Pc Running slow and your advise pls

Posted 8/8/2009 12:22 PM
#75829
User avatar

petlad Advanced member

Date Joined Nov 2016
Total Posts: 31
<PRE>Dear Touch , Jintan , <br/> <br/>Please review the logs nothing much an issue but PC hangs for 30 sec - 1 min some times and have deleted a lot of data and programs to make it less loaded. Upon malware bytes run i also received two warning for infected registry which i did not chose to delete can delete on your confirmatio <br/>============================================ <br/>Malware bytes log <br/>============================================ <br/>Malwarebytes' Anti-Malware 1.40 <br/>Database version: 2575 <br/>Windows 5.1.2600 Service Pack 2 <br/> <br/>8/8/2009 10:56:51 AM <br/>mbam-log-2009-08-08 (10-56-51).txt <br/> <br/>Scan type: Full Scan (A:\|C:\|D:\|E:\|G:\|) <br/>Objects scanned: 229084 <br/>Time elapsed: 2 hour(s), 7 minute(s), 36 second(s) <br/> <br/>Memory Processes Infected: 0 <br/>Memory Modules Infected: 0 <br/>Registry Keys Infected: 1 <br/>Registry Values Infected: 1 <br/>Registry Data Items Infected: 0 <br/>Folders Infected: 0 <br/>Files Infected: 2 <br/> <br/>Memory Processes Infected: <br/>(No malicious items detected) <br/> <br/>Memory Modules Infected: <br/>(No malicious items detected) <br/> <br/>Registry Keys Infected: <br/>HKEY_LOCAL_MACHINE\SOFTWARE\Miracle (PUP.PerfectOptimizer) -> Not selected for removal. <br/> <br/>Registry Values Infected: <br/>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\Documents and Settings\All Users\Application Data\{CFAB4006-0AE0-414D-866A-DCB2C46553CF}\offline\IFGMGCEMRAFAKNXEIMMAXFNSDRFFFF0\memman.vxd (Rogue.sysCleanerPro) -> Not selected for removal. <br/> <br/>Registry Data Items Infected: <br/>(No malicious items detected) <br/> <br/>Folders Infected: <br/>(No malicious items detected) <br/> <br/>Files Infected: <br/>C:\Documents and Settings\All Users\Application Data\{CFAB4006-0AE0-414D-866A-DCB2C46553CF}\offline\IFGMGCEMRAFAKNXEIMMAXFNSDRFFFF0\memman.vxd (Rogue.sysCleanerPro) -> Quarantined and deleted successfully. <br/>C:\Documents and Settings\Kumar\Desktop\ALL email app\Setup-SopCast-CORE-3.0.3-2008-4-30.exe (Rogue.Installer) -> Quarantined and deleted successfully. <br/> <br/> <br/> <br/> <br/> <br/> <br/> <br/> <br/> <br/> <br/>================================== <br/>ComBox fix LOg <br/>================================== <br/> <br/>ComboFix 09-08-06.01 - Kumar 08/08/2009 11:12.18.2 - NTFSx86 <br/>Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.894.415 [GMT 4:00] <br/>Running from: c:\documents and settings\Kumar\Desktop\ComboFix.exe <br/>AV: AVG Anti-Virus *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF} <br/>. <br/>((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) <br/>. <br/>c:\documents and settings\All Users\Application Data\autorun.inf <br/>C:\System <br/>c:\windows\Downloaded Program Files\popcaploader.inf <br/>E:\Autorun.inf <br/>. <br/>((((((((((((((((((((((((( Files Created from 2009-07-08 to 2009-08-08 ))))))))))))))))))))))))))))))) <br/>. <br/>2009-07-29 13:04 . 2009-08-08 07:09 -------- dc----w- c:\documents and settings\Kumar\Application Data\Skype <br/>2009-07-29 13:04 . 2009-07-29 13:04 -------- d-----w- c:\program files\Common Files\Skype <br/>2009-07-29 13:04 . 2009-07-29 13:04 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype <br/>2009-07-22 04:56 . 2009-07-22 04:56 -------- d-----w- c:\program files\Common Files\PCSuite <br/>2009-07-22 04:54 . 2008-08-26 06:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys <br/>2009-07-22 04:54 . 2009-07-22 04:54 -------- d-----w- c:\program files\PC Connectivity Solution <br/>2009-07-22 04:53 . 2009-02-09 04:37 7808 ----a-w- c:\windows\system32\drivers\usbser_lowerfltj.sys <br/>2009-07-22 04:53 . 2009-02-09 04:37 7808 ----a-w- c:\windows\system32\drivers\usbser_lowerflt.sys <br/>2009-07-22 04:53 . 2009-02-09 04:37 22016 ----a-w- c:\windows\system32\drivers\ccdcmbo.sys <br/>2009-07-22 04:53 . 2009-02-09 04:37 659968 ----a-w- c:\windows\system32\nmwcdcocls.dll <br/>2009-07-22 04:53 . 2009-02-09 04:37 17664 ----a-w- c:\windows\system32\drivers\ccdcmb.sys <br/>2009-07-22 04:53 . 2009-02-09 04:32 1112288 ----a-w- c:\windows\system32\wdfcoinstaller01007.dll <br/>2009-07-22 04:51 . 2009-07-22 04:40 33773208 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Nokia_PC_Suite_7_1_30_9_eng.exe <br/>2009-07-22 04:50 . 2009-07-22 04:50 95232 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\pcswpcsi.exe <br/>2009-07-22 04:50 . 2009-07-22 04:50 61440 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCSFEMsi.exe <br/>2009-07-22 04:50 . 2009-07-22 04:50 8192 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstCCD.exe <br/>2009-07-22 04:50 . 2009-07-22 04:50 10240 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCS.exe <br/>2009-07-21 23:22 . 2009-07-21 23:22 28592 ----a-w- c:\windows\system32\drivers\tap0901.sys <br/>2009-07-17 19:11 . 2009-08-05 09:11 -------- d-----w- c:\documents and settings\Kumar\Local Settings\Application Data\Temp <br/>2009-07-15 16:41 . 2009-07-15 16:41 3775175 ----a-w- c:\documents and settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe <br/>2009-07-14 12:56 . 2009-07-17 14:52 -------- d-----w- c:\windows\system32\CatRoot_bak <br/>2009-07-14 11:25 . 2009-03-06 14:44 283648 -c----w- c:\windows\system32\dllcache\pdh.dll <br/>2009-07-14 11:25 . 2009-02-09 10:20 399360 -c----w- c:\windows\system32\dllcache\rpcss.dll <br/>2009-07-14 11:25 . 2009-02-09 10:20 473088 -c----w- c:\windows\system32\dllcache\fastprox.dll <br/>2009-07-14 11:25 . 2009-02-06 17:14 110592 -c----w- c:\windows\system32\dllcache\services.exe <br/>2009-07-14 11:25 . 2009-02-06 16:54 35328 -c----w- c:\windows\system32\dllcache\sc.exe <br/>2009-07-14 11:25 . 2005-07-26 04:39 60416 -c----w- c:\windows\system32\dllcache\colbact.dll <br/>2009-07-14 11:25 . 2009-02-09 10:20 723456 -c----w- c:\windows\system32\dllcache\lsasrv.dll <br/>2009-07-14 11:25 . 2009-02-09 10:20 616960 -c----w- c:\windows\system32\dllcache\advapi32.dll <br/>2009-07-14 11:25 . 2009-02-09 10:20 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll <br/>2009-07-14 11:25 . 2009-02-06 16:39 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe <br/>2009-07-14 11:25 . 2009-02-09 10:20 714752 -c----w- c:\windows\system32\dllcache\ntdll.dll <br/>2009-07-14 11:25 . 2009-02-06 17:22 2136064 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe <br/>2009-07-14 11:24 . 2009-02-06 17:24 2180480 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe <br/>2009-07-14 11:24 . 2009-02-06 16:49 2057728 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe <br/>2009-07-14 11:24 . 2009-02-06 16:49 2015744 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe <br/>2009-07-14 11:14 . 2008-04-21 10:02 215552 -c----w- c:\windows\system32\dllcache\wordpad.exe <br/>2009-07-14 11:14 . 2008-06-13 13:10 272128 -c----w- c:\windows\system32\dllcache\bthport.sys <br/>2009-07-14 10:54 . 2008-05-08 12:28 202752 -c----w- c:\windows\system32\dllcache\rmcast.sys <br/>2009-07-14 10:53 . 2008-10-24 11:10 453632 -c----w- c:\windows\system32\dllcache\mrxsmb.sys <br/>2009-07-14 10:52 . 2008-05-01 14:30 331776 -c----w- c:\windows\system32\dllcache\msadce.dll <br/>2009-07-14 10:51 . 2008-04-11 18:50 683520 -c----w- c:\windows\system32\dllcache\inetcomm.dll <br/>2009-07-14 10:41 . 2008-10-03 10:15 247326 -c----w- c:\windows\system32\dllcache\strmdll.dll <br/>2009-07-14 10:41 . 2008-10-15 16:57 332800 -c----w- c:\windows\system32\dllcache\netapi32.dll <br/>2009-07-14 10:40 . 2008-09-04 16:42 1106944 -c----w- c:\windows\system32\dllcache\msxml3.dll <br/>2009-07-13 15:51 . 2009-04-15 15:11 584192 -c----w- c:\windows\system32\dllcache\rpcrt4.dll <br/>2009-07-13 15:51 . 2009-04-17 09:58 1846656 -c----w- c:\windows\system32\dllcache\win32k.sys <br/>2009-07-11 07:47 . 2008-12-11 11:57 333184 -c----w- c:\windows\system32\dllcache\srv.sys <br/>2009-07-11 07:46 . 2009-05-07 15:44 344064 -c----w- c:\windows\system32\dllcache\localspl.dll <br/>2009-07-11 07:45 . 2009-06-29 16:12 52224 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll <br/>2009-07-11 07:45 . 2009-06-29 16:12 459264 -c----w- c:\windows\system32\dllcache\msfeeds.dll <br/>2009-07-11 07:45 . 2009-06-29 11:07 13824 -c----w- c:\windows\system32\dllcache\ieudinit.exe <br/>2009-07-11 07:45 . 2009-07-19 13:32 6067200 -c----w- c:\windows\system32\dllcache\ieframe.dll <br/>2009-07-11 07:45 . 2009-06-29 16:12 268288 -c----w- c:\windows\system32\dllcache\iertutil.dll <br/>2009-07-11 07:45 . 2009-06-29 16:12 63488 -c----w- c:\windows\system32\dllcache\icardie.dll <br/>2009-07-11 07:45 . 2009-06-29 16:12 380928 -c----w- c:\windows\system32\dllcache\ieapfltr.dll <br/>2009-07-11 07:45 . 2009-06-29 08:33 2452872 -c----w- c:\windows\system32\dllcache\ieapfltr.dat <br/>2009-07-10 22:22 . 2009-07-29 04:29 11952 ----a-w- c:\windows\system32\avgrsstx.dll <br/>2009-07-10 22:22 . 2009-07-14 13:20 108552 ----a-w- c:\windows\system32\drivers\avgtdix.sys <br/>2009-07-10 22:22 . 2009-07-14 13:20 12552 ----a-w- c:\windows\system32\drivers\avgrkx86.sys <br/>2009-07-10 22:22 . 2009-07-29 04:29 335240 ----a-w- c:\windows\system32\drivers\avgldx86.sys <br/>2009-07-10 22:22 . 2009-07-29 04:29 27784 ----a-w- c:\windows\system32\drivers\avgmfx86.sys <br/>2009-07-10 22:22 . 2009-08-07 16:10 -------- d-----w- c:\windows\system32\drivers\Avg <br/>2009-07-10 19:57 . 2009-07-10 19:57 -------- d-----w- c:\program files\Common Files\DivX Shared <br/>. <br/>(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) <br/>. <br/>2009-08-08 07:00 . 2008-09-11 12:42 -------- d-----w- c:\program files\BSEMktWatch <br/>2009-08-08 06:59 . 2007-02-05 18:17 -------- d-----w- c:\program files\lg_fwupdate <br/>2009-08-07 21:21 . 2009-01-24 19:45 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware <br/>2009-08-07 20:38 . 2008-03-19 18:57 -------- d-----w- c:\documents and settings\All Users\Application Data\Google Updater <br/>2009-08-07 10:55 . 2007-05-20 19:40 -------- d-----w- c:\program files\a-squared Free <br/>2009-08-07 09:21 . 2008-12-12 20:32 -------- d-----w- c:\program files\eMule <br/>2009-08-05 09:50 . 2009-08-05 09:50 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf <br/>2009-08-05 09:50 . 2009-08-05 09:50 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_user_01_07_00.Wdf <br/>2009-08-03 09:36 . 2009-01-24 19:45 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys <br/>2009-08-03 09:36 . 2009-01-24 19:45 19096 -c--a-w- c:\windows\system32\drivers\mbam.sys <br/>2009-08-01 07:57 . 2008-01-27 10:53 -------- d-----w- c:\program files\ABN <br/>2009-07-31 19:21 . 2007-02-05 17:28 26832 ----a-w- c:\documents and settings\Kumar\Local Settings\Application Data\GDIPFONTCACHEV1.DAT <br/>2009-07-31 17:34 . 2008-12-14 17:46 -------- d-----w- c:\program files\Hotspot_Shield <br/>2009-07-29 13:10 . 2009-06-11 18:21 -------- d-----w- c:\program files\Hotspot Shield <br/>2009-07-29 13:04 . 2007-03-16 10:20 -------- d-----w- c:\program files\Skype <br/>2009-07-26 16:28 . 2007-03-10 06:05 -------- d-----w- c:\program files\PCFriendly <br/>2009-07-25 11:14 . 2007-12-18 04:11 -------- d-----w- c:\program files\Citrix <br/>2009-07-25 11:11 . 2007-12-18 04:10 70984 -c--a-w- c:\documents and settings\Kumar\g2mdlhlpx.exe <br/>2009-07-22 10:09 . 2008-01-17 16:46 -------- dc----w- c:\documents and settings\Kumar\Application Data\Nokia <br/>2009-07-22 04:56 . 2008-10-29 17:38 -------- d-----w- c:\program files\Common Files\Nokia <br/>2009-07-22 04:56 . 2008-01-17 16:44 -------- d-----w- c:\program files\Nokia <br/>2009-07-22 04:54 . 2008-01-17 16:46 -------- d-----w- c:\program files\DIFX <br/>2009-07-22 04:51 . 2008-01-17 16:18 -------- d-----w- c:\documents and settings\All Users\Application Data\Installations <br/>2009-07-18 16:24 . 2009-03-08 05:03 -------- dc----w- c:\documents and settings\Kumar\Application Data\GameRanger <br/>2009-07-10 22:22 . 2008-05-23 20:36 -------- d-----w- c:\documents and settings\All Users\Application Data\avg8 <br/>2009-07-10 19:57 . 2007-08-18 12:53 -------- d-----w- c:\program files\DivX <br/>2009-07-10 18:53 . 2007-08-14 10:11 -------- dc----w- c:\documents and settings\Kumar\Application Data\uTorrent <br/>2009-07-09 18:06 . 2007-02-07 18:07 -------- d-----w- c:\program files\DC1300 <br/>2009-07-04 13:11 . 2009-07-04 13:11 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf <br/>2009-07-04 13:11 . 2009-07-04 13:11 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf <br/>2009-07-03 15:41 . 2009-07-03 15:40 -------- d-----w- c:\program files\VTTrader 2 <br/>2009-07-02 12:22 . 2009-07-02 12:22 390664 -c--a-w- c:\documents and settings\Kumar\Application Data\Real\RealPlayer\Update\realplayer11gold.exe <br/>2009-06-30 12:17 . 2007-08-24 17:01 -------- d-----w- c:\program files\Common Files\EasyInfo <br/>2009-06-30 12:06 . 2009-06-01 18:13 33840 ----a-w- c:\windows\system32\drivers\hssdrv.sys <br/>2009-06-30 08:12 . 2007-02-05 17:18 -------- d--h--w- c:\program files\InstallShield Installation Information <br/>2009-06-29 16:12 . 2002-01-01 05:10 827392 ----a-w- c:\windows\system32\wininet.dll <br/>2009-06-29 16:12 . 2002-01-01 05:08 78336 ----a-w- c:\windows\system32\ieencode.dll <br/>2009-06-29 16:12 . 2002-01-01 05:08 17408 ----a-w- c:\windows\system32\corpol.dll <br/>2009-06-27 09:11 . 2007-02-05 17:00 22704 -c--a-w- c:\windows\system32\emptyregdb.dat <br/>2009-06-19 13:51 . 2009-06-19 13:51 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1} <br/>2009-06-19 11:25 . 2009-03-20 07:36 -------- dc----w- c:\documents and settings\Kumar\Application Data\FreeCall <br/>2009-06-16 14:55 . 2002-01-01 05:10 119808 ----a-w- c:\windows\system32\t2embed.dll <br/>2009-06-16 14:55 . 2002-01-01 05:08 82432 ----a-w- c:\windows\system32\fontsub.dll <br/>2009-06-11 19:37 . 2009-06-11 19:37 -------- d-----w- c:\program files\FreeCall.com <br/>2009-06-11 18:43 . 2007-03-06 11:02 -------- d-----w- c:\program files\Google <br/>2009-06-11 18:10 . 2007-05-23 19:05 -------- d-----w- c:\program files\Autochartist <br/>2009-06-11 18:03 . 2009-02-10 18:15 -------- d-----w- c:\program files\OperaPro2 <br/>2009-06-11 06:15 . 2009-06-11 06:15 0 ----a-w- c:\windows\system32\cd.dat <br/>2009-06-11 04:59 . 2007-03-18 14:39 -------- d-----w- c:\program files\Java <br/>2009-06-11 04:57 . 2009-06-11 04:57 152576 -c--a-w- c:\documents and settings\Kumar\Application Data\Sun\Java\jre1.6.0_14\lzma.dll <br/>2009-06-03 19:27 . 2002-01-01 05:09 1290752 ----a-w- c:\windows\system32\quartz.dll <br/>2009-05-21 07:33 . 2008-11-21 05:14 410984 -c--a-w- c:\windows\system32\deploytk.dll <br/>2009-05-20 05:26 . 2009-02-05 04:57 190837 ----a-w- C:\BSE.ZIP <br/>2009-05-20 05:26 . 2009-02-06 04:41 81975 ----a-w- C:\NSE.ZIP <br/>2009-05-20 02:06 . 2009-05-20 02:06 4 ----a-w- c:\windows\vx86036.dat <br/>2009-05-15 08:59 . 2009-05-15 08:59 255488 -c--a-w- c:\documents and settings\Kumar\Application Data\SystemRequirementsLab\SRLProxy_srl_4_0_0_4_d.dll <br/>2009-05-15 08:59 . 2009-05-15 08:59 255488 -c--a-w- c:\documents and settings\Kumar\Application Data\SystemRequirementsLab\SRLProxy_srl_4_0_0_4_c.dll <br/>2009-05-15 08:59 . 2009-05-15 08:59 255488 -c--a-w- c:\documents and settings\Kumar\Application Data\SystemRequirementsLab\SRLProxy_srl_4_0_0_4_b.dll <br/>2009-05-15 08:59 . 2009-05-15 08:59 255488 -c--a-w- c:\documents and settings\Kumar\Application Data\SystemRequirementsLab\SRLProxy_srl_4_0_0_4_a.dll <br/>2009-05-13 11:32 . 2009-05-19 12:40 607472 ----a-w- c:\documents and settings\All Users\Application Data\yahoo!\YUpdater\yupdater.exe <br/>2009-05-11 08:47 . 2009-05-11 08:47 1302600 ----a-w- c:\windows\system32\WUDFUpdate_01007.dll <br/>2008-05-29 10:11 . 2008-05-04 19:20 346 -c--a-w- c:\program files\downloads.txt <br/>2008-05-28 09:50 . 2008-05-04 19:20 346 -c--a-w- c:\program files\downloads.bak <br/>2008-02-22 21:26 . 2008-02-22 21:26 657408 -c--a-w- c:\program files\cm9k.c11 <br/>2008-01-27 13:01 . 2008-01-27 13:02 774144 -c--a-w- c:\program files\RngInterstitial.dll <br/>2007-04-18 17:00 . 2007-04-18 16:59 1906824 -c--a-w- c:\program files\DBFXChartInstall.EXE <br/>2006-09-14 15:15 . 2007-06-09 18:41 5001216 -c--a-w- c:\program files\emule.exe <br/>2004-10-01 11:00 . 2007-02-05 18:03 40960 -c--a-w- c:\program files\Uninstall_CDS.exe <br/>2002-11-21 11:29 . 2002-11-21 11:29 1819639 -c--a-w- c:\program files\cm9k.c51 <br/>2002-11-21 11:24 . 2002-11-21 11:24 1476103 -c--a-w- c:\program files\MYTH%20v1.01%20Update.rar <br/>2002-11-21 11:24 . 2002-11-21 11:24 2913000 -c--a-w- c:\program files\cm9k.c50 <br/>2002-11-21 11:23 . 2002-11-21 11:23 2913000 -c--a-w- c:\program files\cm9k.c49 <br/>2002-11-21 11:22 . 2002-11-21 11:22 2913000 -c--a-w- c:\program files\cm9k.c48 <br/>2002-11-21 11:22 . 2002-11-21 11:22 2913000 -c--a-w- c:\program files\cm9k.c47 <br/>2002-11-21 11:21 . 2002-11-21 11:21 2913000 -c--a-w- c:\program files\cm9k.c46 <br/>2002-11-21 11:20 . 2002-11-21 11:20 2913000 -c--a-w- c:\program files\cm9k.c45 <br/>2002-11-21 11:20 . 2002-11-21 11:20 2913000 -c--a-w- c:\program files\cm9k.c44 <br/>2002-11-21 11:19 . 2002-11-21 11:19 2913000 -c--a-w- c:\program files\cm9k.c43 <br/>2002-11-21 11:18 . 2002-11-21 11:18 2913000 -c--a-w- c:\program files\cm9k.c42 <br/>2002-11-21 11:18 . 2002-11-21 11:18 2913000 -c--a-w- c:\program files\cm9k.c41 <br/>2002-11-21 11:17 . 2002-11-21 11:17 2913000 -c--a-w- c:\program files\cm9k.c40 <br/>2002-11-21 11:16 . 2002-11-21 11:16 2913000 -c--a-w- c:\program files\cm9k.c39 <br/>2002-11-21 11:16 . 2002-11-21 11:16 2913000 -c--a-w- c:\program files\cm9k.c38 <br/>2002-11-21 11:15 . 2002-11-21 11:15 2913000 -c--a-w- c:\program files\cm9k.c02 <br/>2002-11-21 11:14 . 2002-11-21 11:14 2913000 -c--a-w- c:\program files\CM9K.ACE <br/>2002-11-21 11:14 . 2002-11-21 11:14 2538 -c--a-w- c:\program files\CLASS.NFO <br/>2002-11-21 11:12 . 2002-11-21 11:12 2913000 -c--a-w- c:\program files\cm9k.c37 <br/>2002-11-21 10:45 . 2002-11-21 10:45 2913000 -c--a-w- c:\program files\cm9k.c10 <br/>2002-11-21 10:44 . 2002-11-21 10:44 2913000 -c--a-w- c:\program files\cm9k.c09 <br/>2002-11-21 10:44 . 2002-11-21 10:44 2913000 -c--a-w- c:\program files\cm9k.c08 <br/>2002-11-21 10:43 . 2002-11-21 10:43 2913000 -c--a-w- c:\program files\cm9k.c07 <br/>2002-11-21 10:43 . 2002-11-21 10:43 2913000 -c--a-w- c:\program files\cm9k.c06 <br/>2002-11-21 10:42 . 2002-11-21 10:42 2913000 -c--a-w- c:\program files\cm9k.c05 <br/>2002-11-21 10:41 . 2002-11-21 10:41 2913000 -c--a-w- c:\program files\cm9k.c04 <br/>2002-11-21 10:41 . 2002-11-21 10:41 2913000 -c--a-w- c:\program files\cm9k.c03 <br/>2002-11-21 10:40 . 2002-11-21 10:40 2913000 -c--a-w- c:\program files\cm9k.c01 <br/>2002-11-21 10:39 . 2002-11-21 10:39 2913000 -c--a-w- c:\program files\cm9k.c00 <br/>2002-08-04 08:04 . 2002-08-04 08:04 1122700 -c--a-w- c:\program files\BSEXplInst.EXE <br/>2002-07-28 21:00 . 2008-07-02 18:19 134144 -c--a-w- c:\program files\TheKing.exe <br/>2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll <br/>2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll <br/>2007-03-09 08:12 . 2007-03-09 08:12 27648 -csha-w- c:\windows\system32\AVSredirect.dll <br/>2008-03-07 12:48 . 2008-03-07 12:47 73 -csha-w- c:\windows\system32\SYSDRV004.SYS <br/>. <br/>((((((((((((((((((((((((((((( SnapShot_2009-07-04_08.14.30 ))))))))))))))))))))))))))))))))))))))))) <br/>. <br/>+ 2009-08-08 06:59 . 2009-08-08 06:59 16384 c:\windows\temp\Perflib_Perfdata_50c.dat <br/>+ 2007-02-05 17:01 . 2008-10-16 10:08 34328 c:\windows\system32\wups.dll <br/>+ 2006-09-28 14:56 . 2008-01-18 20:37 55296 c:\windows\system32\WudfSvc.dll <br/>- 2006-09-28 14:56 . 2006-09-15 19:30 55296 c:\windows\system32\WudfSvc.dll <br/>+ 2006-09-28 16:13 . 2008-01-18 20:37 87552 c:\windows\system32\WUDFCoinstaller.dll <br/>+ 2007-02-05 17:01 . 2008-10-16 10:09 51224 c:\windows\system32\wuauclt.exe <br/>- 2002-01-01 05:10 . 2002-01-01 05:10 50176 c:\windows\system32\utilman.exe <br/>+ 2002-01-01 05:10 . 2006-10-04 08:48 50176 c:\windows\system32\utilman.exe <br/>+ 2002-01-01 05:10 . 2006-10-04 13:33 35840 c:\windows\system32\umandlg.dll <br/>- 2002-01-01 05:10 . 2002-01-01 05:10 35840 c:\windows\system32\umandlg.dll <br/>+ 2002-01-01 05:10 . 2009-02-03 20:08 55808 c:\windows\system32\secur32.dll <br/>- 2002-01-01 05:10 . 2002-01-01 05:10 55808 c:\windows\system32\secur32.dll <br/>+ 2002-01-01 05:10 . 2009-02-06 16:54 35328 c:\windows\system32\sc.exe <br/>- 2002-01-01 05:09 . 2007-08-13 14:36 44544 c:\windows\system32\pngfilt.dll <br/>+ 2002-01-01 05:09 . 2009-06-29 16:12 44544 c:\windows\system32\pngfilt.dll <br/>- 2001-08-23 11:00 . 2009-07-03 16:18 77324 c:\windows\system32\perfc009.dat <br/>+ 2001-08-23 11:00 . 2009-08-05 09:50 77324 c:\windows\system32\perfc009.dat <br/>- 2008-01-17 16:44 . 2009-02-09 03:37 91136 c:\windows\system32\nmwcdcls.dll <br/>+ 2008-01-17 16:44 . 2009-02-09 04:37 91136 c:\windows\system32\nmwcdcls.dll <br/>- 2002-01-01 05:09 . 2002-01-01 05:09 53760 c:\windows\system32\narrator.exe <br/>+ 2002-01-01 05:09 . 2006-10-04 08:48 53760 c:\windows\system32\narrator.exe <br/>+ 2007-02-05 16:59 . 2008-06-12 14:16 91648 c:\windows\system32\mtxoci.dll <br/>+ 2002-01-01 05:09 . 2008-06-12 14:16 66560 c:\windows\system32\mtxclu.dll <br/>- 2002-01-01 05:09 . 2002-01-01 05:09 66560 c:\windows\system32\mtxclu.dll <br/>+ 2002-01-01 05:09 . 2005-05-04 10:45 15360 c:\windows\system32\msisip.dll <br/>+ 2002-01-01 05:09 . 2005-05-04 10:45 78848 c:\windows\system32\msiexec.exe <br/>+ 2007-08-13 14:54 . 2009-06-29 16:12 52224 c:\windows\system32\msfeedsbs.dll <br/>- 2007-08-13 14:54 . 2009-04-29 04:55 52224 c:\windows\system32\msfeedsbs.dll <br/>+ 2007-02-05 16:59 . 2008-06-12 14:16 58880 c:\windows\system32\msdtclog.dll <br/>- 2007-02-05 16:59 . 2002-01-01 05:09 58880 c:\windows\system32\msdtclog.dll <br/>+ 2002-01-01 05:09 . 2008-06-24 16:23 74240 c:\windows\system32\mscms.dll <br/>+ 2002-01-01 05:09 . 2006-10-04 08:48 72704 c:\windows\system32\magnify.exe <br/>- 2002-01-01 05:09 . 2002-01-01 05:09 72704 c:\windows\system32\magnify.exe <br/>+ 2009-06-17 15:04 . 2009-07-08 13:17 84661 c:\windows\system32\Macromed\Flash\uninstall_plugin.exe <br/>- 2009-06-17 15:04 . 2009-06-17 15:04 84661 c:\windows\system32\Macromed\Flash\uninstall_plugin.exe <br/>+ 2002-01-01 05:09 . 2009-06-29 16:12 27648 c:\windows\system32\jsproxy.dll <br/>+ 2007-08-13 14:39 . 2009-06-29 11:07 13824 c:\windows\system32\ieudinit.exe <br/>+ 2002-01-01 05:08 . 2009-06-29 16:12 44544 c:\windows\system32\iernonce.dll <br/>+ 2002-01-01 05:08 . 2009-06-29 11:07 70656 c:\windows\system32\ie4uinit.exe <br/>- 2007-08-13 14:36 . 2009-04-29 04:55 63488 c:\windows\system32\icardie.dll <br/>+ 2007-08-13 14:36 . 2009-06-29 16:12 63488 c:\windows\system32\icardie.dll <br/>- 2009-04-22 01:47 . 2008-08-26 06:26 18816 c:\windows\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.sys <br/>+ 2009-07-22 04:54 . 2008-08-26 06:26 18816 c:\windows\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.sys <br/>+ 2009-07-22 04:53 . 2009-02-09 04:37 22016 c:\windows\system32\DRVSTORE\ccdcmbo_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\ccdcmbo.sys <br/>+ 2009-07-22 04:53 . 2009-02-09 04:37 91136 c:\windows\system32\DRVSTORE\ccdcmb_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\nmwcdcls.dll <br/>+ 2009-07-22 04:53 . 2009-02-09 04:37 17664 c:\windows\system32\DRVSTORE\ccdcmb_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\ccdcmb.sys <br/>+ 2006-09-28 15:00 . 2008-01-18 18:53 83328 c:\windows\system32\drivers\WudfRd.sys <br/>+ 2006-09-28 14:55 . 2008-01-18 18:52 77696 c:\windows\system32\drivers\WudfPf.sys <br/>+ 2009-05-01 21:02 . 2009-05-01 21:02 90112 c:\windows\system32\dpl100.dll <br/>+ 2007-02-05 17:01 . 2008-10-16 10:08 34328 c:\windows\system32\dllcache\wups.dll <br/>+ 2007-02-05 17:01 . 2008-10-16 10:09 51224 c:\windows\system32\dllcache\wuauclt.exe <br/>+ 2006-10-04 08:48 . 2006-10-04 08:48 50176 c:\windows\system32\dllcache\utilman.exe <br/>+ 2006-10-04 13:33 . 2006-10-04 13:33 35840 c:\windows\system32\dllcache\umandlg.dll <br/>+ 2009-02-03 20:08 . 2009-02-03 20:08 55808 c:\windows\system32\dllcache\secur32.dll <br/>+ 2007-08-13 14:36 . 2009-06-29 16:12 44544 c:\windows\system32\dllcache\pngfilt.dll <br/>- 2007-08-13 14:36 . 2007-08-13 14:36 44544 c:\windows\system32\dllcache\pngfilt.dll <br/>+ 2006-10-04 08:48 . 2006-10-04 08:48 53760 c:\windows\system32\dllcache\narrator.exe <br/>+ 2008-06-12 14:16 . 2008-06-12 14:16 91648 c:\windows\system32\dllcache\mtxoci.dll <br/>+ 2008-06-12 14:16 . 2008-06-12 14:16 66560 c:\windows\system32\dllcache\mtxclu.dll <br/>+ 2008-06-12 14:16 . 2008-06-12 14:16 58880 c:\windows\system32\dllcache\msdtclog.dll <br/>+ 2008-06-24 16:23 . 2008-06-24 16:23 74240 c:\windows\system32\dllcache\mscms.dll <br/>+ 2006-10-04 08:48 . 2006-10-04 08:48 72704 c:\windows\system32\dllcache\magnify.exe <br/>+ 2007-08-13 14:54 . 2009-06-29 16:12 27648 c:\windows\system32\dllcache\jsproxy.dll <br/>+ 2007-08-13 14:39 . 2009-06-29 16:12 44544 c:\windows\system32\dllcache\iernonce.dll <br/>+ 2007-08-13 14:45 . 2009-06-29 16:12 78336 c:\windows\system32\dllcache\ieencode.dll <br/>- 2007-08-13 14:45 . 2007-08-13 14:45 78336 c:\windows\system32\dllcache\ieencode.dll <br/>+ 2007-08-13 14:39 . 2009-06-29 11:07 70656 c:\windows\system32\dllcache\ie4uinit.exe <br/>+ 2009-06-16 14:55 . 2009-06-16 14:55 82432 c:\windows\system32\dllcache\fontsub.dll <br/>+ 2007-08-13 14:42 . 2009-06-29 16:12 17408 c:\windows\system32\dllcache\corpol.dll <br/>- 2007-08-13 14:42 . 2007-08-13 14:42 17408 c:\windows\system32\dllcache\corpol.dll <br/>+ 2002-01-01 05:08 . 2008-10-16 10:09 92696 c:\windows\system32\dllcache\cdm.dll <br/>+ 2007-02-05 16:59 . 2005-07-26 04:39 60416 c:\windows\system32\colbact.dll <br/>+ 2002-01-01 05:08 . 2008-10-16 10:09 92696 c:\windows\system32\cdm.dll <br/>- 2009-06-10 05:10 . 2007-11-30 12:39 26488 c:\windows\SoftwareDistribution\Download\0f1f7f5eb2a06ca8f9c064b451608f13\update\spcustom.dll <br/>- 2009-06-10 05:10 . 2007-11-30 12:39 17272 c:\windows\SoftwareDistribution\Download\0f1f7f5eb2a06ca8f9c064b451608f13\spmsg.dll <br/>+ 2008-04-21 04:03 . 2008-04-21 04:03 86528 c:\windows\Installer\a47aa0a.msi <br/>+ 2008-07-13 09:35 . 2008-07-13 09:35 26112 c:\windows\Installer\9e0618.msi <br/>+ 2009-07-01 13:06 . 2009-07-01 13:06 22528 c:\windows\Installer\78e76f.msi <br/>+ 2009-03-16 21:20 . 2009-03-16 21:20 23040 c:\windows\Installer\3ed17df.msi <br/>+ 2009-03-16 21:17 . 2009-03-16 21:17 25088 c:\windows\Installer\3ed178b.msi <br/>+ 2009-03-16 21:17 . 2009-03-16 21:17 28160 c:\windows\Installer\3ed1781.msi <br/>+ 2009-03-16 21:16 . 2009-03-16 21:16 83456 c:\windows\Installer\3ed1762.msi <br/>+ 2009-03-16 21:16 . 2009-03-16 21:16 59904 c:\windows\Installer\3ed175c.msi <br/>+ 2007-11-08 01:28 . 2007-11-08 01:28 22016 c:\windows\Installer\3669ef1.msp <br/>+ 2007-11-08 01:32 . 2007-11-08 01:32 74240 c:\windows\Installer\3669eed.msp <br/>+ 2007-11-08 01:21 . 2007-11-08 01:21 24576 c:\windows\Installer\3669eea.msp <br/>+ 2008-08-03 16:17 . 2008-08-03 16:17 55296 c:\windows\Installer\1fd214c.msi <br/>- 2007-02-05 16:23 . 2008-09-19 10:25 90112 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\xlicons.exe <br/>+ 2007-02-05 16:23 . 2009-07-31 10:59 90112 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\xlicons.exe <br/>- 2007-02-05 16:23 . 2008-09-19 10:25 45056 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\wordicon.exe <br/>+ 2007-02-05 16:23 . 2009-07-31 10:59 45056 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\wordicon.exe <br/>- 2007-02-05 16:23 . 2008-09-19 10:25 22528 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\unbndico.exe <br/>+ 2007-02-05 16:23 . 2009-07-31 10:59 22528 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\unbndico.exe <br/>- 2007-02-05 16:23 . 2008-09-19 10:25 30720 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\pptico.exe <br/>+ 2007-02-05 16:23 . 2009-07-31 10:59 30720 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\pptico.exe <br/>- 2007-02-05 16:23 . 2008-09-19 10:25 16384 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\PEicons.exe <br/>+ 2007-02-05 16:23 . 2009-07-31 10:59 16384 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\PEicons.exe <br/>+ 2007-02-05 16:23 . 2009-07-31 10:59 34304 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\misc.exe <br/>- 2007-02-05 16:23 . 2008-09-19 10:25 34304 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\misc.exe <br/>- 2007-02-05 16:23 . 2008-09-19 10:25 81920 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\fpicon.exe <br/>+ 2007-02-05 16:23 . 2009-07-31 10:59 81920 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\fpicon.exe <br/>+ 2009-07-22 04:57 . 2009-07-22 04:57 15086 c:\windows\Installer\{3D39E775-DDDA-4327-B747-0BDC5F191331}\ARPPRODUCTICON.exe <br/>+ 2009-07-22 04:54 . 2009-07-22 04:54 10134 c:\windows\Installer\{0C973594-7DDF-4BD0-84ED-3517F7622037}\ARPPRODUCTICON.exe <br/>+ 2009-07-29 19:59 . 2009-04-29 04:56 44544 c:\windows\ie7updates\KB972260-IE7\pngfilt.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 52224 c:\windows\ie7updates\KB972260-IE7\msfeedsbs.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 27648 c:\windows\ie7updates\KB972260-IE7\jsproxy.dll <br/>+ 2009-07-29 19:59 . 2009-04-28 09:05 13824 c:\windows\ie7updates\KB972260-IE7\ieudinit.exe <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 44544 c:\windows\ie7updates\KB972260-IE7\iernonce.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 78336 c:\windows\ie7updates\KB972260-IE7\ieencode.dll <br/>+ 2009-07-29 19:59 . 2009-04-28 09:05 70656 c:\windows\ie7updates\KB972260-IE7\ie4uinit.exe <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 63488 c:\windows\ie7updates\KB972260-IE7\icardie.dll <br/>+ 2009-07-29 19:59 . 2007-08-13 14:42 17408 c:\windows\ie7updates\KB972260-IE7\corpol.dll <br/>+ 2009-07-14 19:03 . 2008-07-09 07:38 17272 c:\windows\ie7updates\KB969897-IE7\spmsg.dll <br/>+ 2009-07-14 19:03 . 2008-07-09 07:38 26488 c:\windows\ie7updates\KB969897-IE7\spcustom.dll <br/>- 2009-06-18 20:22 . 2009-02-20 18:09 44544 c:\windows\ie7updates\KB969897-IE7\pngfilt.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:36 44544 c:\windows\ie7updates\KB969897-IE7\pngfilt.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:54 27136 c:\windows\ie7updates\KB969897-IE7\jsproxy.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:39 13312 c:\windows\ie7updates\KB969897-IE7\ieudinit.exe <br/>+ 2009-06-18 20:22 . 2007-08-13 14:39 43008 c:\windows\ie7updates\KB969897-IE7\iernonce.dll <br/>- 2009-06-18 20:22 . 2009-02-20 18:09 78336 c:\windows\ie7updates\KB969897-IE7\ieencode.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:45 78336 c:\windows\ie7updates\KB969897-IE7\ieencode.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:39 54784 c:\windows\ie7updates\KB969897-IE7\ie4uinit.exe <br/>- 2007-03-06 20:27 . 2004-08-03 22:56 44032 c:\windows\$MSI31Uninstall_KB893803v2$\msisip.dll <br/>+ 2007-03-06 20:27 . 2002-01-01 05:09 44032 c:\windows\$MSI31Uninstall_KB893803v2$\msisip.dll <br/>- 2007-03-06 20:27 . 2004-08-03 22:56 77312 c:\windows\$MSI31Uninstall_KB893803v2$\msiexec.exe <br/>+ 2007-03-06 20:27 . 2002-01-01 05:09 77312 c:\windows\$MSI31Uninstall_KB893803v2$\msiexec.exe <br/>+ 2009-07-22 04:53 . 2009-03-19 10:48 8320 c:\windows\system32\DRVSTORE\nmwcdnsuc_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\nmwcdnsuc.sys <br/>+ 2009-07-22 04:53 . 2009-02-09 04:37 7808 c:\windows\system32\DRVSTORE\ccdcmbm_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\usbser_lowerflt.sys <br/>+ 2009-07-22 04:53 . 2009-02-09 04:37 7808 c:\windows\system32\DRVSTORE\ccdcmbcj_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\usbser_lowerfltj.sys <br/>- 2007-02-05 16:23 . 2008-09-19 10:25 3584 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\opwicon.exe <br/>+ 2007-02-05 16:23 . 2009-07-31 10:59 3584 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\opwicon.exe <br/>+ 2007-02-05 16:23 . 2009-07-31 10:59 8192 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\mspicons.exe <br/>- 2007-02-05 16:23 . 2008-09-19 10:25 8192 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\mspicons.exe <br/>- 2007-02-05 16:23 . 2008-09-19 10:25 2560 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\cagicon.exe <br/>+ 2007-02-05 16:23 . 2009-07-31 10:59 2560 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\cagicon.exe <br/>+ 2009-07-22 04:53 . 2009-07-22 04:53 3262 c:\windows\Installer\{52D02A2B-03D2-4E34-A358-DC5D951FD296}\ARPPRODUCTICON.exe <br/>+ 2007-02-05 17:01 . 2008-10-16 10:13 202776 c:\windows\system32\wuweb.dll <br/>+ 2006-09-28 14:56 . 2008-01-18 20:37 305152 c:\windows\system32\WUDFx.dll <br/>+ 2006-09-28 14:56 . 2008-01-18 18:52 163840 c:\windows\system32\WudfPlatform.dll <br/>- 2006-09-28 14:56 . 2006-09-15 18:29 163840 c:\windows\system32\WudfPlatform.dll <br/>+ 2006-09-28 14:56 . 2008-01-18 20:33 142336 c:\windows\system32\WudfHost.exe <br/>+ 2007-02-05 17:01 . 2008-10-16 10:12 323608 c:\windows\system32\wucltui.dll <br/>+ 2007-02-05 17:01 . 2008-10-16 10:12 561688 c:\windows\system32\wuapi.dll <br/>+ 2002-01-01 05:10 . 2008-12-16 12:47 351232 c:\windows\system32\winhttp.dll <br/>- 2002-01-01 05:10 . 2002-01-01 05:10 351232 c:\windows\system32\winhttp.dll <br/>+ 2002-01-01 05:10 . 2009-06-29 16:12 233472 c:\windows\system32\webcheck.dll <br/>+ 2007-02-05 16:58 . 2009-02-06 16:39 227840 c:\windows\system32\wbem\wmiprvse.exe <br/>+ 2007-02-05 16:58 . 2009-02-09 10:20 453120 c:\windows\system32\wbem\wmiprvsd.dll <br/>+ 2007-02-05 16:58 . 2009-02-09 10:20 473088 c:\windows\system32\wbem\fastprox.dll <br/>- 2002-01-01 05:10 . 2007-08-13 14:44 105984 c:\windows\system32\url.dll <br/>+ 2002-01-01 05:10 . 2009-06-29 16:12 105984 c:\windows\system32\url.dll <br/>+ 2002-01-01 05:10 . 2008-10-03 10:15 247326 c:\windows\system32\strmdll.dll <br/>+ 2002-01-01 05:10 . 2009-02-06 17:14 110592 c:\windows\system32\services.exe <br/>- 2002-01-01 05:10 . 2002-01-01 05:10 144896 c:\windows\system32\schannel.dll <br/>+ 2002-01-01 05:10 . 2008-12-05 07:12 144896 c:\windows\system32\schannel.dll <br/>+ 2002-01-01 05:10 . 2009-02-09 10:20 399360 c:\windows\system32\rpcss.dll <br/>+ 2002-01-01 05:10 . 2009-04-15 15:11 584192 c:\windows\system32\rpcrt4.dll <br/>- 2001-08-23 11:00 . 2009-07-03 16:18 461866 c:\windows\system32\perfh009.dat <br/>+ 2001-08-23 11:00 . 2009-08-05 09:50 461866 c:\windows\system32\perfh009.dat <br/>+ 2002-01-01 05:09 . 2009-03-06 14:44 283648 c:\windows\system32\pdh.dll <br/>- 2002-01-01 05:09 . 2002-01-01 05:09 283648 c:\windows\system32\pdh.dll <br/>+ 1998-12-08 14:53 . 1998-12-08 14:53 212480 c:\windows\system32\PCDLIB32.DLL <br/>- 1998-12-08 14:53 . 1995-07-31 13:44 212480 c:\windows\system32\PCDLIB32.DLL <br/>- 2002-01-01 05:09 . 2002-01-01 05:09 215552 c:\windows\system32\osk.exe <br/>+ 2002-01-01 05:09 . 2006-10-04 08:48 215552 c:\windows\system32\osk.exe <br/>+ 2002-01-01 05:09 . 2009-06-29 16:12 102912 c:\windows\system32\occache.dll <br/>+ 2002-01-01 05:09 . 2009-02-09 10:20 714752 c:\windows\system32\ntdll.dll <br/>+ 2002-01-01 05:09 . 2008-10-15 16:57 332800 c:\windows\system32\netapi32.dll <br/>- 2002-01-01 05:09 . 2002-01-01 05:09 245248 c:\windows\system32\mswsock.dll <br/>+ 2002-01-01 05:09 . 2008-06-20 17:41 245248 c:\windows\system32\mswsock.dll <br/>+ 2002-01-01 05:09 . 2009-06-29 16:12 671232 c:\windows\system32\mstime.dll <br/>+ 2002-01-01 05:09 . 2009-06-29 16:12 193024 c:\windows\system32\msrating.dll <br/>- 2002-01-01 05:09 . 2002-01-01 05:09 884736 c:\windows\system32\msimsg.dll <br/>+ 2002-01-01 05:09 . 2005-05-04 10:45 884736 c:\windows\system32\msimsg.dll <br/>+ 2002-01-01 05:09 . 2005-05-04 10:45 271360 c:\windows\system32\msihnd.dll <br/>+ 2002-01-01 05:09 . 2009-06-29 16:12 477696 c:\windows\system32\mshtmled.dll <br/>+ 2007-08-13 14:54 . 2009-06-29 16:12 459264 c:\windows\system32\msfeeds.dll <br/>- 2007-08-13 14:54 . 2009-04-29 04:55 459264 c:\windows\system32\msfeeds.dll <br/>+ 2007-02-05 16:59 . 2008-06-12 14:16 161792 c:\windows\system32\msdtcuiu.dll <br/>+ 2007-02-05 16:59 . 2008-06-12 14:16 956928 c:\windows\system32\msdtctm.dll <br/>+ 2007-02-05 16:59 . 2008-06-12 14:16 428032 c:\windows\system32\msdtcprx.dll <br/>+ 2000-06-02 03:48 . 2000-06-02 03:48 427520 c:\windows\system32\MPG4C32.DLL <br/>+ 2002-01-01 05:09 . 2009-02-09 10:20 723456 c:\windows\system32\lsasrv.dll <br/>- 2002-01-01 05:09 . 2002-01-01 05:09 103936 c:\windows\system32\logagent.exe <br/>+ 2002-01-01 05:09 . 2008-06-09 21:31 103936 c:\windows\system32\logagent.exe <br/>+ 2002-01-01 05:09 . 2009-05-07 15:44 344064 c:\windows\system32\localspl.dll <br/>+ 2002-01-01 05:09 . 2009-03-21 14:18 986112 c:\windows\system32\kernel32.dll <br/>+ 2007-02-05 17:01 . 2008-04-11 18:50 683520 c:\windows\system32\inetcomm.dll <br/>- 2007-08-13 14:34 . 2009-04-29 04:55 268288 c:\windows\system32\iertutil.dll <br/>+ 2007-08-13 14:34 . 2009-06-29 16:12 268288 c:\windows\system32\iertutil.dll <br/>+ 2002-01-01 05:08 . 2009-06-29 16:12 385024 c:\windows\system32\iedkcs32.dll <br/>+ 2007-07-11 08:27 . 2009-06-29 16:12 380928 c:\windows\system32\ieapfltr.dll <br/>- 2002-01-01 05:08 . 2007-08-13 13:56 161792 c:\windows\system32\ieakui.dll <br/>+ 2002-01-01 05:08 . 2009-06-29 08:33 161792 c:\windows\system32\ieakui.dll <br/>+ 2002-01-01 05:08 . 2009-06-29 16:12 230400 c:\windows\system32\ieaksie.dll <br/>+ 2002-01-01 05:08 . 2009-06-29 16:12 153088 c:\windows\system32\ieakeng.dll <br/>+ 2002-01-01 05:08 . 2008-10-23 13:01 283648 c:\windows\system32\gdi32.dll <br/>- 2007-02-05 17:46 . 2009-06-27 09:20 142832 c:\windows\system32\FNTCACHE.DAT <br/>+ 2007-02-05 17:46 . 2009-07-31 19:19 142832 c:\windows\system32\FNTCACHE.DAT <br/>+ 2002-01-01 05:08 . 2009-06-29 16:12 133120 c:\windows\system32\extmgr.dll <br/>+ 2002-01-01 05:08 . 2008-07-07 20:32 253952 c:\windows\system32\es.dll <br/>+ 2002-01-01 05:08 . 2009-06-29 16:12 214528 c:\windows\system32\dxtrans.dll <br/>- 2002-01-01 05:08 . 2007-08-13 14:35 214528 c:\windows\system32\dxtrans.dll <br/>+ 2002-01-01 05:08 . 2009-06-29 16:12 347136 c:\windows\system32\dxtmsft.dll <br/>+ 2009-07-22 04:54 . 2009-05-11 09:30 547840 c:\windows\system32\DRVSTORE\pccswpddri_1C34ED6F4888FC93BE68C7A31A24834F522D3CBF\PCCSWpdDriver.dll <br/>+ 2009-07-22 04:53 . 2009-03-19 10:48 136704 c:\windows\system32\DRVSTORE\nmwcdnsu_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\nmwcdnsu.sys <br/>+ 2009-07-22 04:53 . 2009-02-09 04:37 659968 c:\windows\system32\DRVSTORE\ccdcmb_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\nmwcdcocls.dll <br/>+ 2009-05-11 09:30 . 2009-05-11 09:30 547840 c:\windows\system32\drivers\UMDF\PCCSWpdDriver.dll <br/>+ 2002-01-01 05:10 . 2008-06-20 09:52 225920 c:\windows\system32\drivers\tcpip6.sys <br/>+ 2002-01-01 05:10 . 2008-06-20 10:45 360320 c:\windows\system32\drivers\tcpip.sys <br/>+ 2002-01-01 05:10 . 2008-12-11 11:57 333184 c:\windows\system32\drivers\srv.sys <br/>+ 2002-01-01 05:10 . 2008-05-08 12:28 202752 c:\windows\system32\drivers\rmcast.sys <br/>+ 2002-01-01 05:09 . 2008-10-24 11:10 453632 c:\windows\system32\drivers\mrxsmb.sys <br/>+ 2002-01-01 05:08 . 2008-06-13 13:10 272128 c:\windows\system32\drivers\bthport.sys <br/>+ 2002-01-01 05:08 . 2008-08-14 09:51 138368 c:\windows\system32\drivers\afd.sys <br/>+ 2002-01-01 05:08 . 2008-06-20 17:41 148992 c:\windows\system32\dnsapi.dll <br/>+ 2007-02-05 17:01 . 2008-10-16 10:13 202776 c:\windows\system32\dllcache\wuweb.dll <br/>+ 2007-02-05 17:01 . 2008-10-16 10:12 323608 c:\windows\system32\dllcache\wucltui.dll <br/>+ 2007-02-05 17:01 . 2008-10-16 10:12 561688 c:\windows\system32\dllcache\wuapi.dll <br/>+ 2007-08-13 14:54 . 2009-06-29 16:12 827392 c:\windows\system32\dllcache\wininet.dll <br/>+ 2008-12-16 12:47 . 2008-12-16 12:47 351232 c:\windows\system32\dllcache\winhttp.dll <br/>+ 2007-08-13 14:54 . 2009-06-29 16:12 233472 c:\windows\system32\dllcache\webcheck.dll <br/>+ 2007-08-13 14:54 . 2008-05-27 17:23 765952 c:\windows\system32\dllcache\vgx.dll <br/>- 2007-08-13 14:54 . 2007-08-13 14:54 765952 c:\windows\system32\dllcache\VGX.dll <br/>- 2007-08-13 14:44 . 2007-08-13 14:44 105984 c:\windows\system32\dllcache\url.dll <br/>+ 2007-08-13 14:44 . 2009-06-29 16:12 105984 c:\windows\system32\dllcache\url.dll <br/>+ 2008-06-20 09:52 . 2008-06-20 09:52 225920 c:\windows\system32\dllcache\tcpip6.sys <br/>+ 2008-06-20 10:45 . 2008-06-20 10:45 360320 c:\windows\system32\dllcache\tcpip.sys <br/>+ 2009-06-16 14:55 . 2009-06-16 14:55 119808 c:\windows\system32\dllcache\t2embed.dll <br/>+ 2008-12-05 07:12 . 2008-12-05 07:12 144896 c:\windows\system32\dllcache\schannel.dll <br/>+ 2006-10-04 08:48 . 2006-10-04 08:48 215552 c:\windows\system32\dllcache\osk.exe <br/>+ 2007-08-13 14:44 . 2009-06-29 16:12 102912 c:\windows\system32\dllcache\occache.dll <br/>+ 2008-06-20 17:41 . 2008-06-20 17:41 245248 c:\windows\system32\dllcache\mswsock.dll <br/>+ 2007-08-13 14:54 . 2009-06-29 16:12 671232 c:\windows\system32\dllcache\mstime.dll <br/>+ 2007-08-13 14:44 . 2009-06-29 16:12 193024 c:\windows\system32\dllcache\msrating.dll <br/>+ 2007-08-13 14:54 . 2009-06-29 16:12 477696 c:\windows\system32\dllcache\mshtmled.dll <br/>+ 2008-06-12 14:16 . 2008-06-12 14:16 161792 c:\windows\system32\dllcache\msdtcuiu.dll <br/>+ 2008-06-12 14:16 . 2008-06-12 14:16 956928 c:\windows\system32\dllcache\msdtctm.dll <br/>+ 2008-06-12 14:16 . 2008-06-12 14:16 428032 c:\windows\system32\dllcache\msdtcprx.dll <br/>+ 2008-06-09 21:31 . 2008-06-09 21:31 103936 c:\windows\system32\dllcache\logagent.exe <br/>+ 2009-03-21 14:18 . 2009-03-21 14:18 986112 c:\windows\system32\dllcache\kernel32.dll <br/>+ 2007-08-13 14:43 . 2009-06-29 08:35 634632 c:\windows\system32\dllcache\iexplore.exe <br/>+ 2007-08-13 14:39 . 2009-06-29 16:12 385024 c:\windows\system32\dllcache\iedkcs32.dll <br/>- 2007-08-13 13:56 . 2007-08-13 13:56 161792 c:\windows\system32\dllcache\ieakui.dll <br/>+ 2007-08-13 13:56 . 2009-06-29 08:33 161792 c:\windows\system32\dllcache\ieakui.dll <br/>+ 2007-08-13 14:39 . 2009-06-29 16:12 230400 c:\windows\system32\dllcache\ieaksie.dll <br/>+ 2007-08-13 14:39 . 2009-06-29 16:12 153088 c:\windows\system32\dllcache\ieakeng.dll <br/>+ 2008-10-23 13:01 . 2008-10-23 13:01 283648 c:\windows\system32\dllcache\gdi32.dll <br/>+ 2007-08-13 14:54 . 2009-06-29 16:12 133120 c:\windows\system32\dllcache\extmgr.dll <br/>+ 2008-07-07 20:32 . 2008-07-07 20:32 253952 c:\windows\system32\dllcache\es.dll <br/>+ 2007-08-13 14:35 . 2009-06-29 16:12 214528 c:\windows\system32\dllcache\dxtrans.dll <br/>- 2007-08-13 14:35 . 2007-08-13 14:35 214528 c:\windows\system32\dllcache\dxtrans.dll <br/>+ 2007-08-13 14:35 . 2009-06-29 16:12 347136 c:\windows\system32\dllcache\dxtmsft.dll <br/>+ 2008-06-20 17:41 . 2008-06-20 17:41 148992 c:\windows\system32\dllcache\dnsapi.dll <br/>+ 2008-06-20 10:44 . 2008-08-14 09:51 138368 c:\windows\system32\dllcache\afd.sys <br/>+ 2007-08-13 14:39 . 2009-06-29 16:12 124928 c:\windows\system32\dllcache\advpack.dll <br/>+ 2006-08-16 11:58 . 2006-08-16 11:58 100352 c:\windows\system32\dllcache\6to4svc.dll <br/>+ 2009-05-01 21:02 . 2009-05-01 21:02 811008 c:\windows\system32\divx_xx16.dll <br/>- 2008-11-06 16:33 . 2008-11-06 16:33 802816 c:\windows\system32\divx_xx11.dll <br/>+ 2009-05-01 21:02 . 2009-05-01 21:02 802816 c:\windows\system32\divx_xx11.dll <br/>+ 2009-05-01 21:02 . 2009-05-01 21:02 823296 c:\windows\system32\divx_xx0c.dll <br/>- 2008-11-06 16:33 . 2008-11-06 16:33 823296 c:\windows\system32\divx_xx0c.dll <br/>- 2008-11-06 16:33 . 2008-11-06 16:33 815104 c:\windows\system32\divx_xx0a.dll <br/>+ 2009-05-01 21:02 . 2009-05-01 21:02 815104 c:\windows\system32\divx_xx0a.dll <br/>- 2008-11-06 16:33 . 2008-11-06 16:33 823296 c:\windows\system32\divx_xx07.dll <br/>+ 2009-05-01 21:02 . 2009-05-01 21:02 823296 c:\windows\system32\divx_xx07.dll <br/>+ 2009-05-01 21:02 . 2009-05-01 21:02 685056 c:\windows\system32\DivX.dll <br/>+ 2002-01-01 05:08 . 2009-06-29 16:12 124928 c:\windows\system32\advpack.dll <br/>- 2002-01-01 05:08 . 2002-01-01 05:08 616960 c:\windows\system32\advapi32.dll <br/>+ 2002-01-01 05:08 . 2009-02-09 10:20 616960 c:\windows\system32\advapi32.dll <br/>- 2002-01-01 05:08 . 2002-01-01 05:08 100352 c:\windows\system32\6to4svc.dll <br/>+ 2002-01-01 05:08 . 2006-08-16 11:58 100352 c:\windows\system32\6to4svc.dll <br/>- 2009-06-10 05:10 . 2007-11-30 12:39 382840 c:\windows\SoftwareDistribution\Download\0f1f7f5eb2a06ca8f9c064b451608f13\update\updspapi.dll <br/>- 2009-06-10 05:10 . 2007-11-30 12:39 755576 c:\windows\SoftwareDistribution\Download\0f1f7f5eb2a06ca8f9c064b451608f13\update\update.exe <br/>- 2009-06-10 05:10 . 2007-11-30 12:39 231288 c:\windows\SoftwareDistribution\Download\0f1f7f5eb2a06ca8f9c064b451608f13\spuninst.exe <br/>+ 2008-10-21 17:47 . 2008-10-21 17:47 634368 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5\vs_setup.msi <br/>+ 2008-03-16 20:06 . 2008-03-16 20:06 470528 c:\windows\Installer\e2d89.msi <br/>+ 2009-03-23 04:05 . 2009-03-23 04:05 598016 c:\windows\Installer\c6dd1.msi <br/>+ 2008-11-13 07:01 . 2008-11-13 07:01 972800 c:\windows\Installer\b633f5e.msi <br/>+ 2007-11-29 21:55 . 2007-11-29 21:55 335872 c:\windows\Installer\acfca55.msi <br/>+ 2007-11-07 11:07 . 2007-11-07 11:07 999936 c:\windows\Installer\a47aa13.msp <br/>+ 2007-11-07 10:56 . 2007-11-07 10:56 553472 c:\windows\Installer\a47aa10.msp <br/>+ 2007-11-07 10:58 . 2007-11-07 10:58 908800 c:\windows\Installer\a47aa0c.msp <br/>+ 2007-11-07 10:54 . 2007-11-07 10:54 507392 c:\windows\Installer\a47aa0b.msp <br/>+ 2007-12-12 03:26 . 2007-12-12 03:26 164352 c:\windows\Installer\9fb0e42.msi <br/>+ 2009-03-20 08:37 . 2009-03-20 08:37 408064 c:\windows\Installer\8071bc.msi <br/>+ 2007-03-18 15:02 . 2007-03-18 15:02 188928 c:\windows\Installer\6adeb.msi <br/>+ 2008-03-08 11:11 . 2008-03-08 11:11 331264 c:\windows\Installer\5b4ada2.msi <br/>+ 2008-06-03 09:58 . 2008-06-03 09:58 213504 c:\windows\Installer\59e6823.msi <br/>+ 2008-07-22 10:00 . 2008-07-22 10:00 532992 c:\windows\Installer\561224.msi <br/>+ 2007-08-07 09:31 . 2007-08-07 09:31 423936 c:\windows\Installer\53312a0.msi <br/>+ 2008-11-14 07:00 . 2008-11-14 07:00 432640 c:\windows\Installer\51f3824.msi <br/>+ 2007-02-05 17:17 . 2007-02-05 17:17 390656 c:\windows\Installer\41d24.msi <br/>+ 2007-02-05 17:12 . 2007-02-05 17:12 264704 c:\windows\Installer\41d1e.msi <br/>+ 2009-03-16 21:25 . 2009-03-16 21:25 549888 c:\windows\Installer\3ed1823.msi <br/>+ 2009-03-16 21:24 . 2009-03-16 21:24 968704 c:\windows\Installer\3ed181c.msi <br/>+ 2009-03-16 21:24 . 2009-03-16 21:24 570368 c:\windows\Installer\3ed1816.msi <br/>+ 2009-03-16 21:24 . 2009-03-16 21:24 183296 c:\windows\Installer\3ed1810.msi <br/>+ 2009-03-16 21:24 . 2009-03-16 21:24 727040 c:\windows\Installer\3ed180a.msi <br/>+ 2009-03-16 21:23 . 2009-03-16 21:23 483328 c:\windows\Installer\3ed1804.msi <br/>+ 2009-03-16 21:23 . 2009-03-16 21:23 781824 c:\windows\Installer\3ed17f7.msi <br/>+ 2009-03-16 21:23 . 2009-03-16 21:23 464896 c:\windows\Installer\3ed17f1.msi <br/>+ 2009-03-16 21:22 . 2009-03-16 21:22 891904 c:\windows\Installer\3ed17eb.msi <br/>+ 2009-03-16 21:20 . 2009-03-16 21:20 736768 c:\windows\Installer\3ed17e5.msi <br/>+ 2009-03-16 21:18 . 2009-03-16 21:18 431104 c:\windows\Installer\3ed17a8.msi <br/>+ 2009-03-16 21:17 . 2009-03-16 21:17 140288 c:\windows\Installer\3ed177b.msi <br/>+ 2009-03-16 21:16 . 2009-03-16 21:16 202752 c:\windows\Installer\3ed176e.msi <br/>+ 2009-03-16 21:16 . 2009-03-16 21:16 152576 c:\windows\Installer\3ed1768.msi <br/>+ 2009-03-16 21:16 . 2009-03-16 21:16 107008 c:\windows\Installer\3ed1756.msi <br/>+ 2009-03-16 21:16 . 2009-03-16 21:16 301056 c:\windows\Installer\3ed1750.msi <br/>+ 2008-10-21 17:48 . 2008-10-21 17:48 804864 c:\windows\Installer\368ccfe.msi <br/>+ 2008-10-21 17:47 . 2008-10-21 17:47 630272 c:\windows\Installer\368ccf8.msi <br/>+ 2007-11-08 01:34 . 2007-11-08 01:34 273920 c:\windows\Installer\3669eee.msp <br/>+ 2008-10-21 17:46 . 2008-10-21 17:46 348160 c:\windows\Installer\3669ee7.msi <br/>+ 2007-03-10 20:21 . 2007-03-10 20:21 380416 c:\windows\Installer\3625890.msi <br/>+ 2009-02-23 19:33 . 2009-02-23 19:33 679424 c:\windows\Installer\2fecf6e.msi <br/>+ 2008-03-19 16:35 . 2008-03-19 16:35 622592 c:\windows\Installer\2c84542.msi <br/>+ 2009-07-22 04:57 . 2009-07-22 04:57 850432 c:\windows\Installer\2bc677.msi <br/>+ 2009-07-22 04:54 . 2009-07-22 04:54 549888 c:\windows\Installer\2bc5d2.msi <br/>+ 2009-07-22 04:53 . 2009-07-22 04:53 331264 c:\windows\Installer\2bc59c.msi <br/>+ 2009-02-14 17:48 . 2009-02-14 17:48 152576 c:\windows\Installer\23f6f5c.msi <br/>+ 2007-04-26 15:12 . 2007-04-26 15:12 268800 c:\windows\Installer\21b55d8.msi <br/>+ 2007-03-18 14:40 . 2007-03-18 14:40 178176 c:\windows\Installer\20c0ced.msi <br/>+ 2008-03-26 13:14 . 2008-03-26 13:14 289792 c:\windows\Installer\1f706a0.msi <br/>+ 2008-09-02 19:01 . 2008-09-02 19:01 678912 c:\windows\Installer\1eac21d.msi <br/>+ 2009-07-29 13:04 . 2009-07-29 13:04 144384 c:\windows\Installer\1e4ff42.msi <br/>+ 2008-06-22 19:33 . 2008-06-22 19:33 691200 c:\windows\Installer\1d50eb1.msi <br/>+ 2007-11-30 06:32 . 2007-11-30 06:32 176640 c:\windows\Installer\1c96826.msi <br/>+ 2007-08-01 20:22 . 2007-08-01 20:22 648704 c:\windows\Installer\1c68be7.msi <br/>+ 2008-01-17 17:38 . 2008-01-17 17:38 282624 c:\windows\Installer\1ae7701.msi <br/>+ 2008-01-17 16:44 . 2008-01-17 16:44 163840 c:\windows\Installer\184ce33.msi <br/>+ 2009-06-01 18:28 . 2009-06-01 18:28 177664 c:\windows\Installer\16e0491.msi <br/>+ 2008-07-24 16:21 . 2008-07-24 16:21 387072 c:\windows\Installer\14b7b91.msi <br/>+ 2007-03-26 12:35 . 2007-03-26 12:35 189952 c:\windows\Installer\13d2961.msi <br/>+ 2007-08-15 09:00 . 2007-08-15 09:00 431104 c:\windows\Installer\112521a.msi <br/>+ 2007-03-07 09:03 . 2007-03-07 09:03 428544 c:\windows\Installer\10c44a9.msi <br/>+ 2008-07-27 10:07 . 2008-07-27 10:07 360960 c:\windows\Installer\100cc1.msi <br/>+ 2008-07-27 10:05 . 2008-07-27 10:05 289792 c:\windows\Installer\100cbc.msi <br/>- 2007-02-05 16:23 . 2008-09-19 10:25 114688 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\outicon.exe <br/>+ 2007-02-05 16:23 . 2009-07-31 10:59 114688 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\outicon.exe <br/>- 2007-02-05 16:23 . 2008-09-19 10:25 167936 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\accicons.exe <br/>+ 2007-02-05 16:23 . 2009-07-31 10:59 167936 c:\windows\Installer\{90280409-6000-11D3-8CFE-0050048383C9}\accicons.exe <br/>+ 2009-07-29 19:59 . 2009-04-29 04:56 827392 c:\windows\ie7updates\KB972260-IE7\wininet.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:56 233472 c:\windows\ie7updates\KB972260-IE7\webcheck.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:56 105984 c:\windows\ie7updates\KB972260-IE7\url.dll <br/>+ 2009-07-29 19:59 . 2009-05-26 11:40 382840 c:\windows\ie7updates\KB972260-IE7\spuninst\updspapi.dll <br/>+ 2009-07-29 19:59 . 2008-07-08 13:02 231288 c:\windows\ie7updates\KB972260-IE7\spuninst\spuninst.exe <br/>+ 2009-07-29 19:59 . 2009-04-29 04:56 102912 c:\windows\ie7updates\KB972260-IE7\occache.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:56 671232 c:\windows\ie7updates\KB972260-IE7\mstime.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:56 193024 c:\windows\ie7updates\KB972260-IE7\msrating.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:56 477696 c:\windows\ie7updates\KB972260-IE7\mshtmled.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 459264 c:\windows\ie7updates\KB972260-IE7\msfeeds.dll <br/>+ 2009-07-29 19:59 . 2009-04-25 05:27 636088 c:\windows\ie7updates\KB972260-IE7\iexplore.exe <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 268288 c:\windows\ie7updates\KB972260-IE7\iertutil.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 385024 c:\windows\ie7updates\KB972260-IE7\iedkcs32.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 383488 c:\windows\ie7updates\KB972260-IE7\ieapfltr.dll <br/>+ 2009-07-29 19:59 . 2009-04-25 05:26 161792 c:\windows\ie7updates\KB972260-IE7\ieakui.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 230400 c:\windows\ie7updates\KB972260-IE7\ieaksie.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 153088 c:\windows\ie7updates\KB972260-IE7\ieakeng.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 133120 c:\windows\ie7updates\KB972260-IE7\extmgr.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 214528 c:\windows\ie7updates\KB972260-IE7\dxtrans.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 347136 c:\windows\ie7updates\KB972260-IE7\dxtmsft.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 124928 c:\windows\ie7updates\KB972260-IE7\advpack.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:54 818688 c:\windows\ie7updates\KB969897-IE7\wininet.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:54 231424 c:\windows\ie7updates\KB969897-IE7\webcheck.dll <br/>- 2009-06-18 20:22 . 2009-02-20 18:09 105984 c:\windows\ie7updates\KB969897-IE7\url.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:44 105984 c:\windows\ie7updates\KB969897-IE7\url.dll <br/>+ 2009-07-14 19:03 . 2008-07-09 07:38 382840 c:\windows\ie7updates\KB969897-IE7\updspapi.dll <br/>+ 2009-07-14 19:03 . 2008-07-09 07:38 755576 c:\windows\ie7updates\KB969897-IE7\update.exe <br/>+ 2009-07-14 19:03 . 2008-07-09 07:38 231288 c:\windows\ie7updates\KB969897-IE7\spuninst.exe <br/>+ 2009-06-18 20:22 . 2007-08-13 14:44 101376 c:\windows\ie7updates\KB969897-IE7\occache.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:54 670720 c:\windows\ie7updates\KB969897-IE7\mstime.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:44 192000 c:\windows\ie7updates\KB969897-IE7\msrating.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:54 475648 c:\windows\ie7updates\KB969897-IE7\mshtmled.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:43 622080 c:\windows\ie7updates\KB969897-IE7\iexplore.exe <br/>+ 2009-06-18 20:22 . 2007-08-13 14:39 382976 c:\windows\ie7updates\KB969897-IE7\iedkcs32.dll <br/>- 2009-06-18 20:22 . 2009-02-20 18:09 383488 c:\windows\ie7updates\KB969897-IE7\ieapfltr.dll <br/>+ 2009-06-18 20:22 . 2009-04-29 04:55 383488 c:\windows\ie7updates\KB969897-IE7\ieapfltr.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 13:56 161792 c:\windows\ie7updates\KB969897-IE7\ieakui.dll <br/>- 2009-06-18 20:22 . 2009-02-20 05:14 161792 c:\windows\ie7updates\KB969897-IE7\ieakui.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:39 229376 c:\windows\ie7updates\KB969897-IE7\ieaksie.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:39 152064 c:\windows\ie7updates\KB969897-IE7\ieakeng.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:54 131584 c:\windows\ie7updates\KB969897-IE7\extmgr.dll <br/>- 2009-06-18 20:22 . 2009-02-20 18:09 214528 c:\windows\ie7updates\KB969897-IE7\dxtrans.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:35 214528 c:\windows\ie7updates\KB969897-IE7\dxtrans.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:35 346624 c:\windows\ie7updates\KB969897-IE7\dxtmsft.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:39 123904 c:\windows\ie7updates\KB969897-IE7\advpack.dll <br/>+ 2009-07-14 19:07 . 2007-08-13 14:54 765952 c:\windows\ie7updates\KB938127-v2-IE7\vgx.dll <br/>+ 2009-07-14 19:07 . 2007-03-06 01:23 371424 c:\windows\ie7updates\KB938127-v2-IE7\spuninst\updspapi.dll <br/>+ 2009-07-14 19:07 . 2007-03-06 01:22 213216 c:\windows\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe <br/>+ 2009-07-14 10:53 . 2008-10-24 11:10 453632 c:\windows\Driver Cache\i386\mrxsmb.sys <br/>+ 2009-07-14 11:14 . 2008-06-13 13:10 272128 c:\windows\Driver Cache\i386\bthport.sys <br/>+ 2009-07-04 13:11 . 2008-03-21 09:57 379184 c:\windows\$NtUninstallWdf01007$\spuninst\updspapi.dll <br/>+ 2009-07-04 13:11 . 2008-03-21 09:57 221488 c:\windows\$NtUninstallWdf01007$\spuninst\spuninst.exe <br/>- 2007-03-06 20:27 . 2004-08-03 22:56 884736 c:\windows\$MSI31Uninstall_KB893803v2$\msimsg.dll <br/>+ 2007-03-06 20:27 . 2002-01-01 05:09 884736 c:\windows\$MSI31Uninstall_KB893803v2$\msimsg.dll <br/>+ 2007-03-06 20:27 . 2002-01-01 05:09 331264 c:\windows\$MSI31Uninstall_KB893803v2$\msihnd.dll <br/>- 2007-03-06 20:27 . 2004-08-03 22:56 331264 c:\windows\$MSI31Uninstall_KB893803v2$\msihnd.dll <br/>- 2008-09-10 07:49 . 2008-04-15 17:54 1724416 c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.3352_x-ww_81af8e88\GdiPlus.dll <br/>+ 2009-07-14 11:02 . 2008-04-15 17:54 1724416 c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.3352_x-ww_81af8e88\GdiPlus.dll <br/>+ 2007-02-05 17:01 . 2008-10-16 10:13 1809944 c:\windows\system32\wuaueng.dll <br/>+ 2002-01-01 05:10 . 2008-11-07 14:32 2109440 c:\windows\system32\WMVCore.dll <br/>+ 2002-01-01 05:10 . 2008-06-10 14:18 1053696 c:\windows\system32\WMNetmgr.dll <br/>+ 2002-01-01 05:10 . 2009-04-17 09:58 1846656 c:\windows\system32\win32k.sys <br/>+ 2002-01-01 05:10 . 2002-01-01 05:10 1326080 c:\windows\system32\webfldrs.msi <br/>+ 2002-01-01 05:10 . 2009-06-29 16:12 1159680 c:\windows\system32\urlmon.dll <br/>+ 2002-01-01 05:10 . 2008-07-03 13:16 8454656 c:\windows\system32\shell32.dll <br/>+ 2002-01-01 05:09 . 2009-02-06 17:22 2136064 c:\windows\system32\ntoskrnl.exe <br/>+ 2004-08-03 22:59 . 2009-02-06 16:49 2015744 c:\windows\system32\ntkrnlpa.exe <br/>+ 2002-01-01 05:09 . 2008-09-04 16:42 1106944 c:\windows\system32\msxml3.dll <br/>+ 2002-01-01 05:09 . 2005-05-04 10:45 2890240 c:\windows\system32\msi.dll <br/>+ 2002-01-01 05:09 . 2009-07-19 13:33 3597824 c:\windows\system32\mshtml.dll <br/>+ 2008-03-09 15:58 . 2008-03-09 16:01 4050944 c:\windows\system32\Macromed\Shockwave 10\gt.msi <br/>+ 2007-08-13 14:54 . 2009-07-19 13:32 6067200 c:\windows\system32\ieframe.dll <br/>+ 2007-02-12 12:10 . 2009-06-29 08:33 2452872 c:\windows\system32\ieapfltr.dat <br/>+ 2009-07-22 04:54 . 2009-05-11 08:47 1302600 c:\windows\system32\DRVSTORE\pccswpddri_1C34ED6F4888FC93BE68C7A31A24834F522D3CBF\WUDFUpdate_01007.dll <br/>+ 2009-07-22 04:53 . 2009-02-09 04:32 1112288 c:\windows\system32\DRVSTORE\ccdcmb_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\wdfcoinstaller01007.dll <br/>+ 2007-02-05 17:01 . 2008-10-16 10:13 1809944 c:\windows\system32\dllcache\wuaueng.dll <br/>+ 2008-11-07 14:32 . 2008-11-07 14:32 2109440 c:\windows\system32\dllcache\WMVCore.dll <br/>+ 2008-06-10 14:18 . 2008-06-10 14:18 1053696 c:\windows\system32\dllcache\WMNetmgr.dll <br/>+ 2007-08-13 14:54 . 2009-06-29 16:12 1159680 c:\windows\system32\dllcache\urlmon.dll <br/>+ 2008-07-03 13:16 . 2008-07-03 13:16 8454656 c:\windows\system32\dllcache\shell32.dll <br/>+ 2009-06-03 19:27 . 2009-06-03 19:27 1290752 c:\windows\system32\dllcache\quartz.dll <br/>+ 2007-08-13 14:54 . 2009-07-19 13:33 3597824 c:\windows\system32\dllcache\mshtml.dll <br/>+ 2007-05-25 08:08 . 2007-05-25 08:08 9609728 c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp <br/>+ 2007-05-04 12:01 . 2007-05-04 12:01 7424000 c:\windows\Installer\d4b637.msi <br/>+ 2008-06-04 15:02 . 2008-06-04 15:02 1856512 c:\windows\Installer\bdcc7f7.msi <br/>+ 2008-10-05 00:12 . 2008-10-05 00:12 4784128 c:\windows\Installer\b764b1.msp <br/>+ 2007-11-07 10:50 . 2007-11-07 10:50 6055936 c:\windows\Installer\a47aa12.msp <br/>+ 2007-11-07 11:00 . 2007-11-07 11:00 3407360 c:\windows\Installer\a47aa11.msp <br/>+ 2007-11-07 10:46 . 2007-11-07 10:46 3010560 c:\windows\Installer\a47aa0f.msp <br/>+ 2007-11-07 11:02 . 2007-11-07 11:02 6473216 c:\windows\Installer\a47aa0e.msp <br/>+ 2007-11-07 11:12 . 2007-11-07 11:12 2533376 c:\windows\Installer\a47aa0d.msp <br/>+ 2007-11-16 08:04 . 2007-11-16 08:04 2165248 c:\windows\Installer\a10eaee.msi <br/>+ 2009-01-09 18:29 . 2009-01-09 18:29 2247680 c:\windows\Installer\85416f4.msi <br/>+ 2007-06-13 19:36 . 2007-06-13 19:36 1773056 c:\windows\Installer\68e5a0.msi <br/>+ 2008-11-14 12:54 . 2008-11-14 12:54 3443712 c:\windows\Installer\6615f94.msi <br/>+ 2009-01-14 23:35 . 2009-01-14 23:35 4830720 c:\windows\Installer\64cc1.msp <br/>+ 2007-02-05 16:23 . 2007-02-05 16:23 3485184 c:\windows\Installer\56c93.msi <br/>+ 2007-05-07 11:08 . 2007-05-07 11:08 8776704 c:\windows\Installer\3d8cc9.msi <br/>+ 2008-12-05 08:34 . 2008-12-05 08:34 6259200 c:\windows\Installer\36caf2b.msi <br/>+ 2007-11-08 01:30 . 2007-11-08 01:30 3962368 c:\windows\Installer\3669ef0.msp <br/>+ 2007-11-08 01:13 . 2007-11-08 01:13 6766592 c:\windows\Installer\3669eef.msp <br/>+ 2007-11-08 01:26 . 2007-11-08 01:26 4340224 c:\windows\Installer\3669eec.msp <br/>+ 2007-11-08 01:24 . 2007-11-08 01:24 5353472 c:\windows\Installer\3669eeb.msp <br/>+ 2007-11-08 01:18 . 2007-11-08 01:18 2059264 c:\windows\Installer\3669ee9.msp <br/>+ 2007-11-08 01:16 . 2007-11-08 01:16 1313280 c:\windows\Installer\3669ee8.msp <br/>+ 2008-03-19 18:59 . 2008-03-19 18:59 1091072 c:\windows\Installer\34c656c.msi <br/>+ 2008-10-21 17:11 . 2008-10-21 17:11 1142784 c:\windows\Installer\340b543.msi <br/>+ 2009-04-10 08:39 . 2009-04-10 08:39 1485312 c:\windows\Installer\32c22e.msi <br/>+ 2007-07-03 20:17 . 2007-07-03 20:17 3023360 c:\windows\Installer\2b233de.msi <br/>+ 2007-03-22 18:27 . 2007-03-22 18:27 4466176 c:\windows\Installer\29c70ce.msi <br/>+ 2008-09-03 18:44 . 2008-09-03 18:44 1110016 c:\windows\Installer\272de26.msi <br/>+ 2008-06-08 11:27 . 2008-06-08 11:27 3999744 c:\windows\Installer\243ff1.msi <br/>+ 2009-01-16 14:21 . 2009-01-16 14:21 6259200 c:\windows\Installer\217c5f8.msi <br/>+ 2008-07-15 19:12 . 2008-07-15 19:12 1298432 c:\windows\Installer\1fd2153.msp <br/>+ 2007-10-15 12:57 . 2007-10-15 12:57 4189184 c:\windows\Installer\1cebd2b.msi <br/>+ 2007-04-22 17:04 . 2007-04-22 17:04 1527808 c:\windows\Installer\1c6f0dd.msi <br/>+ 2008-06-01 14:34 . 2008-06-01 14:34 2590208 c:\windows\Installer\1a19eab.msi <br/>+ 2007-02-05 16:40 . 2007-02-05 16:40 5734912 c:\windows\Installer\1911fb.msi <br/>+ 2009-05-24 11:30 . 2009-05-24 11:30 1401344 c:\windows\Installer\147795.msi <br/>+ 2007-09-15 14:06 . 2007-09-15 14:06 7219712 c:\windows\Installer\1373d34.msi <br/>+ 2008-07-09 10:47 . 2008-07-09 10:47 1889280 c:\windows\Installer\129e8d.msi <br/>+ 2009-07-29 19:59 . 2009-04-29 04:56 1159680 c:\windows\ie7updates\KB972260-IE7\urlmon.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:56 3596288 c:\windows\ie7updates\KB972260-IE7\mshtml.dll <br/>+ 2009-07-29 19:59 . 2009-04-29 04:55 6066176 c:\windows\ie7updates\KB972260-IE7\ieframe.dll <br/>+ 2009-07-29 19:59 . 2008-07-09 14:25 2455488 c:\windows\ie7updates\KB972260-IE7\ieapfltr.dat <br/>+ 2009-06-18 20:22 . 2007-08-13 14:54 1162240 c:\windows\ie7updates\KB969897-IE7\urlmon.dll <br/>+ 2009-06-18 20:22 . 2007-08-13 14:54 3578368 c:\windows\ie7updates\KB969897-IE7\mshtml.dll <br/>+ 2009-07-14 11:24 . 2009-02-06 17:24 2180480 c:\windows\Driver Cache\i386\ntoskrnl.exe <br/>+ 2009-07-14 11:24 . 2009-02-06 16:49 2015744 c:\windows\Driver Cache\i386\ntkrpamp.exe <br/>+ 2009-07-14 11:24 . 2009-02-06 16:49 2057728 c:\windows\Driver Cache\i386\ntkrnlpa.exe <br/>+ 2009-07-14 11:25 . 2009-02-06 17:22 2136064 c:\windows\Driver Cache\i386\ntkrnlmp.exe <br/>+ 2007-06-27 07:02 . 2007-06-27 07:02 3692544 c:\windows\Downloaded Installations\{EAB2F1A0-2CF1-4B3A-8699-8A23899EE39B}\Enterprise Blue SMS.msi <br/>+ 2008-06-06 06:51 . 2008-06-06 06:51 2422272 c:\windows\Downloaded Installations\{D8B22BE1-2F8D-4099-BF96-0DFAB83E09E4}\Discador Phonico.msi <br/>+ 2008-09-03 18:39 . 2008-09-03 18:39 5473280 c:\windows\Downloaded Installations\{D4BD1E57-80B5-4BC1-BB93-AEB60E81D2BD}\Boson PMI Tests v5.57.msi <br/>+ 2008-07-24 16:21 . 2008-07-24 16:21 2245632 c:\windows\Downloaded Installations\{ABCAF008-9A77-4289-892C-C2BDC84FE5C3}\Phonico Dialer.msi <br/>+ 2007-03-22 18:27 . 2007-03-22 18:27 9833984 c:\windows\Downloaded Installations\{A2E0F507-84FF-4677-A28E-16F7462492B9}\URGE.msi <br/>+ 2007-08-04 11:03 . 2007-08-04 11:03 8446464 c:\windows\Downloaded Installations\{78FDEAF0-D0E2-45C5-9980-0574D023F589}\veoh.msi <br/>+ 2008-09-03 18:43 . 2008-09-03 18:43 4519936 c:\windows\Downloaded Installations\{4EEB2283-771C-42F1-81F5-57784C8364E7}\Boson PMI Tests v5.35.msi <br/>+ 2007-06-13 19:35 . 2008-02-24 19:39 8581632 c:\windows\Downloaded Installations\{3E547985-AA94-4B1B-8ADD-21E060E5E31F}\Adobe Photoshop Album 3.2 SE.msi <br/>+ 2008-06-17 15:54 . 2003-11-03 23:06 2250100 c:\windows\Cache\Adobe Reader 6.0.1\ENUBIG\Adobe Reader 6.0.1.msi <br/>+ 2007-03-06 20:27 . 2002-01-01 05:09 2804224 c:\windows\$MSI31Uninstall_KB893803v2$\msi.dll <br/>- 2007-03-06 20:27 . 2004-08-03 22:56 2804224 c:\windows\$MSI31Uninstall_KB893803v2$\msi.dll <br/>+ 2006-10-30 00:05 . 2006-10-30 00:05 11390464 c:\windows\Microsoft.NET\Framework\v3.0\WPF\wpf.msi <br/>+ 2007-07-24 06:34 . 2007-01-19 09:20 16633344 c:\windows\Installer\MSN Messenger 8.1.0178\MsnMsgs.Msi <br/>+ 2008-11-15 07:01 . 2008-11-15 07:01 19210240 c:\windows\Installer\82cf84.msp <br/>+ 2008-11-17 07:00 . 2008-11-17 07:00 15256576 c:\windows\Installer\469035d.msp <br/>+ 2007-02-05 17:26 . 2007-02-05 17:26 13124608 c:\windows\Installer\367ce.msi <br/>+ 2009-03-02 03:31 . 2009-03-02 03:31 26365440 c:\windows\Installer\1c231c.msi <br/>+ 2007-02-05 16:40 . 2007-02-05 16:40 15546368 c:\windows\Downloaded Installations\{7044B75D-4FA2-4A6C-A1EA-4DB8A1DCFE41}\ACDSee Partner Edition.msi <br/>. <br/>-- Snapshot reset to current date -- <br/>. <br/>((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) <br/>. <br/>. <br/>*Note* empty entries & legit default entries are not shown <br/>REGEDIT4 <br/>[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] <br/>"{c95a4e8e-816d-4655-8c79-d736da1adb6d}"= "c:\program files\Hotspot_Shield\tbHot1.dll" [2009-07-31 2215960] <br/>[HKEY_CLASSES_ROOT\clsid\{c95a4e8e-816d-4655-8c79-d736da1adb6d}] <br/>[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{c95a4e8e-816d-4655-8c79-d736da1adb6d}] <br/>2009-07-31 17:36 2215960 ----a-w- c:\program files\Hotspot_Shield\tbHot1.dll <br/>[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}] <br/>2009-06-11 18:57 218160 ----a-w- c:\program files\Hotspot Shield\hssie\HssIE.dll <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] <br/>"{c95a4e8e-816d-4655-8c79-d736da1adb6d}"= "c:\program files\Hotspot_Shield\tbHot1.dll" [2009-07-31 2215960] <br/>[HKEY_CLASSES_ROOT\clsid\{c95a4e8e-816d-4655-8c79-d736da1adb6d}] <br/>[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] <br/>"{C95A4E8E-816D-4655-8C79-D736DA1ADB6D}"= "c:\program files\Hotspot_Shield\tbHot1.dll" [2009-07-31 2215960] <br/>[HKEY_CLASSES_ROOT\clsid\{c95a4e8e-816d-4655-8c79-d736da1adb6d}] <br/>[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <br/>"Messenger (Yahoo!)"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" [2009-05-26 4351216] <br/>"SmartVoip"="c:\program files\SmartVoip.com\SmartVoip\SmartVoip.exe" [2009-07-15 9037104] <br/>"FreeCall"="c:\program files\FreeCall.com\FreeCall\FreeCall.exe" [2009-08-06 9156912] <br/>"PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2009-06-25 1414144] <br/>"Skype"="c:\program files\Skype\Phone\Skype.exe" [2007-02-22 25388584] <br/>[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] <br/>"Shockwave Updater"="c:\windows\system32\Adobe\Shockwave 11\SwHelper_1150595.exe -Update -1150595 -Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; " [BU] <br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] <br/>"U.S. Robotics Wireless Manager UI"="c:\windows\system32\WLTRAY" [X] <br/>"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2006-01-12 155648] <br/>"LGODDFU"="c:\program files\lg_fwupdate\fwupdate.exe" [2008-12-30 548864] <br/>"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 45056] <br/>"InCD"="c:\program files\Ahead\InCD\InCD.exe" [2006-07-12 1397760] <br/>"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2007-04-27 282624] <br/>"RemoteControl"="c:\program files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe" [2004-11-02 32768] <br/>"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-04-25 198160] <br/>"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-05-21 148888] <br/>"DC1300 Monitor"="c:\program files\DC1300\DCMnt1_0\DC1300mi.exe" [2002-08-08 45056] <br/>"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-07-29 2000152] <br/>[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] <br/>"tscuninstall"="c:\windows\system32\tscupgrd.exe" [2004-08-03 44544] <br/>c:\documents and settings\Administrator\Start Menu\Programs\Startup\ <br/>BSEGadget.lnk - c:\program files\BSEMktWatch\BSE Mkt Watch.exe [2008-12-17 421888] <br/>c:\documents and settings\Kumar\Start Menu\Programs\Startup\ <br/>BSEGadget.lnk - c:\program files\BSEMktWatch\BSE Mkt Watch.exe [2008-12-17 421888] <br/>GameRanger.lnk - c:\documents and settings\Kumar\Application Data\GameRanger\GameRanger\GameRanger.exe [2009-5-3 1187504] <br/>[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] <br/>"NoChangeAnimation"= 1 (0x1) <br/>"NoStrCmpLogical"= 1 (0x1) <br/>[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] <br/>"MemCheckBoxInRunDlg"= 1 (0x1) <br/>"NoStrCmpLogical"= 1 (0x1) <br/>[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter] <br/>2009-07-29 04:29 11952 ----a-w- c:\windows\system32\avgrsstx.dll <br/>[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit] <br/>2008-10-16 16:35 87352 ----a-w- c:\windows\system32\LMIinit.dll <br/>[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] <br/>@="Driver" <br/>[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk] <br/>backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup <br/>[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Google Updater.lnk] <br/>backup=c:\windows\pss\Google Updater.lnkCommon Startup <br/>[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk] <br/>backup=c:\windows\pss\Microsoft Office.lnkCommon Startup <br/>[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^SJphone 1.65.lnk] <br/>backup=c:\windows\pss\SJphone 1.65.lnkCommon Startup <br/>[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^WinManager.lnk] <br/>backup=c:\windows\pss\WinManager.lnkCommon Startup <br/>[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^WinZip Quick Pick.lnk] <br/>backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup <br/>[HKLM\~\startupfolder\C:^Documents and Settings^Kumar^Start Menu^Programs^Startup^Registration Open Season.LNK] <br/>backup=c:\windows\pss\Registration Open Season.LNKStartup <br/>[HKLM\~\startupfolder\C:^Documents and Settings^Kumar^Start Menu^Programs^Startup^Tabrio.lnk] <br/>backup=c:\windows\pss\Tabrio.lnkStartup <br/>[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] <br/>"DisableMonitoring"=dword:00000001 <br/>[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] <br/>"DisableMonitoring"=dword:00000001 <br/>[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] <br/>"DisableMonitoring"=dword:00000001 <br/>[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] <br/>"%windir%\\system32\\sessmgr.exe"= <br/>"c:\\Program Files\\Harbibi\\hbbfone.exe"= <br/>"c:\\Program Files\\Google\\Google Talk\\googletalk.exe"= <br/>"c:\\Program Files\\ForexCharts\\winros.exe"= <br/>"c:\\WINDOWS\\system32\\mmc.exe"= <br/>"c:\\Program Files\\Messenger\\msmsgs.exe"= <br/>"c:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"= <br/>"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"= <br/>"c:\\Program Files\\iTunes\\iTunes.exe"= <br/>"c:\\Program Files\\My-VPhone\\MyVPhone.exe"= <br/>"c:\\Program Files\\Phonico Dialer\\Phonico Dialer\\Phonico Dialer.exe"= <br/>"c:\\Program Files\\Vyke PC\\Dialer\\Resources\\iaxdialer.exe"= <br/>"c:\\WINDOWS\\system32\\ftp.exe"= <br/>"c:\\Program Files\\eMule\\emule.exe"= <br/>"c:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"= <br/>"c:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"= <br/>"c:\\Documents and Settings\\Kumar\\Application Data\\GameRanger\\GameRanger\\GameRanger.exe"= <br/>"e:\\Age of empires\\empires2.exe"= <br/>"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= <br/>"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= <br/>"c:\\Program Files\\Mozilla Firefox\\firefox.exe"= <br/>"c:\\WINDOWS\\system32\\dplaysvr.exe"= <br/>"e:\\Age of empires\\Age of Empires II The Age Of Kings. By Yaschiro\\age2_x1.exe"= <br/>"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"= <br/>"c:\\Program Files\\SmartVoip.com\\SmartVoip\\SmartVoip.exe"= <br/>"c:\\Program Files\\FreeCall.com\\FreeCall\\FreeCall.exe"= <br/>"e:\\Utorrent\\uTorrent.exe"= <br/>"e:\\utorrent.exe"= <br/>"c:\\Program Files\\Vyke PC\\WLPhone.exe"= <br/>"c:\\Program Files\\AVG\\AVG8\\avgam.exe"= <br/>"c:\\Program Files\\AVG\\AVG8\\avgupd.exe"= <br/>"c:\\Program Files\\AVG\\AVG8\\avgnsx.exe"= <br/>"c:\\Program Files\\Skype\\Phone\\Skype.exe"= <br/>[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] <br/>"5070:UDP"= 5070:UDP:Express Talk Sip Incoming Calls (UDP) <br/>"30000:UDP"= 30000:UDP:Discador Phonico <br/>R0 AvgRkx86;avgrkx86.sys;c:\windows\system32\drivers\avgrkx86.sys [7/11/2009 2:22 AM 12552] <br/>R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [7/11/2009 2:22 AM 335240] <br/>R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [7/11/2009 2:22 AM 108552] <br/>R2 avg8wd;AVG8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [7/14/2009 5:20 PM 297752] <br/>R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [3/17/2009 1:24 AM 55152] <br/>R2 HssSrv;Hotspot Shield Routing Service;c:\program files\Hotspot Shield\HssWPR\hsssrv.exe [6/16/2009 1:49 AM 331312] <br/>R2 SVKP;SVKP;c:\windows\system32\SVKP.sys [8/29/2007 3:57 PM 2368] <br/>R3 DtvAudio;DtvAudio;c:\windows\system32\drivers\DtvAudio.sys [2/6/2007 10:57 AM 9216] <br/>R3 DtvVideo;DtvVideo;c:\windows\system32\drivers\DtvVideo.sys [2/6/2007 10:57 AM 23680] <br/>R3 HssDrv;Hotspot Shield Helper Miniport;c:\windows\system32\drivers\hssdrv.sys [6/1/2009 10:13 PM 33840] <br/>R3 tap0901;TAP-Win32 Adapter V9;c:\windows\system32\drivers\tap0901.sys [7/22/2009 3:22 AM 28592] <br/>S2 gupdate1c98d1694510c4a;Google Update Service (gupdate1c98d1694510c4a);c:\program files\Google\Update\GoogleUpdate.exe [2/12/2009 5:33 PM 133104] <br/>S2 HDD & SSD access service;HDD & SSD access service;"c:\program files\Common Files\BinarySense\disksvc.exe" --> c:\program files\Common Files\BinarySense\disksvc.exe [?] <br/>S2 LMIInfo;LogMeIn Kernel Information Provider;\??\c:\program files\LogMeIn\x86\RaInfo.sys --> c:\program files\LogMeIn\x86\RaInfo.sys [?] <br/>S3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\system32\drivers\ASPI32.SYS [9/16/2007 9:55 PM 16512] <br/>S3 DC1300;DC 1300 WDM Video Capture;c:\windows\system32\drivers\Bsc504av.sys [2/7/2007 10:08 PM 515365] <br/>S3 fsssvc;Windows Live Family Safety;c:\program files\Windows Live\Family Safety\fsssvc.exe [2/6/2009 6:08 PM 533360] <br/>S3 HssTrayService;Hotspot Shield Tray Service;c:\program files\Hotspot Shield\bin\HssTrayService.exe [7/22/2009 3:23 AM 57640] <br/>S3 USBCamera;DC 1300 Still Image Capture;c:\windows\system32\drivers\BscBulk.sys [2/7/2007 10:08 PM 10986] <br/>S3 V0260VID;Live! Cam Vista IM;c:\windows\system32\drivers\V0260Vid.sys [2/8/2007 11:00 PM 162176] <br/>S3 VPNET;DTVNet Ethernet Controller;c:\windows\system32\drivers\DTVNet.sys [2/6/2007 11:02 AM 18192] <br/>[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A509B1FF-37FF-4bFF-8CFF-4F3A747040FF}] <br/>c:\windows\system32\rundll32.exe c:\windows\system32\advpack.dll,LaunchINFSectionEx c:\program files\Internet Explorer\clrtour.inf,DefaultInstall.ResetTour,,12 <br/>. <br/>Contents of the 'Scheduled Tasks' folder <br/>2009-08-06 c:\windows\Tasks\AppleSoftwareUpdate.job <br/>- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-01-10 11:42] <br/>2009-08-08 c:\windows\Tasks\Google Software Updater.job <br/>- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-03-25 07:22] <br/>2009-08-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job <br/>- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-12 13:33] <br/>2009-08-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job <br/>- c:\program files\Google\Update\GoogleUpdate.exe [2009-02-12 13:33] <br/>2009-01-19 c:\windows\Tasks\NSSstub.job <br/>- c:\windows\system32\Adobe\Shockwave 11\nssstub.exe [2008-12-17 05:11] <br/>. <br/>. <br/>------- Supplementary Scan ------- <br/>. <br/>uStart Page = hxxp://www.icicidirect.com/ <br/>uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 <br/>mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html <br/>uInternet Connection Wizard,ShellNext = iexplore <br/>uInternet Settings,ProxyOverride = local <br/>uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com <br/>IE: &Search <br/>IE: &Yahoo! Search - file:///c:\program files\Yahoo!\Common/ycsrch.htm <br/>IE: Add to AMV Convert Tool... - e:\amvconverter\grab.html <br/>IE: Add to AMV Converter... - e:\amvconverter\grab.html <br/>IE: Add to Media Manager... - e:\mediamanager\grab.html <br/>IE: Download with Rapget - e:\rapidshare\rapget.htm <br/>IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000 <br/>IE: Yahoo! &Dictionary - file:///c:\program files\Yahoo!\Common/ycdict.htm <br/>IE: Yahoo! &Maps - file:///c:\program files\Yahoo!\Common/ycmap.htm <br/>IE: Yahoo! &SMS - file:///c:\program files\Yahoo!\Common/ycsms.htm <br/>DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab <br/>FF - ProfilePath - c:\documents and settings\Kumar\Application Data\Mozilla\Firefox\Profiles\jdcleew2.default\ <br/>FF - prefs.js: browser.search.defaulturl - hxxp://search.yahoo.com/search?fr=ffsp1&p= <br/>FF - prefs.js: browser.search.selectedEngine - Yahoo <br/>FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/ <br/>FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=ffds1&p= <br/>FF - component: c:\documents and settings\Kumar\Application Data\Mozilla\Firefox\Profiles\jdcleew2.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d}\components\FFAlert.dll <br/>FF - component: c:\program files\AVG\AVG8\Firefox\components\avgssff.dll <br/>FF - component: c:\program files\Nokia\Nokia PC Suite 7\bkmrksync\components\BkMrkExt.dll <br/>FF - component: c:\program files\Real\RealPlayer\browserrecord\components\nprpbrowserrecordplugin.dll <br/>FF - plugin: c:\program files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll <br/>FF - plugin: c:\program files\Google\Update\1.2.183.7\npGoogleOneClick8.dll <br/>FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll <br/>FF - plugin: c:\program files\Mozilla Firefox\plugins\npgcplug.dll <br/>FF - plugin: c:\program files\Mozilla Firefox\plugins\npitunes.dll <br/>FF - plugin: c:\program files\Mozilla Firefox\plugins\npracplug.dll <br/>FF - plugin: c:\program files\Real\RealArcade\Plugins\Mozilla\npracplug.dll <br/>FF - plugin: c:\program files\Veoh Networks\Veoh\Plugins\noreg\NPVeohVersion.dll <br/>FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll <br/>. <br/>************************************************************************** <br/>catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net <br/>Rootkit scan 2009-08-08 11:22 <br/>Windows 5.1.2600 Service Pack 2 NTFS <br/>scanning hidden processes ... <br/>scanning hidden autostart entries ... <br/>scanning hidden files ... <br/>scan completed successfully <br/>hidden files: 0 <br/>************************************************************************** <br/>. <br/>--------------------- LOCKED REGISTRY KEYS --------------------- <br/>[HKEY_USERS\S-1-5-21-861567501-963894560-1417001333-1003\Software\Microsoft\SystemCertificates\AddressBook*] <br/>@Allowed: (Read) (RestrictedCode) <br/>@Allowed: (Read) (RestrictedCode) <br/>[HKEY_USERS\S-1-5-21-861567501-963894560-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{BED8FB16-A0E2-E9EF-87E9-7CF601852617}*] <br/>@Allowed: (Read) (RestrictedCode) <br/>@Allowed: (Read) (RestrictedCode) <br/>"iaicfcfgighnccimpd"=hex:6a,61,6a,6e,6e,66,6a,6a,6c,69,70,6e,68,70,6b,66,6d,6e, <br/> 62,6d,00,00 <br/>"hacbldikgfopbbpg"=hex:6a,61,65,6e,69,6c,64,61,6b,66,6c,65,68,6c,6a,6e,63,6d, <br/> 65,67,00,ea <br/>. <br/>--------------------- DLLs Loaded Under Running Processes --------------------- <br/>- - - - - - - > 'winlogon.exe'(1412) <br/>c:\windows\system32\Ati2evxx.dll <br/>c:\windows\system32\LMIinit.dll <br/>c:\windows\System32\BCMLogon.dll <br/>. <br/>Completion time: 2009-08-08 11:26 <br/>ComboFix-quarantined-files.txt 2009-08-08 07:26 <br/>ComboFix2.txt 2009-07-04 08:17 <br/>ComboFix3.txt 2009-06-11 06:10 <br/>ComboFix4.txt 2009-06-05 22:04 <br/>ComboFix5.txt 2009-07-10 18:48 <br/>Pre-Run: 32,461,217,792 bytes free <br/>Post-Run: 32,440,942,592 bytes free <br/>Current=2 Default=2 Failed=0 LastKnownGood=4 Sets=1,2,3,4 <br/>910 --- E O F --- 2009-08-05 20:27 <br/>========================================== <br/>HijackThis <br/>========================================== <br/> <br/>Logfile of Trend Micro HijackThis v2.0.2 <br/>Scan saved at 12:10:47 PM, on 8/8/2009 <br/>Platform: Windows XP SP2 (WinNT 5.01.2600) <br/>MSIE: Internet Explorer v7.00 (7.00.6000.16876) <br/>Boot mode: Normal <br/>Running processes: <br/>C:\WINDOWS\System32\smss.exe <br/>C:\WINDOWS\system32\winlogon.exe <br/>C:\WINDOWS\system32\services.exe <br/>C:\WINDOWS\system32\lsass.exe <br/>C:\WINDOWS\system32\Ati2evxx.exe <br/>C:\WINDOWS\system32\svchost.exe <br/>C:\WINDOWS\System32\svchost.exe <br/>C:\Program Files\Ahead\InCD\InCDsrv.exe <br/>C:\WINDOWS\system32\svchost.exe <br/>C:\WINDOWS\system32\Ati2evxx.exe <br/>C:\WINDOWS\system32\spoolsv.exe <br/>C:\Program Files\a-squared Free\a2service.exe <br/>C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe <br/>C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe <br/>C:\WINDOWS\system32\crypserv.exe <br/>C:\Program Files\Hotspot Shield\bin\openvpnas.exe <br/>C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe <br/>C:\Program Files\Java\jre6\bin\jqs.exe <br/>C:\PROGRA~1\AVG\AVG8\avgam.exe <br/>C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe <br/>C:\PROGRA~1\AVG\AVG8\avgrsx.exe <br/>C:\PROGRA~1\AVG\AVG8\avgnsx.exe <br/>C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe <br/>C:\WINDOWS\system32\svchost.exe <br/>C:\WINDOWS\System32\WLTRYSVC.EXE <br/>C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe <br/>C:\WINDOWS\System32\bcmwltry.exe <br/>C:\WINDOWS\system32\ctfmon.exe <br/>C:\Program Files\lg_fwupdate\fwupdate.exe <br/>C:\Program Files\ATI Technologies\ATI.ACE\cli.exe <br/>C:\Program Files\Ahead\InCD\InCD.exe <br/>C:\Program Files\QuickTime\qttask.exe <br/>C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe <br/>C:\WINDOWS\system32\WLTRAY.exe <br/>C:\Program Files\Common Files\Real\Update_OB\realsched.exe <br/>C:\Program Files\Java\jre6\bin\jusched.exe <br/>C:\Program Files\DC1300\DCMnt1_0\DC1300mi.exe <br/>C:\Program Files\SmartVoip.com\SmartVoip\SmartVoip.exe <br/>C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe <br/>C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe <br/>C:\Program Files\PC Connectivity Solution\ServiceLayer.exe <br/>C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe <br/>C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe <br/>C:\Program Files\ATI Technologies\ATI.ACE\cli.exe <br/>C:\Program Files\ATI Technologies\ATI.ACE\cli.exe <br/>C:\WINDOWS\system32\notepad.exe <br/>C:\WINDOWS\explorer.exe <br/>C:\Program Files\internet explorer\iexplore.exe <br/>C:\Program Files\Windows Live\Toolbar\wltuser.exe <br/>C:\Documents and Settings\Kumar\Desktop\FIX\HijackThis.exe <br/>C:\WINDOWS\System32\NOTEPAD.EXE <br/>R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.icicidirect.com/ <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html <br/>R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 <br/>R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 <br/>R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com <br/>R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local <br/>R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll <br/>R3 - URLSearchHook: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMult.dll <br/>R3 - URLSearchHook: Hotspot Shield Toolbar - {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files\Hotspot_Shield\tbHot1.dll <br/>O1 - Hosts: 62.189.6.78 _sip._tls.sip1.callserve.com <br/>O1 - Hosts: 62.189.6.78 _sip._ssl.sip1.callserve.com <br/>O1 - Hosts: 62.189.6.79 _sip._tls.sip2.callserve.com <br/>O1 - Hosts: 62.189.6.79 _sip._ssl.sip2.callserve.com <br/>O1 - Hosts: 62.189.6.85 _sip._tls.sip5.phoneserve.com <br/>O1 - Hosts: 62.189.6.85 _sip._ssl.sip5.phoneserve.com <br/>O1 - Hosts: 62.189.6.86 _sip._tls.sip6.phoneserve.com <br/>O1 - Hosts: 62.189.6.86 _sip._ssl.sip6.phoneserve.com <br/>O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll <br/>O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll <br/>O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL <br/>O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll <br/>O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll <br/>O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) <br/>O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll <br/>O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll <br/>O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll <br/>O2 - BHO: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - (no file) <br/>O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll <br/>O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll <br/>O2 - BHO: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMult.dll <br/>O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\en-us\msntb.dll <br/>O2 - BHO: Hotspot Shield Toolbar - {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files\Hotspot_Shield\tbHot1.dll <br/>O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll <br/>O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll <br/>O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll <br/>O2 - BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\hssie\HssIE.dll <br/>O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\YTSingleInstance.dll <br/>O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll <br/>O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\en-us\msntb.dll <br/>O3 - Toolbar: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMult.dll <br/>O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll <br/>O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll <br/>O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll <br/>O3 - Toolbar: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - (no file) <br/>O3 - Toolbar: Hotspot Shield Toolbar - {c95a4e8e-816d-4655-8c79-d736da1adb6d} - C:\Program Files\Hotspot_Shield\tbHot1.dll <br/>O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe <br/>O4 - HKLM\..\Run: [LGODDFU] "C:\Program Files\lg_fwupdate\fwupdate.exe" blrun <br/>O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay <br/>O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe <br/>O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime <br/>O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe" <br/>O4 - HKLM\..\Run: [U.S. Robotics Wireless Manager UI] C:\WINDOWS\system32\WLTRAY <br/>O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot <br/>O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" <br/>O4 - HKLM\..\Run: [DC1300 Monitor] C:\Program Files\DC1300\DCMnt1_0\DC1300mi.exe <br/>O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe <br/>O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet <br/>O4 - HKCU\..\Run: [SmartVoip] "C:\Program Files\SmartVoip.com\SmartVoip\SmartVoip.exe" -nosplash -minimized <br/>O4 - HKCU\..\Run: [FreeCall] "C:\Program Files\FreeCall.com\FreeCall\FreeCall.exe" -nosplash -minimized <br/>O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray <br/>O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized <br/>O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\Shockwave 11\SwHelper_1150595.exe -Update -1150595 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Embedded Web Browser from: http://bsalsa.com/; yie8)" -"http://www8.agame.com/games/shockwave/b/beach_trends/beach_trends_3d_girlsgogames_com.html" <br/>O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM') <br/>O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user') <br/>O4 - Startup: BSEGadget.lnk = ? <br/>O4 - Startup: GameRanger.lnk = C:\Documents and Settings\Kumar\Application Data\GameRanger\GameRanger\GameRanger.exe <br/>O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm <br/>O8 - Extra context menu item: Add to AMV Convert Tool... - E:\AMVConverter\grab.html <br/>O8 - Extra context menu item: Add to AMV Converter... - E:\AMVConverter\grab.html <br/>O8 - Extra context menu item: Add to Media Manager... - E:\MediaManager\grab.html <br/>O8 - Extra context menu item: Download with Rapget - E:\RAPIDSHARE\rapget.htm <br/>O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 <br/>O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm <br/>O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm <br/>O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm <br/>O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll <br/>O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll <br/>O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file) <br/>O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL <br/>O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe (file missing) <br/>O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe (file missing) <br/>O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file) <br/>O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\WINDOWS\system32\shdocvw.dll <br/>O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\WINDOWS\system32\shdocvw.dll <br/>O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe <br/>O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe <br/>O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll <br/>O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab <br/>O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll <br/>O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL <br/>O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll <br/>O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe <br/>O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe <br/>O23 - Service: Ares Chatroom server (AresChatServer) - Unknown owner - C:\Program Files\Ares\chatServer.exe (file missing) <br/>O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe <br/>O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe <br/>O23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe <br/>O23 - Service: Google Update Service (gupdate1c98d1694510c4a) (gupdate1c98d1694510c4a) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe <br/>O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe <br/>O23 - Service: HDD & SSD access service - Unknown owner - C:\Program Files\Common Files\BinarySense\disksvc.exe (file missing) <br/>O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe <br/>O23 - Service: Hotspot Shield Routing Service (HssSrv) - AnchorFree Inc. - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe <br/>O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE <br/>O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe <br/>O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe <br/>O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe <br/>O23 - Service: LogMeIn - Unknown owner - C:\Program Files\LogMeIn\x86\LogMeIn.exe (file missing) <br/>O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe <br/>O23 - Service: U.S. Robotics Wireless LAN Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE <br/>O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe <br/>O24 - Desktop Component 0: (no name) - https://mail.amanabuildings.com/exchange/pratoshkumar.dave/Inbox/FW:%20Swami%20Vivekanand%20-%20Golden%20words.EML/1_multipart/image001.jpg?Security=2 <br/>-- <br/>End of file - 15023 bytes <br/></PRE>
Posted 8/8/2009 11:37 PM
#75843
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
Hello petlad, <br/> <br/> <br/>I am trying to figure out what is different about your post here. Did you enclose the entire reply using the "Code" function? If so, please don't. As posted it creates a very sever left-right scroll to my browser. So bad that I won't be able to review the logs as posted. Or reply, since it just types on endlessly while scrolling. <br/> <br/>If you would like me to help there I will need you to either click the small pencil icon above your last post, and undo whatever it is you did to make it appear this way, or start an entirely new thread.
Posted 8/9/2009 1:56 PM
#75863
User avatar

petlad Advanced member

Date Joined Nov 2016
Total Posts: 31
Dear Jintan , <br/>No I did not use code function. <br/>What i did was I saved logs in notepad pasting one below other and than copy paste whole thing here. <br/>However I will redo it . I was also confused when i saw preview sorry for inconvenience. Posting the whole as new post bit later <br/> <br/>Thanks again. <br/> <br/>Petlad
Posted 8/9/2009 6:49 PM
#75872
User avatar

Jintan Advanced member

Date Joined Nov 2016
Total Posts: 1049
I had Touch check, but he does not seem to have problems in his browsers. This is the problem line. <br/>Due to the way the characters are set it does not "wrap" to a second or more lines: <br/> <br/>O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\Shockwave 11\SwHelper_1150595.exe -Update -1150595 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Embedded Web Browser from: http://bsalsa.com/; yie8)" -"http://www8.agame.com/games/shockwave/b/beach_trends/beach_trends_3d_girlsgogames_com.html" <br/> <br/>If you use the pencil icon upper right corner of your earlier post, perhaps you can choose some random places <br/> on that long entry, click your cursor on that and then press Enter. This will force a line break. <br/>May have to do it a few times to trim that one long like down. <br/> <br/>Example: <br/> <br/>O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\Shockwave 11\SwHelper_1150595.exe <br/> -Update -1150595 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Embedded Web Browser from: http://bsalsa.com/; yie8)" <br/> -"http://www8.agame.com/games/shockwave/b/beach_trends/beach_trends_3d_girlsgogames_com.html" <br/> <br/>Then I will remove my long line example in this post and things should be corrected.
  • Unread posts or replies
  • No unread posts or replies
  • Unread Posts (Read Only Forum)
  • No Unread Posts (Read Only Forum)

Forum Information

Currently it is Tuesday, December 6, 2016, 6:55 PM (GMT +1)
There are a total of 61,160 posts in 13,449 threads.
In the last 3 days there were 0 new threads and 0 reply posts.

Who's online

This forum has 37,965 registered members. Please welcome our newest member, Old shape.
There are currently no users on-line.