C:\Program Files\Alwil Software\Avast4\ashDisp.exe
    C:\Program Files\Microsoft IntelliPoint\ipoint.exe
    C:\Program Files\Microsoft IntelliType Pro\itype.exe
    C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
    C:\Program Files\DAEMON Tools Lite\daemon.exe
    C:\Program Files\SpamExperts\SpamExperts.exe
    C:\WINDOWS\System32\rundll32.exe
    C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\IncrediMail\bin\IMApp.exe
    C:\Windows\system32\conime.exe
    C:\hp\kbd\kbd.exe
    C:\Windows\System32\mobsync.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\BitLord\BitLord.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Users\Roy Tangnes\Desktop\RSIT.exe
    C:\Program Files\trend micro\Roy Tangnes.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startsiden.no/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: (no name) - {E114ECCE-A4CA-43AB-A5BE-AA2C3E7CF35A} - C:\Windows\system32\ddcDvvuv.dll (file missing)
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
    O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE
    O4 - HKLM\..\Run: [iAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
    O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
    O4 - HKLM\..\Run: [CCUTRAYICON] FactoryMode
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [intelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
    O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
    O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
    O4 - HKCU\..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
    O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
    O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOKAL TJENESTE')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOKAL TJENESTE')
    O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETTVERKSTJENESTE')
    O4 - Startup: SpamExperts.lnk = C:\Program Files\SpamExperts\SpamExperts.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\spamexpertslsp.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\spamexpertslsp.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\spamexpertslsp.dll
    O13 - Gopher Prefix:
    O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab
    O20 - AppInit_DLLs: C:\Windows\system32\SpamExpertsLSP.dll
    O23 - Service: Intel® Alert Service (AlertService) - Intel® Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
    O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
    O23 - Service: HauppaugeTVServer - Hauppauge Computer Works - C:\PROGRA~1\WinTV\HCWTVS~1.EXE
    O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    O23 - Service: Intel DH Service (IntelDHSvcConf) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe
    O23 - Service: Intel® Software Services Manager (ISSM) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: Intel® Viiv Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
    O23 - Service: Intel® Application Tracker (MCLServiceATL) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
    O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
    O23 - Service: Intel® Remoting Service (Remote UI Service) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
    O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe

    --
    End of file - 8320 bytes

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    Java Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-12-14 320920]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
    Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-12-14 34816]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E114ECCE-A4CA-43AB-A5BE-AA2C3E7CF35A}]
    C:\Windows\system32\ddcDvvuv.dll []

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
    "hpsysdrv"=c:\hp\support\hpsysdrv.exe [2006-09-28 65536]
    "KBD"=C:\HP\KBD\KbdStub.EXE [2006-12-08 65536]
    "IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2006-09-29 151552]
    "RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2006-11-09 3784704]
    "CCUTRAYICON"=FactoryMode []
    ""= []
    "avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-11-26 81000]
    "IntelliPoint"=C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2007-08-31 1037736]
    "itype"=C:\Program Files\Microsoft IntelliType Pro\itype.exe [2006-11-21 813912]
    "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
    "NeroFilterCheck"=C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2007-03-01 153136]
    "NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-12-03 2213160]
    "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
    "SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2008-12-14 136600]
    "NvSvc"=C:\Windows\system32\nvsvc.dll [2006-11-21 90191]
    "NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2006-11-21 7753728]
    "NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2006-11-21 81920]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "Launcher"=C:\Windows\SMINST\launcher.exe [2006-11-24 44136]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-19 1233920]
    "IncrediMail"=C:\Program Files\IncrediMail\bin\IncMail.exe [2008-11-09 243072]
    "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2007-12-13 1688872]
    "DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\daemon.exe [2008-04-01 486856]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
    C:\Program Files\Winamp\winampa.exe [2008-04-01 36352]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk]
    C:\PROGRA~1\MICROS~3\Office\OSA9.EXE [1999-02-17 65588]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Symantec Fax Starter Edition Port.lnk]
    C:\PROGRA~1\MICROS~3\Office\1044\OLFSNT40.EXE [1999-03-29 45568]

    C:\Users\Roy Tangnes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
    SpamExperts.lnk - C:\Program Files\SpamExperts\SpamExperts.exe

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLS"="C:\Windows\system32\SpamExpertsLSP.dll"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
    "authentication packages"=msv1_0
    C:\Windows\system32\ddcDvvuv

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "EnableLUA"=0
    "dontdisplaylastusername"=0
    "legalnoticecaption"=
    "legalnoticetext"=
    "shutdownwithoutlogon"=1
    "undockwithoutlogon"=1
    "EnableUIADesktopToggle"=0

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b9d854af-c8ff-11dd-9894-001a92104d94}]
    shell\AutoRun\command - L:\setup.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b9d854bc-c8ff-11dd-9894-001a92104d94}]
    shell\AutoRun\command - M:\setup.exe


    ======File associations======

    .js - edit - C:\Windows\System32\Notepad.exe %1
    .js - open - C:\Windows\System32\WScript.exe "%1" %*

    ======List of files/folders created in the last 1 months======

    2008-12-19 01:20:22 ----D---- C:\Program Files\trend micro
    2008-12-19 01:20:19 ----D---- C:\rsit
    2008-12-18 18:00:13 ----SHD---- C:\Config.Msi
    2008-12-18 15:13:50 ----A---- C:\Windows\system32\msshooks.dll
    2008-12-18 15:13:49 ----A---- C:\Windows\system32\msscb.dll
    2008-12-18 15:13:46 ----A---- C:\Windows\system32\SearchFilterHost.exe
    2008-12-18 15:13:46 ----A---- C:\Windows\system32\propdefs.dll
    2008-12-18 15:13:46 ----A---- C:\Windows\system32\msstrc.dll
    2008-12-18 15:13:46 ----A---- C:\Windows\system32\mssprxy.dll
    2008-12-18 15:13:46 ----A---- C:\Windows\system32\mssitlb.dll
    2008-12-18 15:13:46 ----A---- C:\Windows\system32\msshsq.dll
    2008-12-18 15:13:45 ----A---- C:\Windows\system32\thawbrkr.dll
    2008-12-18 15:13:45 ----A---- C:\Windows\system32\srchadmin.dll
    2008-12-18 15:13:45 ----A---- C:\Windows\system32\propsys.dll
    2008-12-18 15:13:45 ----A---- C:\Windows\system32\korwbrkr.dll
    2008-12-18 15:13:44 ----A---- C:\Windows\system32\wsepno.dll
    2008-12-18 15:13:44 ----A---- C:\Windows\system32\rtffilt.dll
    2008-12-18 15:13:44 ----A---- C:\Windows\system32\offfilt.dll
    2008-12-18 15:13:44 ----A---- C:\Windows\system32\mimefilt.dll
    2008-12-18 15:13:43 ----A---- C:\Windows\system32\xmlfilter.dll
    2008-12-18 15:13:43 ----A---- C:\Windows\system32\SearchProtocolHost.exe
    2008-12-18 15:13:43 ----A---- C:\Windows\system32\nlhtml.dll
    2008-12-18 15:13:43 ----A---- C:\Windows\system32\msscntrs.dll
    2008-12-18 15:13:43 ----A---- C:\Windows\system32\chtbrkr.dll
    2008-12-18 15:13:43 ----A---- C:\Windows\system32\chsbrkr.dll
    2008-12-18 15:13:42 ----A---- C:\Windows\system32\tquery.dll
    2008-12-18 15:13:42 ----A---- C:\Windows\system32\SearchIndexer.exe
    2008-12-18 15:13:41 ----A---- C:\Windows\system32\mssvp.dll
    2008-12-18 15:13:41 ----A---- C:\Windows\system32\mssrch.dll
    2008-12-18 15:13:41 ----A---- C:\Windows\system32\mssphtb.dll
    2008-12-18 15:13:41 ----A---- C:\Windows\system32\mssph.dll
    2008-12-18 15:07:43 ----A---- C:\Windows\system32\rpcrt4.dll
    2008-12-18 15:07:41 ----A---- C:\Windows\system32\pacerprf.dll
    2008-12-18 15:07:39 ----A---- C:\Windows\system32\wersvc.dll
    2008-12-18 15:07:39 ----A---- C:\Windows\system32\Faultrep.dll
    2008-12-18 15:07:38 ----A---- C:\Windows\system32\emdmgmt.dll
    2008-12-18 15:07:38 ----A---- C:\Windows\system32\dataclen.dll
    2008-12-18 15:07:37 ----A---- C:\Windows\system32\cdd.dll
    2008-12-18 15:07:36 ----A---- C:\Windows\system32\wshext.dll
    2008-12-18 15:07:36 ----A---- C:\Windows\system32\vbscript.dll
    2008-12-18 15:07:35 ----A---- C:\Windows\system32\wscript.exe
    2008-12-18 15:07:35 ----A---- C:\Windows\system32\scrrun.dll
    2008-12-18 15:07:35 ----A---- C:\Windows\system32\scrobj.dll
    2008-12-18 15:07:35 ----A---- C:\Windows\system32\cscript.exe
    2008-12-18 04:42:44 ----D---- C:\PerfLogs
    2008-12-18 04:08:56 ----A---- C:\Windows\system32\onex.dll
    2008-12-18 04:08:55 ----A---- C:\Windows\system32\SLsvc.exe
    2008-12-18 04:08:45 ----A---- C:\Windows\system32\PSHED.DLL
    2008-12-18 04:08:44 ----A---- C:\Windows\system32\imagesp1.dll
    2008-12-18 04:08:42 ----A---- C:\Windows\system32\dfsr.exe
    2008-12-18 04:08:41 ----A---- C:\Windows\system32\pidgenx.dll
    2008-12-18 04:08:40 ----A---- C:\Windows\system32\sstpsvc.dll
    2008-12-18 04:08:40 ----A---- C:\Windows\system32\mstscax.dll
    2008-12-18 04:08:39 ----A---- C:\Windows\system32\WsmSvc.dll
    2008-12-18 04:08:39 ----A---- C:\Windows\system32\winrscmd.dll
    2008-12-18 04:08:38 ----A---- C:\Windows\system32\sysmain.dll
    2008-12-18 04:08:38 ----A---- C:\Windows\system32\RMActivate.exe
    2008-12-18 04:08:37 ----A---- C:\Windows\system32\VSSVC.exe
    2008-12-18 04:08:37 ----A---- C:\Windows\system32\vssapi.dll
    2008-12-18 04:08:36 ----A---- C:\Windows\system32\secproc.dll
    2008-12-18 04:08:36 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
    2008-12-18 04:08:35 ----A---- C:\Windows\system32\RMActivate_isv.exe
    2008-12-18 04:08:32 ----A---- C:\Windows\system32\secproc_isv.dll
    2008-12-18 04:08:30 ----A---- C:\Windows\system32\icardres.dll
    2008-12-18 04:08:30 ----A---- C:\Windows\system32\drmv2clt.dll
    2008-12-18 04:08:29 ----A---- C:\Windows\system32\xpssvcs.dll
    2008-12-18 04:08:29 ----A---- C:\Windows\system32\icardagt.exe
    2008-12-18 04:08:29 ----A---- C:\Windows\system32\blackbox.dll
    2008-12-18 04:08:27 ----A---- C:\Windows\system32\RMActivate_ssp.exe
    2008-12-18 04:08:27 ----A---- C:\Windows\system32\RacEngn.dll
    2008-12-18 04:08:26 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
    2008-12-18 04:08:26 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
    2008-12-18 04:08:25 ----A---- C:\Windows\system32\spwizimg.dll
    2008-12-18 04:08:25 ----A---- C:\Windows\system32\rdpencom.dll
    2008-12-18 04:08:25 ----A---- C:\Windows\system32\lpremove.exe
    2008-12-18 04:08:25 ----A---- C:\Windows\bfsvc.exe
    2008-12-18 04:08:24 ----A---- C:\Windows\system32\msjet40.dll
    2008-12-18 04:08:23 ----A---- C:\Windows\system32\qmgr.dll
    2008-12-18 04:08:23 ----A---- C:\Windows\system32\ntdll.dll
    2008-12-18 04:08:23 ----A---- C:\Windows\system32\lsasrv.dll
    2008-12-18 04:08:22 ----A---- C:\Windows\system32\localspl.dll
    2008-12-18 04:08:22 ----A---- C:\Windows\system32\IKEEXT.DLL
    2008-12-18 04:08:21 ----A---- C:\Windows\system32\wevtsvc.dll
    2008-12-18 04:08:21 ----A---- C:\Windows\system32\wcncsvc.dll
    2008-12-18 04:08:20 ----A---- C:\Windows\system32\TsWpfWrp.exe
    2008-12-18 04:08:20 ----A---- C:\Windows\system32\recdisc.exe
    2008-12-18 04:08:20 ----A---- C:\Windows\system32\mscoree.dll
    2008-12-18 04:08:20 ----A---- C:\Windows\system32\kernel32.dll
    2008-12-18 04:08:17 ----A---- C:\Windows\system32\vds.exe
    2008-12-18 04:08:17 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
    2008-12-18 04:08:15 ----A---- C:\Windows\system32\wmp.dll
    2008-12-18 04:08:14 ----A---- C:\Windows\system32\wcnwiz.dll
    2008-12-18 04:08:14 ----A---- C:\Windows\system32\SMBHelperClass.dll
    2008-12-18 04:08:14 ----A---- C:\Windows\system32\msvbvm60.dll
    2008-12-18 04:08:14 ----A---- C:\Windows\system32\mstsc.exe
    2008-12-18 04:08:12 ----A---- C:\Windows\system32\termsrv.dll
    2008-12-18 04:08:12 ----A---- C:\Windows\system32\msdtctm.dll
    2008-12-18 04:08:12 ----A---- C:\Windows\system32\advapi32.dll
    2008-12-18 04:08:11 ----A---- C:\Windows\system32\kerberos.dll
    2008-12-18 04:08:11 ----A---- C:\Windows\system32\IMJP10K.DLL
    2008-12-18 04:08:10 ----A---- C:\Windows\system32\mmcndmgr.dll
    2008-12-18 04:08:10 ----A---- C:\Windows\system32\CertEnroll.dll
    2008-12-18 04:08:09 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL
    2008-12-18 04:08:05 ----A---- C:\Windows\system32\xolehlp.dll
    2008-12-18 04:08:05 ----A---- C:\Windows\system32\Query.dll
    2008-12-18 04:08:05 ----A---- C:\Windows\system32\msdtcprx.dll
    2008-12-18 04:08:05 ----A---- C:\Windows\system32\MPSSVC.dll
    2008-12-18 04:08:04 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
    2008-12-18 04:08:04 ----A---- C:\Windows\system32\ole32.dll
    2008-12-18 04:08:03 ----A---- C:\Windows\system32\netlogon.dll
    2008-12-18 04:08:03 ----A---- C:\Windows\system32\msvcrt.dll
    2008-12-18 04:08:02 ----A---- C:\Windows\system32\SSShim.dll
    2008-12-18 04:08:02 ----A---- C:\Windows\system32\nlmgp.dll
    2008-12-18 04:08:02 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
    2008-12-18 04:08:02 ----A---- C:\Windows\system32\DfsShlEx.dll
    2008-12-18 04:08:01 ----A---- C:\Windows\system32\shlwapi.dll
    2008-12-18 04:08:01 ----A---- C:\Windows\system32\sdclt.exe
    2008-12-18 04:08:01 ----A---- C:\Windows\system32\schedsvc.dll
    2008-12-18 04:08:01 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
    2008-12-18 04:08:01 ----A---- C:\Windows\system32\IasMigPlugin.dll
    2008-12-18 04:08:00 ----A---- C:\Windows\system32\wer.dll
    2008-12-18 04:08:00 ----A---- C:\Windows\system32\user32.dll
    2008-12-18 04:08:00 ----A---- C:\Windows\system32\milcore.dll
    2008-12-18 04:08:00 ----A---- C:\Windows\system32\clusapi.dll
    2008-12-18 04:07:59 ----A---- C:\Windows\system32\WSDApi.dll
    2008-12-18 04:07:59 ----A---- C:\Windows\system32\vdsdyn.dll
    2008-12-18 04:07:59 ----A---- C:\Windows\system32\QAGENTRT.DLL
    2008-12-18 04:07:59 ----A---- C:\Windows\system32\diagperf.dll
    2008-12-18 04:07:59 ----A---- C:\Windows\system32\d3d9.dll
    2008-12-18 04:07:58 ----A---- C:\Windows\system32\winrsmgr.dll
    2008-12-18 04:07:58 ----A---- C:\Windows\system32\mmc.exe
    2008-12-18 04:07:57 ----A---- C:\Windows\system32\vdsbas.dll
    2008-12-18 04:07:57 ----A---- C:\Windows\system32\swprv.dll
    2008-12-18 04:07:57 ----A---- C:\Windows\system32\SLC.dll
    2008-12-18 04:07:57 ----A---- C:\Windows\system32\mtxclu.dll
    2008-12-18 04:07:57 ----A---- C:\Windows\system32\msi.dll
    2008-12-18 04:07:56 ----A---- C:\Windows\system32\comctl32.dll
    2008-12-18 04:07:55 ----A---- C:\Windows\system32\MSVidCtl.dll
    2008-12-18 04:07:54 ----A---- C:\Windows\system32\XPSSHHDR.dll
    2008-12-18 04:07:54 ----A---- C:\Windows\system32\msdtckrm.dll
    2008-12-18 04:07:54 ----A---- C:\Windows\system32\gpsvc.dll
    2008-12-18 04:07:53 ----A---- C:\Windows\system32\sbe.dll
    2008-12-18 04:07:53 ----A---- C:\Windows\system32\samsrv.dll
    2008-12-18 04:07:53 ----A---- C:\Windows\system32\mfc42u.dll
    2008-12-18 04:07:53 ----A---- C:\Windows\system32\FWPUCLNT.DLL
    2008-12-18 04:07:53 ----A---- C:\Windows\system32\esent.dll
    2008-12-18 04:07:52 ----A---- C:\Windows\system32\wecutil.exe
    2008-12-18 04:07:52 ----A---- C:\Windows\system32\usp10.dll
    2008-12-18 04:07:52 ----A---- C:\Windows\system32\sdengin2.dll
    2008-12-18 04:07:51 ----A---- C:\Windows\system32\mfc42.dll
    2008-12-18 04:07:51 ----A---- C:\Windows\system32\gacinstall.dll
    2008-12-18 04:07:51 ----A---- C:\Windows\system32\cmipnpinstall.dll
    2008-12-18 04:07:51 ----A---- C:\Windows\system32\cmicryptinstall.dll
    2008-12-18 04:07:50 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
    2008-12-18 04:07:50 ----A---- C:\Windows\system32\crypt32.dll
    2008-12-18 04:07:50 ----A---- C:\Windows\system32\comsvcs.dll
    2008-12-18 04:07:50 ----A---- C:\Windows\system32\certutil.exe
    2008-12-18 04:07:49 ----A---- C:\Windows\system32\wmdrmsdk.dll
    2008-12-18 04:07:49 ----A---- C:\Windows\system32\mswsock.dll
    2008-12-18 04:07:48 ----A---- C:\Windows\system32\sqlceqp30.dll
    2008-12-18 04:07:48 ----A---- C:\Windows\system32\setupapi.dll
    2008-12-18 04:07:48 ----A---- C:\Windows\system32\oleaut32.dll
    2008-12-18 04:07:48 ----A---- C:\Windows\system32\lsm.exe
    2008-12-18 04:07:48 ----A---- C:\Windows\system32\FirewallAPI.dll
    2008-12-18 04:07:47 ----A---- C:\Windows\system32\wecsvc.dll
    2008-12-18 04:07:47 ----A---- C:\Windows\system32\sdohlp.dll
    2008-12-18 04:07:47 ----A---- C:\Windows\system32\schannel.dll
    2008-12-18 04:07:47 ----A---- C:\Windows\system32\msv1_0.dll
    2008-12-18 04:07:47 ----A---- C:\Windows\system32\bcrypt.dll
    2008-12-18 04:07:47 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
    2008-12-18 04:07:46 ----A---- C:\Windows\system32\p2psvc.dll
    2008-12-18 04:07:46 ----A---- C:\Windows\system32\iphlpsvc.dll
    2008-12-18 04:07:46 ----A---- C:\Windows\system32\eapp3hst.dll
    2008-12-18 04:07:45 ----A---- C:\Windows\system32\wmpmde.dll
    2008-12-18 04:07:45 ----A---- C:\Windows\system32\thumbcache.dll
    2008-12-18 04:07:45 ----A---- C:\Windows\system32\mcmde.dll
    2008-12-18 04:07:44 ----A---- C:\Windows\system32\vdsutil.dll
    2008-12-18 04:07:44 ----A---- C:\Windows\system32\riched20.dll
    2008-12-18 04:07:44 ----A---- C:\Windows\system32\imapi2fs.dll
    2008-12-18 04:07:44 ----A---- C:\Windows\system32\d3d10_1.dll
    2008-12-18 04:07:44 ----A---- C:\Windows\system32\autofmt.exe
    2008-12-18 04:07:44 ----A---- C:\Windows\system32\autoconv.exe
    2008-12-18 04:07:44 ----A---- C:\Windows\system32\autochk.exe
    2008-12-18 04:07:43 ----A---- C:\Windows\system32\WinSAT.exe
    2008-12-18 04:07:43 ----A---- C:\Windows\system32\authui.dll
    2008-12-18 04:07:43 ----A---- C:\Windows\system32\authfwcfg.dll
    2008-12-18 04:07:42 ----A---- C:\Windows\system32\wevtapi.dll
    2008-12-18 04:07:42 ----A---- C:\Windows\system32\dmvdsitf.dll
    2008-12-18 04:07:42 ----A---- C:\Windows\system32\d3d10_1core.dll
    2008-12-18 04:07:42 ----A---- C:\Windows\system32\comdlg32.dll
    2008-12-18 04:07:42 ----A---- C:\Windows\system32\browseui.dll
    2008-12-18 04:07:41 ----A---- C:\Windows\system32\WSDMon.dll
    2008-12-18 04:07:41 ----A---- C:\Windows\system32\mscories.dll
    2008-12-18 04:07:41 ----A---- C:\Windows\system32\eapphost.dll
    2008-12-18 04:07:41 ----A---- C:\Windows\system32\comuid.dll
    2008-12-18 04:07:40 ----A---- C:\Windows\system32\wevtfwd.dll
    2008-12-18 04:07:40 ----A---- C:\Windows\system32\uexfat.dll
    2008-12-18 04:07:40 ----A---- C:\Windows\system32\rasmans.dll
    2008-12-18 04:07:40 ----A---- C:\Windows\system32\eappcfg.dll
    2008-12-18 04:07:39 ----A---- C:\Windows\system32\untfs.dll
    2008-12-18 04:07:39 ----A---- C:\Windows\system32\sqlcese30.dll
    2008-12-18 04:07:39 ----A---- C:\Windows\system32\pcaui.dll
    2008-12-18 04:07:39 ----A---- C:\Windows\system32\iassam.dll
    2008-12-18 04:07:39 ----A---- C:\Windows\system32\DfrgNtfs.exe
    2008-12-18 04:07:38 ----A---- C:\Windows\system32\wlansvc.dll
    2008-12-18 04:07:38 ----A---- C:\Windows\system32\whealogr.dll
    2008-12-18 04:07:37 ----A---- C:\Windows\system32\dot3svc.dll
    2008-12-18 04:07:35 ----A---- C:\Windows\system32\rdpwsx.dll
    2008-12-18 04:07:34 ----A---- C:\Windows\system32\zipfldr.dll
    2008-12-18 04:07:34 ----A---- C:\Windows\system32\winhttp.dll
    2008-12-18 04:07:34 ----A---- C:\Windows\system32\mssha.dll
    2008-12-18 04:07:34 ----A---- C:\Windows\system32\msdrm.dll
    2008-12-18 04:07:34 ----A---- C:\Windows\system32\evr.dll
    2008-12-18 04:07:34 ----A---- C:\Windows\system32\dfrgui.exe
    2008-12-18 04:07:33 ----A---- C:\Windows\system32\WsmAuto.dll
    2008-12-18 04:07:33 ----A---- C:\Windows\system32\rpcss.dll
    2008-12-18 04:07:33 ----A---- C:\Windows\system32\rasppp.dll
    2008-12-18 04:07:33 ----A---- C:\Windows\system32\nlasvc.dll
    2008-12-18 04:07:33 ----A---- C:\Windows\system32\ncrypt.dll
    2008-12-18 04:07:33 ----A---- C:\Windows\system32\BFE.DLL
    2008-12-18 04:07:32 ----A---- C:\Windows\system32\wmdrmdev.dll
    2008-12-18 04:07:32 ----A---- C:\Windows\system32\msrepl40.dll
    2008-12-18 04:07:32 ----A---- C:\Windows\system32\audiosrv.dll
    2008-12-18 04:07:31 ----A---- C:\Windows\system32\WsmWmiPl.dll
    2008-12-18 04:07:31 ----A---- C:\Windows\system32\WebClnt.dll
    2008-12-18 04:07:31 ----A---- C:\Windows\system32\rastls.dll
    2008-12-18 04:07:31 ----A---- C:\Windows\system32\printui.dll
    2008-12-18 04:07:31 ----A---- C:\Windows\system32\dhcpcsvc6.dll
    2008-12-18 04:07:31 ----A---- C:\Windows\system32\ddraw.dll
    2008-12-18 04:07:30 ----A---- C:\Windows\system32\themecpl.dll
    2008-12-18 04:07:30 ----A---- C:\Windows\system32\objsel.dll
    2008-12-18 04:07:30 ----A---- C:\Windows\system32\dbghelp.dll
    2008-12-18 04:07:29 ----A---- C:\Windows\system32\w32time.dll
    2008-12-18 04:07:29 ----A---- C:\Windows\system32\sqlsrv32.dll
    2008-12-18 04:07:29 ----A---- C:\Windows\system32\QAGENT.DLL
    2008-12-18 04:07:29 ----A---- C:\Windows\system32\iasnap.dll
    2008-12-18 04:07:28 ----A---- C:\Windows\system32\wmdrmnet.dll
    2008-12-18 04:07:28 ----A---- C:\Windows\system32\WerFaultSecure.exe
    2008-12-18 04:07:28 ----A---- C:\Windows\system32\PresentationHost.exe
    2008-12-18 04:07:28 ----A---- C:\Windows\system32\ncryptui.dll
    2008-12-18 04:07:28 ----A---- C:\Windows\system32\icm32.dll
    2008-12-18 04:07:28 ----A---- C:\Windows\system32\azroles.dll
    2008-12-18 04:07:27 ----A---- C:\Windows\system32\spoolss.dll
    2008-12-18 04:07:27 ----A---- C:\Windows\system32\msctf.dll
    2008-12-18 04:07:27 ----A---- C:\Windows\system32\iprtrmgr.dll
    2008-12-18 04:07:27 ----A---- C:\Windows\system32\infocardapi.dll
    2008-12-18 04:07:26 ----A---- C:\Windows\system32\wlangpui.dll
    2008-12-18 04:07:26 ----A---- C:\Windows\system32\winsrv.dll
    2008-12-18 04:07:26 ----A---- C:\Windows\system32\taskschd.dll
    2008-12-18 04:07:26 ----A---- C:\Windows\system32\mstlsapi.dll
    2008-12-18 04:07:26 ----A---- C:\Windows\system32\bcdedit.exe
    2008-12-18 04:07:26 ----A---- C:\Windows\system32\basecsp.dll
    2008-12-18 04:07:25 ----A---- C:\Windows\system32\scksp.dll
    2008-12-18 04:07:25 ----A---- C:\Windows\system32\netprofm.dll
    2008-12-18 04:07:25 ----A---- C:\Windows\system32\AudioEng.dll
    2008-12-18 04:07:24 ----A---- C:\Windows\system32\winsta.dll
    2008-12-18 04:07:24 ----A---- C:\Windows\system32\rsaenh.dll
    2008-12-18 04:07:24 ----A---- C:\Windows\system32\netcfgx.dll
    2008-12-18 04:07:24 ----A---- C:\Windows\system32\dbgeng.dll
    2008-12-18 04:07:23 ----A---- C:\Windows\system32\winlogon.exe
    2008-12-18 04:07:23 ----A---- C:\Windows\system32\taskcomp.dll
    2008-12-18 04:07:23 ----A---- C:\Windows\system32\cdosys.dll
    2008-12-18 04:07:22 ----A---- C:\Windows\system32\wercon.exe
    2008-12-18 04:07:22 ----A---- C:\Windows\system32\lpksetup.exe
    2008-12-18 04:07:22 ----A---- C:\Windows\system32\dfshim.dll
    2008-12-18 04:07:21 ----A---- C:\Windows\system32\wlansec.dll
    2008-12-18 04:07:21 ----A---- C:\Windows\system32\msdtcuiu.dll
    2008-12-18 04:07:21 ----A---- C:\Windows\system32\mprddm.dll
    2008-12-18 04:07:21 ----A---- C:\Windows\system32\iasrad.dll
    2008-12-18 04:07:21 ----A---- C:\Windows\system32\certcli.dll
    2008-12-18 04:07:21 ----A---- C:\Windows\system32\apds.dll
    2008-12-18 04:07:20 ----A---- C:\Windows\system32\tsgqec.dll
    2008-12-18 04:07:20 ----A---- C:\Windows\system32\shdocvw.dll
    2008-12-18 04:07:20 ----A---- C:\Windows\system32\eapsvc.dll
    2008-12-18 04:07:20 ----A---- C:\Windows\system32\AUDIOKSE.dll
    2008-12-18 04:07:20 ----A---- C:\Windows\system32\aaclient.dll
    2008-12-18 04:07:19 ----A---- C:\Windows\system32\certmgr.dll
    2008-12-18 04:07:19 ----A---- C:\Windows\system32\bcdsrv.dll
    2008-12-18 04:07:18 ----A---- C:\Windows\system32\Wldap32.dll
    2008-12-18 04:07:18 ----A---- C:\Windows\system32\uDWM.dll
    2008-12-18 04:07:18 ----A---- C:\Windows\system32\msidcrl30.dll
    2008-12-18 04:07:18 ----A---- C:\Windows\system32\dnsapi.dll
    2008-12-18 04:07:17 ----A---- C:\Windows\system32\WMVDECOD.DLL
    2008-12-18 04:07:17 ----A---- C:\Windows\system32\umpnpmgr.dll
    2008-12-18 04:07:16 ----A---- C:\Windows\system32\pla.dll
    2008-12-18 04:07:16 ----A---- C:\Windows\system32\dxgi.dll
    2008-12-18 04:07:15 ----A---- C:\Windows\system32\wmicmiplugin.dll
    2008-12-18 04:07:15 ----A---- C:\Windows\system32\netshell.dll
    2008-12-18 04:07:15 ----A---- C:\Windows\system32\dot3gpui.dll
    2008-12-18 04:07:14 ----A---- C:\Windows\system32\ntprint.dll
    2008-12-18 04:07:13 ----A---- C:\Windows\system32\shsvcs.dll
    2008-12-18 04:07:13 ----A---- C:\Windows\system32\MMDevAPI.dll
    2008-12-18 04:07:13 ----A---- C:\Windows\system32\cryptnet.dll
    2008-12-18 04:07:13 ----A---- C:\Windows\system32\comsnap.dll
    2008-12-18 04:07:12 ----A---- C:\Windows\system32\wscsvc.dll
    2008-12-18 04:07:12 ----A---- C:\Windows\system32\winmm.dll
    2008-12-18 04:07:12 ----A---- C:\Windows\system32\services.exe
    2008-12-18 04:07:11 ----A---- C:\Windows\system32\synceng.dll
    2008-12-18 04:07:11 ----A---- C:\Windows\system32\pnidui.dll
    2008-12-18 04:07:11 ----A---- C:\Windows\system32\cmifw.dll
    2008-12-18 04:07:10 ----A---- C:\Windows\system32\wscisvif.dll
    2008-12-18 04:07:09 ----A---- C:\Windows\system32\WMVSDECD.DLL
    2008-12-18 04:07:09 ----A---- C:\Windows\system32\taskeng.exe
    2008-12-18 04:07:09 ----A---- C:\Windows\system32\msjtes40.dll
    2008-12-18 04:07:09 ----A---- C:\Windows\system32\msconfig.exe
    2008-12-18 04:07:09 ----A---- C:\Windows\system32\iassdo.dll
    2008-12-18 04:07:09 ----A---- C:\Windows\system32\cipher.exe
    2008-12-18 04:07:08 ----A---- C:\Windows\system32\uxtheme.dll
    2008-12-18 04:07:08 ----A---- C:\Windows\system32\tdh.dll
    2008-12-18 04:07:08 ----A---- C:\Windows\system32\SessEnv.dll
    2008-12-18 04:07:08 ----A---- C:\Windows\system32\rasapi32.dll
    2008-12-18 04:07:08 ----A---- C:\Windows\system32\imapi2.dll
    2008-12-18 04:07:08 ----A---- C:\Windows\system32\dot3api.dll
    2008-12-18 04:07:08 ----A---- C:\Windows\system32\dmdskmgr.dll
    2008-12-18 04:07:07 ----A---- C:\Windows\system32\qdvd.dll
    2008-12-18 04:07:07 ----A---- C:\Windows\system32\msscp.dll
    2008-12-18 04:07:07 ----A---- C:\Windows\system32\cmd.exe
    2008-12-18 04:07:07 ----A---- C:\Windows\system32\cbsra.exe
    2008-12-18 04:07:07 ----A---- C:\Windows\system32\AuthFWSnapin.dll
    2008-12-18 04:07:06 ----A---- C:\Windows\system32\WUDFx.dll
    2008-12-18 04:07:06 ----A---- C:\Windows\system32\wlanmsm.dll
    2008-12-18 04:07:06 ----A---- C:\Windows\system32\wlancfg.dll
    2008-12-18 04:07:06 ----A---- C:\Windows\system32\wkssvc.dll
    2008-12-18 04:07:06 ----A---- C:\Windows\system32\wevtutil.exe
    2008-12-18 04:07:06 ----A---- C:\Windows\system32\srvsvc.dll
    2008-12-18 04:07:06 ----A---- C:\Windows\system32\msdtcVSp1res.dll
    2008-12-18 04:07:06 ----A---- C:\Windows\system32\loadperf.dll
    2008-12-18 04:07:06 ----A---- C:\Windows\system32\comres.dll
    2008-12-18 04:07:05 ----A---- C:\Windows\system32\rpchttp.dll
    2008-12-18 04:07:05 ----A---- C:\Windows\system32\rdpdd.dll
    2008-12-18 04:07:05 ----A---- C:\Windows\system32\localsec.dll
    2008-12-18 04:07:05 ----A---- C:\Windows\system32\fontext.dll
    2008-12-18 04:07:05 ----A---- C:\Windows\system32\diskpart.exe
    2008-12-18 04:07:04 ----A---- C:\Windows\system32\wlanapi.dll
    2008-12-18 04:07:04 ----A---- C:\Windows\system32\hnetcfg.dll
    2008-12-18 04:07:03 ----A---- C:\Windows\system32\wsqmcons.exe
    2008-12-18 04:07:03 ----A---- C:\Windows\system32\WMADMOD.DLL
    2008-12-18 04:07:03 ----A---- C:\Windows\system32\wlanpref.dll
    2008-12-18 04:07:03 ----A---- C:\Windows\system32\WinSATAPI.dll
    2008-12-18 04:07:03 ----A---- C:\Windows\system32\NAPMONTR.DLL
    2008-12-18 04:07:03 ----A---- C:\Windows\system32\dsound.dll
    2008-12-18 04:07:03 ----A---- C:\Windows\system32\avifil32.dll
    2008-12-18 04:07:02 ----A---- C:\Windows\system32\RDPENCDD.dll
    2008-12-18 04:07:02 ----A---- C:\Windows\system32\profprov.dll
    2008-12-18 04:07:02 ----A---- C:\Windows\system32\PresentationHostProxy.dll
    2008-12-18 04:07:02 ----A---- C:\Windows\system32\filemgmt.dll
    2008-12-18 04:07:02 ----A---- C:\Windows\system32\dnsrslvr.dll
    2008-12-18 04:07:01 ----A---- C:\Windows\system32\wsecedit.dll
    2008-12-18 04:07:01 ----A---- C:\Windows\system32\WMSPDMOD.DLL
    2008-12-18 04:07:01 ----A---- C:\Windows\system32\tracerpt.exe
    2008-12-18 04:07:01 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
    2008-12-18 04:07:01 ----A---- C:\Windows\system32\SLCommDlg.dll
    2008-12-18 04:07:01 ----A---- C:\Windows\system32\P2PGraph.dll
    2008-12-18 04:07:01 ----A---- C:\Windows\system32\MuiUnattend.exe
    2008-12-18 04:07:01 ----A---- C:\Windows\system32\dwmredir.dll
    2008-12-18 04:07:01 ----A---- C:\Windows\system32\dhcpcsvc.dll
    2008-12-18 04:07:01 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
    2008-12-18 04:07:00 ----A---- C:\Windows\system32\wininit.exe
    2008-12-18 04:07:00 ----A---- C:\Windows\system32\spp.dll
    2008-12-18 04:07:00 ----A---- C:\Windows\system32\rasdlg.dll
    2008-12-18 04:07:00 ----A---- C:\Windows\system32\QSHVHOST.DLL
    2008-12-18 04:07:00 ----A---- C:\Windows\system32\iassvcs.dll
    2008-12-18 04:07:00 ----A---- C:\Windows\system32\gpresult.exe
    2008-12-18 04:07:00 ----A---- C:\Windows\system32\dwm.exe
    2008-12-18 04:07:00 ----A---- C:\Windows\system32\azroleui.dll
    2008-12-18 04:07:00 ----A---- C:\Windows\system32\apphelp.dll
    2008-12-18 04:06:58 ----A---- C:\Windows\system32\iashost.exe
    2008-12-18 04:06:58 ----A---- C:\Windows\HelpPane.exe
    2008-12-18 04:06:55 ----A---- C:\Windows\system32\mscorier.dll
    2008-12-18 04:06:55 ----A---- C:\Windows\system32\mcbuilder.exe
    2008-12-18 04:06:54 ----A---- C:\Windows\system32\srrstr.dll
    2008-12-18 04:06:54 ----A---- C:\Windows\system32\spwizeng.dll
    2008-12-18 04:06:54 ----A---- C:\Windows\system32\SLUI.exe
    2008-12-18 04:06:53 ----A---- C:\Windows\system32\wecapi.dll
    2008-12-18 04:06:53 ----A---- C:\Windows\system32\unbcl.dll
    2008-12-18 04:06:53 ----A---- C:\Windows\system32\tcpmon.dll
    2008-12-18 04:06:53 ----A---- C:\Windows\system32\shrink.dll
    2008-12-18 04:06:53 ----A---- C:\Windows\system32\rasmontr.dll
    2008-12-18 04:06:53 ----A---- C:\Windows\system32\msra.exe
    2008-12-18 04:06:53 ----A---- C:\Windows\system32\lltdsvc.dll
    2008-12-18 04:06:52 ----A---- C:\Windows\system32\WMPEncEn.dll
    2008-12-18 04:06:52 ----A---- C:\Windows\system32\IPHLPAPI.DLL
    2008-12-18 04:06:52 ----A---- C:\Windows\system32\iashlpr.dll
    2008-12-18 04:06:52 ----A---- C:\Windows\system32\gpedit.dll
    2008-12-18 04:06:52 ----A---- C:\Windows\system32\brcpl.dll
    2008-12-18 04:06:51 ----A---- C:\Windows\system32\raschap.dll
    2008-12-18 04:06:51 ----A---- C:\Windows\system32\oleacc.dll
    2008-12-18 04:06:51 ----A---- C:\Windows\system32\msdri.dll
    2008-12-18 04:06:50 ----A---- C:\Windows\system32\regsvc.dll
    2008-12-18 04:06:50 ----A---- C:\Windows\system32\framedynos.dll
    2008-12-18 04:06:50 ----A---- C:\Windows\system32\fdWSD.dll
    2008-12-18 04:06:49 ----A---- C:\Windows\system32\wdc.dll
    2008-12-18 04:06:49 ----A---- C:\Windows\system32\vsstrace.dll
    2008-12-18 04:06:49 ----A---- C:\Windows\system32\PerfCenterCPL.dll
    2008-12-18 04:06:49 ----A---- C:\Windows\system32\ntvdm.exe
    2008-12-18 04:06:49 ----A---- C:\Windows\system32\ntlanman.dll
    2008-12-18 04:06:49 ----A---- C:\Windows\system32\ipsmsnap.dll
    2008-12-18 04:06:48 ----A---- C:\Windows\system32\wpdshext.dll
    2008-12-18 04:06:48 ----A---- C:\Windows\system32\Storprop.dll
    2008-12-18 04:06:48 ----A---- C:\Windows\system32\NetProjW.dll
    2008-12-18 04:06:48 ----A---- C:\Windows\system32\netman.dll
    2008-12-18 04:06:48 ----A---- C:\Windows\system32\l2nacp.dll
    2008-12-18 04:06:47 ----A---- C:\Windows\system32\WlanMM.dll
    2008-12-18 04:06:47 ----A---- C:\Windows\system32\framedyn.dll
    2008-12-18 04:06:47 ----A---- C:\Windows\system32\dssenh.dll
    2008-12-18 04:06:47 ----A---- C:\Windows\system32\certreq.exe
    2008-12-18 04:06:47 ----A---- C:\Windows\system32\adsnt.dll
    2008-12-18 04:06:46 ----A---- C:\Windows\system32\WsmProv.dll
    2008-12-18 04:06:46 ----A---- C:\Windows\system32\wlanhlp.dll
    2008-12-18 04:06:46 ----A---- C:\Windows\system32\WLanConn.dll
    2008-12-18 04:06:46 ----A---- C:\Windows\system32\tcpipcfg.dll
    2008-12-18 04:06:46 ----A---- C:\Windows\system32\sxs.dll
    2008-12-18 04:06:46 ----A---- C:\Windows\system32\profsvc.dll
    2008-12-18 04:06:46 ----A---- C:\Windows\system32\KMSVC.DLL
    2008-12-18 04:06:46 ----A---- C:\Windows\system32\IPBusEnum.dll
    2008-12-18 04:06:45 ----A---- C:\Windows\system32\wusa.exe
    2008-12-18 04:06:45 ----A---- C:\Windows\system32\WUDFHost.exe
    2008-12-18 04:06:45 ----A---- C:\Windows\system32\WerFault.exe
    2008-12-18 04:06:45 ----A---- C:\Windows\system32\VAN.dll
    2008-12-18 04:06:45 ----A---- C:\Windows\system32\userenv.dll
    2008-12-18 04:06:45 ----A---- C:\Windows\system32\umb.dll
    2008-12-18 04:06:45 ----A---- C:\Windows\system32\ncsi.dll
    2008-12-18 04:06:45 ----A---- C:\Windows\system32\fundisc.dll
    2008-12-18 04:06:44 ----A---- C:\Windows\system32\puiobj.dll
    2008-12-18 04:06:44 ----A---- C:\Windows\system32\cryptui.dll
    2008-12-18 04:06:44 ----A---- C:\Windows\system32\catsrvut.dll
    2008-12-18 04:06:43 ----A---- C:\Windows\system32\photowiz.dll
    2008-12-18 04:06:43 ----A---- C:\Windows\system32\netid.dll
    2008-12-18 04:06:43 ----A---- C:\Windows\system32\netcenter.dll
    2008-12-18 04:06:43 ----A---- C:\Windows\system32\MdSched.exe
    2008-12-18 04:06:43 ----A---- C:\Windows\system32\InkEd.dll
    2008-12-18 04:06:43 ----A---- C:\Windows\system32\dps.dll
    2008-12-18 04:06:42 ----A---- C:\Windows\system32\ws2_32.dll
    2008-12-18 04:06:42 ----A---- C:\Windows\system32\WinSCard.dll
    2008-12-18 04:06:42 ----A---- C:\Windows\system32\spbcd.dll
    2008-12-18 04:06:42 ----A---- C:\Windows\system32\msinfo32.exe
    2008-12-18 04:06:42 ----A---- C:\Windows\system32\ipsecsnp.dll
    2008-12-18 04:06:41 ----A---- C:\Windows\system32\winrs.exe
    2008-12-18 04:06:41 ----A---- C:\Windows\system32\secur32.dll
    2008-12-18 04:06:41 ----A---- C:\Windows\system32\odbcjt32.dll
    2008-12-18 04:06:41 ----A---- C:\Windows\system32\ntdsapi.dll
    2008-12-18 04:06:41 ----A---- C:\Windows\system32\NAPSTAT.EXE
    2008-12-18 04:06:40 ----A---- C:\Windows\system32\prnntfy.dll
    2008-12-18 04:06:39 ----A---- C:\Windows\system32\mblctr.exe
    2008-12-18 04:06:39 ----A---- C:\Windows\system32\cryptsvc.dll
    2008-12-18 04:06:38 ----A---- C:\Windows\system32\schtasks.exe
    2008-12-18 04:06:38 ----A---- C:\Windows\system32\RelMon.dll
    2008-12-18 04:06:38 ----A---- C:\Windows\system32\pdh.dll
    2008-12-18 04:06:38 ----A---- C:\Windows\system32\iasacct.dll
    2008-12-18 04:06:38 ----A---- C:\Windows\system32\dmdlgs.dll
    2008-12-18 04:06:38 ----A---- C:\Windows\system32\dhcpsapi.dll
    2008-12-18 04:06:38 ----A---- C:\Windows\system32\activeds.dll
    2008-12-18 04:06:37 ----A---- C:\Windows\system32\TSpkg.dll
    2008-12-18 04:06:37 ----A---- C:\Windows\system32\netdiagfx.dll
    2008-12-18 04:06:37 ----A---- C:\Windows\system32\FirewallControlPanel.exe
    2008-12-18 04:06:37 ----A---- C:\Windows\system32\dfrgfat.exe
    2008-12-18 04:06:37 ----A---- C:\Windows\system32\catsrv.dll
    2008-12-18 04:06:36 ----A---- C:\Windows\system32\wvc.dll
    2008-12-18 04:06:36 ----A---- C:\Windows\system32\winrm.vbs
    2008-12-18 04:06:36 ----A---- C:\Windows\system32\qwave.dll
    2008-12-18 04:06:36 ----A---- C:\Windows\system32\fdWCN.dll
    2008-12-18 04:06:36 ----A---- C:\Windows\system32\dot3msm.dll
    2008-12-18 04:06:36 ----A---- C:\Windows\system32\AudioSes.dll
    2008-12-18 04:06:35 ----A---- C:\Windows\system32\rastapi.dll
    2008-12-18 04:06:35 ----A---- C:\Windows\system32\netcorehc.dll
    2008-12-18 04:06:35 ----A---- C:\Windows\system32\NAPHLPR.DLL
    2008-12-18 04:06:35 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
    2008-12-18 04:06:35 ----A---- C:\Windows\system32\msacm32.dll
    2008-12-18 04:06:35 ----A---- C:\Windows\system32\ifmon.dll
    2008-12-18 04:06:35 ----A---- C:\Windows\system32\dot3cfg.dll
    2008-12-18 04:06:34 ----A---- C:\Windows\system32\wow32.dll
    2008-12-18 04:06:34 ----A---- C:\Windows\system32\shsetup.dll
    2008-12-18 04:06:34 ----A---- C:\Windows\system32\adsldp.dll
    2008-12-18 04:06:33 ----A---- C:\Windows\system32\ntshrui.dll
    2008-12-18 04:06:33 ----A---- C:\Windows\system32\msdt.dll
    2008-12-18 04:06:33 ----A---- C:\Windows\system32\els.dll
    2008-12-18 04:06:33 ----A---- C:\Windows\system32\clbcatq.dll
    2008-12-18 04:06:32 ----A---- C:\Windows\system32\wscntfy.dll
    2008-12-18 04:06:32 ----A---- C:\Windows\system32\stobject.dll
    2008-12-18 04:06:32 ----A---- C:\Windows\system32\sdrsvc.dll
    2008-12-18 04:06:32 ----A---- C:\Windows\system32\QUTIL.DLL
    2008-12-18 04:06:32 ----A---- C:\Windows\system32\net1.exe
    2008-12-18 04:06:32 ----A---- C:\Windows\system32\ipnathlp.dll
    2008-12-18 04:06:32 ----A---- C:\Windows\system32\iasrecst.dll
    2008-12-18 04:06:32 ----A---- C:\Windows\system32\iasdatastore.dll
    2008-12-18 04:06:32 ----A---- C:\Windows\system32\fdSSDP.dll
    2008-12-18 04:06:31 ----A---- C:\Windows\system32\wlgpclnt.dll
    2008-12-18 04:06:31 ----A---- C:\Windows\system32\wlanui.dll
    2008-12-18 04:06:31 ----A---- C:\Windows\system32\dsprop.dll
    2008-12-18 04:06:31 ----A---- C:\Windows\system32\Defrag.exe
    2008-12-18 04:06:31 ----A---- C:\Windows\system32\adsldpc.dll
    2008-12-18 04:06:30 ----A---- C:\Windows\system32\upnphost.dll
    2008-12-18 04:06:30 ----A---- C:\Windows\system32\systemcpl.dll
    2008-12-18 04:06:30 ----A---- C:\Windows\system32\smss.exe
    2008-12-18 04:06:30 ----A---- C:\Windows\system32\rasman.dll
    2008-12-18 04:06:30 ----A---- C:\Windows\system32\nci.dll
    2008-12-18 04:06:30 ----A---- C:\Windows\system32\mprmsg.dll
    2008-12-18 04:06:30 ----A---- C:\Windows\system32\ActiveContentWizard.dll
    2008-12-18 04:06:29 ----A---- C:\Windows\system32\P2P.dll
    2008-12-18 04:06:29 ----A---- C:\Windows\system32\msftedit.dll
    2008-12-18 04:06:29 ----A---- C:\Windows\system32\MSAC3ENC.DLL
    2008-12-18 04:06:29 ----A---- C:\Windows\system32\CompatUI.dll
    2008-12-18 04:06:28 ----A---- C:\Windows\system32\t2embed.dll
    2008-12-18 04:06:28 ----A---- C:\Windows\system32\rascfg.dll
    2008-12-18 04:06:28 ----A---- C:\Windows\system32\PresentationSettings.exe
    2008-12-18 04:06:28 ----A---- C:\Windows\system32\oleprn.dll
    2008-12-18 04:06:28 ----A---- C:\Windows\system32\loghours.dll
    2008-12-18 04:06:28 ----A---- C:\Windows\system32\L2SecHC.dll
    2008-12-18 04:06:28 ----A---- C:\Windows\system32\fde.dll
    2008-12-18 04:06:27 ----A---- C:\Windows\system32\Wpc.dll
    2008-12-18 04:06:27 ----A---- C:\Windows\system32\wdigest.dll
    2008-12-18 04:06:27 ----A---- C:\Windows\system32\MigAutoPlay.exe
    2008-12-18 04:06:27 ----A---- C:\Windows\system32\dxdiag.exe
    2008-12-18 04:06:27 ----A---- C:\Windows\system32\DFDWiz.exe
    2008-12-18 04:06:27 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
    2008-12-18 04:06:26 ----A---- C:\Windows\system32\setupcl.exe
    2008-12-18 04:06:26 ----A---- C:\Windows\system32\msutb.dll
    2008-12-18 04:06:26 ----A---- C:\Windows\system32\mprdim.dll
    2008-12-18 04:06:26 ----A---- C:\Windows\system32\gpapi.dll
    2008-12-18 04:06:25 ----A---- C:\Windows\system32\wiaservc.dll
    2008-12-18 04:06:25 ----A---- C:\Windows\system32\scansetting.dll
    2008-12-18 04:06:25 ----A---- C:\Windows\system32\rtm.dll
    2008-12-18 04:06:25 ----A---- C:\Windows\system32\NAPCRYPT.DLL
    2008-12-18 04:06:25 ----A---- C:\Windows\system32\devmgr.dll
    2008-12-18 04:06:24 ----A---- C:\Windows\system32\msihnd.dll
    2008-12-18 04:06:24 ----A---- C:\Windows\system32\ifsutil.dll
    2008-12-18 04:06:24 ----A---- C:\Windows\system32\CertEnrollUI.dll
    2008-12-18 04:06:24 ----A---- C:\Windows\system32\actxprxy.dll
    2008-12-18 04:06:23 ----A---- C:\Windows\system32\wscapi.dll
    2008-12-18 04:06:23 ----A---- C:\Windows\system32\wdi.dll
    2008-12-18 04:06:23 ----A---- C:\Windows\system32\mswmdm.dll
    2008-12-18 04:06:23 ----A---- C:\Windows\system32\kdusb.dll
    2008-12-18 04:06:23 ----A---- C:\Windows\system32\dimsroam.dll
    2008-12-18 04:06:22 ----A---- C:\Windows\system32\usbmon.dll
    2008-12-18 04:06:22 ----A---- C:\Windows\system32\SyncCenter.dll
    2008-12-18 04:06:22 ----A---- C:\Windows\system32\spoolsv.exe
    2008-12-18 04:06:22 ----A---- C:\Windows\system32\imagehlp.dll
    2008-12-18 04:06:22 ----A---- C:\Windows\system32\BOOTVID.DLL
    2008-12-18 04:06:22 ----A---- C:\Windows\system32\audiodg.exe
    2008-12-18 04:06:21 ----A---- C:\Windows\system32\wlandlg.dll
    2008-12-18 04:06:21 ----A---- C:\Windows\system32\vssadmin.exe
    2008-12-18 04:06:21 ----A---- C:\Windows\system32\uudf.dll
    2008-12-18 04:06:21 ----A---- C:\Windows\system32\regapi.dll
    2008-12-18 04:06:21 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
    2008-12-18 04:06:21 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
    2008-12-18 04:06:21 ----A---- C:\Windows\system32\mycomput.dll
    2008-12-18 04:06:20 ----A---- C:\Windows\system32\scecli.dll
    2008-12-18 04:06:20 ----A---- C:\Windows\system32\newdev.dll
    2008-12-18 04:06:20 ----A---- C:\Windows\system32\mspaint.exe
    2008-12-18 04:06:19 ----A---- C:\Windows\system32\sud.dll
    2008-12-18 04:06:19 ----A---- C:\Windows\system32\SCardSvr.dll
    2008-12-18 04:06:19 ----A---- C:\Windows\system32\samlib.dll
    2008-12-18 04:06:19 ----A---- C:\Windows\system32\puiapi.dll
    2008-12-18 04:06:19 ----A---- C:\Windows\system32\mstask.dll
    2008-12-18 04:06:19 ----A---- C:\Windows\system32\kdcom.dll
    2008-12-18 04:06:18 ----A---- C:\Windows\system32\termmgr.dll
    2008-12-18 04:06:18 ----A---- C:\Windows\system32\tapisrv.dll
    2008-12-18 04:06:18 ----A---- C:\Windows\system32\ssdpsrv.dll
    2008-12-18 04:06:18 ----A---- C:\Windows\system32\mtxoci.dll
    2008-12-18 04:06:18 ----A---- C:\Windows\system32\duser.dll
    2008-12-18 04:06:18 ----A---- C:\Windows\system32\adtschema.dll
    2008-12-18 04:06:17 ----A---- C:\Windows\system32\wisptis.exe
    2008-12-18 04:06:17 ----A---- C:\Windows\system32\SLUINotify.dll
    2008-12-18 04:06:17 ----A---- C:\Windows\system32\Robocopy.exe
    2008-12-18 04:06:17 ----A---- C:\Windows\system32\input.dll
    2008-12-18 04:06:17 ----A---- C:\Windows\system32\inetpp.dll
    2008-12-18 04:06:17 ----A---- C:\Windows\system32\iasads.dll
    2008-12-18 04:06:17 ----A---- C:\Windows\system32\cic.dll
    2008-12-18 04:06:17 ----A---- C:\Windows\system32\AzSqlExt.dll
    2008-12-18 04:06:16 ----A---- C:\Windows\system32\netiohlp.dll
    2008-12-18 04:06:16 ----A---- C:\Windows\system32\cscapi.dll
    2008-12-18 04:06:16 ----A---- C:\Windows\system32\authz.dll
    2008-12-18 04:06:15 ----A---- C:\Windows\system32\WUDFPlatform.dll
    2008-12-18 04:06:15 ----A---- C:\Windows\system32\verifier.exe
    2008-12-18 04:06:15 ----A---- C:\Windows\system32\sdshext.dll
    2008-12-18 04:06:15 ----A---- C:\Windows\system32\msdtclog.dll
    2008-12-18 04:06:15 ----A---- C:\Windows\system32\msdt.exe
    2008-12-18 04:06:15 ----A---- C:\Windows\system32\d3d8.dll
    2008-12-18 04:06:15 ----A---- C:\Windows\system32\cmdial32.dll
    2008-12-18 04:06:14 ----A---- C:\Windows\system32\wpcsvc.dll
    2008-12-18 04:06:14 ----A---- C:\Windows\system32\wintrust.dll
    2008-12-18 04:06:14 ----A---- C:\Windows\system32\vdsldr.exe
    2008-12-18 04:06:14 ----A---- C:\Windows\system32\themeui.dll
    2008-12-18 04:06:14 ----A---- C:\Windows\system32\slcinst.dll
    2008-12-18 04:06:14 ----A---- C:\Windows\system32\oledlg.dll
    2008-12-18 04:06:14 ----A---- C:\Windows\system32\clfsw32.dll
    2008-12-18 04:06:13 ----A---- C:\Windows\system32\wpccpl.dll
    2008-12-18 04:06:13 ----A---- C:\Windows\system32\WMPhoto.dll
    2008-12-18 04:06:13 ----A---- C:\Windows\system32\SnippingTool.exe
    2008-12-18 04:06:13 ----A---- C:\Windows\system32\SndVol.exe
    2008-12-18 04:06:13 ----A---- C:\Windows\system32\rasgcw.dll
    2008-12-18 04:06:13 ----A---- C:\Windows\system32\pnpsetup.dll
    2008-12-18 04:06:13 ----A---- C:\Windows\system32\ntmarta.dll
    2008-12-18 04:06:13 ----A---- C:\Windows\system32\mmcbase.dll
    2008-12-18 04:06:13 ----A---- C:\Windows\system32\icfupgd.dll
    2008-12-18 04:06:12 ----A---- C:\Windows\system32\rasqec.dll
    2008-12-18 04:06:12 ----A---- C:\Windows\system32\nslookup.exe
    2008-12-18 04:06:12 ----A---- C:\Windows\system32\ncobjapi.dll
    2008-12-18 04:06:12 ----A---- C:\Windows\system32\msrd3x40.dll
    2008-12-18 04:06:12 ----A---- C:\Windows\system32\msaatext.dll
    2008-12-18 04:06:12 ----A---- C:\Windows\system32\mpr.dll
    2008-12-18 04:06:12 ----A---- C:\Windows\system32\mlang.dll
    2008-12-18 04:06:12 ----A---- C:\Windows\system32\diskraid.exe
    2008-12-18 04:06:11 ----A---- C:\Windows\system32\wtsapi32.dll
    2008-12-18 04:06:11 ----A---- C:\Windows\system32\wpd_ci.dll
    2008-12-18 04:06:11 ----A---- C:\Windows\system32\unlodctr.exe
    2008-12-18 04:06:11 ----A---- C:\Windows\system32\syssetup.dll
    2008-12-18 04:06:11 ----A---- C:\Windows\system32\slmgr.vbs
    2008-12-18 04:06:11 ----A---- C:\Windows\system32\mscms.dll
    2008-12-18 04:06:11 ----A---- C:\Windows\system32\lodctr.exe
    2008-12-18 04:06:11 ----A---- C:\Windows\system32\accessibilitycpl.dll
    2008-12-18 04:06:10 ----A---- C:\Windows\system32\ulib.dll
    2008-12-18 04:06:10 ----A---- C:\Windows\system32\sethc.exe
    2008-12-18 04:06:10 ----A---- C:\Windows\system32\pnpui.dll
    2008-12-18 04:06:10 ----A---- C:\Windows\system32\oobefldr.dll
    2008-12-18 04:06:10 ----A---- C:\Windows\system32\iaspolcy.dll
    2008-12-18 04:06:10 ----A---- C:\Windows\system32\fontsub.dll
    2008-12-18 04:06:10 ----A---- C:\Windows\system32\dxdiagn.dll
    2008-12-18 04:06:10 ----A---- C:\Windows\system32\cabinet.dll
    2008-12-18 04:06:09 ----A---- C:\Windows\system32\Utilman.exe
    2008-12-18 04:06:09 ----A---- C:\Windows\system32\trkwks.dll
    2008-12-18 04:06:09 ----A---- C:\Windows\system32\scesrv.dll
    2008-12-18 04:06:09 ----A---- C:\Windows\system32\Mcx2Svc.dll
    2008-12-18 04:06:08 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
    2008-12-18 04:06:08 ----A---- C:\Windows\system32\lnkstub.exe
    2008-12-18 04:06:07 ----A---- C:\Windows\system32\unattend.dll
    2008-12-18 04:06:07 ----A---- C:\Windows\system32\ogldrv.dll
    2008-12-18 04:06:07 ----A---- C:\Windows\system32\cabview.dll
    2008-12-18 04:06:06 ----A---- C:\Windows\system32\wpcao.dll
    2008-12-18 04:06:06 ----A---- C:\Windows\system32\wermgr.exe
    2008-12-18 04:06:06 ----A---- C:\Windows\system32\dfdts.dll
    2008-12-18 04:06:06 ----A---- C:\Windows\system32\bthci.dll
    2008-12-18 04:06:05 ----A---- C:\Windows\system32\sdspres.dll
    2008-12-18 04:06:05 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
    2008-12-18 04:06:05 ----A---- C:\Windows\system32\p2pcollab.dll
    2008-12-18 04:06:05 ----A---- C:\Windows\system32\msnetobj.dll
    2008-12-18 04:06:05 ----A---- C:\Windows\system32\eappgnui.dll
    2008-12-18 04:06:05 ----A---- C:\Windows\system32\basesrv.dll
    2008-12-18 04:06:04 ----A---- C:\Windows\system32\drvinst.exe
    2008-12-18 04:06:04 ----A---- C:\Windows\system32\dispdiag.exe
    2008-12-18 04:06:04 ----A---- C:\Windows\system32\DHCPQEC.DLL
    2008-12-18 04:06:02 ----A---- C:\Windows\system32\mmcss.dll
    2008-12-18 04:06:02 ----A---- C:\Windows\system32\dsquery.dll
    2008-12-18 04:06:01 ----A---- C:\Windows\system32\verifier.dll
    2008-12-18 04:06:01 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
    2008-12-18 04:06:01 ----A---- C:\Windows\system32\secproc_ssp.dll
    2008-12-18 04:06:01 ----A---- C:\Windows\system32\RstrtMgr.dll
    2008-12-18 04:06:01 ----A---- C:\Windows\system32\mprapi.dll
    2008-12-18 04:06:01 ----A---- C:\Windows\system32\efsadu.dll
    2008-12-18 04:06:00 ----A---- C:\Windows\system32\qedit.dll
    2008-12-18 04:05:59 ----A---- C:\Windows\system32\WPDSp.dll
    2008-12-18 04:05:59 ----A---- C:\Windows\system32\WPDShServiceObj.dll
    2008-12-18 04:05:59 ----A---- C:\Windows\system32\WMVENCOD.DLL
    2008-12-18 04:05:59 ----A---- C:\Windows\system32\wercplsupport.dll
    2008-12-18 04:05:59 ----A---- C:\Windows\system32\setupugc.exe
    2008-12-18 04:05:59 ----A---- C:\Windows\system32\msoeacct.dll
    2008-12-18 04:05:59 ----A---- C:\Windows\system32\d3d10core.dll
    2008-12-18 04:05:56 ----A---- C:\Windows\system32\icacls.exe
    2008-12-18 04:05:55 ----A---- C:\Windows\system32\wiascanprofiles.dll
    2008-12-18 04:05:55 ----A---- C:\Windows\system32\QSVRMGMT.DLL
    2008-12-18 04:05:55 ----A---- C:\Windows\system32\pnrpnsp.dll
    2008-12-18 04:05:55 ----A---- C:\Windows\system32\p2pnetsh.dll
    2008-12-18 04:05:55 ----A---- C:\Windows\system32\networkmap.dll
    2008-12-18 04:05:55 ----A---- C:\Windows\system32\iscsiexe.dll
    2008-12-18 04:05:55 ----A---- C:\Windows\system32\consent.exe
    2008-12-18 04:05:54 ----A---- C:\Windows\system32\xactsrv.dll
    2008-12-18 04:05:54 ----A---- C:\Windows\system32\wiaaut.dll
    2008-12-18 04:05:54 ----A---- C:\Windows\system32\usercpl.dll
    2008-12-18 04:05:54 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
    2008-12-18 04:05:54 ----A---- C:\Windows\system32\PNPXAssoc.dll
    2008-12-18 04:05:54 ----A---- C:\Windows\system32\msrdc.dll
    2008-12-18 04:05:54 ----A---- C:\Windows\system32\msdmo.dll
    2008-12-18 04:05:54 ----A---- C:\Windows\system32\lsass.exe
    2008-12-18 04:05:54 ----A---- C:\Windows\system32\conime.exe
    2008-12-18 04:05:54 ----A---- C:\Windows\system32\autoplay.dll
    2008-12-18 04:05:53 ----A---- C:\Windows\system32\systeminfo.exe
    2008-12-18 04:05:53 ----A---- C:\Windows\system32\pcadm.dll
    2008-12-18 04:05:53 ----A---- C:\Windows\system32\lpk.dll
    2008-12-18 04:05:53 ----A---- C:\Windows\system32\findstr.exe
    2008-12-18 04:05:53 ----A---- C:\Windows\system32\eappprxy.dll
    2008-12-18 04:05:53 ----A---- C:\Windows\system32\drmmgrtn.dll
    2008-12-18 04:05:53 ----A---- C:\Windows\system32\dpapimig.exe
    2008-12-18 04:05:52 ----A---- C:\Windows\system32\xwizards.dll
    2008-12-18 04:05:52 ----A---- C:\Windows\system32\resutils.dll
    2008-12-18 04:05:52 ----A---- C:\Windows\system32\netcfg.exe
    2008-12-18 04:05:52 ----A---- C:\Windows\system32\mfplat.dll
    2008-12-18 04:05:52 ----A---- C:\Windows\system32\DWWIN.EXE
    2008-12-18 04:05:52 ----A---- C:\Windows\system32\cmdl32.exe
    2008-12-18 04:05:51 ----A---- C:\Windows\system32\dssec.dll
    2008-12-18 04:05:51 ----A---- C:\Windows\system32\dot3ui.dll
    2008-12-18 04:05:51 ----A---- C:\Windows\system32\dfrgifc.exe
    2008-12-18 04:05:51 ----A---- C:\Windows\system32\alg.exe
    2008-12-18 04:05:50 ----A---- C:\Windows\system32\powercpl.dll
    2008-12-18 04:05:50 ----A---- C:\Windows\system32\odbc32.dll
    2008-12-18 04:05:50 ----A---- C:\Windows\system32\nshhttp.dll
    2008-12-18 04:05:50 ----A---- C:\Windows\system32\netprof.dll
    2008-12-18 04:05:50 ----A---- C:\Windows\system32\MFWMAAEC.DLL
    2008-12-18 04:05:50 ----A---- C:\Windows\system32\imm32.dll
    2008-12-18 04:05:50 ----A---- C:\Windows\system32\dbnetlib.dll
    2008-12-18 04:05:50 ----A---- C:\Windows\system32\btpanui.dll
    2008-12-18 04:05:50 ----A---- C:\Windows\regedit.exe
    2008-12-18 04:05:49 ----A---- C:\Windows\system32\txflog.dll
    2008-12-18 04:05:49 ----A---- C:\Windows\system32\tbssvc.dll
    2008-12-18 04:05:49 ----A---- C:\Windows\system32\taskkill.exe
    2008-12-18 04:05:49 ----A---- C:\Windows\system32\feclient.dll
    2008-12-18 04:05:49 ----A---- C:\Windows\system32\dxva2.dll
    2008-12-18 04:05:49 ----A---- C:\Windows\system32\dwmapi.dll
    2008-12-18 04:05:49 ----A---- C:\Windows\system32\bcdprov.dll
    2008-12-18 04:05:49 ----A---- C:\Windows\system32\apircl.dll
    2008-12-18 04:05:48 ----A---- C:\Windows\system32\RASMM.dll
    2008-12-18 04:05:48 ----A---- C:\Windows\system32\msieftp.dll
    2008-12-18 04:05:48 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
    2008-12-18 04:05:48 ----A---- C:\Windows\system32\d3d10.dll
    2008-12-18 04:05:48 ----A---- C:\Windows\system32\ActionQueue.dll
    2008-12-18 04:05:47 ----A---- C:\Windows\system32\svchost.exe
    2008-12-18 04:05:47 ----A---- C:\Windows\system32\shwebsvc.dll
    2008-12-18 04:05:47 ----A---- C:\Windows\system32\provthrd.dll
    2008-12-18 04:05:47 ----A---- C:\Windows\system32\EAPQEC.DLL
    2008-12-18 04:05:47 ----A---- C:\Windows\system32\dmocx.dll
    2008-12-18 04:05:46 ----A---- C:\Windows\system32\syncui.dll
    2008-12-18 04:05:46 ----A---- C:\Windows\system32\slwmi.dll
    2008-12-18 04:05:46 ----A---- C:\Windows\system32\SLCExt.dll
    2008-12-18 04:05:46 ----A---- C:\Windows\system32\slcc.dll
    2008-12-18 04:05:45 ----A---- C:\Windows\system32\WMASF.DLL
    2008-12-18 04:05:45 ----A---- C:\Windows\system32\raserver.exe
    2008-12-18 04:05:45 ----A---- C:\Windows\system32\PnPUnattend.exe
    2008-12-18 04:05:45 ----A---- C:\Windows\system32\olepro32.dll
    2008-12-18 04:05:45 ----A---- C:\Windows\system32\networkexplorer.dll
    2008-12-18 04:05:45 ----A---- C:\Windows\system32\dnscacheugc.exe
    2008-12-18 04:05:45 ----A---- C:\Windows\system32\aclui.dll
    2008-12-18 04:05:44 ----A---- C:\Windows\system32\xcopy.exe
    2008-12-18 04:05:44 ----A---- C:\Windows\system32\uxsms.dll
    2008-12-18 04:05:44 ----A---- C:\Windows\system32\upnp.dll
    2008-12-18 04:05:44 ----A---- C:\Windows\system32\UIHub.dll
    2008-12-18 04:05:44 ----A---- C:\Windows\system32\taskmgr.exe
    2008-12-18 04:05:44 ----A---- C:\Windows\system32\reg.exe
    2008-12-18 04:05:44 ----A---- C:\Windows\system32\QCLIPROV.DLL
    2008-12-18 04:05:44 ----A---- C:\Windows\system32\ias.dll
    2008-12-18 04:05:44 ----A---- C:\Windows\system32\brcplsdw.dll
    2008-12-18 04:05:44 ----A---- C:\Windows\system32\audiodev.dll
    2008-12-18 04:05:43 ----A---- C:\Windows\system32\NapiNSP.dll
    2008-12-18 04:05:43 ----A---- C:\Windows\system32\msoert2.dll
    2008-12-18 04:05:43 ----A---- C:\Windows\system32\mountvol.exe
    2008-12-18 04:05:43 ----A---- C:\Windows\system32\mmcshext.dll
    2008-12-18 04:05:43 ----A---- C:\Windows\system32\icsfiltr.dll
    2008-12-18 04:05:43 ----A---- C:\Windows\system32\cmstp.exe
    2008-12-18 04:05:43 ----A---- C:\Windows\system32\atl.dll
    2008-12-18 04:05:43 ----A---- C:\Windows\system32\appinfo.dll
    2008-12-18 04:05:42 ----A---- C:\Windows\system32\wlanext.exe
    2008-12-18 04:05:42 ----A---- C:\Windows\system32\perfts.dll
    2008-12-18 04:05:42 ----A---- C:\Windows\system32\msjetoledb40.dll
    2008-12-18 04:05:42 ----A---- C:\Windows\system32\dskquoui.dll
    2008-12-18 04:05:42 ----A---- C:\Windows\system32\certprop.dll
    2008-12-18 04:05:42 ----A---- C:\Windows\system32\browser.dll
    2008-12-18 04:05:42 ----A---- C:\Windows\system32\AuxiliaryDisplayApi.dll
    2008-12-18 04:05:41 ----A---- C:\Windows\system32\wmpdxm.dll
    2008-12-18 04:05:41 ----A---- C:\Windows\system32\PING.EXE
    2008-12-18 04:05:41 ----A---- C:\Windows\system32\netplwiz.dll
    2008-12-18 04:05:41 ----A---- C:\Windows\system32\inetmib1.dll
    2008-12-18 04:05:40 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
    2008-12-18 04:05:40 ----A---- C:\Windows\system32\WMVXENCD.DLL
    2008-12-18 04:05:40 ----A---- C:\Windows\system32\httpapi.dll
    2008-12-18 04:05:40 ----A---- C:\Windows\system32\cewmdm.dll
    2008-12-18 04:05:40 ----A---- C:\Windows\system32\bitsadmin.exe
    2008-12-18 04:05:39 ----A---- C:\Windows\system32\SysFxUI.dll
    2008-12-18 04:05:39 ----A---- C:\Windows\system32\SoundRecorder.exe
    2008-12-18 04:05:39 ----A---- C:\Windows\system32\rekeywiz.exe
    2008-12-18 04:05:39 ----A---- C:\Windows\system32\qcap.dll
    2008-12-18 04:05:39 ----A---- C:\Windows\system32\qasf.dll
    2008-12-18 04:05:39 ----A---- C:\Windows\system32\dsuiext.dll
    2008-12-18 04:05:39 ----A---- C:\Windows\system32\dmusic.dll
    2008-12-18 04:05:38 ----A---- C:\Windows\system32\WUDFSvc.dll
    2008-12-18 04:05:38 ----A---- C:\Windows\system32\wmpsrcwp.dll
    2008-12-18 04:05:38 ----A---- C:\Windows\system32\SecEdit.exe
    2008-12-18 04:05:38 ----A---- C:\Windows\system32\mtstocom.exe
    2008-12-18 04:05:38 ----A---- C:\Windows\system32\mscandui.dll
    2008-12-18 04:05:38 ----A---- C:\Windows\system32\auditpol.exe
    2008-12-18 04:05:38 ----A---- C:\Windows\system32\adsmsext.dll
    2008-12-18 04:05:37 ----A---- C:\Windows\system32\WMVSENCD.DLL
    2008-12-18 04:05:37 ----A---- C:\Windows\system32\shimgvw.dll
    2008-12-18 04:05:37 ----A---- C:\Windows\system32\Sens.dll
    2008-12-18 04:05:37 ----A---- C:\Windows\system32\makecab.exe
    2008-12-18 04:05:37 ----A---- C:\Windows\system32\lsmproxy.dll
    2008-12-18 04:05:37 ----A---- C:\Windows\system32\dot3gpclnt.dll
    2008-12-18 04:05:37 ----A---- C:\Windows\system32\batt.dll
    2008-12-18 04:05:36 ----A---- C:\Windows\system32\xwtpw32.dll
    2008-12-18 04:05:36 ----A---- C:\Windows\system32\wzcdlg.dll
    2008-12-18 04:05:36 ----A---- C:\Windows\system32\wiashext.dll
    2008-12-18 04:05:36 ----A---- C:\Windows\system32\sppnp.dll
    2008-12-18 04:05:36 ----A---- C:\Windows\system32\seclogon.dll
    2008-12-18 04:05:36 ----A---- C:\Windows\system32\sbeio.dll
    2008-12-18 04:05:36 ----A---- C:\Windows\system32\ndfapi.dll
    2008-12-18 04:05:36 ----A---- C:\Windows\system32\msdadiag.dll
    2008-12-18 04:05:36 ----A---- C:\Windows\system32\apss.dll
    2008-12-18 04:05:35 ----A---- C:\Windows\system32\wscmisetup.dll
    2008-12-18 04:05:35 ----A---- C:\Windows\system32\WMSPDMOE.DLL
    2008-12-18 04:05:35 ----A---- C:\Windows\system32\wiadefui.dll
    2008-12-18 04:05:35 ----A---- C:\Windows\system32\userinit.exe
    2008-12-18 04:05:35 ----A---- C:\Windows\system32\shacct.dll
    2008-12-18 04:05:35 ----A---- C:\Windows\system32\perfmon.exe
    2008-12-18 04:05:35 ----A---- C:\Windows\system32\p2phost.exe
    2008-12-18 04:05:35 ----A---- C:\Windows\system32\napipsec.dll
    2008-12-18 04:05:35 ----A---- C:\Windows\system32\msorcl32.dll
    2008-12-18 04:05:34 ----A---- C:\Windows\system32\wpdwcn.dll
    2008-12-18 04:05:34 ----A---- C:\Windows\system32\winrshost.exe
    2008-12-18 04:05:34 ----A---- C:\Windows\system32\sxstrace.exe
    2008-12-18 04:05:34 ----A---- C:\Windows\system32\ktmutil.exe
    2008-12-18 04:05:34 ----A---- C:\Windows\system32\keymgr.dll
    2008-12-18 04:05:34 ----A---- C:\Windows\system32\HelpPaneProxy.dll
    2008-12-18 04:05:34 ----A---- C:\Windows\system32\csrsrv.dll
    2008-12-18 04:05:33 ----A---- C:\Windows\system32\tasklist.exe
    2008-12-18 04:05:33 ----A---- C:\Windows\system32\TapiMigPlugin.dll
    2008-12-18 04:05:33 ----A---- C:\Windows\system32\prntvpt.dll
    2008-12-18 04:05:33 ----A---- C:\Windows\system32\notepad.exe
    2008-12-18 04:05:33 ----A---- C:\Windows\system32\ftp.exe
    2008-12-18 04:05:33 ----A---- C:\Windows\notepad.exe
    2008-12-18 04:05:32 ----A---- C:\Windows\system32\MP4SDECD.DLL
    2008-12-18 04:05:32 ----A---- C:\Windows\system32\fmifs.dll
    2008-12-18 04:05:32 ----A---- C:\Windows\system32\d3dim700.dll
    2008-12-18 04:05:32 ----A---- C:\Windows\system32\colorui.dll
    2008-12-18 04:05:31 ----A---- C:\Windows\system32\UIAutomationCore.dll
    2008-12-18 04:05:31 ----A---- C:\Windows\system32\netiougc.exe
    2008-12-18 04:05:31 ----A---- C:\Windows\system32\msiexec.exe
    2008-12-18 04:05:30 ----A---- C:\Windows\system32\wscproxystub.dll
    2008-12-18 04:05:30 ----A---- C:\Windows\system32\winethc.dll
    2008-12-18 04:05:30 ----A---- C:\Windows\system32\takeown.exe
    2008-12-18 04:05:30 ----A---- C:\Windows\system32\PnPutil.exe
    2008-12-18 04:05:30 ----A---- C:\Windows\system32\pcasvc.dll
    2008-12-18 04:05:30 ----A---- C:\Windows\system32\nshipsec.dll
    2008-12-18 04:05:30 ----A---- C:\Windows\system32\msimtf.dll
    2008-12-18 04:05:30 ----A---- C:\Windows\system32\driverquery.exe
    2008-12-18 04:05:30 ----A---- C:\Windows\system32\cryptdll.dll
    2008-12-18 04:05:29 ----A---- C:\Windows\system32\wmiprop.dll
    2008-12-18 04:05:29 ----A---- C:\Windows\system32\txfw32.dll
    2008-12-18 04:05:29 ----A---- C:\Windows\system32\pots.dll
    2008-12-18 04:05:29 ----A---- C:\Windows\system32\findnetprinters.dll
    2008-12-18 04:05:28 ----A---- C:\Windows\system32\wpdbusenum.dll
    2008-12-18 04:05:28 ----A---- C:\Windows\system32\rasplap.dll
    2008-12-18 04:05:28 ----A---- C:\Windows\system32\powrprof.dll
    2008-12-18 04:05:28 ----A---- C:\Windows\system32\capisp.dll
    2008-12-18 04:05:27 ----A---- C:\Windows\system32\shrpubw.exe
    2008-12-18 04:05:27 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
    2008-12-18 04:05:27 ----A---- C:\Windows\system32\fsutil.exe
    2008-12-18 04:05:27 ----A---- C:\Windows\system32\dnshc.dll
    2008-12-18 04:05:26 ----A---- C:\Windows\system32\sendmail.dll
    2008-12-18 04:05:26 ----A---- C:\Windows\system32\perfnet.dll
    2008-12-18 04:05:26 ----A---- C:\Windows\system32\olecli32.dll
    2008-12-18 04:05:26 ----A---- C:\Windows\system32\nsisvc.dll
    2008-12-18 04:05:26 ----A---- C:\Windows\system32\luainstall.dll
    2008-12-18 04:05:25 ----A---- C:\Windows\system32\sfc_os.dll
    2008-12-18 04:05:25 ----A---- C:\Windows\system32\imapi.dll
    2008-12-18 04:05:25 ----A---- C:\Windows\system32\fdPHost.dll
    2008-12-18 04:05:24 ----A---- C:\Windows\system32\WLanHC.dll
    2008-12-18 04:05:24 ----A---- C:\Windows\system32\TMM.dll
    2008-12-18 04:05:24 ----A---- C:\Windows\system32\shgina.dll
    2008-12-18 04:05:24 ----A---- C:\Windows\system32\runonce.exe
    2008-12-18 04:05:24 ----A---- C:\Windows\system32\rshx32.dll
    2008-12-18 04:05:24 ----A---- C:\Windows\system32\RpcPing.exe
    2008-12-18 04:05:24 ----A---- C:\Windows\system32\ktmw32.dll
    2008-12-18 04:05:24 ----A---- C:\Windows\system32\d3dim.dll
    2008-12-18 04:05:24 ----A---- C:\Windows\system32\compstui.dll
    2008-12-18 04:05:24 ----A---- C:\Windows\system32\cmmon32.exe
    2008-12-18 04:05:23 ----A---- C:\Windows\system32\WMADMOE.DLL
    2008-12-18 04:05:23 ----A---- C:\Windows\system32\wiaacmgr.exe
    2008-12-18 04:05:23 ----A---- C:\Windows\system32\version.dll
    2008-12-18 04:05:23 ----A---- C:\Windows\system32\unregmp2.exe
    2008-12-18 04:05:23 ----A---- C:\Windows\system32\UI0Detect.exe
    2008-12-18 04:05:23 ----A---- C:\Windows\system32\mdminst.dll
    2008-12-18 04:05:23 ----A---- C:\Windows\system32\getmac.exe
    2008-12-18 04:05:23 ----A---- C:\Windows\system32\dimsjob.dll
    2008-12-18 04:05:23 ----A---- C:\Windows\system32\cmlua.dll
    2008-12-18 04:05:22 ----A---- C:\Windows\system32\w32tm.exe
    2008-12-18 04:05:22 ----A---- C:\Windows\system32\net.exe
    2008-12-18 04:05:22 ----A---- C:\Windows\system32\msvfw32.dll
    2008-12-18 04:05:22 ----A---- C:\Windows\system32\MPG4DECD.DLL
    2008-12-18 04:05:22 ----A---- C:\Windows\system32\MP43DECD.DLL
    2008-12-18 04:05:22 ----A---- C:\Windows\system32\dsauth.dll
    2008-12-18 04:05:21 ----A---- C:\Windows\system32\wmpshell.dll
    2008-12-18 04:05:21 ----A---- C:\Windows\system32\tscupgrd.exe
    2008-12-18 04:05:21 ----A---- C:\Windows\system32\sdchange.exe
    2008-12-18 04:05:21 ----A---- C:\Windows\system32\ipconfig.exe
    2008-12-18 04:05:21 ----A---- C:\Windows\system32\credui.dll
    2008-12-18 04:05:21 ----A---- C:\Windows\system32\ACW.exe
    2008-12-18 04:05:20 ----A---- C:\Windows\system32\PortableDeviceWiaCompat.dll
    2008-12-18 04:05:20 ----A---- C:\Windows\system32\pnpts.dll
    2008-12-18 04:05:20 ----A---- C:\Windows\system32\migisol.dll
    2008-12-18 04:05:20 ----A---- C:\Windows\system32\fdeploy.dll
    2008-12-18 04:05:20 ----A---- C:\Windows\system32\dispci.dll
    2008-12-18 04:05:20 ----A---- C:\Windows\system32\diantz.exe
    2008-12-18 04:05:20 ----A---- C:\Windows\system32\comrepl.dll
    2008-12-18 04:05:20 ----A---- C:\Windows\system32\cmutil.dll
    2008-12-18 04:05:19 ----A---- C:\Windows\system32\TSTheme.exe
    2008-12-18 04:05:19 ----A---- C:\Windows\system32\sfc.exe
    2008-12-18 04:05:19 ----A---- C:\Windows\system32\dinput8.dll
    2008-12-18 04:05:18 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
    2008-12-18 04:05:18 ----A---- C:\Windows\system32\wmidx.dll
    2008-12-18 04:05:18 ----A---- C:\Windows\system32\vdmredir.dll
    2008-12-18 04:05:18 ----A---- C:\Windows\system32\softkbd.dll
    2008-12-18 04:05:18 ----A---- C:\Windows\system32\remotepg.dll
    2008-12-18 04:05:18 ----A---- C:\Windows\system32\pdhui.dll
    2008-12-18 04:05:18 ----A---- C:\Windows\system32\nlaapi.dll
    2008-12-18 04:05:18 ----A---- C:\Windows\system32\fwcfg.dll
    2008-12-18 04:05:18 ----A---- C:\Windows\system32\ExplorerFrame.dll
    2008-12-18 04:05:18 ----A---- C:\Windows\system32\expand.exe
    2008-12-18 04:05:18 ----A---- C:\Windows\system32\EncDump.dll
    2008-12-18 04:05:18 ----A---- C:\Windows\system32\colbact.dll
    2008-12-18 04:05:18 ----A---- C:\Windows\system32\cfgbkend.dll
    2008-12-18 04:05:17 ----A---- C:\Windows\system32\wmvdspa.dll
    2008-12-18 04:05:17 ----A---- C:\Windows\system32\utildll.dll
    2008-12-18 04:05:17 ----A---- C:\Windows\system32\TpmInit.exe
    2008-12-18 04:05:17 ----A---- C:\Windows\system32\modemui.dll
    2008-12-18 04:05:17 ----A---- C:\Windows\system32\McxDriv.dll
    2008-12-18 04:05:17 ----A---- C:\Windows\system32\hlink.dll
    2008-12-18 04:05:17 ----A---- C:\Windows\system32\bridgeunattend.exe
    2008-12-18 04:05:17 ----A---- C:\Windows\system32\amstream.dll
    2008-12-18 04:05:16 ----A---- C:\Windows\system32\wsnmp32.dll
    2008-12-18 04:05:16 ----A---- C:\Windows\system32\vds_ps.dll
    2008-12-18 04:05:16 ----A---- C:\Windows\system32\sti_ci.dll
    2008-12-18 04:05:16 ----A---- C:\Windows\system32\rdrleakdiag.exe
    2008-12-18 04:05:16 ----A---- C:\Windows\system32\esentutl.exe
    2008-12-18 04:05:16 ----A---- C:\Windows\system32\bootcfg.exe
    2008-12-18 04:05:15 ----A---- C:\Windows\system32\waitfor.exe
    2008-12-18 04:05:15 ----A---- C:\Windows\system32\cmcfg32.dll
    2008-12-18 04:05:14 ----A---- C:\Windows\system32\tabcal.exe
    2008-12-18 04:05:14 ----A---- C:\Windows\system32\qdv.dll
    2008-12-18 04:05:14 ----A---- C:\Windows\system32\logman.exe
    2008-12-18 04:05:14 ----A---- C:\Windows\system32\iscsium.dll
    2008-12-18 04:05:13 ----A---- C:\Windows\system32\osblprov.dll
    2008-12-18 04:05:13 ----A---- C:\Windows\system32\odbccp32.dll
    2008-12-18 04:05:13 ----A---- C:\Windows\system32\dpnet.dll
    2008-12-18 04:05:12 ----A---- C:\Windows\system32\WsmCl.dll
    2008-12-18 04:05:12 ----A---- C:\Windows\system32\wfapigp.dll
    2008-12-18 04:05:12 ----A---- C:\Windows\system32\shutdown.exe
    2008-12-18 04:05:12 ----A---- C:\Windows\system32\cacls.exe
    2008-12-18 04:05:10 ----A---- C:\Windows\system32\wmpcm.dll
    2008-12-18 04:05:10 ----A---- C:\Windows\system32\olesvr32.dll
    2008-12-18 04:05:10 ----A---- C:\Windows\system32\msdtc.exe
    2008-12-18 04:05:10 ----A---- C:\Windows\system32\DpiScaling.exe
    2008-12-18 04:05:10 ----A---- C:\Windows\system32\dmsynth.dll
    2008-12-18 04:05:10 ----A---- C:\Windows\system32\COLORCNV.DLL
    2008-12-18 04:05:09 ----A---- C:\Windows\system32\wpnpinst.exe
    2008-12-18 04:05:09 ----A---- C:\Windows\system32\werdiagcontroller.dll
    2008-12-18 04:05:09 ----A---- C:\Windows\system32\rasauto.dll
    2008-12-18 04:05:09 ----A---- C:\Windows\system32\olethk32.dll
    2008-12-18 04:05:09 ----A---- C:\Windows\system32\mstext40.dll
    2008-12-18 04:05:09 ----A---- C:\Windows\system32\mfvdsp.dll
    2008-12-18 04:05:09 ----A---- C:\Windows\system32\iscsiwmi.dll
    2008-12-18 04:05:08 ----A---- C:\Windows\system32\wavemsp.dll
    2008-12-18 04:05:08 ----A---- C:\Windows\system32\ufat.dll
    2008-12-18 04:05:08 ----A---- C:\Windows\system32\sxproxy.dll
    2008-12-18 04:05:08 ----A---- C:\Windows\system32\SLLUA.exe
    2008-12-18 04:05:08 ----A---- C:\Windows\system32\odbctrac.dll
    2008-12-18 04:05:08 ----A---- C:\Windows\system32\networkitemfactory.dll
    2008-12-18 04:05:08 ----A---- C:\Windows\system32\msctfui.dll
    2008-12-18 04:05:08 ----A---- C:\Windows\system32\at.exe
    2008-12-18 04:05:07 ----A---- C:\Windows\system32\xmlprovi.dll
    2008-12-18 04:05:07 ----A---- C:\Windows\system32\ucsvc.exe
    2008-12-18 04:05:07 ----A---- C:\Windows\system32\rgb9rast.dll
    2008-12-18 04:05:07 ----A---- C:\Windows\system32\RegCtrl.dll
    2008-12-18 04:05:07 ----A---- C:\Windows\system32\mobsync.exe
    2008-12-18 04:05:07 ----A---- C:\Windows\system32\itss.dll
    2008-12-18 04:05:07 ----A---- C:\Windows\system32\csrstub.exe
    2008-12-18 04:05:07 ----A---- C:\Windows\system32\convert.exe
    2008-12-18 04:05:07 ----A---- C:\Windows\system32\bitsigd.dll
    2008-12-18 04:05:06 ----A---- C:\Windows\system32\TimeDateMUICallback.dll
    2008-12-18 04:05:06 ----A---- C:\Windows\system32\prevhost.exe
    2008-12-18 04:05:06 ----A---- C:\Windows\system32\netbtugc.exe
    2008-12-18 04:05:06 ----A---- C:\Windows\system32\iscsied.dll
    2008-12-18 04:05:06 ----A---- C:\Windows\system32\dskquota.dll
    2008-12-18 04:05:06 ----A---- C:\Windows\system32\AuthFWGP.dll
    2008-12-18 04:05:05 ----A---- C:\Windows\system32\unattendedjoin.exe
    2008-12-18 04:05:05 ----A---- C:\Windows\system32\tbs.dll
    2008-12-18 04:05:05 ----A---- C:\Windows\system32\setupcln.dll
    2008-12-18 04:05:05 ----A---- C:\Windows\system32\rasdiag.dll
    2008-12-18 04:05:05 ----A---- C:\Windows\system32\ocsetup.exe
    2008-12-18 04:05:05 ----A---- C:\Windows\system32\GuidedHelp.dll
    2008-12-18 04:05:05 ----A---- C:\Windows\system32\cscdll.dll
    2008-12-18 04:05:05 ----A---- C:\Windows\system32\AtBroker.exe
    2008-12-18 04:05:04 ----A---- C:\Windows\system32\winnsi.dll
    2008-12-18 04:05:04 ----A---- C:\Windows\system32\mydocs.dll
    2008-12-18 04:05:04 ----A---- C:\Windows\system32\l2gpstore.dll
    2008-12-18 04:05:04 ----A---- C:\Windows\system32\fphc.dll
    2008-12-18 04:05:04 ----A---- C:\Windows\system32\dmime.dll
    2008-12-18 04:05:04 ----A---- C:\Windows\system32\cmpbk32.dll
    2008-12-18 04:05:03 ----A---- C:\Windows\system32\usbui.dll
    2008-12-18 04:05:03 ----A---- C:\Windows\system32\regini.exe
    2008-12-18 04:05:03 ----A---- C:\Windows\system32\odbccu32.dll
    2008-12-18 04:05:03 ----A---- C:\Windows\system32\odbccr32.dll
    2008-12-18 04:05:03 ----A---- C:\Windows\system32\napdsnap.dll
    2008-12-18 04:05:03 ----A---- C:\Windows\system32\msident.dll
    2008-12-18 04:05:03 ----A---- C:\Windows\system32\msdart.dll
    2008-12-18 04:05:03 ----A---- C:\Windows\system32\dsdmo.dll
    2008-12-18 04:05:03 ----A---- C:\Windows\system32\dot3dlg.dll
    2008-12-18 04:05:03 ----A---- C:\Windows\system32\devenum.dll
    2008-12-18 04:05:03 ----A---- C:\Windows\system32\cmstplua.dll
    2008-12-18 04:05:03 ----A---- C:\Windows\system32\apilogen.dll
    2008-12-18 04:05:03 ----A---- C:\Windows\system32\amxread.dll
    2008-12-18 04:05:02 ----A---- C:\Windows\system32\wpclsp.dll
    2008-12-18 04:05:02 ----A---- C:\Windows\system32\WINSRPC.DLL
    2008-12-18 04:05:02 ----A---- C:\Windows\system32\VIDRESZR.DLL
    2008-12-18 04:05:02 ----A---- C:\Windows\system32\upnpcont.exe
    2008-12-18 04:05:02 ----A---- C:\Windows\system32\RacAgent.exe
    2008-12-18 04:05:02 ----A---- C:\Windows\system32\mtxlegih.dll
    2008-12-18 04:05:02 ----A---- C:\Windows\system32\mtxdm.dll
    2008-12-18 04:05:02 ----A---- C:\Windows\system32\MsCtfMonitor.dll
    2008-12-18 04:05:02 ----A---- C:\Windows\system32\gpupdate.exe
    2008-12-18 04:05:02 ----A---- C:\Windows\system32\avrt.dll
    2008-12-18 04:05:01 ----A---- C:\Windows\system32\vss_ps.dll
    2008-12-18 04:05:01 ----A---- C:\Windows\system32\srwmi.dll
    2008-12-18 04:05:01 ----A---- C:\Windows\system32\nsi.dll
    2008-12-18 04:05:01 ----A---- C:\Windows\system32\nbtstat.exe
    2008-12-18 04:05:01 ----A---- C:\Windows\system32\mfcsubs.dll
    2008-12-18 04:05:01 ----A---- C:\Windows\system32\graftabl.com
    2008-12-18 04:05:00 ----A---- C:\Windows\system32\wsock32.dll
    2008-12-18 04:05:00 ----A---- C:\Windows\system32\wiarpc.dll
    2008-12-18 04:05:00 ----A---- C:\Windows\system32\WavDest.dll
    2008-12-18 04:05:00 ----A---- C:\Windows\system32\vfwwdm32.dll
    2008-12-18 04:05:00 ----A---- C:\Windows\system32\syskey.exe
    2008-12-18 04:05:00 ----A---- C:\Windows\system32\ROUTE.EXE
    2008-12-18 04:05:00 ----A---- C:\Windows\system32\rasphone.exe
    2008-12-18 04:05:00 ----A---- C:\Windows\system32\odbcbcp.dll
    2008-12-18 04:05:00 ----A---- C:\Windows\system32\netevent.dll
    2008-12-18 04:05:00 ----A---- C:\Windows\system32\ndfetw.dll
    2008-12-18 04:05:00 ----A---- C:\Windows\system32\msexcl40.dll
    2008-12-18 04:05:00 ----A---- C:\Windows\system32\extrac32.exe
    2008-12-18 04:04:59 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
    2008-12-18 04:04:59 ----A---- C:\Windows\system32\procinst.dll
    2008-12-18 04:04:59 ----A---- C:\Windows\system32\MP3DMOD.DLL
    2008-12-18 04:04:59 ----A---- C:\Windows\system32\eventcls.dll
    2008-12-18 04:04:59 ----A---- C:\Windows\system32\d3dxof.dll
    2008-12-18 04:04:59 ----A---- C:\Windows\system32\csrss.exe
    2008-12-18 04:04:59 ----A---- C:\Windows\system32\atmfd.dll
    2008-12-18 04:04:58 ----A---- C:\Windows\system32\WlanMmHC.dll
    2008-12-18 04:04:58 ----A---- C:\Windows\system32\wiadss.dll
    2008-12-18 04:04:58 ----A---- C:\Windows\system32\TabbtnEx.dll
    2008-12-18 04:04:58 ----A---- C:\Windows\system32\Tabbtn.dll
    2008-12-18 04:04:58 ----A---- C:\Windows\system32\psbase.dll
    2008-12-18 04:04:58 ----A---- C:\Windows\system32\inetppui.dll
    2008-12-18 04:04:58 ----A---- C:\Windows\system32\dmscript.dll
    2008-12-18 04:04:57 ----A---- C:\Windows\system32\msxbde40.dll
    2008-12-18 04:04:57 ----A---- C:\Windows\system32\dmloader.dll
    2008-12-18 04:04:57 ----A---- C:\Windows\system32\CertEnrollCtrl.exe
    2008-12-18 04:04:57 ----A---- C:\Windows\fveupdate.exe
    2008-12-18 04:04:56 ----A---- C:\Windows\system32\wshcon.dll
    2008-12-18 04:04:56 ----A---- C:\Windows\system32\Netplwiz.exe
    2008-12-18 04:04:56 ----A---- C:\Windows\system32\mspbde40.dll
    2008-12-18 04:04:56 ----A---- C:\Windows\system32\msltus40.dll
    2008-12-18 04:04:56 ----A---- C:\Windows\system32\icsunattend.exe
    2008-12-18 04:04:56 ----A---- C:\Windows\system32\credssp.dll
    2008-12-18 04:04:55 ----A---- C:\Windows\system32\WsmRes.dll
    2008-12-18 04:04:55 ----A---- C:\Windows\system32\WSHTCPIP.DLL
    2008-12-18 04:04:55 ----A---- C:\Windows\system32\wship6.dll
    2008-12-18 04:04:55 ----A---- C:\Windows\system32\sxsstore.dll
    2008-12-18 04:04:55 ----A---- C:\Windows\system32\PlaySndSrv.dll
    2008-12-18 04:04:55 ----A---- C:\Windows\system32\msvidc32.dll
    2008-12-18 04:04:55 ----A---- C:\Windows\system32\lltdapi.dll
    2008-12-18 04:04:55 ----A---- C:\Windows\system32\HotStartUserAgent.dll
    2008-12-18 04:04:54 ----A---- C:\Windows\system32\tcpmon.ini
    2008-12-18 04:04:54 ----A---- C:\Windows\system32\setupSNK.exe
    2008-12-18 04:04:54 ----A---- C:\Windows\system32\localui.dll
    2008-12-18 04:04:54 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
    2008-12-18 04:04:54 ----A---- C:\Windows\system32\icaapi.dll
    2008-12-18 04:04:54 ----A---- C:\Windows\system32\ComputerDefaults.exe
    2008-12-18 04:04:53 ----A---- C:\Windows\system32\slwga.dll
    2008-12-18 04:04:53 ----A---- C:\Windows\system32\sbunattend.exe
    2008-12-18 04:04:53 ----A---- C:\Windows\system32\OptionalFeatures.exe
    2008-12-18 04:04:53 ----A---- C:\Windows\system32\dmutil.dll
    2008-12-18 04:04:52 ----A---- C:\Windows\system32\usbperf.dll
    2008-12-18 04:04:52 ----A---- C:\Windows\system32\spopk.dll
    2008-12-18 04:04:52 ----A---- C:\Windows\system32\serialui.dll
    2008-12-18 04:04:52 ----A---- C:\Windows\system32\NcdProp.dll
    2008-12-18 04:04:50 ----A---- C:\Windows\system32\odbcconf.dll
    2008-12-18 04:04:50 ----A---- C:\Windows\system32\cofiredm.dll
    2008-12-18 04:04:49 ----A---- C:\Windows\system32\hbaapi.dll
    2008-12-18 04:04:48 ----A---- C:\Windows\system32\rasctrs.dll
    2008-12-18 04:04:48 ----A---- C:\Windows\system32\msobjs.dll
    2008-12-18 04:04:48 ----A---- C:\Windows\system32\hnetmon.dll
    2008-12-18 04:04:47 ----A---- C:\Windows\system32\vdmdbg.dll
    2008-12-18 04:04:47 ----A---- C:\Windows\system32\midimap.dll
    2008-12-18 04:04:47 ----A---- C:\Windows\system32\InfDefaultInstall.exe
    2008-12-18 04:04:47 ----A---- C:\Windows\system32\esentprf.dll
    2008-12-18 04:04:46 ----A---- C:\Windows\system32\nlsbres.dll
    2008-12-18 04:04:46 ----A---- C:\Windows\system32\LogonUI.exe
    2008-12-18 04:04:46 ----A---- C:\Windows\system32\iprtprio.dll
    2008-12-18 04:04:44 ----A---- C:\Windows\system32\osbaseln.dll
    2008-12-18 04:04:44 ----A---- C:\Windows\system32\cfgmgr32.dll
    2008-12-18 04:04:43 ----A---- C:\Windows\system32\msisip.dll
    2008-12-18 04:04:42 ----A---- C:\Windows\system32\msmmsp.dll
    2008-12-18 04:04:41 ----A---- C:\Windows\system32\winusb.dll
    2008-12-18 04:04:41 ----A---- C:\Windows\system32\dispex.dll
    2008-12-18 04:04:40 ----A---- C:\Windows\system32\rdpcfgex.dll
    2008-12-18 04:04:38 ----A---- C:\Windows\system32\Nlsdl.dll
    2008-12-18 04:04:37 ----A---- C:\Windows\system32\riched32.dll
    2008-12-18 04:04:37 ----A---- C:\Windows\system32\msidle.dll
    2008-12-18 04:04:37 ----A---- C:\Windows\system32\idndl.dll
    2008-12-18 04:04:36 ----A---- C:\Windows\system32\spwmp.dll
    2008-12-18 04:04:35 ----A---- C:\Windows\system32\KBDKOR.DLL
    2008-12-18 04:04:35 ----A---- C:\Windows\system32\KBDJPN.DLL
    2008-12-18 04:04:34 ----A---- C:\Windows\system32\iscsilog.dll
    2008-12-18 04:04:32 ----A---- C:\Windows\system32\wmploc.DLL
    2008-12-18 04:04:32 ----A---- C:\Windows\system32\vga64k.dll
    2008-12-18 04:04:32 ----A---- C:\Windows\system32\vga256.dll
    2008-12-18 04:04:32 ----A---- C:\Windows\system32\tsddd.dll
    2008-12-18 04:04:32 ----A---- C:\Windows\system32\framebuf.dll
    2008-12-18 04:04:32 ----A---- C:\Windows\system32\dxmasf.dll
    2008-12-18 04:04:31 ----A---- C:\Windows\system32\vga.dll
    2008-12-18 04:04:31 ----A---- C:\Windows\system32\dmdskres2.dll
    2008-12-18 04:04:31 ----A---- C:\Windows\system32\bootstr.dll
    2008-12-18 04:04:30 ----A---- C:\Windows\system32\spwizres.dll
    2008-12-18 04:04:30 ----A---- C:\Windows\system32\f3ahvoas.dll
    2008-12-18 04:04:24 ----A---- C:\Windows\system32\gatherWiredInfo.vbs
    2008-12-18 04:04:23 ----A---- C:\Windows\system32\gatherWirelessInfo.vbs
    2008-12-18 04:04:23 ----A---- C:\Windows\system32\fsmgmt.msc
    2008-12-18 04:04:16 ----A---- C:\Windows\system32\perfmon.msc
    2008-12-18 04:03:54 ----A---- C:\Windows\system32\vsp1cln.exe
    2008-12-18 04:03:14 ----A---- C:\Windows\system32\xmllite.dll
    2008-12-18 04:03:12 ----A---- C:\Windows\system32\wbemcomn.dll
    2008-12-18 04:02:37 ----A---- C:\Windows\system32\sqmapi.dll
    2008-12-18 04:02:36 ----A---- C:\Windows\system32\SmiInstaller.dll
    2008-12-18 04:02:36 ----A---- C:\Windows\system32\SmiEngine.dll
    2008-12-18 04:01:50 ----A---- C:\Windows\system32\wdscore.dll
    2008-12-18 04:01:50 ----A---- C:\Windows\system32\PkgMgr.exe
    2008-12-18 04:00:37 ----A---- C:\Windows\system32\drvstore.dll
    2008-12-18 04:00:35 ----A---- C:\Windows\system32\mspatcha.dll
    2008-12-18 04:00:35 ----A---- C:\Windows\system32\msdelta.dll
    2008-12-18 04:00:35 ----A---- C:\Windows\system32\dpx.dll
    2008-12-18 03:07:05 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\FastStone
    2008-12-17 21:44:17 ----A---- C:\Windows\system32\mshtml.dll
    2008-12-17 16:55:32 ----D---- C:\Program Files\CCleaner
    2008-12-17 04:29:27 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\Malwarebytes
    2008-12-17 04:29:11 ----D---- C:\ProgramData\Malwarebytes
    2008-12-17 04:29:10 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
    2008-12-16 21:26:07 ----ASH---- C:\Windows\system32\vuvvDcdd.ini2
    2008-12-16 21:26:07 ----ASH---- C:\Windows\system32\vuvvDcdd.ini
    2008-12-16 15:52:19 ----RHD---- C:\Users\Roy Tangnes\AppData\Roaming\SecuROM
    2008-12-16 15:52:17 ----A---- C:\Windows\system32\CmdLineExt.dll
    2008-12-16 15:51:54 ----D---- C:\Program Files\Hasbro
    2008-12-14 14:41:38 ----A---- C:\Windows\system32\javaws.exe
    2008-12-14 14:41:38 ----A---- C:\Windows\system32\javaw.exe
    2008-12-14 14:41:38 ----A---- C:\Windows\system32\deploytk.dll
    2008-12-14 14:41:37 ----A---- C:\Windows\system32\java.exe
    2008-12-14 14:37:01 ----D---- C:\Windows\Sun
    2008-12-14 09:10:45 ----D---- C:\Program Files\FDRLab
    2008-12-14 00:55:33 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\WinRAR
    2008-12-13 20:39:02 ----D---- C:\MINE OPPTAK
    2008-12-13 20:08:53 ----D---- C:\Windows\system32\Adobe
    2008-12-13 15:17:00 ----D---- C:\Games
    2008-12-13 13:59:08 ----A---- C:\Windows\system32\pngfilt.dll
    2008-12-13 13:59:08 ----A---- C:\Windows\system32\mshtmler.dll
    2008-12-13 13:59:08 ----A---- C:\Windows\system32\mshtmled.dll
    2008-12-13 13:59:08 ----A---- C:\Windows\system32\jsproxy.dll
    2008-12-13 13:59:08 ----A---- C:\Windows\system32\ieui.dll
    2008-12-13 13:59:08 ----A---- C:\Windows\system32\admparse.dll
    2008-12-13 13:59:07 ----A---- C:\Windows\system32\msls31.dll
    2008-12-13 13:59:07 ----A---- C:\Windows\system32\iernonce.dll
    2008-12-13 13:59:07 ----A---- C:\Windows\system32\corpol.dll
    2008-12-13 13:59:07 ----A---- C:\Windows\system32\advpack.dll
    2008-12-13 13:59:06 ----A---- C:\Windows\system32\PrivacIE.dll
    2008-12-13 13:59:06 ----A---- C:\Windows\system32\imgutil.dll
    2008-12-13 13:59:06 ----A---- C:\Windows\system32\ieapfltr.dll
    2008-12-13 13:59:05 ----A---- C:\Windows\system32\msrating.dll
    2008-12-13 13:59:05 ----A---- C:\Windows\system32\msfeedsbs.dll
    2008-12-13 13:59:05 ----A---- C:\Windows\system32\licmgr10.dll
    2008-12-13 13:59:05 ----A---- C:\Windows\system32\inseng.dll
    2008-12-13 13:59:05 ----A---- C:\Windows\system32\iesetup.dll
    2008-12-13 13:59:04 ----A---- C:\Windows\system32\mstime.dll
    2008-12-13 13:59:04 ----A---- C:\Windows\system32\msfeeds.dll
    2008-12-13 13:59:03 ----A---- C:\Windows\system32\webcheck.dll
    2008-12-13 13:59:03 ----A---- C:\Windows\system32\occache.dll
    2008-12-13 13:59:03 ----A---- C:\Windows\system32\ieakeng.dll
    2008-12-13 13:59:03 ----A---- C:\Windows\system32\dxtrans.dll
    2008-12-13 13:59:03 ----A---- C:\Windows\system32\dxtmsft.dll
    2008-12-13 13:59:02 ----A---- C:\Windows\system32\ieaksie.dll
    2008-12-13 13:59:01 ----A---- C:\Windows\system32\WinFXDocObj.exe
    2008-12-13 13:59:01 ----A---- C:\Windows\system32\wextract.exe
    2008-12-13 13:59:01 ----A---- C:\Windows\system32\msfeedssync.exe
    2008-12-13 13:59:01 ----A---- C:\Windows\system32\ieUnatt.exe
    2008-12-13 13:59:01 ----A---- C:\Windows\system32\ieakui.dll
    2008-12-13 13:59:00 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
    2008-12-13 13:59:00 ----A---- C:\Windows\system32\SetDepNx.exe
    2008-12-13 13:59:00 ----A---- C:\Windows\system32\PDMSetup.exe
    2008-12-13 13:58:59 ----A---- C:\Windows\system32\url.dll
    2008-12-13 13:58:59 ----A---- C:\Windows\system32\iedkcs32.dll
    2008-12-13 13:58:58 ----A---- C:\Windows\system32\jscript.dll
    2008-12-13 13:58:57 ----A---- C:\Windows\system32\ie4uinit.exe
    2008-12-13 13:58:56 ----A---- C:\Windows\system32\iertutil.dll
    2008-12-13 13:58:55 ----A---- C:\Windows\system32\mshta.exe
    2008-12-13 13:58:54 ----A---- C:\Windows\system32\iepeers.dll
    2008-12-13 13:58:54 ----A---- C:\Windows\system32\icardie.dll
    2008-12-13 13:58:52 ----A---- C:\Windows\system32\iexpress.exe
    2008-12-13 13:58:48 ----A---- C:\Windows\system32\wininet.dll
    2008-12-13 13:58:43 ----A---- C:\Windows\system32\urlmon.dll
    2008-12-13 13:58:38 ----A---- C:\Windows\system32\ieframe.dll
    2008-12-13 11:29:17 ----A---- C:\Windows\NeroDigital.ini
    2008-12-13 11:23:17 ----D---- C:\Program Files\DAEMON Tools Lite
    2008-12-13 11:18:55 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\DAEMON Tools
    2008-12-13 03:48:56 ----A---- C:\Windows\vtplus32.ini
    2008-12-13 03:48:55 ----D---- C:\Program Files\vtplus
    2008-12-13 03:48:44 ----D---- C:\Program Files\Common Files\IviSDK
    2008-12-13 03:48:28 ----A---- C:\Windows\system32\hcwsched.dll
    2008-12-13 03:48:28 ----A---- C:\Windows\system32\3DES.dll
    2008-12-13 03:48:27 ----A---- C:\Windows\system32\dmcrypto.dll
    2008-12-13 03:47:55 ----D---- C:\MyVideos
    2008-12-13 03:47:54 ----A---- C:\Windows\ODBCINST.INI
    2008-12-13 03:47:53 ----N---- C:\Windows\system32\hcwtvwnd.dll
    2008-12-13 03:47:53 ----A---- C:\Windows\system32\hcwWinTVCI.dll
    2008-12-13 03:47:53 ----A---- C:\Windows\system32\hcwutl32.dll
    2008-12-13 03:47:53 ----A---- C:\Windows\system32\hcwTVDlg.dll
    2008-12-13 03:47:53 ----A---- C:\Windows\system32\hcwChDB.dll
    2008-12-13 03:47:53 ----A---- C:\Windows\system32\Bt848WST.DLL
    2008-12-13 03:47:44 ----N---- C:\Windows\system32\hcwpnp32.dll
    2008-12-13 03:47:44 ----A---- C:\Windows\system32\hcwsnbd9.dll
    2008-12-13 03:47:43 ----D---- C:\Program Files\WinTV
    2008-12-13 03:47:43 ----A---- C:\Windows\system32\hcwi2c32.dll
    2008-12-13 03:47:43 ----A---- C:\Windows\system32\hcwhook.dll
    2008-12-13 03:47:38 ----A---- C:\Windows\HCWPNP.INI
    2008-12-13 03:45:43 ----D---- C:\Hauppauge
    2008-12-13 03:28:57 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\Nero
    2008-12-13 03:28:23 ----A---- C:\Windows\system32\MsiExec.exe.log
    2008-12-13 03:25:02 ----D---- C:\ProgramData\Nero
    2008-12-13 03:25:02 ----D---- C:\Program Files\Nero
    2008-12-13 03:25:02 ----D---- C:\Program Files\Common Files\Nero
    2008-12-13 03:17:34 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\Sun
    2008-12-13 03:16:54 ----D---- C:\Program Files\Java
    2008-12-13 03:16:50 ----A---- C:\Windows\system32\d3dx9_30.dll
    2008-12-13 03:16:48 ----A---- C:\Windows\system32\d3dx9_28.dll
    2008-12-13 03:16:21 ----D---- C:\Program Files\Common Files\Java
    2008-12-13 03:15:01 ----A---- C:\Windows\system32\SpamExpertsLSP.dll
    2008-12-13 03:14:59 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\SpamExperts
    2008-12-13 03:14:59 ----A---- C:\ProgramData\spamexperts.ini
    2008-12-13 03:14:53 ----D---- C:\Program Files\SpamExperts
    2008-12-13 03:01:13 ----D---- C:\ProgramData\IM
    2008-12-13 03:01:12 ----D---- C:\ProgramData\IncrediMail
    2008-12-13 03:01:12 ----D---- C:\Program Files\IncrediMail
    2008-12-13 02:56:21 ----D---- C:\Program Files\FileZilla
    2008-12-13 02:50:38 ----D---- C:\Program Files\BitLord
    2008-12-13 02:35:03 ----D---- C:\Program Files\WinRAR
    2008-12-13 02:34:33 ----D---- C:\ProgramData\Adobe
    2008-12-13 02:34:12 ----D---- C:\Program Files\Common Files\Adobe
    2008-12-13 02:32:27 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\vlc
    2008-12-13 02:31:52 ----D---- C:\ProgramData\NOS
    2008-12-13 02:31:52 ----D---- C:\Program Files\NOS
    2008-12-13 02:30:41 ----D---- C:\Program Files\VideoLAN
    2008-12-13 02:09:38 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\Mozilla
    2008-12-13 02:08:40 ----D---- C:\Program Files\Mozilla Firefox
    2008-12-13 02:08:12 ----D---- C:\Program Files\Onlinebandit-no
    2008-12-13 02:06:01 ----D---- C:\Program Files\FastStone Image Viewer
    2008-12-13 02:02:12 ----D---- C:\Windows\pss
    2008-12-13 02:00:38 ----N---- C:\Windows\system32\pxinsa64.exe
    2008-12-13 02:00:38 ----N---- C:\Windows\system32\pxhpinst.exe
    2008-12-13 02:00:38 ----N---- C:\Windows\system32\pxcpya64.exe
    2008-12-13 02:00:33 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\Winamp
    2008-12-13 02:00:33 ----D---- C:\Program Files\Winamp
    2008-12-13 01:57:20 ----A---- C:\Windows\system32\V0080Sti.dll
    2008-12-13 01:57:20 ----A---- C:\Windows\system32\V0080Pin.dll
    2008-12-13 01:57:19 ----A---- C:\Windows\V0080Cfg.exe
    2008-12-13 01:57:19 ----A---- C:\Windows\system32\CtRegApp.dll
    2008-12-13 01:57:19 ----A---- C:\Windows\system32\CtCamMgr.dll
    2008-12-13 01:57:19 ----A---- C:\Windows\CtDrvIns.exe
    2008-12-13 01:57:18 ----A---- C:\Windows\system32\V0080Vfw.dll
    2008-12-13 01:57:18 ----A---- C:\Windows\system32\V0080Srv.exe
    2008-12-13 01:57:18 ----A---- C:\Windows\system32\V0080Hwx.dll
    2008-12-13 01:56:54 ----A---- C:\Windows\system32\es.dll
    2008-12-13 01:50:58 ----A---- C:\Windows\system32\wups2.dll
    2008-12-13 01:50:58 ----A---- C:\Windows\system32\wucltux.dll
    2008-12-13 01:50:58 ----A---- C:\Windows\system32\wuaueng.dll
    2008-12-13 01:50:58 ----A---- C:\Windows\system32\wuauclt.exe
    2008-12-13 01:50:24 ----A---- C:\Windows\system32\wudriver.dll
    2008-12-13 01:50:23 ----A---- C:\Windows\system32\wups.dll
    2008-12-13 01:50:23 ----A---- C:\Windows\system32\wuapi.dll
    2008-12-13 01:50:05 ----A---- C:\Windows\system32\wuwebv.dll
    2008-12-13 01:50:05 ----A---- C:\Windows\system32\wuapp.exe
    2008-12-13 01:49:12 ----A---- C:\Windows\ODBC.INI
    2008-12-13 01:49:11 ----A---- C:\Windows\mdm.ini
    2008-12-13 01:49:05 ----A---- C:\Windows\NSREX.INI
    2008-12-13 01:48:54 ----A---- C:\Windows\vbaddin.ini
    2008-12-13 01:47:47 ----D---- C:\Program Files\Microsoft Visual Studio
    2008-12-13 01:47:44 ----D---- C:\Program Files\Common Files\Designer
    2008-12-13 01:47:19 ----D---- C:\Windows\system32\Viewers
    2008-12-13 01:46:30 ----D---- C:\Program Files\Microsoft FrontPage
    2008-12-13 01:45:43 ----D---- C:\Program Files\Snapshot Viewer
    2008-12-13 01:44:34 ----D---- C:\Windows\Twain32
    2008-12-13 01:44:34 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\Microsoft Web Folders
    2008-12-13 01:25:39 ----A---- C:\Windows\system32\winipsec.dll
    2008-12-13 01:25:39 ----A---- C:\Windows\system32\FwRemoteSvr.dll
    2008-12-13 01:25:38 ----A---- C:\Windows\system32\polstore.dll
    2008-12-13 01:25:38 ----A---- C:\Windows\system32\IPSECSVC.DLL
    2008-12-13 01:23:54 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
    2008-12-13 01:23:54 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
    2008-12-13 01:23:54 ----A---- C:\Windows\system32\PortableDeviceApi.dll
    2008-12-13 01:18:54 ----A---- C:\Windows\system32\EncDec.dll
    2008-12-13 01:18:53 ----A---- C:\Windows\system32\psisdecd.dll
    2008-12-13 01:15:13 ----A---- C:\Windows\system32\gdi32.dll
    2008-12-13 01:12:26 ----A---- C:\Windows\system32\Apphlpdm.dll
    2008-12-13 01:12:24 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
    2008-12-13 01:12:24 ----A---- C:\Windows\system32\gameux.dll
    2008-12-13 01:11:38 ----A---- C:\Windows\system32\wmpeffects.dll
    2008-12-13 01:10:13 ----A---- C:\Windows\system32\msxml3r.dll
    2008-12-13 01:10:13 ----A---- C:\Windows\system32\msxml3.dll
    2008-12-13 01:07:18 ----A---- C:\Windows\system32\netapi32.dll
    2008-12-13 01:06:36 ----A---- C:\Windows\system32\tzres.dll
    2008-12-13 01:04:56 ----A---- C:\Windows\system32\shell32.dll
    2008-12-13 01:01:41 ----A---- C:\Windows\explorer.exe
    2008-12-13 01:00:33 ----A---- C:\Windows\system32\hcrstco.dll
    2008-12-13 01:00:33 ----A---- C:\Windows\system32\hccoin.dll
    2008-12-13 00:56:22 ----A---- C:\Windows\system32\NlsLexicons0049.dll
    2008-12-13 00:56:22 ----A---- C:\Windows\system32\NlsLexicons0047.dll
    2008-12-13 00:56:22 ----A---- C:\Windows\system32\NlsLexicons0046.dll
    2008-12-13 00:56:22 ----A---- C:\Windows\system32\NlsLexicons0045.dll
    2008-12-13 00:56:21 ----A---- C:\Windows\system32\NlsLexicons0039.dll
    2008-12-13 00:56:21 ----A---- C:\Windows\system32\NlsLexicons0022.dll
    2008-12-13 00:56:21 ----A---- C:\Windows\system32\NlsLexicons0021.dll
    2008-12-13 00:56:21 ----A---- C:\Windows\system32\NlsLexicons0020.dll
    2008-12-13 00:56:20 ----A---- C:\Windows\system32\NlsLexicons0026.dll
    2008-12-13 00:56:20 ----A---- C:\Windows\system32\NlsLexicons0024.dll
    2008-12-13 00:56:19 ----A---- C:\Windows\system32\NlsLexicons0027.dll
    2008-12-13 00:56:19 ----A---- C:\Windows\system32\NlsLexicons0011.dll
    2008-12-13 00:56:19 ----A---- C:\Windows\system32\NlsLexicons0010.dll
    2008-12-13 00:56:18 ----A---- C:\Windows\system32\NlsLexicons0019.dll
    2008-12-13 00:56:18 ----A---- C:\Windows\system32\NlsLexicons0018.dll
    2008-12-13 00:56:18 ----A---- C:\Windows\system32\NlsLexicons0013.dll
    2008-12-13 00:56:17 ----A---- C:\Windows\system32\NlsLexicons0003.dll
    2008-12-13 00:56:17 ----A---- C:\Windows\system32\NlsLexicons0002.dll
    2008-12-13 00:56:17 ----A---- C:\Windows\system32\NlsLexicons0001.dll
    2008-12-13 00:56:16 ----A---- C:\Windows\system32\NlsLexicons004a.dll
    2008-12-13 00:56:16 ----A---- C:\Windows\system32\NlsLexicons0009.dll
    2008-12-13 00:56:16 ----A---- C:\Windows\system32\NlsLexicons0007.dll
    2008-12-13 00:56:15 ----A---- C:\Windows\system32\NlsLexicons004e.dll
    2008-12-13 00:56:15 ----A---- C:\Windows\system32\NlsLexicons004c.dll
    2008-12-13 00:56:15 ----A---- C:\Windows\system32\NlsLexicons004b.dll
    2008-12-13 00:56:14 ----A---- C:\Windows\system32\NlsLexicons003e.dll
    2008-12-13 00:56:14 ----A---- C:\Windows\system32\NlsLexicons002a.dll
    2008-12-13 00:56:14 ----A---- C:\Windows\system32\NlsLexicons001b.dll
    2008-12-13 00:56:14 ----A---- C:\Windows\system32\NlsLexicons001a.dll
    2008-12-13 00:56:13 ----A---- C:\Windows\system32\NlsLexicons001d.dll
    2008-12-13 00:56:13 ----A---- C:\Windows\system32\NlsLexicons000a.dll
    2008-12-13 00:56:12 ----A---- C:\Windows\system32\NlsLexicons000c.dll
    2008-12-13 00:56:11 ----A---- C:\Windows\system32\NlsLexicons000f.dll
    2008-12-13 00:56:11 ----A---- C:\Windows\system32\NlsLexicons000d.dll
    2008-12-13 00:56:10 ----A---- C:\Windows\system32\NlsLexicons0816.dll
    2008-12-13 00:56:10 ----A---- C:\Windows\system32\NlsLexicons0416.dll
    2008-12-13 00:56:10 ----A---- C:\Windows\system32\NlsLexicons0414.dll
    2008-12-13 00:56:09 ----A---- C:\Windows\system32\NlsModels0011.dll
    2008-12-13 00:56:09 ----A---- C:\Windows\system32\NlsLexicons081a.dll
    2008-12-13 00:56:09 ----A---- C:\Windows\system32\NlsData0047.dll
    2008-12-13 00:56:09 ----A---- C:\Windows\system32\NlsData0046.dll
    2008-12-13 00:56:09 ----A---- C:\Windows\system32\NlsData0045.dll
    2008-12-13 00:56:08 ----A---- C:\Windows\system32\NlsData0049.dll
    2008-12-13 00:56:08 ----A---- C:\Windows\system32\NlsData0039.dll
    2008-12-13 00:56:08 ----A---- C:\Windows\system32\NlsData0022.dll
    2008-12-13 00:56:08 ----A---- C:\Windows\system32\NlsData0021.dll
    2008-12-13 00:56:08 ----A---- C:\Windows\system32\NlsData0020.dll
    2008-12-13 00:56:07 ----A---- C:\Windows\system32\NlsData0027.dll
    2008-12-13 00:56:07 ----A---- C:\Windows\system32\NlsData0026.dll
    2008-12-13 00:56:07 ----A---- C:\Windows\system32\NlsData0024.dll
    2008-12-13 00:56:07 ----A---- C:\Windows\system32\NlsData0010.dll
    2008-12-13 00:56:06 ----A---- C:\Windows\system32\NlsData0019.dll
    2008-12-13 00:56:06 ----A---- C:\Windows\system32\NlsData0018.dll
    2008-12-13 00:56:06 ----A---- C:\Windows\system32\NlsData0013.dll
    2008-12-13 00:56:06 ----A---- C:\Windows\system32\NlsData0011.dll
    2008-12-13 00:56:06 ----A---- C:\Windows\system32\NlsData0000.dll
    2008-12-13 00:56:05 ----A---- C:\Windows\system32\NlsData0007.dll
    2008-12-13 00:56:05 ----A---- C:\Windows\system32\NlsData0003.dll
    2008-12-13 00:56:05 ----A---- C:\Windows\system32\NlsData0002.dll
    2008-12-13 00:56:05 ----A---- C:\Windows\system32\NlsData0001.dll
    2008-12-13 00:56:04 ----A---- C:\Windows\system32\NlsData004c.dll
    2008-12-13 00:56:04 ----A---- C:\Windows\system32\NlsData004b.dll
    2008-12-13 00:56:04 ----A---- C:\Windows\system32\NlsData004a.dll
    2008-12-13 00:56:04 ----A---- C:\Windows\system32\NlsData0009.dll
    2008-12-13 00:56:03 ----A---- C:\Windows\system32\NlsData004e.dll
    2008-12-13 00:56:03 ----A---- C:\Windows\system32\NlsData003e.dll
    2008-12-13 00:56:03 ----A---- C:\Windows\system32\NlsData002a.dll
    2008-12-13 00:56:03 ----A---- C:\Windows\system32\NlsData001a.dll
    2008-12-13 00:56:02 ----A---- C:\Windows\system32\NlsData001b.dll
    2008-12-13 00:56:01 ----A---- C:\Windows\system32\NlsData001d.dll
    2008-12-13 00:56:01 ----A---- C:\Windows\system32\NlsData000a.dll
    2008-12-13 00:56:00 ----A---- C:\Windows\system32\NlsData0414.dll
    2008-12-13 00:56:00 ----A---- C:\Windows\system32\NlsData000f.dll
    2008-12-13 00:56:00 ----A---- C:\Windows\system32\NlsData000d.dll
    2008-12-13 00:56:00 ----A---- C:\Windows\system32\NlsData000c.dll
    2008-12-13 00:55:59 ----A---- C:\Windows\system32\NlsData081a.dll
    2008-12-13 00:55:59 ----A---- C:\Windows\system32\NlsData0816.dll
    2008-12-13 00:55:59 ----A---- C:\Windows\system32\NlsData0416.dll
    2008-12-13 00:55:59 ----A---- C:\Windows\system32\NaturalLanguage6.dll
    2008-12-13 00:55:58 ----A---- C:\Windows\system32\NlsLexicons0c1a.dll
    2008-12-13 00:55:58 ----A---- C:\Windows\system32\NlsData0c1a.dll
    2008-12-13 00:55:12 ----A---- C:\Windows\system32\fsquirt.exe
    2008-12-13 00:54:20 ----A---- C:\Windows\system32\kbd106n.dll
    2008-12-13 00:54:16 ----A---- C:\Windows\system32\winresume.exe
    2008-12-13 00:54:16 ----A---- C:\Windows\system32\winload.exe
    2008-12-13 00:54:16 ----A---- C:\Windows\system32\srdelayed.exe
    2008-12-13 00:54:16 ----A---- C:\Windows\system32\srcore.dll
    2008-12-13 00:54:16 ----A---- C:\Windows\system32\srclient.dll
    2008-12-13 00:54:16 ----A---- C:\Windows\system32\rstrui.exe
    2008-12-13 00:54:16 ----A---- C:\Windows\system32\kd1394.dll
    2008-12-13 00:54:15 ----A---- C:\Windows\system32\setbcdlocale.dll
    2008-12-13 00:54:15 ----A---- C:\Windows\system32\ci.dll
    2008-12-13 00:51:49 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
    2008-12-13 00:51:48 ----A---- C:\Windows\system32\WindowsCodecs.dll
    2008-12-13 00:51:47 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
    2008-12-13 00:50:16 ----A---- C:\Windows\system32\win32spl.dll
    2008-12-13 00:50:16 ----A---- C:\Windows\system32\printcom.dll
    2008-12-13 00:50:07 ----A---- C:\Windows\system32\wshrm.dll
    2008-12-13 00:49:20 ----A---- C:\Windows\system32\mf.dll
    2008-12-13 00:49:19 ----A---- C:\Windows\system32\rrinstaller.exe
    2008-12-13 00:49:19 ----A---- C:\Windows\system32\mfps.dll
    2008-12-13 00:49:19 ----A---- C:\Windows\system32\mfpmp.exe
    2008-12-13 00:49:19 ----A---- C:\Windows\system32\mferror.dll
    2008-12-13 00:49:18 ----A---- C:\Windows\system32\WMVCORE.DLL
    2008-12-13 00:49:18 ----A---- C:\Windows\system32\WMNetMgr.dll
    2008-12-13 00:49:18 ----A---- C:\Windows\system32\logagent.exe
    2008-12-13 00:48:53 ----A---- C:\Windows\system32\INETRES.dll
    2008-12-13 00:48:53 ----A---- C:\Windows\system32\inetcomm.dll
    2008-12-13 00:48:43 ----A---- C:\Windows\system32\connect.dll
    2008-12-13 00:48:29 ----A---- C:\Windows\system32\quartz.dll
    2008-12-13 00:48:13 ----D---- C:\Program Files\MSXML 4.0
    2008-12-13 00:48:00 ----A---- C:\Windows\system32\ntkrnlpa.exe
    2008-12-13 00:47:59 ----A---- C:\Windows\system32\ntoskrnl.exe
    2008-12-13 00:47:28 ----A---- C:\Windows\system32\msxml6r.dll
    2008-12-13 00:47:28 ----A---- C:\Windows\system32\msxml6.dll
    2008-12-13 00:30:31 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\TVA
    2008-12-13 00:21:40 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\Adobe
    2008-12-13 00:13:54 ----D---- C:\Program Files\Microsoft IntelliType Pro
    2008-12-13 00:11:53 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\Macromedia
    2008-12-13 00:08:23 ----D---- C:\Program Files\Microsoft IntelliPoint
    2008-12-13 00:06:21 ----D---- C:\Windows\PCHEALTH
    2008-12-13 00:06:21 ----D---- C:\Program Files\MSN Messenger
    2008-12-13 00:04:40 ----A---- C:\Windows\system32\aswBoot.exe
    2008-12-13 00:04:37 ----D---- C:\Program Files\Alwil Software
    2008-12-12 23:22:29 ----D---- C:\Program Files\LCHSoft Inc
    2008-12-12 22:47:09 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\WinBatch
    2008-12-12 22:11:00 ----D---- C:\Program Files\802.11 b & g USB Network Adapter
    2008-12-12 22:10:59 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\InstallShield
    2008-12-12 22:10:59 ----A---- C:\Windows\system32\WLAN.INI
    2008-12-12 21:39:55 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\Identities
    2008-12-12 21:32:51 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\Hewlett-Packard
    2008-12-12 21:30:43 ----SD---- C:\Users\Roy Tangnes\AppData\Roaming\Microsoft
    2008-12-12 21:30:43 ----D---- C:\Users\Roy Tangnes\AppData\Roaming\Media Center Programs
    2008-12-12 21:27:23 ----SHD---- C:\Programfiler
    2008-12-12 21:27:23 ----SHD---- C:\ProgramData\Start-meny
    2008-12-12 21:27:23 ----SHD---- C:\ProgramData\Skrivebord
    2008-12-12 21:27:23 ----SHD---- C:\ProgramData\Programdata
    2008-12-12 21:27:23 ----SHD---- C:\ProgramData\Maler
    2008-12-12 21:27:23 ----SHD---- C:\ProgramData\Favoritter
    2008-12-12 21:27:23 ----SHD---- C:\ProgramData\Dokumenter
    2008-12-12 21:27:23 ----SHD---- C:\Program Files\Fellesfiler
    2008-12-12 21:27:23 ----SHD---- C:\Documents and Settings
    2008-12-12 21:26:57 ----SHD---- C:\System Volume Information

    ======List of files/folders modified in the last 1 months======

    2008-12-19 01:20:37 ----D---- C:\Windows\Prefetch
    2008-12-19 01:20:29 ----D---- C:\Windows\Temp
    2008-12-19 01:20:22 ----RD---- C:\Program Files
    2008-12-18 23:23:18 ----D---- C:\Windows\system32\drivers
    2008-12-18 20:42:39 ----D---- C:\Windows\Logs
    2008-12-18 18:00:25 ----SHD---- C:\Windows\Installer
    2008-12-18 18:00:17 ----D---- C:\WINDOWS
    2008-12-18 15:35:13 ----D---- C:\Windows\rescache
    2008-12-18 15:22:42 ----D---- C:\Windows\System32
    2008-12-18 15:22:42 ----D---- C:\Windows\inf
    2008-12-18 15:22:42 ----A---- C:\Windows\system32\PerfStringBackup.INI
    2008-12-18 15:15:46 ----D---- C:\Windows\system32\nb-NO
    2008-12-18 15:15:46 ----D---- C:\Windows\PolicyDefinitions
    2008-12-18 15:14:49 ----D---- C:\Windows\winsxs
    2008-12-18 15:14:36 ----D---- C:\Windows\system32\catroot2
    2008-12-18 15:14:34 ----D---- C:\Windows\system32\catroot
    2008-12-18 13:12:04 ----D---- C:\Windows\Microsoft.NET
    2008-12-18 13:11:59 ----RSD---- C:\Windows\assembly
    2008-12-18 04:51:59 ----ASH---- C:\Program Files\desktop.ini
    2008-12-18 04:51:57 ----SHD---- C:\Boot
    2008-12-18 04:43:50 ----D---- C:\Program Files\Windows Calendar
    2008-12-18 04:43:49 ----D---- C:\Program Files\Windows Sidebar
    2008-12-18 04:43:49 ----D---- C:\Program Files\Windows Media Player
    2008-12-18 04:43:49 ----D---- C:\Program Files\Windows Mail
    2008-12-18 04:43:49 ----D---- C:\Program Files\Windows Journal
    2008-12-18 04:43:49 ----D---- C:\Program Files\Windows Collaboration
    2008-12-18 04:43:49 ----D---- C:\Program Files\Movie Maker
    2008-12-18 04:43:49 ----D---- C:\Program Files\Internet Explorer
    2008-12-18 04:43:48 ----D---- C:\Program Files\Windows Photo Gallery
    2008-12-18 04:43:47 ----D---- C:\Windows\servicing
    2008-12-18 04:43:47 ----D---- C:\Windows\ehome
    2008-12-18 04:43:47 ----D---- C:\Program Files\Windows Defender
    2008-12-18 04:43:47 ----D---- C:\Program Files\Common Files\System
    2008-12-18 04:43:44 ----D---- C:\Windows\MSAgent
    2008-12-18 04:43:43 ----D---- C:\Windows\L2Schemas
    2008-12-18 04:43:43 ----D---- C:\Windows\IME
    2008-12-18 04:43:43 ----D---- C:\Windows\DigitalLocker
    2008-12-18 04:43:42 ----D---- C:\Windows\system32\XPSViewer
    2008-12-18 04:43:42 ----D---- C:\Windows\system32\ko-KR
    2008-12-18 04:43:42 ----D---- C:\Windows\system32\en-US
    2008-12-18 04:43:42 ----D---- C:\Windows\system32\da-DK
    2008-12-18 04:43:42 ----D---- C:\Windows\system32\com
    2008-12-18 04:43:40 ----D---- C:\Windows\system32\sysprep
    2008-12-18 04:43:40 ----D---- C:\Windows\system32\oobe
    2008-12-18 04:43:40 ----D---- C:\Windows\system32\migration
    2008-12-18 04:43:40 ----D---- C:\Windows\system32\it-IT
    2008-12-18 04:43:40 ----D---- C:\Windows\system32\el-GR
    2008-12-18 04:43:40 ----D---- C:\Windows\system32\de-DE
    2008-12-18 04:43:38 ----D---- C:\Windows\system32\sv-SE
    2008-12-18 04:43:38 ----D---- C:\Windows\system32\SLUI
    2008-12-18 04:43:38 ----D---- C:\Windows\system32\setup
    2008-12-18 04:43:38 ----D---- C:\Windows\system32\ru-RU
    2008-12-18 04:43:38 ----D---- C:\Windows\system32\pt-PT
    2008-12-18 04:43:38 ----D---- C:\Windows\system32\ias
    2008-12-18 04:43:38 ----D---- C:\Windows\system32\hu-HU
    2008-12-18 04:43:38 ----D---- C:\Windows\system32\he-IL
    2008-12-18 04:43:38 ----D---- C:\Windows\system32\fr-FR
    2008-12-18 04:43:38 ----D---- C:\Windows\system32\fi-FI
    2008-12-18 04:43:38 ----D---- C:\Windows\system32\cs-CZ
    2008-12-18 04:43:38 ----D---- C:\Windows\system32\AdvancedInstallers
    2008-12-18 04:43:36 ----D---- C:\Windows\system32\zh-TW
    2008-12-18 04:43:36 ----D---- C:\Windows\system32\zh-CN
    2008-12-18 04:43:36 ----D---- C:\Windows\system32\ro-RO
    2008-12-18 04:43:36 ----D---- C:\Windows\system32\pl-PL
    2008-12-18 04:43:36 ----D---- C:\Windows\system32\manifeststore
    2008-12-18 04:43:36 ----D---- C:\Windows\system32\ja-JP
    2008-12-18 04:43:36 ----D---- C:\Windows\system32\es-ES
    2008-12-18 04:43:34 ----D---- C:\Windows\system32\wbem
    2008-12-18 04:43:34 ----D---- C:\Windows\system32\tr-TR
    2008-12-18 04:43:28 ----D---- C:\Windows\system32\nl-NL
    2008-12-18 04:43:28 ----D---- C:\Windows\system32\ar-SA
    2008-12-18 04:43:27 ----D---- C:\Windows\system32\pt-BR
    2008-12-18 04:43:27 ----D---- C:\Windows\system32\migwiz
    2008-12-18 04:42:58 ----RSD---- C:\Windows\Fonts
    2008-12-18 04:42:58 ----D---- C:\Windows\AppPatch
    2008-12-18 04:42:47 ----D---- C:\Windows\Boot
    2008-12-18 04:42:45 ----D---- C:\Windows\system32\Boot
    2008-12-18 04:26:24 ----A---- C:\Windows\system32\ifxcardm.dll
    2008-12-18 04:26:18 ----A---- C:\Windows\system32\axaltocm.dll
    2008-12-17 21:39:16 ----D---- C:\Windows\system32\Tasks
    2008-12-17 16:56:06 ----D---- C:\Windows\Debug
    2008-12-17 04:29:11 ----HD---- C:\ProgramData
    2008-12-16 21:17:59 ----AD---- C:\Program Files\Common Files\LightScribe
    2008-12-16 20:26:39 ----D---- C:\Windows\system32\LogFiles
    2008-12-16 16:51:42 ----SD---- C:\ProgramData\Microsoft
    2008-12-14 08:32:28 ----HD---- C:\hp
    2008-12-13 22:39:34 ----D---- C:\Program Files\HP
    2008-12-13 14:06:10 ----D---- C:\Windows\system32\WDI
    2008-12-13 13:57:13 ----D---- C:\Windows\SoftwareDistribution
    2008-12-13 03:48:44 ----HD---- C:\Program Files\InstallShield Installation Information
    2008-12-13 03:48:44 ----D---- C:\Program Files\Common Files
    2008-12-13 03:48:42 ----D---- C:\Program Files\Common Files\InstallShield
    2008-12-13 03:48:03 ----D---- C:\Program Files\Common Files\microsoft shared
    2008-12-13 03:25:00 ----D---- C:\Windows\Cursors
    2008-12-13 02:34:12 ----D---- C:\Program Files\Adobe
    2008-12-13 01:57:35 ----D---- C:\Windows\system
    2008-12-13 01:57:33 ----D---- C:\Windows\twain_32
    2008-12-13 01:48:56 ----D---- C:\Windows\Help
    2008-12-13 01:48:24 ----A---- C:\Windows\win.ini
    2008-12-13 01:47:27 ----RSD---- C:\Windows\Media
    2008-12-13 01:47:12 ----D---- C:\Program Files\Microsoft Office
    2008-12-13 01:46:24 ----D---- C:\Windows\ShellNew
    2008-12-13 01:32:24 ----D---- C:\Windows\system32\ras
    2008-12-13 01:32:24 ----D---- C:\Windows\system32\icsxml
    2008-12-13 00:21:39 ----SD---- C:\Windows\Downloaded Program Files
    2008-12-12 22:42:53 ----D---- C:\Windows\Tasks
    2008-12-12 22:13:36 ----D---- C:\Windows\system32\NDF
    2008-12-12 21:52:26 ----D---- C:\Program Files\Google
    2008-12-12 21:50:35 ----D---- C:\Program Files\Common Files\Symantec Shared
    2008-12-12 21:50:14 ----D---- C:\ProgramData\Symantec
    2008-12-12 21:44:18 ----D---- C:\ProgramData\Google
    2008-12-12 21:43:56 ----D---- C:\Windows\system32\restore
    2008-12-12 21:40:11 ----SHD---- C:\$Recycle.Bin
    2008-12-12 21:30:42 ----RD---- C:\Users
    2008-12-12 21:27:23 ----D---- C:\Program Files\Windows NT
    2008-12-12 21:00:45 ----D---- C:\Windows\SMINST
    2008-12-09 15:24:38 ----A---- C:\Windows\system32\mrt.exe

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2008-11-26 23152]
    R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2008-11-26 111184]
    R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2008-11-26 50864]
    R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2008-11-26 20560]
    R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2008-11-26 51792]
    R3 E100B;Intel® PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2008-01-19 159744]
    R3 hcwPP2;Hauppauge WinTV PVR PCI II ([23|25|26]xxx); C:\Windows\system32\DRIVERS\hcwPP2.sys [2007-02-06 185728]
    R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2006-11-08 1647976]
    R3 MSPCLOCK;Klokkeproxy for Microsoft Streaming; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
    R3 MSPQM;Kvalitetsbehandlingsproxy for Microsoft Streaming; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
    R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2006-11-21 4454400]
    R3 Point32;Microsoft IntelliPoint Filter Driver; C:\Windows\system32\DRIVERS\point32k.sys [2007-08-21 24064]
    R3 V0080Dev;Creative Camera VF0080 Driver; C:\Windows\system32\DRIVERS\V0080Dev.sys [2005-05-06 255230]
    R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
    S3 abwns9tx;abwns9tx; C:\Windows\system32\drivers\abwns9tx.sys []
    S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-12-13 19456]
    S3 BthPan;Bluetooth-enhet (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-19 92160]
    S3 BTHPORT;Bluetooth Port-driver; C:\Windows\System32\Drivers\BTHport.sys [2008-12-13 220160]
    S3 BTHUSB;Bluetooth Radio USB-driver; C:\Windows\System32\Drivers\BTHUSB.sys [2008-12-13 29184]
    S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
    S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
    S3 MSKSSRV;Tjenesteproxy for Microsoft Streaming; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
    S3 MSTEE;Tee/Sink-to-Sink-konverterer for Microsoft Streaming; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
    S3 netr73;Tilgin MSA110 802.11b/g USB Network Adapter Driver for Vista; C:\Windows\system32\DRIVERS\netr73.sys [2007-01-03 255488]
    S3 PcdrNdisuio;PCDRNDISUIO Usermode I/O Protocol; C:\Windows\system32\DRIVERS\pcdrndisuio.sys []
    S3 Ps2;PS2; C:\Windows\system32\DRIVERS\PS2.sys [2005-12-12 19072]
    S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2008-01-19 49664]
    S3 TSHWMDTCP;TSHWMDTCP; \??\C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.sys [2006-07-13 4608]
    S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-11-26 18752]
    R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-11-26 155160]
    R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-19 21504]
    R2 DQLWinService;DQLWinService; C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe [2006-09-03 208896]
    R2 IAANTMON;Intel® Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2006-09-29 81920]
    R2 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-10-19 61440]
    R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-12-03 869672]
    R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-11-26 254040]
    R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-11-26 352920]
    R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-12-13 447784]
    R3 usnjsvc;Messenger Sharing Folders USN Journal Reader-tjeneste; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
    S2 CLTNetCnService;Symantec Lic NetConnect service; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe /h ccCommon []
    S2 IntelDHSvcConf;Intel DH Service; C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe [2006-05-10 29696]
    S3 AlertService;Intel® Alert Service; C:\Program Files\Intel\IntelDH\CCU\AlertService.exe [2006-09-11 188416]
    S3 HauppaugeTVServer;HauppaugeTVServer; C:\PROGRA~1\WinTV\HCWTVS~1.EXE [2008-03-31 815104]
    S3 ISSM;Intel® Software Services Manager; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe [2006-09-11 75264]
    S3 M1 Server;Intel® Viiv Media Server; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe [2006-08-31 26624]
    S3 MCLServiceATL;Intel® Application Tracker; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe [2006-09-11 167936]
    S3 Remote UI Service;Intel® Remoting Service; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe [2006-09-11 544256]
    S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2006-11-01 78752]

    -----------------EOF-----------------


    • 0
  24. keiko99 la til et innlegg i et emne [LØST] rette på feil i oppstart på vista   

    jeg fikk en feil melding da jeg kjørte ComboFix... http://www.imgnets.com/viewer.php?id=49464113.jpg
    • 0
  25. keiko99 la til et innlegg i et emne [LØST] rette på feil i oppstart på vista   

    det var ett vansklig spørsmål
    • 0