BullGuard
 HomeLog InRegisterCommunity CalendarSearch the ForumView The Member ListHelp
PC running slo after freeware D/L
   
BullGuard Antivirus Forum > Virus Removal > Removal Help > PC running slo after freeware D/L  
Forum Quick Jump
 
New Topic Post reply to : PC running slo after freeware D/L Printable version of : PC running slo after freeware D/L
[ << Previous Thread | Next Thread >> ]

danny-boy
Junior Member


Date Joined Aug 2007
Total Posts : 70
 
   Posted 9/18/2009 5:40 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
Hi,
I downloaded a handy looking simple freeware program, and scanned it for virus's with avast, which said there were none, so I installed it, since then PC is running very slow and freezing.
Would you please have a quick look at logs and see what you th!!!!.
Many thanks, here they are:

COMBO:
ComboFix 09-09-17.04 - Daniel 09/18/2009 14:39.3.4 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.44.1033.18.3071.1891 [GMT 1:00]
Running from: c:\users\Daniel\Desktop\ComboFix.exe
.

((((((((((((((((((((((((( Files Created from 2009-08-18 to 2009-09-18 )))))))))))))))))))))))))))))))
.

2009-09-18 13:46 . 2009-09-18 13:46 -------- d-----w- c:\users\user\AppData\Local\temp
2009-09-18 13:46 . 2009-09-18 13:46 -------- d-----w- c:\users\Nikki .000\AppData\Local\temp
2009-09-18 13:46 . 2009-09-18 13:46 -------- d-----w- c:\users\Default\AppData\Local\temp
2009-09-16 20:21 . 2009-09-07 11:32 18632 ----a-w- c:\windows\system32\dopdfmi6.dll
2009-09-16 20:21 . 2009-09-07 11:32 21192 ----a-w- c:\windows\system32\dopdfmn6.dll
2009-09-16 20:21 . 2009-09-16 20:21 -------- d-----w- c:\program files\Softland
2009-09-15 14:45 . 2009-09-15 14:45 -------- d-----w- c:\program files\Common Files\Windows Live
2009-09-15 14:44 . 2009-09-15 14:44 -------- d-----w- c:\program files\MSXML 4.0
2009-09-15 14:43 . 2009-08-14 17:07 897608 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-09-15 14:43 . 2009-08-14 16:29 104960 ----a-w- c:\windows\system32\netiohlp.dll
2009-09-15 14:43 . 2009-08-14 14:16 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-09-15 14:43 . 2009-08-14 14:16 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-09-15 14:43 . 2009-08-14 14:16 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-09-15 14:43 . 2009-08-14 14:16 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-09-15 14:43 . 2009-08-14 14:16 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-09-15 14:43 . 2009-08-14 14:16 10240 ----a-w- c:\windows\system32\finger.exe
2009-09-15 14:43 . 2009-08-14 14:16 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-09-15 14:43 . 2009-08-14 16:29 17920 ----a-w- c:\windows\system32\netevent.dll
2009-09-15 14:42 . 2009-06-10 12:11 2868224 ----a-w- c:\windows\system32\mf.dll
2009-09-15 14:42 . 2009-07-11 19:32 293376 ----a-w- c:\windows\system32\wlanmsm.dll
2009-09-15 14:42 . 2009-07-11 19:32 302592 ----a-w- c:\windows\system32\wlansec.dll
2009-09-15 14:42 . 2009-07-11 19:29 127488 ----a-w- c:\windows\system32\L2SecHC.dll
2009-09-15 14:42 . 2009-07-11 19:32 513024 ----a-w- c:\windows\system32\wlansvc.dll
2009-09-07 17:17 . 2009-09-07 17:17 -------- d-----w- c:\programdata\Nokia
2009-09-03 13:52 . 2009-09-03 13:52 -------- d-----w- c:\program files\Common Files\PCSuite
2009-09-03 13:52 . 2009-09-07 17:17 -------- d-----w- c:\program files\Common Files\Nokia
2009-09-03 13:52 . 2008-08-26 09:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2009-09-03 13:51 . 2009-09-03 13:51 -------- d-----w- c:\program files\PC Connectivity Solution
2009-09-02 13:40 . 2009-08-28 12:39 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2009-09-02 13:40 . 2009-08-28 10:15 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2009-08-26 14:46 . 2009-06-22 10:22 2048 ----a-w- c:\windows\system32\tzres.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-09-16 15:46 . 2009-02-02 23:25 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-09-15 14:48 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-09-14 21:06 . 2009-02-01 12:35 -------- d-----w- c:\users\Daniel\AppData\Roaming\uTorrent
2009-09-10 13:54 . 2009-02-02 23:25 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-10 13:53 . 2009-02-02 23:25 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-09-10 09:12 . 2009-05-23 18:14 680 ----a-w- c:\users\Daniel\AppData\Local\d3d9caps.dat
2009-09-07 17:17 . 2009-01-31 14:57 -------- d-----w- c:\program files\Nokia
2009-09-07 17:16 . 2009-01-31 14:56 -------- d-----w- c:\programdata\Installations
2009-09-07 17:07 . 2009-09-07 17:07 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf
2009-09-03 13:52 . 2009-01-31 15:06 -------- d-----w- c:\program files\DIFX
2009-09-01 18:47 . 2009-08-06 19:07 -------- d-----w- c:\programdata\NCH Swift Sound
2009-09-01 14:17 . 2009-07-08 13:42 -------- d-----w- c:\program files\Java
2009-08-25 17:07 . 2009-02-03 13:25 74328 ----a-w- c:\windows\system32\drivers\inspect.sys
2009-08-25 17:07 . 2009-02-03 13:25 179792 ----a-w- c:\windows\system32\guard32.dll
2009-08-25 17:07 . 2009-02-03 13:25 29520 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2009-08-25 17:07 . 2009-02-03 13:25 128888 ----a-w- c:\windows\system32\drivers\cmdguard.sys
2009-08-17 16:10 . 2009-01-31 14:34 1279456 ----a-w- c:\windows\system32\aswBoot.exe
2009-08-17 16:05 . 2009-01-31 14:34 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2009-08-17 16:05 . 2009-01-31 14:34 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2009-08-17 16:05 . 2009-01-31 14:34 53328 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2009-08-17 16:04 . 2009-01-31 14:34 51376 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-08-17 16:04 . 2009-01-31 14:34 23152 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-08-17 16:02 . 2009-01-31 14:34 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-08-06 19:42 . 2009-08-06 19:07 -------- d-----w- c:\program files\NCH Swift Sound
2009-08-06 19:07 . 2009-08-06 19:07 -------- d-----w- c:\users\Daniel\AppData\Roaming\NCH Swift Sound
2009-08-06 18:41 . 2009-08-06 18:38 -------- d-----w- c:\program files\Cool MP3 Splitter
2009-07-31 07:21 . 2009-07-30 18:56 -------- d-----w- c:\users\Daniel\AppData\Roaming\dvdcss
2009-07-30 19:03 . 2009-02-06 16:34 -------- d-----w- c:\program files\Xilisoft
2009-07-30 18:52 . 2009-07-30 18:47 -------- d-----w- c:\program files\Winnydows
2009-07-30 18:47 . 2009-07-30 18:47 -------- d-----w- c:\program files\AviSynth 2.5
2009-07-30 18:37 . 2009-07-29 21:47 -------- d-----w- c:\program files\HP
2009-07-30 18:35 . 2009-07-29 21:46 -------- d-----w- c:\programdata\HP
2009-07-30 18:28 . 2009-07-30 17:53 -------- d-----w- c:\program files\DVD-Cloner Platinum
2009-07-30 17:31 . 2009-02-05 08:14 -------- d-----w- c:\users\Daniel\AppData\Roaming\Vso
2009-07-30 13:51 . 2009-07-30 13:51 -------- d-----w- c:\users\Daniel\AppData\Roaming\Image Zone Express
2009-07-30 13:51 . 2009-07-30 13:51 -------- d-----w- c:\users\Daniel\AppData\Roaming\Printer Info Cache
2009-07-29 21:59 . 2009-07-29 21:59 -------- d-----w- c:\programdata\WEBREG
2009-07-29 21:57 . 2009-07-29 21:56 -------- d-----w- c:\users\Daniel\AppData\Roaming\HP
2009-07-29 21:50 . 2009-07-29 21:50 -------- d-----w- c:\program files\Common Files\Hewlett-Packard
2009-07-28 13:11 . 2009-04-07 07:23 -------- d-----w- c:\programdata\Microsoft Help
2009-07-25 04:23 . 2009-07-08 13:42 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-07-21 21:52 . 2009-08-05 11:46 915456 ----a-w- c:\windows\system32\wininet.dll
2009-07-21 21:47 . 2009-08-05 11:46 109056 ----a-w- c:\windows\system32\iesysprep.dll
2009-07-21 21:47 . 2009-08-05 11:46 71680 ----a-w- c:\windows\system32\iesetup.dll
2009-07-21 20:13 . 2009-08-05 11:46 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-07-17 21:21 . 2009-07-17 20:11 156672 ----a-w- c:\windows\system32\rmc_fixasf.exe
2009-07-17 21:21 . 2009-07-17 20:11 237568 ----a-w- c:\windows\system32\rmc_rtspdl.dll
2009-07-17 21:21 . 2009-07-17 20:10 323584 ----a-w- c:\windows\system32\AUDIOGENIE2.DLL
2009-07-17 14:35 . 2009-08-20 11:12 71680 ----a-w- c:\windows\system32\atl.dll
2009-07-16 22:04 . 2009-07-16 22:04 17451008 ----a-w- c:\windows\system32\imageres.dll
2009-07-14 13:00 . 2009-08-20 11:12 313344 ----a-w- c:\windows\system32\wmpdxm.dll
2009-07-14 12:59 . 2009-08-20 11:12 4096 ----a-w- c:\windows\system32\dxmasf.dll
2009-07-14 12:58 . 2009-08-20 11:12 7680 ----a-w- c:\windows\system32\spwmp.dll
2009-07-14 10:59 . 2009-08-20 11:12 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2007-07-13 10:29 . 2007-03-07 12:54 8192 --sha-w- c:\windows\Users\Default\NTUSER.DAT
.

((((((((((((((((((((((((((((( SnapShot@2009-06-13_10.29.45 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-09-07 17:16 . 2009-09-07 17:16 65536 c:\windows\winsxs\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.762_none_7b33aa7d218504d2\vcomp.dll
+ 2009-09-15 14:44 . 2009-09-15 14:44 91656 c:\windows\winsxs\x86_microsoft.msxml2r_6bd6b9abf345378f_4.1.1.0_none_365945b9da656e4d\msxml4r.dll
+ 2009-09-07 17:17 . 2009-09-07 17:17 82432 c:\windows\winsxs\x86_microsoft.msxml2r_6bd6b9abf345378f_4.1.0.0_none_3658456fda6654f6\msxml4r.dll
+ 2009-09-15 14:42 . 2009-07-11 19:10 68096 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.22170_none_9e68a7441b62d132\wlanhlp.dll
+ 2009-09-15 14:42 . 2009-07-11 19:10 65024 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.22170_none_9e68a7441b62d132\wlanapi.dll
+ 2009-02-02 17:07 . 2008-01-05 11:34 15181 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.22170_none_9e68a7441b62d132\gatherWirelessInfo.vbs
+ 2009-09-15 14:42 . 2009-04-11 06:28 68096 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18064_none_9deddb8d02397ad3\wlanhlp.dll
+ 2009-09-15 14:42 . 2009-07-11 19:01 65024 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18064_none_9deddb8d02397ad3\wlanapi.dll
+ 2009-02-02 17:07 . 2008-01-05 11:34 15181 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18064_none_9deddb8d02397ad3\gatherWirelessInfo.vbs
+ 2009-09-15 14:42 . 2009-07-11 19:17 68096 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.22468_none_9c9507981e2d2ad5\wlanhlp.dll
+ 2009-09-15 14:42 . 2009-07-11 19:17 64512 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.22468_none_9c9507981e2d2ad5\wlanapi.dll
+ 2009-02-02 17:07 . 2008-01-05 11:34 15181 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.22468_none_9c9507981e2d2ad5\gatherWirelessInfo.vbs
+ 2009-02-02 17:08 . 2008-01-19 07:36 68096 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.18288_none_9bf5c90f051fc5c6\wlanhlp.dll
+ 2009-02-02 17:09 . 2008-01-19 07:36 64512 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.18288_none_9bf5c90f051fc5c6\wlanapi.dll
+ 2009-02-02 17:07 . 2008-01-05 11:34 15181 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.18288_none_9bf5c90f051fc5c6\gatherWirelessInfo.vbs
+ 2009-09-15 14:42 . 2009-07-11 19:24 67584 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.21082_none_9a92fd9a211c6fd7\wlanhlp.dll
+ 2009-09-15 14:42 . 2009-07-11 19:24 47104 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.21082_none_9a92fd9a211c6fd7\wlanapi.dll
+ 2006-11-02 12:34 . 2006-11-02 12:34 14827 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.21082_none_9a92fd9a211c6fd7\gatherWirelessInfo.vbs
+ 2009-09-15 14:42 . 2009-07-11 19:32 67584 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.16884_none_9a0b894107fccf79\wlanhlp.dll
+ 2009-09-15 14:42 . 2009-07-11 19:32 47104 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.16884_none_9a0b894107fccf79\wlanapi.dll
+ 2006-11-02 12:34 . 2006-11-02 12:34 14827 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.16884_none_9a0b894107fccf79\gatherWirelessInfo.vbs
+ 2009-08-20 11:12 . 2009-06-10 11:44 31232 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22150_none_946bf5749f2e8c01\msvidc32.dll
+ 2009-08-20 11:12 . 2009-06-10 11:44 12800 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22150_none_946bf5749f2e8c01\msrle32.dll
+ 2009-08-20 11:12 . 2009-06-10 11:44 82944 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22150_none_946bf5749f2e8c01\mciavi32.dll
+ 2009-08-20 11:12 . 2009-06-10 11:42 91136 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22150_none_946bf5749f2e8c01\avifil32.dll
+ 2009-08-20 11:12 . 2009-06-10 11:42 65024 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22150_none_946bf5749f2e8c01\avicap32.dll
+ 2009-02-02 17:08 . 2008-01-19 07:35 31232 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.18049_none_93f62b2f8600b455\msvidc32.dll
+ 2006-11-02 09:03 . 2006-11-02 09:46 12800 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.18049_none_93f62b2f8600b455\msrle32.dll
+ 2006-11-02 09:03 . 2006-11-02 09:46 82944 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.18049_none_93f62b2f8600b455\mciavi32.dll
+ 2009-08-20 11:12 . 2009-06-10 11:38 91136 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.18049_none_93f62b2f8600b455\avifil32.dll
+ 2006-11-02 09:03 . 2006-11-02 09:46 65024 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.18049_none_93f62b2f8600b455\avicap32.dll
+ 2009-08-20 11:12 . 2009-06-10 11:58 31232 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.22447_none_9297557ea1f9cc4d\msvidc32.dll
+ 2009-08-20 11:12 . 2009-06-10 11:57 12800 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.22447_none_9297557ea1f9cc4d\msrle32.dll
+ 2009-08-20 11:12 . 2009-06-10 11:56 82944 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.22447_none_9297557ea1f9cc4d\mciavi32.dll
+ 2009-08-20 11:12 . 2009-06-10 11:52 91136 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.22447_none_9297557ea1f9cc4d\avifil32.dll
+ 2009-08-20 11:12 . 2009-06-10 11:52 65024 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.22447_none_9297557ea1f9cc4d\avicap32.dll
+ 2009-02-02 17:08 . 2008-01-19 07:35 31232 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.18270_none_91e6450388fad1ce\msvidc32.dll
+ 2006-11-02 09:03 . 2006-11-02 09:46 12800 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.18270_none_91e6450388fad1ce\msrle32.dll
+ 2006-11-02 09:03 . 2006-11-02 09:46 82944 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.18270_none_91e6450388fad1ce\mciavi32.dll
+ 2009-08-20 11:12 . 2009-06-10 12:07 91136 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.18270_none_91e6450388fad1ce\avifil32.dll
+ 2006-11-02 09:03 . 2006-11-02 09:46 65024 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.18270_none_91e6450388fad1ce\avicap32.dll
+ 2009-08-20 11:12 . 2009-06-10 12:03 31232 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.21065_none_90994ca8a4e576ab\msvidc32.dll
+ 2009-08-20 11:12 . 2009-06-10 12:03 12800 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.21065_none_90994ca8a4e576ab\msrle32.dll
+ 2009-08-20 11:12 . 2009-06-10 12:00 82944 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.21065_none_90994ca8a4e576ab\mciavi32.dll
+ 2009-08-20 11:12 . 2009-06-10 11:57 88576 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.21065_none_90994ca8a4e576ab\avifil32.dll
+ 2009-08-20 11:12 . 2009-06-10 11:57 65024 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.21065_none_90994ca8a4e576ab\avicap32.dll
+ 2009-08-20 11:12 . 2009-06-10 12:10 31232 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.16868_none_9012d8998bc4efa4\msvidc32.dll
+ 2009-08-20 11:12 . 2009-06-10 12:09 12800 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.16868_none_9012d8998bc4efa4\msrle32.dll
+ 2009-08-20 11:12 . 2009-06-10 12:07 82944 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.16868_none_9012d8998bc4efa4\mciavi32.dll
+ 2009-08-20 11:12 . 2009-06-10 12:04 88576 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.16868_none_9012d8998bc4efa4\avifil32.dll
+ 2009-08-20 11:12 . 2009-06-10 12:04 65024 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.16868_none_9012d8998bc4efa4\avicap32.dll
+ 2009-09-15 14:43 . 2009-08-15 21:30 22016 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\netiougc.exe
+ 2009-09-15 14:43 . 2009-08-15 23:56 49152 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\netiomig.dll
+ 2009-09-15 14:43 . 2009-08-14 14:23 22016 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\netiougc.exe
+ 2009-09-15 14:43 . 2009-08-14 16:40 49152 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\netiomig.dll
+ 2009-09-15 14:43 . 2009-08-14 13:52 17920 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\ROUTE.EXE
+ 2009-09-15 14:43 . 2009-08-14 13:52 27136 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\NETSTAT.EXE
+ 2009-09-15 14:43 . 2009-08-14 13:52 11264 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\MRINFO.EXE
+ 2009-09-15 14:43 . 2009-08-14 13:52 10240 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\finger.exe
+ 2009-09-15 14:43 . 2009-08-14 13:52 19968 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\ARP.EXE
+ 2009-09-15 14:43 . 2009-08-14 13:49 17920 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\ROUTE.EXE
+ 2009-09-15 14:43 . 2009-08-14 13:49 27136 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\NETSTAT.EXE
+ 2009-09-15 14:43 . 2009-08-14 13:49 11264 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\MRINFO.EXE
+ 2009-09-15 14:43 . 2009-08-14 13:49 10240 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\finger.exe
+ 2009-09-15 14:43 . 2009-08-14 13:49 19968 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\ARP.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:11 17920 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\ROUTE.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:11 27136 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\NETSTAT.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:11 11264 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\MRINFO.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:11 10240 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\finger.exe
+ 2009-09-15 14:43 . 2009-08-14 14:11 19968 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\ARP.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:16 17920 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\ROUTE.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:16 27136 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\NETSTAT.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:16 11264 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\MRINFO.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:16 10240 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\finger.exe
+ 2009-09-15 14:43 . 2009-08-14 14:16 19968 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\ARP.EXE
+ 2009-09-15 14:43 . 2009-08-15 21:31 17920 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\ROUTE.EXE
+ 2009-09-15 14:43 . 2009-08-15 21:31 27136 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\NETSTAT.EXE
+ 2009-09-15 14:43 . 2009-08-15 21:31 11264 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\MRINFO.EXE
+ 2009-09-15 14:43 . 2009-08-15 21:31 10240 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\finger.exe
+ 2009-09-15 14:43 . 2009-08-15 21:31 19968 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\ARP.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:25 17920 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\ROUTE.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:25 27136 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\NETSTAT.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:25 11264 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\MRINFO.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:25 10240 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\finger.exe
+ 2009-09-15 14:43 . 2009-08-14 14:25 19968 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\ARP.EXE
+ 2009-08-20 11:12 . 2009-06-04 10:52 53248 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6002.22146_none_3238de2ddc072aae\tsgqec.dll
+ 2009-08-20 11:12 . 2009-04-11 06:28 53248 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6002.18045_none_31ae4118c2ea718d\tsgqec.dll
+ 2009-08-20 11:12 . 2009-06-04 12:35 53248 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6001.22443_none_304f6b67dee38985\tsgqec.dll
+ 2009-02-02 17:09 . 2008-01-19 07:36 53248 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6001.18266_none_2fb32dbcc5d3707b\tsgqec.dll
+ 2009-08-20 11:12 . 2009-06-04 12:34 36352 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6000.21061_none_2e516291e1cf33e3\tsgqec.dll
+ 2009-08-20 11:12 . 2009-06-04 12:47 36352 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6000.16865_none_2dcbeeccc8adc633\tsgqec.dll
+ 2009-09-15 14:43 . 2009-08-14 17:01 98376 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6001.22497_none_cd53c52043eb1c22\FWPKCLNT.SYS
+ 2009-09-15 14:43 . 2009-08-15 21:29 85504 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6000.21108_none_cbcfae32467adc51\FWPKCLNT.SYS
+ 2009-09-15 14:43 . 2009-08-14 16:00 17920 c:\windows\winsxs\x86_microsoft-windows-netevent_31bf3856ad364e35_6.0.6002.22200_none_5cb66ecc80d2b9bd\netevent.dll
+ 2009-09-15 14:43 . 2009-08-14 15:53 17920 c:\windows\winsxs\x86_microsoft-windows-netevent_31bf3856ad364e35_6.0.6002.18091_none_5bcc811967fd319c\netevent.dll
+ 2009-09-15 14:43 . 2009-08-14 16:24 17920 c:\windows\winsxs\x86_microsoft-windows-netevent_31bf3856ad364e35_6.0.6001.22497_none_5a75adb883ef144c\netevent.dll
+ 2009-09-15 14:43 . 2009-08-14 16:29 17920 c:\windows\winsxs\x86_microsoft-windows-netevent_31bf3856ad364e35_6.0.6001.18311_none_5a3c8e916a95fcf0\netevent.dll
+ 2009-09-15 14:43 . 2009-08-15 23:56 15360 c:\windows\winsxs\x86_microsoft-windows-netevent_31bf3856ad364e35_6.0.6000.21108_none_58f196ca867ed47b\netevent.dll
+ 2009-09-15 14:43 . 2009-08-14 16:40 15360 c:\windows\winsxs\x86_microsoft-windows-netevent_31bf3856ad364e35_6.0.6000.16908_none_586821dd6d61016f\netevent.dll
+ 2009-09-15 14:42 . 2009-06-10 09:53 53248 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.22150_none_9e993405232e229b\rrinstaller.exe
+ 2009-09-15 14:42 . 2009-06-10 09:54 98816 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.22150_none_9e993405232e229b\mfps.dll
+ 2009-09-15 14:42 . 2009-06-10 09:53 24576 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.22150_none_9e993405232e229b\mfpmp.exe
+ 2009-09-15 14:42 . 2009-04-11 06:27 53248 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.18049_none_9e2369c00a004aef\rrinstaller.exe
+ 2009-09-15 14:42 . 2009-04-11 06:28 98816 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.18049_none_9e2369c00a004aef\mfps.dll
+ 2009-09-15 14:42 . 2009-04-11 06:27 24576 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.18049_none_9e2369c00a004aef\mfpmp.exe
+ 2009-09-15 14:42 . 2009-06-10 10:10 53248 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.22447_none_9cc4940f25f962e7\rrinstaller.exe
+ 2009-09-15 14:42 . 2009-06-10 11:56 98816 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.22447_none_9cc4940f25f962e7\mfps.dll
+ 2009-09-15 14:42 . 2009-06-10 10:10 24576 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.22447_none_9cc4940f25f962e7\mfpmp.exe
+ 2009-01-31 15:10 . 2009-01-31 15:10 53248 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.18270_none_9c1383940cfa6868\rrinstaller.exe
+ 2009-01-31 15:10 . 2009-01-31 15:10 98816 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.18270_none_9c1383940cfa6868\mfps.dll
+ 2009-01-31 15:10 . 2009-01-31 15:10 24576 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.18270_none_9c1383940cfa6868\mfpmp.exe
+ 2009-09-15 14:42 . 2009-06-10 10:01 52736 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.21065_none_9ac68b3928e50d45\rrinstaller.exe
+ 2009-09-15 14:42 . 2009-06-10 12:00 98816 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.21065_none_9ac68b3928e50d45\mfps.dll
+ 2009-09-15 14:42 . 2009-06-10 10:01 24576 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.21065_none_9ac68b3928e50d45\mfpmp.exe
+ 2009-09-15 14:42 . 2009-06-10 10:14 52736 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.16868_none_9a40172a0fc4863e\rrinstaller.exe
+ 2009-09-15 14:42 . 2009-06-10 12:07 98816 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.16868_none_9a40172a0fc4863e\mfps.dll
+ 2009-09-15 14:42 . 2009-06-10 10:15 24576 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.16868_none_9a40172a0fc4863e\mfpmp.exe
+ 2009-08-20 11:12 . 2009-06-15 15:00 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\secur32.dll
+ 2009-08-20 11:12 . 2009-06-15 14:53 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\secur32.dll
+ 2009-08-20 11:12 . 2009-06-15 15:25 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\secur32.dll
+ 2009-08-20 11:12 . 2009-06-15 15:24 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\secur32.dll
+ 2009-08-20 11:12 . 2009-06-15 15:08 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\secur32.dll
+ 2009-08-20 11:12 . 2009-06-15 15:28 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\secur32.dll
+ 2009-09-15 14:43 . 2009-08-14 13:51 30720 c:\windows\winsxs\x86_microsoft-windows-l..istry-support-tcpip_31bf3856ad364e35_6.0.6002.22200_none_888d4c521bb0e416\tcpipreg.sys
+ 2009-09-15 14:43 . 2009-08-14 13:48 30720 c:\windows\winsxs\x86_microsoft-windows-l..istry-support-tcpip_31bf3856ad364e35_6.0.6002.18091_none_87a35e9f02db5bf5\tcpipreg.sys
+ 2009-08-05 11:46 . 2009-07-22 05:58 71680 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.22903_none_a94676798d617013\iesetup.dll
+ 2009-08-05 11:46 . 2009-07-22 05:58 55808 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.22903_none_a94676798d617013\iernonce.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 71680 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.18813_none_a8b209c2744bec3a\iesetup.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 55808 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.18813_none_a8b209c2744bec3a\iernonce.dll
+ 2009-08-05 11:46 . 2009-07-22 04:26 13312 c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.22903_none_dfc3b05f09aa2a6a\msfeedssync.exe
+ 2009-08-05 11:46 . 2009-07-22 05:59 55296 c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.22903_none_dfc3b05f09aa2a6a\msfeedsbs.dll
+ 2009-08-05 11:46 . 2009-07-21 20:13 13312 c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.18813_none_df2f43a7f094a691\msfeedssync.exe
+ 2009-08-05 11:46 . 2009-07-21 21:48 55296 c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.18813_none_df2f43a7f094a691\msfeedsbs.dll
+ 2009-08-05 11:46 . 2009-07-22 06:03 64512 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22903_none_e55eb4d2d0bb388b\WininetPlugin.dll
+ 2009-08-05 11:46 . 2009-07-22 05:58 25600 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22903_none_e55eb4d2d0bb388b\jsproxy.dll
+ 2009-08-05 11:46 . 2009-07-21 21:52 64512 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18813_none_e4ca481bb7a5b4b2\WininetPlugin.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 25600 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18813_none_e4ca481bb7a5b4b2\jsproxy.dll
+ 2009-08-26 14:46 . 2009-06-22 10:13 18944 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6002.22155_none_17865cb11ffa07ae\tzupd.exe
+ 2009-02-01 01:24 . 2009-02-01 01:24 18944 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6002.18054_none_16fbbf9c06dd4e8d\tzupd.exe
+ 2009-08-26 14:46 . 2009-06-22 10:26 18944 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6001.22454_none_159eea7f22d49933\tzupd.exe
+ 2009-02-01 01:24 . 2009-02-01 01:24 18944 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6001.18275_none_1500ac4009c64d7b\tzupd.exe
+ 2009-08-26 14:46 . 2009-06-22 10:21 18944 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6000.21070_none_139ee11525c210e3\tzupd.exe
+ 2009-08-26 14:46 . 2009-06-22 10:30 18944 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6000.16873_none_13186d060ca189dc\tzupd.exe
+ 2009-07-16 22:40 . 2009-06-15 14:58 23552 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.22152_none_ac0f1dd570f10812\lpk.dll
+ 2009-07-16 22:40 . 2009-06-15 14:58 72704 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.22152_none_ac0f1dd570f10812\fontsub.dll
+ 2009-07-16 22:40 . 2009-06-15 14:58 10240 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.22152_none_ac0f1dd570f10812\dciman32.dll
+ 2009-07-16 22:40 . 2009-06-15 12:45 34304 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.22152_none_ac0f1dd570f10812\atmlib.dll
+ 2009-07-16 22:40 . 2009-06-15 14:52 23552 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.18051_none_ab8480c057d44ef1\lpk.dll
+ 2009-07-16 22:40 . 2009-06-15 14:52 72704 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.18051_none_ab8480c057d44ef1\fontsub.dll
+ 2009-07-16 22:40 . 2009-06-15 14:51 10240 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.18051_none_ab8480c057d44ef1\dciman32.dll
+ 2009-07-16 22:40 . 2009-04-11 06:28 34304 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.18051_none_ab8480c057d44ef1\atmlib.dll
+ 2009-07-16 22:40 . 2009-06-15 15:22 23552 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.22450_none_aa26ab5973cc8040\lpk.dll
+ 2009-07-16 22:40 . 2009-06-15 15:20 72704 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.22450_none_aa26ab5973cc8040\fontsub.dll
+ 2009-07-16 22:40 . 2009-06-15 15:19 10240 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.22450_none_aa26ab5973cc8040\dciman32.dll
+ 2009-07-16 22:40 . 2009-06-15 15:19 34304 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.22450_none_aa26ab5973cc8040\atmlib.dll
+ 2009-02-02 17:08 . 2008-01-19 07:34 23552 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.18272_none_a9896d645abd4ddf\lpk.dll
+ 2009-07-16 22:40 . 2009-06-15 15:20 72704 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.18272_none_a9896d645abd4ddf\fontsub.dll
+ 2009-07-16 22:40 . 2009-06-15 15:20 10240 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.18272_none_a9896d645abd4ddf\dciman32.dll
+ 2006-11-02 08:38 . 2006-11-02 09:46 34304 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.18272_none_a9896d645abd4ddf\atmlib.dll
+ 2009-07-16 22:40 . 2009-06-15 15:04 24064 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.21067_none_a83c750976a7f2bc\lpk.dll
+ 2009-07-16 22:40 . 2009-06-15 15:03 72704 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.21067_none_a83c750976a7f2bc\fontsub.dll
+ 2009-07-16 22:40 . 2009-06-15 15:02 10240 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.21067_none_a83c750976a7f2bc\dciman32.dll
+ 2009-07-16 22:40 . 2009-06-15 15:02 34304 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.21067_none_a83c750976a7f2bc\atmlib.dll
+ 2009-07-16 22:40 . 2009-06-15 15:23 24064 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.16870_none_a7a12e2a5d988a40\lpk.dll
+ 2009-07-16 22:40 . 2009-06-15 15:22 72704 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.16870_none_a7a12e2a5d988a40\fontsub.dll
+ 2009-07-16 22:40 . 2009-06-15 15:21 10240 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.16870_none_a7a12e2a5d988a40\dciman32.dll
+ 2009-07-16 22:40 . 2009-06-15 15:20 34304 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.16870_none_a7a12e2a5d988a40\atmlib.dll
+ 2009-08-20 11:12 . 2009-07-17 14:15 71680 c:\windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6002.22179_none_ad4da751702700f0\atl.dll
+ 2009-08-20 11:12 . 2009-07-17 13:54 71680 c:\windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6002.18070_none_acbb07ec57117d17\atl.dll
+ 2009-08-20 11:12 . 2009-07-17 14:24 71680 c:\windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6001.22474_none_ab6233f773052d19\atl.dll
+ 2009-08-20 11:12 . 2009-07-17 14:35 71680 c:\windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6001.18293_none_aac1f52459f8aeb3\atl.dll
+ 2009-08-20 11:12 . 2009-07-17 14:39 71680 c:\windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6000.21088_none_a974fcc975e35390\atl.dll
+ 2009-08-20 11:12 . 2009-07-17 14:52 71680 c:\windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6000.16889_none_a8ec88265cc499db\atl.dll
+ 2009-09-02 13:40 . 2009-08-29 00:19 28672 c:\windows\winsxs\x86_microsoft-windows-a..-experience-apphelp_31bf3856ad364e35_6.0.6002.22213_none_846a2103770ca798\Apphlpdm.dll
+ 2009-09-02 13:40 . 2009-08-29 00:14 28672 c:\windows\winsxs\x86_microsoft-windows-a..-experience-apphelp_31bf3856ad364e35_6.0.6002.18101_none_83e953905de8b92f\Apphlpdm.dll
+ 2009-09-02 13:40 . 2009-08-28 12:24 28672 c:\windows\winsxs\x86_microsoft-windows-a..-experience-apphelp_31bf3856ad364e35_6.0.6001.22509_none_829480c379d8ce8d\Apphlpdm.dll
+ 2009-09-02 13:40 . 2009-08-28 12:39 28672 c:\windows\winsxs\x86_microsoft-windows-a..-experience-apphelp_31bf3856ad364e35_6.0.6001.18320_none_81ec3fa060d3856f\Apphlpdm.dll
+ 2009-09-02 13:40 . 2009-08-29 03:32 28672 c:\windows\winsxs\x86_microsoft-windows-a..-experience-apphelp_31bf3856ad364e35_6.0.6000.21117_none_80a147d97cbc5cfa\Apphlpdm.dll
+ 2009-09-02 13:40 . 2009-08-29 03:40 28672 c:\windows\winsxs\x86_microsoft-windows-a..-experience-apphelp_31bf3856ad364e35_6.0.6000.16917_none_8017d2ec639e89ee\Apphlpdm.dll
+ 2007-01-02 16:27 . 2007-01-02 16:27 12288 c:\windows\Twunk_32.dll
+ 2007-01-02 16:27 . 2007-01-02 16:27 12288 c:\windows\Twunk_16.dll
+ 2007-09-20 16:52 . 2009-09-18 13:35 50724 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2006-11-02 13:05 . 2009-09-18 13:35 84804 c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2009-01-31 14:29 . 2009-09-18 13:35 12346 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-851244455-3135899847-4148953319-1002_UserData.bin
+ 2009-07-29 21:43 . 2008-01-19 07:34 89600 c:\windows\System32\spool\prtprocs\w32x86\HPZPPLHN.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:35 79872 c:\windows\System32\spool\drivers\w32x86\3\HPZPRLHN.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:34 20992 c:\windows\System32\spool\drivers\w32x86\3\HPZISN12.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:34 34304 c:\windows\System32\spool\drivers\w32x86\3\HPZIPT12.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:34 37376 c:\windows\System32\spool\drivers\w32x86\3\HPZIPR12.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:35 52736 c:\windows\System32\spool\drivers\w32x86\3\HPZIPM12.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:35 43008 c:\windows\System32\spool\drivers\w32x86\3\HPZINW12.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:34 53248 c:\windows\System32\spool\drivers\w32x86\3\HPZIDR12.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:34 19968 c:\windows\System32\spool\drivers\w32x86\3\HPFRES50.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:34 11776 c:\windows\System32\spool\drivers\w32x86\3\HPBPROPS.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:35 39936 c:\windows\System32\spool\drivers\w32x86\3\HPBPRO.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:34 11776 c:\windows\System32\spool\drivers\w32x86\3\HPBOIDPS.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:35 29184 c:\windows\System32\spool\drivers\w32x86\3\HPBOID.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:35 28160 c:\windows\System32\spool\drivers\w32x86\3\HPBMIAPI.DLL
+ 2009-08-20 11:12 . 2009-06-15 15:24 72704 c:\windows\System32\secur32.dll
- 2009-04-15 15:05 . 2009-02-13 08:49 72704 c:\windows\System32\secur32.dll
+ 2009-01-31 14:57 . 2009-02-09 07:37 91136 c:\windows\System32\nmwcdcls.dll
- 2009-01-31 14:57 . 2008-09-15 07:56 91136 c:\windows\System32\nmwcdcls.dll
+ 2003-04-18 15:29 . 2003-04-18 15:29 82432 c:\windows\System32\msxml4r.dll
- 2009-06-10 19:46 . 2009-03-08 11:31 13312 c:\windows\System32\msfeedssync.exe
+ 2009-08-05 11:46 . 2009-07-21 20:13 13312 c:\windows\System32\msfeedssync.exe
- 2009-06-10 19:46 . 2009-03-08 11:31 55296 c:\windows\System32\msfeedsbs.dll
+ 2009-08-05 11:46 . 2009-07-21 21:48 55296 c:\windows\System32\msfeedsbs.dll
+ 2009-08-05 11:46 . 2009-07-21 21:52 64512 c:\windows\System32\migration\WininetPlugin.dll
- 2009-06-10 19:47 . 2009-05-09 05:50 64512 c:\windows\System32\migration\WininetPlugin.dll
- 2009-02-01 01:12 . 2009-02-01 01:12 84661 c:\windows\System32\Macromed\Flash\uninstall_plugin.exe
+ 2009-02-01 01:12 . 2009-08-13 12:26 84661 c:\windows\System32\Macromed\Flash\uninstall_plugin.exe
+ 2009-08-05 11:46 . 2009-07-21 21:47 25600 c:\windows\System32\jsproxy.dll
- 2009-06-10 19:47 . 2009-05-09 05:35 25600 c:\windows\System32\jsproxy.dll
- 2009-06-10 19:47 . 2009-05-09 05:34 55808 c:\windows\System32\iernonce.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 55808 c:\windows\System32\iernonce.dll
+ 2006-11-08 15:35 . 2006-11-08 15:35 20480 c:\windows\System32\hpzisn12.dll
+ 2006-11-08 15:35 . 2006-11-08 15:35 29696 c:\windows\System32\hpzipt12.dll
+ 2006-11-08 15:35 . 2006-11-08 15:35 33280 c:\windows\System32\HPZipr12.dll
+ 2006-11-08 15:35 . 2006-11-08 15:35 53248 c:\windows\System32\HPZipm12.dll
+ 2006-11-08 15:35 . 2006-11-08 15:35 43520 c:\windows\System32\HPZinw12.dll
+ 2006-11-08 15:35 . 2006-11-08 15:35 49152 c:\windows\System32\HPZidr12.dll
+ 2009-02-02 23:47 . 2008-01-19 07:34 30208 c:\windows\System32\HPZ3LLHN.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:34 11776 c:\windows\System32\HPBPROPS.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:35 39936 c:\windows\System32\HPBPRO.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:34 11776 c:\windows\System32\HPBOIDPS.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:35 29184 c:\windows\System32\HPBOID.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:35 28160 c:\windows\System32\HPBMIAPI.DLL
- 2009-02-02 17:08 . 2008-01-19 07:34 72704 c:\windows\System32\fontsub.dll
+ 2009-07-16 22:40 . 2009-06-15 15:20 72704 c:\windows\System32\fontsub.dll
- 2009-01-31 15:06 . 2008-08-26 09:26 18816 c:\windows\System32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.sys
+ 2009-09-03 13:52 . 2008-08-26 09:26 18816 c:\windows\System32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.sys
+ 2009-04-17 19:48 . 2009-04-17 19:48 18304 c:\windows\System32\DriverStore\FileRepository\grmnusb.inf_0efc767c\I386\grmngen.sys
+ 2009-02-09 07:37 . 2009-02-09 07:37 22016 c:\windows\System32\DriverStore\FileRepository\ccdcmbo.inf_0b649316\ccdcmbo.sys
+ 2009-02-09 07:37 . 2009-02-09 07:37 91136 c:\windows\System32\DriverStore\FileRepository\ccdcmb.inf_0c298eaf\nmwcdcls.dll
+ 2009-02-09 07:37 . 2009-02-09 07:37 17664 c:\windows\System32\DriverStore\FileRepository\ccdcmb.inf_0c298eaf\ccdcmb.sys
+ 2009-02-02 17:07 . 2008-01-19 06:14 35328 c:\windows\System32\drivers\usbscan.sys
+ 2009-04-17 19:48 . 2009-04-17 19:48 18304 c:\windows\System32\drivers\grmngen.sys
+ 2009-02-02 17:07 . 2008-01-19 05:49 36864 c:\windows\System32\drivers\Dot4usb.sys
+ 2009-02-02 17:07 . 2008-01-19 05:49 16384 c:\windows\System32\drivers\Dot4Prt.sys
- 2008-09-15 07:56 . 2008-09-15 07:56 22016 c:\windows\System32\drivers\ccdcmbo.sys
+ 2009-02-09 07:37 . 2009-02-09 07:37 22016 c:\windows\System32\drivers\ccdcmbo.sys
- 2008-09-15 07:56 . 2008-09-15 07:56 17664 c:\windows\System32\drivers\ccdcmb.sys
+ 2009-02-09 07:37 . 2009-02-09 07:37 17664 c:\windows\System32\drivers\ccdcmb.sys
+ 2009-07-16 22:40 . 2009-06-15 15:20 10240 c:\windows\System32\dciman32.dll
- 2006-11-02 08:38 . 2006-11-02 09:46 10240 c:\windows\System32\dciman32.dll
- 2008-12-07 13:52 . 2009-06-13 08:16 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2008-12-07 13:52 . 2009-09-18 13:27 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2008-12-07 13:52 . 2009-09-18 13:27 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2008-12-07 13:52 . 2009-06-13 08:16 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2008-12-07 13:52 . 2009-06-13 08:16 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2008-12-07 13:52 . 2009-09-18 13:27 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-08-20 11:12 . 2009-06-10 12:07 91136 c:\windows\System32\avifil32.dll
- 2009-02-02 17:09 . 2008-01-19 07:33 91136 c:\windows\System32\avifil32.dll
+ 2009-06-10 19:59 . 2009-06-14 13:21 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-06-10 19:59 . 2009-06-13 08:15 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-06-10 19:59 . 2009-06-14 13:21 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-06-10 19:59 . 2009-06-13 08:15 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-06-10 19:59 . 2009-06-13 08:15 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-06-10 19:59 . 2009-06-14 13:21 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-05-10 13:07 . 2009-05-10 13:07 84480 c:\windows\Installer\35e6b4.msi
+ 2009-01-31 15:32 . 2009-01-31 15:32 62464 c:\windows\Installer\31e56b.msi
+ 2009-07-29 21:49 . 2009-07-29 21:49 68096 c:\windows\Installer\106455a.msi
+ 2009-09-07 17:17 . 2009-09-07 17:17 10134 c:\windows\Installer\{F983B4FE-547B-4C44-BAF7-4F4DBA93D548}\ARPPRODUCTICON.exe
+ 2009-07-29 21:52 . 2009-07-29 21:52 65536 c:\windows\Installer\{EB21A812-671B-4D08-B974-2A347F0D8F70}\NewShortcut4_EB21A812671B4D08B9742A347F0D8F70.exe
+ 2009-06-10 20:15 . 2009-07-28 13:11 35088 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\oisicon.exe
- 2009-06-10 20:15 . 2009-06-12 14:32 35088 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\oisicon.exe
+ 2009-06-10 20:15 . 2009-07-28 13:11 18704 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\mspicons.exe
- 2009-06-10 20:15 . 2009-06-12 14:32 18704 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\mspicons.exe
- 2009-06-10 20:15 . 2009-06-12 14:32 20240 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\cagicon.exe
+ 2009-06-10 20:15 . 2009-07-28 13:11 20240 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\cagicon.exe
+ 2009-09-15 14:44 . 2009-09-15 14:44 32768 c:\windows\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe
+ 2009-09-03 13:53 . 2009-09-03 13:53 15086 c:\windows\Installer\{3D39E775-DDDA-4327-B747-0BDC5F191331}\ARPPRODUCTICON.exe
+ 2009-09-03 13:52 . 2009-09-03 13:52 10134 c:\windows\Installer\{0C973594-7DDF-4BD0-84ED-3517F7622037}\ARPPRODUCTICON.exe
+ 2007-08-24 03:49 . 2007-08-24 03:49 89976 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\DLGSETP.DLL
+ 2006-10-26 19:55 . 2006-10-26 19:55 55056 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\SCANOST.EXE
+ 2006-10-26 19:55 . 2006-10-26 19:55 76576 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\RM.DLL
+ 2006-10-26 19:55 . 2006-10-26 19:55 39208 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\RECALL.DLL
+ 2006-10-26 19:55 . 2006-10-26 19:55 53048 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\OUTLVBA.DLL
+ 2006-10-27 14:16 . 2006-10-27 14:16 46864 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\OUTLRPC.DLL
+ 2006-10-26 19:55 . 2006-10-26 19:55 21312 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\MLSHEXT.DLL
+ 2006-10-26 19:55 . 2006-10-26 19:55 35160 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\DUMPSTER.DLL
+ 2006-11-02 10:25 . 2009-09-03 13:53 86016 c:\windows\inf\infstor.dat
- 2006-11-02 10:25 . 2009-06-10 19:44 86016 c:\windows\inf\infstor.dat
- 2006-11-02 10:25 . 2009-06-10 19:45 51200 c:\windows\inf\infpub.dat
+ 2006-11-02 10:25 . 2009-09-14 21:09 51200 c:\windows\inf\infpub.dat
+ 2009-09-15 14:43 . 2009-08-14 13:52 9728 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\TCPSVCS.EXE
+ 2009-09-15 14:43 . 2009-08-14 13:52 8704 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\HOSTNAME.EXE
+ 2009-09-15 14:43 . 2009-08-14 13:49 9728 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\TCPSVCS.EXE
+ 2009-09-15 14:43 . 2009-08-14 13:49 8704 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\HOSTNAME.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:11 9728 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\TCPSVCS.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:11 8704 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\HOSTNAME.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:16 9728 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\TCPSVCS.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:16 8704 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\HOSTNAME.EXE
+ 2009-09-15 14:43 . 2009-08-15 21:31 9728 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\TCPSVCS.EXE
+ 2009-09-15 14:43 . 2009-08-15 21:31 8704 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\HOSTNAME.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:25 9728 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\TCPSVCS.EXE
+ 2009-09-15 14:43 . 2009-08-14 14:25 8704 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\HOSTNAME.EXE
+ 2009-08-20 11:12 . 2009-07-15 12:46 7680 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\spwmp.dll
+ 2009-08-20 11:12 . 2009-07-15 12:46 4096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\dxmasf.dll
+ 2009-08-20 11:12 . 2009-07-15 12:39 7680 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\spwmp.dll
+ 2009-08-20 11:12 . 2009-07-15 12:39 4096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\dxmasf.dll
+ 2009-08-20 11:12 . 2009-07-15 14:51 7680 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\spwmp.dll
+ 2009-08-20 11:12 . 2009-07-15 14:51 4096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\dxmasf.dll
+ 2009-08-20 11:12 . 2009-07-14 12:58 7680 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\spwmp.dll
+ 2009-08-20 11:12 . 2009-07-14 12:59 4096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\dxmasf.dll
+ 2009-08-20 11:12 . 2009-07-15 14:42 7680 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\spwmp.dll
+ 2009-08-20 11:12 . 2009-07-15 14:43 4096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\dxmasf.dll
+ 2009-08-20 11:12 . 2009-07-14 13:00 7680 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\spwmp.dll
+ 2009-08-20 11:12 . 2009-07-14 13:01 4096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\dxmasf.dll
+ 2009-09-15 14:42 . 2009-06-10 09:53 2048 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.22150_none_9e993405232e229b\mferror.dll
+ 2009-09-15 14:42 . 2009-04-11 04:54 2048 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.18049_none_9e2369c00a004aef\mferror.dll
+ 2009-09-15 14:42 . 2009-06-10 10:10 2048 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.22447_none_9cc4940f25f962e7\mferror.dll
+ 2006-11-02 12:35 . 2006-11-02 12:35 2048 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.18270_none_9c1383940cfa6868\mferror.dll
+ 2009-09-15 14:42 . 2009-06-10 08:43 2048 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.21065_none_9ac68b3928e50d45\mferror.dll
+ 2009-09-15 14:42 . 2009-06-10 08:50 2048 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.16868_none_9a40172a0fc4863e\mferror.dll
+ 2009-08-20 11:12 . 2009-06-15 12:51 9728 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe
+ 2009-08-20 11:12 . 2009-06-15 12:48 9728 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
+ 2009-08-20 11:12 . 2009-06-15 13:03 9728 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe
+ 2009-08-20 11:12 . 2009-06-15 12:57 9728 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
+ 2009-08-20 11:12 . 2009-06-15 12:59 7680 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe
+ 2009-08-20 11:12 . 2009-06-15 13:10 7680 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
+ 2009-08-26 14:46 . 2009-06-22 10:13 2048 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6002.22155_none_17865cb11ffa07ae\tzres.dll
+ 2009-08-26 14:46 . 2009-06-22 10:09 2048 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6002.18054_none_16fbbf9c06dd4e8d\tzres.dll
+ 2009-08-26 14:46 . 2009-06-22 10:26 2048 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6001.22454_none_159eea7f22d49933\tzres.dll
+ 2009-08-26 14:46 . 2009-06-22 10:22 2048 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6001.18275_none_1500ac4009c64d7b\tzres.dll
+ 2009-08-26 14:46 . 2009-06-22 08:44 2048 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6000.21070_none_139ee11525c210e3\tzres.dll
+ 2009-08-26 14:46 . 2009-06-22 08:44 2048 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6000.16873_none_13186d060ca189dc\tzres.dll
+ 2009-09-02 13:40 . 2009-08-29 00:24 2560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6002.22213_none_0e8a7f670895bd4d\AcRes.dll
+ 2006-11-02 07:11 . 2006-11-02 07:11 2560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6002.18101_none_0e09b1f3ef71cee4\AcRes.dll
+ 2009-09-02 13:40 . 2009-08-28 10:09 2560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6001.22509_none_0cb4df270b61e442\AcRes.dll
+ 2009-02-01 01:28 . 2009-02-01 01:28 2560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6001.18320_none_0c0c9e03f25c9b24\AcRes.dll
+ 2009-09-02 13:40 . 2009-08-28 23:11 2560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6000.21117_none_0ac1a63d0e4572af\AcRes.dll
+ 2009-09-02 13:40 . 2009-08-28 23:15 2560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6000.16917_none_0a38314ff5279fa3\AcRes.dll
+ 2009-02-02 23:47 . 2008-01-19 07:34 8192 c:\windows\System32\spool\drivers\w32x86\3\HPBMINI.DLL
+ 2009-08-20 11:12 . 2009-06-15 12:57 9728 c:\windows\System32\lsass.exe
- 2009-02-02 23:47 . 2008-01-19 07:33 9728 c:\windows\System32\lsass.exe
+ 2009-02-02 23:47 . 2008-01-19 07:34 8192 c:\windows\System32\HPBMINI.DLL
+ 2009-03-19 13:48 . 2009-03-19 13:48 8320 c:\windows\System32\DriverStore\FileRepository\nmwcdnsuc.inf_545c47c7\nmwcdnsuc.sys
+ 2009-04-17 19:48 . 2009-04-17 19:48 9344 c:\windows\System32\DriverStore\FileRepository\grmnusb.inf_0efc767c\I386\grmnusb.sys
+ 2009-02-09 07:37 . 2009-02-09 07:37 7808 c:\windows\System32\DriverStore\FileRepository\ccdcmbm.inf_65311714\usbser_lowerflt.sys
+ 2009-02-09 07:37 . 2009-02-09 07:37 7808 c:\windows\System32\DriverStore\FileRepository\ccdcmbcj.inf_6fbfd776\usbser_lowerfltj.sys
+ 2009-02-09 07:37 . 2009-02-09 07:37 7808 c:\windows\System32\drivers\usbser_lowerfltj.sys
+ 2009-02-09 07:37 . 2009-02-09 07:37 7808 c:\windows\System32\drivers\usbser_lowerflt.sys
+ 2009-03-19 13:48 . 2009-03-19 13:48 8320 c:\windows\System32\drivers\nmwcdnsuc.sys
+ 2009-04-17 19:48 . 2009-04-17 19:48 9344 c:\windows\System32\drivers\grmnusb.sys
+ 2009-09-18 13:33 . 2009-09-18 13:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2009-06-13 08:14 . 2009-06-13 08:14 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2009-06-13 08:14 . 2009-06-13 08:14 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-09-18 13:33 . 2009-09-18 13:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-09-07 17:17 . 2009-09-07 17:17 8854 c:\windows\Installer\{F983B4FE-547B-4C44-BAF7-4F4DBA93D548}\Uninstall_QA_OTI_H_FE5D756F71E147C4972AD6775344B40B.exe
+ 2009-09-07 17:17 . 2009-09-07 17:17 8854 c:\windows\Installer\{F983B4FE-547B-4C44-BAF7-4F4DBA93D548}\NewShortcut3_F30B5B541F7D4207BF3032ED8CAF6640.exe
+ 2009-09-07 17:17 . 2009-09-07 17:17 8854 c:\windows\Installer\{F983B4FE-547B-4C44-BAF7-4F4DBA93D548}\NewShortcut2_1C7B7089989A424FB39D41A32581C775.exe
+ 2009-09-03 13:51 . 2009-09-03 13:51 3262 c:\windows\Installer\{52D02A2B-03D2-4E34-A358-DC5D951FD296}\ARPPRODUCTICON.exe
+ 2009-08-20 11:12 . 2009-06-10 11:46 160256 c:\windows\winsxs\x86_microsoft-windows-workstationservice_31bf3856ad364e35_6.0.6002.22150_none_ce741cb6ed3e398c\wkssvc.dll
+ 2009-08-20 11:12 . 2009-06-10 11:42 160256 c:\windows\winsxs\x86_microsoft-windows-workstationservice_31bf3856ad364e35_6.0.6002.18049_none_cdfe5271d41061e0\wkssvc.dll
+ 2009-08-20 11:12 . 2009-06-10 12:00 160256 c:\windows\winsxs\x86_microsoft-windows-workstationservice_31bf3856ad364e35_6.0.6001.22447_none_cc9f7cc0f00979d8\wkssvc.dll
+ 2009-08-20 11:12 . 2009-06-10 12:12 160256 c:\windows\winsxs\x86_microsoft-windows-workstationservice_31bf3856ad364e35_6.0.6001.18270_none_cbee6c45d70a7f59\wkssvc.dll
+ 2009-08-20 11:12 . 2009-06-10 12:06 158208 c:\windows\winsxs\x86_microsoft-windows-workstationservice_31bf3856ad364e35_6.0.6000.21065_none_caa173eaf2f52436\wkssvc.dll
+ 2009-08-20 11:12 . 2009-06-10 12:16 156160 c:\windows\winsxs\x86_microsoft-windows-workstationservice_31bf3856ad364e35_6.0.6000.16868_none_ca1affdbd9d49d2f\wkssvc.dll
+ 2009-09-15 14:42 . 2009-07-11 19:10 513536 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.22170_none_9e68a7441b62d132\wlansvc.dll
+ 2009-09-15 14:42 . 2009-07-11 19:10 302592 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.22170_none_9e68a7441b62d132\wlansec.dll
+ 2009-09-15 14:42 . 2009-07-11 19:10 293376 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.22170_none_9e68a7441b62d132\wlanmsm.dll
+ 2009-09-15 14:42 . 2009-07-11 19:01 513536 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18064_none_9deddb8d02397ad3\wlansvc.dll
+ 2009-09-15 14:42 . 2009-07-11 19:01 302592 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18064_none_9deddb8d02397ad3\wlansec.dll
+ 2009-09-15 14:42 . 2009-07-11 19:01 293376 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18064_none_9deddb8d02397ad3\wlanmsm.dll
+ 2009-09-15 14:42 . 2009-07-11 19:17 513536 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.22468_none_9c9507981e2d2ad5\wlansvc.dll
+ 2009-09-15 14:42 . 2009-07-11 19:17 302592 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.22468_none_9c9507981e2d2ad5\wlansec.dll
+ 2009-09-15 14:42 . 2009-07-11 19:17 293376 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.22468_none_9c9507981e2d2ad5\wlanmsm.dll
+ 2009-09-15 14:42 . 2009-07-11 19:32 513024 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.18288_none_9bf5c90f051fc5c6\wlansvc.dll
+ 2009-09-15 14:42 . 2009-07-11 19:32 302592 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.18288_none_9bf5c90f051fc5c6\wlansec.dll
+ 2009-09-15 14:42 . 2009-07-11 19:32 293376 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.18288_none_9bf5c90f051fc5c6\wlanmsm.dll
+ 2009-09-15 14:42 . 2009-07-11 19:24 502784 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.21082_none_9a92fd9a211c6fd7\wlansvc.dll
+ 2009-09-15 14:42 . 2009-07-11 19:24 299520 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.21082_none_9a92fd9a211c6fd7\wlansec.dll
+ 2009-09-15 14:42 . 2009-07-11 19:24 289280 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.21082_none_9a92fd9a211c6fd7\wlanmsm.dll
+ 2009-09-15 14:42 . 2009-07-11 19:32 502272 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.16884_none_9a0b894107fccf79\wlansvc.dll
+ 2009-09-15 14:42 . 2009-07-11 19:32 297984 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.16884_none_9a0b894107fccf79\wlansec.dll
+ 2009-09-15 14:42 . 2009-07-11 19:32 290816 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.16884_none_9a0b894107fccf79\wlanmsm.dll
+ 2009-08-20 11:12 . 2009-06-10 11:44 123904 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22150_none_946bf5749f2e8c01\msvfw32.dll
+ 2009-02-02 17:08 . 2008-01-19 07:35 123904 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.18049_none_93f62b2f8600b455\msvfw32.dll
+ 2009-08-20 11:12 . 2009-06-10 11:58 123904 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.22447_none_9297557ea1f9cc4d\msvfw32.dll
+ 2009-02-02 17:08 . 2008-01-19 07:35 123904 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.18270_none_91e6450388fad1ce\msvfw32.dll
+ 2009-08-20 11:12 . 2009-06-10 12:03 123904 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.21065_none_90994ca8a4e576ab\msvfw32.dll
+ 2009-08-20 11:12 . 2009-06-10 12:10 123904 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.16868_none_9012d8998bc4efa4\msvfw32.dll
+ 2009-09-15 14:43 . 2009-08-15 23:58 167424 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpipcfg.dll
+ 2009-09-15 14:43 . 2009-08-15 21:30 816640 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys
+ 2009-09-15 14:43 . 2009-08-14 16:42 167424 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpipcfg.dll
+ 2009-09-15 14:43 . 2009-08-14 14:24 813568 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys
+ 2009-09-15 14:43 . 2009-08-14 13:51 106496 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\netiohlp.dll
+ 2009-09-15 14:43 . 2009-08-14 13:48 105984 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\netiohlp.dll
+ 2009-09-15 14:43 . 2009-08-14 16:24 105472 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\netiohlp.dll
+ 2009-09-15 14:43 . 2009-08-14 16:29 104960 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\netiohlp.dll
+ 2009-09-15 14:43 . 2009-08-15 23:56 103936 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\netiohlp.dll
+ 2009-09-15 14:43 . 2009-08-14 16:40 103936 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\netiohlp.dll
+ 2009-09-15 14:43 . 2009-08-14 16:33 905784 c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys
+ 2009-09-15 14:43 . 2009-08-14 16:27 904776 c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys
+ 2009-09-15 14:43 . 2009-08-14 17:01 900168 c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys
+ 2009-09-15 14:43 . 2009-08-14 17:07 897608 c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys
+ 2009-08-20 11:12 . 2009-06-04 12:54 136192 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6002.22146_none_3238de2ddc072aae\aaclient.dll
+ 2009-08-20 11:12 . 2009-04-11 06:28 136192 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6002.18045_none_31ae4118c2ea718d\aaclient.dll
+ 2009-08-20 11:12 . 2009-06-04 12:29 136192 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6001.22443_none_304f6b67dee38985\aaclient.dll
+ 2009-02-02 17:09 . 2008-01-19 07:33 136192 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6001.18266_none_2fb32dbcc5d3707b\aaclient.dll
+ 2009-08-20 11:12 . 2009-06-04 12:25 116736 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6000.21061_none_2e516291e1cf33e3\aaclient.dll
+ 2009-08-20 11:12 . 2009-06-04 12:36 116736 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6000.16865_none_2dcbeeccc8adc633\aaclient.dll
+ 2009-08-20 11:12 . 2009-06-15 15:00 270848 c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6002.22152_none_2452506b6bad8187\schannel.dll
+ 2009-08-20 11:12 . 2009-06-15 14:53 270848 c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6002.18051_none_23c7b3565290c866\schannel.dll
+ 2009-08-20 11:12 . 2009-06-15 15:25 270848 c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6001.22450_none_2269ddef6e88f9b5\schannel.dll
+ 2009-08-20 11:12 . 2009-06-15 15:24 270848 c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6001.18272_none_21cc9ffa5579c754\schannel.dll
+ 2009-08-20 11:12 . 2009-06-15 15:08 272384 c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6000.21067_none_207fa79f71646c31\schannel.dll
+ 2009-08-20 11:12 . 2009-06-15 15:28 272384 c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6000.16870_none_1fe460c0585503b5\schannel.dll
+ 2009-08-20 11:12 . 2009-06-15 14:59 217600 c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6002.22152_none_7eeef23078f56dde\msv1_0.dll
+ 2009-08-20 11:12 . 2009-06-15 14:53 218624 c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6002.18051_none_7e64551b5fd8b4bd\msv1_0.dll
+ 2009-08-20 11:12 . 2009-06-15 15:24 213504 c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6001.22450_none_7d067fb47bd0e60c\msv1_0.dll
+ 2009-08-20 11:12 . 2009-06-15 15:22 213504 c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6001.18272_none_7c6941bf62c1b3ab\msv1_0.dll
+ 2009-08-20 11:12 . 2009-06-15 15:06 216576 c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6000.21067_none_7b1c49647eac5888\msv1_0.dll
+ 2009-08-20 11:12 . 2009-06-15 15:25 216576 c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6000.16870_none_7a810285659cf00c\msv1_0.dll
+ 2009-08-20 11:12 . 2009-06-15 14:58 500736 c:\windows\winsxs\x86_microsoft-windows-security-kerberos_31bf3856ad364e35_6.0.6002.22152_none_e912e288c7383abe\kerberos.dll
+ 2009-08-20 11:12 . 2009-06-15 14:52 499712 c:\windows\winsxs\x86_microsoft-windows-security-kerberos_31bf3856ad364e35_6.0.6002.18051_none_e8884573ae1b819d\kerberos.dll
+ 2009-08-20 11:12 . 2009-06-15 15:22 500736 c:\windows\winsxs\x86_microsoft-windows-security-kerberos_31bf3856ad364e35_6.0.6001.22450_none_e72a700cca13b2ec\kerberos.dll
+ 2009-08-20 11:12 . 2009-06-15 15:21 499712 c:\windows\winsxs\x86_microsoft-windows-security-kerberos_31bf3856ad364e35_6.0.6001.18272_none_e68d3217b104808b\kerberos.dll
+ 2009-08-20 11:12 . 2009-06-15 15:04 496640 c:\windows\winsxs\x86_microsoft-windows-security-kerberos_31bf3856ad364e35_6.0.6000.21067_none_e54039bcccef2568\kerberos.dll
+ 2009-08-20 11:12 . 2009-06-15 15:23 494592 c:\windows\winsxs\x86_microsoft-windows-security-kerberos_31bf3856ad364e35_6.0.6000.16870_none_e4a4f2ddb3dfbcec\kerberos.dll
+ 2009-08-20 11:12 . 2009-06-15 15:00 175104 c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6002.22152_none_3d095074931fbe8f\wdigest.dll
+ 2009-08-20 11:12 . 2009-06-15 14:54 175104 c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6002.18051_none_3c7eb35f7a03056e\wdigest.dll
+ 2009-08-20 11:12 . 2009-06-15 15:26 175104 c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6001.22450_none_3b20ddf895fb36bd\wdigest.dll
+ 2009-08-20 11:12 . 2009-06-15 15:24 175104 c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6001.18272_none_3a83a0037cec045c\wdigest.dll
+ 2009-08-20 11:12 . 2009-06-15 15:09 175104 c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6000.21067_none_3936a7a898d6a939\wdigest.dll
+ 2009-08-20 11:12 . 2009-06-15 15:29 175104 c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6000.16870_none_389b60c97fc740bd\wdigest.dll
+ 2009-09-15 14:42 . 2009-06-06 12:55 726528 c:\windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.22886_none_66022984264aac18\jscript.dll
+ 2009-09-15 14:42 . 2009-06-06 05:01 726528 c:\windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.18795_none_656cbc830d360ee8\jscript.dll
+ 2009-09-15 14:43 . 2009-08-14 16:23 438272 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6001.22497_none_cd53c52043eb1c22\IKEEXT.DLL
+ 2009-09-15 14:43 . 2009-08-14 16:22 595456 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6001.22497_none_cd53c52043eb1c22\FWPUCLNT.DLL
+ 2009-09-15 14:43 . 2009-08-14 16:21 328704 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6001.22497_none_cd53c52043eb1c22\BFE.DLL
+ 2009-09-15 14:43 . 2009-08-15 23:54 416768 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6000.21108_none_cbcfae32467adc51\IKEEXT.DLL
+ 2009-09-15 14:43 . 2009-08-15 23:54 543232 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6000.21108_none_cbcfae32467adc51\FWPUCLNT.DLL
+ 2009-09-15 14:43 . 2009-08-15 23:53 317440 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6000.21108_none_cbcfae32467adc51\BFE.DLL
+ 2009-09-15 14:43 . 2009-08-14 17:01 220232 c:\windows\winsxs\x86_microsoft-windows-netio-infrastructure_31bf3856ad364e35_6.0.6001.22497_none_56cac20cceadcb78\netio.sys
+ 2009-09-15 14:43 . 2009-08-16 00:32 214104 c:\windows\winsxs\x86_microsoft-windows-netio-infrastructure_31bf3856ad364e35_6.0.6000.21108_none_5546ab1ed13d8ba7\netio.sys
+ 2009-09-15 14:43 . 2009-08-14 17:16 213592 c:\windows\winsxs\x86_microsoft-windows-netio-infrastructure_31bf3856ad364e35_6.0.6000.16908_none_54bd3631b81fb89b\netio.sys
+ 2009-08-20 11:12 . 2009-07-15 12:46 313344 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmpdxm_31bf3856ad364e35_6.0.6002.22172_none_a65e88df3e466bbf\wmpdxm.dll
+ 2009-08-20 11:12 . 2009-07-15 12:39 313344 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmpdxm_31bf3856ad364e35_6.0.6002.18065_none_a5e2bcde251dfc09\wmpdxm.dll
+ 2009-08-20 11:12 . 2009-07-15 14:52 313344 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmpdxm_31bf3856ad364e35_6.0.6001.22470_none_a47616634121e3ed\wmpdxm.dll
+ 2009-08-20 11:12 . 2009-07-14 13:00 313344 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmpdxm_31bf3856ad364e35_6.0.6001.18289_none_a3eaaa60280446fc\wmpdxm.dll
+ 2009-08-20 11:12 . 2009-07-15 14:44 313344 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmpdxm_31bf3856ad364e35_6.0.6000.21083_none_a287deeb4400f10d\wmpdxm.dll
+ 2009-08-20 11:12 . 2009-07-14 13:02 313344 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmpdxm_31bf3856ad364e35_6.0.6000.16885_none_a2006a922ae150af\wmpdxm.dll
+ 2009-08-20 11:12 . 2009-07-15 12:45 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\wmpshare.exe
+ 2009-08-20 11:12 . 2009-07-15 12:46 168960 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\wmplayer.exe
+ 2009-08-20 11:12 . 2009-07-15 12:46 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\wmpconfig.exe
+ 2009-08-20 11:12 . 2009-07-15 12:39 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\wmpshare.exe
+ 2009-08-20 11:12 . 2009-07-15 12:39 168960 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\wmplayer.exe
+ 2009-08-20 11:12 . 2009-07-15 12:39 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\wmpconfig.exe
+ 2009-08-20 11:12 . 2009-07-15 13:05 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\wmpshare.exe
+ 2009-08-20 11:12 . 2009-07-15 13:06 168960 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\wmplayer.exe
+ 2009-08-20 11:12 . 2009-07-15 13:06 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\wmpconfig.exe
+ 2009-08-20 11:12 . 2009-07-14 10:58 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\wmpshare.exe
+ 2009-08-20 11:12 . 2009-07-14 10:59 168960 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\wmplayer.exe
+ 2009-08-20 11:12 . 2009-07-14 10:59 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\wmpconfig.exe
+ 2009-08-20 11:12 . 2009-07-15 12:53 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\wmpshare.exe
+ 2009-08-20 11:12 . 2009-07-15 12:53 168960 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\wmplayer.exe
+ 2009-08-20 11:12 . 2009-07-15 12:53 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\wmpconfig.exe
+ 2009-08-20 11:12 . 2009-07-14 11:10 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\wmpshare.exe
+ 2009-08-20 11:12 . 2009-07-14 11:10 168960 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\wmplayer.exe
+ 2009-08-20 11:12 . 2009-07-14 11:11 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\wmpconfig.exe
+ 2009-08-20 11:12 . 2009-06-15 21:17 439880 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\ksecdd.sys
+ 2009-08-20 11:12 . 2009-06-15 23:15 439864 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\ksecdd.sys
+ 2009-08-20 11:12 . 2009-06-15 18:40 439880 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\ksecdd.sys
+ 2009-08-20 11:12 . 2009-06-15 18:20 439896 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\ksecdd.sys
+ 2009-08-20 11:12 . 2009-06-15 23:20 408136 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\ksecdd.sys
+ 2009-08-20 11:12 . 2009-06-15 18:12 408136 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\ksecdd.sys
+ 2009-09-15 14:42 . 2009-07-11 17:07 127488 c:\windows\winsxs\x86_microsoft-windows-l..securityhelperclass_31bf3856ad364e35_6.0.6002.22170_none_883d49e88f57f26d\L2SecHC.dll
+ 2009-09-15 14:42 . 2009-07-11 17:03 127488 c:\windows\winsxs\x86_microsoft-windows-l..securityhelperclass_31bf3856ad364e35_6.0.6002.18064_none_87c27e31762e9c0e\L2SecHC.dll
+ 2009-09-15 14:42 . 2009-07-11 19:14 127488 c:\windows\winsxs\x86_microsoft-windows-l..securityhelperclass_31bf3856ad364e35_6.0.6001.22468_none_8669aa3c92224c10\L2SecHC.dll
+ 2009-09-15 14:42 . 2009-07-11 19:29 127488 c:\windows\winsxs\x86_microsoft-windows-l..securityhelperclass_31bf3856ad364e35_6.0.6001.18288_none_85ca6bb37914e701\L2SecHC.dll
+ 2009-09-15 14:42 . 2009-07-11 19:18 124928 c:\windows\winsxs\x86_microsoft-windows-l..securityhelperclass_31bf3856ad364e35_6.0.6000.21082_none_8467a03e95119112\L2SecHC.dll
+ 2009-09-15 14:42 . 2009-07-11 19:26 123904 c:\windows\winsxs\x86_microsoft-windows-l..securityhelperclass_31bf3856ad364e35_6.0.6000.16884_none_83e02be57bf1f0b4\L2SecHC.dll
+ 2009-08-05 11:46 . 2009-07-22 05:58 164352 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.22903_none_48182df4dd072fee\ieui.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 164352 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18813_none_4783c13dc3f1ac15\ieui.dll
+ 2009-08-05 11:46 . 2009-07-22 05:58 109056 c:\windows\winsxs\x86_microsoft-windows-ie-sysprep_31bf3856ad364e35_8.0.6001.22903_none_ff07db25e8e4acd8\iesysprep.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 109056 c:\windows\winsxs\x86_microsoft-windows-ie-sysprep_31bf3856ad364e35_8.0.6001.18813_none_fe736e6ecfcf28ff\iesysprep.dll
+ 2009-08-05 11:46 . 2009-07-22 04:27 173056 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.22903_none_a94676798d617013\ie4uinit.exe
+ 2009-08-05 11:46 . 2009-07-21 20:13 173056 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.18813_none_a8b209c2744bec3a\ie4uinit.exe
+ 2009-08-05 11:46 . 2009-07-22 06:02 129536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.22903_none_2b196baebb6c56e8\sqmapi.dll
+ 2009-08-05 11:46 . 2009-07-21 21:51 129536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.18813_none_2a84fef7a256d30f\sqmapi.dll
+ 2009-08-05 11:46 . 2009-07-22 06:01 206848 c:\windows\winsxs\x86_microsoft-windows-ie-objectcontrolviewer_31bf3856ad364e35_8.0.6001.22903_none_1a9c2981430b3c56\occache.dll
+ 2009-08-05 11:46 . 2009-07-21 21:50 206848 c:\windows\winsxs\x86_microsoft-windows-ie-objectcontrolviewer_31bf3856ad364e35_8.0.6001.18813_none_1a07bcca29f5b87d\occache.dll
+ 2009-08-05 11:46 . 2009-07-22 06:04 638232 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.22903_none_12d7c15e48e6a76e\iexplore.exe
+ 2009-08-05 11:46 . 2009-07-22 04:27 133632 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.22903_none_12d7c15e48e6a76e\ieUnatt.exe
+ 2009-08-05 11:46 . 2009-07-21 21:53 638216 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18813_none_124354a72fd12395\iexplore.exe
+ 2009-08-05 11:46 . 2009-07-21 20:13 133632 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18813_none_124354a72fd12395\ieUnatt.exe
+ 2009-08-05 11:46 . 2009-07-22 05:58 197632 c:\windows\winsxs\x86_microsoft-windows-ie-ieshims_31bf3856ad364e35_8.0.6001.22903_none_2b02f14ac9212978\IEShims.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 197632 c:\windows\winsxs\x86_microsoft-windows-ie-ieshims_31bf3856ad364e35_8.0.6001.18813_none_2a6e8493b00ba59f\IEShims.dll
+ 2009-08-05 11:46 . 2009-07-22 05:58 246272 c:\windows\winsxs\x86_microsoft-windows-ie-ieproxy_31bf3856ad364e35_8.0.6001.22903_none_73a4a5b47978c30a\ieproxy.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 246272 c:\windows\winsxs\x86_microsoft-windows-ie-ieproxy_31bf3856ad364e35_8.0.6001.18813_none_731038fd60633f31\ieproxy.dll
+ 2009-08-26 14:44 . 2009-08-06 13:45 100352 c:\windows\winsxs\x86_microsoft-windows-ie-iecompat_31bf3856ad364e35_8.0.6001.22909_none_846b4b875fcce288\iecompat.dll
+ 2009-07-23 12:48 . 2009-06-30 11:31 101376 c:\windows\winsxs\x86_microsoft-windows-ie-iecompat_31bf3856ad364e35_8.0.6001.22895_none_8405f92d60197b7e\iecompat.dll
+ 2009-07-03 18:37 . 2009-05-30 13:15 102912 c:\windows\winsxs\x86_microsoft-windows-ie-iecompat_31bf3856ad364e35_8.0.6001.22883_none_840ec88560132cdf\iecompat.dll
+ 2009-08-26 14:44 . 2009-08-06 03:44 100352 c:\windows\winsxs\x86_microsoft-windows-ie-iecompat_31bf3856ad364e35_8.0.6001.18819_none_83d6ded046b75eaf\iecompat.dll
+ 2009-07-23 12:48 . 2009-06-30 03:37 101376 c:\windows\winsxs\x86_microsoft-windows-ie-iecompat_31bf3856ad364e35_8.0.6001.18805_none_83ddad9446b2dd62\iecompat.dll
+ 2009-07-03 18:37 . 2009-06-02 03:27 102912 c:\windows\winsxs\x86_microsoft-windows-ie-iecompat_31bf3856ad364e35_8.0.6001.18793_none_837a5bce46fda906\iecompat.dll
+ 2009-08-05 11:46 . 2009-07-22 05:59 594432 c:\windows\winsxs\x86_microsoft-windows-ie-feeds-platform_31bf3856ad364e35_8.0.6001.22903_none_435c4ba1695e8b43\msfeeds.dll
+ 2009-08-05 11:46 . 2009-07-21 21:48 594432 c:\windows\winsxs\x86_microsoft-windows-ie-feeds-platform_31bf3856ad364e35_8.0.6001.18813_none_42c7deea5049076a\msfeeds.dll
+ 2009-08-05 11:46 . 2009-07-22 05:58 184320 c:\windows\winsxs\x86_microsoft-windows-ie-behaviors_31bf3856ad364e35_8.0.6001.22903_none_2039460420f600ed\iepeers.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 184320 c:\windows\winsxs\x86_microsoft-windows-ie-behaviors_31bf3856ad364e35_8.0.6001.18813_none_1fa4d94d07e07d14\iepeers.dll
+ 2009-08-05 11:46 . 2009-07-22 05:58 386048 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitbranding_31bf3856ad364e35_8.0.6001.22903_none_57c62dce86655952\iedkcs32.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 386048 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitbranding_31bf3856ad364e35_8.0.6001.18813_none_5731c1176d4fd579\iedkcs32.dll
+ 2009-08-05 11:46 . 2009-07-22 06:03 915456 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22903_none_e55eb4d2d0bb388b\wininet.dll
+ 2009-08-05 11:46 . 2009-07-21 21:52 915456 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18813_none_e4ca481bb7a5b4b2\wininet.dll
+ 2009-07-16 22:40 . 2009-06-15 12:45 289792 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.22152_none_ac0f1dd570f10812\atmfd.dll
+ 2009-07-16 22:40 . 2009-06-15 12:42 289792 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.18051_none_ab8480c057d44ef1\atmfd.dll
+ 2009-07-16 22:40 . 2009-06-15 12:56 289792 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.22450_none_aa26ab5973cc8040\atmfd.dll
+ 2009-07-16 22:40 . 2009-06-15 12:52 289792 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.18272_none_a9896d645abd4ddf\atmfd.dll
+ 2009-07-16 22:40 . 2009-06-15 12:53 289792 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.21067_none_a83c750976a7f2bc\atmfd.dll
+ 2009-07-16 22:40 . 2009-06-15 13:03 289792 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.16870_none_a7a12e2a5d988a40\atmfd.dll
+ 2009-07-16 22:40 . 2009-06-15 15:00 156672 c:\windows\winsxs\x86_microsoft-windows-font-embedding_31bf3856ad364e35_6.0.6002.22152_none_b7fc28a4355e72c9\t2embed.dll
+ 2009-07-16 22:40 . 2009-06-15 14:53 156672 c:\windows\winsxs\x86_microsoft-windows-font-embedding_31bf3856ad364e35_6.0.6002.18051_none_b7718b8f1c41b9a8\t2embed.dll
+ 2009-07-16 22:40 . 2009-06-15 15:26 156672 c:\windows\winsxs\x86_microsoft-windows-font-embedding_31bf3856ad364e35_6.0.6001.22450_none_b613b6283839eaf7\t2embed.dll
+ 2009-07-16 22:40 . 2009-06-15 15:24 156672 c:\windows\winsxs\x86_microsoft-windows-font-embedding_31bf3856ad364e35_6.0.6001.18272_none_b57678331f2ab896\t2embed.dll
+ 2009-07-16 22:40 . 2009-06-15 15:09 156160 c:\windows\winsxs\x86_microsoft-windows-font-embedding_31bf3856ad364e35_6.0.6000.21067_none_b4297fd83b155d73\t2embed.dll
+ 2009-07-16 22:40 . 2009-06-15 15:29 156160 c:\windows\winsxs\x86_microsoft-windows-font-embedding_31bf3856ad364e35_6.0.6000.16870_none_b38e38f92205f4f7\t2embed.dll
+ 2009-09-15 14:40 . 2009-07-21 12:27 171008 c:\windows\winsxs\x86_microsoft-windows-ehome-ehkeyctl_31bf3856ad364e35_6.0.6002.22181_none_d867f28696ca3d06\ehkeyctl.dll
+ 2009-09-15 14:40 . 2009-07-21 12:26 171008 c:\windows\winsxs\x86_microsoft-windows-ehome-ehkeyctl_31bf3856ad364e35_6.0.6002.18072_none_d7ea25f17da39aa2\ehkeyctl.dll
+ 2009-09-15 14:40 . 2009-07-22 00:24 171008 c:\windows\winsxs\x86_microsoft-windows-ehome-ehkeyctl_31bf3856ad364e35_6.0.6001.22476_none_d69151fc99974aa4\ehkeyctl.dll
+ 2009-09-15 14:40 . 2009-07-21 14:45 171008 c:\windows\winsxs\x86_microsoft-windows-ehome-ehkeyctl_31bf3856ad364e35_6.0.6001.18295_none_d5f11329808acc3e\ehkeyctl.dll
+ 2009-09-15 14:40 . 2009-07-21 14:39 171008 c:\windows\winsxs\x86_microsoft-windows-ehome-ehkeyctl_31bf3856ad364e35_6.0.6000.21090_none_d48f47fe9c868fa6\ehkeyctl.dll
+ 2009-09-15 14:40 . 2009-07-21 14:56 171008 c:\windows\winsxs\x86_microsoft-windows-ehome-ehkeyctl_31bf3856ad364e35_6.0.6000.16891_none_d406d35b8367d5f1\ehkeyctl.dll
+ 2009-09-02 13:40 . 2009-08-29 02:46 173056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.22213_none_0e8e808f089222a9\AcXtrnal.dll
+ 2009-09-02 13:40 . 2009-08-29 02:46 542720 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.22213_none_0e8e808f089222a9\AcLayers.dll
+ 2009-09-02 13:40 . 2009-08-29 02:30 173056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.18101_none_0e0db31bef6e3440\AcXtrnal.dll
+ 2009-09-02 13:40 . 2009-08-29 02:30 542720 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.18101_none_0e0db31bef6e3440\AcLayers.dll
+ 2009-09-02 13:40 . 2009-08-28 12:24 173056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.22509_none_0cb8e04f0b5e499e\AcXtrnal.dll
+ 2009-09-02 13:40 . 2009-08-28 12:24 541696 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.22509_none_0cb8e04f0b5e499e\AcLayers.dll
+ 2009-09-02 13:40 . 2009-08-28 12:39 173056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18320_none_0c109f2bf2590080\AcXtrnal.dll
+ 2009-09-02 13:40 . 2009-08-28 12:38 541696 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18320_none_0c109f2bf2590080\AcLayers.dll
+ 2009-09-02 13:40 . 2009-08-29 03:31 173056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.21117_none_0ac5a7650e41d80b\AcXtrnal.dll
+ 2009-09-02 13:40 . 2009-08-29 03:31 537600 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.21117_none_0ac5a7650e41d80b\AcLayers.dll
+ 2009-09-02 13:40 . 2009-08-29 03:40 173056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.16917_none_0a3c3277f52404ff\AcXtrnal.dll
+ 2009-09-02 13:40 . 2009-08-29 03:40 537600 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.16917_none_0a3c3277f52404ff\AcLayers.dll
+ 2009-09-02 13:40 . 2009-08-29 02:46 458752 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6002.22213_none_0e8d804508930952\AcSpecfc.dll
+ 2009-09-02 13:40 . 2009-08-29 02:30 458752 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6002.18101_none_0e0cb2d1ef6f1ae9\AcSpecfc.dll
+ 2009-09-02 13:40 . 2009-08-28 12:24 459776 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6001.22509_none_0cb7e0050b5f3047\AcSpecfc.dll
+ 2009-09-02 13:40 . 2009-08-28 12:38 459776 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6001.18320_none_0c0f9ee1f259e729\AcSpecfc.dll
+ 2009-09-02 13:40 . 2009-08-29 03:31 450560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6000.21117_none_0ac4a71b0e42beb4\AcSpecfc.dll
+ 2009-09-02 13:40 . 2009-08-29 03:40 449024 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6000.16917_none_0a3b322df524eba8\AcSpecfc.dll
+ 2009-08-20 11:12 . 2009-06-10 12:12 160256 c:\windows\System32\wkssvc.dll
- 2009-02-02 23:47 . 2008-01-19 07:36 160256 c:\windows\System32\wkssvc.dll
+ 2009-08-20 11:12 . 2009-06-15 15:24 175104 c:\windows\System32\wdigest.dll
+ 2009-01-31 23:32 . 2009-09-17 17:20 287430 c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-07-16 22:40 . 2009-06-15 15:24 156672 c:\windows\System32\t2embed.dll
+ 2009-09-16 20:21 . 2009-09-07 11:32 920264 c:\windows\System32\spool\drivers\w32x86\dopdfui6.dll
+ 2009-09-16 20:21 . 2009-09-07 11:32 505032 c:\windows\System32\spool\drivers\w32x86\dopdfpr6.dll
+ 2009-09-16 20:21 . 2009-09-07 11:32 435912 c:\windows\System32\spool\drivers\w32x86\dopdfcl6.exe
+ 2009-02-02 23:47 . 2008-01-19 07:28 562176 c:\windows\System32\spool\drivers\w32x86\3\HPZSSLHN.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:35 365568 c:\windows\System32\spool\drivers\w32x86\3\HPZEVLHN.DLL
+ 2009-02-02 23:48 . 2008-01-19 07:35 280064 c:\windows\System32\spool\drivers\w32x86\3\HPFIME50.DLL
+ 2009-09-16 20:21 . 2009-09-07 11:32 920264 c:\windows\System32\spool\drivers\w32x86\3\dopdfui6.dll
+ 2009-09-16 20:21 . 2009-09-07 11:32 505032 c:\windows\System32\spool\drivers\w32x86\3\dopdfpr6.dll
+ 2009-09-16 20:21 . 2009-09-07 11:32 435912 c:\windows\System32\spool\drivers\w32x86\3\dopdfcl6.exe
+ 2009-08-20 11:12 . 2009-06-15 15:24 270848 c:\windows\System32\schannel.dll
+ 2008-11-26 12:47 . 2009-06-10 05:35 221184 c:\windows\System32\RaCoInst.dll
- 2008-11-26 12:47 . 2008-11-26 12:47 221184 c:\windows\System32\RaCoInst.dll
+ 2006-11-02 10:33 . 2009-09-18 13:38 599942 c:\windows\System32\perfh009.dat
- 2006-11-02 10:33 . 2009-06-13 08:20 599942 c:\windows\System32\perfh009.dat
- 2006-11-02 10:33 . 2009-06-13 08:20 105448 c:\windows\System32\perfc009.dat
+ 2006-11-02 10:33 . 2009-09-18 13:38 105448 c:\windows\System32\perfc009.dat
+ 2009-08-05 11:46 . 2009-07-21 21:50 206848 c:\windows\System32\occache.dll
+ 2009-02-09 07:37 . 2009-02-09 07:37 659968 c:\windows\System32\nmwcdcocls.dll
- 2008-09-15 07:56 . 2008-09-15 07:56 659968 c:\windows\System32\nmwcdcocls.dll
+ 2009-08-20 11:12 . 2009-06-15 15:22 213504 c:\windows\System32\msv1_0.dll
- 2009-06-10 19:46 . 2009-03-08 11:32 594432 c:\windows\System32\msfeeds.dll
+ 2009-08-05 11:46 . 2009-07-21 21:48 594432 c:\windows\System32\msfeeds.dll
+ 2009-07-18 03:21 . 2009-07-18 03:21 257440 c:\windows\System32\Macromed\Flash\NPSWF32_FlashUtil.exe
+ 2009-08-20 11:12 . 2009-06-15 15:21 499712 c:\windows\System32\kerberos.dll
- 2009-06-10 19:46 . 2009-03-08 11:33 726528 c:\windows\System32\jscript.dll
+ 2009-09-15 14:42 . 2009-06-06 05:01 726528 c:\windows\System32\jscript.dll
+ 2009-09-01 14:17 . 2009-07-25 04:23 149280 c:\windows\System32\javaws.exe
+ 2009-09-01 14:17 . 2009-07-25 04:23 145184 c:\windows\System32\javaw.exe
+ 2009-09-01 14:17 . 2009-07-25 04:23 145184 c:\windows\System32\java.exe
+ 2009-08-05 11:46 . 2009-07-21 21:47 164352 c:\windows\System32\ieui.dll
- 2009-06-10 19:47 . 2009-05-09 05:34 164352 c:\windows\System32\ieui.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 184320 c:\windows\System32\iepeers.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 386048 c:\windows\System32\iedkcs32.dll
- 2009-06-10 19:47 . 2009-05-09 03:36 173056 c:\windows\System32\ie4uinit.exe
+ 2009-08-05 11:46 . 2009-07-21 20:13 173056 c:\windows\System32\ie4uinit.exe
+ 2009-07-29 21:47 . 2006-11-20 21:36 258048 c:\windows\System32\hpzids01.dll
+ 2006-11-02 10:25 . 2006-11-02 09:46 934912 c:\windows\System32\hpowiav1.dll
+ 2009-07-29 21:47 . 2006-12-16 06:19 303104 c:\windows\System32\hpovst01.dll
+ 2006-11-02 12:47 . 2009-07-23 13:16 367376 c:\windows\System32\FNTCACHE.DAT
- 2006-11-02 12:47 . 2009-06-11 07:21 367376 c:\windows\System32\FNTCACHE.DAT
+ 2009-05-11 12:30 . 2009-05-11 12:30 547840 c:\windows\System32\DriverStore\FileRepository\pccswpddriver.inf_b43d96b2\PCCSWpdDriver.dll
+ 2009-03-19 13:48 . 2009-03-19 13:48 136704 c:\windows\System32\DriverStore\FileRepository\nmwcdnsu.inf_add8f2b2\nmwcdnsu.sys
+ 2009-06-10 05:35 . 2009-06-10 05:35 221184 c:\windows\System32\DriverStore\FileRepository\netr61.inf_21ac3d5a\RaCoInst.dll
+ 2009-06-10 05:38 . 2009-06-10 05:38 335872 c:\windows\System32\DriverStore\FileRepository\netr61.inf_21ac3d5a\netr61.sys
+ 2009-07-29 21:47 . 2006-11-20 21:36 258048 c:\windows\System32\DriverStore\FileRepository\hpounp02.inf_83f234c0\hpzids01.dll
+ 2009-07-29 21:47 . 2006-12-16 06:19 675840 c:\windows\System32\DriverStore\FileRepository\hposcu01.inf_9d000a79\drivers\scanner\x32\hpowiav1.dll
+ 2009-07-29 21:47 . 2006-12-16 06:19 303104 c:\windows\System32\DriverStore\FileRepository\hposcu01.inf_9d000a79\drivers\scanner\x32\hpovst01.dll
+ 2009-07-29 21:47 . 2006-12-16 06:19 573440 c:\windows\System32\DriverStore\FileRepository\hposcu01.inf_9d000a79\drivers\scanner\x32\hpotscl1.dll
+ 2009-07-29 21:47 . 2006-12-16 06:19 897024 c:\windows\System32\DriverStore\FileRepository\hposcu01.inf_9d000a79\drivers\scanner\x32\hpotiop1.dll
+ 2009-02-09 07:37 . 2009-02-09 07:37 659968 c:\windows\System32\DriverStore\FileRepository\ccdcmb.inf_0c298eaf\nmwcdcocls.dll
+ 2009-05-11 12:30 . 2009-05-11 12:30 547840 c:\windows\System32\drivers\UMDF\PCCSWpdDriver.dll
+ 2009-03-19 13:48 . 2009-03-19 13:48 136704 c:\windows\System32\drivers\nmwcdnsu.sys
+ 2009-06-10 05:38 . 2009-06-10 05:38 335872 c:\windows\System32\drivers\netr61.sys
+ 2009-08-20 11:12 . 2009-06-15 18:20 439896 c:\windows\System32\drivers\ksecdd.sys
+ 2009-02-02 17:08 . 2008-01-19 05:49 131584 c:\windows\System32\drivers\Dot4.sys
+ 2009-06-10 19:59 . 2009-07-29 21:58 245760 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2009-06-10 19:59 . 2009-06-13 08:16 245760 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2009-02-02 17:08 . 2008-01-19 05:36 289792 c:\windows\System32\atmfd.dll
+ 2009-07-16 22:40 . 2009-06-15 12:52 289792 c:\windows\System32\atmfd.dll
- 2009-06-10 19:59 . 2009-06-13 08:15 245760 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-06-10 19:59 . 2009-06-14 13:21 245760 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-07-30 21:41 . 2009-07-30 21:41 210384 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2009-07-17 20:09 . 2009-07-17 20:09 473600 c:\windows\Replay Media Catcher\uninstall.exe
+ 2008-07-29 23:44 . 2008-07-29 23:44 652800 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs_setup.msi
+ 2009-09-07 17:16 . 2009-09-07 17:16 331264 c:\windows\Installer\fdebc0.msi
+ 2009-09-03 13:53 . 2009-09-03 13:53 850432 c:\windows\Installer\f2b00.msi
+ 2009-09-03 13:51 . 2009-09-03 13:51 549888 c:\windows\Installer\f2a4d.msi
+ 2009-09-03 13:51 . 2009-09-03 13:51 331264 c:\windows\Installer\f2a15.msi
+ 2008-11-16 11:38 . 2008-11-16 11:38 324608 c:\windows\Installer\c3c06.msp
+ 2008-11-16 11:38 . 2008-11-16 11:38 324608 c:\windows\Installer\c3bfe.msp
+ 2009-06-10 20:11 . 2009-06-10 20:11 501248 c:\windows\Installer\c3bac.msi
+ 2009-06-10 20:10 . 2009-06-10 20:10 501248 c:\windows\Installer\c3b90.msi
+ 2009-06-10 20:10 . 2009-06-10 20:10 506880 c:\windows\Installer\c3b89.msi
+ 2009-06-10 20:10 . 2009-06-10 20:10 516608 c:\windows\Installer\c3b81.msi
+ 2009-06-10 20:10 . 2009-06-10 20:10 513024 c:\windows\Installer\c3b79.msi
+ 2009-06-10 20:10 . 2009-06-10 20:10 501248 c:\windows\Installer\c3b6b.msi
+ 2009-06-10 20:09 . 2009-06-10 20:09 501248 c:\windows\Installer\c3b48.msi
+ 2009-07-16 21:44 . 2009-07-16 21:44 322048 c:\windows\Installer\bc5d1b.msi
+ 2009-09-15 14:44 . 2009-09-15 14:44 432640 c:\windows\Installer\a3267d.msi
+ 2009-08-05 15:11 . 2009-08-05 15:11 818176 c:\windows\Installer\8c911.msi
+ 2009-03-02 15:08 . 2009-03-02 15:08 323072 c:\windows\Installer\643b7e.msi
+ 2009-05-15 20:22 . 2009-05-15 20:22 799232 c:\windows\Installer\4d04ca.msi
+ 2009-03-20 10:48 . 2009-03-20 10:48 183808 c:\windows\Installer\20ee3a3.msp
+ 2009-07-08 13:42 . 2009-07-08 13:42 536576 c:\windows\Installer\1c4fc9.msi
+ 2009-01-31 14:57 . 2009-01-31 14:57 163840 c:\windows\Installer\1adb29.msi
+ 2009-05-14 20:17 . 2009-05-14 20:17 637952 c:\windows\Installer\18c24d1.msi
+ 2009-05-26 17:53 . 2009-05-26 17:53 579072 c:\windows\Installer\16bd018.msp
+ 2008-12-13 09:58 . 2008-12-13 09:58 754688 c:\windows\Installer\16761b.msp
+ 2009-02-01 00:35 . 2009-02-01 00:35 648192 c:\windows\Installer\16760f.msi
+ 2009-02-01 22:30 . 2009-02-01 22:30 836096 c:\windows\Installer\13633e4.msi
+ 2009-09-07 17:17 . 2009-09-07 17:17 458752 c:\windows\Installer\{F983B4FE-547B-4C44-BAF7-4F4DBA93D548}\NewShortcut20_F7578A24A4B240E4BA057EF931EB25B5.exe
+ 2009-09-07 17:17 . 2009-09-07 17:17 458752 c:\windows\Installer\{F983B4FE-547B-4C44-BAF7-4F4DBA93D548}\NewShortcut16_F7578A24A4B240E4BA057EF931EB25B5.exe
- 2009-02-10 19:59 . 2009-03-26 13:54 295606 c:\windows\Installer\{AC76BA86-7AD7-1033-7B44-A81300000003}\SC_Reader.exe
+ 2009-02-10 19:59 . 2009-09-02 20:48 295606 c:\windows\Installer\{AC76BA86-7AD7-1033-7B44-A81300000003}\SC_Reader.exe
- 2009-06-10 20:15 . 2009-06-12 14:32 888080 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\wordicon.exe
+ 2009-06-10 20:15 . 2009-07-28 13:11 888080 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\wordicon.exe
- 2009-06-10 20:15 . 2009-06-12 14:32 272648 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\pubs.exe
+ 2009-06-10 20:15 . 2009-07-28 13:11 272648 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\pubs.exe
+ 2009-06-10 20:15 . 2009-07-28 13:11 922384 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\pptico.exe
- 2009-06-10 20:15 . 2009-06-12 14:32 922384 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\pptico.exe
+ 2009-06-10 20:15 . 2009-07-28 13:11 845584 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\outicon.exe
- 2009-06-10 20:15 . 2009-06-12 14:32 845584 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\outicon.exe
+ 2009-06-10 20:15 . 2009-07-28 13:11 217864 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\misc.exe
- 2009-06-10 20:15 . 2009-06-12 14:32 217864 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\misc.exe
+ 2009-06-10 20:15 . 2009-07-28 13:11 184080 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\joticon.exe
- 2009-06-10 20:15 . 2009-06-12 14:32 184080 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\joticon.exe
- 2009-06-10 20:15 . 2009-06-12 14:32 159504 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\inficon.exe
+ 2009-06-10 20:15 . 2009-07-28 13:11 159504 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\inficon.exe
+ 2007-08-24 03:52 . 2007-08-24 03:52 275896 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\SCNPST64.DLL
+ 2007-08-24 03:52 . 2007-08-24 03:52 266160 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\SCNPST32.DLL
+ 2007-08-24 03:51 . 2007-08-24 03:51 416112 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\PSTPRX32.DLL
+ 2007-08-28 22:22 . 2007-08-28 22:22 180128 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\OUTLPH.DLL
+ 2007-08-28 22:20 . 2007-08-28 22:20 600992 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\OUTLMIME.DLL
+ 2007-08-24 04:42 . 2007-08-24 04:42 195480 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\OMSXP32.DLL
+ 2007-08-24 04:42 . 2007-08-24 04:42 663432 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\OMSMAIN.DLL
+ 2007-08-24 03:49 . 2007-08-24 03:49 342888 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\MIMEDIR.DLL
+ 2007-08-28 22:19 . 2007-08-28 22:19 136064 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\CONTAB32.DLL
+ 2006-10-27 14:16 . 2006-10-27 14:16 408880 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\RTFHTML.DLL
+ 2006-10-27 14:16 . 2006-10-27 14:16 138512 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\OUTLCTL.DLL
+ 2006-10-26 19:55 . 2006-10-26 19:55 254776 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\OLKFSTUB.DLL
+ 2006-10-26 19:55 . 2006-10-26 19:55 138024 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\IMPMAIL.DLL
+ 2006-10-26 19:55 . 2006-10-26 19:55 154960 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\ENVELOPE.DLL
+ 2006-10-26 19:55 . 2006-10-26 19:55 116544 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\EMABLT32.DLL
- 2006-11-02 10:25 . 2009-06-10 19:45 143360 c:\windows\inf\infstrng.dat
+ 2006-11-02 10:25 . 2009-09-14 21:09 143360 c:\windows\inf\infstrng.dat
- 2009-02-02 17:08 . 2008-01-19 07:34 171008 c:\windows\ehome\ehkeyctl.dll
+ 2009-09-15 14:40 . 2009-07-21 14:45 171008 c:\windows\ehome\ehkeyctl.dll
+ 2009-09-02 13:40 . 2009-08-28 12:39 173056 c:\windows\AppPatch\AcXtrnal.dll
- 2009-02-01 01:28 . 2009-02-01 01:28 173056 c:\windows\AppPatch\AcXtrnal.dll
+ 2009-09-02 13:40 . 2009-08-28 12:38 459776 c:\windows\AppPatch\AcSpecfc.dll
+ 2009-09-02 13:40 . 2009-08-28 12:38 541696 c:\windows\AppPatch\AcLayers.dll
- 2009-02-01 01:28 . 2009-02-01 01:28 541696 c:\windows\AppPatch\AcLayers.dll
+ 2009-09-15 14:44 . 2009-09-15 14:44 1286152 c:\windows\winsxs\x86_microsoft.msxml2_6bd6b9abf345378f_4.20.9870.0_none_b7e00e6c7b30b69b\msxml4.dll
+ 2009-09-07 17:17 . 2009-09-07 17:17 1233920 c:\windows\winsxs\x86_microsoft.msxml2_6bd6b9abf345378f_4.20.9818.0_none_b7e811947b297f6d\msxml4.dll
+ 2009-08-20 11:12 . 2009-06-04 12:56 2067968 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6002.22146_none_3238de2ddc072aae\mstscax.dll
+ 2009-08-20 11:12 . 2009-06-04 12:07 2066432 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6002.18045_none_31ae4118c2ea718d\mstscax.dll
+ 2009-08-20 11:12 . 2009-06-04 12:33 2067968 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6001.22443_none_304f6b67dee38985\mstscax.dll
+ 2009-08-20 11:12 . 2009-06-04 12:34 2066432 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6001.18266_none_2fb32dbcc5d3707b\mstscax.dll
+ 2009-08-20 11:12 . 2009-06-04 12:31 1874432 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6000.21061_none_2e516291e1cf33e3\mstscax.dll
+ 2009-08-20 11:12 . 2009-06-04 12:43 1871872 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6000.16865_none_2dcbeeccc8adc633\mstscax.dll
+ 2009-09-15 14:42 . 2009-08-10 07:23 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6002.22215_none_f4f261f581c1d755\OESpamFilter.dat
+ 2009-09-15 14:42 . 2009-08-10 07:23 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6002.18103_none_f4719482689de8ec\OESpamFilter.dat
+ 2009-09-15 14:42 . 2009-08-10 07:22 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6001.22511_none_f307eee5849f1cd5\OESpamFilter.dat
+ 2009-09-15 14:42 . 2009-08-10 07:23 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6001.18322_none_f27480926b88b52c\OESpamFilter.dat
+ 2009-09-15 14:42 . 2009-08-10 07:22 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.21119_none_f12988cb87718cb7\OESpamFilter.dat
+ 2009-09-15 14:42 . 2009-08-10 07:23 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.16919_none_f0a013de6e53b9ab\OESpamFilter.dat
+ 2009-09-15 14:42 . 2009-06-10 11:45 2386944 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmvcore_31bf3856ad364e35_6.0.6002.22150_none_096c8896ec43f957\WMVCORE.DLL
+ 2009-09-15 14:42 . 2009-06-10 11:41 2386944 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmvcore_31bf3856ad364e35_6.0.6002.18049_none_08f6be51d31621ab\WMVCORE.DLL
+ 2009-09-15 14:42 . 2009-06-10 11:59 2386944 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmvcore_31bf3856ad364e35_6.0.6001.22447_none_0797e8a0ef0f39a3\WMVCORE.DLL
+ 2009-09-15 14:42 . 2009-06-10 12:11 2386944 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmvcore_31bf3856ad364e35_6.0.6001.18270_none_06e6d825d6103f24\WMVCORE.DLL
+ 2009-09-15 14:42 . 2009-06-10 12:06 2436096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmvcore_31bf3856ad364e35_6.0.6000.21065_none_0599dfcaf1fae401\WMVCORE.DLL
+ 2009-09-15 14:42 . 2009-06-10 12:16 2433536 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmvcore_31bf3856ad364e35_6.0.6000.16868_none_05136bbbd8da5cfa\WMVCORE.DLL
+ 2009-08-20 11:12 . 2009-07-15 12:47 8147456 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\wmploc.DLL
+ 2009-08-20 11:12 . 2009-07-15 12:40 8147456 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\wmploc.DLL
+ 2009-08-20 11:12 . 2009-07-15 13:07 8147456 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\wmploc.DLL
+ 2009-08-20 11:12 . 2009-07-14 10:59 8147456 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\wmploc.DLL
+ 2009-08-20 11:12 . 2009-07-15 12:53 8147968 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\wmploc.DLL
+ 2009-08-20 11:12 . 2009-07-14 11:11 8147968 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\wmploc.DLL
+ 2009-09-15 14:42 . 2009-06-10 11:45 2868224 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.22150_none_9e993405232e229b\mf.dll
+ 2009-09-15 14:42 . 2009-06-10 11:41 2868224 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.18049_none_9e2369c00a004aef\mf.dll
+ 2009-09-15 14:42 . 2009-06-10 11:59 2868224 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.22447_none_9cc4940f25f962e7\mf.dll
+ 2009-09-15 14:42 . 2009-06-10 12:11 2868224 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.18270_none_9c1383940cfa6868\mf.dll
+ 2009-09-15 14:42 . 2009-06-10 12:00 2855424 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.21065_none_9ac68b3928e50d45\mf.dll
+ 2009-09-15 14:42 . 2009-06-10 12:07 2855424 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.16868_none_9a40172a0fc4863e\mf.dll
+ 2009-08-20 11:12 . 2009-06-15 14:58 1259008 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsasrv.dll
+ 2009-08-20 11:12 . 2009-06-15 14:52 1259008 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsasrv.dll
+ 2009-08-20 11:12 . 2009-06-15 15:25 1257984 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsasrv.dll
+ 2009-08-20 11:12 . 2009-06-15 15:23 1256448 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsasrv.dll
+ 2009-08-20 11:12 . 2009-06-15 15:04 1235456 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsasrv.dll
+ 2009-08-20 11:12 . 2009-06-15 15:23 1233920 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsasrv.dll
+ 2009-08-05 11:46 . 2009-07-22 05:58 1985536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.22903_none_2b196baebb6c56e8\iertutil.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 1985536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.18813_none_2a84fef7a256d30f\iertutil.dll
+ 2009-08-05 11:46 . 2009-07-22 05:59 5938176 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.22903_none_f6b8d3f15111a1c1\mshtml.dll
+ 2009-08-05 11:46 . 2009-07-21 21:48 5937152 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18813_none_f624673a37fc1de8\mshtml.dll
+ 2009-08-05 11:46 . 2009-07-22 06:02 1208832 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.22903_none_9858d93105b211f8\urlmon.dll
+ 2009-08-05 11:46 . 2009-07-21 21:52 1208832 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18813_none_97c46c79ec9c8e1f\urlmon.dll
+ 2009-09-02 13:40 . 2009-08-29 00:34 4240384 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6002.22213_none_4468964bd78652fb\GameUXLegacyGDFs.dll
+ 2009-09-02 13:40 . 2009-08-29 02:47 1696256 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6002.22213_none_4468964bd78652fb\gameux.dll
+ 2009-09-02 13:40 . 2009-08-29 00:27 4240384 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6002.18101_none_43e7c8d8be626492\GameUXLegacyGDFs.dll
+ 2009-08-26 14:44 . 2009-04-11 06:28 1696768 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6002.18101_none_43e7c8d8be626492\gameux.dll
+ 2009-09-02 13:40 . 2009-08-28 10:19 4240384 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6001.22509_none_4292f60bda5279f0\GameUXLegacyGDFs.dll
+ 2009-09-02 13:40 . 2009-08-28 12:25 1695744 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6001.22509_none_4292f60bda5279f0\gameux.dll
+ 2009-09-02 13:40 . 2009-08-28 10:15 4240384 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6001.18320_none_41eab4e8c14d30d2\GameUXLegacyGDFs.dll
+ 2009-02-01 01:28 . 2009-02-01 01:28 1695744 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6001.18320_none_41eab4e8c14d30d2\gameux.dll
+ 2009-09-02 13:40 . 2009-08-28 23:26 4247552 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6000.21117_none_409fbd21dd36085d\GameUXLegacyGDFs.dll
+ 2009-09-02 13:40 . 2009-08-29 03:33 1686528 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6000.21117_none_409fbd21dd36085d\gameux.dll
+ 2009-09-02 13:40 . 2009-08-28 23:31 4247552 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6000.16917_none_40164834c4183551\GameUXLegacyGDFs.dll
+ 2009-09-02 13:40 . 2009-08-29 03:41 1686528 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6000.16917_none_40164834c4183551\gameux.dll
+ 2009-09-02 13:40 . 2009-08-29 02:46 2159616 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6002.22213_none_0e8c7ffb0893effb\AcGenral.dll
+ 2009-09-02 13:40 . 2009-08-29 02:30 2159616 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6002.18101_none_0e0bb287ef700192\AcGenral.dll
+ 2009-09-02 13:40 . 2009-08-28 12:24 2157056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.22509_none_0cb6dfbb0b6016f0\AcGenral.dll
+ 2009-09-02 13:40 . 2009-08-28 12:38 2153984 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.18320_none_0c0e9e97f25acdd2\AcGenral.dll
+ 2009-09-02 13:40 . 2009-08-29 03:31 2144768 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6000.21117_none_0ac3a6d10e43a55d\AcGenral.dll
+ 2009-09-02 13:40 . 2009-08-29 03:40 2143744 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6000.16917_none_0a3a31e3f525d251\AcGenral.dll
+ 2009-05-11 11:47 . 2009-05-11 11:47 1302600 c:\windows\System32\WUDFUpdate_01007.dll
- 2009-01-31 15:10 . 2009-01-31 15:10 2386944 c:\windows\System32\WMVCORE.DLL
+ 2009-09-15 14:42 . 2009-06-10 12:11 2386944 c:\windows\System32\WMVCORE.DLL
- 2008-09-15 07:29 . 2008-09-15 07:29 1112288 c:\windows\System32\wdfcoinstaller01007.dll
+ 2009-02-09 07:32 . 2009-02-09 07:32 1112288 c:\windows\System32\wdfcoinstaller01007.dll
+ 2009-08-05 11:46 . 2009-07-21 21:52 1208832 c:\windows\System32\urlmon.dll
+ 2009-02-02 23:47 . 2008-01-19 07:35 2725376 c:\windows\System32\spool\drivers\w32x86\3\HPZUILHN.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:28 3447808 c:\windows\System32\spool\drivers\w32x86\3\HPZSTLHN.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:34 1253888 c:\windows\System32\spool\drivers\w32x86\3\HPZ3RLHN.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:35 1515520 c:\windows\System32\spool\drivers\w32x86\3\HPZ3ALHN.DLL
+ 2009-02-02 23:47 . 2008-01-19 07:34 5387776 c:\windows\System32\spool\drivers\w32x86\3\HPFIGLHN.DLL
- 2006-11-02 10:22 . 2009-06-10 23:19 6553600 c:\windows\System32\SMI\Store\Machine\schema.dat
+ 2006-11-02 10:22 . 2009-09-15 21:24 6553600 c:\windows\System32\SMI\Store\Machine\schema.dat
+ 2008-09-30 15:43 . 2008-09-30 15:43 1286152 c:\windows\System32\msxml4.dll
+ 2009-08-20 11:12 . 2009-06-04 12:34 2066432 c:\windows\System32\mstscax.dll
+ 2009-08-05 11:46 . 2009-07-21 21:48 5937152 c:\windows\System32\mshtml.dll
+ 2009-07-18 03:21 . 2009-07-18 03:21 3883424 c:\windows\System32\Macromed\Flash\NPSWF32.dll
+ 2009-08-20 11:12 . 2009-06-15 15:23 1256448 c:\windows\System32\lsasrv.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 1985536 c:\windows\System32\iertutil.dll
+ 2006-11-02 10:25 . 2006-11-02 09:46 1197056 c:\windows\System32\hpotiop1.dll
+ 2009-05-11 11:47 . 2009-05-11 11:47 1302600 c:\windows\System32\DriverStore\FileRepository\pccswpddriver.inf_b43d96b2\WUDFUpdate_01007.dll
+ 2009-02-09 07:32 . 2009-02-09 07:32 1112288 c:\windows\System32\DriverStore\FileRepository\ccdcmb.inf_0c298eaf\wdfcoinstaller01007.dll
- 2006-11-02 12:47 . 2009-03-11 20:54 2636507 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareLicensing\tokens.dat
+ 2006-11-02 12:47 . 2009-08-20 11:31 2636507 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareLicensing\tokens.dat
+ 2009-09-07 17:17 . 2009-09-07 17:17 1481728 c:\windows\Installer\fdebc7.msi
+ 2009-03-26 13:54 . 2009-03-26 13:54 4733440 c:\windows\Installer\fb95a0.msp
+ 2009-04-14 03:50 . 2009-04-14 03:50 5191680 c:\windows\Installer\d0bbf5.msp
+ 2009-04-24 11:29 . 2009-04-24 11:29 9013760 c:\windows\Installer\d0bbeb.msp
+ 2008-11-16 11:38 . 2008-11-16 11:38 5749760 c:\windows\Installer\c3bf6.msp
+ 2009-06-10 20:11 . 2009-06-10 20:11 1640960 c:\windows\Installer\c3bb3.msi
+ 2009-06-10 20:10 . 2009-06-10 20:10 1652736 c:\windows\Installer\c3ba5.msi
+ 2009-06-10 20:10 . 2009-06-10 20:10 1652736 c:\windows\Installer\c3b9e.msi
+ 2009-06-10 20:10 . 2009-06-10 20:10 1652736 c:\windows\Installer\c3b97.msi
+ 2009-06-10 20:10 . 2009-06-10 20:10 2319872 c:\windows\Installer\c3b72.msi
+ 2009-06-10 20:09 . 2009-06-10 20:09 1647616 c:\windows\Installer\c3b64.msi
+ 2009-06-10 20:09 . 2009-06-10 20:09 1640960 c:\windows\Installer\c3b5d.msi
+ 2009-06-10 20:09 . 2009-06-10 20:09 2022912 c:\windows\Installer\c3b56.msi
+ 2009-06-10 20:09 . 2009-06-10 20:09 1713152 c:\windows\Installer\c3b4f.msi
+ 2009-06-10 20:09 . 2009-06-10 20:09 2397184 c:\windows\Installer\c3b41.msi
+ 2009-02-10 19:59 . 2009-02-10 19:59 4192256 c:\windows\Installer\5d579f.msi
+ 2009-05-10 13:07 . 2009-05-10 13:07 1091584 c:\windows\Installer\35e6ad.msi
+ 2009-01-31 15:23 . 2009-01-31 15:23 8992256 c:\windows\Installer\31e557.msi
+ 2009-01-31 15:22 . 2009-01-31 15:22 1549312 c:\windows\Installer\31e54f.msi
+ 2009-04-11 13:45 . 2009-04-11 13:45 3966976 c:\windows\Installer\28f31b.msi
+ 2009-04-11 13:43 . 2009-04-11 13:43 1659392 c:\windows\Installer\28eff7.msi
+ 2009-04-11 13:42 . 2009-04-11 13:42 3293696 c:\windows\Installer\28efdb.msi
+ 2009-04-14 03:49 . 2009-04-14 03:49 1922560 c:\windows\Installer\16bd0d4.msp
+ 2009-04-14 03:18 . 2009-04-14 03:18 9684480 c:\windows\Installer\16bd0cb.msp
+ 2009-05-04 06:46 . 2009-05-04 06:46 8299008 c:\windows\Installer\16bd0c1.msp
+ 2009-05-04 06:47 . 2009-05-04 06:47 9124864 c:\windows\Installer\16bd0a8.msp
+ 2009-04-14 03:51 . 2009-04-14 03:51 1303040 c:\windows\Installer\16bd08f.msp
+ 2009-04-24 11:30 . 2009-04-24 11:30 2583552 c:\windows\Installer\16bd085.msp
+ 2009-02-25 18:08 . 2009-02-25 18:08 8311808 c:\windows\Installer\16bd06b.msp
+ 2009-04-24 11:28 . 2009-04-24 11:28 4450816 c:\windows\Installer\16bd054.msp
+ 2009-04-14 02:20 . 2009-04-14 02:20 9573376 c:\windows\Installer\16bd03a.msp
+ 2009-05-07 08:17 . 2009-05-07 08:17 5026816 c:\windows\Installer\16bd030.msp
+ 2009-09-02 20:48 . 2009-09-02 20:48 1711616 c:\windows\Installer\13deb3f.msp
- 2009-06-10 20:15 . 2009-06-12 14:32 1172240 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\xlicons.exe
+ 2009-06-10 20:15 . 2009-07-28 13:11 1172240 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\xlicons.exe
+ 2009-06-10 20:15 . 2009-07-28 13:11 1165584 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\accicons.exe
- 2009-06-10 20:15 . 2009-06-12 14:32 1165584 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\accicons.exe
+ 2007-08-28 22:20 . 2007-08-28 22:20 2949512 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\OLMAPI32.DLL
+ 2009-04-28 13:32 . 2009-04-28 13:32 1128448 c:\windows\Downloaded Installations\{9E212A89-FC5A-4AEB-92DF-1EC39FEC9556}\MotionBased Agent.msi
+ 2009-09-02 13:40 . 2009-08-28 12:38 2153984 c:\windows\AppPatch\AcGenral.dll
+ 2009-08-20 11:12 . 2009-07-15 14:36 10628096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\wmp.dll
+ 2009-08-20 11:12 . 2009-07-15 14:30 10628096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\wmp.dll
+ 2009-08-20 11:12 . 2009-07-15 14:52 10627584 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\wmp.dll
+ 2009-08-20 11:12 . 2009-07-14 13:00 10626048 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\wmp.dll
+ 2009-08-20 11:12 . 2009-07-15 14:44 10622464 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\wmp.dll
+ 2009-08-20 11:12 . 2009-07-14 13:02 10621952 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\wmp.dll
+ 2009-08-05 11:46 . 2009-07-22 05:58 11068416 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.22903_none_48182df4dd072fee\ieframe.dll
+ 2009-08-05 11:46 . 2009-07-21 21:47 11067392 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18813_none_4783c13dc3f1ac15\ieframe.dll
+ 2009-05-01 21:18 . 2009-09-15 14:50 62946544 c:\windows\winsxs\ManifestCache\6.0.6002.18005_001c11ba_blobs.bin
+ 2009-08-20 11:12 . 2009-07-14 13:00 10626048 c:\windows\System32\wmp.dll
+ 2006-11-02 10:24 . 2009-08-28 21:38 24689600 c:\windows\System32\mrt.exe
+ 2009-08-05 11:46 . 2009-07-21 21:47 11067392 c:\windows\System32\ieframe.dll
+ 2008-11-16 11:38 . 2008-11-16 11:38 12743168 c:\windows\Installer\c3c20.msp
+ 2008-11-16 11:38 . 2008-11-16 11:38 21981184 c:\windows\Installer\c3bc5.msp
+ 2009-06-10 20:15 . 2009-06-10 20:15 18181632 c:\windows\Installer\c3bbb.msi
+ 2009-05-04 06:49 . 2009-05-04 06:49 10955776 c:\windows\Installer\47f0d1.msp
+ 2009-04-14 03:21 . 2009-04-14 03:21 15303168 c:\windows\Installer\20ee3ad.msp
+ 2009-04-14 02:46 . 2009-04-14 02:46 15438848 c:\windows\Installer\20ee397.msp
+ 2009-05-07 08:04 . 2009-05-07 08:04 18341376 c:\windows\Installer\20ee38d.msp
+ 2007-09-06 17:01 . 2007-09-06 17:01 12836728 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\OUTLOOK.EXE
+ 2008-11-16 11:38 . 2008-11-16 11:38 229852160 c:\windows\Installer\c3d25.msp
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"="c:\program files\CCleaner\CCleaner.exe" [2009-06-25 1578736]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]
"CubeDesktop"="c:\program files\CubeDesktop\cubedesktop.exe" [2008-03-19 4786688]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-06-25 1414144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BJCFD"="c:\program files\BroadJump\Client Foundation\CFD.exe" [2003-01-27 376912]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-08-17 81000]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-04-02 342312]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-03-27 13687328]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-03-27 92704]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2009-08-25 1796368]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-25 149280]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2007-09-20 4669440]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{D67B3460-2506-4954-BB5D-61BA794064B2}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{475CB90A-9CE5-4CBF-9832-6B5A18C3D5E4}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{5EB6274F-689A-45A7-97F7-DFE1087D59E2}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{A3469DEE-5F78-4CA2-910F-AD6AF3D944AD}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"{4E90E22E-2674-47A6-BFE7-1B5F23AADFFF}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent (TCP-In)
"{7F397FFF-482B-4A9B-A69A-B6BA45898FA2}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent (UDP-In)
"TCP Query User{4CC78172-6C16-464B-8456-1E624974DF8A}c:\\program files\\utorrent\\utorrent.exe"= UDP:c:\program files\utorrent\utorrent.exe:µTorrent
"UDP Query User{78061792-E836-40C4-BCF2-45630E9CADD7}c:\\program files\\utorrent\\utorrent.exe"= TCP:c:\program files\utorrent\utorrent.exe:µTorrent
"{531AF133-3019-4D5E-B68F-91695007A3DF}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{1C124657-07D1-41D0-82C7-A53EE31C0258}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{3027FB0A-02FB-4E25-8D2A-C36607AF2DBF}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{164D068E-5672-4656-8FC9-48EAD2A3F568}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"TCP Query User{4D0D2B6B-B6B5-468D-AC5C-96637E23F004}c:\\program files\\sopcast\\sopcast.exe"= UDP:c:\program files\sopcast\sopcast.exe:SopCast Main Application
"UDP Query User{34D941A4-7E29-4881-B353-8D890C3F7A1C}c:\\program files\\sopcast\\sopcast.exe"= TCP:c:\program files\sopcast\sopcast.exe:SopCast Main Application
"TCP Query User{6E607C68-EFE9-4CDE-B3CA-9C7E3E7BFBD0}c:\\program files\\sopcast\\adv\\sopadver.exe"= UDP:c:\program files\sopcast\adv\sopadver.exe:SopCast Adver
"UDP Query User{F42C864B-1F33-4F8C-A5DC-9FF5F04F3315}c:\\program files\\sopcast\\adv\\sopadver.exe"= TCP:c:\program files\sopcast\adv\sopadver.exe:SopCast Adver
"{869BD642-41C4-45EE-8542-7B6B014C24A1}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{8E65B9D3-6233-4305-A077-312EE28E5CD8}"= UDP:c:\program files\microsoft office\Office12\GROOVE.EXE:Microsoft Office Groove
"{E9C86E90-1C9F-4DFF-9634-7BC66684F2D1}"= TCP:c:\program files\microsoft office\Office12\GROOVE.EXE:Microsoft Office Groove
"{544EE587-4332-4B99-A216-FC21B7E917BC}"= UDP:c:\program files\microsoft office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{44D2998D-B576-46D0-A86E-67B51918B09C}"= TCP:c:\program files\microsoft office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"TCP Query User{6C1A69CF-A50C-41E1-9E4C-6E73F07433E9}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= UDP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater
"UDP Query User{9EB3DF69-75A2-4A5F-963D-C4D89EF3641D}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= TCP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater
"TCP Query User{DABDB07A-13D4-4360-934C-FCA55DB04DCB}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= UDP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process
"UDP Query User{D62591ED-CA7F-4552-AA34-0BD4BE8C2B38}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= TCP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process

R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [1/31/2009 3:34 PM 114768]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\System32\drivers\cmdguard.sys [2/3/2009 2:25 PM 128888]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\System32\drivers\cmdhlp.sys [2/3/2009 2:25 PM 29520]
R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [1/31/2009 3:34 PM 20560]
R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [1/31/2009 3:34 PM 53328]
R3 Ph3xIB32;Philips 713x VU PCI TV Card;c:\windows\System32\drivers\Ph3xIB32.sys [4/3/2007 11:43 AM 1131136]
R3 rt61x86;Ralink RT61 Wireless Driver for Windows Vista;c:\windows\System32\drivers\netr61.sys [6/10/2009 6:38 AM 335872]
S3 HCW713x;Hauppauge 713x VU PCI TV Card;c:\windows\System32\drivers\HCW713x.sys [9/20/2007 4:48 PM 976256]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\System32\drivers\nmwcdnsu.sys [3/19/2009 2:48 PM 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\System32\drivers\nmwcdnsuc.sys [3/19/2009 2:48 PM 8320]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\System32\rundll32.exe" "c:\windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contents of the 'Scheduled Tasks' folder

2009-09-18 c:\windows\Tasks\User_Feed_Synchronization-{61E0577F-51D9-428F-AF81-7B8CCE228B2A}.job
- c:\windows\system32\msfeedssync.exe [2009-08-05 20:13]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.virginmedia.com
mStart Page = about:blank
uInternet Settings,ProxyOverride = plimus.com;www.plimus.com;regnow.com;www.regnow.com
IE: Add to AMV Converter... - c:\program files\MP3 Player Utilities 4.18\AMVConverter\grab.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://m.uk.yahoo.com/|http://twitter.com/|http://www.ebay.co.uk/|http://en-gb.facebook.com/|http://www.therunningbug.co.uk/Forum.aspx
FF - prefs.js: network.proxy.socks - 127.0.0.1
FF - prefs.js: network.proxy.socks_port - 7070
FF - prefs.js: network.proxy.type - 4
FF - component: c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\extensions\{20deece9-b83b-4389-b0b0-c562d8a70302}\components\FFExternalAlert.dll
FF - plugin: c:\program files\mozilla firefox\plugins\np-mswmp.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-18 14:46
Windows 6.0.6001 Service Pack 1 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-851244455-3135899847-4148953319-1002\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{4D844BDD-240F-6E09-0484-5B3B3FB45860}*]
"jabcldgnfdiihbecjlpj"=hex:66,61,63,6e,6e,6e,68,62,69,67,65,64,00,51
"pajdoiefedfchjiajieccibanmkiobgh"=hex:65,61,63,6e,70,6e,70,62,6d,68,00,64
"habcldgnfdiihbec"=hex:6e,62,63,6e,70,6e,63,6c,65,61,66,6c,6f,6b,65,6f,61,69,
64,66,62,6e,6b,6e,65,6a,66,6f,68,61,64,65,62,64,70,6c,6d,6b,62,6d,61,6d,6a,\

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'Explorer.exe'(5996)
c:\program files\CubeDesktop\CubeDesktopHooks.dll
.
Completion time: 2009-09-18 14:47
ComboFix-quarantined-files.txt 2009-09-18 13:47
ComboFix2.txt 2009-06-13 10:53
ComboFix3.txt 2009-06-13 10:31
ComboFix4.txt 2008-11-25 18:48
ComboFix5.txt 2009-09-18 13:38

Pre-Run: 111,428,243,456 bytes free
Post-Run: 111,303,217,152 bytes free

1060 --- E O F --- 2009-09-15 14:50


HJT:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:35:48 PM, on 9/18/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\Program Files\alwil software\Avast4\ashDisp.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\microsoft office\Office12\GrooveMonitor.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\CubeDesktop\cubedesktop.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.virginmedia.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = plimus.com;www.plimus.com;regnow.com;www.regnow.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [CubeDesktop] C:\Program Files\CubeDesktop\cubedesktop.exe
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.18\AMVConverter\grab.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 5763 bytes


Malwarebytes:

Malwarebytes' Anti-Malware 1.41
Database version: 2819
Windows 6.0.6001 Service Pack 1

9/18/2009 3:35:00 PM
mbam-log-2009-09-18 (15-35-00).txt

Scan type: Full Scan (A:\|C:\|D:\|E:\|G:\|H:\|I:\|J:\|S:\|)
Objects scanned: 223267
Time elapsed: 36 minute(s), 5 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


Thank you turn
Back to Top
 

Jintan
Senior Member




Date Joined Dec 2006
Total Posts : 1428
 
   Posted 9/18/2009 11:43 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
Hello danny-boy,

I don't see any outright infection in these views. What program did you download and install, and of course, did you then uninstall it once things became worse there? The logs do show you have two antivirus softwares, which will cause conflicts and slowness, so you need to choose between Avast and COMODO Internet Security and uninstall one of those. Be sure to disable all security software before the uninstall, then reboot after.


Click here and help my friend help stop leukemia, lymphoma, Hodgkin lymphoma and myeloma from taking more lives.

Back to Top
 

danny-boy
Junior Member


Date Joined Aug 2007
Total Posts : 70
 
   Posted 9/19/2009 12:37 AM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
Thanks for the reply, it was just a prog to turn word docs into pdf's. It installed then disappeared, not in 'All programs' menu, or install/uninstall prog list on control panel. I believe it was called Go2PDF from here

I know about running 2 anti virus progs, but have had them for about 2 yrs with no probs, so they do run well together, this is much much slower now in the last 2 days.

Post Edited (danny-boy) : 18-09-2009 21:39:10 GMT

Back to Top
 

Jintan
Senior Member




Date Joined Dec 2006
Total Posts : 1428
 
   Posted 9/19/2009 2:07 AM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
The reality is having two antivirus softwares on one system will lead to undesirable issues. May have occurred there over time so you now do not realize it. So you really should uninstall one of those.

A chance the install of that program is in conflict with some other software. The ComboFix log does show a permissions locked registry key, and another "null" key that would also be blocked from access there. Both suggest having been made by malware, so let's address those then do a different scan.


Be sure to continue to temporarily disable any protective software when running the scan tools we use here.


Open notepad (go to Start, Run, type notepad and press Enter) and copy/paste the text in the codebox below into it:

KillAll::
Reglock::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
Regnull::
[HKEY_USERS\S-1-5-21-851244455-3135899847-4148953319-1002\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{4D844BDD-240F-6E09-0484-5B3B3FB45860}*]

Save this to your desktop as CFScript.txt


You should now have both ComboFix and that CFScript.txt on the desktop. Just left click/hold on the CFScript.txt file, and drag it into ComboFix to start the scan.

ComboFix will now run as it did before. Allow the scan to run. When completed a text window will appear - please copy/paste the contents back here. This log can also be found at C:\ComboFix.txt.

A caution - do not touch your mouse/keyboard until the scan has completed. The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop.

----------------

Then cick here and download the installer for Gmer to your desktop, then click that file to run Gmer.

If on it's opening scan Gmer locates items shown in red or indicates "hidden" or "rootkit", stop there, and click on the Copy button and rightclick on your Desktop, choose "New" > Text document. Once the file is created, open it and rightclick again and choose Paste. Copy the information and post it here please. We don't want any crashes just from taking an initial look at things.

If not, then click on Scan (before scanning, make sure all other running programs are closed and no other actions like a scheduled antivirus scan will occur while this scan completes. Also do not use your computer during the scan).

When completed, click on the Copy button and rightclick on your Desktop, choose "New" > Text document. Once the file is created, open it and rightclick again and choose Paste. Copy the information and post it here please.

Post back that log and the C:\ComboFix.txt log please.


Click here and help my friend help stop leukemia, lymphoma, Hodgkin lymphoma and myeloma from taking more lives.

Back to Top
 

danny-boy
Junior Member


Date Joined Aug 2007
Total Posts : 70
 
   Posted 9/19/2009 2:13 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
Thanks jintan, here is the combo log, unfortunatley, GMER didnt work, kept getting a 'stopped responding' message during each scan attempt.

ComboFix 09-09-17.04 - Daniel 09/19/2009 11:34.4.4 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.44.1033.18.3071.2024 [GMT 1:00]
Running from: c:\users\Daniel\Desktop\ComboFix.exe
Command switches used :: c:\users\Daniel\Desktop\cfscript.txt
.

((((((((((((((((((((((((( Files Created from 2009-08-19 to 2009-09-19 )))))))))))))))))))))))))))))))
.

2009-09-19 10:40 . 2009-09-19 10:42 -------- d-----w- c:\users\Daniel\AppData\Local\temp
2009-09-19 10:40 . 2009-09-19 10:40 -------- d-----w- c:\users\user\AppData\Local\temp
2009-09-19 10:40 . 2009-09-19 10:40 -------- d-----w- c:\users\Public\AppData\Local\temp
2009-09-19 10:40 . 2009-09-19 10:40 -------- d-----w- c:\users\Nikki\AppData\Local\temp
2009-09-19 10:40 . 2009-09-19 10:40 -------- d-----w- c:\users\Nikki .000\AppData\Local\temp
2009-09-19 10:40 . 2009-09-19 10:40 -------- d-----w- c:\users\Default\AppData\Local\temp
2009-09-18 20:58 . 2009-05-18 13:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2009-09-18 20:58 . 2008-04-17 12:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2009-09-18 20:56 . 2009-09-18 20:56 -------- d-----w- c:\program files\iPod
2009-09-18 20:56 . 2009-09-18 20:57 -------- d-----w- c:\programdata\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-09-18 20:56 . 2009-09-18 20:57 -------- d-----w- c:\program files\iTunes
2009-09-18 20:55 . 2009-09-18 20:55 -------- d-----w- c:\program files\QuickTime
2009-09-16 20:21 . 2009-09-07 11:32 18632 ----a-w- c:\windows\system32\dopdfmi6.dll
2009-09-16 20:21 . 2009-09-07 11:32 21192 ----a-w- c:\windows\system32\dopdfmn6.dll
2009-09-16 20:21 . 2009-09-16 20:21 -------- d-----w- c:\program files\Softland
2009-09-15 14:45 . 2009-09-15 14:45 -------- d-----w- c:\program files\Common Files\Windows Live
2009-09-15 14:44 . 2009-09-15 14:44 -------- d-----w- c:\program files\MSXML 4.0
2009-09-15 14:43 . 2009-08-14 17:07 897608 ----a-w- c:\windows\system32\drivers\tcpip.sys
2009-09-15 14:43 . 2009-08-14 16:29 104960 ----a-w- c:\windows\system32\netiohlp.dll
2009-09-15 14:43 . 2009-08-14 14:16 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-09-15 14:43 . 2009-08-14 14:16 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-09-15 14:43 . 2009-08-14 14:16 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-09-15 14:43 . 2009-08-14 14:16 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-09-15 14:43 . 2009-08-14 14:16 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-09-15 14:43 . 2009-08-14 14:16 10240 ----a-w- c:\windows\system32\finger.exe
2009-09-15 14:43 . 2009-08-14 14:16 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-09-15 14:43 . 2009-08-14 16:29 17920 ----a-w- c:\windows\system32\netevent.dll
2009-09-15 14:42 . 2009-06-10 12:11 2868224 ----a-w- c:\windows\system32\mf.dll
2009-09-15 14:42 . 2009-07-11 19:32 293376 ----a-w- c:\windows\system32\wlanmsm.dll
2009-09-15 14:42 . 2009-07-11 19:32 302592 ----a-w- c:\windows\system32\wlansec.dll
2009-09-15 14:42 . 2009-07-11 19:29 127488 ----a-w- c:\windows\system32\L2SecHC.dll
2009-09-15 14:42 . 2009-07-11 19:32 513024 ----a-w- c:\windows\system32\wlansvc.dll
2009-09-07 17:17 . 2009-09-07 17:17 -------- d-----w- c:\programdata\Nokia
2009-09-03 13:52 . 2009-09-03 13:52 -------- d-----w- c:\program files\Common Files\PCSuite
2009-09-03 13:52 . 2009-09-07 17:17 -------- d-----w- c:\program files\Common Files\Nokia
2009-09-03 13:52 . 2008-08-26 09:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2009-09-03 13:51 . 2009-09-03 13:51 -------- d-----w- c:\program files\PC Connectivity Solution
2009-09-02 13:40 . 2009-08-28 12:39 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2009-09-02 13:40 . 2009-08-28 10:15 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2009-08-28 18:42 . 2009-08-28 18:42 40448 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2009-08-28 18:42 . 2009-08-28 18:42 2065696 ----a-w- c:\windows\system32\usbaaplrc.dll
2009-08-26 14:46 . 2009-06-22 10:22 2048 ----a-w- c:\windows\system32\tzres.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-09-18 21:26 . 2009-01-31 15:22 -------- d-----w- c:\programdata\Apple
2009-09-18 20:59 . 2009-01-31 15:25 -------- d-----w- c:\users\Daniel\AppData\Roaming\Apple Computer
2009-09-18 20:56 . 2009-01-31 15:22 -------- d-----w- c:\program files\Common Files\Apple
2009-09-18 20:55 . 2009-01-31 15:23 -------- d-----w- c:\programdata\Apple Computer
2009-09-16 15:46 . 2009-02-02 23:25 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-09-15 14:48 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-09-14 21:06 . 2009-02-01 12:35 -------- d-----w- c:\users\Daniel\AppData\Roaming\uTorrent
2009-09-10 13:54 . 2009-02-02 23:25 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-10 13:53 . 2009-02-02 23:25 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-09-10 09:12 . 2009-05-23 18:14 680 ----a-w- c:\users\Daniel\AppData\Local\d3d9caps.dat
2009-09-07 17:17 . 2009-01-31 14:57 -------- d-----w- c:\program files\Nokia
2009-09-07 17:16 . 2009-01-31 14:56 -------- d-----w- c:\programdata\Installations
2009-09-07 17:07 . 2009-09-07 17:07 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf
2009-09-03 13:52 . 2009-01-31 15:06 -------- d-----w- c:\program files\DIFX
2009-09-01 18:47 . 2009-08-06 19:07 -------- d-----w- c:\programdata\NCH Swift Sound
2009-09-01 14:17 . 2009-07-08 13:42 -------- d-----w- c:\program files\Java
2009-08-25 17:07 . 2009-02-03 13:25 74328 ----a-w- c:\windows\system32\drivers\inspect.sys
2009-08-25 17:07 . 2009-02-03 13:25 179792 ----a-w- c:\windows\system32\guard32.dll
2009-08-25 17:07 . 2009-02-03 13:25 29520 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2009-08-25 17:07 . 2009-02-03 13:25 128888 ----a-w- c:\windows\system32\drivers\cmdguard.sys
2009-08-17 16:10 . 2009-01-31 14:34 1279456 ----a-w- c:\windows\system32\aswBoot.exe
2009-08-17 16:05 . 2009-01-31 14:34 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2009-08-17 16:05 . 2009-01-31 14:34 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2009-08-17 16:05 . 2009-01-31 14:34 53328 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2009-08-17 16:04 . 2009-01-31 14:34 51376 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-08-17 16:04 . 2009-01-31 14:34 23152 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-08-17 16:02 . 2009-01-31 14:34 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-08-06 19:42 . 2009-08-06 19:07 -------- d-----w- c:\program files\NCH Swift Sound
2009-08-06 19:07 . 2009-08-06 19:07 -------- d-----w- c:\users\Daniel\AppData\Roaming\NCH Swift Sound
2009-08-06 18:41 . 2009-08-06 18:38 -------- d-----w- c:\program files\Cool MP3 Splitter
2009-07-31 07:21 . 2009-07-30 18:56 -------- d-----w- c:\users\Daniel\AppData\Roaming\dvdcss
2009-07-30 19:03 . 2009-02-06 16:34 -------- d-----w- c:\program files\Xilisoft
2009-07-30 18:52 . 2009-07-30 18:47 -------- d-----w- c:\program files\Winnydows
2009-07-30 18:47 . 2009-07-30 18:47 -------- d-----w- c:\program files\AviSynth 2.5
2009-07-30 18:37 . 2009-07-29 21:47 -------- d-----w- c:\program files\HP
2009-07-30 18:35 . 2009-07-29 21:46 -------- d-----w- c:\programdata\HP
2009-07-30 18:28 . 2009-07-30 17:53 -------- d-----w- c:\program files\DVD-Cloner Platinum
2009-07-30 17:31 . 2009-02-05 08:14 -------- d-----w- c:\users\Daniel\AppData\Roaming\Vso
2009-07-30 13:51 . 2009-07-30 13:51 -------- d-----w- c:\users\Daniel\AppData\Roaming\Image Zone Express
2009-07-30 13:51 . 2009-07-30 13:51 -------- d-----w- c:\users\Daniel\AppData\Roaming\Printer Info Cache
2009-07-29 21:59 . 2009-07-29 21:59 -------- d-----w- c:\programdata\WEBREG
2009-07-29 21:57 . 2009-07-29 21:56 -------- d-----w- c:\users\Daniel\AppData\Roaming\HP
2009-07-29 21:50 . 2009-07-29 21:50 -------- d-----w- c:\program files\Common Files\Hewlett-Packard
2009-07-28 13:11 . 2009-04-07 07:23 -------- d-----w- c:\programdata\Microsoft Help
2009-07-25 04:23 . 2009-07-08 13:42 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-07-21 21:52 . 2009-08-05 11:46 915456 ----a-w- c:\windows\system32\wininet.dll
2009-07-21 21:47 . 2009-08-05 11:46 109056 ----a-w- c:\windows\system32\iesysprep.dll
2009-07-21 21:47 . 2009-08-05 11:46 71680 ----a-w- c:\windows\system32\iesetup.dll
2009-07-21 20:13 . 2009-08-05 11:46 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-07-17 21:21 . 2009-07-17 20:11 156672 ----a-w- c:\windows\system32\rmc_fixasf.exe
2009-07-17 21:21 . 2009-07-17 20:11 237568 ----a-w- c:\windows\system32\rmc_rtspdl.dll
2009-07-17 21:21 . 2009-07-17 20:10 323584 ----a-w- c:\windows\system32\AUDIOGENIE2.DLL
2009-07-17 14:35 . 2009-08-20 11:12 71680 ----a-w- c:\windows\system32\atl.dll
2009-07-16 22:04 . 2009-07-16 22:04 17451008 ----a-w- c:\windows\system32\imageres.dll
2009-07-14 13:00 . 2009-08-20 11:12 313344 ----a-w- c:\windows\system32\wmpdxm.dll
2009-07-14 12:59 . 2009-08-20 11:12 4096 ----a-w- c:\windows\system32\dxmasf.dll
2009-07-14 12:58 . 2009-08-20 11:12 7680 ----a-w- c:\windows\system32\spwmp.dll
2009-07-14 10:59 . 2009-08-20 11:12 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2007-07-13 10:29 . 2007-03-07 12:54 8192 --sha-w- c:\windows\Users\Default\NTUSER.DAT
.

((((((((((((((((((((((((((((( SnapShot_2009-09-18_13.46.15 )))))))))))))))))))))))))))))))))))))))))
.
+ 2007-09-20 16:52 . 2009-09-19 08:17 50724 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
- 2007-09-20 16:52 . 2009-09-18 13:35 50724 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2006-11-02 13:05 . 2009-09-19 09:41 85088 c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2009-01-31 14:29 . 2009-09-19 09:41 12378 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-851244455-3135899847-4148953319-1002_UserData.bin
+ 2009-09-18 20:58 . 2009-05-18 13:17 26600 c:\windows\System32\DRVSTORE\GEARAspiWD_3B7AACF0636A2C042EB7AD2AFF76D37B27BDD28C\x86\GEARAspiWDM.sys
+ 2009-08-28 18:42 . 2009-08-28 18:42 40448 c:\windows\System32\DriverStore\FileRepository\usbaapl.inf_5f8e430d\usbaapl.sys
+ 2009-08-28 18:42 . 2009-08-28 18:42 17408 c:\windows\System32\DriverStore\FileRepository\netaapl.inf_56082f61\netaapl.sys
+ 2008-12-07 13:52 . 2009-09-19 09:41 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2008-12-07 13:52 . 2009-09-18 13:27 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2008-12-07 13:52 . 2009-09-18 13:27 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2008-12-07 13:52 . 2009-09-19 09:41 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2008-12-07 13:52 . 2009-09-19 09:41 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2008-12-07 13:52 . 2009-09-18 13:27 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2006-11-02 10:25 . 2009-09-03 13:53 86016 c:\windows\inf\infstor.dat
+ 2006-11-02 10:25 . 2009-09-18 20:52 86016 c:\windows\inf\infstor.dat
- 2006-11-02 10:25 . 2009-09-14 21:09 51200 c:\windows\inf\infpub.dat
+ 2006-11-02 10:25 . 2009-09-18 20:52 51200 c:\windows\inf\infpub.dat
+ 2006-11-02 10:33 . 2009-09-19 09:43 599942 c:\windows\System32\perfh009.dat
- 2006-11-02 10:33 . 2009-09-18 13:38 599942 c:\windows\System32\perfh009.dat
- 2006-11-02 10:33 . 2009-09-18 13:38 105448 c:\windows\System32\perfc009.dat
+ 2006-11-02 10:33 . 2009-09-19 09:43 105448 c:\windows\System32\perfc009.dat
+ 2009-09-18 20:58 . 2008-04-17 12:12 107368 c:\windows\System32\DRVSTORE\GEARAspiWD_3B7AACF0636A2C042EB7AD2AFF76D37B27BDD28C\x86\GEARAspi.dll
+ 2009-09-18 20:53 . 2009-09-18 20:53 694272 c:\windows\Installer\5834c.msi
+ 2009-09-18 20:58 . 2009-09-18 20:58 102400 c:\windows\Installer\{EC2A8F27-4FBF-4E41-B27B-FE822511B761}\iTunesIco.exe
- 2006-11-02 10:25 . 2009-09-14 21:09 143360 c:\windows\inf\infstrng.dat
+ 2006-11-02 10:25 . 2009-09-18 20:52 143360 c:\windows\inf\infstrng.dat
+ 2009-08-28 18:42 . 2009-08-28 18:42 2065696 c:\windows\System32\DriverStore\FileRepository\usbaapl.inf_5f8e430d\usbaaplrc.dll
+ 2009-08-28 18:42 . 2009-08-28 18:42 1417504 c:\windows\System32\DriverStore\FileRepository\netaapl.inf_56082f61\wdfcoinstaller01005.dll
+ 2009-09-18 20:58 . 2009-09-18 20:58 4597248 c:\windows\Installer\585de.msi
+ 2009-09-18 20:55 . 2009-09-18 20:55 9013760 c:\windows\Installer\585da.msi
+ 2009-09-18 20:53 . 2009-09-18 20:53 3310592 c:\windows\Installer\5833d.msi
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"="c:\program files\CCleaner\CCleaner.exe" [2009-09-02 1682744]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]
"CubeDesktop"="c:\program files\CubeDesktop\cubedesktop.exe" [2008-03-19 4786688]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]
"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-06-25 1414144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BJCFD"="c:\program files\BroadJump\Client Foundation\CFD.exe" [2003-01-27 376912]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-08-17 81000]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-03-27 13687328]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-03-27 92704]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2009-08-25 1796368]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-25 149280]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-05 417792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-09-08 305440]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2007-09-20 4669440]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{D67B3460-2506-4954-BB5D-61BA794064B2}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{475CB90A-9CE5-4CBF-9832-6B5A18C3D5E4}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{5EB6274F-689A-45A7-97F7-DFE1087D59E2}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{A3469DEE-5F78-4CA2-910F-AD6AF3D944AD}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"{4E90E22E-2674-47A6-BFE7-1B5F23AADFFF}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent (TCP-In)
"{7F397FFF-482B-4A9B-A69A-B6BA45898FA2}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent (UDP-In)
"TCP Query User{4CC78172-6C16-464B-8456-1E624974DF8A}c:\\program files\\utorrent\\utorrent.exe"= UDP:c:\program files\utorrent\utorrent.exe:µTorrent
"UDP Query User{78061792-E836-40C4-BCF2-45630E9CADD7}c:\\program files\\utorrent\\utorrent.exe"= TCP:c:\program files\utorrent\utorrent.exe:µTorrent
"{531AF133-3019-4D5E-B68F-91695007A3DF}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{1C124657-07D1-41D0-82C7-A53EE31C0258}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"TCP Query User{4D0D2B6B-B6B5-468D-AC5C-96637E23F004}c:\\program files\\sopcast\\sopcast.exe"= UDP:c:\program files\sopcast\sopcast.exe:SopCast Main Application
"UDP Query User{34D941A4-7E29-4881-B353-8D890C3F7A1C}c:\\program files\\sopcast\\sopcast.exe"= TCP:c:\program files\sopcast\sopcast.exe:SopCast Main Application
"TCP Query User{6E607C68-EFE9-4CDE-B3CA-9C7E3E7BFBD0}c:\\program files\\sopcast\\adv\\sopadver.exe"= UDP:c:\program files\sopcast\adv\sopadver.exe:SopCast Adver
"UDP Query User{F42C864B-1F33-4F8C-A5DC-9FF5F04F3315}c:\\program files\\sopcast\\adv\\sopadver.exe"= TCP:c:\program files\sopcast\adv\sopadver.exe:SopCast Adver
"{869BD642-41C4-45EE-8542-7B6B014C24A1}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{8E65B9D3-6233-4305-A077-312EE28E5CD8}"= UDP:c:\program files\microsoft office\Office12\GROOVE.EXE:Microsoft Office Groove
"{E9C86E90-1C9F-4DFF-9634-7BC66684F2D1}"= TCP:c:\program files\microsoft office\Office12\GROOVE.EXE:Microsoft Office Groove
"{544EE587-4332-4B99-A216-FC21B7E917BC}"= UDP:c:\program files\microsoft office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{44D2998D-B576-46D0-A86E-67B51918B09C}"= TCP:c:\program files\microsoft office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"TCP Query User{6C1A69CF-A50C-41E1-9E4C-6E73F07433E9}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= UDP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater
"UDP Query User{9EB3DF69-75A2-4A5F-963D-C4D89EF3641D}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= TCP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater
"TCP Query User{DABDB07A-13D4-4360-934C-FCA55DB04DCB}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= UDP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process
"UDP Query User{D62591ED-CA7F-4552-AA34-0BD4BE8C2B38}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= TCP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process
"{A94293C2-BD47-4EE3-A114-F3625979E036}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{A23D2528-BF7D-4811-BF1B-1A7D19AF9B62}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes

R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [1/31/2009 3:34 PM 114768]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\System32\drivers\cmdguard.sys [2/3/2009 2:25 PM 128888]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\System32\drivers\cmdhlp.sys [2/3/2009 2:25 PM 29520]
R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [1/31/2009 3:34 PM 20560]
R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [1/31/2009 3:34 PM 53328]
R3 Ph3xIB32;Philips 713x VU PCI TV Card;c:\windows\System32\drivers\Ph3xIB32.sys [4/3/2007 11:43 AM 1131136]
R3 rt61x86;Ralink RT61 Wireless Driver for Windows Vista;c:\windows\System32\drivers\netr61.sys [6/10/2009 6:38 AM 335872]
S3 HCW713x;Hauppauge 713x VU PCI TV Card;c:\windows\System32\drivers\HCW713x.sys [9/20/2007 4:48 PM 976256]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\System32\drivers\nmwcdnsu.sys [3/19/2009 2:48 PM 136704]
S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\System32\drivers\nmwcdnsuc.sys [3/19/2009 2:48 PM 8320]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\System32\rundll32.exe" "c:\windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contents of the 'Scheduled Tasks' folder

2009-09-18 c:\windows\Tasks\User_Feed_Synchronization-{61E0577F-51D9-428F-AF81-7B8CCE228B2A}.job
- c:\windows\system32\msfeedssync.exe [2009-08-05 20:13]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.virginmedia.com
mStart Page = about:blank
uInternet Settings,ProxyOverride = plimus.com;www.plimus.com;regnow.com;www.regnow.com
IE: Add to AMV Converter... - c:\program files\MP3 Player Utilities 4.18\AMVConverter\grab.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://m.uk.yahoo.com/|http://twitter.com/|http://www.ebay.co.uk/|http://en-gb.facebook.com/|http://www.therunningbug.co.uk/Forum.aspx
FF - prefs.js: network.proxy.socks - 127.0.0.1
FF - prefs.js: network.proxy.socks_port - 7070
FF - prefs.js: network.proxy.type - 4
FF - component: c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\extensions\{20deece9-b83b-4389-b0b0-c562d8a70302}\components\FFExternalAlert.dll
FF - plugin: c:\program files\mozilla firefox\plugins\np-mswmp.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.

**************************************************************************
scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files:

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'Explorer.exe'(3692)
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_eng.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
.
------------------------ Other Running Processes ------------------------
.
c:\windows\System32\nvvsvc.exe
c:\program files\COMODO\COMODO Internet Security\cmdagent.exe
c:\windows\System32\audiodg.exe
c:\windows\System32\rundll32.exe
c:\program files\alwil software\Avast4\aswUpdSv.exe
c:\program files\alwil software\Avast4\ashServ.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\windows\System32\WUDFHost.exe
c:\program files\alwil software\Avast4\ashMaiSv.exe
c:\program files\alwil software\Avast4\ashWebSv.exe
c:\windows\ehome\ehsched.exe
c:\windows\ehome\ehrecvr.exe
.
**************************************************************************
.
Completion time: 2009-09-19 11:45 - machine was rebooted
ComboFix-quarantined-files.txt 2009-09-19 10:45
ComboFix2.txt 2009-09-18 13:47
ComboFix3.txt 2009-06-13 10:53
ComboFix4.txt 2009-06-13 10:31
ComboFix5.txt 2009-09-19 10:33

Pre-Run: 112,817,160,192 bytes free
Post-Run: 112,738,082,816 bytes free

283 --- E O F --- 2009-09-15 14:50
Back to Top
 

Jintan
Senior Member




Date Joined Dec 2006
Total Posts : 1428
 
   Posted 9/19/2009 5:49 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
Nothing other than your security software showing, as far as keeping the Gmer scan from completing. Let's see if you can just run one other type of scan with it. Make very sure all security software is temp disabled when running the scan.

The logs show firewall work-around proxy server setting pointing to port 7070. Did you set this yourself, or recognize the use of it?


Open Gmer again, but this time right click in the white space in the display and select Options - Only non MS files. Then click Scan and allow Gmer to run a different scan. Once that completes click on the Copy button and rightclick on your Desktop, choose "New" > Text document. Once the file is created, open it and rightclick again and choose Paste. Copy the information and post it here please.


Click here and help my friend help stop leukemia, lymphoma, Hodgkin lymphoma and myeloma from taking more lives.

Back to Top
 

danny-boy
Junior Member


Date Joined Aug 2007
Total Posts : 70
 
   Posted 9/19/2009 6:16 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
Here you go, that scanned fine.

As for port 7070 thing, I dont even know what that means, so its nothing I've set!!





GMER 1.0.15.15087 - http://www.gmer.net
Rootkit scan 2009-09-19 16:13:15
Windows 6.0.6001 Service Pack 1
Running: g7g5ed2w.exe; Driver: C:\Users\Daniel\AppData\Local\Temp\kwldapob.sys


---- Modules - GMER 1.0.15 ----

Module \SystemRoot\system32\DRIVERS\nvlddmkm.sys (NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 182.50 /NVIDIA Corporation) 8E609000-8ED6B000 (7741440 bytes)
Module \SystemRoot\system32\DRIVERS\nvBridge.kmd (NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 182.50 /NVIDIA Corporation) 8ED6B000-8ED6D000 (8192 bytes)
Module \SystemRoot\system32\DRIVERS\e1e6032.sys (Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver/Intel Corporation) 8ED7A000-8EDB5000 (241664 bytes)
Module \SystemRoot\system32\DRIVERS\Ph3xIB32.sys (Ph3xIBxx/Philips Semiconductors GmbH) 8F00E000-8F123000 (1134592 bytes)
Module \SystemRoot\system32\DRIVERS\netr61.sys (Ralink 802.11 Wireless Adapter Driver/Ralink Technology, Corp.) 8F150000-8F1A9000 (364544 bytes)
Module \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys (CD DVD Filter/GEAR Software Inc.) 8F1F4000-8F1FA000 (24576 bytes)
Module \SystemRoot\System32\Drivers\pcouffin.sys (low level access layer for CD/DVD/BD devices/VSO Software) 8F4D8000-8F4E4000 (49152 bytes)
Module \SystemRoot\system32\DRIVERS\mssmbios.sys (System Management BIOS Driver/Microsoft Corporation) 8F51A000-8F524000 (40960 bytes)
Module \SystemRoot\system32\drivers\RTKVHDA.sys (Realtek(r) High Definition Audio Function Driver/Realtek Semiconductor Corp.) 8F60B000-8F7C0000 (1789952 bytes)
Module \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) 8F5A5000-8F5C7000 (139264 bytes)
Module \SystemRoot\System32\DRIVERS\cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO) 8FAD5000-8FADF000 (40960 bytes)
Module \SystemRoot\System32\Drivers\aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software) 8FAF3000-8FAFE000 (45056 bytes)
Module \SystemRoot\System32\Drivers\aswRdr.SYS (avast! TDI RDR Driver/ALWIL Software) 8FB46000-8FB4A000 (16384 bytes)
Module \SystemRoot\system32\DRIVERS\inspect.sys (COMODO Internet Security Firewall Driver/COMODO) 8FB92000-8FBA7000 (86016 bytes)
Module \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) 8FE5E000-8FE7F000 (135168 bytes)
Module \SystemRoot\system32\DRIVERS\aswMonFlt.sys (avast! File System Minifilter for Windows 2003/Vista/ALWIL Software) 8FED3000-8FEEA000 (94208 bytes)
Module \SystemRoot\system32\DRIVERS\aswFsBlk.sys (avast! File System Access Blocking Driver/ALWIL Software) 8FEEA000-8FEF2000 (32768 bytes)
Module \SystemRoot\System32\Drivers\secdrv.SYS (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) 9E2E2000-9E2EC000 (40960 bytes)
Module \??\C:\Users\Daniel\AppData\Local\Temp\kwldapob.sys (GMER) 9E337000-9E34C000 (86016 bytes)

---- Processes - GMER 1.0.15 ----

Process C:\Windows\system32\csrss.exe (Client Server Runtime Process/Microsoft Corporation) 528
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 584
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000

Process C:\Windows\system32\wininit.exe (Windows Start-Up Application/Microsoft Corporation) 588
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\csrss.exe (Client Server Runtime Process/Microsoft Corporation) 600
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Program Files\iPod\bin\iPodService.exe (iPodService Module (32-bit)/Apple Inc.) 628
Library C:\Program Files\iPod\bin\iPodService.exe (iPodService Module (32-bit)/Apple Inc.) 0x000B0000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.DLL (iPodService Resource Library (32-bit)/Apple Inc.) 0x6E1D0000
Library C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL (iPodService Resource Library (32-bit)/Apple Inc.) 0x6E1C0000

Process C:\Windows\system32\services.exe (Services and Controller app/Microsoft Corporation) 632
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) 644
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\lsm.exe (Local Session Manager Service/Microsoft Corporation) 656
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\System32\spoolsv.exe (Spooler SubSystem App/Microsoft Corporation) 676
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\System32\dopdfmn6.dll (doPDF Port Monitor/Softland) 0x00400000
Library C:\Windows\System32\LXAKSLM.DLL (Lexmark Z55 System Driver Language Monitor/Lexmark) 0x003C0000
Library C:\Windows\System32\LXAKSUI.dll (Printer Driver UI Customization Plug-In/Lexmark) 0x50000000
Library C:\Windows\System32\hpz3llhn.dll (LanguageMonitor/Hewlett-Packard Company) 0x70760000
Library C:\Windows\System32\msonpmon.dll (Microsoft Office OneNote 2007 Printer Driver/Microsoft Corporation) 0x701F0000
Library C:\Windows\System32\usbmon.dll (Standard Dynamic Printing Port Monitor DLL/Microsoft Corporation) 0x6FCA0000
Library C:\Windows\system32\spool\PRTPROCS\W32X86\hpzpplhn.dll (Hewlett-Packard Corporation) 0x6FAF0000
Library C:\Windows\system32\spool\PRTPROCS\W32X86\mdippr.dll (Microsoft® Document Imaging/Microsoft Corporation) 0x00450000
Library C:\Windows\system32\spool\PRTPROCS\W32X86\msonpppr.dll (Microsoft Office OneNote 2007 Printer Driver/Microsoft Corporation) 0x6FAE0000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000

Process C:\Windows\ehome\ehRecvr.exe (Windows Media Center Receiver Service/Microsoft Corporation) 784
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\system32\MSACM32.dll (Microsoft ACM Audio Filter/Microsoft Corporation) 0x74270000
Library C:\Windows\system32\Ph3xIB32MV.dll (KS Proxy Plugin/Philips Semiconductors GmbH) 0x6BAC0000
Library C:\Windows\System32\Hauppauge\SoftMCE\mceesmpeg.ax (MPEG Encoder and Muxer/MainConcept AG) 0x10000000
Library C:\Windows\System32\Hauppauge\SoftMCE\mcempgaout.dll (MPEG Audio Encoder/MainConcept AG) 0x24000000
Library C:\Windows\System32\Hauppauge\SoftMCE\mcempgvout.dll (MPEG Video Wrapper/MainConcept AG) 0x00EF0000
Library C:\Windows\System32\Hauppauge\SoftMCE\mcempgmux.dll (MPEG Multiplexer/MainConcept AG) 0x00FC0000
Library C:\Windows\System32\Hauppauge\SoftMCE\mcempgvout.004 (MPEG Video Encoder/MainConcept AG) 0x03130000
Library C:\Windows\System32\tvratings.dll (TestRat Rating Test Module/Microsoft) 0x6B350000

Process C:\Windows\system32\winlogon.exe (Windows Logon Application/Microsoft Corporation) 824
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 848
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\nvvsvc.exe (NVIDIA Driver Helper Service, Version 182.50/NVIDIA Corporation) 912
Library C:\Windows\system32\nvvsvc.exe (NVIDIA Driver Helper Service, Version 182.50/NVIDIA Corporation) 0x00400000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 940
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO Internet Security/COMODO) 984
Library C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO Internet Security/COMODO) 0x00400000
Library C:\Windows\system32\FLTLIB.DLL (Filter Library/Microsoft Corporation) 0x75560000
Library C:\Program Files\COMODO\COMODO Internet Security\framework.dll (COMODO Internet Security/COMODO) 0x10000000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\common.cav (COMODO Internet Security/COMODO) 0x33310000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\first.cav (COMODO Internet Security/COMODO) 0x33330000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\pe32.cav (COMODO Internet Security/COMODO) 0x33320000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\script.cav 0x003D0000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\dosmz.cav (COMODO Internet Security/COMODO) 0x33340000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\white.cav (COMODO Internet Security/COMODO) 0x003E0000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\heur.cav (COMODO Internet Security/COMODO) 0x00BC0000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\pkann.dll (COMODO Internet Security/COMODO) 0x01D70000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\pe.cav (COMODO Internet Security/COMODO) 0x00C60000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\unsfx.cav (COMODO Internet Security/COMODO) 0x01C40000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\unpack.cav (COMODO Internet Security/COMODO) 0x03630000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\unarch.cav (COMODO Internet Security/COMODO) 0x03590000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\gunpack.cav (COMODO Internet Security/COMODO) 0x036F0000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\mach32.dll (COMODO Internet Security/COMODO) 0x03750000
Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\mem.cav (COMODO Internet Security/COMODO) 0x01EE0000

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1068
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library c:\windows\system32\ACTIVEDS.dll (ADs Router Layer DLL/Microsoft Corporation) 0x729B0000
Library C:\Windows\system32\ndptsp.tsp (NDIS Proxy TAPI Service Provider/Microsoft Corporation) 0x717E0000

Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1088
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1144
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1200
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library c:\windows\system32\tabsvc.dll (Microsoft Tablet PC Input Service/Microsoft Corporation) 0x74120000
Library C:\Windows\System32\ACTIVEDS.dll (ADs Router Layer DLL/Microsoft Corporation) 0x729B0000

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1212
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\system32\ACTIVEDS.dll (ADs Router Layer DLL/Microsoft Corporation) 0x729B0000
Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000
Library C:\Windows\system32\wbem\ncprov.dll (Non-COM WMI Event Provision APIs/Microsoft Corporation) 0x72790000
Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000

Process C:\Windows\system32\AUDIODG.EXE (Windows Audio Device Graph Isolation /Microsoft Corporation) 1304
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\system32\RtkAPO.dll (Realtek(r) LFX/GFX DSP component/Realtek Semiconductor Corp.) 0x73F20000

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1336
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\SLsvc.exe (Microsoft Software Licensing Service/Microsoft Corporation) 1356
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1384
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library c:\windows\system32\webclnt.dll (Web DAV Service DLL/Microsoft Corporation) 0x72B70000
Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000
Library c:\windows\system32\upnphost.dll (UPnP Device Host/Microsoft Corporation) 0x6E010000

Process C:\Program Files\Windows Media Player\wmpnscfg.exe (Windows Media Player Network Sharing Service Configuration Application/Microsoft Corporation) 1428
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x005B0000

Process C:\Windows\system32\taskeng.exe (Task Scheduler Engine/Microsoft Corporation) 1580
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\system32\pautoenr.dll (Auto Enrollment DLL/Microsoft Corporation) 0x70690000

Process C:\Windows\system32\rundll32.exe (Windows host process (Rundll32)/Microsoft Corporation) 1620
Library C:\Windows\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) 0x73730000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\system32\NVSVC.DLL (NVIDIA Driver Helper Service, Version 182.50/NVIDIA Corporation) 0x10000000
Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000
Library C:\Windows\system32\nvapi.dll (NVIDIA NVAPI Library, Version 182.50 /NVIDIA Corporation) 0x008D0000
Library C:\Windows\system32\NVSVCR.DLL (NVIDIA Driver Helper Service Localized Resources, Version 182.50/NVIDIA Corporation) 0x01720000

Process C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (avast! Antivirus updating service/ALWIL Software) 1856
Library C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (avast! Antivirus updating service/ALWIL Software) 0x00400000
Library C:\Program Files\Alwil Software\Avast4\aswCmnS.dll (Common non-portable functions/ALWIL Software) 0x64100000
Library C:\Program Files\Alwil Software\Avast4\aswCmnOS.dll (Antivirus HW dependent library/ALWIL Software) 0x64000000
Library C:\Program Files\Alwil Software\Avast4\aswCmnB.dll (High level portable functions/ALWIL Software) 0x64080000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Program Files\Alwil Software\Avast4\ashServ.exe (avast! antivirus service/ALWIL Software) 1876
Library C:\Program Files\Alwil Software\Avast4\ashServ.exe (avast! antivirus service/ALWIL Software) 0x00400000
Library C:\Program Files\Alwil Software\Avast4\aswAux.dll (avast! Auxiliary Library/ALWIL Software) 0x64580000
Library C:\Program Files\Alwil Software\Avast4\aswCmnB.dll (High level portable functions/ALWIL Software) 0x64080000
Library C:\Program Files\Alwil Software\Avast4\aswCmnOS.dll (Antivirus HW dependent library/ALWIL Software) 0x64000000
Library C:\Program Files\Alwil Software\Avast4\aswEngin.dll (High level antivirus engine/ALWIL Software) 0x64280000
Library C:\Program Files\Alwil Software\Avast4\aswScan.dll (Low level antivirus engine/ALWIL Software) 0x64200000
Library C:\Program Files\Alwil Software\Avast4\aswCmnS.dll (Common non-portable functions/ALWIL Software) 0x64100000
Library C:\Program Files\Alwil Software\Avast4\ashBase.dll (Basic Functionality Module/ALWIL Software) 0x64500000
Library C:\Program Files\Alwil Software\Avast4\ashTask.dll (Task Handling Module/ALWIL Software) 0x64800000
Library C:\Program Files\Alwil Software\Avast4\aswInteg.dll (Integrity checking implementation/ALWIL Software) 0x64400000
Library C:\Program Files\Alwil Software\Avast4\aswIdle.dll (avast! Idle Hook Library/ALWIL Software) 0x64A00000
Library C:\Program Files\Alwil Software\Avast4\Aavm4h.dll (avast! Asynchronous Virus Monitor (AAVM)/ALWIL Software) 0x65000000
Library C:\Program Files\Alwil Software\Avast4\AavmRpch.dll (avast! AAVM Remote Procedure Call Library/ALWIL Software) 0x65100000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\Alwil Software\Avast4\English\Base.dll (avast! English Basic Module/ALWIL Software) 0x66080000
Library C:\Windows\system32\FltLib.dll (Filter Library/Microsoft Corporation) 0x75560000
Library C:\Program Files\Alwil Software\Avast4\AhResMai.dll (avast! e-Mail Scanner AAVM Provider Library/ALWIL Software) 0x65380000
Library C:\Program Files\Alwil Software\Avast4\ahResMes.dll (avast!4 Messenger scanner AAVM Provider Library/ALWIL Software) 0x65880000
Library C:\Program Files\Alwil Software\Avast4\AhResNS.dll (avast!4 Network Shield AAVM Provider Library/ALWIL Software) 0x65980000
Library C:\Program Files\Alwil Software\Avast4\AhResOut.dll (avast! MS Outlook/Exchange AAVM Provider Library/ALWIL Software) 0x65280000
Library C:\Program Files\Alwil Software\Avast4\ahResP2P.dll (avast!4 P2P Shield AAVM Provider Library/ALWIL Software) 0x658C0000
Library C:\Program Files\Alwil Software\Avast4\AhResStd.dll (avast! Standard Shield AAVM Provider Library/ALWIL Software) 0x65180000
Library C:\Program Files\Alwil Software\Avast4\AhResWS.dll (avast! HTTP Scanner AAVM Provider Library/ALWIL Software) 0x65A00000
Library C:\Program Files\Alwil Software\Avast4\ashSSqlt.dll (avast! Sqlt Storage Module/ALWIL Software) 0x64880000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000
Library C:\Program Files\Alwil Software\Avast4\DATA\aswar0.dll (Avast! anti-rootkit module/ALWIL Software) 0x65E20000
Library C:\Program Files\Alwil Software\Avast4\aswRawFs.dll (Raw disk access library/ALWIL Software) 0x64180000

Process C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) 2072
Library C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) 0x00A90000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) 2084
Library C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) 0x00400000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 2116
Library c:\windows\system32\hpzinw12.dll (Dot4Net Module/Hewlett-Packard) 0x00400000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 2216
Library c:\windows\system32\hpzipm12.dll (PmlDrv Module/Hewlett-Packard) 0x00020000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 2232
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 2256
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\ehome\ehsched.exe (Windows Media Center Scheduler Service/Microsoft Corporation) 2272
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\SearchIndexer.exe (Microsoft Windows Search Indexer/Microsoft Corporation) 2316
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\WUDFHost.exe (Windows Driver Foundation - User-mode Driver Framework Host Process/Microsoft Corporation) 2672
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Program Files\Windows Sidebar\sidebar.exe (Windows Sidebar/Microsoft Corporation) 3020
Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x02850000
Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000
Library C:\Windows\system32\nvd3dum.dll (NVIDIA Compatible Vista WDDM D3D Driver, Version 182.50 /NVIDIA Corporation) 0x10000000
Library C:\Program Files\RocketDock\RocketDock.dll 0x042D0000

Process C:\Windows\system32\taskeng.exe (Task Scheduler Engine/Microsoft Corporation) 3176
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\system32\pautoenr.dll (Auto Enrollment DLL/Microsoft Corporation) 0x70690000
Library C:\Windows\system32\MSACM32.dll (Microsoft ACM Audio Filter/Microsoft Corporation) 0x74270000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x02600000

Process C:\Windows\system32\Dwm.exe (Desktop Window Manager/Microsoft Corporation) 3192
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\system32\nvd3dum.dll (NVIDIA Compatible Vista WDDM D3D Driver, Version 182.50 /NVIDIA Corporation) 0x10000000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x051A0000

Process C:\Windows\Explorer.EXE (Windows Explorer/Microsoft Corporation) 3280
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\system32\MSImg32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000
Library C:\Windows\system32\MSACM32.dll (Microsoft ACM Audio Filter/Microsoft Corporation) 0x74270000
Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000
Library C:\Windows\system32\wscntfy.dll (Windows Security Center Notification App/Microsoft Corporation) 0x6EFC0000
Library C:\Program Files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll (Phone Browser/Nokia) 0x10000000
Library C:\Program Files\Nokia\Nokia PC Suite 7\NGSCM.DLL (Next Gen Suite Common Modules/Nokia) 0x074E0000
Library C:\Program Files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_eng.nlr (Nokia Phone Browser language resources/Nokia) 0x04060000
Library C:\Program Files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr (Nokia Phone Browser graphics resources/Nokia) 0x06F60000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x036B0000
Library C:\Windows\system32\bthprops.cpl (Bluetooth Control Panel Applet/Microsoft Corporation) 0x6DE40000
Library C:\Program Files\RocketDock\RocketDock.dll 0x035C0000

Process C:\Windows\System32\mobsync.exe (Microsoft Sync Center/Microsoft Corporation) 3500
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x00790000

Process C:\Program Files\BroadJump\Client Foundation\CFD.exe 3612
Library C:\Program Files\BroadJump\Client Foundation\CFD.exe 0x00400000
Library C:\Windows\system32\stlport_4_0_0_DDR.dll 0x689E0000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\BroadJump\Client Foundation\BJComRT.dll 0x68E00000
Library C:\Program Files\BroadJump\Client Foundation\BasicLoaderService.dll 0x68EE0000
Library C:\Program Files\BroadJump\Client Foundation\AppProperties.dll 0x68FA0000
Library C:\Program Files\BroadJump\Client Foundation\Marshaller.dll 0x68E80000
Library C:\Program Files\BroadJump\Client Foundation\TimerManager.dll 0x68860000
Library C:\Program Files\BroadJump\Client Foundation\BJComSRCManager.dll 0x68DB0000
Library C:\Program Files\BroadJump\Client Foundation\ConnectivityWatcher.dll 0x68C20000
Library C:\Windows\system32\BJBase_2-2-2_DDR.dll 0x68330000
Library C:\Program Files\BroadJump\Client Foundation\BJAgentRegistration.dll 0x60F50000
Library C:\Program Files\BroadJump\Client Foundation\BJFReg.dll 0x607A0000
Library C:\Program Files\BroadJump\Client Foundation\BJNet_2-2-4_DDR.dll 0x68250000
Library C:\Windows\system32\xerces-c_1_40_0_DDR.dll 0x68780000
Library C:\Windows\system32\SSLEAY32_1-1-0_DDR.DLL 0x10000000
Library C:\Windows\system32\LIBEAY32_1-1-0_DDR.DLL 0x02B90000
Library C:\Program Files\BroadJump\Client Foundation\ThirdPartyManager.dll 0x688E0000
Library C:\Program Files\BroadJump\Client Foundation\BJComSPMManager.dll 0x60AA0000
Library C:\Program Files\BroadJump\Client Foundation\ClientUpdate.dll 0x60520000
Library C:\Program Files\BroadJump\Client Foundation\ProfileManager.dll 0x65E20000
Library C:\Program Files\BroadJump\Client Foundation\DirectoryService.dll 0x61F70000
Library C:\Program Files\BroadJump\Client Foundation\BJComVTBlade.dll 0x60920000
Library C:\Program Files\BroadJump\Client Foundation\BJComAnnouncement.dll 0x60DC0000

Process C:\Program Files\alwil software\Avast4\ashDisp.exe (avast! service GUI component/ALWIL Software) 3632
Library C:\Program Files\alwil software\Avast4\ashDisp.exe (avast! service GUI component/ALWIL Software) 0x00400000
Library C:\Program Files\alwil software\Avast4\aswCmnOS.dll (Antivirus HW dependent library/ALWIL Software) 0x64000000
Library C:\Program Files\alwil software\Avast4\ashBase.dll (Basic Functionality Module/ALWIL Software) 0x64500000
Library C:\Program Files\alwil software\Avast4\aswCmnB.dll (High level portable functions/ALWIL Software) 0x64080000
Library C:\Program Files\alwil software\Avast4\aswCmnS.dll (Common non-portable functions/ALWIL Software) 0x64100000
Library C:\Program Files\alwil software\Avast4\ashTask.dll (Task Handling Module/ALWIL Software) 0x64800000
Library C:\Program Files\alwil software\Avast4\aswAux.dll (avast! Auxiliary Library/ALWIL Software) 0x64580000
Library C:\Program Files\alwil software\Avast4\Aavm4h.dll (avast! Asynchronous Virus Monitor (AAVM)/ALWIL Software) 0x65000000
Library C:\Program Files\alwil software\Avast4\AavmRpch.dll (avast! AAVM Remote Procedure Call Library/ALWIL Software) 0x65100000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\Alwil Software\Avast4\English\Base.dll (avast! English Basic Module/ALWIL Software) 0x66080000
Library C:\Program Files\Alwil Software\Avast4\English\Lang.dll (avast! Main English Module/ALWIL Software) 0x66100000
Library c:\program files\alwil software\avast4\ahruimai.dll (avast! e-Mail Scanner provider GUI/ALWIL Software) 0x65400000
Library C:\Program Files\alwil software\Avast4\ashUInt.dll (avast! User Interface Common Module/ALWIL Software) 0x64B00000
Library C:\Program Files\alwil software\Avast4\uiAux2.dll (uiAux2 DLL/ALWIL Software) 0x02AA0000
Library C:\Program Files\alwil software\Avast4\XT1922.dll (Xtreme Toolkit Library DLL/Codejock Software) 0x64C80000
Library c:\program files\alwil software\avast4\ahruimes.dll (avast!4 Messenger scanner AAVM Provider GUI Library/ALWIL Software) 0x65900000
Library c:\program files\alwil software\avast4\ahruins.dll (avast!4 Network Shield AAVM Provider GUI Library/ALWIL Software) 0x659C0000
Library c:\program files\alwil software\avast4\ahruiout.dll (avast! MS Outlook/Exchange AAVM Provider GUI Library/ALWIL Software) 0x65300000
Library c:\program files\alwil software\avast4\ahruip2p.dll (avast!4 P2P Shield AAVM Provider GUI Library/ALWIL Software) 0x65940000
Library c:\program files\alwil software\avast4\ahruistd.dll (avast! Standard Shield AAVM Provider GUI Library/ALWIL Software) 0x65200000
Library c:\program files\alwil software\avast4\ahruiws.dll (Avast! WWW Scanner AAVM Provider GUI Library/ALWIL Software) 0x65A40000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x003C0000
Library C:\Program Files\RocketDock\RocketDock.dll 0x10000000

Process C:\Program Files\Windows Media Player\wmpnetwk.exe (Windows Media Player Network Sharing Service/Microsoft Corporation) 3656
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000

Process C:\Windows\RtHDVCpl.exe (HD Audio Control Panel/Realtek Semiconductor) 3684
Library C:\Windows\RtHDVCpl.exe (HD Audio Control Panel/Realtek Semiconductor) 0x00400000
Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\system32\RtkAPO.dll (Realtek(r) LFX/GFX DSP component/Realtek Semiconductor Corp.) 0x73F20000

Process C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia Launch Application/Nokia) 3756
Library C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia Launch Application/Nokia) 0x00400000
Library C:\Program Files\Nokia\Nokia PC Suite 7\QtCore4.dll 0x67000000
Library C:\Program Files\Nokia\Nokia PC Suite 7\QtGui4.dll 0x65000000
Library C:\Program Files\Nokia\Nokia PC Suite 7\QtXml4.dll 0x61000000
Library C:\Program Files\Nokia\Nokia PC Suite 7\CDC.dll (CDC/Nokia) 0x10000000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\Nokia\Nokia PC Suite 7\PCSL.dll (PCSL/Nokia) 0x01970000
Library C:\Program Files\PC Connectivity Solution\ConnAPI.dll (Nokia Connectivity API/Nokia.) 0x01D60000
Library C:\Program Files\PC Connectivity Solution\DAAPI.dll (Data Access API/Nokia) 0x02930000
Library C:\Program Files\PC Connectivity Solution\PCCS_ABAPI.dll (Abstraction API/Nokia) 0x01E10000
Library C:\Program Files\Nokia\Nokia PC Suite 7\styles\NGLStyle.dll (Launch Application Style plugin/Nokia) 0x03460000
Library C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qjpeg4.dll 0x019E0000
Library C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qsvg4.dll 0x019C0000
Library C:\Program Files\Nokia\Nokia PC Suite 7\QtSvg4.dll 0x66000000
Library C:\Program Files\RocketDock\RocketDock.dll 0x01D30000
Library C:\Program Files\PC Connectivity Solution\ConfServer.dll (Configuration Server Module/Nokia) 0x01F30000
Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x03A50000

Process C:\Windows\System32\rundll32.exe (Windows host process (Rundll32)/Microsoft Corporation) 3764
Library C:\Windows\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) 0x73730000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\system32\NvMcTray.dll (NVIDIA Media Center Library/NVIDIA Corporation) 0x10000000
Library C:\Windows\System32\nvapi.dll (NVIDIA NVAPI Library, Version 182.50 /NVIDIA Corporation) 0x024C0000

Process C:\Program Files\microsoft office\Office12\GrooveMonitor.exe (GrooveMonitor Utility/Microsoft Corporation) 3772
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\system32\MSImg32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000

Process C:\Program Files\Java\jre6\bin\jusched.exe (Java(TM) Platform SE binary/Sun Microsystems, Inc.) 3892
Library C:\Program Files\Java\jre6\bin\jusched.exe (Java(TM) Platform SE binary/Sun Microsystems, Inc.) 0x00400000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000
Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000

Process C:\Program Files\iTunes\iTunesHelper.exe (iTunesHelper Module/Apple Inc.) 3908
Library C:\Program Files\iTunes\iTunesHelper.exe (iTunesHelper Module/Apple Inc.) 0x00EB0000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.DLL (iTunesHelper Resource Library/Apple Inc.) 0x74840000
Library C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL (iTunesHelper Resource Library/Apple Inc.) 0x74830000
Library C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll (CoreFoundation/Apple Inc.) 0x6DF40000
Library C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll (POSIX Threads for Windows32 Library/Open Source Software community project) 0x6F330000
Library C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll 0x6E060000
Library C:\Program Files\Common Files\Apple\Apple Application Support\icuin40.dll (IBM ICU I18N DLL/IBM Corporation and others) 0x6C840000
Library C:\Program Files\Common Files\Apple\Apple Application Support\icuuc40.dll (IBM ICU Common DLL/IBM Corporation and others) 0x6C3A0000
Library C:\Program Files\Common Files\Apple\Apple Application Support\icudt40.dll (ICU Data DLL/IBM Corporation and others) 0x670E0000
Library C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll 0x6F1B0000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x00E40000

Process C:\Windows\ehome\ehtray.exe (Media Center Tray Applet/Microsoft Corporation) 3940
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x008C0000

Process C:\Windows\ehome\ehmsas.exe (Media Center Media Status Aggregator Service/Microsoft Corporation) 3984
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x000B0000

Process C:\Program Files\CubeDesktop\cubedesktop.exe (CubeDesktop Executable/Thinking Minds Building Bytes) 4056
Library C:\Program Files\CubeDesktop\cubedesktop.exe (CubeDesktop Executable/Thinking Minds Building Bytes) 0x00400000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\system32\msimg32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x00390000
Library C:\Program Files\RocketDock\RocketDock.dll 0x10000000
Library C:\Windows\system32\nvd3dum.dll (NVIDIA Compatible Vista WDDM D3D Driver, Version 182.50 /NVIDIA Corporation) 0x04AF0000

Process C:\Program Files\RocketDock\RocketDock.exe 4060
Library C:\Program Files\RocketDock\RocketDock.exe 0x00400000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Windows\system32\MSImg32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000
Library C:\Program Files\RocketDock\RocketDock.dll 0x10000000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x03890000

Process C:\Program Files\Windows Sidebar\sidebar.exe (Windows Sidebar/Microsoft Corporation) 4072
Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x005C0000
Library C:\Windows\system32\nvd3dum.dll (NVIDIA Compatible Vista WDDM D3D Driver, Version 182.50 /NVIDIA Corporation) 0x10000000
Library C:\Program Files\RocketDock\RocketDock.dll 0x03E50000

Process C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (ServiceLayer Module/Nokia.) 4452
Library C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (ServiceLayer Module/Nokia.) 0x00400000
Library C:\Program Files\PC Connectivity Solution\PCCS_DBEngine.dll (Database Engine/Nokia) 0x10000000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe (USB Media Server/Nokia) 4536
Library C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe (USB Media Server/Nokia) 0x00400000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe (Serial Media Server/Nokia) 4548
Library C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe (Serial Media Server/Nokia) 0x00400000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\SearchProtocolHost.exe (Microsoft Windows Search Protocol Host/Microsoft Corporation) 5424
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\SearchFilterHost.exe (Microsoft Windows Search Filter Host/Microsoft Corporation) 5440
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Windows\system32\wbem\wmiprvse.exe (WMI Provider Host/Microsoft Corporation) 5664
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

Process C:\Program Files\Internet Explorer\IELowutil.exe (Internet Explorer/Microsoft Corporation) 5808
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\RocketDock\RocketDock.dll 0x10000000
Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x014C0000

Process C:\Windows\system32\wuauclt.exe (Windows Update Automatic Updates/Microsoft Corporation) 5944
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000
Library C:\Program Files\RocketDock\RocketDock.dll 0x10000000

Process C:\Users\Daniel\Desktop\g7g5ed2w.exe 6028
Library C:\Users\Daniel\Desktop\g7g5ed2w.exe 0x00400000
Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000

---- Services - GMER 1.0.15 ----

Service C:\Windows\system32\DRIVERS\AGRSM.sys (SoftModem Device Driver/Agere Systems) [MANUAL] AgereSoftModem
Service C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) [AUTO] Apple Mobile Device
Service C:\Windows\system32\DRIVERS\aswFsBlk.sys (avast! File System Access Blocking Driver/ALWIL Software) [AUTO] aswFsBlk
Service C:\Windows\system32\DRIVERS\aswMonFlt.sys (avast! File System Minifilter for Windows 2003/Vista/ALWIL Software) [AUTO] aswMonFlt
Service (avast! TDI RDR Driver/ALWIL Software) [SYSTEM] aswRdr
Service (avast! self protection module/ALWIL Software) [SYSTEM] aswSP
Service (avast! TDI Filter Driver/ALWIL Software) [SYSTEM] aswTdi
Service C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (avast! Antivirus updating service/ALWIL Software) [AUTO] aswUpdSv
Service C:\Program Files\Alwil Software\Avast4\ashServ.exe (avast! antivirus service/ALWIL Software) [AUTO] avast! Antivirus
Service C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (avast! e-Mail Scanner Service/ALWIL Software) [MANUAL] avast! Mail Scanner
Service C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (avast! Web Scanner/ALWIL Software) [MANUAL] avast! Web Scanner
Service C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) [AUTO] Bonjour Service
Service C:\Windows\system32\drivers\brfiltlo.sys (Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltLo
Service C:\Windows\system32\drivers\brfiltup.sys (Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltUp
Service C:\Windows\system32\drivers\brusbser.sys (Brother USB Serial Driver/Brother Industries Ltd.) [MANUAL] BrUsbSer
Service C:\ComboFix\catchme.sys [MANUAL] catchme
Service C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO Internet Security/COMODO) [AUTO] cmdAgent
Service C:\Windows\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) [SYSTEM] cmdGuard
Service C:\Windows\System32\DRIVERS\cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO) [SYSTEM] cmdHlp
Service C:\Windows\system32\DRIVERS\e1e6032.sys (Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver/Intel Corporation) [MANUAL] e1express
Service C:\Windows\system32\DRIVERS\E1G60I32.sys (Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver/Intel Corporation) [MANUAL] E1G60
Service C:\Windows\system32\DRIVERS\GEARAspiWDM.sys (CD DVD Filter/GEAR Software Inc.) [MANUAL] GEARAspiWDM
Service C:\Windows\system32\drivers\grmnusb.sys (grmnusb.sys/GARMIN Corp.) [MANUAL] grmnusb
Service C:\Windows\system32\DRIVERS\HCW713x.sys (HVR1100/Hauppauge Computer Works inc.) [MANUAL] HCW713x
Service C:\Windows\system32\DRIVERS\igdkmd32.sys (Intel Graphics Kernel Mode Driver/Intel Corporation) [MANUAL] ialm
Service C:\Windows\system32\DRIVERS\inspect.sys (COMODO Internet Security Firewall Driver/COMODO) [SYSTEM] Inspect
Service C:\Windows\system32\drivers\RTKVHDA.sys (Realtek(r) High Definition Audio Function Driver/Realtek Semiconductor Corp.) [MANUAL] IntcAzAudAddService
Service system32\DRIVERS\ipinip.sys [MANUAL] IpInIp
Service C:\Program Files\iPod\bin\iPodService.exe (iPodService Module (32-bit)/Apple Inc.) [MANUAL] iPod Service
Service MSDTC Bridge 3.0.0.0
Service C:\Windows\system32\DRIVERS\mssmbios.sys (System Management BIOS Driver/Microsoft Corporation) [MANUAL] mssmbios
Service C:\Windows\system32\DRIVERS\NETw3v32.sys (Intel® Wireless LAN Driver/Intel® Corporation) [MANUAL] NETw3v32
Service C:\Windows\system32\drivers\ccdcmb.sys (Nokia USB Phone Bus Driver/Nokia) [MANUAL] nmwcd
Service C:\Windows\system32\drivers\ccdcmbo.sys (Nokia USB Phone Bus Driver/Nokia) [MANUAL] nmwcdc
Service C:\Windows\system32\drivers\nmwcdnsu.sys (Nokia USB Phone Bus Driver/Nokia) [MANUAL] nmwcdnsu
Service C:\Windows\system32\drivers\nmwcdnsuc.sys (Nokia USB Phone Generic Client/Nokia) [MANUAL] nmwcdnsuc
Service C:\Windows\system32\DRIVERS\nvlddmkm.sys (NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 182.50 /NVIDIA Corporation) [MANUAL] nvlddmkm
Service C:\Windows\system32\nvvsvc.exe (NVIDIA Driver Helper Service, Version 182.50/NVIDIA Corporation) [AUTO] nvsvc
Service system32\DRIVERS\nwlnkflt.sys [MANUAL] NwlnkFlt
Service system32\DRIVERS\nwlnkfwd.sys [MANUAL] NwlnkFwd
Service Outlook
Service C:\Windows\system32\DRIVERS\pccsmcfd.sys (PCCS Mode Change Filter Driver/Nokia) [MANUAL] pccsmcfd
Service C:\Windows\System32\Drivers\pcouffin.sys (low level access layer for CD/DVD/BD devices/VSO Software) [MANUAL] pcouffin
Service C:\??\C:\Program Files\PeerGuardian2\pgfilter.sys [MANUAL] pgfilter
Service C:\Windows\system32\DRIVERS\Ph3xIB32.sys (Ph3xIBxx/Philips Semiconductors GmbH) [MANUAL] Ph3xIB32
Service C:\Windows\system32\DRIVERS\netr61.sys (Ralink 802.11 Wireless Adapter Driver/Ralink Technology, Corp.) [MANUAL] rt61x86
Service C:\Windows\system32\DRIVERS\Rtlh86.sys (Realtek 8101/8168/8169 NDIS6 32-bit Driver/Realtek Corporation) [MANUAL] RTL8169
Service (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [AUTO] secdrv
Service C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (ServiceLayer Module/Nokia.) [MANUAL] ServiceLayer
Service ServiceModelEndpoint 3.0.0.0
Service ServiceModelOperation 3.0.0.0
Service ServiceModelService 3.0.0.0
Service C:\Windows\system32\drivers\sffp_sd.sys (Small Form Factor SD Protocol Driver/Microsoft Corporation) [MANUAL] sffp_sd
Service SMSvcHost 3.0.0.0
Service C:\Windows\system32\DRIVERS\usbser_lowerflt.sys (Filter Driver for Nokia USB Phone Bus Driver/Nokia) [MANUAL] upperdev
Service C:\Windows\System32\Drivers\usbaapl.sys (Apple Mobile Device USB Driver/Apple, Inc.) [MANUAL] USBAAPL
Service C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys (Filter Driver for Nokia USB Phone Bus Driver/Nokia) [MANUAL] UsbserFilt
Service C:\Windows\system32\DRIVERS\vgapnp.sys (VGA/Super VGA Video Driver/Microsoft Corporation) [MANUAL] vga
Service Windows Workflow Foundation 3.0.0.0
Service WSearchIdxPi

---- EOF - GMER 1.0.15 ----
Back to Top
 

Jintan
Senior Member




Date Joined Dec 2006
Total Posts : 1428
 
   Posted 9/20/2009 1:44 AM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
Nothing amiss showing in that Gmer view. When you ran it earlier, did you right click the file to open it, and select "Run as administrator"? This is necessary with many tool scans on Vista systems.

For that port setting, in Firefox go to Tools - Options, click the Network tab, then the "Settings" button. Place a tick next to "No proxy", then click OK/OK to close that.

You also have IE proxy settings I am not familiar with:

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = plimus.com;www.plimus.com;regnow.com;www.regnow.com

These appear to be related to Internet sales sites, so if you again did not set these yourself, make a note about the HijackThis entry above, then close Internet Explorer and all running programs and run a scan in HijackThis. Place a check next to the above entry, then select “Fix Checked” and close HijackThis.

---------------------

Let's still check things against a current online scan, and see if what added proxy settings there has anything remaining on the system.


Disable your antivirus program and go here and run an online scan using ESET Online Scanner (you will need to use Internet Explorer for this scan, or download the installer to run it in a different browser). If you accept the Terms of Use, check the box and click Start. After the ActiveX Control has loaded, it will take a couple minutes for the scanner to get ready. Next, check the following boxes:

Remove found threats
Scan unwanted applications


Click Start. This scan may take a while, so please be patient. A log may open when the scan is complete (if not, go to C:\Program Files\EsetOnlineScanner\ and open the file log.txt). Click Edit - Select All then copy/paste that log back here please.


If you have any problems getting Eset started, one work-around is to have an open Internet connection, and then click here and download the esetsmartinstaller_enu.exe Eset installer. Then click that file, and follow the same previous steps to run the scan.


Click here and help my friend help stop leukemia, lymphoma, Hodgkin lymphoma and myeloma from taking more lives.

Back to Top
 

danny-boy
Junior Member


Date Joined Aug 2007
Total Posts : 70
 
   Posted 9/20/2009 3:59 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
Here is the results of the scan:

C:\QooBox\Quarantine\G\WINDOWS\system32\gadeso.dll.vir a variant of Win32/Adware.Virtumonde.NBR application cleaned by deleting - quarantined
C:\QooBox\Quarantine\G\WINDOWS\system32\hgGvsqOI.dll.vir a variant of Win32/Adware.Virtumonde.NBR application cleaned by deleting - quarantined
C:\QooBox\Quarantine\G\WINDOWS\system32\IOqsvGgh.ini.vir Win32/Adware.Virtumonde.NEO application cleaned by deleting - quarantined
C:\QooBox\Quarantine\G\WINDOWS\system32\IOqsvGgh.ini2.vir Win32/Adware.Virtumonde.NEO application cleaned by deleting - quarantined
C:\QooBox\Quarantine\G\WINDOWS\system32\kyreacqa.dll.vir a variant of Win32/Adware.Virtumonde.NBR application cleaned by deleting - quarantined

I deleted all above.

HJT
Back to Top
 

Jintan
Senior Member




Date Joined Dec 2006
Total Posts : 1428
 
   Posted 9/20/2009 4:21 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
Infection ComboFix had removed to it's Qoobox quarantine at some past time. When did ComboFix remove those - how long ago?

The logs do show this, which I sense is another of Conduit's search hijacker toolbars:

FF - component: c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\extensions\{20deece9-b83b-4389-b0b0-c562d8a70302}\components\FFExternalAlert.dll


Open Hijackthis.
Click Config - Misc Tools - Open Uninstall Manager.
A list of the entries in Add/Remove programs will appear.
Click on Save List...
The list will be saved as 'Uninstall_list.txt'
Copy & Paste the contents back here for review.


Click here and help my friend help stop leukemia, lymphoma, Hodgkin lymphoma and myeloma from taking more lives.

Back to Top
 

Jintan
Senior Member




Date Joined Dec 2006
Total Posts : 1428
 
   Posted 9/20/2009 4:23 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
I think I had better mention - don't just locate and delete that file. Let's check first, so changes are made using the best methods.


Click here and help my friend help stop leukemia, lymphoma, Hodgkin lymphoma and myeloma from taking more lives.

Back to Top
 

danny-boy
Junior Member


Date Joined Aug 2007
Total Posts : 70
 
   Posted 9/20/2009 4:44 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
Don't know about the combofix. Maybe when I ran it for the first logs??

2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
32 Bit HP CIO Components Installer
Adobe Flash Player 10 Plugin
Adobe Flash Player 9 ActiveX
Adobe Reader 8.1.5
Adobe SVG Viewer 3.0
Apple Application Support
Apple Mobile Device Support
Apple Software Update
avast! Antivirus
Bonjour
BroadJump Client Foundation
Canon G.726 WMP-Decoder
CANON iMAGE GATEWAY Task for ZoomBrowser EX
Canon Internet Library for ZoomBrowser EX
Canon MovieEdit Task for ZoomBrowser EX
Canon RAW Image Task for ZoomBrowser EX
Canon Utilities CameraWindow
Canon Utilities CameraWindow DC
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX
Canon Utilities MyCamera
Canon Utilities MyCamera DC
Canon Utilities PhotoStitch
Canon Utilities RemoteCapture Task for ZoomBrowser EX
Canon Utilities ZoomBrowser EX
Canon ZoomBrowser EX Memory Card Utility
CCleaner (remove only)
COMODO Internet Security
ConvertXtoDVD 3.3.4.106e
Cookies Game Burner 3.0
CubeDesktop 1.3.1
doPDF 6.3 printer
ESET Online Scanner v3
Express Burn
FastStone Capture 6.3
Garmin Communicator Plugin
Garmin Training Center 3.4.3
Garmin USB Drivers
Garmin WebUpdater
Hauppauge MCE XP/Vista Software Encoder (2.0.24360)
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
IconPackager
IconPackager
Intel(R) PRO Network Connections Drivers
iTunes
Java(TM) 6 Update 15
LogonStudio Vista
Malwarebytes' Anti-Malware
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Ultimate 2007
Microsoft Office Ultimate 2007
Microsoft Office Word MUI (English) 2007
Microsoft Visual C++ 2005 Redistributable
Mozilla Firefox (3.5.3)
MP3 Player Utilities 4.18
MSVC80_x86
MSXML 4.0 SP2 (KB954430)
Nokia Connectivity Cable Driver
Nokia PC Suite
Nokia PC Suite
Nokia Software Updater
NVIDIA Drivers
PC Connectivity Solution
PeerGuardian 2.0
QuickTime
Realtek High Definition Audio Driver
Recuva (remove only)
RocketDock 1.3.5
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB969679)
Security Update for Microsoft Office Excel 2007 (KB969682)
Security Update for Microsoft Office PowerPoint 2007 (KB957789)
Security Update for Microsoft Office system 2007 (KB969613)
Security Update for Microsoft Office Word 2007 (KB969604)
Slice Audio File Splitter
Sothink SWF to Video Converter
SportTracks 2.1
SpywareBlaster 4.2
Stamp ID3 Tag Editor
Switch Sound File Converter
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB969907)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Outlook 2007 Junk Email Filter (kb970012)
VC 9.0 Runtime
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (03/08/2007 2.2.1.0)
Windows Driver Package - Nokia Modem (06/01/2009 4.1)
Windows Driver Package - Nokia Modem (06/01/2009 7.01.0.3)
Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0)
Windows Media Player Firefox Plugin
WinRAR archiver
Xilisoft DVD Ripper Ultimate
Xilisoft DVD Ripper Ultimate SE
Xilisoft Video Converter Ultimate
Xvid 1.1.3 final uninstall
Back to Top
 

Jintan
Senior Member




Date Joined Dec 2006
Total Posts : 1428
 
   Posted 9/20/2009 8:02 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
I really don't see which one of those might have brought any Conduit search items along with it. Let's check the file.

Make sure you can View Hidden Files. Also uncheck "Hide Extensions for Known File Types"


Then go here, press new topic, fill in the needed details and just give a link to your post back here (see the "Instructions for uploading files" there for help, if needed). Then press the browse button and then navigate to & select the following file on your computer.

c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\extensions\{20deece9-b83b-4389-b0b0-c562d8a70302}\components\FFExternalAlert.dll

You DO NOT need to be a member to upload, anybody can upload the files. You will not be able to see the file once uploaded.


Click here and help my friend help stop leukemia, lymphoma, Hodgkin lymphoma and myeloma from taking more lives.

Back to Top
 

danny-boy
Junior Member


Date Joined Aug 2007
Total Posts : 70
 
   Posted 9/20/2009 10:23 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
File up on other site jintan. Hope it went properly!
Back to Top
 

danny-boy
Junior Member


Date Joined Aug 2007
Total Posts : 70
 
   Posted 9/20/2009 11:33 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
got the reply on other forum, but what does it mean??
Back to Top
 

Jintan
Senior Member




Date Joined Dec 2006
Total Posts : 1428
 
   Posted 9/21/2009 12:35 AM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
I just post some info there so other folks who might be interested in the file have that available. The file code itself told little about it, but I was able to track down the source. It is installed with a flakey Torrents Search Engine Toolbar, that installs into Firefox from an .xmi installer download. In Firefox go to Tools - Add-ons, and see if you don't have that still installed there. If so, click to hilight it and then click Uninstall. Post back how that went please.


Click here and help my friend help stop leukemia, lymphoma, Hodgkin lymphoma and myeloma from taking more lives.

Back to Top
 

danny-boy
Junior Member


Date Joined Aug 2007
Total Posts : 70
 
   Posted 9/21/2009 4:02 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
Thanks Jintan,
There is extentions:

'pc sync 2 synchronisation'
'update service'
and 'ms .NET framework'

The first one has all options to uninstall etc are greyed out.
Back to Top
 

Jintan
Senior Member




Date Joined Dec 2006
Total Posts : 1428
 
   Posted 9/22/2009 4:10 AM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
Let's use a tool a little differently than intended for it.

Download GooredFix.exe from here and save it to the Desktop.

Double-click GooredFix.exe to run the tool.

At the prompt type 1 to select Find Goored (then press Enter).

When the tool is done scanning, a GooredLog will open - please post those contents here. This will also be saved to your desktop if needed.

Note: Please do not run Option 2!!


Click here and help my friend help stop leukemia, lymphoma, Hodgkin lymphoma and myeloma from taking more lives.

Back to Top
 

danny-boy
Junior Member


Date Joined Aug 2007
Total Posts : 70
 
   Posted 9/22/2009 2:39 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
GooredFix by jpshortstuff (12.07.09)
Log created at 12:37 on 22/09/2009 (Daniel)
Firefox version 3.5.3 (en-GB)

========== GooredScan ==========

C:\Program Files\Mozilla Firefox\extensions\
updater@foxstart.com [14:51 31/01/2009]
{972ce4c6-7e08-4474-a285-3208198ce6fd} [14:51 31/01/2009]
{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} [13:42 08/07/2009]
{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} [14:17 01/09/2009]

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{20a82645-c095-46ed-80e3-08825760534b}"="C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\" [00:35 01/02/2009]
"bkmrksync@nokia.com"="C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\" [13:52 03/09/2009]

-=E.O.F=-

there was only the option to run software or cancel, no 1 or 2, so I just ran the scan.
Back to Top
 

danny-boy
Junior Member


Date Joined Aug 2007
Total Posts : 70
 
   Posted 9/24/2009 6:08 PM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
Thanks for your help.

Can I assume that this has taken care of things?
PC has been running fine for last few days.
Back to Top
 

Jintan
Senior Member




Date Joined Dec 2006
Total Posts : 1428
 
   Posted 9/25/2009 5:19 AM (GMT +3)    Quote: PC running slo after freeware D/LAlert an admin about: PC running slo after freeware D/L
That was really only a scan to check specific items, though none show related to the quesitonable toolbar one. Locate this file again:

c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\extensions\{20deece9-b83b-4389-b0b0-c562d8a70302}\components\FFExternalAlert.dll

And just rename it to FFExternalAlert.dll.bad - okay any warnings about the change that might make. Then use Firefox for a bit, and see if you get any error messages now that the file is not available.

Post back if anything occurred from that, and if nothing we will just clean up what our work added there and finish up here.


Click here and help my friend help stop leukemia, lymphoma, Hodgkin lymphoma and myeloma from taking more lives.

Back to Top
 
New Topic Post reply to : PC running slo after freeware D/L Printable version of : PC running slo after freeware D/L
 
Forum Information
Currently it is Friday, August 01, 2014 6:53 PM (GMT +3)
There are a total of 60,529 posts in 13,304 threads.
In the last 3 days there were 0 new threads and 0 reply posts. View Active Threads
Who's Online
This forum has 36200 registered members. Please welcome our newest member, advantixsolutions.
3 Guest(s), 0 Registered Member(s) are currently online.  Details
5 Latest Threads