PC running slo after freeware D/L

Posted 9/18/2009 2:40 PM
#77479
User avatar

danny-boy Advanced member

Date Joined Nov 2016
Total Posts: 71
Hi, <br/>I downloaded a handy looking simple freeware program, and scanned it for virus's with avast, which said there were none, so I installed it, since then PC is running very slow and freezing. <br/>Would you please have a quick look at logs and see what you thjink. <br/>Many thanks, here they are: <br/> <br/>COMBO: <br/>ComboFix 09-09-17.04 - Daniel 09/18/2009 14:39.3.4 - NTFSx86 <br/>Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.44.1033.18.3071.1891 [GMT 1:00] <br/>Running from: c:\users\Daniel\Desktop\ComboFix.exe <br/>. <br/> <br/>((((((((((((((((((((((((( Files Created from 2009-08-18 to 2009-09-18 ))))))))))))))))))))))))))))))) <br/>. <br/> <br/>2009-09-18 13:46 . 2009-09-18 13:46 -------- d-----w- c:\users\user\AppData\Local\temp <br/>2009-09-18 13:46 . 2009-09-18 13:46 -------- d-----w- c:\users\Nikki .000\AppData\Local\temp <br/>2009-09-18 13:46 . 2009-09-18 13:46 -------- d-----w- c:\users\Default\AppData\Local\temp <br/>2009-09-16 20:21 . 2009-09-07 11:32 18632 ----a-w- c:\windows\system32\dopdfmi6.dll <br/>2009-09-16 20:21 . 2009-09-07 11:32 21192 ----a-w- c:\windows\system32\dopdfmn6.dll <br/>2009-09-16 20:21 . 2009-09-16 20:21 -------- d-----w- c:\program files\Softland <br/>2009-09-15 14:45 . 2009-09-15 14:45 -------- d-----w- c:\program files\Common Files\Windows Live <br/>2009-09-15 14:44 . 2009-09-15 14:44 -------- d-----w- c:\program files\MSXML 4.0 <br/>2009-09-15 14:43 . 2009-08-14 17:07 897608 ----a-w- c:\windows\system32\drivers\tcpip.sys <br/>2009-09-15 14:43 . 2009-08-14 16:29 104960 ----a-w- c:\windows\system32\netiohlp.dll <br/>2009-09-15 14:43 . 2009-08-14 14:16 27136 ----a-w- c:\windows\system32\NETSTAT.EXE <br/>2009-09-15 14:43 . 2009-08-14 14:16 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE <br/>2009-09-15 14:43 . 2009-08-14 14:16 11264 ----a-w- c:\windows\system32\MRINFO.EXE <br/>2009-09-15 14:43 . 2009-08-14 14:16 19968 ----a-w- c:\windows\system32\ARP.EXE <br/>2009-09-15 14:43 . 2009-08-14 14:16 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE <br/>2009-09-15 14:43 . 2009-08-14 14:16 10240 ----a-w- c:\windows\system32\finger.exe <br/>2009-09-15 14:43 . 2009-08-14 14:16 17920 ----a-w- c:\windows\system32\ROUTE.EXE <br/>2009-09-15 14:43 . 2009-08-14 16:29 17920 ----a-w- c:\windows\system32\netevent.dll <br/>2009-09-15 14:42 . 2009-06-10 12:11 2868224 ----a-w- c:\windows\system32\mf.dll <br/>2009-09-15 14:42 . 2009-07-11 19:32 293376 ----a-w- c:\windows\system32\wlanmsm.dll <br/>2009-09-15 14:42 . 2009-07-11 19:32 302592 ----a-w- c:\windows\system32\wlansec.dll <br/>2009-09-15 14:42 . 2009-07-11 19:29 127488 ----a-w- c:\windows\system32\L2SecHC.dll <br/>2009-09-15 14:42 . 2009-07-11 19:32 513024 ----a-w- c:\windows\system32\wlansvc.dll <br/>2009-09-07 17:17 . 2009-09-07 17:17 -------- d-----w- c:\programdata\Nokia <br/>2009-09-03 13:52 . 2009-09-03 13:52 -------- d-----w- c:\program files\Common Files\PCSuite <br/>2009-09-03 13:52 . 2009-09-07 17:17 -------- d-----w- c:\program files\Common Files\Nokia <br/>2009-09-03 13:52 . 2008-08-26 09:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys <br/>2009-09-03 13:51 . 2009-09-03 13:51 -------- d-----w- c:\program files\PC Connectivity Solution <br/>2009-09-02 13:40 . 2009-08-28 12:39 28672 ----a-w- c:\windows\system32\Apphlpdm.dll <br/>2009-09-02 13:40 . 2009-08-28 10:15 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll <br/>2009-08-26 14:46 . 2009-06-22 10:22 2048 ----a-w- c:\windows\system32\tzres.dll <br/> <br/>. <br/>(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) <br/>. <br/>2009-09-16 15:46 . 2009-02-02 23:25 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware <br/>2009-09-15 14:48 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail <br/>2009-09-14 21:06 . 2009-02-01 12:35 -------- d-----w- c:\users\Daniel\AppData\Roaming\uTorrent <br/>2009-09-10 13:54 . 2009-02-02 23:25 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys <br/>2009-09-10 13:53 . 2009-02-02 23:25 19160 ----a-w- c:\windows\system32\drivers\mbam.sys <br/>2009-09-10 09:12 . 2009-05-23 18:14 680 ----a-w- c:\users\Daniel\AppData\Local\d3d9caps.dat <br/>2009-09-07 17:17 . 2009-01-31 14:57 -------- d-----w- c:\program files\Nokia <br/>2009-09-07 17:16 . 2009-01-31 14:56 -------- d-----w- c:\programdata\Installations <br/>2009-09-07 17:07 . 2009-09-07 17:07 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf <br/>2009-09-03 13:52 . 2009-01-31 15:06 -------- d-----w- c:\program files\DIFX <br/>2009-09-01 18:47 . 2009-08-06 19:07 -------- d-----w- c:\programdata\NCH Swift Sound <br/>2009-09-01 14:17 . 2009-07-08 13:42 -------- d-----w- c:\program files\Java <br/>2009-08-25 17:07 . 2009-02-03 13:25 74328 ----a-w- c:\windows\system32\drivers\inspect.sys <br/>2009-08-25 17:07 . 2009-02-03 13:25 179792 ----a-w- c:\windows\system32\guard32.dll <br/>2009-08-25 17:07 . 2009-02-03 13:25 29520 ----a-w- c:\windows\system32\drivers\cmdhlp.sys <br/>2009-08-25 17:07 . 2009-02-03 13:25 128888 ----a-w- c:\windows\system32\drivers\cmdguard.sys <br/>2009-08-17 16:10 . 2009-01-31 14:34 1279456 ----a-w- c:\windows\system32\aswBoot.exe <br/>2009-08-17 16:05 . 2009-01-31 14:34 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys <br/>2009-08-17 16:05 . 2009-01-31 14:34 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys <br/>2009-08-17 16:05 . 2009-01-31 14:34 53328 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys <br/>2009-08-17 16:04 . 2009-01-31 14:34 51376 ----a-w- c:\windows\system32\drivers\aswTdi.sys <br/>2009-08-17 16:04 . 2009-01-31 14:34 23152 ----a-w- c:\windows\system32\drivers\aswRdr.sys <br/>2009-08-17 16:02 . 2009-01-31 14:34 97480 ----a-w- c:\windows\system32\AvastSS.scr <br/>2009-08-06 19:42 . 2009-08-06 19:07 -------- d-----w- c:\program files\NCH Swift Sound <br/>2009-08-06 19:07 . 2009-08-06 19:07 -------- d-----w- c:\users\Daniel\AppData\Roaming\NCH Swift Sound <br/>2009-08-06 18:41 . 2009-08-06 18:38 -------- d-----w- c:\program files\Cool MP3 Splitter <br/>2009-07-31 07:21 . 2009-07-30 18:56 -------- d-----w- c:\users\Daniel\AppData\Roaming\dvdcss <br/>2009-07-30 19:03 . 2009-02-06 16:34 -------- d-----w- c:\program files\Xilisoft <br/>2009-07-30 18:52 . 2009-07-30 18:47 -------- d-----w- c:\program files\Winnydows <br/>2009-07-30 18:47 . 2009-07-30 18:47 -------- d-----w- c:\program files\AviSynth 2.5 <br/>2009-07-30 18:37 . 2009-07-29 21:47 -------- d-----w- c:\program files\HP <br/>2009-07-30 18:35 . 2009-07-29 21:46 -------- d-----w- c:\programdata\HP <br/>2009-07-30 18:28 . 2009-07-30 17:53 -------- d-----w- c:\program files\DVD-Cloner Platinum <br/>2009-07-30 17:31 . 2009-02-05 08:14 -------- d-----w- c:\users\Daniel\AppData\Roaming\Vso <br/>2009-07-30 13:51 . 2009-07-30 13:51 -------- d-----w- c:\users\Daniel\AppData\Roaming\Image Zone Express <br/>2009-07-30 13:51 . 2009-07-30 13:51 -------- d-----w- c:\users\Daniel\AppData\Roaming\Printer Info Cache <br/>2009-07-29 21:59 . 2009-07-29 21:59 -------- d-----w- c:\programdata\WEBREG <br/>2009-07-29 21:57 . 2009-07-29 21:56 -------- d-----w- c:\users\Daniel\AppData\Roaming\HP <br/>2009-07-29 21:50 . 2009-07-29 21:50 -------- d-----w- c:\program files\Common Files\Hewlett-Packard <br/>2009-07-28 13:11 . 2009-04-07 07:23 -------- d-----w- c:\programdata\Microsoft Help <br/>2009-07-25 04:23 . 2009-07-08 13:42 411368 ----a-w- c:\windows\system32\deploytk.dll <br/>2009-07-21 21:52 . 2009-08-05 11:46 915456 ----a-w- c:\windows\system32\wininet.dll <br/>2009-07-21 21:47 . 2009-08-05 11:46 109056 ----a-w- c:\windows\system32\iesysprep.dll <br/>2009-07-21 21:47 . 2009-08-05 11:46 71680 ----a-w- c:\windows\system32\iesetup.dll <br/>2009-07-21 20:13 . 2009-08-05 11:46 133632 ----a-w- c:\windows\system32\ieUnatt.exe <br/>2009-07-17 21:21 . 2009-07-17 20:11 156672 ----a-w- c:\windows\system32\rmc_fixasf.exe <br/>2009-07-17 21:21 . 2009-07-17 20:11 237568 ----a-w- c:\windows\system32\rmc_rtspdl.dll <br/>2009-07-17 21:21 . 2009-07-17 20:10 323584 ----a-w- c:\windows\system32\AUDIOGENIE2.DLL <br/>2009-07-17 14:35 . 2009-08-20 11:12 71680 ----a-w- c:\windows\system32\atl.dll <br/>2009-07-16 22:04 . 2009-07-16 22:04 17451008 ----a-w- c:\windows\system32\imageres.dll <br/>2009-07-14 13:00 . 2009-08-20 11:12 313344 ----a-w- c:\windows\system32\wmpdxm.dll <br/>2009-07-14 12:59 . 2009-08-20 11:12 4096 ----a-w- c:\windows\system32\dxmasf.dll <br/>2009-07-14 12:58 . 2009-08-20 11:12 7680 ----a-w- c:\windows\system32\spwmp.dll <br/>2009-07-14 10:59 . 2009-08-20 11:12 8147456 ----a-w- c:\windows\system32\wmploc.DLL <br/>2007-07-13 10:29 . 2007-03-07 12:54 8192 --sha-w- c:\windows\Users\Default\NTUSER.DAT <br/>. <br/> <br/>((((((((((((((((((((((((((((( SnapShot@2009-06-13_10.29.45 ))))))))))))))))))))))))))))))))))))))))) <br/>. <br/>+ 2009-09-07 17:16 . 2009-09-07 17:16 65536 c:\windows\winsxs\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.762_none_7b33aa7d218504d2\vcomp.dll <br/>+ 2009-09-15 14:44 . 2009-09-15 14:44 91656 c:\windows\winsxs\x86_microsoft.msxml2r_6bd6b9abf345378f_4.1.1.0_none_365945b9da656e4d\msxml4r.dll <br/>+ 2009-09-07 17:17 . 2009-09-07 17:17 82432 c:\windows\winsxs\x86_microsoft.msxml2r_6bd6b9abf345378f_4.1.0.0_none_3658456fda6654f6\msxml4r.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:10 68096 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.22170_none_9e68a7441b62d132\wlanhlp.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:10 65024 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.22170_none_9e68a7441b62d132\wlanapi.dll <br/>+ 2009-02-02 17:07 . 2008-01-05 11:34 15181 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.22170_none_9e68a7441b62d132\gatherWirelessInfo.vbs <br/>+ 2009-09-15 14:42 . 2009-04-11 06:28 68096 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18064_none_9deddb8d02397ad3\wlanhlp.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:01 65024 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18064_none_9deddb8d02397ad3\wlanapi.dll <br/>+ 2009-02-02 17:07 . 2008-01-05 11:34 15181 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18064_none_9deddb8d02397ad3\gatherWirelessInfo.vbs <br/>+ 2009-09-15 14:42 . 2009-07-11 19:17 68096 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.22468_none_9c9507981e2d2ad5\wlanhlp.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:17 64512 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.22468_none_9c9507981e2d2ad5\wlanapi.dll <br/>+ 2009-02-02 17:07 . 2008-01-05 11:34 15181 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.22468_none_9c9507981e2d2ad5\gatherWirelessInfo.vbs <br/>+ 2009-02-02 17:08 . 2008-01-19 07:36 68096 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.18288_none_9bf5c90f051fc5c6\wlanhlp.dll <br/>+ 2009-02-02 17:09 . 2008-01-19 07:36 64512 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.18288_none_9bf5c90f051fc5c6\wlanapi.dll <br/>+ 2009-02-02 17:07 . 2008-01-05 11:34 15181 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.18288_none_9bf5c90f051fc5c6\gatherWirelessInfo.vbs <br/>+ 2009-09-15 14:42 . 2009-07-11 19:24 67584 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.21082_none_9a92fd9a211c6fd7\wlanhlp.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:24 47104 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.21082_none_9a92fd9a211c6fd7\wlanapi.dll <br/>+ 2006-11-02 12:34 . 2006-11-02 12:34 14827 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.21082_none_9a92fd9a211c6fd7\gatherWirelessInfo.vbs <br/>+ 2009-09-15 14:42 . 2009-07-11 19:32 67584 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.16884_none_9a0b894107fccf79\wlanhlp.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:32 47104 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.16884_none_9a0b894107fccf79\wlanapi.dll <br/>+ 2006-11-02 12:34 . 2006-11-02 12:34 14827 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.16884_none_9a0b894107fccf79\gatherWirelessInfo.vbs <br/>+ 2009-08-20 11:12 . 2009-06-10 11:44 31232 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22150_none_946bf5749f2e8c01\msvidc32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:44 12800 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22150_none_946bf5749f2e8c01\msrle32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:44 82944 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22150_none_946bf5749f2e8c01\mciavi32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:42 91136 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22150_none_946bf5749f2e8c01\avifil32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:42 65024 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22150_none_946bf5749f2e8c01\avicap32.dll <br/>+ 2009-02-02 17:08 . 2008-01-19 07:35 31232 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.18049_none_93f62b2f8600b455\msvidc32.dll <br/>+ 2006-11-02 09:03 . 2006-11-02 09:46 12800 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.18049_none_93f62b2f8600b455\msrle32.dll <br/>+ 2006-11-02 09:03 . 2006-11-02 09:46 82944 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.18049_none_93f62b2f8600b455\mciavi32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:38 91136 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.18049_none_93f62b2f8600b455\avifil32.dll <br/>+ 2006-11-02 09:03 . 2006-11-02 09:46 65024 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.18049_none_93f62b2f8600b455\avicap32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:58 31232 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.22447_none_9297557ea1f9cc4d\msvidc32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:57 12800 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.22447_none_9297557ea1f9cc4d\msrle32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:56 82944 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.22447_none_9297557ea1f9cc4d\mciavi32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:52 91136 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.22447_none_9297557ea1f9cc4d\avifil32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:52 65024 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.22447_none_9297557ea1f9cc4d\avicap32.dll <br/>+ 2009-02-02 17:08 . 2008-01-19 07:35 31232 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.18270_none_91e6450388fad1ce\msvidc32.dll <br/>+ 2006-11-02 09:03 . 2006-11-02 09:46 12800 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.18270_none_91e6450388fad1ce\msrle32.dll <br/>+ 2006-11-02 09:03 . 2006-11-02 09:46 82944 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.18270_none_91e6450388fad1ce\mciavi32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:07 91136 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.18270_none_91e6450388fad1ce\avifil32.dll <br/>+ 2006-11-02 09:03 . 2006-11-02 09:46 65024 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.18270_none_91e6450388fad1ce\avicap32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:03 31232 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.21065_none_90994ca8a4e576ab\msvidc32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:03 12800 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.21065_none_90994ca8a4e576ab\msrle32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:00 82944 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.21065_none_90994ca8a4e576ab\mciavi32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:57 88576 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.21065_none_90994ca8a4e576ab\avifil32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:57 65024 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.21065_none_90994ca8a4e576ab\avicap32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:10 31232 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.16868_none_9012d8998bc4efa4\msvidc32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:09 12800 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.16868_none_9012d8998bc4efa4\msrle32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:07 82944 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.16868_none_9012d8998bc4efa4\mciavi32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:04 88576 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.16868_none_9012d8998bc4efa4\avifil32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:04 65024 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.16868_none_9012d8998bc4efa4\avicap32.dll <br/>+ 2009-09-15 14:43 . 2009-08-15 21:30 22016 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\netiougc.exe <br/>+ 2009-09-15 14:43 . 2009-08-15 23:56 49152 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\netiomig.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 14:23 22016 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\netiougc.exe <br/>+ 2009-09-15 14:43 . 2009-08-14 16:40 49152 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\netiomig.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 13:52 17920 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\ROUTE.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 13:52 27136 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\NETSTAT.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 13:52 11264 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\MRINFO.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 13:52 10240 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\finger.exe <br/>+ 2009-09-15 14:43 . 2009-08-14 13:52 19968 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\ARP.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 13:49 17920 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\ROUTE.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 13:49 27136 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\NETSTAT.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 13:49 11264 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\MRINFO.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 13:49 10240 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\finger.exe <br/>+ 2009-09-15 14:43 . 2009-08-14 13:49 19968 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\ARP.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:11 17920 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\ROUTE.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:11 27136 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\NETSTAT.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:11 11264 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\MRINFO.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:11 10240 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\finger.exe <br/>+ 2009-09-15 14:43 . 2009-08-14 14:11 19968 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\ARP.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:16 17920 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\ROUTE.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:16 27136 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\NETSTAT.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:16 11264 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\MRINFO.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:16 10240 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\finger.exe <br/>+ 2009-09-15 14:43 . 2009-08-14 14:16 19968 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\ARP.EXE <br/>+ 2009-09-15 14:43 . 2009-08-15 21:31 17920 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\ROUTE.EXE <br/>+ 2009-09-15 14:43 . 2009-08-15 21:31 27136 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\NETSTAT.EXE <br/>+ 2009-09-15 14:43 . 2009-08-15 21:31 11264 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\MRINFO.EXE <br/>+ 2009-09-15 14:43 . 2009-08-15 21:31 10240 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\finger.exe <br/>+ 2009-09-15 14:43 . 2009-08-15 21:31 19968 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\ARP.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:25 17920 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\ROUTE.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:25 27136 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\NETSTAT.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:25 11264 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\MRINFO.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:25 10240 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\finger.exe <br/>+ 2009-09-15 14:43 . 2009-08-14 14:25 19968 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\ARP.EXE <br/>+ 2009-08-20 11:12 . 2009-06-04 10:52 53248 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6002.22146_none_3238de2ddc072aae\tsgqec.dll <br/>+ 2009-08-20 11:12 . 2009-04-11 06:28 53248 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6002.18045_none_31ae4118c2ea718d\tsgqec.dll <br/>+ 2009-08-20 11:12 . 2009-06-04 12:35 53248 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6001.22443_none_304f6b67dee38985\tsgqec.dll <br/>+ 2009-02-02 17:09 . 2008-01-19 07:36 53248 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6001.18266_none_2fb32dbcc5d3707b\tsgqec.dll <br/>+ 2009-08-20 11:12 . 2009-06-04 12:34 36352 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6000.21061_none_2e516291e1cf33e3\tsgqec.dll <br/>+ 2009-08-20 11:12 . 2009-06-04 12:47 36352 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6000.16865_none_2dcbeeccc8adc633\tsgqec.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 17:01 98376 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6001.22497_none_cd53c52043eb1c22\FWPKCLNT.SYS <br/>+ 2009-09-15 14:43 . 2009-08-15 21:29 85504 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6000.21108_none_cbcfae32467adc51\FWPKCLNT.SYS <br/>+ 2009-09-15 14:43 . 2009-08-14 16:00 17920 c:\windows\winsxs\x86_microsoft-windows-netevent_31bf3856ad364e35_6.0.6002.22200_none_5cb66ecc80d2b9bd\netevent.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 15:53 17920 c:\windows\winsxs\x86_microsoft-windows-netevent_31bf3856ad364e35_6.0.6002.18091_none_5bcc811967fd319c\netevent.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 16:24 17920 c:\windows\winsxs\x86_microsoft-windows-netevent_31bf3856ad364e35_6.0.6001.22497_none_5a75adb883ef144c\netevent.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 16:29 17920 c:\windows\winsxs\x86_microsoft-windows-netevent_31bf3856ad364e35_6.0.6001.18311_none_5a3c8e916a95fcf0\netevent.dll <br/>+ 2009-09-15 14:43 . 2009-08-15 23:56 15360 c:\windows\winsxs\x86_microsoft-windows-netevent_31bf3856ad364e35_6.0.6000.21108_none_58f196ca867ed47b\netevent.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 16:40 15360 c:\windows\winsxs\x86_microsoft-windows-netevent_31bf3856ad364e35_6.0.6000.16908_none_586821dd6d61016f\netevent.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 09:53 53248 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.22150_none_9e993405232e229b\rrinstaller.exe <br/>+ 2009-09-15 14:42 . 2009-06-10 09:54 98816 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.22150_none_9e993405232e229b\mfps.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 09:53 24576 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.22150_none_9e993405232e229b\mfpmp.exe <br/>+ 2009-09-15 14:42 . 2009-04-11 06:27 53248 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.18049_none_9e2369c00a004aef\rrinstaller.exe <br/>+ 2009-09-15 14:42 . 2009-04-11 06:28 98816 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.18049_none_9e2369c00a004aef\mfps.dll <br/>+ 2009-09-15 14:42 . 2009-04-11 06:27 24576 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.18049_none_9e2369c00a004aef\mfpmp.exe <br/>+ 2009-09-15 14:42 . 2009-06-10 10:10 53248 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.22447_none_9cc4940f25f962e7\rrinstaller.exe <br/>+ 2009-09-15 14:42 . 2009-06-10 11:56 98816 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.22447_none_9cc4940f25f962e7\mfps.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 10:10 24576 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.22447_none_9cc4940f25f962e7\mfpmp.exe <br/>+ 2009-01-31 15:10 . 2009-01-31 15:10 53248 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.18270_none_9c1383940cfa6868\rrinstaller.exe <br/>+ 2009-01-31 15:10 . 2009-01-31 15:10 98816 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.18270_none_9c1383940cfa6868\mfps.dll <br/>+ 2009-01-31 15:10 . 2009-01-31 15:10 24576 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.18270_none_9c1383940cfa6868\mfpmp.exe <br/>+ 2009-09-15 14:42 . 2009-06-10 10:01 52736 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.21065_none_9ac68b3928e50d45\rrinstaller.exe <br/>+ 2009-09-15 14:42 . 2009-06-10 12:00 98816 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.21065_none_9ac68b3928e50d45\mfps.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 10:01 24576 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.21065_none_9ac68b3928e50d45\mfpmp.exe <br/>+ 2009-09-15 14:42 . 2009-06-10 10:14 52736 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.16868_none_9a40172a0fc4863e\rrinstaller.exe <br/>+ 2009-09-15 14:42 . 2009-06-10 12:07 98816 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.16868_none_9a40172a0fc4863e\mfps.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 10:15 24576 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.16868_none_9a40172a0fc4863e\mfpmp.exe <br/>+ 2009-08-20 11:12 . 2009-06-15 15:00 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\secur32.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 14:53 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\secur32.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:25 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\secur32.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:24 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\secur32.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:08 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\secur32.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:28 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\secur32.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 13:51 30720 c:\windows\winsxs\x86_microsoft-windows-l..istry-support-tcpip_31bf3856ad364e35_6.0.6002.22200_none_888d4c521bb0e416\tcpipreg.sys <br/>+ 2009-09-15 14:43 . 2009-08-14 13:48 30720 c:\windows\winsxs\x86_microsoft-windows-l..istry-support-tcpip_31bf3856ad364e35_6.0.6002.18091_none_87a35e9f02db5bf5\tcpipreg.sys <br/>+ 2009-08-05 11:46 . 2009-07-22 05:58 71680 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.22903_none_a94676798d617013\iesetup.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 05:58 55808 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.22903_none_a94676798d617013\iernonce.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 71680 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.18813_none_a8b209c2744bec3a\iesetup.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 55808 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.18813_none_a8b209c2744bec3a\iernonce.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 04:26 13312 c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.22903_none_dfc3b05f09aa2a6a\msfeedssync.exe <br/>+ 2009-08-05 11:46 . 2009-07-22 05:59 55296 c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.22903_none_dfc3b05f09aa2a6a\msfeedsbs.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 20:13 13312 c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.18813_none_df2f43a7f094a691\msfeedssync.exe <br/>+ 2009-08-05 11:46 . 2009-07-21 21:48 55296 c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.18813_none_df2f43a7f094a691\msfeedsbs.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 06:03 64512 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22903_none_e55eb4d2d0bb388b\WininetPlugin.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 05:58 25600 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22903_none_e55eb4d2d0bb388b\jsproxy.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:52 64512 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18813_none_e4ca481bb7a5b4b2\WininetPlugin.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 25600 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18813_none_e4ca481bb7a5b4b2\jsproxy.dll <br/>+ 2009-08-26 14:46 . 2009-06-22 10:13 18944 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6002.22155_none_17865cb11ffa07ae\tzupd.exe <br/>+ 2009-02-01 01:24 . 2009-02-01 01:24 18944 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6002.18054_none_16fbbf9c06dd4e8d\tzupd.exe <br/>+ 2009-08-26 14:46 . 2009-06-22 10:26 18944 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6001.22454_none_159eea7f22d49933\tzupd.exe <br/>+ 2009-02-01 01:24 . 2009-02-01 01:24 18944 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6001.18275_none_1500ac4009c64d7b\tzupd.exe <br/>+ 2009-08-26 14:46 . 2009-06-22 10:21 18944 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6000.21070_none_139ee11525c210e3\tzupd.exe <br/>+ 2009-08-26 14:46 . 2009-06-22 10:30 18944 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6000.16873_none_13186d060ca189dc\tzupd.exe <br/>+ 2009-07-16 22:40 . 2009-06-15 14:58 23552 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.22152_none_ac0f1dd570f10812\lpk.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 14:58 72704 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.22152_none_ac0f1dd570f10812\fontsub.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 14:58 10240 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.22152_none_ac0f1dd570f10812\dciman32.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 12:45 34304 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.22152_none_ac0f1dd570f10812\atmlib.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 14:52 23552 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.18051_none_ab8480c057d44ef1\lpk.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 14:52 72704 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.18051_none_ab8480c057d44ef1\fontsub.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 14:51 10240 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.18051_none_ab8480c057d44ef1\dciman32.dll <br/>+ 2009-07-16 22:40 . 2009-04-11 06:28 34304 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.18051_none_ab8480c057d44ef1\atmlib.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:22 23552 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.22450_none_aa26ab5973cc8040\lpk.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:20 72704 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.22450_none_aa26ab5973cc8040\fontsub.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:19 10240 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.22450_none_aa26ab5973cc8040\dciman32.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:19 34304 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.22450_none_aa26ab5973cc8040\atmlib.dll <br/>+ 2009-02-02 17:08 . 2008-01-19 07:34 23552 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.18272_none_a9896d645abd4ddf\lpk.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:20 72704 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.18272_none_a9896d645abd4ddf\fontsub.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:20 10240 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.18272_none_a9896d645abd4ddf\dciman32.dll <br/>+ 2006-11-02 08:38 . 2006-11-02 09:46 34304 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.18272_none_a9896d645abd4ddf\atmlib.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:04 24064 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.21067_none_a83c750976a7f2bc\lpk.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:03 72704 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.21067_none_a83c750976a7f2bc\fontsub.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:02 10240 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.21067_none_a83c750976a7f2bc\dciman32.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:02 34304 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.21067_none_a83c750976a7f2bc\atmlib.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:23 24064 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.16870_none_a7a12e2a5d988a40\lpk.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:22 72704 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.16870_none_a7a12e2a5d988a40\fontsub.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:21 10240 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.16870_none_a7a12e2a5d988a40\dciman32.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:20 34304 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.16870_none_a7a12e2a5d988a40\atmlib.dll <br/>+ 2009-08-20 11:12 . 2009-07-17 14:15 71680 c:\windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6002.22179_none_ad4da751702700f0\atl.dll <br/>+ 2009-08-20 11:12 . 2009-07-17 13:54 71680 c:\windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6002.18070_none_acbb07ec57117d17\atl.dll <br/>+ 2009-08-20 11:12 . 2009-07-17 14:24 71680 c:\windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6001.22474_none_ab6233f773052d19\atl.dll <br/>+ 2009-08-20 11:12 . 2009-07-17 14:35 71680 c:\windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6001.18293_none_aac1f52459f8aeb3\atl.dll <br/>+ 2009-08-20 11:12 . 2009-07-17 14:39 71680 c:\windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6000.21088_none_a974fcc975e35390\atl.dll <br/>+ 2009-08-20 11:12 . 2009-07-17 14:52 71680 c:\windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6000.16889_none_a8ec88265cc499db\atl.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 00:19 28672 c:\windows\winsxs\x86_microsoft-windows-a..-experience-apphelp_31bf3856ad364e35_6.0.6002.22213_none_846a2103770ca798\Apphlpdm.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 00:14 28672 c:\windows\winsxs\x86_microsoft-windows-a..-experience-apphelp_31bf3856ad364e35_6.0.6002.18101_none_83e953905de8b92f\Apphlpdm.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:24 28672 c:\windows\winsxs\x86_microsoft-windows-a..-experience-apphelp_31bf3856ad364e35_6.0.6001.22509_none_829480c379d8ce8d\Apphlpdm.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:39 28672 c:\windows\winsxs\x86_microsoft-windows-a..-experience-apphelp_31bf3856ad364e35_6.0.6001.18320_none_81ec3fa060d3856f\Apphlpdm.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 03:32 28672 c:\windows\winsxs\x86_microsoft-windows-a..-experience-apphelp_31bf3856ad364e35_6.0.6000.21117_none_80a147d97cbc5cfa\Apphlpdm.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 03:40 28672 c:\windows\winsxs\x86_microsoft-windows-a..-experience-apphelp_31bf3856ad364e35_6.0.6000.16917_none_8017d2ec639e89ee\Apphlpdm.dll <br/>+ 2007-01-02 16:27 . 2007-01-02 16:27 12288 c:\windows\Twunk_32.dll <br/>+ 2007-01-02 16:27 . 2007-01-02 16:27 12288 c:\windows\Twunk_16.dll <br/>+ 2007-09-20 16:52 . 2009-09-18 13:35 50724 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin <br/>+ 2006-11-02 13:05 . 2009-09-18 13:35 84804 c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin <br/>+ 2009-01-31 14:29 . 2009-09-18 13:35 12346 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-851244455-3135899847-4148953319-1002_UserData.bin <br/>+ 2009-07-29 21:43 . 2008-01-19 07:34 89600 c:\windows\System32\spool\prtprocs\w32x86\HPZPPLHN.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:35 79872 c:\windows\System32\spool\drivers\w32x86\3\HPZPRLHN.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 20992 c:\windows\System32\spool\drivers\w32x86\3\HPZISN12.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 34304 c:\windows\System32\spool\drivers\w32x86\3\HPZIPT12.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 37376 c:\windows\System32\spool\drivers\w32x86\3\HPZIPR12.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:35 52736 c:\windows\System32\spool\drivers\w32x86\3\HPZIPM12.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:35 43008 c:\windows\System32\spool\drivers\w32x86\3\HPZINW12.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 53248 c:\windows\System32\spool\drivers\w32x86\3\HPZIDR12.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 19968 c:\windows\System32\spool\drivers\w32x86\3\HPFRES50.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 11776 c:\windows\System32\spool\drivers\w32x86\3\HPBPROPS.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:35 39936 c:\windows\System32\spool\drivers\w32x86\3\HPBPRO.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 11776 c:\windows\System32\spool\drivers\w32x86\3\HPBOIDPS.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:35 29184 c:\windows\System32\spool\drivers\w32x86\3\HPBOID.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:35 28160 c:\windows\System32\spool\drivers\w32x86\3\HPBMIAPI.DLL <br/>+ 2009-08-20 11:12 . 2009-06-15 15:24 72704 c:\windows\System32\secur32.dll <br/>- 2009-04-15 15:05 . 2009-02-13 08:49 72704 c:\windows\System32\secur32.dll <br/>+ 2009-01-31 14:57 . 2009-02-09 07:37 91136 c:\windows\System32\nmwcdcls.dll <br/>- 2009-01-31 14:57 . 2008-09-15 07:56 91136 c:\windows\System32\nmwcdcls.dll <br/>+ 2003-04-18 15:29 . 2003-04-18 15:29 82432 c:\windows\System32\msxml4r.dll <br/>- 2009-06-10 19:46 . 2009-03-08 11:31 13312 c:\windows\System32\msfeedssync.exe <br/>+ 2009-08-05 11:46 . 2009-07-21 20:13 13312 c:\windows\System32\msfeedssync.exe <br/>- 2009-06-10 19:46 . 2009-03-08 11:31 55296 c:\windows\System32\msfeedsbs.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:48 55296 c:\windows\System32\msfeedsbs.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:52 64512 c:\windows\System32\migration\WininetPlugin.dll <br/>- 2009-06-10 19:47 . 2009-05-09 05:50 64512 c:\windows\System32\migration\WininetPlugin.dll <br/>- 2009-02-01 01:12 . 2009-02-01 01:12 84661 c:\windows\System32\Macromed\Flash\uninstall_plugin.exe <br/>+ 2009-02-01 01:12 . 2009-08-13 12:26 84661 c:\windows\System32\Macromed\Flash\uninstall_plugin.exe <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 25600 c:\windows\System32\jsproxy.dll <br/>- 2009-06-10 19:47 . 2009-05-09 05:35 25600 c:\windows\System32\jsproxy.dll <br/>- 2009-06-10 19:47 . 2009-05-09 05:34 55808 c:\windows\System32\iernonce.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 55808 c:\windows\System32\iernonce.dll <br/>+ 2006-11-08 15:35 . 2006-11-08 15:35 20480 c:\windows\System32\hpzisn12.dll <br/>+ 2006-11-08 15:35 . 2006-11-08 15:35 29696 c:\windows\System32\hpzipt12.dll <br/>+ 2006-11-08 15:35 . 2006-11-08 15:35 33280 c:\windows\System32\HPZipr12.dll <br/>+ 2006-11-08 15:35 . 2006-11-08 15:35 53248 c:\windows\System32\HPZipm12.dll <br/>+ 2006-11-08 15:35 . 2006-11-08 15:35 43520 c:\windows\System32\HPZinw12.dll <br/>+ 2006-11-08 15:35 . 2006-11-08 15:35 49152 c:\windows\System32\HPZidr12.dll <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 30208 c:\windows\System32\HPZ3LLHN.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 11776 c:\windows\System32\HPBPROPS.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:35 39936 c:\windows\System32\HPBPRO.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 11776 c:\windows\System32\HPBOIDPS.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:35 29184 c:\windows\System32\HPBOID.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:35 28160 c:\windows\System32\HPBMIAPI.DLL <br/>- 2009-02-02 17:08 . 2008-01-19 07:34 72704 c:\windows\System32\fontsub.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:20 72704 c:\windows\System32\fontsub.dll <br/>- 2009-01-31 15:06 . 2008-08-26 09:26 18816 c:\windows\System32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.sys <br/>+ 2009-09-03 13:52 . 2008-08-26 09:26 18816 c:\windows\System32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.sys <br/>+ 2009-04-17 19:48 . 2009-04-17 19:48 18304 c:\windows\System32\DriverStore\FileRepository\grmnusb.inf_0efc767c\I386\grmngen.sys <br/>+ 2009-02-09 07:37 . 2009-02-09 07:37 22016 c:\windows\System32\DriverStore\FileRepository\ccdcmbo.inf_0b649316\ccdcmbo.sys <br/>+ 2009-02-09 07:37 . 2009-02-09 07:37 91136 c:\windows\System32\DriverStore\FileRepository\ccdcmb.inf_0c298eaf\nmwcdcls.dll <br/>+ 2009-02-09 07:37 . 2009-02-09 07:37 17664 c:\windows\System32\DriverStore\FileRepository\ccdcmb.inf_0c298eaf\ccdcmb.sys <br/>+ 2009-02-02 17:07 . 2008-01-19 06:14 35328 c:\windows\System32\drivers\usbscan.sys <br/>+ 2009-04-17 19:48 . 2009-04-17 19:48 18304 c:\windows\System32\drivers\grmngen.sys <br/>+ 2009-02-02 17:07 . 2008-01-19 05:49 36864 c:\windows\System32\drivers\Dot4usb.sys <br/>+ 2009-02-02 17:07 . 2008-01-19 05:49 16384 c:\windows\System32\drivers\Dot4Prt.sys <br/>- 2008-09-15 07:56 . 2008-09-15 07:56 22016 c:\windows\System32\drivers\ccdcmbo.sys <br/>+ 2009-02-09 07:37 . 2009-02-09 07:37 22016 c:\windows\System32\drivers\ccdcmbo.sys <br/>- 2008-09-15 07:56 . 2008-09-15 07:56 17664 c:\windows\System32\drivers\ccdcmb.sys <br/>+ 2009-02-09 07:37 . 2009-02-09 07:37 17664 c:\windows\System32\drivers\ccdcmb.sys <br/>+ 2009-07-16 22:40 . 2009-06-15 15:20 10240 c:\windows\System32\dciman32.dll <br/>- 2006-11-02 08:38 . 2006-11-02 09:46 10240 c:\windows\System32\dciman32.dll <br/>- 2008-12-07 13:52 . 2009-06-13 08:16 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat <br/>+ 2008-12-07 13:52 . 2009-09-18 13:27 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat <br/>+ 2008-12-07 13:52 . 2009-09-18 13:27 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat <br/>- 2008-12-07 13:52 . 2009-06-13 08:16 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat <br/>- 2008-12-07 13:52 . 2009-06-13 08:16 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat <br/>+ 2008-12-07 13:52 . 2009-09-18 13:27 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat <br/>+ 2009-08-20 11:12 . 2009-06-10 12:07 91136 c:\windows\System32\avifil32.dll <br/>- 2009-02-02 17:09 . 2008-01-19 07:33 91136 c:\windows\System32\avifil32.dll <br/>+ 2009-06-10 19:59 . 2009-06-14 13:21 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat <br/>- 2009-06-10 19:59 . 2009-06-13 08:15 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat <br/>+ 2009-06-10 19:59 . 2009-06-14 13:21 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat <br/>- 2009-06-10 19:59 . 2009-06-13 08:15 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat <br/>- 2009-06-10 19:59 . 2009-06-13 08:15 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat <br/>+ 2009-06-10 19:59 . 2009-06-14 13:21 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat <br/>+ 2009-05-10 13:07 . 2009-05-10 13:07 84480 c:\windows\Installer\35e6b4.msi <br/>+ 2009-01-31 15:32 . 2009-01-31 15:32 62464 c:\windows\Installer\31e56b.msi <br/>+ 2009-07-29 21:49 . 2009-07-29 21:49 68096 c:\windows\Installer\106455a.msi <br/>+ 2009-09-07 17:17 . 2009-09-07 17:17 10134 c:\windows\Installer\{F983B4FE-547B-4C44-BAF7-4F4DBA93D548}\ARPPRODUCTICON.exe <br/>+ 2009-07-29 21:52 . 2009-07-29 21:52 65536 c:\windows\Installer\{EB21A812-671B-4D08-B974-2A347F0D8F70}\NewShortcut4_EB21A812671B4D08B9742A347F0D8F70.exe <br/>+ 2009-06-10 20:15 . 2009-07-28 13:11 35088 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\oisicon.exe <br/>- 2009-06-10 20:15 . 2009-06-12 14:32 35088 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\oisicon.exe <br/>+ 2009-06-10 20:15 . 2009-07-28 13:11 18704 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\mspicons.exe <br/>- 2009-06-10 20:15 . 2009-06-12 14:32 18704 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\mspicons.exe <br/>- 2009-06-10 20:15 . 2009-06-12 14:32 20240 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\cagicon.exe <br/>+ 2009-06-10 20:15 . 2009-07-28 13:11 20240 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\cagicon.exe <br/>+ 2009-09-15 14:44 . 2009-09-15 14:44 32768 c:\windows\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe <br/>+ 2009-09-03 13:53 . 2009-09-03 13:53 15086 c:\windows\Installer\{3D39E775-DDDA-4327-B747-0BDC5F191331}\ARPPRODUCTICON.exe <br/>+ 2009-09-03 13:52 . 2009-09-03 13:52 10134 c:\windows\Installer\{0C973594-7DDF-4BD0-84ED-3517F7622037}\ARPPRODUCTICON.exe <br/>+ 2007-08-24 03:49 . 2007-08-24 03:49 89976 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\DLGSETP.DLL <br/>+ 2006-10-26 19:55 . 2006-10-26 19:55 55056 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\SCANOST.EXE <br/>+ 2006-10-26 19:55 . 2006-10-26 19:55 76576 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\RM.DLL <br/>+ 2006-10-26 19:55 . 2006-10-26 19:55 39208 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\RECALL.DLL <br/>+ 2006-10-26 19:55 . 2006-10-26 19:55 53048 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\OUTLVBA.DLL <br/>+ 2006-10-27 14:16 . 2006-10-27 14:16 46864 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\OUTLRPC.DLL <br/>+ 2006-10-26 19:55 . 2006-10-26 19:55 21312 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\MLSHEXT.DLL <br/>+ 2006-10-26 19:55 . 2006-10-26 19:55 35160 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\DUMPSTER.DLL <br/>+ 2006-11-02 10:25 . 2009-09-03 13:53 86016 c:\windows\inf\infstor.dat <br/>- 2006-11-02 10:25 . 2009-06-10 19:44 86016 c:\windows\inf\infstor.dat <br/>- 2006-11-02 10:25 . 2009-06-10 19:45 51200 c:\windows\inf\infpub.dat <br/>+ 2006-11-02 10:25 . 2009-09-14 21:09 51200 c:\windows\inf\infpub.dat <br/>+ 2009-09-15 14:43 . 2009-08-14 13:52 9728 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\TCPSVCS.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 13:52 8704 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\HOSTNAME.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 13:49 9728 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\TCPSVCS.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 13:49 8704 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\HOSTNAME.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:11 9728 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\TCPSVCS.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:11 8704 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\HOSTNAME.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:16 9728 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\TCPSVCS.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:16 8704 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\HOSTNAME.EXE <br/>+ 2009-09-15 14:43 . 2009-08-15 21:31 9728 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\TCPSVCS.EXE <br/>+ 2009-09-15 14:43 . 2009-08-15 21:31 8704 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\HOSTNAME.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:25 9728 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\TCPSVCS.EXE <br/>+ 2009-09-15 14:43 . 2009-08-14 14:25 8704 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\HOSTNAME.EXE <br/>+ 2009-08-20 11:12 . 2009-07-15 12:46 7680 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\spwmp.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 12:46 4096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\dxmasf.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 12:39 7680 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\spwmp.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 12:39 4096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\dxmasf.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 14:51 7680 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\spwmp.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 14:51 4096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\dxmasf.dll <br/>+ 2009-08-20 11:12 . 2009-07-14 12:58 7680 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\spwmp.dll <br/>+ 2009-08-20 11:12 . 2009-07-14 12:59 4096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\dxmasf.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 14:42 7680 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\spwmp.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 14:43 4096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\dxmasf.dll <br/>+ 2009-08-20 11:12 . 2009-07-14 13:00 7680 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\spwmp.dll <br/>+ 2009-08-20 11:12 . 2009-07-14 13:01 4096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\dxmasf.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 09:53 2048 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.22150_none_9e993405232e229b\mferror.dll <br/>+ 2009-09-15 14:42 . 2009-04-11 04:54 2048 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.18049_none_9e2369c00a004aef\mferror.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 10:10 2048 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.22447_none_9cc4940f25f962e7\mferror.dll <br/>+ 2006-11-02 12:35 . 2006-11-02 12:35 2048 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.18270_none_9c1383940cfa6868\mferror.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 08:43 2048 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.21065_none_9ac68b3928e50d45\mferror.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 08:50 2048 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.16868_none_9a40172a0fc4863e\mferror.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 12:51 9728 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe <br/>+ 2009-08-20 11:12 . 2009-06-15 12:48 9728 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe <br/>+ 2009-08-20 11:12 . 2009-06-15 13:03 9728 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe <br/>+ 2009-08-20 11:12 . 2009-06-15 12:57 9728 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe <br/>+ 2009-08-20 11:12 . 2009-06-15 12:59 7680 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe <br/>+ 2009-08-20 11:12 . 2009-06-15 13:10 7680 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe <br/>+ 2009-08-26 14:46 . 2009-06-22 10:13 2048 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6002.22155_none_17865cb11ffa07ae\tzres.dll <br/>+ 2009-08-26 14:46 . 2009-06-22 10:09 2048 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6002.18054_none_16fbbf9c06dd4e8d\tzres.dll <br/>+ 2009-08-26 14:46 . 2009-06-22 10:26 2048 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6001.22454_none_159eea7f22d49933\tzres.dll <br/>+ 2009-08-26 14:46 . 2009-06-22 10:22 2048 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6001.18275_none_1500ac4009c64d7b\tzres.dll <br/>+ 2009-08-26 14:46 . 2009-06-22 08:44 2048 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6000.21070_none_139ee11525c210e3\tzres.dll <br/>+ 2009-08-26 14:46 . 2009-06-22 08:44 2048 c:\windows\winsxs\x86_microsoft-windows-i..rnational-timezones_31bf3856ad364e35_6.0.6000.16873_none_13186d060ca189dc\tzres.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 00:24 2560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6002.22213_none_0e8a7f670895bd4d\AcRes.dll <br/>+ 2006-11-02 07:11 . 2006-11-02 07:11 2560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6002.18101_none_0e09b1f3ef71cee4\AcRes.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 10:09 2560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6001.22509_none_0cb4df270b61e442\AcRes.dll <br/>+ 2009-02-01 01:28 . 2009-02-01 01:28 2560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6001.18320_none_0c0c9e03f25c9b24\AcRes.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 23:11 2560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6000.21117_none_0ac1a63d0e4572af\AcRes.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 23:15 2560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c1_31bf3856ad364e35_6.0.6000.16917_none_0a38314ff5279fa3\AcRes.dll <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 8192 c:\windows\System32\spool\drivers\w32x86\3\HPBMINI.DLL <br/>+ 2009-08-20 11:12 . 2009-06-15 12:57 9728 c:\windows\System32\lsass.exe <br/>- 2009-02-02 23:47 . 2008-01-19 07:33 9728 c:\windows\System32\lsass.exe <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 8192 c:\windows\System32\HPBMINI.DLL <br/>+ 2009-03-19 13:48 . 2009-03-19 13:48 8320 c:\windows\System32\DriverStore\FileRepository\nmwcdnsuc.inf_545c47c7\nmwcdnsuc.sys <br/>+ 2009-04-17 19:48 . 2009-04-17 19:48 9344 c:\windows\System32\DriverStore\FileRepository\grmnusb.inf_0efc767c\I386\grmnusb.sys <br/>+ 2009-02-09 07:37 . 2009-02-09 07:37 7808 c:\windows\System32\DriverStore\FileRepository\ccdcmbm.inf_65311714\usbser_lowerflt.sys <br/>+ 2009-02-09 07:37 . 2009-02-09 07:37 7808 c:\windows\System32\DriverStore\FileRepository\ccdcmbcj.inf_6fbfd776\usbser_lowerfltj.sys <br/>+ 2009-02-09 07:37 . 2009-02-09 07:37 7808 c:\windows\System32\drivers\usbser_lowerfltj.sys <br/>+ 2009-02-09 07:37 . 2009-02-09 07:37 7808 c:\windows\System32\drivers\usbser_lowerflt.sys <br/>+ 2009-03-19 13:48 . 2009-03-19 13:48 8320 c:\windows\System32\drivers\nmwcdnsuc.sys <br/>+ 2009-04-17 19:48 . 2009-04-17 19:48 9344 c:\windows\System32\drivers\grmnusb.sys <br/>+ 2009-09-18 13:33 . 2009-09-18 13:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat <br/>- 2009-06-13 08:14 . 2009-06-13 08:14 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat <br/>- 2009-06-13 08:14 . 2009-06-13 08:14 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat <br/>+ 2009-09-18 13:33 . 2009-09-18 13:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat <br/>+ 2009-09-07 17:17 . 2009-09-07 17:17 8854 c:\windows\Installer\{F983B4FE-547B-4C44-BAF7-4F4DBA93D548}\Uninstall_QA_OTI_H_FE5D756F71E147C4972AD6775344B40B.exe <br/>+ 2009-09-07 17:17 . 2009-09-07 17:17 8854 c:\windows\Installer\{F983B4FE-547B-4C44-BAF7-4F4DBA93D548}\NewShortcut3_F30B5B541F7D4207BF3032ED8CAF6640.exe <br/>+ 2009-09-07 17:17 . 2009-09-07 17:17 8854 c:\windows\Installer\{F983B4FE-547B-4C44-BAF7-4F4DBA93D548}\NewShortcut2_1C7B7089989A424FB39D41A32581C775.exe <br/>+ 2009-09-03 13:51 . 2009-09-03 13:51 3262 c:\windows\Installer\{52D02A2B-03D2-4E34-A358-DC5D951FD296}\ARPPRODUCTICON.exe <br/>+ 2009-08-20 11:12 . 2009-06-10 11:46 160256 c:\windows\winsxs\x86_microsoft-windows-workstationservice_31bf3856ad364e35_6.0.6002.22150_none_ce741cb6ed3e398c\wkssvc.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:42 160256 c:\windows\winsxs\x86_microsoft-windows-workstationservice_31bf3856ad364e35_6.0.6002.18049_none_cdfe5271d41061e0\wkssvc.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:00 160256 c:\windows\winsxs\x86_microsoft-windows-workstationservice_31bf3856ad364e35_6.0.6001.22447_none_cc9f7cc0f00979d8\wkssvc.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:12 160256 c:\windows\winsxs\x86_microsoft-windows-workstationservice_31bf3856ad364e35_6.0.6001.18270_none_cbee6c45d70a7f59\wkssvc.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:06 158208 c:\windows\winsxs\x86_microsoft-windows-workstationservice_31bf3856ad364e35_6.0.6000.21065_none_caa173eaf2f52436\wkssvc.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:16 156160 c:\windows\winsxs\x86_microsoft-windows-workstationservice_31bf3856ad364e35_6.0.6000.16868_none_ca1affdbd9d49d2f\wkssvc.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:10 513536 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.22170_none_9e68a7441b62d132\wlansvc.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:10 302592 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.22170_none_9e68a7441b62d132\wlansec.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:10 293376 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.22170_none_9e68a7441b62d132\wlanmsm.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:01 513536 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18064_none_9deddb8d02397ad3\wlansvc.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:01 302592 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18064_none_9deddb8d02397ad3\wlansec.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:01 293376 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6002.18064_none_9deddb8d02397ad3\wlanmsm.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:17 513536 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.22468_none_9c9507981e2d2ad5\wlansvc.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:17 302592 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.22468_none_9c9507981e2d2ad5\wlansec.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:17 293376 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.22468_none_9c9507981e2d2ad5\wlanmsm.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:32 513024 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.18288_none_9bf5c90f051fc5c6\wlansvc.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:32 302592 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.18288_none_9bf5c90f051fc5c6\wlansec.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:32 293376 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6001.18288_none_9bf5c90f051fc5c6\wlanmsm.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:24 502784 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.21082_none_9a92fd9a211c6fd7\wlansvc.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:24 299520 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.21082_none_9a92fd9a211c6fd7\wlansec.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:24 289280 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.21082_none_9a92fd9a211c6fd7\wlanmsm.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:32 502272 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.16884_none_9a0b894107fccf79\wlansvc.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:32 297984 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.16884_none_9a0b894107fccf79\wlansec.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:32 290816 c:\windows\winsxs\x86_microsoft-windows-wlansvc_31bf3856ad364e35_6.0.6000.16884_none_9a0b894107fccf79\wlanmsm.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:44 123904 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.22150_none_946bf5749f2e8c01\msvfw32.dll <br/>+ 2009-02-02 17:08 . 2008-01-19 07:35 123904 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6002.18049_none_93f62b2f8600b455\msvfw32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 11:58 123904 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.22447_none_9297557ea1f9cc4d\msvfw32.dll <br/>+ 2009-02-02 17:08 . 2008-01-19 07:35 123904 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6001.18270_none_91e6450388fad1ce\msvfw32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:03 123904 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.21065_none_90994ca8a4e576ab\msvfw32.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:10 123904 c:\windows\winsxs\x86_microsoft-windows-video-for-windows_31bf3856ad364e35_6.0.6000.16868_none_9012d8998bc4efa4\msvfw32.dll <br/>+ 2009-09-15 14:43 . 2009-08-15 23:58 167424 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpipcfg.dll <br/>+ 2009-09-15 14:43 . 2009-08-15 21:30 816640 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys <br/>+ 2009-09-15 14:43 . 2009-08-14 16:42 167424 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpipcfg.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 14:24 813568 c:\windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys <br/>+ 2009-09-15 14:43 . 2009-08-14 13:51 106496 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.22200_none_353709f565220c3d\netiohlp.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 13:48 105984 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6002.18091_none_344d1c424c4c841c\netiohlp.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 16:24 105472 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.22497_none_32f648e1683e66cc\netiohlp.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 16:29 104960 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6001.18311_none_32bd29ba4ee54f70\netiohlp.dll <br/>+ 2009-09-15 14:43 . 2009-08-15 23:56 103936 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.21108_none_317231f36ace26fb\netiohlp.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 16:40 103936 c:\windows\winsxs\x86_microsoft-windows-tcpip-utility_31bf3856ad364e35_6.0.6000.16908_none_30e8bd0651b053ef\netiohlp.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 16:33 905784 c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys <br/>+ 2009-09-15 14:43 . 2009-08-14 16:27 904776 c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys <br/>+ 2009-09-15 14:43 . 2009-08-14 17:01 900168 c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys <br/>+ 2009-09-15 14:43 . 2009-08-14 17:07 897608 c:\windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys <br/>+ 2009-08-20 11:12 . 2009-06-04 12:54 136192 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6002.22146_none_3238de2ddc072aae\aaclient.dll <br/>+ 2009-08-20 11:12 . 2009-04-11 06:28 136192 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6002.18045_none_31ae4118c2ea718d\aaclient.dll <br/>+ 2009-08-20 11:12 . 2009-06-04 12:29 136192 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6001.22443_none_304f6b67dee38985\aaclient.dll <br/>+ 2009-02-02 17:09 . 2008-01-19 07:33 136192 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6001.18266_none_2fb32dbcc5d3707b\aaclient.dll <br/>+ 2009-08-20 11:12 . 2009-06-04 12:25 116736 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6000.21061_none_2e516291e1cf33e3\aaclient.dll <br/>+ 2009-08-20 11:12 . 2009-06-04 12:36 116736 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6000.16865_none_2dcbeeccc8adc633\aaclient.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:00 270848 c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6002.22152_none_2452506b6bad8187\schannel.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 14:53 270848 c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6002.18051_none_23c7b3565290c866\schannel.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:25 270848 c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6001.22450_none_2269ddef6e88f9b5\schannel.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:24 270848 c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6001.18272_none_21cc9ffa5579c754\schannel.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:08 272384 c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6000.21067_none_207fa79f71646c31\schannel.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:28 272384 c:\windows\winsxs\x86_microsoft-windows-security-schannel_31bf3856ad364e35_6.0.6000.16870_none_1fe460c0585503b5\schannel.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 14:59 217600 c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6002.22152_none_7eeef23078f56dde\msv1_0.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 14:53 218624 c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6002.18051_none_7e64551b5fd8b4bd\msv1_0.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:24 213504 c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6001.22450_none_7d067fb47bd0e60c\msv1_0.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:22 213504 c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6001.18272_none_7c6941bf62c1b3ab\msv1_0.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:06 216576 c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6000.21067_none_7b1c49647eac5888\msv1_0.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:25 216576 c:\windows\winsxs\x86_microsoft-windows-security-ntlm_31bf3856ad364e35_6.0.6000.16870_none_7a810285659cf00c\msv1_0.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 14:58 500736 c:\windows\winsxs\x86_microsoft-windows-security-kerberos_31bf3856ad364e35_6.0.6002.22152_none_e912e288c7383abe\kerberos.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 14:52 499712 c:\windows\winsxs\x86_microsoft-windows-security-kerberos_31bf3856ad364e35_6.0.6002.18051_none_e8884573ae1b819d\kerberos.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:22 500736 c:\windows\winsxs\x86_microsoft-windows-security-kerberos_31bf3856ad364e35_6.0.6001.22450_none_e72a700cca13b2ec\kerberos.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:21 499712 c:\windows\winsxs\x86_microsoft-windows-security-kerberos_31bf3856ad364e35_6.0.6001.18272_none_e68d3217b104808b\kerberos.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:04 496640 c:\windows\winsxs\x86_microsoft-windows-security-kerberos_31bf3856ad364e35_6.0.6000.21067_none_e54039bcccef2568\kerberos.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:23 494592 c:\windows\winsxs\x86_microsoft-windows-security-kerberos_31bf3856ad364e35_6.0.6000.16870_none_e4a4f2ddb3dfbcec\kerberos.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:00 175104 c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6002.22152_none_3d095074931fbe8f\wdigest.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 14:54 175104 c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6002.18051_none_3c7eb35f7a03056e\wdigest.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:26 175104 c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6001.22450_none_3b20ddf895fb36bd\wdigest.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:24 175104 c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6001.18272_none_3a83a0037cec045c\wdigest.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:09 175104 c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6000.21067_none_3936a7a898d6a939\wdigest.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:29 175104 c:\windows\winsxs\x86_microsoft-windows-security-digest_31bf3856ad364e35_6.0.6000.16870_none_389b60c97fc740bd\wdigest.dll <br/>+ 2009-09-15 14:42 . 2009-06-06 12:55 726528 c:\windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.22886_none_66022984264aac18\jscript.dll <br/>+ 2009-09-15 14:42 . 2009-06-06 05:01 726528 c:\windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.18795_none_656cbc830d360ee8\jscript.dll <br/>+ 2009-09-15 14:43 . 2009-08-14 16:23 438272 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6001.22497_none_cd53c52043eb1c22\IKEEXT.DLL <br/>+ 2009-09-15 14:43 . 2009-08-14 16:22 595456 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6001.22497_none_cd53c52043eb1c22\FWPUCLNT.DLL <br/>+ 2009-09-15 14:43 . 2009-08-14 16:21 328704 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6001.22497_none_cd53c52043eb1c22\BFE.DLL <br/>+ 2009-09-15 14:43 . 2009-08-15 23:54 416768 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6000.21108_none_cbcfae32467adc51\IKEEXT.DLL <br/>+ 2009-09-15 14:43 . 2009-08-15 23:54 543232 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6000.21108_none_cbcfae32467adc51\FWPUCLNT.DLL <br/>+ 2009-09-15 14:43 . 2009-08-15 23:53 317440 c:\windows\winsxs\x86_microsoft-windows-network-security_31bf3856ad364e35_6.0.6000.21108_none_cbcfae32467adc51\BFE.DLL <br/>+ 2009-09-15 14:43 . 2009-08-14 17:01 220232 c:\windows\winsxs\x86_microsoft-windows-netio-infrastructure_31bf3856ad364e35_6.0.6001.22497_none_56cac20cceadcb78\netio.sys <br/>+ 2009-09-15 14:43 . 2009-08-16 00:32 214104 c:\windows\winsxs\x86_microsoft-windows-netio-infrastructure_31bf3856ad364e35_6.0.6000.21108_none_5546ab1ed13d8ba7\netio.sys <br/>+ 2009-09-15 14:43 . 2009-08-14 17:16 213592 c:\windows\winsxs\x86_microsoft-windows-netio-infrastructure_31bf3856ad364e35_6.0.6000.16908_none_54bd3631b81fb89b\netio.sys <br/>+ 2009-08-20 11:12 . 2009-07-15 12:46 313344 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmpdxm_31bf3856ad364e35_6.0.6002.22172_none_a65e88df3e466bbf\wmpdxm.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 12:39 313344 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmpdxm_31bf3856ad364e35_6.0.6002.18065_none_a5e2bcde251dfc09\wmpdxm.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 14:52 313344 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmpdxm_31bf3856ad364e35_6.0.6001.22470_none_a47616634121e3ed\wmpdxm.dll <br/>+ 2009-08-20 11:12 . 2009-07-14 13:00 313344 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmpdxm_31bf3856ad364e35_6.0.6001.18289_none_a3eaaa60280446fc\wmpdxm.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 14:44 313344 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmpdxm_31bf3856ad364e35_6.0.6000.21083_none_a287deeb4400f10d\wmpdxm.dll <br/>+ 2009-08-20 11:12 . 2009-07-14 13:02 313344 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmpdxm_31bf3856ad364e35_6.0.6000.16885_none_a2006a922ae150af\wmpdxm.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 12:45 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\wmpshare.exe <br/>+ 2009-08-20 11:12 . 2009-07-15 12:46 168960 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\wmplayer.exe <br/>+ 2009-08-20 11:12 . 2009-07-15 12:46 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\wmpconfig.exe <br/>+ 2009-08-20 11:12 . 2009-07-15 12:39 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\wmpshare.exe <br/>+ 2009-08-20 11:12 . 2009-07-15 12:39 168960 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\wmplayer.exe <br/>+ 2009-08-20 11:12 . 2009-07-15 12:39 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\wmpconfig.exe <br/>+ 2009-08-20 11:12 . 2009-07-15 13:05 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\wmpshare.exe <br/>+ 2009-08-20 11:12 . 2009-07-15 13:06 168960 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\wmplayer.exe <br/>+ 2009-08-20 11:12 . 2009-07-15 13:06 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\wmpconfig.exe <br/>+ 2009-08-20 11:12 . 2009-07-14 10:58 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\wmpshare.exe <br/>+ 2009-08-20 11:12 . 2009-07-14 10:59 168960 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\wmplayer.exe <br/>+ 2009-08-20 11:12 . 2009-07-14 10:59 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\wmpconfig.exe <br/>+ 2009-08-20 11:12 . 2009-07-15 12:53 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\wmpshare.exe <br/>+ 2009-08-20 11:12 . 2009-07-15 12:53 168960 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\wmplayer.exe <br/>+ 2009-08-20 11:12 . 2009-07-15 12:53 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\wmpconfig.exe <br/>+ 2009-08-20 11:12 . 2009-07-14 11:10 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\wmpshare.exe <br/>+ 2009-08-20 11:12 . 2009-07-14 11:10 168960 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\wmplayer.exe <br/>+ 2009-08-20 11:12 . 2009-07-14 11:11 107520 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\wmpconfig.exe <br/>+ 2009-08-20 11:12 . 2009-06-15 21:17 439880 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\ksecdd.sys <br/>+ 2009-08-20 11:12 . 2009-06-15 23:15 439864 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\ksecdd.sys <br/>+ 2009-08-20 11:12 . 2009-06-15 18:40 439880 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\ksecdd.sys <br/>+ 2009-08-20 11:12 . 2009-06-15 18:20 439896 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\ksecdd.sys <br/>+ 2009-08-20 11:12 . 2009-06-15 23:20 408136 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\ksecdd.sys <br/>+ 2009-08-20 11:12 . 2009-06-15 18:12 408136 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\ksecdd.sys <br/>+ 2009-09-15 14:42 . 2009-07-11 17:07 127488 c:\windows\winsxs\x86_microsoft-windows-l..securityhelperclass_31bf3856ad364e35_6.0.6002.22170_none_883d49e88f57f26d\L2SecHC.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 17:03 127488 c:\windows\winsxs\x86_microsoft-windows-l..securityhelperclass_31bf3856ad364e35_6.0.6002.18064_none_87c27e31762e9c0e\L2SecHC.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:14 127488 c:\windows\winsxs\x86_microsoft-windows-l..securityhelperclass_31bf3856ad364e35_6.0.6001.22468_none_8669aa3c92224c10\L2SecHC.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:29 127488 c:\windows\winsxs\x86_microsoft-windows-l..securityhelperclass_31bf3856ad364e35_6.0.6001.18288_none_85ca6bb37914e701\L2SecHC.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:18 124928 c:\windows\winsxs\x86_microsoft-windows-l..securityhelperclass_31bf3856ad364e35_6.0.6000.21082_none_8467a03e95119112\L2SecHC.dll <br/>+ 2009-09-15 14:42 . 2009-07-11 19:26 123904 c:\windows\winsxs\x86_microsoft-windows-l..securityhelperclass_31bf3856ad364e35_6.0.6000.16884_none_83e02be57bf1f0b4\L2SecHC.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 05:58 164352 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.22903_none_48182df4dd072fee\ieui.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 164352 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18813_none_4783c13dc3f1ac15\ieui.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 05:58 109056 c:\windows\winsxs\x86_microsoft-windows-ie-sysprep_31bf3856ad364e35_8.0.6001.22903_none_ff07db25e8e4acd8\iesysprep.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 109056 c:\windows\winsxs\x86_microsoft-windows-ie-sysprep_31bf3856ad364e35_8.0.6001.18813_none_fe736e6ecfcf28ff\iesysprep.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 04:27 173056 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.22903_none_a94676798d617013\ie4uinit.exe <br/>+ 2009-08-05 11:46 . 2009-07-21 20:13 173056 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.18813_none_a8b209c2744bec3a\ie4uinit.exe <br/>+ 2009-08-05 11:46 . 2009-07-22 06:02 129536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.22903_none_2b196baebb6c56e8\sqmapi.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:51 129536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.18813_none_2a84fef7a256d30f\sqmapi.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 06:01 206848 c:\windows\winsxs\x86_microsoft-windows-ie-objectcontrolviewer_31bf3856ad364e35_8.0.6001.22903_none_1a9c2981430b3c56\occache.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:50 206848 c:\windows\winsxs\x86_microsoft-windows-ie-objectcontrolviewer_31bf3856ad364e35_8.0.6001.18813_none_1a07bcca29f5b87d\occache.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 06:04 638232 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.22903_none_12d7c15e48e6a76e\iexplore.exe <br/>+ 2009-08-05 11:46 . 2009-07-22 04:27 133632 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.22903_none_12d7c15e48e6a76e\ieUnatt.exe <br/>+ 2009-08-05 11:46 . 2009-07-21 21:53 638216 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18813_none_124354a72fd12395\iexplore.exe <br/>+ 2009-08-05 11:46 . 2009-07-21 20:13 133632 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18813_none_124354a72fd12395\ieUnatt.exe <br/>+ 2009-08-05 11:46 . 2009-07-22 05:58 197632 c:\windows\winsxs\x86_microsoft-windows-ie-ieshims_31bf3856ad364e35_8.0.6001.22903_none_2b02f14ac9212978\IEShims.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 197632 c:\windows\winsxs\x86_microsoft-windows-ie-ieshims_31bf3856ad364e35_8.0.6001.18813_none_2a6e8493b00ba59f\IEShims.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 05:58 246272 c:\windows\winsxs\x86_microsoft-windows-ie-ieproxy_31bf3856ad364e35_8.0.6001.22903_none_73a4a5b47978c30a\ieproxy.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 246272 c:\windows\winsxs\x86_microsoft-windows-ie-ieproxy_31bf3856ad364e35_8.0.6001.18813_none_731038fd60633f31\ieproxy.dll <br/>+ 2009-08-26 14:44 . 2009-08-06 13:45 100352 c:\windows\winsxs\x86_microsoft-windows-ie-iecompat_31bf3856ad364e35_8.0.6001.22909_none_846b4b875fcce288\iecompat.dll <br/>+ 2009-07-23 12:48 . 2009-06-30 11:31 101376 c:\windows\winsxs\x86_microsoft-windows-ie-iecompat_31bf3856ad364e35_8.0.6001.22895_none_8405f92d60197b7e\iecompat.dll <br/>+ 2009-07-03 18:37 . 2009-05-30 13:15 102912 c:\windows\winsxs\x86_microsoft-windows-ie-iecompat_31bf3856ad364e35_8.0.6001.22883_none_840ec88560132cdf\iecompat.dll <br/>+ 2009-08-26 14:44 . 2009-08-06 03:44 100352 c:\windows\winsxs\x86_microsoft-windows-ie-iecompat_31bf3856ad364e35_8.0.6001.18819_none_83d6ded046b75eaf\iecompat.dll <br/>+ 2009-07-23 12:48 . 2009-06-30 03:37 101376 c:\windows\winsxs\x86_microsoft-windows-ie-iecompat_31bf3856ad364e35_8.0.6001.18805_none_83ddad9446b2dd62\iecompat.dll <br/>+ 2009-07-03 18:37 . 2009-06-02 03:27 102912 c:\windows\winsxs\x86_microsoft-windows-ie-iecompat_31bf3856ad364e35_8.0.6001.18793_none_837a5bce46fda906\iecompat.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 05:59 594432 c:\windows\winsxs\x86_microsoft-windows-ie-feeds-platform_31bf3856ad364e35_8.0.6001.22903_none_435c4ba1695e8b43\msfeeds.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:48 594432 c:\windows\winsxs\x86_microsoft-windows-ie-feeds-platform_31bf3856ad364e35_8.0.6001.18813_none_42c7deea5049076a\msfeeds.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 05:58 184320 c:\windows\winsxs\x86_microsoft-windows-ie-behaviors_31bf3856ad364e35_8.0.6001.22903_none_2039460420f600ed\iepeers.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 184320 c:\windows\winsxs\x86_microsoft-windows-ie-behaviors_31bf3856ad364e35_8.0.6001.18813_none_1fa4d94d07e07d14\iepeers.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 05:58 386048 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitbranding_31bf3856ad364e35_8.0.6001.22903_none_57c62dce86655952\iedkcs32.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 386048 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitbranding_31bf3856ad364e35_8.0.6001.18813_none_5731c1176d4fd579\iedkcs32.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 06:03 915456 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22903_none_e55eb4d2d0bb388b\wininet.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:52 915456 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18813_none_e4ca481bb7a5b4b2\wininet.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 12:45 289792 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.22152_none_ac0f1dd570f10812\atmfd.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 12:42 289792 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6002.18051_none_ab8480c057d44ef1\atmfd.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 12:56 289792 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.22450_none_aa26ab5973cc8040\atmfd.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 12:52 289792 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6001.18272_none_a9896d645abd4ddf\atmfd.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 12:53 289792 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.21067_none_a83c750976a7f2bc\atmfd.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 13:03 289792 c:\windows\winsxs\x86_microsoft-windows-gdi_31bf3856ad364e35_6.0.6000.16870_none_a7a12e2a5d988a40\atmfd.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:00 156672 c:\windows\winsxs\x86_microsoft-windows-font-embedding_31bf3856ad364e35_6.0.6002.22152_none_b7fc28a4355e72c9\t2embed.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 14:53 156672 c:\windows\winsxs\x86_microsoft-windows-font-embedding_31bf3856ad364e35_6.0.6002.18051_none_b7718b8f1c41b9a8\t2embed.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:26 156672 c:\windows\winsxs\x86_microsoft-windows-font-embedding_31bf3856ad364e35_6.0.6001.22450_none_b613b6283839eaf7\t2embed.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:24 156672 c:\windows\winsxs\x86_microsoft-windows-font-embedding_31bf3856ad364e35_6.0.6001.18272_none_b57678331f2ab896\t2embed.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:09 156160 c:\windows\winsxs\x86_microsoft-windows-font-embedding_31bf3856ad364e35_6.0.6000.21067_none_b4297fd83b155d73\t2embed.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 15:29 156160 c:\windows\winsxs\x86_microsoft-windows-font-embedding_31bf3856ad364e35_6.0.6000.16870_none_b38e38f92205f4f7\t2embed.dll <br/>+ 2009-09-15 14:40 . 2009-07-21 12:27 171008 c:\windows\winsxs\x86_microsoft-windows-ehome-ehkeyctl_31bf3856ad364e35_6.0.6002.22181_none_d867f28696ca3d06\ehkeyctl.dll <br/>+ 2009-09-15 14:40 . 2009-07-21 12:26 171008 c:\windows\winsxs\x86_microsoft-windows-ehome-ehkeyctl_31bf3856ad364e35_6.0.6002.18072_none_d7ea25f17da39aa2\ehkeyctl.dll <br/>+ 2009-09-15 14:40 . 2009-07-22 00:24 171008 c:\windows\winsxs\x86_microsoft-windows-ehome-ehkeyctl_31bf3856ad364e35_6.0.6001.22476_none_d69151fc99974aa4\ehkeyctl.dll <br/>+ 2009-09-15 14:40 . 2009-07-21 14:45 171008 c:\windows\winsxs\x86_microsoft-windows-ehome-ehkeyctl_31bf3856ad364e35_6.0.6001.18295_none_d5f11329808acc3e\ehkeyctl.dll <br/>+ 2009-09-15 14:40 . 2009-07-21 14:39 171008 c:\windows\winsxs\x86_microsoft-windows-ehome-ehkeyctl_31bf3856ad364e35_6.0.6000.21090_none_d48f47fe9c868fa6\ehkeyctl.dll <br/>+ 2009-09-15 14:40 . 2009-07-21 14:56 171008 c:\windows\winsxs\x86_microsoft-windows-ehome-ehkeyctl_31bf3856ad364e35_6.0.6000.16891_none_d406d35b8367d5f1\ehkeyctl.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 02:46 173056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.22213_none_0e8e808f089222a9\AcXtrnal.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 02:46 542720 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.22213_none_0e8e808f089222a9\AcLayers.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 02:30 173056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.18101_none_0e0db31bef6e3440\AcXtrnal.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 02:30 542720 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.18101_none_0e0db31bef6e3440\AcLayers.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:24 173056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.22509_none_0cb8e04f0b5e499e\AcXtrnal.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:24 541696 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.22509_none_0cb8e04f0b5e499e\AcLayers.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:39 173056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18320_none_0c109f2bf2590080\AcXtrnal.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:38 541696 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18320_none_0c109f2bf2590080\AcLayers.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 03:31 173056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.21117_none_0ac5a7650e41d80b\AcXtrnal.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 03:31 537600 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.21117_none_0ac5a7650e41d80b\AcLayers.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 03:40 173056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.16917_none_0a3c3277f52404ff\AcXtrnal.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 03:40 537600 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.16917_none_0a3c3277f52404ff\AcLayers.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 02:46 458752 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6002.22213_none_0e8d804508930952\AcSpecfc.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 02:30 458752 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6002.18101_none_0e0cb2d1ef6f1ae9\AcSpecfc.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:24 459776 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6001.22509_none_0cb7e0050b5f3047\AcSpecfc.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:38 459776 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6001.18320_none_0c0f9ee1f259e729\AcSpecfc.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 03:31 450560 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6000.21117_none_0ac4a71b0e42beb4\AcSpecfc.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 03:40 449024 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6000.16917_none_0a3b322df524eba8\AcSpecfc.dll <br/>+ 2009-08-20 11:12 . 2009-06-10 12:12 160256 c:\windows\System32\wkssvc.dll <br/>- 2009-02-02 23:47 . 2008-01-19 07:36 160256 c:\windows\System32\wkssvc.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:24 175104 c:\windows\System32\wdigest.dll <br/>+ 2009-01-31 23:32 . 2009-09-17 17:20 287430 c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin <br/>+ 2009-07-16 22:40 . 2009-06-15 15:24 156672 c:\windows\System32\t2embed.dll <br/>+ 2009-09-16 20:21 . 2009-09-07 11:32 920264 c:\windows\System32\spool\drivers\w32x86\dopdfui6.dll <br/>+ 2009-09-16 20:21 . 2009-09-07 11:32 505032 c:\windows\System32\spool\drivers\w32x86\dopdfpr6.dll <br/>+ 2009-09-16 20:21 . 2009-09-07 11:32 435912 c:\windows\System32\spool\drivers\w32x86\dopdfcl6.exe <br/>+ 2009-02-02 23:47 . 2008-01-19 07:28 562176 c:\windows\System32\spool\drivers\w32x86\3\HPZSSLHN.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:35 365568 c:\windows\System32\spool\drivers\w32x86\3\HPZEVLHN.DLL <br/>+ 2009-02-02 23:48 . 2008-01-19 07:35 280064 c:\windows\System32\spool\drivers\w32x86\3\HPFIME50.DLL <br/>+ 2009-09-16 20:21 . 2009-09-07 11:32 920264 c:\windows\System32\spool\drivers\w32x86\3\dopdfui6.dll <br/>+ 2009-09-16 20:21 . 2009-09-07 11:32 505032 c:\windows\System32\spool\drivers\w32x86\3\dopdfpr6.dll <br/>+ 2009-09-16 20:21 . 2009-09-07 11:32 435912 c:\windows\System32\spool\drivers\w32x86\3\dopdfcl6.exe <br/>+ 2009-08-20 11:12 . 2009-06-15 15:24 270848 c:\windows\System32\schannel.dll <br/>+ 2008-11-26 12:47 . 2009-06-10 05:35 221184 c:\windows\System32\RaCoInst.dll <br/>- 2008-11-26 12:47 . 2008-11-26 12:47 221184 c:\windows\System32\RaCoInst.dll <br/>+ 2006-11-02 10:33 . 2009-09-18 13:38 599942 c:\windows\System32\perfh009.dat <br/>- 2006-11-02 10:33 . 2009-06-13 08:20 599942 c:\windows\System32\perfh009.dat <br/>- 2006-11-02 10:33 . 2009-06-13 08:20 105448 c:\windows\System32\perfc009.dat <br/>+ 2006-11-02 10:33 . 2009-09-18 13:38 105448 c:\windows\System32\perfc009.dat <br/>+ 2009-08-05 11:46 . 2009-07-21 21:50 206848 c:\windows\System32\occache.dll <br/>+ 2009-02-09 07:37 . 2009-02-09 07:37 659968 c:\windows\System32\nmwcdcocls.dll <br/>- 2008-09-15 07:56 . 2008-09-15 07:56 659968 c:\windows\System32\nmwcdcocls.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:22 213504 c:\windows\System32\msv1_0.dll <br/>- 2009-06-10 19:46 . 2009-03-08 11:32 594432 c:\windows\System32\msfeeds.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:48 594432 c:\windows\System32\msfeeds.dll <br/>+ 2009-07-18 03:21 . 2009-07-18 03:21 257440 c:\windows\System32\Macromed\Flash\NPSWF32_FlashUtil.exe <br/>+ 2009-08-20 11:12 . 2009-06-15 15:21 499712 c:\windows\System32\kerberos.dll <br/>- 2009-06-10 19:46 . 2009-03-08 11:33 726528 c:\windows\System32\jscript.dll <br/>+ 2009-09-15 14:42 . 2009-06-06 05:01 726528 c:\windows\System32\jscript.dll <br/>+ 2009-09-01 14:17 . 2009-07-25 04:23 149280 c:\windows\System32\javaws.exe <br/>+ 2009-09-01 14:17 . 2009-07-25 04:23 145184 c:\windows\System32\javaw.exe <br/>+ 2009-09-01 14:17 . 2009-07-25 04:23 145184 c:\windows\System32\java.exe <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 164352 c:\windows\System32\ieui.dll <br/>- 2009-06-10 19:47 . 2009-05-09 05:34 164352 c:\windows\System32\ieui.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 184320 c:\windows\System32\iepeers.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 386048 c:\windows\System32\iedkcs32.dll <br/>- 2009-06-10 19:47 . 2009-05-09 03:36 173056 c:\windows\System32\ie4uinit.exe <br/>+ 2009-08-05 11:46 . 2009-07-21 20:13 173056 c:\windows\System32\ie4uinit.exe <br/>+ 2009-07-29 21:47 . 2006-11-20 21:36 258048 c:\windows\System32\hpzids01.dll <br/>+ 2006-11-02 10:25 . 2006-11-02 09:46 934912 c:\windows\System32\hpowiav1.dll <br/>+ 2009-07-29 21:47 . 2006-12-16 06:19 303104 c:\windows\System32\hpovst01.dll <br/>+ 2006-11-02 12:47 . 2009-07-23 13:16 367376 c:\windows\System32\FNTCACHE.DAT <br/>- 2006-11-02 12:47 . 2009-06-11 07:21 367376 c:\windows\System32\FNTCACHE.DAT <br/>+ 2009-05-11 12:30 . 2009-05-11 12:30 547840 c:\windows\System32\DriverStore\FileRepository\pccswpddriver.inf_b43d96b2\PCCSWpdDriver.dll <br/>+ 2009-03-19 13:48 . 2009-03-19 13:48 136704 c:\windows\System32\DriverStore\FileRepository\nmwcdnsu.inf_add8f2b2\nmwcdnsu.sys <br/>+ 2009-06-10 05:35 . 2009-06-10 05:35 221184 c:\windows\System32\DriverStore\FileRepository\netr61.inf_21ac3d5a\RaCoInst.dll <br/>+ 2009-06-10 05:38 . 2009-06-10 05:38 335872 c:\windows\System32\DriverStore\FileRepository\netr61.inf_21ac3d5a\netr61.sys <br/>+ 2009-07-29 21:47 . 2006-11-20 21:36 258048 c:\windows\System32\DriverStore\FileRepository\hpounp02.inf_83f234c0\hpzids01.dll <br/>+ 2009-07-29 21:47 . 2006-12-16 06:19 675840 c:\windows\System32\DriverStore\FileRepository\hposcu01.inf_9d000a79\drivers\scanner\x32\hpowiav1.dll <br/>+ 2009-07-29 21:47 . 2006-12-16 06:19 303104 c:\windows\System32\DriverStore\FileRepository\hposcu01.inf_9d000a79\drivers\scanner\x32\hpovst01.dll <br/>+ 2009-07-29 21:47 . 2006-12-16 06:19 573440 c:\windows\System32\DriverStore\FileRepository\hposcu01.inf_9d000a79\drivers\scanner\x32\hpotscl1.dll <br/>+ 2009-07-29 21:47 . 2006-12-16 06:19 897024 c:\windows\System32\DriverStore\FileRepository\hposcu01.inf_9d000a79\drivers\scanner\x32\hpotiop1.dll <br/>+ 2009-02-09 07:37 . 2009-02-09 07:37 659968 c:\windows\System32\DriverStore\FileRepository\ccdcmb.inf_0c298eaf\nmwcdcocls.dll <br/>+ 2009-05-11 12:30 . 2009-05-11 12:30 547840 c:\windows\System32\drivers\UMDF\PCCSWpdDriver.dll <br/>+ 2009-03-19 13:48 . 2009-03-19 13:48 136704 c:\windows\System32\drivers\nmwcdnsu.sys <br/>+ 2009-06-10 05:38 . 2009-06-10 05:38 335872 c:\windows\System32\drivers\netr61.sys <br/>+ 2009-08-20 11:12 . 2009-06-15 18:20 439896 c:\windows\System32\drivers\ksecdd.sys <br/>+ 2009-02-02 17:08 . 2008-01-19 05:49 131584 c:\windows\System32\drivers\Dot4.sys <br/>+ 2009-06-10 19:59 . 2009-07-29 21:58 245760 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat <br/>- 2009-06-10 19:59 . 2009-06-13 08:16 245760 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat <br/>- 2009-02-02 17:08 . 2008-01-19 05:36 289792 c:\windows\System32\atmfd.dll <br/>+ 2009-07-16 22:40 . 2009-06-15 12:52 289792 c:\windows\System32\atmfd.dll <br/>- 2009-06-10 19:59 . 2009-06-13 08:15 245760 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat <br/>+ 2009-06-10 19:59 . 2009-06-14 13:21 245760 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat <br/>+ 2009-07-30 21:41 . 2009-07-30 21:41 210384 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat <br/>+ 2009-07-17 20:09 . 2009-07-17 20:09 473600 c:\windows\Replay Media Catcher\uninstall.exe <br/>+ 2008-07-29 23:44 . 2008-07-29 23:44 652800 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs_setup.msi <br/>+ 2009-09-07 17:16 . 2009-09-07 17:16 331264 c:\windows\Installer\fdebc0.msi <br/>+ 2009-09-03 13:53 . 2009-09-03 13:53 850432 c:\windows\Installer\f2b00.msi <br/>+ 2009-09-03 13:51 . 2009-09-03 13:51 549888 c:\windows\Installer\f2a4d.msi <br/>+ 2009-09-03 13:51 . 2009-09-03 13:51 331264 c:\windows\Installer\f2a15.msi <br/>+ 2008-11-16 11:38 . 2008-11-16 11:38 324608 c:\windows\Installer\c3c06.msp <br/>+ 2008-11-16 11:38 . 2008-11-16 11:38 324608 c:\windows\Installer\c3bfe.msp <br/>+ 2009-06-10 20:11 . 2009-06-10 20:11 501248 c:\windows\Installer\c3bac.msi <br/>+ 2009-06-10 20:10 . 2009-06-10 20:10 501248 c:\windows\Installer\c3b90.msi <br/>+ 2009-06-10 20:10 . 2009-06-10 20:10 506880 c:\windows\Installer\c3b89.msi <br/>+ 2009-06-10 20:10 . 2009-06-10 20:10 516608 c:\windows\Installer\c3b81.msi <br/>+ 2009-06-10 20:10 . 2009-06-10 20:10 513024 c:\windows\Installer\c3b79.msi <br/>+ 2009-06-10 20:10 . 2009-06-10 20:10 501248 c:\windows\Installer\c3b6b.msi <br/>+ 2009-06-10 20:09 . 2009-06-10 20:09 501248 c:\windows\Installer\c3b48.msi <br/>+ 2009-07-16 21:44 . 2009-07-16 21:44 322048 c:\windows\Installer\bc5d1b.msi <br/>+ 2009-09-15 14:44 . 2009-09-15 14:44 432640 c:\windows\Installer\a3267d.msi <br/>+ 2009-08-05 15:11 . 2009-08-05 15:11 818176 c:\windows\Installer\8c911.msi <br/>+ 2009-03-02 15:08 . 2009-03-02 15:08 323072 c:\windows\Installer\643b7e.msi <br/>+ 2009-05-15 20:22 . 2009-05-15 20:22 799232 c:\windows\Installer\4d04ca.msi <br/>+ 2009-03-20 10:48 . 2009-03-20 10:48 183808 c:\windows\Installer\20ee3a3.msp <br/>+ 2009-07-08 13:42 . 2009-07-08 13:42 536576 c:\windows\Installer\1c4fc9.msi <br/>+ 2009-01-31 14:57 . 2009-01-31 14:57 163840 c:\windows\Installer\1adb29.msi <br/>+ 2009-05-14 20:17 . 2009-05-14 20:17 637952 c:\windows\Installer\18c24d1.msi <br/>+ 2009-05-26 17:53 . 2009-05-26 17:53 579072 c:\windows\Installer\16bd018.msp <br/>+ 2008-12-13 09:58 . 2008-12-13 09:58 754688 c:\windows\Installer\16761b.msp <br/>+ 2009-02-01 00:35 . 2009-02-01 00:35 648192 c:\windows\Installer\16760f.msi <br/>+ 2009-02-01 22:30 . 2009-02-01 22:30 836096 c:\windows\Installer\13633e4.msi <br/>+ 2009-09-07 17:17 . 2009-09-07 17:17 458752 c:\windows\Installer\{F983B4FE-547B-4C44-BAF7-4F4DBA93D548}\NewShortcut20_F7578A24A4B240E4BA057EF931EB25B5.exe <br/>+ 2009-09-07 17:17 . 2009-09-07 17:17 458752 c:\windows\Installer\{F983B4FE-547B-4C44-BAF7-4F4DBA93D548}\NewShortcut16_F7578A24A4B240E4BA057EF931EB25B5.exe <br/>- 2009-02-10 19:59 . 2009-03-26 13:54 295606 c:\windows\Installer\{AC76BA86-7AD7-1033-7B44-A81300000003}\SC_Reader.exe <br/>+ 2009-02-10 19:59 . 2009-09-02 20:48 295606 c:\windows\Installer\{AC76BA86-7AD7-1033-7B44-A81300000003}\SC_Reader.exe <br/>- 2009-06-10 20:15 . 2009-06-12 14:32 888080 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\wordicon.exe <br/>+ 2009-06-10 20:15 . 2009-07-28 13:11 888080 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\wordicon.exe <br/>- 2009-06-10 20:15 . 2009-06-12 14:32 272648 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\pubs.exe <br/>+ 2009-06-10 20:15 . 2009-07-28 13:11 272648 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\pubs.exe <br/>+ 2009-06-10 20:15 . 2009-07-28 13:11 922384 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\pptico.exe <br/>- 2009-06-10 20:15 . 2009-06-12 14:32 922384 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\pptico.exe <br/>+ 2009-06-10 20:15 . 2009-07-28 13:11 845584 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\outicon.exe <br/>- 2009-06-10 20:15 . 2009-06-12 14:32 845584 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\outicon.exe <br/>+ 2009-06-10 20:15 . 2009-07-28 13:11 217864 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\misc.exe <br/>- 2009-06-10 20:15 . 2009-06-12 14:32 217864 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\misc.exe <br/>+ 2009-06-10 20:15 . 2009-07-28 13:11 184080 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\joticon.exe <br/>- 2009-06-10 20:15 . 2009-06-12 14:32 184080 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\joticon.exe <br/>- 2009-06-10 20:15 . 2009-06-12 14:32 159504 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\inficon.exe <br/>+ 2009-06-10 20:15 . 2009-07-28 13:11 159504 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\inficon.exe <br/>+ 2007-08-24 03:52 . 2007-08-24 03:52 275896 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\SCNPST64.DLL <br/>+ 2007-08-24 03:52 . 2007-08-24 03:52 266160 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\SCNPST32.DLL <br/>+ 2007-08-24 03:51 . 2007-08-24 03:51 416112 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\PSTPRX32.DLL <br/>+ 2007-08-28 22:22 . 2007-08-28 22:22 180128 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\OUTLPH.DLL <br/>+ 2007-08-28 22:20 . 2007-08-28 22:20 600992 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\OUTLMIME.DLL <br/>+ 2007-08-24 04:42 . 2007-08-24 04:42 195480 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\OMSXP32.DLL <br/>+ 2007-08-24 04:42 . 2007-08-24 04:42 663432 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\OMSMAIN.DLL <br/>+ 2007-08-24 03:49 . 2007-08-24 03:49 342888 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\MIMEDIR.DLL <br/>+ 2007-08-28 22:19 . 2007-08-28 22:19 136064 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\CONTAB32.DLL <br/>+ 2006-10-27 14:16 . 2006-10-27 14:16 408880 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\RTFHTML.DLL <br/>+ 2006-10-27 14:16 . 2006-10-27 14:16 138512 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\OUTLCTL.DLL <br/>+ 2006-10-26 19:55 . 2006-10-26 19:55 254776 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\OLKFSTUB.DLL <br/>+ 2006-10-26 19:55 . 2006-10-26 19:55 138024 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\IMPMAIL.DLL <br/>+ 2006-10-26 19:55 . 2006-10-26 19:55 154960 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\ENVELOPE.DLL <br/>+ 2006-10-26 19:55 . 2006-10-26 19:55 116544 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.4518\EMABLT32.DLL <br/>- 2006-11-02 10:25 . 2009-06-10 19:45 143360 c:\windows\inf\infstrng.dat <br/>+ 2006-11-02 10:25 . 2009-09-14 21:09 143360 c:\windows\inf\infstrng.dat <br/>- 2009-02-02 17:08 . 2008-01-19 07:34 171008 c:\windows\ehome\ehkeyctl.dll <br/>+ 2009-09-15 14:40 . 2009-07-21 14:45 171008 c:\windows\ehome\ehkeyctl.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:39 173056 c:\windows\AppPatch\AcXtrnal.dll <br/>- 2009-02-01 01:28 . 2009-02-01 01:28 173056 c:\windows\AppPatch\AcXtrnal.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:38 459776 c:\windows\AppPatch\AcSpecfc.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:38 541696 c:\windows\AppPatch\AcLayers.dll <br/>- 2009-02-01 01:28 . 2009-02-01 01:28 541696 c:\windows\AppPatch\AcLayers.dll <br/>+ 2009-09-15 14:44 . 2009-09-15 14:44 1286152 c:\windows\winsxs\x86_microsoft.msxml2_6bd6b9abf345378f_4.20.9870.0_none_b7e00e6c7b30b69b\msxml4.dll <br/>+ 2009-09-07 17:17 . 2009-09-07 17:17 1233920 c:\windows\winsxs\x86_microsoft.msxml2_6bd6b9abf345378f_4.20.9818.0_none_b7e811947b297f6d\msxml4.dll <br/>+ 2009-08-20 11:12 . 2009-06-04 12:56 2067968 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6002.22146_none_3238de2ddc072aae\mstscax.dll <br/>+ 2009-08-20 11:12 . 2009-06-04 12:07 2066432 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6002.18045_none_31ae4118c2ea718d\mstscax.dll <br/>+ 2009-08-20 11:12 . 2009-06-04 12:33 2067968 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6001.22443_none_304f6b67dee38985\mstscax.dll <br/>+ 2009-08-20 11:12 . 2009-06-04 12:34 2066432 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6001.18266_none_2fb32dbcc5d3707b\mstscax.dll <br/>+ 2009-08-20 11:12 . 2009-06-04 12:31 1874432 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6000.21061_none_2e516291e1cf33e3\mstscax.dll <br/>+ 2009-08-20 11:12 . 2009-06-04 12:43 1871872 c:\windows\winsxs\x86_microsoft-windows-t..s-clientactivexcore_31bf3856ad364e35_6.0.6000.16865_none_2dcbeeccc8adc633\mstscax.dll <br/>+ 2009-09-15 14:42 . 2009-08-10 07:23 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6002.22215_none_f4f261f581c1d755\OESpamFilter.dat <br/>+ 2009-09-15 14:42 . 2009-08-10 07:23 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6002.18103_none_f4719482689de8ec\OESpamFilter.dat <br/>+ 2009-09-15 14:42 . 2009-08-10 07:22 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6001.22511_none_f307eee5849f1cd5\OESpamFilter.dat <br/>+ 2009-09-15 14:42 . 2009-08-10 07:23 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6001.18322_none_f27480926b88b52c\OESpamFilter.dat <br/>+ 2009-09-15 14:42 . 2009-08-10 07:22 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.21119_none_f12988cb87718cb7\OESpamFilter.dat <br/>+ 2009-09-15 14:42 . 2009-08-10 07:23 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.16919_none_f0a013de6e53b9ab\OESpamFilter.dat <br/>+ 2009-09-15 14:42 . 2009-06-10 11:45 2386944 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmvcore_31bf3856ad364e35_6.0.6002.22150_none_096c8896ec43f957\WMVCORE.DLL <br/>+ 2009-09-15 14:42 . 2009-06-10 11:41 2386944 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmvcore_31bf3856ad364e35_6.0.6002.18049_none_08f6be51d31621ab\WMVCORE.DLL <br/>+ 2009-09-15 14:42 . 2009-06-10 11:59 2386944 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmvcore_31bf3856ad364e35_6.0.6001.22447_none_0797e8a0ef0f39a3\WMVCORE.DLL <br/>+ 2009-09-15 14:42 . 2009-06-10 12:11 2386944 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmvcore_31bf3856ad364e35_6.0.6001.18270_none_06e6d825d6103f24\WMVCORE.DLL <br/>+ 2009-09-15 14:42 . 2009-06-10 12:06 2436096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmvcore_31bf3856ad364e35_6.0.6000.21065_none_0599dfcaf1fae401\WMVCORE.DLL <br/>+ 2009-09-15 14:42 . 2009-06-10 12:16 2433536 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-wmvcore_31bf3856ad364e35_6.0.6000.16868_none_05136bbbd8da5cfa\WMVCORE.DLL <br/>+ 2009-08-20 11:12 . 2009-07-15 12:47 8147456 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\wmploc.DLL <br/>+ 2009-08-20 11:12 . 2009-07-15 12:40 8147456 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\wmploc.DLL <br/>+ 2009-08-20 11:12 . 2009-07-15 13:07 8147456 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\wmploc.DLL <br/>+ 2009-08-20 11:12 . 2009-07-14 10:59 8147456 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\wmploc.DLL <br/>+ 2009-08-20 11:12 . 2009-07-15 12:53 8147968 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\wmploc.DLL <br/>+ 2009-08-20 11:12 . 2009-07-14 11:11 8147968 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\wmploc.DLL <br/>+ 2009-09-15 14:42 . 2009-06-10 11:45 2868224 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.22150_none_9e993405232e229b\mf.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 11:41 2868224 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6002.18049_none_9e2369c00a004aef\mf.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 11:59 2868224 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.22447_none_9cc4940f25f962e7\mf.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 12:11 2868224 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6001.18270_none_9c1383940cfa6868\mf.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 12:00 2855424 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.21065_none_9ac68b3928e50d45\mf.dll <br/>+ 2009-09-15 14:42 . 2009-06-10 12:07 2855424 c:\windows\winsxs\x86_microsoft-windows-mediafoundation_31bf3856ad364e35_6.0.6000.16868_none_9a40172a0fc4863e\mf.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 14:58 1259008 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsasrv.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 14:52 1259008 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsasrv.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:25 1257984 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsasrv.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:23 1256448 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsasrv.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:04 1235456 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsasrv.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:23 1233920 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsasrv.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 05:58 1985536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.22903_none_2b196baebb6c56e8\iertutil.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 1985536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.18813_none_2a84fef7a256d30f\iertutil.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 05:59 5938176 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.22903_none_f6b8d3f15111a1c1\mshtml.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:48 5937152 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18813_none_f624673a37fc1de8\mshtml.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 06:02 1208832 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.22903_none_9858d93105b211f8\urlmon.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:52 1208832 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18813_none_97c46c79ec9c8e1f\urlmon.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 00:34 4240384 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6002.22213_none_4468964bd78652fb\GameUXLegacyGDFs.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 02:47 1696256 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6002.22213_none_4468964bd78652fb\gameux.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 00:27 4240384 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6002.18101_none_43e7c8d8be626492\GameUXLegacyGDFs.dll <br/>+ 2009-08-26 14:44 . 2009-04-11 06:28 1696768 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6002.18101_none_43e7c8d8be626492\gameux.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 10:19 4240384 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6001.22509_none_4292f60bda5279f0\GameUXLegacyGDFs.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:25 1695744 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6001.22509_none_4292f60bda5279f0\gameux.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 10:15 4240384 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6001.18320_none_41eab4e8c14d30d2\GameUXLegacyGDFs.dll <br/>+ 2009-02-01 01:28 . 2009-02-01 01:28 1695744 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6001.18320_none_41eab4e8c14d30d2\gameux.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 23:26 4247552 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6000.21117_none_409fbd21dd36085d\GameUXLegacyGDFs.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 03:33 1686528 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6000.21117_none_409fbd21dd36085d\gameux.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 23:31 4247552 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6000.16917_none_40164834c4183551\GameUXLegacyGDFs.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 03:41 1686528 c:\windows\winsxs\x86_microsoft-windows-gameexplorer_31bf3856ad364e35_6.0.6000.16917_none_40164834c4183551\gameux.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 02:46 2159616 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6002.22213_none_0e8c7ffb0893effb\AcGenral.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 02:30 2159616 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6002.18101_none_0e0bb287ef700192\AcGenral.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:24 2157056 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.22509_none_0cb6dfbb0b6016f0\AcGenral.dll <br/>+ 2009-09-02 13:40 . 2009-08-28 12:38 2153984 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.18320_none_0c0e9e97f25acdd2\AcGenral.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 03:31 2144768 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6000.21117_none_0ac3a6d10e43a55d\AcGenral.dll <br/>+ 2009-09-02 13:40 . 2009-08-29 03:40 2143744 c:\windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6000.16917_none_0a3a31e3f525d251\AcGenral.dll <br/>+ 2009-05-11 11:47 . 2009-05-11 11:47 1302600 c:\windows\System32\WUDFUpdate_01007.dll <br/>- 2009-01-31 15:10 . 2009-01-31 15:10 2386944 c:\windows\System32\WMVCORE.DLL <br/>+ 2009-09-15 14:42 . 2009-06-10 12:11 2386944 c:\windows\System32\WMVCORE.DLL <br/>- 2008-09-15 07:29 . 2008-09-15 07:29 1112288 c:\windows\System32\wdfcoinstaller01007.dll <br/>+ 2009-02-09 07:32 . 2009-02-09 07:32 1112288 c:\windows\System32\wdfcoinstaller01007.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:52 1208832 c:\windows\System32\urlmon.dll <br/>+ 2009-02-02 23:47 . 2008-01-19 07:35 2725376 c:\windows\System32\spool\drivers\w32x86\3\HPZUILHN.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:28 3447808 c:\windows\System32\spool\drivers\w32x86\3\HPZSTLHN.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 1253888 c:\windows\System32\spool\drivers\w32x86\3\HPZ3RLHN.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:35 1515520 c:\windows\System32\spool\drivers\w32x86\3\HPZ3ALHN.DLL <br/>+ 2009-02-02 23:47 . 2008-01-19 07:34 5387776 c:\windows\System32\spool\drivers\w32x86\3\HPFIGLHN.DLL <br/>- 2006-11-02 10:22 . 2009-06-10 23:19 6553600 c:\windows\System32\SMI\Store\Machine\schema.dat <br/>+ 2006-11-02 10:22 . 2009-09-15 21:24 6553600 c:\windows\System32\SMI\Store\Machine\schema.dat <br/>+ 2008-09-30 15:43 . 2008-09-30 15:43 1286152 c:\windows\System32\msxml4.dll <br/>+ 2009-08-20 11:12 . 2009-06-04 12:34 2066432 c:\windows\System32\mstscax.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:48 5937152 c:\windows\System32\mshtml.dll <br/>+ 2009-07-18 03:21 . 2009-07-18 03:21 3883424 c:\windows\System32\Macromed\Flash\NPSWF32.dll <br/>+ 2009-08-20 11:12 . 2009-06-15 15:23 1256448 c:\windows\System32\lsasrv.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 1985536 c:\windows\System32\iertutil.dll <br/>+ 2006-11-02 10:25 . 2006-11-02 09:46 1197056 c:\windows\System32\hpotiop1.dll <br/>+ 2009-05-11 11:47 . 2009-05-11 11:47 1302600 c:\windows\System32\DriverStore\FileRepository\pccswpddriver.inf_b43d96b2\WUDFUpdate_01007.dll <br/>+ 2009-02-09 07:32 . 2009-02-09 07:32 1112288 c:\windows\System32\DriverStore\FileRepository\ccdcmb.inf_0c298eaf\wdfcoinstaller01007.dll <br/>- 2006-11-02 12:47 . 2009-03-11 20:54 2636507 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareLicensing\tokens.dat <br/>+ 2006-11-02 12:47 . 2009-08-20 11:31 2636507 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareLicensing\tokens.dat <br/>+ 2009-09-07 17:17 . 2009-09-07 17:17 1481728 c:\windows\Installer\fdebc7.msi <br/>+ 2009-03-26 13:54 . 2009-03-26 13:54 4733440 c:\windows\Installer\fb95a0.msp <br/>+ 2009-04-14 03:50 . 2009-04-14 03:50 5191680 c:\windows\Installer\d0bbf5.msp <br/>+ 2009-04-24 11:29 . 2009-04-24 11:29 9013760 c:\windows\Installer\d0bbeb.msp <br/>+ 2008-11-16 11:38 . 2008-11-16 11:38 5749760 c:\windows\Installer\c3bf6.msp <br/>+ 2009-06-10 20:11 . 2009-06-10 20:11 1640960 c:\windows\Installer\c3bb3.msi <br/>+ 2009-06-10 20:10 . 2009-06-10 20:10 1652736 c:\windows\Installer\c3ba5.msi <br/>+ 2009-06-10 20:10 . 2009-06-10 20:10 1652736 c:\windows\Installer\c3b9e.msi <br/>+ 2009-06-10 20:10 . 2009-06-10 20:10 1652736 c:\windows\Installer\c3b97.msi <br/>+ 2009-06-10 20:10 . 2009-06-10 20:10 2319872 c:\windows\Installer\c3b72.msi <br/>+ 2009-06-10 20:09 . 2009-06-10 20:09 1647616 c:\windows\Installer\c3b64.msi <br/>+ 2009-06-10 20:09 . 2009-06-10 20:09 1640960 c:\windows\Installer\c3b5d.msi <br/>+ 2009-06-10 20:09 . 2009-06-10 20:09 2022912 c:\windows\Installer\c3b56.msi <br/>+ 2009-06-10 20:09 . 2009-06-10 20:09 1713152 c:\windows\Installer\c3b4f.msi <br/>+ 2009-06-10 20:09 . 2009-06-10 20:09 2397184 c:\windows\Installer\c3b41.msi <br/>+ 2009-02-10 19:59 . 2009-02-10 19:59 4192256 c:\windows\Installer\5d579f.msi <br/>+ 2009-05-10 13:07 . 2009-05-10 13:07 1091584 c:\windows\Installer\35e6ad.msi <br/>+ 2009-01-31 15:23 . 2009-01-31 15:23 8992256 c:\windows\Installer\31e557.msi <br/>+ 2009-01-31 15:22 . 2009-01-31 15:22 1549312 c:\windows\Installer\31e54f.msi <br/>+ 2009-04-11 13:45 . 2009-04-11 13:45 3966976 c:\windows\Installer\28f31b.msi <br/>+ 2009-04-11 13:43 . 2009-04-11 13:43 1659392 c:\windows\Installer\28eff7.msi <br/>+ 2009-04-11 13:42 . 2009-04-11 13:42 3293696 c:\windows\Installer\28efdb.msi <br/>+ 2009-04-14 03:49 . 2009-04-14 03:49 1922560 c:\windows\Installer\16bd0d4.msp <br/>+ 2009-04-14 03:18 . 2009-04-14 03:18 9684480 c:\windows\Installer\16bd0cb.msp <br/>+ 2009-05-04 06:46 . 2009-05-04 06:46 8299008 c:\windows\Installer\16bd0c1.msp <br/>+ 2009-05-04 06:47 . 2009-05-04 06:47 9124864 c:\windows\Installer\16bd0a8.msp <br/>+ 2009-04-14 03:51 . 2009-04-14 03:51 1303040 c:\windows\Installer\16bd08f.msp <br/>+ 2009-04-24 11:30 . 2009-04-24 11:30 2583552 c:\windows\Installer\16bd085.msp <br/>+ 2009-02-25 18:08 . 2009-02-25 18:08 8311808 c:\windows\Installer\16bd06b.msp <br/>+ 2009-04-24 11:28 . 2009-04-24 11:28 4450816 c:\windows\Installer\16bd054.msp <br/>+ 2009-04-14 02:20 . 2009-04-14 02:20 9573376 c:\windows\Installer\16bd03a.msp <br/>+ 2009-05-07 08:17 . 2009-05-07 08:17 5026816 c:\windows\Installer\16bd030.msp <br/>+ 2009-09-02 20:48 . 2009-09-02 20:48 1711616 c:\windows\Installer\13deb3f.msp <br/>- 2009-06-10 20:15 . 2009-06-12 14:32 1172240 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\xlicons.exe <br/>+ 2009-06-10 20:15 . 2009-07-28 13:11 1172240 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\xlicons.exe <br/>+ 2009-06-10 20:15 . 2009-07-28 13:11 1165584 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\accicons.exe <br/>- 2009-06-10 20:15 . 2009-06-12 14:32 1165584 c:\windows\Installer\{91120000-002E-0000-0000-0000000FF1CE}\accicons.exe <br/>+ 2007-08-28 22:20 . 2007-08-28 22:20 2949512 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\OLMAPI32.DLL <br/>+ 2009-04-28 13:32 . 2009-04-28 13:32 1128448 c:\windows\Downloaded Installations\{9E212A89-FC5A-4AEB-92DF-1EC39FEC9556}\MotionBased Agent.msi <br/>+ 2009-09-02 13:40 . 2009-08-28 12:38 2153984 c:\windows\AppPatch\AcGenral.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 14:36 10628096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.22172_none_0d9028a465949c3d\wmp.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 14:30 10628096 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6002.18065_none_0d145ca34c6c2c87\wmp.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 14:52 10627584 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.22470_none_0ba7b6286870146b\wmp.dll <br/>+ 2009-08-20 11:12 . 2009-07-14 13:00 10626048 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6001.18289_none_0b1c4a254f52777a\wmp.dll <br/>+ 2009-08-20 11:12 . 2009-07-15 14:44 10622464 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.21083_none_09b97eb06b4f218b\wmp.dll <br/>+ 2009-08-20 11:12 . 2009-07-14 13:02 10621952 c:\windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16885_none_09320a57522f812d\wmp.dll <br/>+ 2009-08-05 11:46 . 2009-07-22 05:58 11068416 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.22903_none_48182df4dd072fee\ieframe.dll <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 11067392 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18813_none_4783c13dc3f1ac15\ieframe.dll <br/>+ 2009-05-01 21:18 . 2009-09-15 14:50 62946544 c:\windows\winsxs\ManifestCache\6.0.6002.18005_001c11ba_blobs.bin <br/>+ 2009-08-20 11:12 . 2009-07-14 13:00 10626048 c:\windows\System32\wmp.dll <br/>+ 2006-11-02 10:24 . 2009-08-28 21:38 24689600 c:\windows\System32\mrt.exe <br/>+ 2009-08-05 11:46 . 2009-07-21 21:47 11067392 c:\windows\System32\ieframe.dll <br/>+ 2008-11-16 11:38 . 2008-11-16 11:38 12743168 c:\windows\Installer\c3c20.msp <br/>+ 2008-11-16 11:38 . 2008-11-16 11:38 21981184 c:\windows\Installer\c3bc5.msp <br/>+ 2009-06-10 20:15 . 2009-06-10 20:15 18181632 c:\windows\Installer\c3bbb.msi <br/>+ 2009-05-04 06:49 . 2009-05-04 06:49 10955776 c:\windows\Installer\47f0d1.msp <br/>+ 2009-04-14 03:21 . 2009-04-14 03:21 15303168 c:\windows\Installer\20ee3ad.msp <br/>+ 2009-04-14 02:46 . 2009-04-14 02:46 15438848 c:\windows\Installer\20ee397.msp <br/>+ 2009-05-07 08:04 . 2009-05-07 08:04 18341376 c:\windows\Installer\20ee38d.msp <br/>+ 2007-09-06 17:01 . 2007-09-06 17:01 12836728 c:\windows\Installer\$PatchCache$\Managed\00002119E20000000000000000F01FEC\12.0.6215\OUTLOOK.EXE <br/>+ 2008-11-16 11:38 . 2008-11-16 11:38 229852160 c:\windows\Installer\c3d25.msp <br/>. <br/>-- Snapshot reset to current date -- <br/>. <br/>((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) <br/>. <br/>. <br/>*Note* empty entries & legit default entries are not shown <br/>REGEDIT4 <br/> <br/>[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <br/>"ccleaner"="c:\program files\CCleaner\CCleaner.exe" [2009-06-25 1578736] <br/>"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] <br/>"CubeDesktop"="c:\program files\CubeDesktop\cubedesktop.exe" [2008-03-19 4786688] <br/>"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616] <br/>"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920] <br/>"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240] <br/>"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-06-25 1414144] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <br/>"BJCFD"="c:\program files\BroadJump\Client Foundation\CFD.exe" [2003-01-27 376912] <br/>"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-08-17 81000] <br/>"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696] <br/>"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792] <br/>"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-04-02 342312] <br/>"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-03-27 13687328] <br/>"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-03-27 92704] <br/>"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648] <br/>"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2009-08-25 1796368] <br/>"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-25 149280] <br/>"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2007-09-20 4669440] <br/> <br/>[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] <br/>"EnableUIADesktopToggle"= 0 (0x0) <br/> <br/>[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] <br/>"AppInit_DLLs"=c:\windows\System32\guard32.dll <br/> <br/>[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] <br/>"mixer1"=wdmaud.drv <br/> <br/>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] <br/>@="Service" <br/> <br/>[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc] <br/>"AntiVirusOverride"=dword:00000001 <br/> <br/>[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules] <br/>"{D67B3460-2506-4954-BB5D-61BA794064B2}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour <br/>"{475CB90A-9CE5-4CBF-9832-6B5A18C3D5E4}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour <br/>"{5EB6274F-689A-45A7-97F7-DFE1087D59E2}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes <br/>"{A3469DEE-5F78-4CA2-910F-AD6AF3D944AD}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes <br/>"{4E90E22E-2674-47A6-BFE7-1B5F23AADFFF}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent (TCP-In) <br/>"{7F397FFF-482B-4A9B-A69A-B6BA45898FA2}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent (UDP-In) <br/>"TCP Query User{4CC78172-6C16-464B-8456-1E624974DF8A}c:\\program files\\utorrent\\utorrent.exe"= UDP:c:\program files\utorrent\utorrent.exe:µTorrent <br/>"UDP Query User{78061792-E836-40C4-BCF2-45630E9CADD7}c:\\program files\\utorrent\\utorrent.exe"= TCP:c:\program files\utorrent\utorrent.exe:µTorrent <br/>"{531AF133-3019-4D5E-B68F-91695007A3DF}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour <br/>"{1C124657-07D1-41D0-82C7-A53EE31C0258}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour <br/>"{3027FB0A-02FB-4E25-8D2A-C36607AF2DBF}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes <br/>"{164D068E-5672-4656-8FC9-48EAD2A3F568}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes <br/>"TCP Query User{4D0D2B6B-B6B5-468D-AC5C-96637E23F004}c:\\program files\\sopcast\\sopcast.exe"= UDP:c:\program files\sopcast\sopcast.exe:SopCast Main Application <br/>"UDP Query User{34D941A4-7E29-4881-B353-8D890C3F7A1C}c:\\program files\\sopcast\\sopcast.exe"= TCP:c:\program files\sopcast\sopcast.exe:SopCast Main Application <br/>"TCP Query User{6E607C68-EFE9-4CDE-B3CA-9C7E3E7BFBD0}c:\\program files\\sopcast\\adv\\sopadver.exe"= UDP:c:\program files\sopcast\adv\sopadver.exe:SopCast Adver <br/>"UDP Query User{F42C864B-1F33-4F8C-A5DC-9FF5F04F3315}c:\\program files\\sopcast\\adv\\sopadver.exe"= TCP:c:\program files\sopcast\adv\sopadver.exe:SopCast Adver <br/>"{869BD642-41C4-45EE-8542-7B6B014C24A1}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook <br/>"{8E65B9D3-6233-4305-A077-312EE28E5CD8}"= UDP:c:\program files\microsoft office\Office12\GROOVE.EXE:Microsoft Office Groove <br/>"{E9C86E90-1C9F-4DFF-9634-7BC66684F2D1}"= TCP:c:\program files\microsoft office\Office12\GROOVE.EXE:Microsoft Office Groove <br/>"{544EE587-4332-4B99-A216-FC21B7E917BC}"= UDP:c:\program files\microsoft office\Office12\ONENOTE.EXE:Microsoft Office OneNote <br/>"{44D2998D-B576-46D0-A86E-67B51918B09C}"= TCP:c:\program files\microsoft office\Office12\ONENOTE.EXE:Microsoft Office OneNote <br/>"TCP Query User{6C1A69CF-A50C-41E1-9E4C-6E73F07433E9}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= UDP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater <br/>"UDP Query User{9EB3DF69-75A2-4A5F-963D-C4D89EF3641D}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= TCP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater <br/>"TCP Query User{DABDB07A-13D4-4360-934C-FCA55DB04DCB}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= UDP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process <br/>"UDP Query User{D62591ED-CA7F-4552-AA34-0BD4BE8C2B38}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= TCP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process <br/> <br/>R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [1/31/2009 3:34 PM 114768] <br/>R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\System32\drivers\cmdguard.sys [2/3/2009 2:25 PM 128888] <br/>R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\System32\drivers\cmdhlp.sys [2/3/2009 2:25 PM 29520] <br/>R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [1/31/2009 3:34 PM 20560] <br/>R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [1/31/2009 3:34 PM 53328] <br/>R3 Ph3xIB32;Philips 713x VU PCI TV Card;c:\windows\System32\drivers\Ph3xIB32.sys [4/3/2007 11:43 AM 1131136] <br/>R3 rt61x86;Ralink RT61 Wireless Driver for Windows Vista;c:\windows\System32\drivers\netr61.sys [6/10/2009 6:38 AM 335872] <br/>S3 HCW713x;Hauppauge 713x VU PCI TV Card;c:\windows\System32\drivers\HCW713x.sys [9/20/2007 4:48 PM 976256] <br/>S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\System32\drivers\nmwcdnsu.sys [3/19/2009 2:48 PM 136704] <br/>S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\System32\drivers\nmwcdnsuc.sys [3/19/2009 2:48 PM 8320] <br/> <br/>[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] <br/>HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 <br/> <br/>[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] <br/>"c:\windows\System32\rundll32.exe" "c:\windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP <br/>. <br/>Contents of the 'Scheduled Tasks' folder <br/> <br/>2009-09-18 c:\windows\Tasks\User_Feed_Synchronization-{61E0577F-51D9-428F-AF81-7B8CCE228B2A}.job <br/>- c:\windows\system32\msfeedssync.exe [2009-08-05 20:13] <br/>. <br/>. <br/>------- Supplementary Scan ------- <br/>. <br/>uStart Page = hxxp://www.virginmedia.com <br/>mStart Page = about:blank <br/>uInternet Settings,ProxyOverride = plimus.com;www.plimus.com;regnow.com;www.regnow.com <br/>IE: Add to AMV Converter... - c:\program files\MP3 Player Utilities 4.18\AMVConverter\grab.html <br/>IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 <br/>FF - ProfilePath - c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\ <br/>FF - prefs.js: browser.search.selectedEngine - Google <br/>FF - prefs.js: browser.startup.homepage - hxxp://m.uk.yahoo.com/|http://twitter.com/|http://www.ebay.co.uk/|http://en-gb.facebook.com/|http://www.therunningbug.co.uk/Forum.aspx <br/>FF - prefs.js: network.proxy.socks - 127.0.0.1 <br/>FF - prefs.js: network.proxy.socks_port - 7070 <br/>FF - prefs.js: network.proxy.type - 4 <br/>FF - component: c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\extensions\{20deece9-b83b-4389-b0b0-c562d8a70302}\components\FFExternalAlert.dll <br/>FF - plugin: c:\program files\mozilla firefox\plugins\np-mswmp.dll <br/>FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ <br/>. <br/> <br/>************************************************************************** <br/> <br/>catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net <br/>Rootkit scan 2009-09-18 14:46 <br/>Windows 6.0.6001 Service Pack 1 NTFS <br/> <br/>scanning hidden processes ... <br/> <br/>scanning hidden autostart entries ... <br/> <br/>scanning hidden files ... <br/> <br/>scan completed successfully <br/>hidden files: 0 <br/> <br/>************************************************************************** <br/>. <br/>--------------------- LOCKED REGISTRY KEYS --------------------- <br/> <br/>[HKEY_USERS\S-1-5-21-851244455-3135899847-4148953319-1002\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{4D844BDD-240F-6E09-0484-5B3B3FB45860}*] <br/>"jabcldgnfdiihbecjlpj"=hex:66,61,63,6e,6e,6e,68,62,69,67,65,64,00,51 <br/>"pajdoiefedfchjiajieccibanmkiobgh"=hex:65,61,63,6e,70,6e,70,62,6d,68,00,64 <br/>"habcldgnfdiihbec"=hex:6e,62,63,6e,70,6e,63,6c,65,61,66,6c,6f,6b,65,6f,61,69, <br/> 64,66,62,6e,6b,6e,65,6a,66,6f,68,61,64,65,62,64,70,6c,6d,6b,62,6d,61,6d,6a,\ <br/> <br/>[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] <br/>@Denied: (A) (Users) <br/>@Denied: (A) (Everyone) <br/>@Allowed: (B 1 2 3 4 5) (S-1-5-20) <br/>"BlindDial"=dword:00000000 <br/>. <br/>--------------------- DLLs Loaded Under Running Processes --------------------- <br/> <br/>- - - - - - - > 'Explorer.exe'(5996) <br/>c:\program files\CubeDesktop\CubeDesktopHooks.dll <br/>. <br/>Completion time: 2009-09-18 14:47 <br/>ComboFix-quarantined-files.txt 2009-09-18 13:47 <br/>ComboFix2.txt 2009-06-13 10:53 <br/>ComboFix3.txt 2009-06-13 10:31 <br/>ComboFix4.txt 2008-11-25 18:48 <br/>ComboFix5.txt 2009-09-18 13:38 <br/> <br/>Pre-Run: 111,428,243,456 bytes free <br/>Post-Run: 111,303,217,152 bytes free <br/> <br/>1060 --- E O F --- 2009-09-15 14:50 <br/> <br/> <br/>HJT: <br/> <br/>Logfile of Trend Micro HijackThis v2.0.2 <br/>Scan saved at 2:35:48 PM, on 9/18/2009 <br/>Platform: Windows Vista SP1 (WinNT 6.00.1905) <br/>MSIE: Internet Explorer v8.00 (8.00.6001.18813) <br/>Boot mode: Normal <br/> <br/>Running processes: <br/>C:\Windows\system32\taskeng.exe <br/>C:\Windows\system32\Dwm.exe <br/>C:\Windows\Explorer.EXE <br/>C:\Program Files\BroadJump\Client Foundation\CFD.exe <br/>C:\Program Files\alwil software\Avast4\ashDisp.exe <br/>C:\Windows\RtHDVCpl.exe <br/>C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe <br/>C:\Program Files\iTunes\iTunesHelper.exe <br/>C:\Windows\System32\rundll32.exe <br/>C:\Program Files\microsoft office\Office12\GrooveMonitor.exe <br/>C:\Program Files\COMODO\COMODO Internet Security\cfp.exe <br/>C:\Program Files\Java\jre6\bin\jusched.exe <br/>C:\Windows\ehome\ehtray.exe <br/>C:\Program Files\CubeDesktop\cubedesktop.exe <br/>C:\Program Files\RocketDock\RocketDock.exe <br/>C:\Program Files\Windows Sidebar\sidebar.exe <br/>C:\Program Files\Windows Media Player\wmpnscfg.exe <br/>C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe <br/>C:\Windows\ehome\ehmsas.exe <br/>C:\Windows\system32\SearchFilterHost.exe <br/>C:\Program Files\Windows Sidebar\sidebar.exe <br/>C:\Program Files\Trend Micro\HijackThis\HijackThis.exe <br/> <br/>R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.virginmedia.com <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 <br/>R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank <br/>R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = plimus.com;www.plimus.com;regnow.com;www.regnow.com <br/>R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = <br/>O1 - Hosts: ::1 localhost <br/>O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll <br/>O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll <br/>O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll <br/>O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe <br/>O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe <br/>O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime <br/>O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe <br/>O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" <br/>O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" <br/>O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup <br/>O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit <br/>O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" <br/>O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h <br/>O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" <br/>O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO <br/>O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe <br/>O4 - HKCU\..\Run: [CubeDesktop] C:\Program Files\CubeDesktop\cubedesktop.exe <br/>O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe" <br/>O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun <br/>O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe <br/>O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray <br/>O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.18\AMVConverter\grab.html <br/>O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 <br/>O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll <br/>O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll <br/>O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL <br/>O13 - Gopher Prefix: <br/>O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll <br/>O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe <br/>O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe <br/>O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe <br/>O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe <br/>O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe <br/>O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe <br/>O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe <br/>O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe <br/>O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe <br/>O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe <br/> <br/>-- <br/>End of file - 5763 bytes <br/> <br/> <br/>Malwarebytes: <br/> <br/>Malwarebytes' Anti-Malware 1.41 <br/>Database version: 2819 <br/>Windows 6.0.6001 Service Pack 1 <br/> <br/>9/18/2009 3:35:00 PM <br/>mbam-log-2009-09-18 (15-35-00).txt <br/> <br/>Scan type: Full Scan (A:\|C:\|D:\|E:\|G:\|H:\|I:\|J:\|S:\|) <br/>Objects scanned: 223267 <br/>Time elapsed: 36 minute(s), 5 second(s) <br/> <br/>Memory Processes Infected: 0 <br/>Memory Modules Infected: 0 <br/>Registry Keys Infected: 0 <br/>Registry Values Infected: 0 <br/>Registry Data Items Infected: 0 <br/>Folders Infected: 0 <br/>Files Infected: 0 <br/> <br/>Memory Processes Infected: <br/>(No malicious items detected) <br/> <br/>Memory Modules Infected: <br/>(No malicious items detected) <br/> <br/>Registry Keys Infected: <br/>(No malicious items detected) <br/> <br/>Registry Values Infected: <br/>(No malicious items detected) <br/> <br/>Registry Data Items Infected: <br/>(No malicious items detected) <br/> <br/>Folders Infected: <br/>(No malicious items detected) <br/> <br/>Files Infected: <br/>(No malicious items detected) <br/> <br/> <br/>Thank you :turn:
Posted 9/18/2009 8:43 PM
#77489
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
Hello danny-boy, <br/> <br/>I don't see any outright infection in these views. What program did you download and install, and of course, did you then uninstall it once things became worse there? The logs do show you have two antivirus softwares, which will cause conflicts and slowness, so you need to choose between Avast and COMODO Internet Security and uninstall one of those. Be sure to disable all security software before the uninstall, then reboot after.
Posted 9/18/2009 9:37 PM
#77490
User avatar

danny-boy Advanced member

Date Joined Nov 2016
Total Posts: 71
Thanks for the reply, it was just a prog to turn word docs into pdf's. It installed then disappeared, not in 'All programs' menu, or install/uninstall prog list on control panel. I believe it was called Go2PDF from here <br/> <br/>I know about running 2 anti virus progs, but have had them for about 2 yrs with no probs, so they do run well together, this is much much slower now in the last 2 days.
Posted 9/18/2009 11:07 PM
#77494
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
The reality is having two antivirus softwares on one system will lead to undesirable issues. May have occurred there over time so you now do not realize it. So you really should uninstall one of those. <br/> <br/>A chance the install of that program is in conflict with some other software. The ComboFix log does show a permissions locked registry key, and another "null" key that would also be blocked from access there. Both suggest having been made by malware, so let's address those then do a different scan. <br/> <br/> <br/>Be sure to continue to temporarily disable any protective software when running the scan tools we use here. <br/> <br/> <br/>Open notepad (go to Start, Run, type notepad and press Enter) and copy/paste the text in the codebox below into it: <br/> <br/>[code]KillAll:: <br/>Reglock:: <br/>[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] <br/>Regnull:: <br/>[HKEY_USERS\S-1-5-21-851244455-3135899847-4148953319-1002\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{4D844BDD-240F-6E09-0484-5B3B3FB45860}*][/code] <br/>Save this to your desktop as CFScript.txt <br/> <br/> <br/>You should now have both ComboFix and that CFScript.txt on the desktop. Just left click/hold on the CFScript.txt file, and drag it into ComboFix to start the scan. <br/> <br/>ComboFix will now run as it did before. Allow the scan to run. When completed a text window will appear - please copy/paste the contents back here. This log can also be found at C:\ComboFix.txt. <br/> <br/>A caution - do not touch your mouse/keyboard until the scan has completed. The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop. <br/> <br/>---------------- <br/> <br/>Then cick here and download the installer for Gmer to your desktop, then click that file to run Gmer. <br/> <br/>If on it's opening scan Gmer locates items shown in red or indicates "hidden" or "rootkit", stop there, and click on the Copy button and rightclick on your Desktop, choose "New" > Text document. Once the file is created, open it and rightclick again and choose Paste. Copy the information and post it here please. We don't want any crashes just from taking an initial look at things. <br/> <br/>If not, then click on Scan (before scanning, make sure all other running programs are closed and no other actions like a scheduled antivirus scan will occur while this scan completes. Also do not use your computer during the scan). <br/> <br/>When completed, click on the Copy button and rightclick on your Desktop, choose "New" > Text document. Once the file is created, open it and rightclick again and choose Paste. Copy the information and post it here please. <br/> <br/>Post back that log and the C:\ComboFix.txt log please.
Posted 9/19/2009 11:13 AM
#77506
User avatar

danny-boy Advanced member

Date Joined Nov 2016
Total Posts: 71
Thanks jintan, here is the combo log, unfortunatley, GMER didnt work, kept getting a 'stopped responding' message during each scan attempt. <br/> <br/>ComboFix 09-09-17.04 - Daniel 09/19/2009 11:34.4.4 - NTFSx86 <br/>Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.44.1033.18.3071.2024 [GMT 1:00] <br/>Running from: c:\users\Daniel\Desktop\ComboFix.exe <br/>Command switches used :: c:\users\Daniel\Desktop\cfscript.txt <br/>. <br/> <br/>((((((((((((((((((((((((( Files Created from 2009-08-19 to 2009-09-19 ))))))))))))))))))))))))))))))) <br/>. <br/> <br/>2009-09-19 10:40 . 2009-09-19 10:42 -------- d-----w- c:\users\Daniel\AppData\Local\temp <br/>2009-09-19 10:40 . 2009-09-19 10:40 -------- d-----w- c:\users\user\AppData\Local\temp <br/>2009-09-19 10:40 . 2009-09-19 10:40 -------- d-----w- c:\users\Public\AppData\Local\temp <br/>2009-09-19 10:40 . 2009-09-19 10:40 -------- d-----w- c:\users\Nikki\AppData\Local\temp <br/>2009-09-19 10:40 . 2009-09-19 10:40 -------- d-----w- c:\users\Nikki .000\AppData\Local\temp <br/>2009-09-19 10:40 . 2009-09-19 10:40 -------- d-----w- c:\users\Default\AppData\Local\temp <br/>2009-09-18 20:58 . 2009-05-18 13:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys <br/>2009-09-18 20:58 . 2008-04-17 12:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll <br/>2009-09-18 20:56 . 2009-09-18 20:56 -------- d-----w- c:\program files\iPod <br/>2009-09-18 20:56 . 2009-09-18 20:57 -------- d-----w- c:\programdata\{755AC846-7372-4AC8-8550-C52491DAA8BD} <br/>2009-09-18 20:56 . 2009-09-18 20:57 -------- d-----w- c:\program files\iTunes <br/>2009-09-18 20:55 . 2009-09-18 20:55 -------- d-----w- c:\program files\QuickTime <br/>2009-09-16 20:21 . 2009-09-07 11:32 18632 ----a-w- c:\windows\system32\dopdfmi6.dll <br/>2009-09-16 20:21 . 2009-09-07 11:32 21192 ----a-w- c:\windows\system32\dopdfmn6.dll <br/>2009-09-16 20:21 . 2009-09-16 20:21 -------- d-----w- c:\program files\Softland <br/>2009-09-15 14:45 . 2009-09-15 14:45 -------- d-----w- c:\program files\Common Files\Windows Live <br/>2009-09-15 14:44 . 2009-09-15 14:44 -------- d-----w- c:\program files\MSXML 4.0 <br/>2009-09-15 14:43 . 2009-08-14 17:07 897608 ----a-w- c:\windows\system32\drivers\tcpip.sys <br/>2009-09-15 14:43 . 2009-08-14 16:29 104960 ----a-w- c:\windows\system32\netiohlp.dll <br/>2009-09-15 14:43 . 2009-08-14 14:16 27136 ----a-w- c:\windows\system32\NETSTAT.EXE <br/>2009-09-15 14:43 . 2009-08-14 14:16 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE <br/>2009-09-15 14:43 . 2009-08-14 14:16 11264 ----a-w- c:\windows\system32\MRINFO.EXE <br/>2009-09-15 14:43 . 2009-08-14 14:16 19968 ----a-w- c:\windows\system32\ARP.EXE <br/>2009-09-15 14:43 . 2009-08-14 14:16 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE <br/>2009-09-15 14:43 . 2009-08-14 14:16 10240 ----a-w- c:\windows\system32\finger.exe <br/>2009-09-15 14:43 . 2009-08-14 14:16 17920 ----a-w- c:\windows\system32\ROUTE.EXE <br/>2009-09-15 14:43 . 2009-08-14 16:29 17920 ----a-w- c:\windows\system32\netevent.dll <br/>2009-09-15 14:42 . 2009-06-10 12:11 2868224 ----a-w- c:\windows\system32\mf.dll <br/>2009-09-15 14:42 . 2009-07-11 19:32 293376 ----a-w- c:\windows\system32\wlanmsm.dll <br/>2009-09-15 14:42 . 2009-07-11 19:32 302592 ----a-w- c:\windows\system32\wlansec.dll <br/>2009-09-15 14:42 . 2009-07-11 19:29 127488 ----a-w- c:\windows\system32\L2SecHC.dll <br/>2009-09-15 14:42 . 2009-07-11 19:32 513024 ----a-w- c:\windows\system32\wlansvc.dll <br/>2009-09-07 17:17 . 2009-09-07 17:17 -------- d-----w- c:\programdata\Nokia <br/>2009-09-03 13:52 . 2009-09-03 13:52 -------- d-----w- c:\program files\Common Files\PCSuite <br/>2009-09-03 13:52 . 2009-09-07 17:17 -------- d-----w- c:\program files\Common Files\Nokia <br/>2009-09-03 13:52 . 2008-08-26 09:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys <br/>2009-09-03 13:51 . 2009-09-03 13:51 -------- d-----w- c:\program files\PC Connectivity Solution <br/>2009-09-02 13:40 . 2009-08-28 12:39 28672 ----a-w- c:\windows\system32\Apphlpdm.dll <br/>2009-09-02 13:40 . 2009-08-28 10:15 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll <br/>2009-08-28 18:42 . 2009-08-28 18:42 40448 ----a-w- c:\windows\system32\drivers\usbaapl.sys <br/>2009-08-28 18:42 . 2009-08-28 18:42 2065696 ----a-w- c:\windows\system32\usbaaplrc.dll <br/>2009-08-26 14:46 . 2009-06-22 10:22 2048 ----a-w- c:\windows\system32\tzres.dll <br/> <br/>. <br/>(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) <br/>. <br/>2009-09-18 21:26 . 2009-01-31 15:22 -------- d-----w- c:\programdata\Apple <br/>2009-09-18 20:59 . 2009-01-31 15:25 -------- d-----w- c:\users\Daniel\AppData\Roaming\Apple Computer <br/>2009-09-18 20:56 . 2009-01-31 15:22 -------- d-----w- c:\program files\Common Files\Apple <br/>2009-09-18 20:55 . 2009-01-31 15:23 -------- d-----w- c:\programdata\Apple Computer <br/>2009-09-16 15:46 . 2009-02-02 23:25 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware <br/>2009-09-15 14:48 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail <br/>2009-09-14 21:06 . 2009-02-01 12:35 -------- d-----w- c:\users\Daniel\AppData\Roaming\uTorrent <br/>2009-09-10 13:54 . 2009-02-02 23:25 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys <br/>2009-09-10 13:53 . 2009-02-02 23:25 19160 ----a-w- c:\windows\system32\drivers\mbam.sys <br/>2009-09-10 09:12 . 2009-05-23 18:14 680 ----a-w- c:\users\Daniel\AppData\Local\d3d9caps.dat <br/>2009-09-07 17:17 . 2009-01-31 14:57 -------- d-----w- c:\program files\Nokia <br/>2009-09-07 17:16 . 2009-01-31 14:56 -------- d-----w- c:\programdata\Installations <br/>2009-09-07 17:07 . 2009-09-07 17:07 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf <br/>2009-09-03 13:52 . 2009-01-31 15:06 -------- d-----w- c:\program files\DIFX <br/>2009-09-01 18:47 . 2009-08-06 19:07 -------- d-----w- c:\programdata\NCH Swift Sound <br/>2009-09-01 14:17 . 2009-07-08 13:42 -------- d-----w- c:\program files\Java <br/>2009-08-25 17:07 . 2009-02-03 13:25 74328 ----a-w- c:\windows\system32\drivers\inspect.sys <br/>2009-08-25 17:07 . 2009-02-03 13:25 179792 ----a-w- c:\windows\system32\guard32.dll <br/>2009-08-25 17:07 . 2009-02-03 13:25 29520 ----a-w- c:\windows\system32\drivers\cmdhlp.sys <br/>2009-08-25 17:07 . 2009-02-03 13:25 128888 ----a-w- c:\windows\system32\drivers\cmdguard.sys <br/>2009-08-17 16:10 . 2009-01-31 14:34 1279456 ----a-w- c:\windows\system32\aswBoot.exe <br/>2009-08-17 16:05 . 2009-01-31 14:34 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys <br/>2009-08-17 16:05 . 2009-01-31 14:34 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys <br/>2009-08-17 16:05 . 2009-01-31 14:34 53328 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys <br/>2009-08-17 16:04 . 2009-01-31 14:34 51376 ----a-w- c:\windows\system32\drivers\aswTdi.sys <br/>2009-08-17 16:04 . 2009-01-31 14:34 23152 ----a-w- c:\windows\system32\drivers\aswRdr.sys <br/>2009-08-17 16:02 . 2009-01-31 14:34 97480 ----a-w- c:\windows\system32\AvastSS.scr <br/>2009-08-06 19:42 . 2009-08-06 19:07 -------- d-----w- c:\program files\NCH Swift Sound <br/>2009-08-06 19:07 . 2009-08-06 19:07 -------- d-----w- c:\users\Daniel\AppData\Roaming\NCH Swift Sound <br/>2009-08-06 18:41 . 2009-08-06 18:38 -------- d-----w- c:\program files\Cool MP3 Splitter <br/>2009-07-31 07:21 . 2009-07-30 18:56 -------- d-----w- c:\users\Daniel\AppData\Roaming\dvdcss <br/>2009-07-30 19:03 . 2009-02-06 16:34 -------- d-----w- c:\program files\Xilisoft <br/>2009-07-30 18:52 . 2009-07-30 18:47 -------- d-----w- c:\program files\Winnydows <br/>2009-07-30 18:47 . 2009-07-30 18:47 -------- d-----w- c:\program files\AviSynth 2.5 <br/>2009-07-30 18:37 . 2009-07-29 21:47 -------- d-----w- c:\program files\HP <br/>2009-07-30 18:35 . 2009-07-29 21:46 -------- d-----w- c:\programdata\HP <br/>2009-07-30 18:28 . 2009-07-30 17:53 -------- d-----w- c:\program files\DVD-Cloner Platinum <br/>2009-07-30 17:31 . 2009-02-05 08:14 -------- d-----w- c:\users\Daniel\AppData\Roaming\Vso <br/>2009-07-30 13:51 . 2009-07-30 13:51 -------- d-----w- c:\users\Daniel\AppData\Roaming\Image Zone Express <br/>2009-07-30 13:51 . 2009-07-30 13:51 -------- d-----w- c:\users\Daniel\AppData\Roaming\Printer Info Cache <br/>2009-07-29 21:59 . 2009-07-29 21:59 -------- d-----w- c:\programdata\WEBREG <br/>2009-07-29 21:57 . 2009-07-29 21:56 -------- d-----w- c:\users\Daniel\AppData\Roaming\HP <br/>2009-07-29 21:50 . 2009-07-29 21:50 -------- d-----w- c:\program files\Common Files\Hewlett-Packard <br/>2009-07-28 13:11 . 2009-04-07 07:23 -------- d-----w- c:\programdata\Microsoft Help <br/>2009-07-25 04:23 . 2009-07-08 13:42 411368 ----a-w- c:\windows\system32\deploytk.dll <br/>2009-07-21 21:52 . 2009-08-05 11:46 915456 ----a-w- c:\windows\system32\wininet.dll <br/>2009-07-21 21:47 . 2009-08-05 11:46 109056 ----a-w- c:\windows\system32\iesysprep.dll <br/>2009-07-21 21:47 . 2009-08-05 11:46 71680 ----a-w- c:\windows\system32\iesetup.dll <br/>2009-07-21 20:13 . 2009-08-05 11:46 133632 ----a-w- c:\windows\system32\ieUnatt.exe <br/>2009-07-17 21:21 . 2009-07-17 20:11 156672 ----a-w- c:\windows\system32\rmc_fixasf.exe <br/>2009-07-17 21:21 . 2009-07-17 20:11 237568 ----a-w- c:\windows\system32\rmc_rtspdl.dll <br/>2009-07-17 21:21 . 2009-07-17 20:10 323584 ----a-w- c:\windows\system32\AUDIOGENIE2.DLL <br/>2009-07-17 14:35 . 2009-08-20 11:12 71680 ----a-w- c:\windows\system32\atl.dll <br/>2009-07-16 22:04 . 2009-07-16 22:04 17451008 ----a-w- c:\windows\system32\imageres.dll <br/>2009-07-14 13:00 . 2009-08-20 11:12 313344 ----a-w- c:\windows\system32\wmpdxm.dll <br/>2009-07-14 12:59 . 2009-08-20 11:12 4096 ----a-w- c:\windows\system32\dxmasf.dll <br/>2009-07-14 12:58 . 2009-08-20 11:12 7680 ----a-w- c:\windows\system32\spwmp.dll <br/>2009-07-14 10:59 . 2009-08-20 11:12 8147456 ----a-w- c:\windows\system32\wmploc.DLL <br/>2007-07-13 10:29 . 2007-03-07 12:54 8192 --sha-w- c:\windows\Users\Default\NTUSER.DAT <br/>. <br/> <br/>((((((((((((((((((((((((((((( SnapShot_2009-09-18_13.46.15 ))))))))))))))))))))))))))))))))))))))))) <br/>. <br/>+ 2007-09-20 16:52 . 2009-09-19 08:17 50724 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin <br/>- 2007-09-20 16:52 . 2009-09-18 13:35 50724 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin <br/>+ 2006-11-02 13:05 . 2009-09-19 09:41 85088 c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin <br/>+ 2009-01-31 14:29 . 2009-09-19 09:41 12378 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-851244455-3135899847-4148953319-1002_UserData.bin <br/>+ 2009-09-18 20:58 . 2009-05-18 13:17 26600 c:\windows\System32\DRVSTORE\GEARAspiWD_3B7AACF0636A2C042EB7AD2AFF76D37B27BDD28C\x86\GEARAspiWDM.sys <br/>+ 2009-08-28 18:42 . 2009-08-28 18:42 40448 c:\windows\System32\DriverStore\FileRepository\usbaapl.inf_5f8e430d\usbaapl.sys <br/>+ 2009-08-28 18:42 . 2009-08-28 18:42 17408 c:\windows\System32\DriverStore\FileRepository\netaapl.inf_56082f61\netaapl.sys <br/>+ 2008-12-07 13:52 . 2009-09-19 09:41 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat <br/>- 2008-12-07 13:52 . 2009-09-18 13:27 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat <br/>- 2008-12-07 13:52 . 2009-09-18 13:27 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat <br/>+ 2008-12-07 13:52 . 2009-09-19 09:41 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat <br/>+ 2008-12-07 13:52 . 2009-09-19 09:41 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat <br/>- 2008-12-07 13:52 . 2009-09-18 13:27 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat <br/>- 2006-11-02 10:25 . 2009-09-03 13:53 86016 c:\windows\inf\infstor.dat <br/>+ 2006-11-02 10:25 . 2009-09-18 20:52 86016 c:\windows\inf\infstor.dat <br/>- 2006-11-02 10:25 . 2009-09-14 21:09 51200 c:\windows\inf\infpub.dat <br/>+ 2006-11-02 10:25 . 2009-09-18 20:52 51200 c:\windows\inf\infpub.dat <br/>+ 2006-11-02 10:33 . 2009-09-19 09:43 599942 c:\windows\System32\perfh009.dat <br/>- 2006-11-02 10:33 . 2009-09-18 13:38 599942 c:\windows\System32\perfh009.dat <br/>- 2006-11-02 10:33 . 2009-09-18 13:38 105448 c:\windows\System32\perfc009.dat <br/>+ 2006-11-02 10:33 . 2009-09-19 09:43 105448 c:\windows\System32\perfc009.dat <br/>+ 2009-09-18 20:58 . 2008-04-17 12:12 107368 c:\windows\System32\DRVSTORE\GEARAspiWD_3B7AACF0636A2C042EB7AD2AFF76D37B27BDD28C\x86\GEARAspi.dll <br/>+ 2009-09-18 20:53 . 2009-09-18 20:53 694272 c:\windows\Installer\5834c.msi <br/>+ 2009-09-18 20:58 . 2009-09-18 20:58 102400 c:\windows\Installer\{EC2A8F27-4FBF-4E41-B27B-FE822511B761}\iTunesIco.exe <br/>- 2006-11-02 10:25 . 2009-09-14 21:09 143360 c:\windows\inf\infstrng.dat <br/>+ 2006-11-02 10:25 . 2009-09-18 20:52 143360 c:\windows\inf\infstrng.dat <br/>+ 2009-08-28 18:42 . 2009-08-28 18:42 2065696 c:\windows\System32\DriverStore\FileRepository\usbaapl.inf_5f8e430d\usbaaplrc.dll <br/>+ 2009-08-28 18:42 . 2009-08-28 18:42 1417504 c:\windows\System32\DriverStore\FileRepository\netaapl.inf_56082f61\wdfcoinstaller01005.dll <br/>+ 2009-09-18 20:58 . 2009-09-18 20:58 4597248 c:\windows\Installer\585de.msi <br/>+ 2009-09-18 20:55 . 2009-09-18 20:55 9013760 c:\windows\Installer\585da.msi <br/>+ 2009-09-18 20:53 . 2009-09-18 20:53 3310592 c:\windows\Installer\5833d.msi <br/>. <br/>((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) <br/>. <br/>. <br/>*Note* empty entries & legit default entries are not shown <br/>REGEDIT4 <br/> <br/>[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <br/>"ccleaner"="c:\program files\CCleaner\CCleaner.exe" [2009-09-02 1682744] <br/>"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] <br/>"CubeDesktop"="c:\program files\CubeDesktop\cubedesktop.exe" [2008-03-19 4786688] <br/>"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616] <br/>"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920] <br/>"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240] <br/>"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-06-25 1414144] <br/> <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <br/>"BJCFD"="c:\program files\BroadJump\Client Foundation\CFD.exe" [2003-01-27 376912] <br/>"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-08-17 81000] <br/>"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792] <br/>"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-03-27 13687328] <br/>"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-03-27 92704] <br/>"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 33648] <br/>"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2009-08-25 1796368] <br/>"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-25 149280] <br/>"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-05 417792] <br/>"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-09-08 305440] <br/>"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2007-09-20 4669440] <br/> <br/>[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] <br/>"EnableUIADesktopToggle"= 0 (0x0) <br/> <br/>[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] <br/>"AppInit_DLLs"=c:\windows\System32\guard32.dll <br/> <br/>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] <br/>@="Service" <br/> <br/>[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc] <br/>"AntiVirusOverride"=dword:00000001 <br/> <br/>[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules] <br/>"{D67B3460-2506-4954-BB5D-61BA794064B2}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour <br/>"{475CB90A-9CE5-4CBF-9832-6B5A18C3D5E4}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour <br/>"{5EB6274F-689A-45A7-97F7-DFE1087D59E2}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes <br/>"{A3469DEE-5F78-4CA2-910F-AD6AF3D944AD}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes <br/>"{4E90E22E-2674-47A6-BFE7-1B5F23AADFFF}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent (TCP-In) <br/>"{7F397FFF-482B-4A9B-A69A-B6BA45898FA2}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent (UDP-In) <br/>"TCP Query User{4CC78172-6C16-464B-8456-1E624974DF8A}c:\\program files\\utorrent\\utorrent.exe"= UDP:c:\program files\utorrent\utorrent.exe:µTorrent <br/>"UDP Query User{78061792-E836-40C4-BCF2-45630E9CADD7}c:\\program files\\utorrent\\utorrent.exe"= TCP:c:\program files\utorrent\utorrent.exe:µTorrent <br/>"{531AF133-3019-4D5E-B68F-91695007A3DF}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour <br/>"{1C124657-07D1-41D0-82C7-A53EE31C0258}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour <br/>"TCP Query User{4D0D2B6B-B6B5-468D-AC5C-96637E23F004}c:\\program files\\sopcast\\sopcast.exe"= UDP:c:\program files\sopcast\sopcast.exe:SopCast Main Application <br/>"UDP Query User{34D941A4-7E29-4881-B353-8D890C3F7A1C}c:\\program files\\sopcast\\sopcast.exe"= TCP:c:\program files\sopcast\sopcast.exe:SopCast Main Application <br/>"TCP Query User{6E607C68-EFE9-4CDE-B3CA-9C7E3E7BFBD0}c:\\program files\\sopcast\\adv\\sopadver.exe"= UDP:c:\program files\sopcast\adv\sopadver.exe:SopCast Adver <br/>"UDP Query User{F42C864B-1F33-4F8C-A5DC-9FF5F04F3315}c:\\program files\\sopcast\\adv\\sopadver.exe"= TCP:c:\program files\sopcast\adv\sopadver.exe:SopCast Adver <br/>"{869BD642-41C4-45EE-8542-7B6B014C24A1}"= TCP:6004|c:\program files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook <br/>"{8E65B9D3-6233-4305-A077-312EE28E5CD8}"= UDP:c:\program files\microsoft office\Office12\GROOVE.EXE:Microsoft Office Groove <br/>"{E9C86E90-1C9F-4DFF-9634-7BC66684F2D1}"= TCP:c:\program files\microsoft office\Office12\GROOVE.EXE:Microsoft Office Groove <br/>"{544EE587-4332-4B99-A216-FC21B7E917BC}"= UDP:c:\program files\microsoft office\Office12\ONENOTE.EXE:Microsoft Office OneNote <br/>"{44D2998D-B576-46D0-A86E-67B51918B09C}"= TCP:c:\program files\microsoft office\Office12\ONENOTE.EXE:Microsoft Office OneNote <br/>"TCP Query User{6C1A69CF-A50C-41E1-9E4C-6E73F07433E9}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= UDP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater <br/>"UDP Query User{9EB3DF69-75A2-4A5F-963D-C4D89EF3641D}c:\\program files\\nokia\\nokia software updater\\nsu_ui_client.exe"= TCP:c:\program files\nokia\nokia software updater\nsu_ui_client.exe:Nokia Software Updater <br/>"TCP Query User{DABDB07A-13D4-4360-934C-FCA55DB04DCB}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= UDP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process <br/>"UDP Query User{D62591ED-CA7F-4552-AA34-0BD4BE8C2B38}c:\\program files\\common files\\nokia\\service layer\\a\\nsl_host_process.exe"= TCP:c:\program files\common files\nokia\service layer\a\nsl_host_process.exe:Nokia Service Layer Host Process <br/>"{A94293C2-BD47-4EE3-A114-F3625979E036}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes <br/>"{A23D2528-BF7D-4811-BF1B-1A7D19AF9B62}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes <br/> <br/>R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [1/31/2009 3:34 PM 114768] <br/>R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\System32\drivers\cmdguard.sys [2/3/2009 2:25 PM 128888] <br/>R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\System32\drivers\cmdhlp.sys [2/3/2009 2:25 PM 29520] <br/>R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [1/31/2009 3:34 PM 20560] <br/>R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [1/31/2009 3:34 PM 53328] <br/>R3 Ph3xIB32;Philips 713x VU PCI TV Card;c:\windows\System32\drivers\Ph3xIB32.sys [4/3/2007 11:43 AM 1131136] <br/>R3 rt61x86;Ralink RT61 Wireless Driver for Windows Vista;c:\windows\System32\drivers\netr61.sys [6/10/2009 6:38 AM 335872] <br/>S3 HCW713x;Hauppauge 713x VU PCI TV Card;c:\windows\System32\drivers\HCW713x.sys [9/20/2007 4:48 PM 976256] <br/>S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\System32\drivers\nmwcdnsu.sys [3/19/2009 2:48 PM 136704] <br/>S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\System32\drivers\nmwcdnsuc.sys [3/19/2009 2:48 PM 8320] <br/> <br/>[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] <br/>HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 <br/> <br/>[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] <br/>"c:\windows\System32\rundll32.exe" "c:\windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP <br/>. <br/>Contents of the 'Scheduled Tasks' folder <br/> <br/>2009-09-18 c:\windows\Tasks\User_Feed_Synchronization-{61E0577F-51D9-428F-AF81-7B8CCE228B2A}.job <br/>- c:\windows\system32\msfeedssync.exe [2009-08-05 20:13] <br/>. <br/>. <br/>------- Supplementary Scan ------- <br/>. <br/>uStart Page = hxxp://www.virginmedia.com <br/>mStart Page = about:blank <br/>uInternet Settings,ProxyOverride = plimus.com;www.plimus.com;regnow.com;www.regnow.com <br/>IE: Add to AMV Converter... - c:\program files\MP3 Player Utilities 4.18\AMVConverter\grab.html <br/>IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 <br/>FF - ProfilePath - c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\ <br/>FF - prefs.js: browser.search.selectedEngine - Google <br/>FF - prefs.js: browser.startup.homepage - hxxp://m.uk.yahoo.com/|http://twitter.com/|http://www.ebay.co.uk/|http://en-gb.facebook.com/|http://www.therunningbug.co.uk/Forum.aspx <br/>FF - prefs.js: network.proxy.socks - 127.0.0.1 <br/>FF - prefs.js: network.proxy.socks_port - 7070 <br/>FF - prefs.js: network.proxy.type - 4 <br/>FF - component: c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\extensions\{20deece9-b83b-4389-b0b0-c562d8a70302}\components\FFExternalAlert.dll <br/>FF - plugin: c:\program files\mozilla firefox\plugins\np-mswmp.dll <br/>FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ <br/>. <br/> <br/>************************************************************************** <br/>scanning hidden processes ... <br/> <br/>scanning hidden autostart entries ... <br/> <br/>scanning hidden files ... <br/> <br/>scan completed successfully <br/>hidden files: <br/> <br/>************************************************************************** <br/>. <br/>--------------------- DLLs Loaded Under Running Processes --------------------- <br/> <br/>- - - - - - - > 'Explorer.exe'(3692) <br/>c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll <br/>c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL <br/>c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_eng.nlr <br/>c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr <br/>. <br/>------------------------ Other Running Processes ------------------------ <br/>. <br/>c:\windows\System32\nvvsvc.exe <br/>c:\program files\COMODO\COMODO Internet Security\cmdagent.exe <br/>c:\windows\System32\audiodg.exe <br/>c:\windows\System32\rundll32.exe <br/>c:\program files\alwil software\Avast4\aswUpdSv.exe <br/>c:\program files\alwil software\Avast4\ashServ.exe <br/>c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe <br/>c:\program files\Bonjour\mDNSResponder.exe <br/>c:\windows\System32\WUDFHost.exe <br/>c:\program files\alwil software\Avast4\ashMaiSv.exe <br/>c:\program files\alwil software\Avast4\ashWebSv.exe <br/>c:\windows\ehome\ehsched.exe <br/>c:\windows\ehome\ehrecvr.exe <br/>. <br/>************************************************************************** <br/>. <br/>Completion time: 2009-09-19 11:45 - machine was rebooted <br/>ComboFix-quarantined-files.txt 2009-09-19 10:45 <br/>ComboFix2.txt 2009-09-18 13:47 <br/>ComboFix3.txt 2009-06-13 10:53 <br/>ComboFix4.txt 2009-06-13 10:31 <br/>ComboFix5.txt 2009-09-19 10:33 <br/> <br/>Pre-Run: 112,817,160,192 bytes free <br/>Post-Run: 112,738,082,816 bytes free <br/> <br/>283 --- E O F --- 2009-09-15 14:50
Posted 9/19/2009 2:49 PM
#77509
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
Nothing other than your security software showing, as far as keeping the Gmer scan from completing. Let's see if you can just run one other type of scan with it. Make very sure all security software is temp disabled when running the scan. <br/> <br/>The logs show firewall work-around proxy server setting pointing to port 7070. Did you set this yourself, or recognize the use of it? <br/> <br/> <br/>Open Gmer again, but this time right click in the white space in the display and select Options - Only non MS files. Then click Scan and allow Gmer to run a different scan. Once that completes click on the Copy button and rightclick on your Desktop, choose "New" > Text document. Once the file is created, open it and rightclick again and choose Paste. Copy the information and post it here please.
Posted 9/19/2009 3:16 PM
#77510
User avatar

danny-boy Advanced member

Date Joined Nov 2016
Total Posts: 71
Here you go, that scanned fine. <br/> <br/>As for port 7070 thing, I dont even know what that means, so its nothing I've set!! <br/> <br/> <br/> <br/> <br/> <br/>GMER 1.0.15.15087 - http://www.gmer.net <br/>Rootkit scan 2009-09-19 16:13:15 <br/>Windows 6.0.6001 Service Pack 1 <br/>Running: g7g5ed2w.exe; Driver: C:\Users\Daniel\AppData\Local\Temp\kwldapob.sys <br/> <br/> <br/>---- Modules - GMER 1.0.15 ---- <br/> <br/>Module \SystemRoot\system32\DRIVERS\nvlddmkm.sys (NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 182.50 /NVIDIA Corporation) 8E609000-8ED6B000 (7741440 bytes) <br/>Module \SystemRoot\system32\DRIVERS\nvBridge.kmd (NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 182.50 /NVIDIA Corporation) 8ED6B000-8ED6D000 (8192 bytes) <br/>Module \SystemRoot\system32\DRIVERS\e1e6032.sys (Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver/Intel Corporation) 8ED7A000-8EDB5000 (241664 bytes) <br/>Module \SystemRoot\system32\DRIVERS\Ph3xIB32.sys (Ph3xIBxx/Philips Semiconductors GmbH) 8F00E000-8F123000 (1134592 bytes) <br/>Module \SystemRoot\system32\DRIVERS\netr61.sys (Ralink 802.11 Wireless Adapter Driver/Ralink Technology, Corp.) 8F150000-8F1A9000 (364544 bytes) <br/>Module \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys (CD DVD Filter/GEAR Software Inc.) 8F1F4000-8F1FA000 (24576 bytes) <br/>Module \SystemRoot\System32\Drivers\pcouffin.sys (low level access layer for CD/DVD/BD devices/VSO Software) 8F4D8000-8F4E4000 (49152 bytes) <br/>Module \SystemRoot\system32\DRIVERS\mssmbios.sys (System Management BIOS Driver/Microsoft Corporation) 8F51A000-8F524000 (40960 bytes) <br/>Module \SystemRoot\system32\drivers\RTKVHDA.sys (Realtek(r) High Definition Audio Function Driver/Realtek Semiconductor Corp.) 8F60B000-8F7C0000 (1789952 bytes) <br/>Module \SystemRoot\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) 8F5A5000-8F5C7000 (139264 bytes) <br/>Module \SystemRoot\System32\DRIVERS\cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO) 8FAD5000-8FADF000 (40960 bytes) <br/>Module \SystemRoot\System32\Drivers\aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software) 8FAF3000-8FAFE000 (45056 bytes) <br/>Module \SystemRoot\System32\Drivers\aswRdr.SYS (avast! TDI RDR Driver/ALWIL Software) 8FB46000-8FB4A000 (16384 bytes) <br/>Module \SystemRoot\system32\DRIVERS\inspect.sys (COMODO Internet Security Firewall Driver/COMODO) 8FB92000-8FBA7000 (86016 bytes) <br/>Module \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) 8FE5E000-8FE7F000 (135168 bytes) <br/>Module \SystemRoot\system32\DRIVERS\aswMonFlt.sys (avast! File System Minifilter for Windows 2003/Vista/ALWIL Software) 8FED3000-8FEEA000 (94208 bytes) <br/>Module \SystemRoot\system32\DRIVERS\aswFsBlk.sys (avast! File System Access Blocking Driver/ALWIL Software) 8FEEA000-8FEF2000 (32768 bytes) <br/>Module \SystemRoot\System32\Drivers\secdrv.SYS (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) 9E2E2000-9E2EC000 (40960 bytes) <br/>Module \??\C:\Users\Daniel\AppData\Local\Temp\kwldapob.sys (GMER) 9E337000-9E34C000 (86016 bytes) <br/> <br/>---- Processes - GMER 1.0.15 ---- <br/> <br/>Process C:\Windows\system32\csrss.exe (Client Server Runtime Process/Microsoft Corporation) 528 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 584 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000 <br/> <br/>Process C:\Windows\system32\wininit.exe (Windows Start-Up Application/Microsoft Corporation) 588 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\csrss.exe (Client Server Runtime Process/Microsoft Corporation) 600 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Program Files\iPod\bin\iPodService.exe (iPodService Module (32-bit)/Apple Inc.) 628 <br/>Library C:\Program Files\iPod\bin\iPodService.exe (iPodService Module (32-bit)/Apple Inc.) 0x000B0000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.DLL (iPodService Resource Library (32-bit)/Apple Inc.) 0x6E1D0000 <br/>Library C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL (iPodService Resource Library (32-bit)/Apple Inc.) 0x6E1C0000 <br/> <br/>Process C:\Windows\system32\services.exe (Services and Controller app/Microsoft Corporation) 632 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\lsass.exe (Local Security Authority Process/Microsoft Corporation) 644 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\lsm.exe (Local Session Manager Service/Microsoft Corporation) 656 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\System32\spoolsv.exe (Spooler SubSystem App/Microsoft Corporation) 676 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\System32\dopdfmn6.dll (doPDF Port Monitor/Softland) 0x00400000 <br/>Library C:\Windows\System32\LXAKSLM.DLL (Lexmark Z55 System Driver Language Monitor/Lexmark) 0x003C0000 <br/>Library C:\Windows\System32\LXAKSUI.dll (Printer Driver UI Customization Plug-In/Lexmark) 0x50000000 <br/>Library C:\Windows\System32\hpz3llhn.dll (LanguageMonitor/Hewlett-Packard Company) 0x70760000 <br/>Library C:\Windows\System32\msonpmon.dll (Microsoft Office OneNote 2007 Printer Driver/Microsoft Corporation) 0x701F0000 <br/>Library C:\Windows\System32\usbmon.dll (Standard Dynamic Printing Port Monitor DLL/Microsoft Corporation) 0x6FCA0000 <br/>Library C:\Windows\system32\spool\PRTPROCS\W32X86\hpzpplhn.dll (Hewlett-Packard Corporation) 0x6FAF0000 <br/>Library C:\Windows\system32\spool\PRTPROCS\W32X86\mdippr.dll (Microsoft® Document Imaging/Microsoft Corporation) 0x00450000 <br/>Library C:\Windows\system32\spool\PRTPROCS\W32X86\msonpppr.dll (Microsoft Office OneNote 2007 Printer Driver/Microsoft Corporation) 0x6FAE0000 <br/>Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000 <br/> <br/>Process C:\Windows\ehome\ehRecvr.exe (Windows Media Center Receiver Service/Microsoft Corporation) 784 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\system32\MSACM32.dll (Microsoft ACM Audio Filter/Microsoft Corporation) 0x74270000 <br/>Library C:\Windows\system32\Ph3xIB32MV.dll (KS Proxy Plugin/Philips Semiconductors GmbH) 0x6BAC0000 <br/>Library C:\Windows\System32\Hauppauge\SoftMCE\mceesmpeg.ax (MPEG Encoder and Muxer/MainConcept AG) 0x10000000 <br/>Library C:\Windows\System32\Hauppauge\SoftMCE\mcempgaout.dll (MPEG Audio Encoder/MainConcept AG) 0x24000000 <br/>Library C:\Windows\System32\Hauppauge\SoftMCE\mcempgvout.dll (MPEG Video Wrapper/MainConcept AG) 0x00EF0000 <br/>Library C:\Windows\System32\Hauppauge\SoftMCE\mcempgmux.dll (MPEG Multiplexer/MainConcept AG) 0x00FC0000 <br/>Library C:\Windows\System32\Hauppauge\SoftMCE\mcempgvout.004 (MPEG Video Encoder/MainConcept AG) 0x03130000 <br/>Library C:\Windows\System32\tvratings.dll (TestRat Rating Test Module/Microsoft) 0x6B350000 <br/> <br/>Process C:\Windows\system32\winlogon.exe (Windows Logon Application/Microsoft Corporation) 824 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 848 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\nvvsvc.exe (NVIDIA Driver Helper Service, Version 182.50/NVIDIA Corporation) 912 <br/>Library C:\Windows\system32\nvvsvc.exe (NVIDIA Driver Helper Service, Version 182.50/NVIDIA Corporation) 0x00400000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 940 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO Internet Security/COMODO) 984 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO Internet Security/COMODO) 0x00400000 <br/>Library C:\Windows\system32\FLTLIB.DLL (Filter Library/Microsoft Corporation) 0x75560000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\framework.dll (COMODO Internet Security/COMODO) 0x10000000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\common.cav (COMODO Internet Security/COMODO) 0x33310000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\first.cav (COMODO Internet Security/COMODO) 0x33330000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\pe32.cav (COMODO Internet Security/COMODO) 0x33320000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\script.cav 0x003D0000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\dosmz.cav (COMODO Internet Security/COMODO) 0x33340000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\white.cav (COMODO Internet Security/COMODO) 0x003E0000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\heur.cav (COMODO Internet Security/COMODO) 0x00BC0000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\pkann.dll (COMODO Internet Security/COMODO) 0x01D70000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\pe.cav (COMODO Internet Security/COMODO) 0x00C60000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\unsfx.cav (COMODO Internet Security/COMODO) 0x01C40000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\unpack.cav (COMODO Internet Security/COMODO) 0x03630000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\unarch.cav (COMODO Internet Security/COMODO) 0x03590000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\gunpack.cav (COMODO Internet Security/COMODO) 0x036F0000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\mach32.dll (COMODO Internet Security/COMODO) 0x03750000 <br/>Library C:\Program Files\COMODO\COMODO Internet Security\SCANNERS\mem.cav (COMODO Internet Security/COMODO) 0x01EE0000 <br/> <br/>Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1068 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library c:\windows\system32\ACTIVEDS.dll (ADs Router Layer DLL/Microsoft Corporation) 0x729B0000 <br/>Library C:\Windows\system32\ndptsp.tsp (NDIS Proxy TAPI Service Provider/Microsoft Corporation) 0x717E0000 <br/> <br/>Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1088 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1144 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1200 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library c:\windows\system32\tabsvc.dll (Microsoft Tablet PC Input Service/Microsoft Corporation) 0x74120000 <br/>Library C:\Windows\System32\ACTIVEDS.dll (ADs Router Layer DLL/Microsoft Corporation) 0x729B0000 <br/> <br/>Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1212 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\system32\ACTIVEDS.dll (ADs Router Layer DLL/Microsoft Corporation) 0x729B0000 <br/>Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000 <br/>Library C:\Windows\system32\wbem\ncprov.dll (Non-COM WMI Event Provision APIs/Microsoft Corporation) 0x72790000 <br/>Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000 <br/> <br/>Process C:\Windows\system32\AUDIODG.EXE (Windows Audio Device Graph Isolation /Microsoft Corporation) 1304 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\system32\RtkAPO.dll (Realtek(r) LFX/GFX DSP component/Realtek Semiconductor Corp.) 0x73F20000 <br/> <br/>Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1336 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\SLsvc.exe (Microsoft Software Licensing Service/Microsoft Corporation) 1356 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 1384 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library c:\windows\system32\webclnt.dll (Web DAV Service DLL/Microsoft Corporation) 0x72B70000 <br/>Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000 <br/>Library c:\windows\system32\upnphost.dll (UPnP Device Host/Microsoft Corporation) 0x6E010000 <br/> <br/>Process C:\Program Files\Windows Media Player\wmpnscfg.exe (Windows Media Player Network Sharing Service Configuration Application/Microsoft Corporation) 1428 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x005B0000 <br/> <br/>Process C:\Windows\system32\taskeng.exe (Task Scheduler Engine/Microsoft Corporation) 1580 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\system32\pautoenr.dll (Auto Enrollment DLL/Microsoft Corporation) 0x70690000 <br/> <br/>Process C:\Windows\system32\rundll32.exe (Windows host process (Rundll32)/Microsoft Corporation) 1620 <br/>Library C:\Windows\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) 0x73730000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\system32\NVSVC.DLL (NVIDIA Driver Helper Service, Version 182.50/NVIDIA Corporation) 0x10000000 <br/>Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000 <br/>Library C:\Windows\system32\nvapi.dll (NVIDIA NVAPI Library, Version 182.50 /NVIDIA Corporation) 0x008D0000 <br/>Library C:\Windows\system32\NVSVCR.DLL (NVIDIA Driver Helper Service Localized Resources, Version 182.50/NVIDIA Corporation) 0x01720000 <br/> <br/>Process C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (avast! Antivirus updating service/ALWIL Software) 1856 <br/>Library C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (avast! Antivirus updating service/ALWIL Software) 0x00400000 <br/>Library C:\Program Files\Alwil Software\Avast4\aswCmnS.dll (Common non-portable functions/ALWIL Software) 0x64100000 <br/>Library C:\Program Files\Alwil Software\Avast4\aswCmnOS.dll (Antivirus HW dependent library/ALWIL Software) 0x64000000 <br/>Library C:\Program Files\Alwil Software\Avast4\aswCmnB.dll (High level portable functions/ALWIL Software) 0x64080000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Program Files\Alwil Software\Avast4\ashServ.exe (avast! antivirus service/ALWIL Software) 1876 <br/>Library C:\Program Files\Alwil Software\Avast4\ashServ.exe (avast! antivirus service/ALWIL Software) 0x00400000 <br/>Library C:\Program Files\Alwil Software\Avast4\aswAux.dll (avast! Auxiliary Library/ALWIL Software) 0x64580000 <br/>Library C:\Program Files\Alwil Software\Avast4\aswCmnB.dll (High level portable functions/ALWIL Software) 0x64080000 <br/>Library C:\Program Files\Alwil Software\Avast4\aswCmnOS.dll (Antivirus HW dependent library/ALWIL Software) 0x64000000 <br/>Library C:\Program Files\Alwil Software\Avast4\aswEngin.dll (High level antivirus engine/ALWIL Software) 0x64280000 <br/>Library C:\Program Files\Alwil Software\Avast4\aswScan.dll (Low level antivirus engine/ALWIL Software) 0x64200000 <br/>Library C:\Program Files\Alwil Software\Avast4\aswCmnS.dll (Common non-portable functions/ALWIL Software) 0x64100000 <br/>Library C:\Program Files\Alwil Software\Avast4\ashBase.dll (Basic Functionality Module/ALWIL Software) 0x64500000 <br/>Library C:\Program Files\Alwil Software\Avast4\ashTask.dll (Task Handling Module/ALWIL Software) 0x64800000 <br/>Library C:\Program Files\Alwil Software\Avast4\aswInteg.dll (Integrity checking implementation/ALWIL Software) 0x64400000 <br/>Library C:\Program Files\Alwil Software\Avast4\aswIdle.dll (avast! Idle Hook Library/ALWIL Software) 0x64A00000 <br/>Library C:\Program Files\Alwil Software\Avast4\Aavm4h.dll (avast! Asynchronous Virus Monitor (AAVM)/ALWIL Software) 0x65000000 <br/>Library C:\Program Files\Alwil Software\Avast4\AavmRpch.dll (avast! AAVM Remote Procedure Call Library/ALWIL Software) 0x65100000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\Alwil Software\Avast4\English\Base.dll (avast! English Basic Module/ALWIL Software) 0x66080000 <br/>Library C:\Windows\system32\FltLib.dll (Filter Library/Microsoft Corporation) 0x75560000 <br/>Library C:\Program Files\Alwil Software\Avast4\AhResMai.dll (avast! e-Mail Scanner AAVM Provider Library/ALWIL Software) 0x65380000 <br/>Library C:\Program Files\Alwil Software\Avast4\ahResMes.dll (avast!4 Messenger scanner AAVM Provider Library/ALWIL Software) 0x65880000 <br/>Library C:\Program Files\Alwil Software\Avast4\AhResNS.dll (avast!4 Network Shield AAVM Provider Library/ALWIL Software) 0x65980000 <br/>Library C:\Program Files\Alwil Software\Avast4\AhResOut.dll (avast! MS Outlook/Exchange AAVM Provider Library/ALWIL Software) 0x65280000 <br/>Library C:\Program Files\Alwil Software\Avast4\ahResP2P.dll (avast!4 P2P Shield AAVM Provider Library/ALWIL Software) 0x658C0000 <br/>Library C:\Program Files\Alwil Software\Avast4\AhResStd.dll (avast! Standard Shield AAVM Provider Library/ALWIL Software) 0x65180000 <br/>Library C:\Program Files\Alwil Software\Avast4\AhResWS.dll (avast! HTTP Scanner AAVM Provider Library/ALWIL Software) 0x65A00000 <br/>Library C:\Program Files\Alwil Software\Avast4\ashSSqlt.dll (avast! Sqlt Storage Module/ALWIL Software) 0x64880000 <br/>Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000 <br/>Library C:\Program Files\Alwil Software\Avast4\DATA\aswar0.dll (Avast! anti-rootkit module/ALWIL Software) 0x65E20000 <br/>Library C:\Program Files\Alwil Software\Avast4\aswRawFs.dll (Raw disk access library/ALWIL Software) 0x64180000 <br/> <br/>Process C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) 2072 <br/>Library C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) 0x00A90000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) 2084 <br/>Library C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) 0x00400000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 2116 <br/>Library c:\windows\system32\hpzinw12.dll (Dot4Net Module/Hewlett-Packard) 0x00400000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\System32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 2216 <br/>Library c:\windows\system32\hpzipm12.dll (PmlDrv Module/Hewlett-Packard) 0x00020000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 2232 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\svchost.exe (Host Process for Windows Services/Microsoft Corporation) 2256 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\ehome\ehsched.exe (Windows Media Center Scheduler Service/Microsoft Corporation) 2272 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\SearchIndexer.exe (Microsoft Windows Search Indexer/Microsoft Corporation) 2316 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\WUDFHost.exe (Windows Driver Foundation - User-mode Driver Framework Host Process/Microsoft Corporation) 2672 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Program Files\Windows Sidebar\sidebar.exe (Windows Sidebar/Microsoft Corporation) 3020 <br/>Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x02850000 <br/>Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000 <br/>Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000 <br/>Library C:\Windows\system32\nvd3dum.dll (NVIDIA Compatible Vista WDDM D3D Driver, Version 182.50 /NVIDIA Corporation) 0x10000000 <br/>Library C:\Program Files\RocketDock\RocketDock.dll 0x042D0000 <br/> <br/>Process C:\Windows\system32\taskeng.exe (Task Scheduler Engine/Microsoft Corporation) 3176 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\system32\pautoenr.dll (Auto Enrollment DLL/Microsoft Corporation) 0x70690000 <br/>Library C:\Windows\system32\MSACM32.dll (Microsoft ACM Audio Filter/Microsoft Corporation) 0x74270000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x02600000 <br/> <br/>Process C:\Windows\system32\Dwm.exe (Desktop Window Manager/Microsoft Corporation) 3192 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\system32\nvd3dum.dll (NVIDIA Compatible Vista WDDM D3D Driver, Version 182.50 /NVIDIA Corporation) 0x10000000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x051A0000 <br/> <br/>Process C:\Windows\Explorer.EXE (Windows Explorer/Microsoft Corporation) 3280 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\system32\MSImg32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000 <br/>Library C:\Windows\system32\MSACM32.dll (Microsoft ACM Audio Filter/Microsoft Corporation) 0x74270000 <br/>Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000 <br/>Library C:\Windows\system32\wscntfy.dll (Windows Security Center Notification App/Microsoft Corporation) 0x6EFC0000 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll (Phone Browser/Nokia) 0x10000000 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\NGSCM.DLL (Next Gen Suite Common Modules/Nokia) 0x074E0000 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_eng.nlr (Nokia Phone Browser language resources/Nokia) 0x04060000 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr (Nokia Phone Browser graphics resources/Nokia) 0x06F60000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x036B0000 <br/>Library C:\Windows\system32\bthprops.cpl (Bluetooth Control Panel Applet/Microsoft Corporation) 0x6DE40000 <br/>Library C:\Program Files\RocketDock\RocketDock.dll 0x035C0000 <br/> <br/>Process C:\Windows\System32\mobsync.exe (Microsoft Sync Center/Microsoft Corporation) 3500 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x00790000 <br/> <br/>Process C:\Program Files\BroadJump\Client Foundation\CFD.exe 3612 <br/>Library C:\Program Files\BroadJump\Client Foundation\CFD.exe 0x00400000 <br/>Library C:\Windows\system32\stlport_4_0_0_DDR.dll 0x689E0000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\BroadJump\Client Foundation\BJComRT.dll 0x68E00000 <br/>Library C:\Program Files\BroadJump\Client Foundation\BasicLoaderService.dll 0x68EE0000 <br/>Library C:\Program Files\BroadJump\Client Foundation\AppProperties.dll 0x68FA0000 <br/>Library C:\Program Files\BroadJump\Client Foundation\Marshaller.dll 0x68E80000 <br/>Library C:\Program Files\BroadJump\Client Foundation\TimerManager.dll 0x68860000 <br/>Library C:\Program Files\BroadJump\Client Foundation\BJComSRCManager.dll 0x68DB0000 <br/>Library C:\Program Files\BroadJump\Client Foundation\ConnectivityWatcher.dll 0x68C20000 <br/>Library C:\Windows\system32\BJBase_2-2-2_DDR.dll 0x68330000 <br/>Library C:\Program Files\BroadJump\Client Foundation\BJAgentRegistration.dll 0x60F50000 <br/>Library C:\Program Files\BroadJump\Client Foundation\BJFReg.dll 0x607A0000 <br/>Library C:\Program Files\BroadJump\Client Foundation\BJNet_2-2-4_DDR.dll 0x68250000 <br/>Library C:\Windows\system32\xerces-c_1_40_0_DDR.dll 0x68780000 <br/>Library C:\Windows\system32\SSLEAY32_1-1-0_DDR.DLL 0x10000000 <br/>Library C:\Windows\system32\LIBEAY32_1-1-0_DDR.DLL 0x02B90000 <br/>Library C:\Program Files\BroadJump\Client Foundation\ThirdPartyManager.dll 0x688E0000 <br/>Library C:\Program Files\BroadJump\Client Foundation\BJComSPMManager.dll 0x60AA0000 <br/>Library C:\Program Files\BroadJump\Client Foundation\ClientUpdate.dll 0x60520000 <br/>Library C:\Program Files\BroadJump\Client Foundation\ProfileManager.dll 0x65E20000 <br/>Library C:\Program Files\BroadJump\Client Foundation\DirectoryService.dll 0x61F70000 <br/>Library C:\Program Files\BroadJump\Client Foundation\BJComVTBlade.dll 0x60920000 <br/>Library C:\Program Files\BroadJump\Client Foundation\BJComAnnouncement.dll 0x60DC0000 <br/> <br/>Process C:\Program Files\alwil software\Avast4\ashDisp.exe (avast! service GUI component/ALWIL Software) 3632 <br/>Library C:\Program Files\alwil software\Avast4\ashDisp.exe (avast! service GUI component/ALWIL Software) 0x00400000 <br/>Library C:\Program Files\alwil software\Avast4\aswCmnOS.dll (Antivirus HW dependent library/ALWIL Software) 0x64000000 <br/>Library C:\Program Files\alwil software\Avast4\ashBase.dll (Basic Functionality Module/ALWIL Software) 0x64500000 <br/>Library C:\Program Files\alwil software\Avast4\aswCmnB.dll (High level portable functions/ALWIL Software) 0x64080000 <br/>Library C:\Program Files\alwil software\Avast4\aswCmnS.dll (Common non-portable functions/ALWIL Software) 0x64100000 <br/>Library C:\Program Files\alwil software\Avast4\ashTask.dll (Task Handling Module/ALWIL Software) 0x64800000 <br/>Library C:\Program Files\alwil software\Avast4\aswAux.dll (avast! Auxiliary Library/ALWIL Software) 0x64580000 <br/>Library C:\Program Files\alwil software\Avast4\Aavm4h.dll (avast! Asynchronous Virus Monitor (AAVM)/ALWIL Software) 0x65000000 <br/>Library C:\Program Files\alwil software\Avast4\AavmRpch.dll (avast! AAVM Remote Procedure Call Library/ALWIL Software) 0x65100000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\Alwil Software\Avast4\English\Base.dll (avast! English Basic Module/ALWIL Software) 0x66080000 <br/>Library C:\Program Files\Alwil Software\Avast4\English\Lang.dll (avast! Main English Module/ALWIL Software) 0x66100000 <br/>Library c:\program files\alwil software\avast4\ahruimai.dll (avast! e-Mail Scanner provider GUI/ALWIL Software) 0x65400000 <br/>Library C:\Program Files\alwil software\Avast4\ashUInt.dll (avast! User Interface Common Module/ALWIL Software) 0x64B00000 <br/>Library C:\Program Files\alwil software\Avast4\uiAux2.dll (uiAux2 DLL/ALWIL Software) 0x02AA0000 <br/>Library C:\Program Files\alwil software\Avast4\XT1922.dll (Xtreme Toolkit Library DLL/Codejock Software) 0x64C80000 <br/>Library c:\program files\alwil software\avast4\ahruimes.dll (avast!4 Messenger scanner AAVM Provider GUI Library/ALWIL Software) 0x65900000 <br/>Library c:\program files\alwil software\avast4\ahruins.dll (avast!4 Network Shield AAVM Provider GUI Library/ALWIL Software) 0x659C0000 <br/>Library c:\program files\alwil software\avast4\ahruiout.dll (avast! MS Outlook/Exchange AAVM Provider GUI Library/ALWIL Software) 0x65300000 <br/>Library c:\program files\alwil software\avast4\ahruip2p.dll (avast!4 P2P Shield AAVM Provider GUI Library/ALWIL Software) 0x65940000 <br/>Library c:\program files\alwil software\avast4\ahruistd.dll (avast! Standard Shield AAVM Provider GUI Library/ALWIL Software) 0x65200000 <br/>Library c:\program files\alwil software\avast4\ahruiws.dll (Avast! WWW Scanner AAVM Provider GUI Library/ALWIL Software) 0x65A40000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x003C0000 <br/>Library C:\Program Files\RocketDock\RocketDock.dll 0x10000000 <br/> <br/>Process C:\Program Files\Windows Media Player\wmpnetwk.exe (Windows Media Player Network Sharing Service/Microsoft Corporation) 3656 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000 <br/> <br/>Process C:\Windows\RtHDVCpl.exe (HD Audio Control Panel/Realtek Semiconductor) 3684 <br/>Library C:\Windows\RtHDVCpl.exe (HD Audio Control Panel/Realtek Semiconductor) 0x00400000 <br/>Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\system32\RtkAPO.dll (Realtek(r) LFX/GFX DSP component/Realtek Semiconductor Corp.) 0x73F20000 <br/> <br/>Process C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia Launch Application/Nokia) 3756 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia Launch Application/Nokia) 0x00400000 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\QtCore4.dll 0x67000000 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\QtGui4.dll 0x65000000 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\QtXml4.dll 0x61000000 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\CDC.dll (CDC/Nokia) 0x10000000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\PCSL.dll (PCSL/Nokia) 0x01970000 <br/>Library C:\Program Files\PC Connectivity Solution\ConnAPI.dll (Nokia Connectivity API/Nokia.) 0x01D60000 <br/>Library C:\Program Files\PC Connectivity Solution\DAAPI.dll (Data Access API/Nokia) 0x02930000 <br/>Library C:\Program Files\PC Connectivity Solution\PCCS_ABAPI.dll (Abstraction API/Nokia) 0x01E10000 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\styles\NGLStyle.dll (Launch Application Style plugin/Nokia) 0x03460000 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qjpeg4.dll 0x019E0000 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qsvg4.dll 0x019C0000 <br/>Library C:\Program Files\Nokia\Nokia PC Suite 7\QtSvg4.dll 0x66000000 <br/>Library C:\Program Files\RocketDock\RocketDock.dll 0x01D30000 <br/>Library C:\Program Files\PC Connectivity Solution\ConfServer.dll (Configuration Server Module/Nokia) 0x01F30000 <br/>Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000 <br/>Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x03A50000 <br/> <br/>Process C:\Windows\System32\rundll32.exe (Windows host process (Rundll32)/Microsoft Corporation) 3764 <br/>Library C:\Windows\system32\ShimEng.dll (Shim Engine DLL/Microsoft Corporation) 0x73730000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\system32\NvMcTray.dll (NVIDIA Media Center Library/NVIDIA Corporation) 0x10000000 <br/>Library C:\Windows\System32\nvapi.dll (NVIDIA NVAPI Library, Version 182.50 /NVIDIA Corporation) 0x024C0000 <br/> <br/>Process C:\Program Files\microsoft office\Office12\GrooveMonitor.exe (GrooveMonitor Utility/Microsoft Corporation) 3772 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\system32\MSImg32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000 <br/> <br/>Process C:\Program Files\Java\jre6\bin\jusched.exe (Java(TM) Platform SE binary/Sun Microsystems, Inc.) 3892 <br/>Library C:\Program Files\Java\jre6\bin\jusched.exe (Java(TM) Platform SE binary/Sun Microsystems, Inc.) 0x00400000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\System32\npmproxy.dll (Network List Manager Proxy/Microsoft Corporation) 0x71B90000 <br/>Library C:\Program Files\Bonjour\mdnsNSP.dll (Bonjour Namespace Provider/Apple Inc.) 0x16080000 <br/> <br/>Process C:\Program Files\iTunes\iTunesHelper.exe (iTunesHelper Module/Apple Inc.) 3908 <br/>Library C:\Program Files\iTunes\iTunesHelper.exe (iTunesHelper Module/Apple Inc.) 0x00EB0000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.DLL (iTunesHelper Resource Library/Apple Inc.) 0x74840000 <br/>Library C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL (iTunesHelper Resource Library/Apple Inc.) 0x74830000 <br/>Library C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll (CoreFoundation/Apple Inc.) 0x6DF40000 <br/>Library C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll (POSIX Threads for Windows32 Library/Open Source Software community project) 0x6F330000 <br/>Library C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll 0x6E060000 <br/>Library C:\Program Files\Common Files\Apple\Apple Application Support\icuin40.dll (IBM ICU I18N DLL/IBM Corporation and others) 0x6C840000 <br/>Library C:\Program Files\Common Files\Apple\Apple Application Support\icuuc40.dll (IBM ICU Common DLL/IBM Corporation and others) 0x6C3A0000 <br/>Library C:\Program Files\Common Files\Apple\Apple Application Support\icudt40.dll (ICU Data DLL/IBM Corporation and others) 0x670E0000 <br/>Library C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll 0x6F1B0000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x00E40000 <br/> <br/>Process C:\Windows\ehome\ehtray.exe (Media Center Tray Applet/Microsoft Corporation) 3940 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x008C0000 <br/> <br/>Process C:\Windows\ehome\ehmsas.exe (Media Center Media Status Aggregator Service/Microsoft Corporation) 3984 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x000B0000 <br/> <br/>Process C:\Program Files\CubeDesktop\cubedesktop.exe (CubeDesktop Executable/Thinking Minds Building Bytes) 4056 <br/>Library C:\Program Files\CubeDesktop\cubedesktop.exe (CubeDesktop Executable/Thinking Minds Building Bytes) 0x00400000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\system32\msimg32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x00390000 <br/>Library C:\Program Files\RocketDock\RocketDock.dll 0x10000000 <br/>Library C:\Windows\system32\nvd3dum.dll (NVIDIA Compatible Vista WDDM D3D Driver, Version 182.50 /NVIDIA Corporation) 0x04AF0000 <br/> <br/>Process C:\Program Files\RocketDock\RocketDock.exe 4060 <br/>Library C:\Program Files\RocketDock\RocketDock.exe 0x00400000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Windows\system32\MSImg32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000 <br/>Library C:\Program Files\RocketDock\RocketDock.dll 0x10000000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x03890000 <br/> <br/>Process C:\Program Files\Windows Sidebar\sidebar.exe (Windows Sidebar/Microsoft Corporation) 4072 <br/>Library C:\Windows\system32\MSIMG32.dll (GDIEXT Client DLL/Microsoft Corporation) 0x75540000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x005C0000 <br/>Library C:\Windows\system32\nvd3dum.dll (NVIDIA Compatible Vista WDDM D3D Driver, Version 182.50 /NVIDIA Corporation) 0x10000000 <br/>Library C:\Program Files\RocketDock\RocketDock.dll 0x03E50000 <br/> <br/>Process C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (ServiceLayer Module/Nokia.) 4452 <br/>Library C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (ServiceLayer Module/Nokia.) 0x00400000 <br/>Library C:\Program Files\PC Connectivity Solution\PCCS_DBEngine.dll (Database Engine/Nokia) 0x10000000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe (USB Media Server/Nokia) 4536 <br/>Library C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe (USB Media Server/Nokia) 0x00400000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe (Serial Media Server/Nokia) 4548 <br/>Library C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe (Serial Media Server/Nokia) 0x00400000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\SearchProtocolHost.exe (Microsoft Windows Search Protocol Host/Microsoft Corporation) 5424 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\SearchFilterHost.exe (Microsoft Windows Search Filter Host/Microsoft Corporation) 5440 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Windows\system32\wbem\wmiprvse.exe (WMI Provider Host/Microsoft Corporation) 5664 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>Process C:\Program Files\Internet Explorer\IELowutil.exe (Internet Explorer/Microsoft Corporation) 5808 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\RocketDock\RocketDock.dll 0x10000000 <br/>Library C:\Program Files\CubeDesktop\CubeDesktopHooks.dll 0x014C0000 <br/> <br/>Process C:\Windows\system32\wuauclt.exe (Windows Update Automatic Updates/Microsoft Corporation) 5944 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/>Library C:\Program Files\RocketDock\RocketDock.dll 0x10000000 <br/> <br/>Process C:\Users\Daniel\Desktop\g7g5ed2w.exe 6028 <br/>Library C:\Users\Daniel\Desktop\g7g5ed2w.exe 0x00400000 <br/>Library C:\Windows\system32\USP10.dll (Uniscribe Unicode script processor/Microsoft Corporation) 0x76980000 <br/> <br/>---- Services - GMER 1.0.15 ---- <br/> <br/>Service C:\Windows\system32\DRIVERS\AGRSM.sys (SoftModem Device Driver/Agere Systems) [MANUAL] AgereSoftModem <br/>Service C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device Service/Apple Inc.) [AUTO] Apple Mobile Device <br/>Service C:\Windows\system32\DRIVERS\aswFsBlk.sys (avast! File System Access Blocking Driver/ALWIL Software) [AUTO] aswFsBlk <br/>Service C:\Windows\system32\DRIVERS\aswMonFlt.sys (avast! File System Minifilter for Windows 2003/Vista/ALWIL Software) [AUTO] aswMonFlt <br/>Service (avast! TDI RDR Driver/ALWIL Software) [SYSTEM] aswRdr <br/>Service (avast! self protection module/ALWIL Software) [SYSTEM] aswSP <br/>Service (avast! TDI Filter Driver/ALWIL Software) [SYSTEM] aswTdi <br/>Service C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (avast! Antivirus updating service/ALWIL Software) [AUTO] aswUpdSv <br/>Service C:\Program Files\Alwil Software\Avast4\ashServ.exe (avast! antivirus service/ALWIL Software) [AUTO] avast! Antivirus <br/>Service C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (avast! e-Mail Scanner Service/ALWIL Software) [MANUAL] avast! Mail Scanner <br/>Service C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (avast! Web Scanner/ALWIL Software) [MANUAL] avast! Web Scanner <br/>Service C:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service/Apple Inc.) [AUTO] Bonjour Service <br/>Service C:\Windows\system32\drivers\brfiltlo.sys (Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltLo <br/>Service C:\Windows\system32\drivers\brfiltup.sys (Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver/Brother Industries, Ltd.) [MANUAL] BrFiltUp <br/>Service C:\Windows\system32\drivers\brusbser.sys (Brother USB Serial Driver/Brother Industries Ltd.) [MANUAL] BrUsbSer <br/>Service C:\ComboFix\catchme.sys [MANUAL] catchme <br/>Service C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe (COMODO Internet Security/COMODO) [AUTO] cmdAgent <br/>Service C:\Windows\System32\DRIVERS\cmdguard.sys (COMODO Internet Security Sandbox Driver/COMODO) [SYSTEM] cmdGuard <br/>Service C:\Windows\System32\DRIVERS\cmdhlp.sys (COMODO Internet Security Helper Driver/COMODO) [SYSTEM] cmdHlp <br/>Service C:\Windows\system32\DRIVERS\e1e6032.sys (Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver/Intel Corporation) [MANUAL] e1express <br/>Service C:\Windows\system32\DRIVERS\E1G60I32.sys (Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver/Intel Corporation) [MANUAL] E1G60 <br/>Service C:\Windows\system32\DRIVERS\GEARAspiWDM.sys (CD DVD Filter/GEAR Software Inc.) [MANUAL] GEARAspiWDM <br/>Service C:\Windows\system32\drivers\grmnusb.sys (grmnusb.sys/GARMIN Corp.) [MANUAL] grmnusb <br/>Service C:\Windows\system32\DRIVERS\HCW713x.sys (HVR1100/Hauppauge Computer Works inc.) [MANUAL] HCW713x <br/>Service C:\Windows\system32\DRIVERS\igdkmd32.sys (Intel Graphics Kernel Mode Driver/Intel Corporation) [MANUAL] ialm <br/>Service C:\Windows\system32\DRIVERS\inspect.sys (COMODO Internet Security Firewall Driver/COMODO) [SYSTEM] Inspect <br/>Service C:\Windows\system32\drivers\RTKVHDA.sys (Realtek(r) High Definition Audio Function Driver/Realtek Semiconductor Corp.) [MANUAL] IntcAzAudAddService <br/>Service system32\DRIVERS\ipinip.sys [MANUAL] IpInIp <br/>Service C:\Program Files\iPod\bin\iPodService.exe (iPodService Module (32-bit)/Apple Inc.) [MANUAL] iPod Service <br/>Service MSDTC Bridge 3.0.0.0 <br/>Service C:\Windows\system32\DRIVERS\mssmbios.sys (System Management BIOS Driver/Microsoft Corporation) [MANUAL] mssmbios <br/>Service C:\Windows\system32\DRIVERS\NETw3v32.sys (Intel® Wireless LAN Driver/Intel® Corporation) [MANUAL] NETw3v32 <br/>Service C:\Windows\system32\drivers\ccdcmb.sys (Nokia USB Phone Bus Driver/Nokia) [MANUAL] nmwcd <br/>Service C:\Windows\system32\drivers\ccdcmbo.sys (Nokia USB Phone Bus Driver/Nokia) [MANUAL] nmwcdc <br/>Service C:\Windows\system32\drivers\nmwcdnsu.sys (Nokia USB Phone Bus Driver/Nokia) [MANUAL] nmwcdnsu <br/>Service C:\Windows\system32\drivers\nmwcdnsuc.sys (Nokia USB Phone Generic Client/Nokia) [MANUAL] nmwcdnsuc <br/>Service C:\Windows\system32\DRIVERS\nvlddmkm.sys (NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 182.50 /NVIDIA Corporation) [MANUAL] nvlddmkm <br/>Service C:\Windows\system32\nvvsvc.exe (NVIDIA Driver Helper Service, Version 182.50/NVIDIA Corporation) [AUTO] nvsvc <br/>Service system32\DRIVERS\nwlnkflt.sys [MANUAL] NwlnkFlt <br/>Service system32\DRIVERS\nwlnkfwd.sys [MANUAL] NwlnkFwd <br/>Service Outlook <br/>Service C:\Windows\system32\DRIVERS\pccsmcfd.sys (PCCS Mode Change Filter Driver/Nokia) [MANUAL] pccsmcfd <br/>Service C:\Windows\System32\Drivers\pcouffin.sys (low level access layer for CD/DVD/BD devices/VSO Software) [MANUAL] pcouffin <br/>Service C:\??\C:\Program Files\PeerGuardian2\pgfilter.sys [MANUAL] pgfilter <br/>Service C:\Windows\system32\DRIVERS\Ph3xIB32.sys (Ph3xIBxx/Philips Semiconductors GmbH) [MANUAL] Ph3xIB32 <br/>Service C:\Windows\system32\DRIVERS\netr61.sys (Ralink 802.11 Wireless Adapter Driver/Ralink Technology, Corp.) [MANUAL] rt61x86 <br/>Service C:\Windows\system32\DRIVERS\Rtlh86.sys (Realtek 8101/8168/8169 NDIS6 32-bit Driver/Realtek Corporation) [MANUAL] RTL8169 <br/>Service (Macrovision SECURITY Driver/Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [AUTO] secdrv <br/>Service C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (ServiceLayer Module/Nokia.) [MANUAL] ServiceLayer <br/>Service ServiceModelEndpoint 3.0.0.0 <br/>Service ServiceModelOperation 3.0.0.0 <br/>Service ServiceModelService 3.0.0.0 <br/>Service C:\Windows\system32\drivers\sffp_sd.sys (Small Form Factor SD Protocol Driver/Microsoft Corporation) [MANUAL] sffp_sd <br/>Service SMSvcHost 3.0.0.0 <br/>Service C:\Windows\system32\DRIVERS\usbser_lowerflt.sys (Filter Driver for Nokia USB Phone Bus Driver/Nokia) [MANUAL] upperdev <br/>Service C:\Windows\System32\Drivers\usbaapl.sys (Apple Mobile Device USB Driver/Apple, Inc.) [MANUAL] USBAAPL <br/>Service C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys (Filter Driver for Nokia USB Phone Bus Driver/Nokia) [MANUAL] UsbserFilt <br/>Service C:\Windows\system32\DRIVERS\vgapnp.sys (VGA/Super VGA Video Driver/Microsoft Corporation) [MANUAL] vga <br/>Service Windows Workflow Foundation 3.0.0.0 <br/>Service WSearchIdxPi <br/> <br/>---- EOF - GMER 1.0.15 ----
Posted 9/19/2009 10:44 PM
#77535
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
Nothing amiss showing in that Gmer view. When you ran it earlier, did you right click the file to open it, and select "Run as administrator"? This is necessary with many tool scans on Vista systems. <br/> <br/>For that port setting, in Firefox go to Tools - Options, click the Network tab, then the "Settings" button. Place a tick next to "No proxy", then click OK/OK to close that. <br/> <br/>You also have IE proxy settings I am not familiar with: <br/> <br/>R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = plimus.com;www.plimus.com;regnow.com;www.regnow.com <br/> <br/>These appear to be related to Internet sales sites, so if you again did not set these yourself, make a note about the HijackThis entry above, then close Internet Explorer and all running programs and run a scan in HijackThis. Place a check next to the above entry, then select “Fix Checked” and close HijackThis. <br/> <br/>--------------------- <br/> <br/>Let's still check things against a current online scan, and see if what added proxy settings there has anything remaining on the system. <br/> <br/> <br/>Disable your antivirus program and go here and run an online scan using ESET Online Scanner (you will need to use Internet Explorer for this scan, or download the installer to run it in a different browser). If you accept the Terms of Use, check the box and click Start. After the ActiveX Control has loaded, it will take a couple minutes for the scanner to get ready. Next, check the following boxes: <br/> <br/>Remove found threats <br/>Scan unwanted applications <br/> <br/>Click Start. This scan may take a while, so please be patient. A log may open when the scan is complete (if not, go to C:\Program Files\EsetOnlineScanner\ and open the file log.txt). Click Edit - Select All then copy/paste that log back here please. <br/> <br/> <br/>If you have any problems getting Eset started, one work-around is to have an open Internet connection, and then click here and download the esetsmartinstaller_enu.exe Eset installer. Then click that file, and follow the same previous steps to run the scan.
Posted 9/20/2009 12:59 PM
#77558
User avatar

danny-boy Advanced member

Date Joined Nov 2016
Total Posts: 71
Here is the results of the scan: <br/> <br/>C:\QooBox\Quarantine\G\WINDOWS\system32\gadeso.dll.vir a variant of Win32/Adware.Virtumonde.NBR application cleaned by deleting - quarantined <br/>C:\QooBox\Quarantine\G\WINDOWS\system32\hgGvsqOI.dll.vir a variant of Win32/Adware.Virtumonde.NBR application cleaned by deleting - quarantined <br/>C:\QooBox\Quarantine\G\WINDOWS\system32\IOqsvGgh.ini.vir Win32/Adware.Virtumonde.NEO application cleaned by deleting - quarantined <br/>C:\QooBox\Quarantine\G\WINDOWS\system32\IOqsvGgh.ini2.vir Win32/Adware.Virtumonde.NEO application cleaned by deleting - quarantined <br/>C:\QooBox\Quarantine\G\WINDOWS\system32\kyreacqa.dll.vir a variant of Win32/Adware.Virtumonde.NBR application cleaned by deleting - quarantined <br/> <br/>I deleted all above. <br/> <br/>HJT
Posted 9/20/2009 1:21 PM
#77560
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
Infection ComboFix had removed to it's Qoobox quarantine at some past time. When did ComboFix remove those - how long ago? <br/> <br/>The logs do show this, which I sense is another of Conduit's search hijacker toolbars: <br/> <br/>FF - component: c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\extensions\{20deece9-b83b-4389-b0b0-c562d8a70302}\components\FFExternalAlert.dll <br/> <br/> <br/>Open Hijackthis. <br/>Click Config - Misc Tools - Open Uninstall Manager. <br/>A list of the entries in Add/Remove programs will appear. <br/>Click on Save List... <br/>The list will be saved as 'Uninstall_list.txt' <br/>Copy & Paste the contents back here for review.
Posted 9/20/2009 1:23 PM
#77561
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
I think I had better mention - don't just locate and delete that file. Let's check first, so changes are made using the best methods.
Posted 9/20/2009 1:44 PM
#77562
User avatar

danny-boy Advanced member

Date Joined Nov 2016
Total Posts: 71
Don't know about the combofix. Maybe when I ran it for the first logs?? <br/> <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>2007 Microsoft Office Suite Service Pack 1 (SP1) <br/>32 Bit HP CIO Components Installer <br/>Adobe Flash Player 10 Plugin <br/>Adobe Flash Player 9 ActiveX <br/>Adobe Reader 8.1.5 <br/>Adobe SVG Viewer 3.0 <br/>Apple Application Support <br/>Apple Mobile Device Support <br/>Apple Software Update <br/>avast! Antivirus <br/>Bonjour <br/>BroadJump Client Foundation <br/>Canon G.726 WMP-Decoder <br/>CANON iMAGE GATEWAY Task for ZoomBrowser EX <br/>Canon Internet Library for ZoomBrowser EX <br/>Canon MovieEdit Task for ZoomBrowser EX <br/>Canon RAW Image Task for ZoomBrowser EX <br/>Canon Utilities CameraWindow <br/>Canon Utilities CameraWindow DC <br/>Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX <br/>Canon Utilities MyCamera <br/>Canon Utilities MyCamera DC <br/>Canon Utilities PhotoStitch <br/>Canon Utilities RemoteCapture Task for ZoomBrowser EX <br/>Canon Utilities ZoomBrowser EX <br/>Canon ZoomBrowser EX Memory Card Utility <br/>CCleaner (remove only) <br/>COMODO Internet Security <br/>ConvertXtoDVD 3.3.4.106e <br/>Cookies Game Burner 3.0 <br/>CubeDesktop 1.3.1 <br/>doPDF 6.3 printer <br/>ESET Online Scanner v3 <br/>Express Burn <br/>FastStone Capture 6.3 <br/>Garmin Communicator Plugin <br/>Garmin Training Center 3.4.3 <br/>Garmin USB Drivers <br/>Garmin WebUpdater <br/>Hauppauge MCE XP/Vista Software Encoder (2.0.24360) <br/>HijackThis 2.0.2 <br/>Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) <br/>Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) <br/>IconPackager <br/>IconPackager <br/>Intel(R) PRO Network Connections Drivers <br/>iTunes <br/>Java(TM) 6 Update 15 <br/>LogonStudio Vista <br/>Malwarebytes' Anti-Malware <br/>Microsoft .NET Framework 3.5 SP1 <br/>Microsoft .NET Framework 3.5 SP1 <br/>Microsoft Office Access MUI (English) 2007 <br/>Microsoft Office Access Setup Metadata MUI (English) 2007 <br/>Microsoft Office Excel MUI (English) 2007 <br/>Microsoft Office Groove MUI (English) 2007 <br/>Microsoft Office Groove Setup Metadata MUI (English) 2007 <br/>Microsoft Office InfoPath MUI (English) 2007 <br/>Microsoft Office OneNote MUI (English) 2007 <br/>Microsoft Office Outlook MUI (English) 2007 <br/>Microsoft Office PowerPoint MUI (English) 2007 <br/>Microsoft Office Proof (English) 2007 <br/>Microsoft Office Proof (French) 2007 <br/>Microsoft Office Proof (Spanish) 2007 <br/>Microsoft Office Proofing (English) 2007 <br/>Microsoft Office Publisher MUI (English) 2007 <br/>Microsoft Office Shared MUI (English) 2007 <br/>Microsoft Office Shared Setup Metadata MUI (English) 2007 <br/>Microsoft Office Ultimate 2007 <br/>Microsoft Office Ultimate 2007 <br/>Microsoft Office Word MUI (English) 2007 <br/>Microsoft Visual C++ 2005 Redistributable <br/>Mozilla Firefox (3.5.3) <br/>MP3 Player Utilities 4.18 <br/>MSVC80_x86 <br/>MSXML 4.0 SP2 (KB954430) <br/>Nokia Connectivity Cable Driver <br/>Nokia PC Suite <br/>Nokia PC Suite <br/>Nokia Software Updater <br/>NVIDIA Drivers <br/>PC Connectivity Solution <br/>PeerGuardian 2.0 <br/>QuickTime <br/>Realtek High Definition Audio Driver <br/>Recuva (remove only) <br/>RocketDock 1.3.5 <br/>Security Update for 2007 Microsoft Office System (KB969559) <br/>Security Update for 2007 Microsoft Office System (KB969679) <br/>Security Update for Microsoft Office Excel 2007 (KB969682) <br/>Security Update for Microsoft Office PowerPoint 2007 (KB957789) <br/>Security Update for Microsoft Office system 2007 (KB969613) <br/>Security Update for Microsoft Office Word 2007 (KB969604) <br/>Slice Audio File Splitter <br/>Sothink SWF to Video Converter <br/>SportTracks 2.1 <br/>SpywareBlaster 4.2 <br/>Stamp ID3 Tag Editor <br/>Switch Sound File Converter <br/>Update for 2007 Microsoft Office System (KB967642) <br/>Update for Microsoft .NET Framework 3.5 SP1 (KB963707) <br/>Update for Microsoft Office 2007 Help for Common Features (KB963673) <br/>Update for Microsoft Office Infopath 2007 Help (KB963662) <br/>Update for Microsoft Office OneNote 2007 Help (KB963670) <br/>Update for Microsoft Office Outlook 2007 (KB969907) <br/>Update for Microsoft Office Outlook 2007 Help (KB963677) <br/>Update for Microsoft Office Powerpoint 2007 Help (KB963669) <br/>Update for Microsoft Office Publisher 2007 Help (KB963667) <br/>Update for Microsoft Office Script Editor Help (KB963671) <br/>Update for Microsoft Office Word 2007 Help (KB963665) <br/>Update for Outlook 2007 Junk Email Filter (kb970012) <br/>VC 9.0 Runtime <br/>Windows Driver Package - Garmin (grmnusb) GARMIN Devices (03/08/2007 2.2.1.0) <br/>Windows Driver Package - Nokia Modem (06/01/2009 4.1) <br/>Windows Driver Package - Nokia Modem (06/01/2009 7.01.0.3) <br/>Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) <br/>Windows Media Player Firefox Plugin <br/>WinRAR archiver <br/>Xilisoft DVD Ripper Ultimate <br/>Xilisoft DVD Ripper Ultimate SE <br/>Xilisoft Video Converter Ultimate <br/>Xvid 1.1.3 final uninstall
Posted 9/20/2009 5:02 PM
#77564
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
I really don't see which one of those might have brought any Conduit search items along with it. Let's check the file. <br/> <br/>Make sure you can View Hidden Files. Also uncheck "Hide Extensions for Known File Types" <br/> <br/> <br/>Then go here, press new topic, fill in the needed details and just give a link to your post back here (see the "Instructions for uploading files" there for help, if needed). Then press the browse button and then navigate to & select the following file on your computer. <br/> <br/>c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\extensions\{20deece9-b83b-4389-b0b0-c562d8a70302}\components\FFExternalAlert.dll <br/> <br/>You DO NOT need to be a member to upload, anybody can upload the files. You will not be able to see the file once uploaded.
Posted 9/20/2009 7:23 PM
#77566
User avatar

danny-boy Advanced member

Date Joined Nov 2016
Total Posts: 71
File up on other site jintan. Hope it went properly!
Posted 9/20/2009 8:33 PM
#77567
User avatar

danny-boy Advanced member

Date Joined Nov 2016
Total Posts: 71
got the reply on other forum, but what does it mean??
Posted 9/20/2009 9:35 PM
#77568
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
I just post some info there so other folks who might be interested in the file have that available. The file code itself told little about it, but I was able to track down the source. It is installed with a flakey Torrents Search Engine Toolbar, that installs into Firefox from an .xmi installer download. In Firefox go to Tools - Add-ons, and see if you don't have that still installed there. If so, click to hilight it and then click Uninstall. Post back how that went please.
Posted 9/21/2009 1:02 PM
#77586
User avatar

danny-boy Advanced member

Date Joined Nov 2016
Total Posts: 71
Thanks Jintan, <br/>There is extentions: <br/> <br/>'pc sync 2 synchronisation' <br/>'update service' <br/>and 'ms .NET framework' <br/> <br/>The first one has all options to uninstall etc are greyed out.
Posted 9/22/2009 1:10 AM
#77596
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
Let's use a tool a little differently than intended for it. <br/> <br/>Download GooredFix.exe from here and save it to the Desktop. <br/> <br/>Double-click GooredFix.exe to run the tool. <br/> <br/>At the prompt type 1 to select Find Goored (then press Enter). <br/> <br/>When the tool is done scanning, a GooredLog will open - please post those contents here. This will also be saved to your desktop if needed. <br/> <br/>Note: Please do not run Option 2!!
Posted 9/22/2009 11:39 AM
#77632
User avatar

danny-boy Advanced member

Date Joined Nov 2016
Total Posts: 71
GooredFix by jpshortstuff (12.07.09) <br/>Log created at 12:37 on 22/09/2009 (Daniel) <br/>Firefox version 3.5.3 (en-GB) <br/> <br/>========== GooredScan ========== <br/> <br/>C:\Program Files\Mozilla Firefox\extensions\ <br/>updater@foxstart.com [14:51 31/01/2009] <br/>{972ce4c6-7e08-4474-a285-3208198ce6fd} [14:51 31/01/2009] <br/>{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} [13:42 08/07/2009] <br/>{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} [14:17 01/09/2009] <br/> <br/>[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] <br/>"{20a82645-c095-46ed-80e3-08825760534b}"="C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\" [00:35 01/02/2009] <br/>"bkmrksync@nokia.com"="C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\" [13:52 03/09/2009] <br/> <br/>-=E.O.F=- <br/> <br/>there was only the option to run software or cancel, no 1 or 2, so I just ran the scan.
Posted 9/24/2009 3:08 PM
#77705
User avatar

danny-boy Advanced member

Date Joined Nov 2016
Total Posts: 71
Thanks for your help. <br/> <br/>Can I assume that this has taken care of things? <br/>PC has been running fine for last few days.
Posted 9/25/2009 2:19 AM
#77710
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
That was really only a scan to check specific items, though none show related to the quesitonable toolbar one. Locate this file again: <br/> <br/>c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\zufqo22i.default\extensions\{20deece9-b83b-4389-b0b0-c562d8a70302}\components\FFExternalAlert.dll <br/> <br/>And just rename it to FFExternalAlert.dll.bad - okay any warnings about the change that might make. Then use Firefox for a bit, and see if you get any error messages now that the file is not available. <br/> <br/>Post back if anything occurred from that, and if nothing we will just clean up what our work added there and finish up here.
  • Unread posts or replies
  • No unread posts or replies
  • Unread Posts (Read Only Forum)
  • No Unread Posts (Read Only Forum)

Forum Information

Currently it is Tuesday, December 6, 2016, 6:58 PM (GMT +1)
There are a total of 61,160 posts in 13,449 threads.
In the last 3 days there were 0 new threads and 0 reply posts.

Who's online

This forum has 37,965 registered members. Please welcome our newest member, Old shape.
There are currently no users on-line.