Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

After restart computer has been running unbelievably slow ever since


  • This topic is locked This topic is locked
6 replies to this topic

#1 hoithere

hoithere

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:10:01 PM

Posted 13 June 2010 - 03:01 PM

My computer was running fine but began to crash and has since been running slow. The first issues that seemed to precede this was my USB mouse stopping working yet working on another PC. There was once or twice a blue screen and error messages that I searched for but came up with nothing relevant and since there has been no signs of this for a while I have forgot exactly what the errors are and not sure if they are relevant. I've done numerous (painfully slow) scans and a defrag but no abnormal results or improvements so far. I've done a Dell diagnostic to check the memory and can't see anything wrong there either. I was 4 or 5 hours into a GMER scan just before writing this but it locked up and restarted my computer so I may try again tonight but for now I am going to put the other logs here. I'm currently doing a SUPERantispyware scan right now and will post log when finished tomorrow.


DDS (Ver_10-03-17.01) - NTFSx86
Run by James at 20:29:28.71 on 13/06/2010
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_20
Microsoft Windows XP Professional 5.1.2600.3.1252.44.1033.18.1918.1233 [GMT 1:00]

AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\WINDOWS\system32\emaudsv.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Sandboxie\SbieSvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\UPHClean\uphclean.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\WLTRAY.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
svchost.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\James\Desktop\Diagnose\dds.scr

============== Pseudo HJT Report ===============

uStart Page = about:blank
uInternet Connection Wizard,ShellNext = hxxp://partnerpage.google.com/smallbiz.dell.com/en_uk?hl=en&client=dell-usuk&channel=uk-smb&ibd=5080113
uInternet Settings,ProxyOverride = *.local
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.3572\swg.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
mRun: [amd_dc_opt] c:\program files\amd\dual-core optimizer\amd_dc_opt.exe
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRun: [avast5] c:\progra~1\alwils~1\avast5\avastUI.exe /nogui
uPolicies-explorer: NoWelcomeScreen = 1 (0x1)
mPolicies-explorer: NoWelcomeScreen = 1 (0x1)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
Trusted Zone: o2.co.uk\*.broadband
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {D4003189-95B1-4A2F-9A87-F2B03665960D} - hxxp://www.vexcast.com/download/vexcast.cab
DPF: {DAF7E6E6-D53A-439A-B28D-12271406B8A9} - hxxp://mobileapps.blackberry.com/devicesoftware/AxLoader.cab
DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - hxxp://zone.msn.com/bingame/popcaploader_v10.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\xobni\Skype4COM.dll
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\james\applic~1\mozilla\firefox\profiles\e8ydp80o.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://en-GB.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:en-GB:official
FF - prefs.js: keyword.URL -
FF - component: c:\documents and settings\james\application data\mozilla\firefox\profiles\e8ydp80o.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\FFExternalAlert.dll
FF - component: c:\documents and settings\james\application data\mozilla\firefox\profiles\e8ydp80o.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\RadioWMPCore.dll
FF - plugin: c:\documents and settings\james\application data\facebook\npfbplugin_1_0_3.dll
FF - plugin: c:\documents and settings\james\local settings\application data\google\update\1.2.145.5\npGoogleOneClick8.dll
FF - plugin: c:\program files\common files\research in motion\bbwebsllauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\google updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\google\update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\NPinfotl.dll
FF - plugin: c:\program files\veetle\player\npvlc.dll
FF - plugin: c:\program files\veetle\plugins\npVeetle.dll
FF - plugin: c:\program files\veetle\vlcbroadcast\npvbp.dll
FF - plugin: c:\program files\virtual earth 3d\npVE3D.dll
FF - plugin: c:\windows\system32\npnipp.dll
FF - plugin: c:\windows\system32\NPSWF32.dll
FF - plugin: c:\windows\system32\npwmsdrm.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);

============= SERVICES / DRIVERS ===============

R0 atiide;atiide;c:\windows\system32\drivers\atiide.sys [2008-1-13 3456]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2008-4-3 164048]
R1 nipplpt2;Novell iCapture Lpt Redirector 2;c:\windows\system32\drivers\nipplpt.sys [2009-1-7 34593]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-4-3 19024]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-6-7 40384]
R2 emaudsv;E-MU Audio Service;c:\windows\system32\emaudsv.exe [2007-11-26 20992]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2010-2-12 304464]
R2 SBKUPNT;SBKUPNT;c:\windows\system32\drivers\SBKUPNT.SYS [2010-1-28 14976]
R3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1;c:\windows\system32\drivers\libusb0.sys [2008-3-3 28672]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\drivers\ManyCam.sys [2008-1-14 21632]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-2-12 20952]
R3 SbieDrv;SbieDrv;c:\program files\sandboxie\SbieDrv.sys [2010-4-17 115944]
S3 ADM851X;ADM851X USB To Fast Ethernet Adapter;c:\windows\system32\drivers\adm851x.sys --> c:\windows\system32\drivers\ADM851X.SYS [?]
S3 avast! Mail Scanner;avast! Mail Scanner;c:\program files\alwil software\avast5\AvastSvc.exe [2010-6-7 40384]
S3 avast! Web Scanner;avast! Web Scanner;c:\program files\alwil software\avast5\AvastSvc.exe [2010-6-7 40384]
S3 emusba10;E-MU USB-Audio 1.0 Driver;c:\windows\system32\drivers\emusba10.sys [2007-11-26 163352]
S3 KernelMemory;KernelMemory;c:\documents and settings\james\desktop\yapm\KernelMemory.sys [2009-8-17 2432]
S3 sbusb;TOSHIBA Multimedia Center Driver(Powered by Creative);c:\windows\system32\drivers\sbusb.sys --> c:\windows\system32\drivers\sbusb.sys [?]
S3 XPADFL02;XPAD Filter Service 02;c:\windows\system32\drivers\xPADFL02.sys [2008-3-10 27904]
S4 bluCTRLService;bluCTRLService;c:\program files\bluctrl\bluctrl receiver\bluCTRLService.exe [2008-12-19 7168]
S4 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2009-11-11 135664]
S4 libusbd;LibUsb-Win32 - Daemon, Version 0.1.10.1;system32\libusbd-nt.exe --> system32\libusbd-nt.exe [?]

=============== Created Last 30 ================

2010-06-13 11:20:28 0 d-----w- c:\program files\CodeStuff
2010-06-13 11:13:31 20 ----a-w- c:\documents and settings\james\defogger_reenable
2010-06-13 10:53:28 25992 ----a-w- c:\windows\system32\pgdfgsvc.exe
2010-06-12 01:00:41 0 d-----r- C:\Sandbox
2010-06-12 01:00:13 1356 ----a-w- c:\windows\Sandboxie.ini
2010-06-12 00:59:08 0 d-----w- c:\program files\Sandboxie
2010-06-12 00:20:37 0 d-----w- c:\documents and settings\james\DoctorWeb
2010-06-11 16:22:02 23 --sha-w- c:\windows\system32\edacded0.dat
2010-06-11 16:22:02 23 ----a-w- c:\windows\system32\bcdadac7.xml
2010-06-11 16:21:24 0 d-----w- c:\program files\jv16 PowerTools 2009
2010-06-11 09:56:12 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2010-06-10 18:54:27 0 d-----w- C:\Lost
2010-06-10 16:13:33 0 d-----w- c:\program files\The KMPlayer
2010-06-10 16:11:47 0 d-----w- c:\program files\Softonic-Eng7
2010-06-07 14:08:39 0 d-----w- c:\docume~1\alluse~1\applic~1\Alwil Software
2010-06-06 17:48:33 0 d-----w- c:\program files\Brain Workshop
2010-06-02 12:22:25 90112 ------w- c:\windows\Updreg.EXE
2010-06-02 11:14:20 0 d-----w- c:\program files\Creative Professional
2010-05-24 09:52:24 218 ----a-w- c:\documents and settings\james\.recently-used.xbel
2010-05-23 10:17:23 0 d-----w- c:\docume~1\james\applic~1\GrooveWalrus
2010-05-23 10:17:02 0 d-----w- c:\program files\GrooveWalrus
2010-05-20 12:28:54 0 d-----w- c:\docume~1\alluse~1\applic~1\regid.1986-12.com.adobe
2010-05-20 11:19:53 0 d-----w- C:\photoshop
2010-05-18 11:33:41 0 d-----w- c:\docume~1\james\applic~1\Hypercosm
2010-05-18 11:15:27 1073152 ----a-w- c:\windows\system32\FreeImage.dll

==================== Find3M ====================

2010-05-10 16:06:47 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-05-05 13:30:57 173056 ----a-w- c:\windows\system32\dllcache\ie4uinit.exe
2010-05-02 05:22:50 1851264 ----a-w- c:\windows\system32\win32k.sys
2010-05-02 05:22:50 1851264 ------w- c:\windows\system32\dllcache\win32k.sys
2010-04-29 14:39:38 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-29 14:39:26 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-26 14:58:12 256512 ----a-w- c:\windows\PEV.exe
2010-04-25 15:53:58 323624 ----a-w- c:\windows\system32\wiaaut.dll
2010-04-20 05:30:08 285696 ----a-w- c:\windows\system32\dllcache\atmfd.dll
2010-04-20 05:30:08 285696 ----a-w- c:\windows\system32\atmfd.dll
2010-04-17 15:46:21 1594531 ----a-w- c:\windows\WANEUninstaller.exe
2010-04-06 03:52:46 2462720 ----a-w- c:\windows\system32\dllcache\WMVCore.dll
2010-03-31 01:58:04 133616 -c----w- c:\windows\system32\pxafs.dll
2010-03-31 01:58:04 125424 -c----w- c:\windows\system32\pxinsi64.exe
2010-03-28 20:40:13 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2010-03-27 02:51:57 262144 ----a-w- c:\windows\system32\default_user_class.dat
2006-03-20 14:37:50 5689344 ----a-w- c:\program files\Media Player Classic.exe
2008-12-01 11:55:57 32768 -csha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008120120081202\index.dat

============= FINISH: 20:30:04.04 ===============


Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4189

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

11/06/2010 23:48:06
mbam-log-2010-06-11 (23-48-06).txt

Scan type: Full scan (C:\|)
Objects scanned: 281929
Time elapsed: 8 hour(s), 20 minute(s), 59 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


I did a combofix scan before realising that it's not recommended until advised but here's the log anyway.

ComboFix 10-06-10.04 - James 11/06/2010 14:59:53.2.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.44.1033.18.1918.1396 [GMT 1:00]
Running from: c:\documents and settings\James\Desktop\ComboFix.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\Data
c:\windows\system32\st325602.dll

.
((((((((((((((((((((((((( Files Created from 2010-05-11 to 2010-06-11 )))))))))))))))))))))))))))))))
.

2010-06-11 09:56 . 2010-05-06 10:41 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2010-06-10 18:54 . 2010-06-10 19:22 -------- d-----w- C:\Lost
2010-06-10 16:13 . 2010-06-10 16:15 -------- d-----w- c:\program files\The KMPlayer
2010-06-10 16:11 . 2010-06-10 16:11 -------- d-----w- c:\documents and settings\James\Local Settings\Application Data\Softonic-Eng7
2010-06-10 16:11 . 2010-06-10 16:11 -------- d-----w- c:\program files\Softonic-Eng7
2010-06-07 14:08 . 2010-06-07 14:08 -------- d-----w- c:\documents and settings\All Users\Application Data\Alwil Software
2010-06-06 17:48 . 2010-06-06 17:48 -------- d-----w- c:\program files\Brain Workshop
2010-06-04 00:11 . 2010-06-04 00:11 56765 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DivXPlusShortcuts\Uninstaller.exe
2010-06-04 00:11 . 2010-06-04 00:11 56997 ----a-w- c:\documents and settings\All Users\Application Data\DivX\WebPlayer\Uninstaller.exe
2010-06-04 00:11 . 2010-06-04 00:11 53600 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Update\Uninstaller.exe
2010-06-04 00:10 . 2010-06-04 00:10 57715 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Player\Uninstaller.exe
2010-06-04 00:10 . 2010-06-04 00:10 54153 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DFXPlugin\Uninstaller.exe
2010-06-04 00:10 . 2010-06-04 00:10 54128 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Converter\Uninstaller.exe
2010-06-04 00:10 . 2010-06-04 00:10 54644 ----a-w- c:\documents and settings\All Users\Application Data\DivX\TranscodeEngine\Uninstaller.exe
2010-06-04 00:10 . 2010-06-04 00:10 54101 ----a-w- c:\documents and settings\All Users\Application Data\DivX\MPEG2Plugin\Uninstaller.exe
2010-06-02 12:22 . 2000-05-11 00:00 90112 ------w- c:\windows\Updreg.EXE
2010-06-02 11:14 . 2010-06-03 13:38 -------- d-----w- c:\program files\Creative Professional
2010-05-23 10:17 . 2010-05-23 10:43 -------- d-----w- c:\documents and settings\James\Local Settings\Application Data\GrooveWalrus
2010-05-23 10:17 . 2010-05-23 10:48 -------- d-----w- c:\documents and settings\James\Application Data\GrooveWalrus
2010-05-23 10:17 . 2010-06-10 17:12 -------- d-----w- c:\program files\GrooveWalrus
2010-05-22 13:21 . 2010-05-22 13:21 503808 ----a-w- c:\documents and settings\James\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-7cf8108b-n\msvcp71.dll
2010-05-22 13:21 . 2010-05-22 13:21 499712 ----a-w- c:\documents and settings\James\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-7cf8108b-n\jmc.dll
2010-05-22 13:21 . 2010-05-22 13:21 348160 ----a-w- c:\documents and settings\James\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-7cf8108b-n\msvcr71.dll
2010-05-22 13:21 . 2010-05-22 13:21 61440 ----a-w- c:\documents and settings\James\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-41ce4f0e-n\decora-sse.dll
2010-05-22 13:21 . 2010-05-22 13:21 12800 ----a-w- c:\documents and settings\James\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-41ce4f0e-n\decora-d3d.dll
2010-05-20 12:28 . 2010-05-20 12:38 -------- d-----w- c:\documents and settings\All Users\Application Data\regid.1986-12.com.adobe
2010-05-20 12:19 . 2010-05-20 12:19 -------- d-----w- c:\program files\Adobe Media Player
2010-05-20 11:19 . 2010-05-20 11:19 -------- d-----w- C:\photoshop
2010-05-18 11:33 . 2010-05-18 11:33 -------- d-----w- c:\documents and settings\James\Application Data\Hypercosm
2010-05-18 11:15 . 2006-07-16 15:48 1073152 ----a-w- c:\windows\system32\FreeImage.dll
2010-05-14 16:17 . 2010-05-14 16:24 -------- d-----w- c:\documents and settings\All Users\Application Data\Soulseek
2010-05-14 16:10 . 2010-05-14 16:10 -------- d-----w- c:\program files\SoulseekNS
2010-05-13 20:00 . 2010-05-13 20:01 -------- d-----w- c:\documents and settings\James\Local Settings\Application Data\Songbird2
2010-05-13 20:00 . 2010-05-13 20:00 -------- d-----w- c:\documents and settings\James\Application Data\Songbird2
2010-05-13 15:30 . 2010-05-13 15:30 -------- d-----w- c:\documents and settings\James\Local Settings\Application Data\Conduit
2010-05-13 15:30 . 2010-05-13 15:30 -------- d-----w- c:\program files\Conduit
2010-05-13 15:30 . 2010-03-16 10:33 52224 ----a-w- c:\documents and settings\James\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\FFExternalAlert.dll
2010-05-13 15:30 . 2010-03-16 10:33 101376 ----a-w- c:\documents and settings\James\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\RadioWMPCore.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-06-11 12:56 . 2008-02-02 12:29 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2010-06-11 11:23 . 2008-02-17 17:31 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2010-06-11 11:08 . 2008-01-25 21:48 -------- d-----w- c:\documents and settings\James\Application Data\Media Player Classic
2010-06-11 10:54 . 2009-01-25 15:32 -------- d-----w- c:\program files\CCleaner
2010-06-10 18:15 . 2008-01-13 10:38 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-06-10 17:13 . 2010-01-18 14:31 188152 ----a-w- c:\documents and settings\James\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\FlashGot.exe
2010-06-10 17:00 . 2008-02-11 19:56 -------- d-----w- c:\program files\Common Files\Adobe
2010-06-10 10:40 . 2010-01-18 12:30 -------- d-----w- c:\program files\JDownloader
2010-06-10 08:49 . 2009-04-14 08:50 -------- d-----w- c:\documents and settings\James\Application Data\Spotify
2010-06-08 21:29 . 2008-10-10 13:50 -------- d-----w- c:\documents and settings\James\Application Data\dvdcss
2010-06-08 11:02 . 2008-01-22 22:20 -------- d-----w- c:\program files\Alwil Software
2010-06-05 06:41 . 2008-08-13 20:34 -------- d-----w- c:\program files\Microsoft Silverlight
2010-06-04 21:57 . 2009-01-04 17:02 -------- d-----w- c:\documents and settings\James\Application Data\DivX
2010-06-04 00:11 . 2010-05-11 09:10 -------- d-----w- c:\documents and settings\All Users\Application Data\DivX
2010-06-04 00:11 . 2010-05-11 09:25 57344 ----a-w- c:\documents and settings\All Users\Application Data\DivX\RunAsUser\RUNASUSERPROCESS.dll
2010-06-04 00:11 . 2009-09-30 17:15 -------- d-----w- c:\program files\Common Files\DivX Shared
2010-06-04 00:11 . 2008-12-30 12:23 -------- d-----w- c:\program files\DivX
2010-06-04 00:00 . 2010-05-11 09:18 1062184 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Setup\Resource.dll
2010-06-04 00:00 . 2010-05-11 09:18 895256 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Setup\DivXSetup.exe
2010-06-03 16:31 . 2009-07-21 20:55 -------- d-----w- c:\documents and settings\James\Application Data\foobar2000
2010-06-02 12:10 . 2008-01-22 21:54 -------- d-----w- c:\documents and settings\James\Application Data\uTorrent
2010-05-24 09:52 . 2009-01-04 17:26 -------- d-----w- c:\documents and settings\James\Application Data\gtk-2.0
2010-05-20 12:38 . 2008-01-13 10:48 73976 -c--a-w- c:\documents and settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-05-20 12:16 . 2009-05-09 14:45 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-05-15 06:08 . 2008-01-22 21:54 -------- d-----w- c:\program files\uTorrent
2010-05-13 19:55 . 2009-11-27 13:20 -------- d-----w- c:\program files\MediaMonkey
2010-05-13 15:30 . 2008-04-23 19:29 -------- d-----w- c:\program files\TVAnts
2010-05-11 09:16 . 2010-05-11 09:16 84040 ----a-w- c:\documents and settings\All Users\Application Data\DivX\TransferWizard\Uninstaller.exe
2010-05-11 09:16 . 2010-05-11 09:16 57054 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DSDesktopComponents\Uninstaller.exe
2010-05-11 09:16 . 2010-05-11 09:16 54166 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DSAVCDecoder\Uninstaller.exe
2010-05-11 09:16 . 2010-05-11 09:16 57532 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DSASPDecoder\Uninstaller.exe
2010-05-11 09:16 . 2010-05-11 09:16 56458 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DivXDecoderShortcut\Uninstaller.exe
2010-05-11 09:16 . 2010-05-11 09:16 54174 ----a-w- c:\documents and settings\All Users\Application Data\DivX\DSAACDecoder\Uninstaller.exe
2010-05-11 09:15 . 2010-05-11 09:15 57409 ----a-w- c:\documents and settings\All Users\Application Data\DivX\ControlPanel\Uninstaller.exe
2010-05-11 09:15 . 2010-05-11 09:15 52963 ----a-w- c:\documents and settings\All Users\Application Data\DivX\MSVC80CRTRedist\Uninstaller.exe
2010-05-11 09:13 . 2010-05-11 09:13 54073 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Qt4.5\Uninstaller.exe
2010-05-11 09:12 . 2010-05-11 09:12 56969 ----a-w- c:\documents and settings\All Users\Application Data\DivX\ASPEncoder\Uninstaller.exe
2010-05-10 16:07 . 2010-05-10 16:07 -------- d-----w- c:\program files\Common Files\Java
2010-05-10 16:06 . 2010-04-20 12:08 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-05-10 16:02 . 2008-01-13 10:32 -------- d-----w- c:\program files\Java
2010-05-10 09:52 . 2010-05-10 09:52 282624 ----a-w- c:\documents and settings\James\Application Data\Spotify\Gracenote\gnsdk_musicid_file.dll
2010-05-10 09:52 . 2010-05-10 09:52 655360 ----a-w- c:\documents and settings\James\Application Data\Spotify\Gracenote\gnsdk_sdkmanager.dll
2010-05-10 09:52 . 2010-05-10 09:52 208896 ----a-w- c:\documents and settings\James\Application Data\Spotify\Gracenote\gnsdk_dsp.dll
2010-05-07 15:30 . 2008-01-29 22:42 -------- d-----w- c:\program files\The GodFather
2010-05-06 20:59 . 2008-01-22 22:21 38848 ----a-w- c:\windows\system32\avastSS.scr
2010-05-06 20:59 . 2008-01-22 22:20 165032 ----a-w- c:\windows\system32\aswBoot.exe
2010-05-06 20:39 . 2008-01-22 22:21 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-05-06 20:39 . 2008-04-03 17:24 164048 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-05-06 20:34 . 2008-01-22 22:21 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-05-06 20:33 . 2008-01-22 22:21 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-05-06 20:33 . 2008-01-22 22:21 94800 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-05-06 20:33 . 2008-04-03 17:24 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-05-06 20:33 . 2008-01-22 22:21 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-05-06 10:41 . 2004-08-11 17:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-05-06 09:43 . 2009-01-05 17:38 -------- d-----w- c:\program files\Paint.NET
2010-05-02 18:34 . 2008-01-13 10:40 -------- d-----w- c:\program files\Google
2010-05-02 10:37 . 2010-02-12 00:59 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-04-30 12:39 . 2010-04-30 12:20 -------- d-----w- c:\program files\ManyCam 2.4
2010-04-30 12:39 . 2010-04-30 12:21 -------- d-----w- c:\documents and settings\James\Application Data\ManyCam
2010-04-29 14:39 . 2010-02-12 00:59 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-29 14:39 . 2010-02-12 00:59 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-27 10:29 . 2008-01-22 22:00 -------- d-----w- c:\program files\Apple Software Update
2010-04-25 15:53 . 2010-04-25 15:53 323624 ----a-w- c:\windows\system32\wiaaut.dll
2010-04-25 14:50 . 2008-01-22 21:59 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple
2010-04-25 14:18 . 2010-04-25 14:17 -------- d-----w- c:\documents and settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2010-04-25 14:18 . 2008-01-22 22:00 -------- d-----w- c:\program files\iTunes
2010-04-25 14:17 . 2010-04-25 14:17 -------- d-----w- c:\program files\iPod
2010-04-25 14:17 . 2008-01-22 21:59 -------- d-----w- c:\program files\Common Files\Apple
2010-04-25 14:14 . 2010-04-25 14:13 -------- d-----w- c:\program files\QuickTime
2010-04-25 14:08 . 2010-04-25 14:08 -------- d-----w- c:\program files\Bonjour
2010-04-25 14:05 . 2010-04-25 14:05 73000 ----a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 9.1.0.79\SetupAdmin.exe
2010-04-24 12:28 . 2008-03-26 19:55 -------- d-----w- c:\program files\SopCast
2010-04-24 09:32 . 2010-04-24 09:28 -------- d-----w- c:\program files\TagRename
2010-04-20 14:25 . 2010-04-20 14:25 -------- d-----w- c:\program files\ExtractNow
2010-04-20 12:08 . 2010-04-20 12:08 503808 ----a-w- c:\documents and settings\James\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-717d1bd1-n\msvcp71.dll
2010-04-20 12:08 . 2010-04-20 12:08 499712 ----a-w- c:\documents and settings\James\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-717d1bd1-n\jmc.dll
2010-04-20 12:08 . 2010-04-20 12:08 348160 ----a-w- c:\documents and settings\James\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-717d1bd1-n\msvcr71.dll
2010-04-20 12:08 . 2010-04-20 12:08 61440 ----a-w- c:\documents and settings\James\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-7e0df447-n\decora-sse.dll
2010-04-20 12:08 . 2010-04-20 12:08 12800 ----a-w- c:\documents and settings\James\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-7e0df447-n\decora-d3d.dll
2010-04-20 05:30 . 2004-08-11 17:00 285696 ----a-w- c:\windows\system32\atmfd.dll
2010-04-17 17:57 . 2010-02-27 17:47 -------- d-----w- c:\program files\Veetle
2010-04-17 15:46 . 2010-04-17 15:46 1594531 ----a-w- c:\windows\WANEUninstaller.exe
2010-04-16 16:57 . 2009-01-19 15:45 -------- d-----w- c:\program files\MixMeister Fusion
2010-04-08 23:00 . 2008-01-18 16:37 73976 -c--a-w- c:\documents and settings\James\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-03-31 01:58 . 2008-01-22 22:51 133616 -c----w- c:\windows\system32\pxafs.dll
2010-03-31 01:58 . 2007-05-01 16:48 125424 -c----w- c:\windows\system32\pxinsi64.exe
2010-03-31 01:58 . 2007-05-01 03:00 44944 ------w- c:\windows\system32\drivers\pxhelp20.sys
2010-03-28 20:40 . 2010-03-28 20:09 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll
2010-03-27 02:51 . 2010-03-27 02:51 262144 ----a-w- c:\windows\system32\default_user_class.dat
2010-03-21 19:51 . 2010-03-21 19:51 50354 ----a-w- c:\documents and settings\James\Application Data\Facebook\uninstall.exe
2006-03-20 14:37 . 2008-01-26 16:50 5689344 ----a-w- c:\program files\Media Player Classic.exe
.

------- Sigcheck -------

[-] 2009-01-25 . D24EA301E2B36C4E975FD216CA85D8E7 . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2009-01-25 . 8E036EEC565910417EA020CE0962AA24 . 361344 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tcpip.sys
[-] 2009-01-25 . D24EA301E2B36C4E975FD216CA85D8E7 . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[7] 2008-06-20 . 2A5554FC5B1E04E131230E3CE035C3F9 . 360320 . . [5.1.2600.3394] . . c:\windows\$NtServicePackUninstall$\tcpip.sys
[7] 2008-06-20 . 744E57C99232201AE98C49168B918F48 . 360960 . . [5.1.2600.3394] . . c:\windows\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[-] 2007-10-30 . 64798ECFA43D78C7178375FCDD16D8C8 . 360832 . . [5.1.2600.3244] . . c:\windows\$hf_mig$\KB941644\SP2QFE\tcpip.sys
.
((((((((((((((((((((((((((((( SnapShot@2010-02-12_01.16.22 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-04-25 15:53 . 2010-04-25 15:53 51008 c:\windows\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_f0ccd4aa\vcomp90.dll
- 2009-07-12 00:02 . 2009-07-12 00:02 51008 c:\windows\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_f0ccd4aa\vcomp90.dll
+ 2009-07-11 23:02 . 2009-07-11 23:02 59728 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_15fc9313\mfc90rus.dll
+ 2009-07-11 23:02 . 2009-07-11 23:02 42832 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_15fc9313\mfc90kor.dll
+ 2009-07-11 23:02 . 2009-07-11 23:02 43344 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_15fc9313\mfc90jpn.dll
+ 2009-07-11 23:02 . 2009-07-11 23:02 61264 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_15fc9313\mfc90ita.dll
+ 2009-07-11 23:02 . 2009-07-11 23:02 62800 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_15fc9313\mfc90fra.dll
+ 2009-07-11 23:02 . 2009-07-11 23:02 61760 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_15fc9313\mfc90esp.dll
+ 2009-07-11 23:02 . 2009-07-11 23:02 61776 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_15fc9313\mfc90esn.dll
+ 2009-07-11 23:02 . 2009-07-11 23:02 53568 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_15fc9313\mfc90enu.dll
+ 2009-07-11 23:02 . 2009-07-11 23:02 63296 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_15fc9313\mfc90deu.dll
+ 2009-07-11 23:02 . 2009-07-11 23:02 36688 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_15fc9313\mfc90cht.dll
+ 2009-07-11 23:02 . 2009-07-11 23:02 35648 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_15fc9313\mfc90chs.dll
+ 2009-07-11 23:05 . 2009-07-11 23:05 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_a57c1f53\mfcm90u.dll
+ 2009-07-11 23:05 . 2009-07-11 23:05 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_a57c1f53\mfcm90.dll
+ 2009-06-26 18:10 . 2009-06-26 18:10 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_a57b1f13\mfcm90u.dll
+ 2009-06-26 18:10 . 2009-06-26 18:10 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_a57b1f13\mfcm90.dll
+ 2010-04-25 15:54 . 2010-04-25 15:54 56656 c:\windows\WinSxS\amd64_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_22d6ba8a\vcomp90.dll
- 2009-07-11 22:11 . 2009-07-11 22:11 56656 c:\windows\WinSxS\amd64_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_22d6ba8a\vcomp90.dll
+ 2010-04-30 12:21 . 2008-04-13 23:12 53760 c:\windows\system32\vfwwdm32.dll
+ 2008-01-13 10:31 . 2010-04-21 13:28 46080 c:\windows\system32\tzchange.exe
- 2008-01-13 10:31 . 2009-10-28 15:07 46080 c:\windows\system32\tzchange.exe
+ 2010-06-08 12:24 . 2008-04-13 17:39 23040 c:\windows\system32\ReinstallBackups\0014\DriverFiles\i386\mouclass.sys
+ 2010-06-08 12:24 . 2008-04-13 19:18 52480 c:\windows\system32\ReinstallBackups\0014\DriverFiles\i386\i8042prt.sys
+ 2010-06-03 13:38 . 2008-04-14 00:12 23552 c:\windows\system32\ReinstallBackups\0013\DriverFiles\i386\wdmaud.drv
+ 2010-06-03 13:38 . 2008-04-13 17:45 49408 c:\windows\system32\ReinstallBackups\0013\DriverFiles\i386\stream.sys
+ 2010-06-03 13:38 . 2007-11-26 14:10 20992 c:\windows\system32\ReinstallBackups\0013\DriverFiles\i386\emaudsv.exe
+ 2010-06-03 13:38 . 2007-11-26 14:10 58880 c:\windows\system32\ReinstallBackups\0013\DriverFiles\i386\emasio.dll
+ 2010-06-03 13:38 . 2008-04-13 17:45 60160 c:\windows\system32\ReinstallBackups\0013\DriverFiles\i386\drmk.sys
+ 2010-02-19 12:52 . 2007-01-18 10:24 26496 c:\windows\system32\ReinstallBackups\0011\DriverFiles\RimSerial.sys
+ 2010-04-01 10:33 . 2001-08-17 13:48 12160 c:\windows\system32\ReinstallBackups\0004\DriverFiles\i386\mouhid.sys
+ 2010-04-01 10:33 . 2008-04-13 18:39 23040 c:\windows\system32\ReinstallBackups\0004\DriverFiles\i386\mouclass.sys
- 2008-10-25 15:16 . 2004-08-03 22:58 23040 c:\windows\system32\ReinstallBackups\0004\DriverFiles\i386\mouclass.sys
+ 2007-05-01 16:48 . 2010-03-31 01:58 68080 c:\windows\system32\pxinsa64.exe
+ 2008-01-22 22:51 . 2010-03-31 01:58 72176 c:\windows\system32\pxhpinst.exe
+ 2004-08-11 17:00 . 2010-06-11 10:37 72910 c:\windows\system32\perfc009.dat
+ 2009-11-05 21:17 . 2009-11-05 21:17 11600 c:\windows\system32\mui\0409\mscorees.dll
- 2007-08-13 18:54 . 2009-12-21 19:14 55296 c:\windows\system32\msfeedsbs.dll
+ 2007-08-13 18:54 . 2010-05-06 10:41 55296 c:\windows\system32\msfeedsbs.dll
+ 2010-01-12 05:54 . 2010-01-12 05:54 98304 c:\windows\system32\Macromed\Shockwave 10\SwOnce.dll
- 2008-01-25 20:42 . 2008-01-03 18:22 98304 c:\windows\system32\Macromed\Shockwave 10\SwOnce.dll
+ 2010-01-12 05:54 . 2010-01-12 05:54 86016 c:\windows\system32\Macromed\Shockwave 10\SwMenuX.dll
- 2008-01-25 20:42 . 2008-01-03 18:22 77824 c:\windows\system32\Macromed\Shockwave 10\SwInit.exe
+ 2010-01-12 05:54 . 2010-01-12 05:54 77824 c:\windows\system32\Macromed\Shockwave 10\SwInit.exe
- 2008-01-25 20:42 . 2008-01-03 18:20 24576 c:\windows\system32\Macromed\Shockwave 10\DynaPlayer.dll
+ 2010-01-12 05:54 . 2010-01-12 05:54 24576 c:\windows\system32\Macromed\Shockwave 10\DynaPlayer.dll
+ 2009-12-10 22:50 . 2010-02-14 11:58 84661 c:\windows\system32\Macromed\Flash\uninstall_plugin.exe
- 2009-12-10 22:50 . 2009-12-10 22:50 84661 c:\windows\system32\Macromed\Flash\uninstall_plugin.exe
+ 2008-01-13 10:28 . 2010-02-22 11:31 84507 c:\windows\system32\Macromed\Flash\uninstall_activeX.exe
+ 2004-08-11 17:00 . 2010-05-06 10:41 25600 c:\windows\system32\jsproxy.dll
- 2004-08-11 17:00 . 2009-12-21 19:14 25600 c:\windows\system32\jsproxy.dll
+ 2010-03-09 22:57 . 2008-04-14 00:11 28160 c:\windows\system32\irmon.dll
+ 2007-11-26 14:10 . 2007-11-26 14:10 20992 c:\windows\system32\emaudsv.exe
+ 2007-11-26 14:10 . 2007-11-26 14:10 58880 c:\windows\system32\emasio.dll
+ 2010-04-25 14:08 . 2009-10-16 01:33 41472 c:\windows\system32\DRVSTORE\usbaapl_E0F497D6C8B1C59AEB6422181BF0AFABD8356D47\usbaapl.sys
+ 2010-04-25 14:08 . 2010-03-16 18:53 17408 c:\windows\system32\DRVSTORE\netaapl_F433E854B3FF3BEE74986FDE8E16A64162342BFF\netaapl.sys
+ 2010-04-25 14:18 . 2009-05-18 12:17 26600 c:\windows\system32\DRVSTORE\GEARAspiWD_3B7AACF0636A2C042EB7AD2AFF76D37B27BDD28C\x86\GEARAspiWDM.sys
+ 2010-04-30 12:21 . 2008-04-13 17:46 19200 c:\windows\system32\drivers\WSTCODEC.SYS
+ 2008-01-22 21:59 . 2009-10-16 01:33 41472 c:\windows\system32\drivers\usbaapl.sys
+ 2010-04-30 12:22 . 2008-04-13 17:46 15232 c:\windows\system32\drivers\StreamIP.sys
+ 2010-04-30 12:22 . 2008-04-13 17:46 11136 c:\windows\system32\drivers\SLIP.sys
+ 2009-01-22 21:01 . 2009-01-09 16:18 27136 c:\windows\system32\drivers\RimSerial.sys
+ 2010-04-01 10:07 . 2009-11-11 16:23 27744 c:\windows\system32\drivers\point32.sys
+ 2010-04-30 12:22 . 2008-04-13 17:46 10880 c:\windows\system32\drivers\NdisIP.sys
+ 2010-04-30 12:21 . 2008-04-13 17:46 85248 c:\windows\system32\drivers\NABTSFEC.sys
+ 2008-01-22 21:42 . 2001-08-17 12:48 12160 c:\windows\system32\drivers\mouhid.sys
- 2008-01-22 21:42 . 2001-08-17 13:48 12160 c:\windows\system32\drivers\mouhid.sys
+ 2004-08-03 22:58 . 2008-04-13 17:39 23040 c:\windows\system32\drivers\mouclass.sys
- 2004-08-03 22:58 . 2008-04-13 18:39 23040 c:\windows\system32\drivers\mouclass.sys
+ 2008-01-14 10:06 . 2008-01-14 10:06 21632 c:\windows\system32\drivers\ManyCam.sys
- 2004-08-03 23:14 . 2008-04-13 19:18 52480 c:\windows\system32\drivers\i8042prt.sys
+ 2004-08-03 23:14 . 2008-04-13 18:18 52480 c:\windows\system32\drivers\i8042prt.sys
+ 2008-01-29 11:01 . 2009-12-23 11:03 15664 c:\windows\system32\drivers\GEARAspiWDM.sys
+ 2010-04-30 12:21 . 2008-04-13 17:46 17024 c:\windows\system32\drivers\CCDECODE.sys
+ 2010-03-10 19:29 . 2010-03-10 19:29 94208 c:\windows\system32\dpl100.dll
+ 2010-02-12 10:46 . 2010-02-12 10:46 91424 c:\windows\system32\dnssd.dll
- 2009-08-17 12:15 . 2009-12-21 19:14 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2009-08-17 12:15 . 2010-05-06 10:41 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2010-04-30 12:21 . 2008-04-13 17:46 19200 c:\windows\system32\dllcache\wstcodec.sys
+ 2010-04-30 12:21 . 2008-04-13 23:12 53760 c:\windows\system32\dllcache\vfwwdm32.dll
+ 2010-04-30 12:22 . 2008-04-13 17:46 15232 c:\windows\system32\dllcache\streamip.sys
+ 2010-04-30 12:22 . 2008-04-13 17:46 11136 c:\windows\system32\dllcache\slip.sys
+ 2010-04-30 12:22 . 2008-04-13 17:46 10880 c:\windows\system32\dllcache\ndisip.sys
+ 2010-04-30 12:21 . 2008-04-13 17:46 85248 c:\windows\system32\dllcache\nabtsfec.sys
- 2009-11-27 17:11 . 2009-11-27 17:11 17920 c:\windows\system32\dllcache\msyuv.dll
+ 2004-08-04 00:56 . 2009-11-27 17:11 17920 c:\windows\system32\dllcache\msyuv.dll
+ 2008-01-23 19:35 . 2010-05-06 10:41 55296 c:\windows\system32\dllcache\msfeedsbs.dll
- 2008-01-23 19:35 . 2009-12-21 19:14 55296 c:\windows\system32\dllcache\msfeedsbs.dll
- 2008-01-22 21:42 . 2001-08-17 13:48 12160 c:\windows\system32\dllcache\mouhid.sys
+ 2008-01-22 21:42 . 2001-08-17 12:48 12160 c:\windows\system32\dllcache\mouhid.sys
+ 2004-08-03 22:58 . 2008-04-13 17:39 23040 c:\windows\system32\dllcache\mouclass.sys
+ 2004-08-11 17:00 . 2010-05-06 10:41 25600 c:\windows\system32\dllcache\jsproxy.dll
- 2004-08-11 17:00 . 2009-12-21 19:14 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2004-08-04 00:56 . 2009-11-27 16:07 48128 c:\windows\system32\dllcache\iyuv_32.dll
- 2009-11-27 16:07 . 2009-11-27 16:07 48128 c:\windows\system32\dllcache\iyuv_32.dll
+ 2010-03-09 22:57 . 2008-04-14 00:11 28160 c:\windows\system32\dllcache\irmon.dll
+ 2004-08-03 23:14 . 2008-04-13 18:18 52480 c:\windows\system32\dllcache\i8042prt.sys
- 2010-02-11 23:31 . 2008-04-13 18:46 17024 c:\windows\system32\dllcache\ccdecode.sys
+ 2010-04-30 12:21 . 2008-04-13 17:46 17024 c:\windows\system32\dllcache\ccdecode.sys
+ 2004-08-11 17:00 . 2010-01-13 14:01 86016 c:\windows\system32\dllcache\cabview.dll
+ 2004-08-11 17:00 . 2010-01-13 14:01 86016 c:\windows\system32\cabview.dll
+ 2008-01-13 10:40 . 2006-07-11 16:07 89600 c:\windows\system32\atl71.dll
+ 2010-04-08 12:49 . 2010-04-08 12:49 87716 c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
+ 2010-04-01 12:46 . 2010-04-01 12:46 94208 c:\windows\system32\Adobe\Shockwave 11\SwMenu.dll
+ 2010-04-01 12:09 . 2010-04-01 12:09 79488 c:\windows\system32\Adobe\Shockwave 11\gtapi.dll
+ 2010-04-01 13:01 . 2010-04-01 13:01 65816 c:\windows\system32\Adobe\Director\SWDNLD.EXE
+ 2010-04-07 22:48 . 2010-04-07 22:48 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll
- 2008-07-29 18:16 . 2008-07-29 18:16 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll
+ 2010-03-23 04:31 . 2010-03-23 04:31 30544 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
+ 2010-04-01 10:42 . 2010-04-01 10:42 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Security.dll
+ 2010-03-31 13:51 . 2010-03-31 13:51 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
- 2008-05-27 23:49 . 2008-05-27 23:49 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
+ 2010-03-31 13:51 . 2010-03-31 13:51 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorie.dll
- 2008-05-27 23:49 . 2008-05-27 23:49 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorie.dll
+ 2010-03-31 13:51 . 2010-03-31 13:51 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
- 2008-05-27 23:49 . 2008-05-27 23:49 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
- 2008-05-28 00:30 . 2008-05-28 00:30 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe
+ 2010-03-31 14:32 . 2010-03-31 14:32 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe
- 2003-02-20 19:19 . 2003-02-20 19:19 24576 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_filter.dll
+ 2010-03-31 14:32 . 2010-03-31 14:32 24576 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_filter.dll
+ 2010-05-20 12:19 . 2010-05-20 12:19 22016 c:\windows\Installer\1138f29.msi
+ 2010-05-20 12:17 . 2010-05-20 12:17 22528 c:\windows\Installer\1138f1f.msi
+ 2010-05-20 12:17 . 2010-05-20 12:17 27648 c:\windows\Installer\1138f1a.msi
+ 2010-05-06 09:44 . 2010-05-06 09:44 77610 c:\windows\Installer\{F0E2B312-D7FD-4349-A9B6-E90B36DB1BD0}\_853F67D554F05449430E7E.exe
+ 2010-05-20 12:14 . 2010-05-20 12:14 10134 c:\windows\Installer\{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}\ARPPRODUCTICON.exe
+ 2010-02-19 13:21 . 2010-02-19 13:21 45056 c:\windows\Installer\{D50C207A-05C7-4255-9B0A-EEFF3B003A88}\ARPPRODUCTICON.exe
+ 2010-02-19 13:21 . 2010-02-19 13:21 45056 c:\windows\Installer\{D50C207A-05C7-4255-9B0A-EEFF3B003A88}\_8FB643A32A7F463EAD5EBBE153389CB8.exe
+ 2010-02-19 13:21 . 2010-02-19 13:21 45056 c:\windows\Installer\{D50C207A-05C7-4255-9B0A-EEFF3B003A88}\_70D6363AD8CB4FC1B6337097D8251E3D.exe
+ 2010-05-20 12:14 . 2010-05-20 12:14 10134 c:\windows\Installer\{D1A19B02-817E-4296-A45B-07853FD74D57}\ARPPRODUCTICON.exe
+ 2010-05-20 12:14 . 2010-05-20 12:14 10134 c:\windows\Installer\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}\ARPPRODUCTICON.exe
- 2008-02-17 17:42 . 2010-01-21 17:16 35088 c:\windows\Installer\{90120000-0051-0000-0000-0000000FF1CE}\oisicon.exe
+ 2008-02-17 17:42 . 2010-06-11 11:23 35088 c:\windows\Installer\{90120000-0051-0000-0000-0000000FF1CE}\oisicon.exe
- 2008-02-17 17:42 . 2010-01-21 17:16 18704 c:\windows\Installer\{90120000-0051-0000-0000-0000000FF1CE}\mspicons.exe
+ 2008-02-17 17:42 . 2010-06-11 11:23 18704 c:\windows\Installer\{90120000-0051-0000-0000-0000000FF1CE}\mspicons.exe
- 2008-02-17 17:42 . 2010-01-21 17:16 20240 c:\windows\Installer\{90120000-0051-0000-0000-0000000FF1CE}\cagicon.exe
+ 2008-02-17 17:42 . 2010-06-11 11:23 20240 c:\windows\Installer\{90120000-0051-0000-0000-0000000FF1CE}\cagicon.exe
- 2008-02-17 17:37 . 2010-02-10 12:42 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
+ 2008-02-17 17:37 . 2010-06-11 11:22 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
- 2008-02-17 17:37 . 2010-02-10 12:42 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
+ 2008-02-17 17:37 . 2010-06-11 11:22 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
- 2008-02-17 17:37 . 2010-02-10 12:42 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
+ 2008-02-17 17:37 . 2010-06-11 11:22 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
+ 2010-06-04 22:46 . 2010-06-04 22:46 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2010-04-25 14:22 . 2010-04-25 14:22 27136 c:\windows\Installer\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}\AppleSoftwareUpdateIco.exe
+ 2010-05-20 12:15 . 2010-05-20 12:15 10134 c:\windows\Installer\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}\ARPPRODUCTICON.exe
+ 2010-02-19 12:52 . 2010-02-19 12:52 49152 c:\windows\Installer\{205A5182-EFC8-4C25-B61D-C164F8FF4048}\RedirectorEXE2_770DFD1204C24F4DA163D64FACCB5CBD.exe
+ 2010-02-19 12:52 . 2010-02-19 12:52 49152 c:\windows\Installer\{205A5182-EFC8-4C25-B61D-C164F8FF4048}\RedirectorEXE1_770DFD1204C24F4DA163D64FACCB5CBD.exe
+ 2010-02-19 12:52 . 2010-02-19 12:52 49152 c:\windows\Installer\{205A5182-EFC8-4C25-B61D-C164F8FF4048}\RedirectorEXE_770DFD1204C24F4DA163D64FACCB5CBD.exe
+ 2010-02-19 12:52 . 2010-02-19 12:52 69632 c:\windows\Installer\{205A5182-EFC8-4C25-B61D-C164F8FF4048}\NewShortcut600_C6ABA3677F944B9FBB00F060701B0B5A.exe
+ 2010-02-19 12:52 . 2010-02-19 12:52 69632 c:\windows\Installer\{205A5182-EFC8-4C25-B61D-C164F8FF4048}\NewShortcut60_C6ABA3677F944B9FBB00F060701B0B5A.exe
+ 2010-02-19 12:52 . 2010-02-19 12:52 69632 c:\windows\Installer\{205A5182-EFC8-4C25-B61D-C164F8FF4048}\NewShortcut6_C6ABA3677F944B9FBB00F060701B0B5A.exe
+ 2010-02-19 12:52 . 2010-02-19 12:52 69632 c:\windows\Installer\{205A5182-EFC8-4C25-B61D-C164F8FF4048}\NewShortcut5_C6ABA3677F944B9FBB00F060701B0B5A.exe
+ 2010-02-19 12:52 . 2010-02-19 12:52 69632 c:\windows\Installer\{205A5182-EFC8-4C25-B61D-C164F8FF4048}\NewShortcut4_C6ABA3677F944B9FBB00F060701B0B5A.exe
+ 2010-02-19 12:52 . 2010-02-19 12:52 69632 c:\windows\Installer\{205A5182-EFC8-4C25-B61D-C164F8FF4048}\NewShortcut3_C6ABA3677F944B9FBB00F060701B0B5A.exe
+ 2010-02-19 12:52 . 2010-02-19 12:52 69632 c:\windows\Installer\{205A5182-EFC8-4C25-B61D-C164F8FF4048}\NewShortcut12_C6ABA3677F944B9FBB00F060701B0B5A.exe
+ 2010-02-19 12:52 . 2010-02-19 12:52 69632 c:\windows\Installer\{205A5182-EFC8-4C25-B61D-C164F8FF4048}\DesktopMgr.exe
+ 2010-05-20 12:18 . 2010-05-20 12:18 10134 c:\windows\Installer\{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}\ARPPRODUCTICON.exe
+ 2010-05-20 12:14 . 2010-05-20 12:14 10134 c:\windows\Installer\{08D2E121-7F6A-43EB-97FD-629B44903403}\ARPPRODUCTICON.exe
+ 2010-05-20 12:14 . 2010-05-20 12:14 10134 c:\windows\Installer\{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}\ARPPRODUCTICON.exe
+ 2009-12-18 05:05 . 2009-12-18 05:05 16832 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\ViewerPS.dll
+ 2009-12-18 08:58 . 2009-12-18 08:58 40368 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\reader_sl.exe
+ 2009-12-18 05:05 . 2009-12-18 05:05 67016 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\PDFPrevHndlrShim.exe
+ 2009-12-18 05:04 . 2009-12-18 05:04 83376 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\PDFPrevHndlr.dll
+ 2009-12-18 02:43 . 2009-12-18 02:43 95672 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\nppdf32.dll
+ 2009-12-18 02:57 . 2009-12-18 02:57 13752 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\AcroRd32Info.exe
+ 2009-12-18 02:16 . 2009-12-18 02:16 65536 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\Acrofx32.dll
+ 2008-10-25 08:18 . 2008-10-25 08:18 72568 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONFILTER.DLL
+ 2008-10-25 08:18 . 2008-10-25 08:18 98696 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONENOTEM.EXE
+ 2008-09-15 14:08 . 2007-11-26 14:07 11776 c:\windows\INRES.DLL
+ 2010-06-11 11:12 . 2010-02-25 06:24 12800 c:\windows\ie8updates\KB982381-IE8\xpshims.dll
+ 2010-06-11 11:12 . 2010-02-25 06:24 55296 c:\windows\ie8updates\KB982381-IE8\msfeedsbs.dll
+ 2010-06-11 11:12 . 2010-02-25 06:24 25600 c:\windows\ie8updates\KB982381-IE8\jsproxy.dll
+ 2010-03-31 14:04 . 2009-12-21 19:14 12800 c:\windows\ie8updates\KB980182-IE8\xpshims.dll
+ 2010-03-31 14:04 . 2009-12-21 19:14 55296 c:\windows\ie8updates\KB980182-IE8\msfeedsbs.dll
+ 2010-03-31 14:04 . 2009-12-21 19:14 25600 c:\windows\ie8updates\KB980182-IE8\jsproxy.dll
+ 2010-06-11 11:29 . 2010-06-11 11:29 90112 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_b9bd3e82\System.Drawing.Design.dll
+ 2010-06-11 11:28 . 2010-06-11 11:28 61440 c:\windows\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_b3386e05\CustomMarshalers.dll
+ 2010-06-11 10:40 . 2010-06-11 10:40 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\e67992626a30603458b0df22841c2423\PresentationFontCache.ni.exe
+ 2010-06-11 10:39 . 2010-06-11 10:39 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\6be27d744e6e2bfc4b0e25bd2998ef7c\PresentationCFFRasterizer.ni.dll
+ 2010-05-06 09:44 . 2010-05-06 09:44 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\Interop.WIA\3567e9f972165d48ab1ca52739705122\Interop.WIA.ni.dll
- 2010-01-04 22:27 . 2010-01-04 22:27 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\Interop.WIA\3567e9f972165d48ab1ca52739705122\Interop.WIA.ni.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2010-06-11 10:40 . 2010-06-11 10:40 32768 c:\windows\assembly\GAC_MSIL\System.ServiceModel.WasHosting\3.0.0.0__b77a5c561934e089\System.ServiceModel.WasHosting.dll
- 2009-08-18 00:06 . 2009-08-18 00:06 32768 c:\windows\assembly\GAC_MSIL\System.ServiceModel.WasHosting\3.0.0.0__b77a5c561934e089\System.ServiceModel.WasHosting.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2010-06-11 11:28 . 2010-06-11 11:28 81920 c:\windows\assembly\GAC\System.Security\1.0.5000.0__b03f5f7f11d50a3a\System.Security.dll
+ 2010-04-14 12:28 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB981332-IE8\update\spcustom.dll
+ 2010-04-14 12:28 . 2009-05-26 11:40 17272 c:\windows\$hf_mig$\KB981332-IE8\spmsg.dll
+ 2010-04-14 12:36 . 2009-05-26 09:01 26488 c:\windows\$hf_mig$\KB980232\update\spcustom.dll
+ 2010-04-14 12:36 . 2009-05-26 09:01 17272 c:\windows\$hf_mig$\KB980232\spmsg.dll
+ 2010-03-31 14:05 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB980182-IE8\update\spcustom.dll
+ 2010-03-31 14:05 . 2009-05-26 11:40 17272 c:\windows\$hf_mig$\KB980182-IE8\spmsg.dll
+ 2010-03-31 14:02 . 2010-02-25 06:19 12800 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\xpshims.dll
+ 2010-03-31 14:02 . 2010-02-25 06:19 55296 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\msfeedsbs.dll
+ 2010-03-31 14:02 . 2010-02-25 06:19 25600 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\jsproxy.dll
+ 2010-04-14 12:37 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB979683\update\spcustom.dll
+ 2010-04-14 11:49 . 2010-03-05 14:54 16896 c:\windows\$hf_mig$\KB979683\update\mpsyschk.dll
+ 2010-04-14 12:37 . 2009-05-26 11:40 17272 c:\windows\$hf_mig$\KB979683\spmsg.dll
+ 2010-04-14 12:27 . 2008-07-08 13:02 26488 c:\windows\$hf_mig$\KB979309\update\spcustom.dll
+ 2010-04-14 12:27 . 2008-07-08 13:02 17272 c:\windows\$hf_mig$\KB979309\spmsg.dll
+ 2010-01-13 13:48 . 2010-01-13 13:48 86016 c:\windows\$hf_mig$\KB979309\SP3QFE\cabview.dll
+ 2010-04-14 12:28 . 2008-07-08 13:02 26488 c:\windows\$hf_mig$\KB978601\update\spcustom.dll
+ 2010-04-14 12:28 . 2008-07-08 13:02 17272 c:\windows\$hf_mig$\KB978601\spmsg.dll
+ 2010-04-14 12:30 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB978338\update\spcustom.dll
+ 2010-04-14 12:30 . 2009-05-26 11:40 17272 c:\windows\$hf_mig$\KB978338\spmsg.dll
+ 2010-04-14 12:28 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB977816\update\spcustom.dll
+ 2010-04-14 12:28 . 2009-05-26 11:40 17272 c:\windows\$hf_mig$\KB977816\spmsg.dll
+ 2010-02-24 12:07 . 2008-07-08 13:02 26488 c:\windows\$hf_mig$\KB976662-IE8\update\spcustom.dll
+ 2010-02-24 12:07 . 2008-07-08 13:02 17272 c:\windows\$hf_mig$\KB976662-IE8\spmsg.dll
+ 2010-03-10 14:59 . 2008-07-08 13:02 26488 c:\windows\$hf_mig$\KB975561\update\spcustom.dll
+ 2010-03-10 14:59 . 2008-07-08 13:02 17272 c:\windows\$hf_mig$\KB975561\spmsg.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2010-03-09 22:57 . 2008-04-14 00:12 8192 c:\windows\system32\wshirda.dll
+ 2010-06-03 13:38 . 2008-04-13 23:11 4096 c:\windows\system32\ReinstallBackups\0013\DriverFiles\i386\ksuser.dll
+ 2010-06-03 13:38 . 2007-11-26 14:10 7680 c:\windows\system32\ReinstallBackups\0013\DriverFiles\i386\emcoinst.dll
+ 2008-01-13 10:35 . 2008-04-13 23:11 4096 c:\windows\system32\ksuser.dll
- 2008-01-13 10:35 . 2008-04-14 00:11 4096 c:\windows\system32\ksuser.dll
+ 2007-11-26 14:10 . 2007-11-26 14:10 7680 c:\windows\system32\emcoinst.dll
+ 2010-04-30 12:22 . 2008-04-13 17:39 5504 c:\windows\system32\drivers\MSTEE.sys
+ 2010-03-09 22:57 . 2008-04-14 00:12 8192 c:\windows\system32\dllcache\wshirda.dll
+ 2001-08-17 22:36 . 2009-11-27 16:07 8704 c:\windows\system32\dllcache\tsbyuv.dll
- 2009-11-27 16:07 . 2009-11-27 16:07 8704 c:\windows\system32\dllcache\tsbyuv.dll
+ 2010-04-30 12:22 . 2008-04-13 17:39 5504 c:\windows\system32\dllcache\mstee.sys
+ 2008-01-13 10:35 . 2008-04-13 23:11 4096 c:\windows\system32\dllcache\ksuser.dll
+ 2010-04-01 12:48 . 2010-04-01 12:48 9216 c:\windows\system32\Adobe\Shockwave 11\DynaPlayer.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2009-10-24 18:56 . 2009-10-24 18:56 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2009-10-24 18:56 . 2009-10-24 18:56 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2010-04-25 15:54 . 2010-04-25 15:54 653120 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll
- 2009-07-12 00:02 . 2009-07-12 00:02 653120 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll
+ 2010-04-25 15:54 . 2010-04-25 15:54 569664 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll
- 2009-07-12 00:02 . 2009-07-12 00:02 569664 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll
- 2009-07-12 00:05 . 2009-07-12 00:05 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcm90.dll
+ 2010-04-25 15:53 . 2010-04-25 15:53 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcm90.dll
+ 2009-06-26 18:07 . 2009-06-26 18:07 653120 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_d494ac0e\msvcr90.dll
+ 2009-06-26 18:07 . 2009-06-26 18:07 569664 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_d494ac0e\msvcp90.dll
+ 2009-06-26 18:10 . 2009-06-26 18:10 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_d494ac0e\msvcm90.dll
+ 2010-04-25 15:54 . 2010-04-25 15:54 159032 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_353599c2\atl90.dll
- 2009-07-12 00:02 . 2009-07-12 00:02 159032 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_353599c2\atl90.dll
+ 2009-06-26 18:07 . 2009-06-26 18:07 159032 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_35349982\atl90.dll
- 2009-07-11 22:11 . 2009-07-11 22:11 624448 c:\windows\WinSxS\amd64_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_069f922e\msvcr90.dll
+ 2010-04-25 15:54 . 2010-04-25 15:54 624448 c:\windows\WinSxS\amd64_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_069f922e\msvcr90.dll
+ 2010-04-25 15:54 . 2010-04-25 15:54 853312 c:\windows\WinSxS\amd64_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_069f922e\msvcp90.dll
- 2009-07-11 22:11 . 2009-07-11 22:11 853312 c:\windows\WinSxS\amd64_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_069f922e\msvcp90.dll
- 2009-07-11 22:14 . 2009-07-11 22:14 245760 c:\windows\WinSxS\amd64_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_069f922e\msvcm90.dll
+ 2010-04-25 15:53 . 2010-04-25 15:53 245760 c:\windows\WinSxS\amd64_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_069f922e\msvcm90.dll
- 2009-07-11 22:11 . 2009-07-11 22:11 176456 c:\windows\WinSxS\amd64_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_673f7fa2\atl90.dll
+ 2010-04-25 15:54 . 2010-04-25 15:54 176456 c:\windows\WinSxS\amd64_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_673f7fa2\atl90.dll
+ 2004-08-11 17:00 . 2009-12-24 06:59 177664 c:\windows\system32\wintrust.dll
+ 2007-03-26 01:00 . 2010-03-31 01:58 100848 c:\windows\system32\vxblock.dll
- 2004-08-11 17:00 . 2009-03-08 03:33 420352 c:\windows\system32\vbscript.dll
+ 2004-08-11 17:00 . 2010-03-10 06:15 420352 c:\windows\system32\vbscript.dll
- 2008-01-13 10:14 . 2007-10-26 13:38 110592 c:\windows\system32\SynTPCo4.dll
+ 2008-01-13 10:14 . 2007-04-27 01:34 110592 c:\windows\system32\SynTPCo4.dll
- 2008-01-13 10:14 . 2007-10-26 13:01 196608 c:\windows\system32\SynCtrl.dll
+ 2008-01-13 10:14 . 2007-04-27 00:42 196608 c:\windows\system32\SynCtrl.dll
+ 2010-06-03 13:38 . 2008-04-13 18:19 146048 c:\windows\system32\ReinstallBackups\0013\DriverFiles\i386\portcls.sys
+ 2010-06-03 13:38 . 2008-04-13 18:16 141056 c:\windows\system32\ReinstallBackups\0013\DriverFiles\i386\ks.sys
+ 2010-06-03 13:38 . 2007-11-26 14:14 163352 c:\windows\system32\ReinstallBackups\0013\DriverFiles\i386\emusba10.sys
+ 2007-04-04 17:08 . 2010-03-31 01:58 440816 c:\windows\system32\PxWave.dll
+ 2007-04-04 17:08 . 2010-03-31 01:58 219632 c:\windows\system32\PxMas.dll
+ 2008-05-22 01:02 . 2010-03-31 01:58 559600 c:\windows\system32\pxdrv.dll
+ 2007-04-04 17:08 . 2010-03-31 01:58 678384 c:\windows\system32\Px.dll
+ 2004-08-11 17:00 . 2010-06-11 10:37 445704 c:\windows\system32\perfh009.dat
- 2004-08-11 17:00 . 2009-12-21 19:14 206848 c:\windows\system32\occache.dll
+ 2004-08-11 17:00 . 2010-05-06 10:41 206848 c:\windows\system32\occache.dll
+ 2008-01-13 10:40 . 2006-07-11 16:35 348160 c:\windows\system32\msvcr71.dll
- 2008-01-13 10:40 . 2006-10-20 17:23 348160 c:\windows\system32\msvcr71.dll
+ 2008-01-13 10:40 . 2006-07-11 16:35 503808 c:\windows\system32\msvcp71.dll
+ 2004-08-11 17:00 . 2010-05-06 10:41 611840 c:\windows\system32\mstime.dll
- 2004-08-11 17:00 . 2009-03-08 03:32 611840 c:\windows\system32\mstime.dll
+ 2004-08-04 00:56 . 2008-04-13 23:12 294912 c:\windows\system32\msh263.drv
- 2004-08-04 00:56 . 2008-04-14 00:12 294912 c:\windows\system32\msh263.drv
+ 2007-08-13 18:54 . 2010-05-06 10:41 599040 c:\windows\system32\msfeeds.dll
+ 2010-01-12 05:54 . 2010-01-12 05:54 136568 c:\windows\system32\Macromed\Shockwave 10\SYMCCHECKER.DLL
- 2008-01-25 20:42 . 2008-01-03 18:11 180224 c:\windows\system32\Macromed\Shockwave 10\Proj.dll
+ 2010-01-12 05:54 . 2010-01-12 05:54 180224 c:\windows\system32\Macromed\Shockwave 10\Proj.dll
- 2008-01-25 20:42 . 2008-01-03 18:19 475136 c:\windows\system32\Macromed\Shockwave 10\PluginPing.dll
+ 2010-01-12 05:54 . 2010-01-12 05:54 475136 c:\windows\system32\Macromed\Shockwave 10\PluginPing.dll
+ 2010-01-12 05:54 . 2010-01-12 05:54 339968 c:\windows\system32\Macromed\Shockwave 10\Plugin.dll
- 2008-01-25 20:42 . 2008-01-03 18:18 339968 c:\windows\system32\Macromed\Shockwave 10\Plugin.dll
+ 2010-01-12 05:54 . 2010-01-12 05:54 606208 c:\windows\system32\Macromed\Shockwave 10\iml32X.dll
+ 2010-01-12 05:54 . 2010-01-12 05:54 753152 c:\windows\system32\Macromed\Shockwave 10\gi.dll
+ 2010-01-12 05:54 . 2010-01-12 05:54 471040 c:\windows\system32\Macromed\Shockwave 10\Control.dll
+ 2010-01-27 01:07 . 2010-01-27 01:07 256280 c:\windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe
+ 2010-01-27 00:58 . 2010-01-27 00:58 256280 c:\windows\system32\Macromed\Flash\FlashUtil10e.exe
- 2004-08-11 17:00 . 2009-06-22 06:44 726528 c:\windows\system32\jscript.dll
+ 2004-08-11 17:00 . 2009-12-09 05:53 726528 c:\windows\system32\jscript.dll
+ 2010-05-10 16:07 . 2010-05-10 16:06 153376 c:\windows\system32\javaws.exe
+ 2010-05-10 16:07 . 2010-05-10 16:06 145184 c:\windows\system32\javaw.exe
+ 2010-05-10 16:07 . 2010-05-10 16:06 145184 c:\windows\system32\java.exe
+ 2010-03-09 22:57 . 2008-04-14 00:12 151552 c:\windows\system32\irftp.exe
- 2004-08-11 17:12 . 2008-04-11 19:04 691712 c:\windows\system32\inetcomm.dll
+ 2004-08-11 17:12 . 2010-01-29 15:01 691712 c:\windows\system32\inetcomm.dll
+ 2004-08-11 17:00 . 2010-05-06 10:41 184320 c:\windows\system32\iepeers.dll
- 2004-08-11 17:00 . 2009-12-21 19:14 184320 c:\windows\system32\iepeers.dll
+ 2004-08-11 17:00 . 2010-05-06 10:41 387584 c:\windows\system32\iedkcs32.dll
- 2004-08-11 17:00 . 2009-12-21 19:14 387584 c:\windows\system32\iedkcs32.dll
- 2004-08-11 17:00 . 2009-12-21 13:19 173056 c:\windows\system32\ie4uinit.exe
+ 2004-08-11 17:00 . 2010-05-05 13:30 173056 c:\windows\system32\ie4uinit.exe
+ 2008-01-29 11:02 . 2009-12-23 11:03 109360 c:\windows\system32\GEARAspi.dll
+ 2010-04-25 14:18 . 2008-04-17 11:12 107368 c:\windows\system32\DRVSTORE\GEARAspiWD_3B7AACF0636A2C042EB7AD2AFF76D37B27BDD28C\x86\GEARAspi.dll
+ 2004-08-11 17:00 . 2010-02-11 12:02 226880 c:\windows\system32\drivers\tcpip6.sys
+ 2008-01-13 10:14 . 2007-04-27 00:37 202912 c:\windows\system32\drivers\SynTP.sys
+ 2004-08-11 17:00 . 2010-02-24 13:11 455680 c:\windows\system32\drivers\mrxsmb.sys
+ 2007-11-26 14:14 . 2007-11-26 14:14 163352 c:\windows\system32\drivers\emusba10.sys
+ 2010-02-12 10:46 . 2010-02-12 10:46 107808 c:\windows\system32\dns-sd.exe
+ 2004-08-11 17:00 . 2009-12-24 06:59 177664 c:\windows\system32\dllcache\wintrust.dll
+ 2004-08-11 17:00 . 2010-05-06 10:41 916480 c:\windows\system32\dllcache\wininet.dll
- 2004-08-11 17:00 . 2009-12-21 19:14 916480 c:\windows\system32\dllcache\wininet.dll
- 2004-08-11 17:00 . 2009-03-08 03:33 420352 c:\windows\system32\dllcache\vbscript.dll
+ 2004-08-11 17:00 . 2010-03-10 06:15 420352 c:\windows\system32\dllcache\vbscript.dll
+ 2008-06-20 11:08 . 2010-02-11 12:02 226880 c:\windows\system32\dllcache\tcpip6.sys
+ 2007-08-13 18:44 . 2010-05-06 10:41 206848 c:\windows\system32\dllcache\occache.dll
- 2007-08-13 18:44 . 2009-12-21 19:14 206848 c:\windows\system32\dllcache\occache.dll
+ 2008-01-13 10:29 . 2010-05-06 10:41 611840 c:\windows\system32\dllcache\mstime.dll
- 2008-01-13 10:29 . 2009-03-08 03:32 611840 c:\windows\system32\dllcache\mstime.dll
+ 2008-01-23 19:35 . 2010-05-06 10:41 599040 c:\windows\system32\dllcache\msfeeds.dll
+ 2009-01-19 18:58 . 2010-02-24 13:11 455680 c:\windows\system32\dllcache\mrxsmb.sys
- 2004-08-11 17:00 . 2009-06-22 06:44 726528 c:\windows\system32\dllcache\jscript.dll
+ 2004-08-11 17:00 . 2009-12-09 05:53 726528 c:\windows\system32\dllcache\jscript.dll
+ 2010-03-09 22:57 . 2008-04-14 00:12 151552 c:\windows\system32\dllcache\irftp.exe
- 2008-08-13 10:19 . 2008-04-11 19:04 691712 c:\windows\system32\dllcache\inetcomm.dll
+ 2008-08-13 10:19 . 2010-01-29 15:01 691712 c:\windows\system32\dllcache\inetcomm.dll
+ 2009-08-17 12:15 . 2010-05-06 10:41 247808 c:\windows\system32\dllcache\ieproxy.dll
+ 2008-01-13 10:29 . 2010-05-06 10:41 184320 c:\windows\system32\dllcache\iepeers.dll
- 2008-01-13 10:29 . 2009-12-21 19:14 184320 c:\windows\system32\dllcache\iepeers.dll
- 2007-08-13 18:39 . 2009-12-21 19:14 387584 c:\windows\system32\dllcache\iedkcs32.dll
+ 2007-08-13 18:39 . 2010-05-06 10:41 387584 c:\windows\system32\dllcache\iedkcs32.dll
+ 2007-08-13 18:39 . 2010-05-05 13:30 173056 c:\windows\system32\dllcache\ie4uinit.exe
- 2007-08-13 18:39 . 2009-12-21 13:19 173056 c:\windows\system32\dllcache\ie4uinit.exe
- 2004-08-11 17:00 . 2008-04-14 00:09 285696 c:\windows\system32\dllcache\atmfd.dll
+ 2004-08-11 17:00 . 2010-04-20 05:30 285696 c:\windows\system32\dllcache\atmfd.dll
+ 2004-08-11 17:00 . 2010-02-12 04:33 100864 c:\windows\system32\dllcache\6to4svc.dll
+ 2010-02-19 19:27 . 2010-02-19 19:27 843776 c:\windows\system32\divx_xx16.dll
- 2009-11-14 00:47 . 2009-11-14 00:47 843776 c:\windows\system32\divx_xx16.dll
+ 2010-02-19 19:27 . 2010-02-19 19:27 839680 c:\windows\system32\divx_xx11.dll
- 2009-11-14 00:47 . 2009-11-14 00:47 839680 c:\windows\system32\divx_xx11.dll
- 2009-11-14 00:47 . 2009-11-14 00:47 856064 c:\windows\system32\divx_xx0c.dll
+ 2010-02-19 19:27 . 2010-02-19 19:27 856064 c:\windows\system32\divx_xx0c.dll
+ 2010-02-19 19:27 . 2010-02-19 19:27 847872 c:\windows\system32\divx_xx0a.dll
- 2009-11-14 00:47 . 2009-11-14 00:47 847872 c:\windows\system32\divx_xx0a.dll
+ 2010-02-19 19:27 . 2010-02-19 19:27 856064 c:\windows\system32\divx_xx07.dll
- 2009-11-14 00:47 . 2009-11-14 00:47 856064 c:\windows\system32\divx_xx07.dll
+ 2010-02-19 19:27 . 2010-02-19 19:27 720384 c:\windows\system32\DivX.dll
+ 2009-08-30 09:58 . 2009-08-30 09:58 507904 c:\windows\system32\btwapi.dll
+ 2008-04-20 18:58 . 2008-04-20 18:58 159744 c:\windows\system32\BlueTools.dll
+ 2010-04-01 12:09 . 2010-04-01 12:09 136568 c:\windows\system32\Adobe\Shockwave 11\SYMCCHECKER.DLL
+ 2010-04-01 12:46 . 2010-04-01 12:46 114688 c:\windows\system32\Adobe\Shockwave 11\SwInit.exe
+ 2010-04-01 12:59 . 2010-04-01 12:59 459032 c:\windows\system32\Adobe\Shockwave 11\SwHelper_1156606.exe
+ 2010-04-01 12:49 . 2010-04-01 12:49 446464 c:\windows\system32\Adobe\Shockwave 11\Proj.dll
+ 2010-04-01 12:47 . 2010-04-01 12:47 372736 c:\windows\system32\Adobe\Shockwave 11\Plugin.dll
+ 2010-04-01 12:09 . 2010-04-01 12:09 753152 c:\windows\system32\Adobe\Shockwave 11\gi.dll
+ 2010-04-01 12:46 . 2010-04-01 12:46 503808 c:\windows\system32\Adobe\Shockwave 11\Control.dll
+ 2010-04-01 13:00 . 2010-04-01 13:00 213272 c:\windows\system32\Adobe\Director\SwDir.dll
+ 2010-04-01 12:48 . 2010-04-01 12:48 131072 c:\windows\system32\Adobe\Director\np32dsw.dll
+ 2004-08-11 17:00 . 2010-02-12 04:33 100864 c:\windows\system32\6to4svc.dll
+ 2010-04-07 22:48 . 2010-04-07 22:48 970752 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
+ 2010-04-07 22:48 . 2010-04-07 22:48 110592 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMdiagnostics.dll
- 2008-07-29 18:16 . 2008-07-29 18:16 110592 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMdiagnostics.dll
+ 2010-03-23 04:31 . 2010-03-23 04:31 435024 c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
- 2008-07-25 10:17 . 2008-07-25 10:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
+ 2010-02-09 11:22 . 2010-02-09 11:22 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
- 2008-05-27 23:49 . 2008-05-27 23:49 102400 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll
+ 2010-03-31 13:51 . 2010-03-31 13:51 102400 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll
+ 2010-03-31 13:49 . 2010-03-31 13:49 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
- 2008-05-27 23:48 . 2008-05-27 23:48 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
+ 2010-03-31 14:32 . 2010-03-31 14:32 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
- 2008-05-28 00:30 . 2008-05-28 00:30 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
+ 2010-05-10 16:07 . 2010-05-10 16:07 180224 c:\windows\Installer\c4f6b8b.msi
+ 2010-05-10 16:06 . 2010-05-10 16:06 576000 c:\windows\Installer\c4f6b86.msi
+ 2010-05-06 09:44 . 2010-05-06 09:44 490496 c:\windows\Installer\91b5f8.msi
+ 2010-04-01 10:33 . 2010-04-01 10:33 301056 c:\windows\Installer\264c060.msi
+ 2010-06-07 14:09 . 2010-06-07 14:09 219648 c:\windows\Installer\1fbac7.msi
+ 2010-02-24 23:14 . 2010-02-24 23:14 543232 c:\windows\Installer\15bf23.msp
+ 2010-04-25 14:07 . 2010-04-25 14:07 791552 c:\windows\Installer\12e7ea3.msi
+ 2010-05-20 12:18 . 2010-05-20 12:18 356352 c:\windows\Installer\1138f24.msi
+ 2010-05-20 12:15 . 2010-05-20 12:15 316928 c:\windows\Installer\1138f05.msi
+ 2010-05-20 12:14 . 2010-05-20 12:14 315392 c:\windows\Installer\1138f00.msi
+ 2010-05-20 12:14 . 2010-05-20 12:14 356864 c:\windows\Installer\1138efb.msi
+ 2010-05-20 12:14 . 2010-05-20 12:14 359424 c:\windows\Installer\1138ef6.msi
+ 2010-05-20 12:14 . 2010-05-20 12:14 316416 c:\windows\Installer\1138ef1.msi
+ 2010-05-20 12:14 . 2010-05-20 12:14 356352 c:\windows\Installer\1138eec.msi
+ 2010-02-22 11:36 . 2010-04-15 16:38 295606 c:\windows\Installer\{AC76BA86-7AD7-1033-7B44-A82000000003}\SC_Reader.exe
+ 2010-04-25 14:20 . 2010-04-25 14:20 372736 c:\windows\Installer\{996A2FAA-7514-4628-9D12-A8FC34A0016E}\iTunesIco.exe
+ 2008-02-17 17:42 . 2010-06-11 11:23 327952 c:\windows\Installer\{90120000-0051-0000-0000-0000000FF1CE}\visicon.exe
- 2008-02-17 17:42 . 2010-01-21 17:16 327952 c:\windows\Installer\{90120000-0051-0000-0000-0000000FF1CE}\visicon.exe
+ 2008-02-17 17:42 . 2010-06-11 11:23 217864 c:\windows\Installer\{90120000-0051-0000-0000-0000000FF1CE}\misc.exe
- 2008-02-17 17:42 . 2010-01-21 17:16 217864 c:\windows\Installer\{90120000-0051-0000-0000-0000000FF1CE}\misc.exe
+ 2008-02-17 17:37 . 2010-06-11 11:22 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
- 2008-02-17 17:37 . 2010-02-10 12:42 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
- 2008-02-17 17:37 . 2010-02-10 12:42 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
+ 2008-02-17 17:37 . 2010-06-11 11:22 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
- 2008-02-17 17:37 . 2010-02-10 12:42 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
+ 2008-02-17 17:37 . 2010-06-11 11:22 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
- 2008-02-17 17:37 . 2010-02-10 12:42 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe
+ 2008-02-17 17:37 . 2010-06-11 11:22 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe
- 2008-02-17 17:37 . 2010-02-10 12:42 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
+ 2008-02-17 17:37 . 2010-06-11 11:22 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
+ 2008-02-17 17:37 . 2010-06-11 11:22 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe
- 2008-02-17 17:37 . 2010-02-10 12:42 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe
- 2008-02-17 17:37 . 2010-02-10 12:42 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2008-02-17 17:37 . 2010-06-11 11:22 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2009-12-18 02:51 . 2009-12-18 02:51 372736 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\pdfshell.dll
+ 2009-11-09 22:34 . 2009-11-09 22:34 448512 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\JP2KLib.dll
+ 2009-12-18 02:14 . 2009-12-18 02:14 140728 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\AdobeUpdateCheck.exe
+ 2009-12-18 04:55 . 2009-12-18 04:55 738776 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\AdobeCollabSync.exe
+ 2009-12-18 03:21 . 2009-12-18 03:21 112048 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\AcroRdIF.dll
+ 2009-12-18 08:58 . 2009-12-18 08:58 345520 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\AcroRd32.exe
+ 2009-12-18 02:17 . 2009-12-18 02:17 632240 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\AcroPDF.dll
+ 2008-10-25 09:35 . 2008-10-25 09:35 421744 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\XFUNC.DLL
+ 2008-10-25 09:35 . 2008-10-25 09:35 727936 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\VISWEB.DLL
+ 2008-10-25 09:35 . 2008-10-25 09:35 459616 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\VISUTILS.DLL
+ 2008-10-25 09:35 . 2008-10-25 09:35 564056 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\VISSUPP.DLL
+ 2009-03-06 03:11 . 2009-03-06 03:11 182624 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\VISIO.EXE
+ 2008-11-03 23:56 . 2008-11-03 23:56 386904 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\VISGRF.DLL
+ 2009-03-06 03:11 . 2009-03-06 03:11 140120 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\VISDLGU.DLL
+ 2008-10-25 09:34 . 2008-10-25 09:34 221032 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\VISCOLOR.DLL
+ 2008-10-25 09:34 . 2008-10-25 09:34 966520 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\TIMESOLN.DLL
+ 2008-10-25 09:33 . 2008-10-25 09:33 570728 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\PE.DLL
+ 2008-10-25 09:33 . 2008-10-25 09:33 464768 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\ORGCHWIZ.DLL
+ 2008-10-25 09:33 . 2008-10-25 09:33 325984 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\HVAC.DLL
+ 2008-10-25 09:33 . 2008-10-25 09:33 969568 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\GANTT.DLL
+ 2008-10-25 09:32 . 2008-10-25 09:32 144728 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\DWGCNV.DLL
+ 2008-11-03 23:56 . 2008-11-03 23:56 986992 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\DRILLDWN.DLL
+ 2008-10-25 09:32 . 2008-10-25 09:32 703344 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\DBENGR.DLL
+ 2008-10-25 09:32 . 2008-10-25 09:32 591224 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\BSTORM.DLL
+ 2008-10-25 09:32 . 2008-10-25 09:32 913776 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\AEC.DLL
+ 2006-10-26 22:59 . 2006-10-26 22:59 282928 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.4518\VISSHE.DLL
+ 2009-03-06 04:26 . 2009-03-06 04:26 770464 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\REGFORM.EXE
+ 2008-10-25 07:52 . 2008-10-25 07:52 664968 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONBTTNOL.DLL
+ 2008-10-25 07:52 . 2008-10-25 07:52 604056 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONBTTNIE.DLL
+ 2008-10-25 09:27 . 2008-10-25 09:27 177040 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\IPOLK.DLL
+ 2010-06-11 11:12 . 2010-02-25 06:24 916480 c:\windows\ie8updates\KB982381-IE8\wininet.dll
+ 2010-06-11 11:12 . 2010-02-22 14:23 382840 c:\windows\ie8updates\KB982381-IE8\spuninst\updspapi.dll
+ 2010-06-11 11:12 . 2008-07-08 13:02 231288 c:\windows\ie8updates\KB982381-IE8\spuninst\spuninst.exe
+ 2010-06-11 11:12 . 2010-02-25 06:24 206848 c:\windows\ie8updates\KB982381-IE8\occache.dll
+ 2010-06-11 11:12 . 2010-02-25 06:24 611840 c:\windows\ie8updates\KB982381-IE8\mstime.dll
+ 2010-06-11 11:12 . 2010-02-25 06:24 594432 c:\windows\ie8updates\KB982381-IE8\msfeeds.dll
+ 2010-06-11 11:12 . 2010-02-25 06:24 247808 c:\windows\ie8updates\KB982381-IE8\ieproxy.dll
+ 2010-06-11 11:12 . 2010-02-25 06:24 184320 c:\windows\ie8updates\KB982381-IE8\iepeers.dll
+ 2010-06-11 11:12 . 2009-03-08 03:35 742912 c:\windows\ie8updates\KB982381-IE8\iedvtool.dll
+ 2010-06-11 11:12 . 2010-02-25 06:24 387584 c:\windows\ie8updates\KB982381-IE8\iedkcs32.dll
+ 2010-06-11 11:12 . 2010-02-24 09:54 173056 c:\windows\ie8updates\KB982381-IE8\ie4uinit.exe
+ 2010-04-14 12:28 . 2009-03-08 03:33 420352 c:\windows\ie8updates\KB981332-IE8\vbscript.dll
+ 2010-04-14 12:28 . 2009-05-26 11:40 382840 c:\windows\ie8updates\KB981332-IE8\spuninst\updspapi.dll
+ 2010-04-14 12:28 . 2009-05-26 11:40 231288 c:\windows\ie8updates\KB981332-IE8\spuninst\spuninst.exe
+ 2010-03-31 14:04 . 2009-12-21 19:14 916480 c:\windows\ie8updates\KB980182-IE8\wininet.dll
+ 2010-03-31 14:05 . 2009-05-26 11:40 382840 c:\windows\ie8updates\KB980182-IE8\spuninst\updspapi.dll
+ 2010-03-31 14:05 . 2009-05-26 11:40 231288 c:\windows\ie8updates\KB980182-IE8\spuninst\spuninst.exe
+ 2010-03-31 14:04 . 2009-12-21 19:14 206848 c:\windows\ie8updates\KB980182-IE8\occache.dll
+ 2010-03-31 14:04 . 2009-03-08 03:32 611840 c:\windows\ie8updates\KB980182-IE8\mstime.dll
+ 2010-03-31 14:04 . 2009-12-21 19:14 594432 c:\windows\ie8updates\KB980182-IE8\msfeeds.dll
+ 2010-03-31 14:04 . 2009-12-21 19:14 246272 c:\windows\ie8updates\KB980182-IE8\ieproxy.dll
+ 2010-03-31 14:04 . 2009-12-21 19:14 184320 c:\windows\ie8updates\KB980182-IE8\iepeers.dll
+ 2010-03-31 14:04 . 2009-12-21 19:14 387584 c:\windows\ie8updates\KB980182-IE8\iedkcs32.dll
+ 2010-03-31 14:04 . 2009-12-21 13:19 173056 c:\windows\ie8updates\KB980182-IE8\ie4uinit.exe
+ 2010-02-24 12:07 . 2008-07-08 13:02 382840 c:\windows\ie8updates\KB976662-IE8\spuninst\updspapi.dll
+ 2010-02-24 12:07 . 2008-07-08 13:02 231288 c:\windows\ie8updates\KB976662-IE8\spuninst\spuninst.exe
+ 2010-02-24 12:07 . 2009-06-22 06:44 726528 c:\windows\ie8updates\KB976662-IE8\jscript.dll
+ 2009-01-19 18:58 . 2010-02-24 13:11 455680 c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2009-10-15 15:58 . 2009-10-15 15:58 163840 c:\windows\Downloaded Program Files\axloader.dll
+ 2010-06-11 11:29 . 2010-06-11 11:29 835584 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_b5ad48b9\System.Drawing.dll
+ 2010-06-11 11:30 . 2010-06-11 11:30 192512 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_77e9d838\System.Drawing.Design.dll
+ 2010-06-11 11:30 . 2010-06-11 11:30 118784 c:\windows\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_6dd0eafb\CustomMarshalers.dll
+ 2010-06-11 10:50 . 2010-06-11 10:50 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\a7c702f75d47bf841b9587e582c2d0b2\WindowsFormsIntegration.ni.dll
+ 2010-06-11 10:49 . 2010-06-11 10:49 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\3a78043c85333d5af49a0d958912ae4a\UIAutomationClient.ni.dll
+ 2010-06-11 10:47 . 2010-06-11 10:47 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\aeba6820f20655dec7fe0fe05aaeb818\System.Drawing.Design.ni.dll
+ 2010-06-11 10:43 . 2010-06-11 10:43 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ae733e4062edba3a33bb0a632bef66bf\PresentationFramework.Royale.ni.dll
+ 2010-06-11 10:43 . 2010-06-11 10:43 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\3ffad524016f0aba7b11a8aa33301a65\PresentationFramework.Aero.ni.dll
+ 2010-06-11 10:43 . 2010-06-11 10:43 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\201968d038a23a4688310fed1eeaddaa\PresentationFramework.Classic.ni.dll
+ 2010-06-11 10:43 . 2010-06-11 10:43 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\1ead87ca8eb84c595c77c70e3b2df88d\PresentationFramework.Luna.ni.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2010-06-11 10:39 . 2010-06-11 10:39 970752 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2010-06-11 10:39 . 2010-06-11 10:39 438272 c:\windows\assembly\GAC_MSIL\System.IdentityModel\3.0.0.0__b77a5c561934e089\System.IdentityModel.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2009-08-18 00:05 . 2009-08-18 00:05 110592 c:\windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMdiagnostics.dll
+ 2010-06-11 10:39 . 2010-06-11 10:39 110592 c:\windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMdiagnostics.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2010-04-14 12:28 . 2009-05-26 11:40 382840 c:\windows\$hf_mig$\KB981332-IE8\update\updspapi.dll
+ 2010-04-14 12:28 . 2009-05-26 11:40 755576 c:\windows\$hf_mig$\KB981332-IE8\update\update.exe
+ 2010-04-14 12:28 . 2009-05-26 11:40 231288 c:\windows\$hf_mig$\KB981332-IE8\spuninst.exe
+ 2010-04-14 11:47 . 2010-03-10 06:18 420352 c:\windows\$hf_mig$\KB981332-IE8\SP3QFE\vbscript.dll
+ 2010-04-14 12:36 . 2009-05-26 09:01 382840 c:\windows\$hf_mig$\KB980232\update\updspapi.dll
+ 2010-04-14 12:36 . 2009-05-26 09:01 755576 c:\windows\$hf_mig$\KB980232\update\update.exe
+ 2010-04-14 12:36 . 2009-05-26 09:01 231288 c:\windows\$hf_mig$\KB980232\spuninst.exe
+ 2010-04-14 11:49 . 2010-02-24 11:57 457216 c:\windows\$hf_mig$\KB980232\SP3QFE\mrxsmb.sys
+ 2010-03-31 14:05 . 2009-05-26 11:40 382840 c:\windows\$hf_mig$\KB980182-IE8\update\updspapi.dll
+ 2010-03-31 14:05 . 2009-05-26 11:40 755576 c:\windows\$hf_mig$\KB980182-IE8\update\update.exe
+ 2010-03-31 14:05 . 2009-05-26 11:40 231288 c:\windows\$hf_mig$\KB980182-IE8\spuninst.exe
+ 2010-03-31 14:02 . 2010-02-25 06:19 919040 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\wininet.dll
+ 2010-03-31 14:02 . 2010-02-25 06:19 206848 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\occache.dll
+ 2010-03-31 14:02 . 2010-02-25 06:19 611840 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\mstime.dll
+ 2010-03-31 14:02 . 2010-02-25 06:19 594432 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\msfeeds.dll
+ 2010-03-31 14:02 . 2010-02-25 06:19 247808 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\ieproxy.dll
+ 2010-03-31 14:02 . 2010-02-25 06:19 184320 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\iepeers.dll
+ 2010-03-31 14:02 . 2010-02-25 06:19 387584 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\iedkcs32.dll
+ 2010-03-31 14:02 . 2010-02-24 09:34 173056 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\ie4uinit.exe
+ 2010-04-14 12:37 . 2009-05-26 11:40 382840 c:\windows\$hf_mig$\KB979683\update\updspapi.dll
+ 2010-04-14 12:37 . 2009-05-26 11:40 755576 c:\windows\$hf_mig$\KB979683\update\update.exe
+ 2010-04-14 12:37 . 2009-05-26 11:40 231288 c:\windows\$hf_mig$\KB979683\spuninst.exe
+ 2010-04-14 12:27 . 2009-05-26 11:40 382840 c:\windows\$hf_mig$\KB979309\update\updspapi.dll
+ 2010-04-14 12:27 . 2009-05-26 11:40 755576 c:\windows\$hf_mig$\KB979309\update\update.exe
+ 2010-04-14 12:27 . 2008-07-08 13:02 231288 c:\windows\$hf_mig$\KB979309\spuninst.exe
+ 2010-04-14 12:28 . 2009-05-26 11:40 382840 c:\windows\$hf_mig$\KB978601\update\updspapi.dll
+ 2010-04-14 12:28 . 2009-05-26 11:40 755576 c:\windows\$hf_mig$\KB978601\update\update.exe
+ 2010-04-14 12:28 . 2008-07-08 13:02 231288 c:\windows\$hf_mig$\KB978601\spuninst.exe
+ 2009-12-24 06:42 . 2009-12-24 06:42 178176 c:\windows\$hf_mig$\KB978601\SP3QFE\wintrust.dll
+ 2010-04-14 12:30 . 2009-05-26 11:40 382840 c:\windows\$hf_mig$\KB978338\update\updspapi.dll
+ 2010-04-14 12:30 . 2009-05-26 11:40 755576 c:\windows\$hf_mig$\KB978338\update\update.exe
+ 2010-04-14 12:30 . 2009-05-26 11:40 231288 c:\windows\$hf_mig$\KB978338\spuninst.exe
+ 2010-02-11 11:36 . 2010-02-11 11:36 226880 c:\windows\$hf_mig$\KB978338\SP3QFE\tcpip6.sys
+ 2010-02-12 04:27 . 2010-02-12 04:27 100864 c:\windows\$hf_mig$\KB978338\SP3QFE\6to4svc.dll
+ 2010-04-14 12:28 . 2009-05-26 11:40 382840 c:\windows\$hf_mig$\KB977816\update\updspapi.dll
+ 2010-04-14 12:28 . 2009-05-26 11:40 755576 c:\windows\$hf_mig$\KB977816\update\update.exe
+ 2010-04-14 12:28 . 2009-05-26 11:40 231288 c:\windows\$hf_mig$\KB977816\spuninst.exe
+ 2010-02-24 12:07 . 2008-07-08 13:02 382840 c:\windows\$hf_mig$\KB976662-IE8\update\updspapi.dll
+ 2010-02-24 12:07 . 2008-07-08 13:02 755576 c:\windows\$hf_mig$\KB976662-IE8\update\update.exe
+ 2010-02-24 12:07 . 2008-07-08 13:02 231288 c:\windows\$hf_mig$\KB976662-IE8\spuninst.exe
+ 2010-02-24 12:04 . 2009-12-09 05:51 726528 c:\windows\$hf_mig$\KB976662-IE8\SP3QFE\jscript.dll
+ 2010-03-10 14:59 . 2009-05-26 17:10 382840 c:\windows\$hf_mig$\KB975561\update\updspapi.dll
+ 2010-03-10 14:59 . 2008-07-08 13:02 755576 c:\windows\$hf_mig$\KB975561\update\update.exe
+ 2010-03-10 14:59 . 2008-07-08 13:02 231288 c:\windows\$hf_mig$\KB975561\spuninst.exe
+ 2009-07-11 23:02 . 2009-07-11 23:02 3780424 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_a57c1f53\mfc90u.dll
+ 2009-07-11 23:02 . 2009-07-11 23:02 3765048 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_a57c1f53\mfc90.dll
+ 2009-06-26 18:07 . 2009-06-26 18:07 3780416 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_a57b1f13\mfc90u.dll
+ 2009-06-26 18:07 . 2009-06-26 18:07 3765048 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4137_x-ww_a57b1f13\mfc90.dll
+ 2004-08-11 17:00 . 2010-04-06 03:52 2462720 c:\windows\system32\WMVCore.dll
+ 2010-04-25 14:08 . 2009-10-16 01:33 3003680 c:\windows\system32\usbaaplrc.dll
+ 2004-08-11 17:00 . 2010-05-06 10:41 1209344 c:\windows\system32\urlmon.dll
+ 2008-01-22 22:51 . 2010-03-31 01:58 2083312 c:\windows\system32\pxsfs.dll
+ 2004-08-11 17:00 . 2010-02-16 14:08 2146304 c:\windows\system32\ntoskrnl.exe
+ 2004-08-03 22:59 . 2010-02-16 13:25 2024448 c:\windows\system32\ntkrnlpa.exe
+ 2004-08-11 17:00 . 2010-05-06 10:41 5950976 c:\windows\system32\mshtml.dll
+ 2008-01-13 10:40 . 2006-07-11 17:02 1053184 c:\windows\system32\MFC71u.dll
+ 2008-01-13 10:40 . 2006-07-11 16:43 1060864 c:\windows\system32\MFC71.dll
- 2008-01-13 10:40 . 2006-10-20 17:23 1060864 c:\windows\system32\MFC71.dll
+ 2010-01-12 05:54 . 2010-01-12 05:54 1490944 c:\windows\system32\Macromed\Shockwave 10\dirapiX.dll
+ 2010-01-27 01:07 . 2010-01-27 01:07 3884312 c:\windows\system32\Macromed\Flash\NPSWF32.dll
+ 2007-08-13 18:34 . 2010-05-06 10:41 1985536 c:\windows\system32\iertutil.dll
- 2007-08-13 18:34 . 2009-12-21 19:14 1985536 c:\windows\system32\iertutil.dll
+ 2004-08-11 17:06 . 2010-06-11 12:33 3783040 c:\windows\system32\FNTCACHE.DAT
+ 2010-04-25 14:08 . 2009-10-16 01:33 3003680 c:\windows\system32\DRVSTORE\usbaapl_E0F497D6C8B1C59AEB6422181BF0AFABD8356D47\usbaaplrc.dll
+ 2010-04-25 14:08 . 2010-03-16 18:53 1419232 c:\windows\system32\DRVSTORE\netaapl_F433E854B3FF3BEE74986FDE8E16A64162342BFF\wdfcoinstaller01005.dll
+ 2004-08-11 17:00 . 2010-04-06 03:52 2462720 c:\windows\system32\dllcache\WMVCore.dll
+ 2004-08-11 17:00 . 2010-05-06 10:41 1209344 c:\windows\system32\dllcache\urlmon.dll
+ 2008-10-25 10:34 . 2010-02-17 08:10 2189952 c:\windows\system32\dllcache\ntoskrnl.exe
+ 2008-10-25 10:34 . 2010-02-16 13:25 2024448 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2008-10-25 10:34 . 2010-02-16 13:25 2066816 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2004-08-11 17:00 . 2010-02-16 14:08 2146304 c:\windows\system32\dllcache\ntkrnlmp.exe
- 2004-08-11 17:12 . 2009-07-10 13:27 1315328 c:\windows\system32\dllcache\msoe.dll
+ 2004-08-11 17:12 . 2010-01-29 15:01 1315328 c:\windows\system32\dllcache\msoe.dll
+ 2008-01-13 10:29 . 2010-05-06 10:41 5950976 c:\windows\system32\dllcache\mshtml.dll
+ 2004-08-11 17:12 . 2009-10-23 15:28 3558912 c:\windows\system32\dllcache\moviemk.exe
- 2004-08-11 17:12 . 2008-04-14 00:12 3558912 c:\windows\system32\dllcache\moviemk.exe
+ 2008-01-23 19:35 . 2010-05-06 10:41 1985536 c:\windows\system32\dllcache\iertutil.dll
- 2008-01-23 19:35 . 2009-12-21 19:14 1985536 c:\windows\system32\dllcache\iertutil.dll
+ 2010-04-01 12:20 . 2010-04-01 12:20 1011712 c:\windows\system32\Adobe\Shockwave 11\iml32.dll
+ 2010-04-01 12:09 . 2010-04-01 12:09 1975408 c:\windows\system32\Adobe\Shockwave 11\gt.exe
+ 2010-04-01 12:25 . 2010-04-01 12:25 1798144 c:\windows\system32\Adobe\Shockwave 11\dirapi.dll
+ 2010-04-07 22:48 . 2010-04-07 22:48 5967872 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.dll
- 2008-11-25 03:59 . 2008-11-25 03:59 5242880 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2010-03-23 04:32 . 2010-03-23 04:32 5242880 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2010-03-23 04:32 . 2010-03-23 04:32 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
- 2008-05-28 00:35 . 2008-05-28 00:35 1265664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll
+ 2010-04-01 10:42 . 2010-04-01 10:42 1265664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll
+ 2010-04-01 10:42 . 2010-04-01 10:42 1232896 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll
- 2008-05-28 00:35 . 2008-05-28 00:35 1232896 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll
+ 2010-03-31 13:50 . 2010-03-31 13:50 2514944 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
- 2008-05-27 23:48 . 2008-05-27 23:48 2514944 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
+ 2010-03-31 13:50 . 2010-03-31 13:50 2527232 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
+ 2010-04-01 10:42 . 2010-04-01 10:42 2142208 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
- 2008-05-27 23:43 . 2008-05-27 23:43 2142208 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
+ 2009-10-16 06:08 . 2009-10-16 06:08 2237952 c:\windows\Installer\febbf.msp
+ 2010-04-09 14:21 . 2010-04-09 14:21 5025792 c:\windows\Installer\feba6.msp
+ 2010-02-04 17:24 . 2010-02-04 17:24 9122304 c:\windows\Installer\db5bf5.msp
+ 2010-02-21 01:00 . 2010-02-21 01:00 8480768 c:\windows\Installer\db5bde.msp
+ 2010-02-04 00:59 . 2010-02-04 00:59 5031936 c:\windows\Installer\db5bc7.msp
+ 2010-04-24 16:08 . 2010-04-24 16:08 9129984 c:\windows\Installer\5979db.msp
+ 2010-03-24 17:54 . 2010-03-24 17:54 3126272 c:\windows\Installer\5979c4.msp
+ 2010-03-24 17:54 . 2010-03-24 17:54 2516992 c:\windows\Installer\5979c3.msp
+ 2010-04-24 16:07 . 2010-04-24 16:07 4667392 c:\windows\Installer\5979a8.msp
+ 2010-02-21 00:03 . 2010-02-21 00:03 4472832 c:\windows\Installer\273a86.msp
+ 2010-02-21 00:02 . 2010-02-21 00:02 4195840 c:\windows\Installer\273a3d.msp
+ 2010-03-11 22:59 . 2010-03-11 22:59 5031424 c:\windows\Installer\273a24.msp
+ 2010-02-19 13:21 . 2010-02-19 13:21 1922560 c:\windows\Installer\1d25ae.msi
+ 2010-04-02 18:53 . 2010-04-02 18:53 7220736 c:\windows\Installer\1d06dd2.msp
+ 2010-04-24 16:05 . 2010-04-24 16:05 4199424 c:\windows\Installer\15bf80.msp
+ 2010-05-18 22:35 . 2010-05-18 22:35 5023744 c:\windows\Installer\15bf6a.msp
+ 2010-04-11 21:17 . 2010-04-11 21:17 2607104 c:\windows\Installer\15bf46.msp
+ 2010-04-11 21:17 . 2010-04-11 21:17 4210688 c:\windows\Installer\15bf45.msp
+ 2010-04-24 16:10 . 2010-04-24 16:10 8486400 c:\windows\Installer\15bf18.msp
+ 2010-02-22 11:41 . 2010-02-22 11:41 2901504 c:\windows\Installer\12f8d0.msp
+ 2010-02-22 11:36 . 2010-02-22 11:36 4272128 c:\windows\Installer\12f8bd.msi
+ 2010-04-25 14:22 . 2010-04-25 14:22 1549312 c:\windows\Installer\12e8795.msi
+ 2010-04-25 14:20 . 2010-04-25 14:20 4911104 c:\windows\Installer\12e8760.msi
+ 2010-04-25 14:13 . 2010-04-25 14:13 9472000 c:\windows\Installer\12e85ce.msi
+ 2010-04-25 14:08 . 2010-04-25 14:08 3165184 c:\windows\Installer\12e7ef2.msi
+ 2010-04-25 14:08 . 2010-04-25 14:08 1984000 c:\windows\Installer\12e7eb6.msi
- 2008-02-17 17:37 . 2010-02-10 12:42 1172240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
+ 2008-02-17 17:37 . 2010-06-11 11:22 1172240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
+ 2009-05-25 23:29 . 2010-06-11 11:22 1165584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe
- 2009-05-25 23:29 . 2010-02-10 12:42 1165584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe
+ 2009-12-18 02:16 . 2009-12-18 02:16 1949696 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\rt3d.dll
+ 2008-11-21 03:12 . 2008-11-21 03:12 1697648 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\VISFILT.DLL
+ 2008-11-21 03:12 . 2008-11-21 03:12 6224760 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\VISBRGR.DLL
+ 2008-10-25 09:34 . 2008-10-25 09:34 1594216 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\UML.DLL
+ 2009-03-04 19:16 . 2009-03-04 19:16 1848664 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\SG.DLL
+ 2008-10-25 09:33 . 2008-10-25 09:33 1241984 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\ORGCHART.DLL
+ 2008-10-25 09:33 . 2008-10-25 09:33 1179488 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\FACILITY.DLL
+ 2008-10-25 09:32 . 2008-10-25 09:32 1940320 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\DWGDP.DLL
+ 2008-08-25 22:50 . 2008-08-25 22:50 2585592 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\VBE6.DLL
+ 2009-03-06 04:00 . 2009-03-06 04:00 6596472 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONMAIN.DLL
+ 2008-11-10 10:49 . 2008-11-10 10:49 1165680 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONLIBS.DLL
+ 2008-11-24 22:16 . 2008-11-24 22:16 1020776 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\ONENOTE.EXE
+ 2009-03-06 04:26 . 2009-03-06 04:26 5466488 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\IPDESIGN.DLL
+ 2008-11-04 00:40 . 2008-11-04 00:40 1442160 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\INFOPATH.EXE
+ 2010-06-11 11:12 . 2010-02-25 06:24 1209344 c:\windows\ie8updates\KB982381-IE8\urlmon.dll
+ 2010-06-11 11:12 . 2010-02-25 06:24 5944832 c:\windows\ie8updates\KB982381-IE8\mshtml.dll
+ 2010-06-11 11:12 . 2010-02-25 06:24 1985536 c:\windows\ie8updates\KB982381-IE8\iertutil.dll
+ 2010-03-31 14:04 . 2009-12-21 19:14 1208832 c:\windows\ie8updates\KB980182-IE8\urlmon.dll
+ 2010-03-31 14:04 . 2009-12-21 19:14 5942784 c:\windows\ie8updates\KB980182-IE8\mshtml.dll
+ 2010-03-31 14:04 . 2009-12-21 19:14 1985536 c:\windows\ie8updates\KB980182-IE8\iertutil.dll
+ 2008-10-25 10:34 . 2010-02-17 08:10 2189952 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2008-10-25 10:34 . 2010-02-16 13:25 2024448 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2008-10-25 10:34 . 2010-02-16 13:25 2066816 c:\windows\Driver Cache\i386\ntkrnlpa.exe
+ 2008-10-25 10:34 . 2010-02-16 14:08 2146304 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2010-06-11 11:30 . 2010-06-11 11:30 4792320 c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_f7710b6b\System.dll
+ 2010-06-11 11:28 . 2010-06-11 11:28 1966080 c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_b31b528e\System.dll
+ 2010-06-11 11:29 . 2010-06-11 11:29 2088960 c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_e2a414dc\System.Xml.dll
+ 2010-06-11 11:30 . 2010-06-11 11:30 5513216 c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_dd0fbba5\System.Xml.dll
+ 2010-06-11 11:30 . 2010-06-11 11:30 7884800 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_365d00c5\System.Windows.Forms.dll
+ 2010-06-11 11:29 . 2010-06-11 11:29 3018752 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_33ee65a2\System.Windows.Forms.dll
+ 2010-06-11 11:30 . 2010-06-11 11:30 2244608 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_a0e3a44c\System.Drawing.dll
+ 2010-06-11 11:29 . 2010-06-11 11:29 1470464 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_e4984ddc\System.Design.dll
+ 2010-06-11 11:30 . 2010-06-11 11:30 3395584 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_6337b42b\System.Design.dll
+ 2010-06-11 11:29 . 2010-06-11 11:29 3391488 c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_69bf6e48\mscorlib.dll
+ 2010-06-11 11:30 . 2010-06-11 11:30 8908800 c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_543c9b7b\mscorlib.dll
+ 2010-06-11 10:39 . 2010-06-11 10:39 3313664 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\f231461883859922a040002dddfb7b12\WindowsBase.ni.dll
+ 2010-06-11 10:49 . 2010-06-11 10:49 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\48b66876f72f472db62de48ae4369406\UIAutomationClientsideProviders.ni.dll
+ 2010-06-11 10:38 . 2010-06-11 10:38 7949824 c:\windows\assembly\NativeImages_v2.0.50727_32\System\37217abe2c5164e59aba251860f4c79e\System.ni.dll
+ 2010-06-11 10:49 . 2010-06-11 10:49 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\563a54b98adb70fae862974042298348\System.Xml.ni.dll
+ 2010-06-11 10:47 . 2010-06-11 10:47 1917952 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\2d6a5dbee4506bf643b853e41668afa3\System.Speech.ni.dll
+ 2010-06-11 10:47 . 2010-06-11 10:47 1035264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\161b423dc4e86e569af019e838d39de5\System.Printing.ni.dll
+ 2010-06-11 10:46 . 2010-06-11 10:46 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f3440ea00eb3c40dc073b2fe03843638\System.Drawing.ni.dll
+ 2010-06-11 10:44 . 2010-06-11 10:44 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\50130ef751b98a4a11bd4ab73af7cab5\System.Data.ni.dll
+ 2010-06-11 10:45 . 2010-06-11 10:45 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\c3ba3367d03779ad6e76c5d4cdfe572a\System.Data.Linq.ni.dll
+ 2010-06-11 10:44 . 2010-06-11 10:44 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\e98726349766935ec0e9b980f19a046a\System.Core.ni.dll
+ 2010-06-11 10:44 . 2010-06-11 10:44 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\fc373f0a8dbd173c63b6b95551b1c673\ReachFramework.ni.dll
+ 2010-06-11 10:43 . 2010-06-11 10:43 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\ead93b6a4f0101cb99d09f3e3fc6491c\PresentationUI.ni.dll
+ 2010-06-11 10:39 . 2010-06-11 10:39 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\20ef773b20f6ce721ae60e5c2c2e8f80\PresentationBuildTasks.ni.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2010-06-11 10:40 . 2010-06-11 10:40 5967872 c:\windows\assembly\GAC_MSIL\System.ServiceModel\3.0.0.0__b77a5c561934e089\System.ServiceModel.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2010-06-11 10:34 . 2010-06-11 10:34 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2009-10-24 18:56 . 2009-10-24 18:56 4546560 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2010-06-11 10:35 . 2010-06-11 10:35 4546560 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2010-06-11 11:28 . 2010-06-11 11:28 1232896 c:\windows\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
- 2009-10-24 18:49 . 2009-10-24 18:49 1232896 c:\windows\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
- 2009-10-24 18:49 . 2009-10-24 18:49 1265664 c:\windows\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll
+ 2010-06-11 11:28 . 2010-06-11 11:28 1265664 c:\windows\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll
+ 2010-03-31 14:02 . 2010-02-25 06:19 1209856 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\urlmon.dll
+ 2010-03-31 14:02 . 2010-02-25 06:19 5946880 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\mshtml.dll
+ 2010-03-31 14:02 . 2010-02-25 06:19 1986048 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\iertutil.dll
+ 2010-04-14 11:49 . 2010-02-16 12:52 2190080 c:\windows\$hf_mig$\KB979683\SP3QFE\ntoskrnl.exe
+ 2010-04-14 11:49 . 2010-02-16 12:12 2024448 c:\windows\$hf_mig$\KB979683\SP3QFE\ntkrpamp.exe
+ 2010-04-14 11:49 . 2010-02-16 12:12 2066944 c:\windows\$hf_mig$\KB979683\SP3QFE\ntkrnlpa.exe
+ 2010-04-14 11:49 . 2010-02-16 12:50 2146304 c:\windows\$hf_mig$\KB979683\SP3QFE\ntkrnlmp.exe
+ 2010-03-10 14:51 . 2009-10-23 14:53 3558912 c:\windows\$hf_mig$\KB975561\SP3QFE\moviemk.exe
+ 2008-01-23 19:33 . 2010-05-28 19:37 32472008 c:\windows\system32\MRT.exe
+ 2007-08-13 18:54 . 2010-05-06 10:41 11076096 c:\windows\system32\ieframe.dll
+ 2008-01-23 19:35 . 2010-05-06 10:41 11076096 c:\windows\system32\dllcache\ieframe.dll
+ 2010-04-02 18:29 . 2010-04-02 18:29 11413504 c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp
+ 2009-11-20 23:46 . 2009-11-20 23:46 11524608 c:\windows\Installer\db5c0c.msp
+ 2010-04-02 11:30 . 2010-04-02 11:30 17456640 c:\windows\Installer\597a27.msp
+ 2010-04-24 16:09 . 2010-04-24 16:09 11750912 c:\windows\Installer\597a00.msp
+ 2010-04-24 16:05 . 2010-04-24 16:05 15154176 c:\windows\Installer\5979ea.msp
+ 2010-03-22 15:03 . 2010-03-22 15:03 11732992 c:\windows\Installer\273a9f.msp
+ 2010-02-04 16:26 . 2010-02-04 16:26 15151616 c:\windows\Installer\273a67.msp
+ 2010-06-04 22:45 . 2010-06-04 22:45 20242432 c:\windows\Installer\253a62b.msp
+ 2010-05-02 18:34 . 2010-05-02 18:34 14954496 c:\windows\Installer\21f9481.msi
+ 2010-02-19 12:52 . 2010-02-19 12:52 17004032 c:\windows\Installer\1d1b84.msi
+ 2010-04-11 21:17 . 2010-04-11 21:17 14599680 c:\windows\Installer\15bf54.msp
+ 2010-04-24 16:07 . 2010-04-24 16:07 10118144 c:\windows\Installer\15bf3a.msp
+ 2009-12-18 08:30 . 2009-12-18 08:30 13313464 c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7448A0200000030\8.2.0\AcroRd32.dll
+ 2009-03-06 03:11 . 2009-03-06 03:11 11651440 c:\windows\Installer\$PatchCache$\Managed\00002109150000000000000000F01FEC\12.0.6425\VISLIB.DLL
+ 2009-04-03 18:46 . 2009-04-03 18:46 17314688 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\MSO.DLL
+ 2010-06-11 11:12 . 2010-02-25 10:54 11070976 c:\windows\ie8updates\KB982381-IE8\ieframe.dll
+ 2010-03-31 14:04 . 2009-12-21 19:14 11070464 c:\windows\ie8updates\KB980182-IE8\ieframe.dll
+ 2010-06-11 10:30 . 2010-06-11 10:30 12024832 c:\windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP177.tmp\System.Windows.Forms.dll
+ 2010-06-11 10:48 . 2010-06-11 10:48 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\2dfe045e4b1577fdea9a2f456db0afc2\System.Windows.Forms.ni.dll
+ 2010-06-11 10:46 . 2010-06-11 10:46 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\f352c5cb50bee105e4c873ca050f9f46\System.Design.ni.dll
+ 2010-06-11 10:42 . 2010-06-11 10:42 14327808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ca898d942e4d85af4c3d5f14a77c359a\PresentationFramework.ni.dll
+ 2010-06-11 10:40 . 2010-06-11 10:40 12216320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\ba8f917fd89d7afa8885c2a326379f03\PresentationCore.ni.dll
+ 2010-03-31 14:02 . 2010-02-25 06:19 11073024 c:\windows\$hf_mig$\KB980182-IE8\SP3QFE\ieframe.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files\Softonic-Eng7\tbSoft.dll" [2010-03-17 2355224]

[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]
2010-03-17 14:45 2355224 ----a-w- c:\program files\Softonic-Eng7\tbSoft.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}"= "c:\program files\Softonic-Eng7\tbSoft.dll" [2010-03-17 2355224]

[HKEY_CLASSES_ROOT\clsid\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"E-MU USB Audio Control Panel"="c:\program files\Creative Professional\E-MU USB Audio\EmuUsbAudioCP.exe" [2007-11-26 274432]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"SigmatelSysTrayApp"="c:\program files\SigmaTel\C-Major Audio\WDM\stsystra.exe" [2007-05-10 405504]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2008-11-26 2289664]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-04-29 437584]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-05-06 2815192]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-04-27 851968]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoWelcomeScreen"= 1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoWelcomeScreen"= 1 (0x1)

[HKLM\~\startupfolder\C:^Documents and Settings^James^Start Menu^Programs^Startup^BBC iPlayer Desktop.lnk]
path=c:\documents and settings\James\Start Menu\Programs\Startup\BBC iPlayer Desktop.lnk
backup=c:\windows\pss\BBC iPlayer Desktop.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-03-24 18:17 952768 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2010-04-02 18:05 40368 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]
2006-05-10 11:12 90112 -c--a-w- c:\program files\ATI Technologies\ATI.ACE\CLIStart.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
2008-04-14 00:12 110592 ----a-w- c:\windows\system32\bthprops.cpl

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
2007-04-03 16:50 1603152 ----a-w- c:\program files\Canon\MyPrinter\BJMYPRT.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2010-06-03 00:50 1144104 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2008-11-29 18:32 133104 ----atw- c:\documents and settings\James\Local Settings\Application Data\Google\Update\GoogleUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2008-10-25 11:44 31072 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iPrint Event Monitor]
2009-09-18 15:55 57344 ----a-w- c:\windows\system32\iprntlgn.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iPrint Tray]
2009-09-18 15:54 53248 ----a-w- c:\windows\system32\iprntctl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM]
2006-09-11 04:40 218032 -c--a-w- c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
2006-09-11 04:40 218032 -c--a-w- c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler]
2006-09-11 04:40 86960 -c--a-w- c:\program files\Common Files\InstallShield\UpdateService\issch.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2010-03-26 00:10 142120 ----a-w- c:\program files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVDDXSrv]
2006-10-20 17:23 118784 -c----w- c:\program files\CyberLink\PowerDVD DX\PDVDDXSrv.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-03-17 20:53 421888 ----a-w- c:\program files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2010-02-18 10:43 248040 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
2007-04-27 01:10 851968 ----a-w- c:\program files\Synaptics\SynTP\SynTPEnh.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
2009-06-17 11:44 85160 ----a-w- c:\program files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WMPNetworkSvc"=3 (0x3)
"WLSetupSvc"=3 (0x3)
"usnjsvc"=3 (0x3)
"RoxWatch9"=2 (0x2)
"RoxMediaDB9"=3 (0x3)
"RoxLiveShare9"=2 (0x2)
"Roxio Upnp Server 9"=2 (0x2)
"Roxio UPnP Renderer 9"=3 (0x3)
"ose"=3 (0x3)
"odserv"=3 (0x3)
"Microsoft Office Groove Audit Service"=3 (0x3)
"libusbd"=2 (0x2)
"JavaQuickStarterService"=2 (0x2)
"iPod Service"=3 (0x3)
"IDriverT"=3 (0x3)
"gusvc"=2 (0x2)
"Bonjour Service"=2 (0x2)
"Ati HotKey Poller"=2 (0x2)
"Apple Mobile Device"=2 (0x2)
"stllssvr"=3 (0x3)
"Nero BackItUp Scheduler 4.0"=2 (0x2)
"idsvc"=3 (0x3)
"gupdate"=2 (0x2)
"bluCTRLService"=3 (0x3)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Games\\AoE2\\age2_x1.exe"=
"c:\\WINDOWS\\system32\\dplaysvr.exe"=
"c:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Civilization4.exe"=
"c:\\Program Files\\SopCast\\adv\\SopAdver.exe"=
"c:\\Program Files\\SopCast\\SopCast.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\TVAnts\\Tvants.exe"=
"c:\\Program Files\\Microsoft Games\\Rise of Nations\\rise.exe"=
"c:\\Program Files\\Microsoft Games\\Rise of Nations\\nations.exe"=
"c:\\Program Files\\Counter-Strike 1.6\\hl.exe"=
"c:\\Program Files\\Zattoo\\zattood.exe"=
"c:\\Program Files\\Zattoo\\Zattoo2.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Documents and Settings\\James\\Desktop\\Games\\Unreal Tournament\\UnrealTournament\\System\\UnrealTournament.exe"=
"c:\\Program Files\\Team Fortress Classic\\hl.exe"=
"c:\\Program Files\\Zattoo\\Zattoo.exe"=
"c:\\Program Files\\Spotify\\spotify.exe"=
"c:\\WINDOWS\\system32\\dxdiag.exe"=
"c:\\WINDOWS\\system32\\dpnsvr.exe"=
"c:\\Program Files\\Winamp\\winamp.exe"=
"c:\\Program Files\\Sports Interactive\\Football Manager 2010\\fm.exe"=
"c:\\Program Files\\MusicBrainz Picard\\picard.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Documents and Settings\\James\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\SoulseekNS\\slsk.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"18221:TCP"= 18221:TCP:uTorrent Port

R0 atiide;atiide;c:\windows\system32\drivers\atiide.sys [13/01/2008 11:14 3456]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [03/04/2008 18:24 164048]
R1 nipplpt2;Novell iCapture Lpt Redirector 2;c:\windows\system32\drivers\nipplpt.sys [07/01/2009 14:41 34593]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [03/04/2008 18:24 19024]
R2 emaudsv;E-MU Audio Service;c:\windows\system32\emaudsv.exe [26/11/2007 15:10 20992]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [12/02/2010 01:59 304464]
R2 SBKUPNT;SBKUPNT;c:\windows\system32\drivers\SBKUPNT.SYS [28/01/2010 16:09 14976]
R3 libusb0;LibUsb-Win32 - Kernel Driver, Version 0.1.10.1;c:\windows\system32\drivers\libusb0.sys [03/03/2008 13:07 28672]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\drivers\ManyCam.sys [14/01/2008 11:06 21632]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [12/02/2010 01:59 20952]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [02/02/2008 19:35 717296]
S3 ADM851X;ADM851X USB To Fast Ethernet Adapter;c:\windows\system32\DRIVERS\ADM851X.SYS --> c:\windows\system32\DRIVERS\ADM851X.SYS [?]
S3 emusba10;E-MU USB-Audio 1.0 Driver;c:\windows\system32\drivers\emusba10.sys [26/11/2007 15:14 163352]
S3 KernelMemory;KernelMemory;c:\documents and settings\James\Desktop\YAPM\KernelMemory.sys [17/08/2009 18:38 2432]
S3 sbusb;TOSHIBA Multimedia Center Driver(Powered by Creative);c:\windows\system32\DRIVERS\sbusb.sys --> c:\windows\system32\DRIVERS\sbusb.sys [?]
S3 XPADFL02;XPAD Filter Service 02;c:\windows\system32\drivers\xPADFL02.sys [10/03/2008 21:16 27904]
S4 bluCTRLService;bluCTRLService;c:\program files\bluCTRL\bluCTRL Receiver\bluCTRLService.exe [19/12/2008 03:06 7168]
S4 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [11/11/2009 15:49 135664]
S4 libusbd;LibUsb-Win32 - Daemon, Version 0.1.10.1;system32\libusbd-nt.exe --> system32\libusbd-nt.exe [?]

--- Other Services/Drivers In Memory ---

*Deregistered* - uphcleanhlp

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
vvdsvc REG_MULTI_SZ vvdsvc
.
Contents of the 'Scheduled Tasks' folder

2010-04-25 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 11:34]

2009-08-02 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-11-17 11:24]

2009-11-11 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-11-11 14:49]

2009-05-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-34597448-283975722-43974969-1005.job
- c:\documents and settings\James\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-11-29 18:32]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
uInternet Connection Wizard,ShellNext = hxxp://partnerpage.google.com/smallbiz.dell.com/en_uk?hl=en&client=dell-usuk&channel=uk-smb&ibd=5080113
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
Trusted Zone: o2.co.uk\*.broadband
DPF: {DAF7E6E6-D53A-439A-B28D-12271406B8A9} - hxxp://mobileapps.blackberry.com/devicesoftware/AxLoader.cab
FF - ProfilePath - c:\documents and settings\James\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://en-GB.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:en-GB:official
FF - prefs.js: keyword.URL -
FF - component: c:\documents and settings\James\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\FFExternalAlert.dll
FF - component: c:\documents and settings\James\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\RadioWMPCore.dll
FF - plugin: c:\documents and settings\James\Application Data\Facebook\npfbplugin_1_0_3.dll
FF - plugin: c:\documents and settings\James\Local Settings\Application Data\Google\Update\1.2.145.5\npGoogleOneClick8.dll
FF - plugin: c:\program files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\Google\Update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPinfotl.dll
FF - plugin: c:\program files\Veetle\Player\npvlc.dll
FF - plugin: c:\program files\Veetle\plugins\npVeetle.dll
FF - plugin: c:\program files\Veetle\VLCBroadcast\npvbp.dll
FF - plugin: c:\program files\Virtual Earth 3D\npVE3D.dll
FF - plugin: c:\windows\system32\npnipp.dll
FF - plugin: c:\windows\system32\NPSWF32.dll
FF - plugin: c:\windows\system32\npwmsdrm.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.
- - - - ORPHANS REMOVED - - - -

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-06-11 15:14
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-34597448-283975722-43974969-1005\Software\G*e*n*i*e*"!\FM Genie Scout 10]
"GameDir"="c:\\Documents and Settings\\James\\My Documents\\Sports Interactive\\Football Manager 2010\\games"
"ShortlistDir"="c:\\Documents and Settings\\James\\My Documents\\Sports Interactive\\Football Manager 2010\\shortlists"
"ScreenshotsDir"="c:\\Documents and Settings\\James\\My Documents\\Sports Interactive\\Football Manager 2010"
"SaveDir"="c:\\Documents and Settings\\James\\My Documents\\Sports Interactive\\Football Manager 2010\\"
"HistoryDir"="c:\\Documents and Settings\\James\\Desktop\\Games\\FM Genie Scout 10\\History Points"
"LangDB"="c:\\Program Files\\Sports Interactive\\Football Manager 2010\\data\\db\\1000\\lang_db.dat"
"LastSaveGame"=""
"Language"="English"
"LoadLangDB"=dword:00000001
"CompressHistoryPoints"=dword:00000000
"HighlightedAttributes"=dword:00000000
"MinCondition"=dword:00000032
"GraphStep"=dword:00000014
"SkinName"="Steklo Black"
"LastUpdateCheck"=dword:00000000
"HighQualityGUI"=dword:00000001
"AutomaticallyUpdateCheck"=dword:00000001
"AdvancedGeneration"=dword:00000000
"TranslateStaffSkills"=dword:00000001
"TranslatePlayerSkills"=dword:00000001
"TranslatePositions"=dword:00000001
"ShowHistory"=dword:00000001
"Version"=dword:0000006f
"UniqueID"="9A-F395-2B13"
"Currency"=dword:00000056
"UseProxy"=dword:00000000
"ProxyHost"=""
"ProxyPort"=""
"UseAuthentication"=dword:00000000
"UserName"=""
"UserPassword"=""

[HKEY_USERS\S-1-5-21-34597448-283975722-43974969-1005\Software\G*e*n*i*e*"!\FM Genie Scout 2009 XE]
"GameDir"="c:\\Documents and Settings\\James\\My Documents\\Sports Interactive\\Football Manager 2009\\games"
"ShortlistDir"=""
"ScreenshotsDir"="c:\\Documents and Settings\\James\\My Documents\\Sports Interactive\\Football Manager 2009"
"SaveDir"="c:\\Documents and Settings\\James\\My Documents\\Sports Interactive\\Football Manager 2009\\"
"HistoryDir"="c:\\Documents and Settings\\James\\My Documents\\Chrome Downloads\\fm_genie_scout_2009_xe_209\\FM Genie Scout 2009 XE\\History Points"
"LangDB"="c:\\Program Files\\Sports Interactive\\Football Manager 2009 1\\data\\updates\\update-930\\db\\930\\lang_db.dat"
"LastSaveGame"=""
"Language"="English"
"LoadLangDB"=dword:00000001
"CompressHistoryPoints"=dword:00000000
"HighlightedAttributes"=dword:00000000
"MinCondition"=dword:00000032
"GraphStep"=dword:00000000
"SkinName"="Champions League"
"LastUpdateCheck"=dword:00000000
"HighQualityGUI"=dword:00000001
"AutomaticallyUpdateCheck"=dword:00000001
"AdvancedGeneration"=dword:00000000
"TranslateStaffSkills"=dword:00000001
"TranslatePlayerSkills"=dword:00000001
"TranslatePositions"=dword:00000001
"ShowHistory"=dword:00000001
"Version"=dword:00000067
"UniqueID"="9A-F395-2B13"
"Currency"=dword:00000056
"UseProxy"=dword:00000000
"ProxyHost"=""
"ProxyPort"=""
"UseAuthentication"=dword:00000000
"UserName"=""
"UserPassword"=""

[HKEY_USERS\S-1-5-21-34597448-283975722-43974969-1005\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:59,a6,e5,d6,5d,c0,22,9a,b8,f4,14,bb,33,6b,d7,5d,d6,d4,52,fe,ba,70,dd,
17,01,75,41,83,6a,42,6d,60,83,37,91,14,61,d3,d8,a1,12,36,18,f9,77,fa,0e,c9,\
"??"=hex:99,46,93,9a,ee,29,81,4f,96,1e,1e,45,87,11,36,6e

[HKEY_USERS\S-1-5-21-34597448-283975722-43974969-1005\Software\SecuROM\License information*]
"datasecu"=hex:d1,5b,b6,9b,4c,2f,f7,f8,4c,22,59,55,0b,8c,dd,6e,80,41,da,c9,dd,
c9,47,cd,dc,5a,66,da,1d,18,b9,26,3d,6f,d6,e3,cd,f8,e1,be,f8,e1,63,4a,d3,54,\
"rkeysecu"=hex:a5,2b,b6,ef,23,9b,e6,1a,b4,f7,e6,23,c2,91,0c,16
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(752)
c:\windows\system32\Ati2evxx.dll
.
Completion time: 2010-06-11 15:22:02
ComboFix-quarantined-files.txt 2010-06-11 14:21
ComboFix2.txt 2010-02-12 01:18

Pre-Run: 19,565,445,120 bytes free
Post-Run: 19,580,030,976 bytes free

Current=2 Default=2 Failed=1 LastKnownGood=4 Sets=1,2,3,4
- - End Of File - - 20700B08F9C5EB723AD1AFBFDEA34FA8



Thanks a lot for your help!

Attached Files



BC AdBot (Login to Remove)

 


#2 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:09:01 PM

Posted 18 June 2010 - 07:21 PM

Hi,

Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.
  • Please subscribe to this topic, if you haven't already. You can subscribe by clicking the Options box to the right of your topic title and selecting Track This Topic.

  • Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.

  • Please reply to this post so I know you are there.
The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.

Once I receive a reply then I will return with your first instructions.

Thanks thumbup2.gif
Posted Image
m0le is a proud member of UNITE

#3 hoithere

hoithere
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:10:01 PM

Posted 19 June 2010 - 03:27 AM

Hi m0le, thanks for getting back to me. Here is the log of the GMER scan I did a day after the original post.
The computer has winamp and a firefox window running and is struggling right now, the music keeps skipping and pausing.

GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-06-16 10:35:21
Windows 5.1.2600 Service Pack 3
Running: gmer.exe; Driver: C:\DOCUME~1\James\LOCALS~1\Temp\ufdyipob.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwClose [0xB11D8C7A]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwCreateKey [0xB11D8B36]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwDeleteKey [0xB11D90EA]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwDeleteValueKey [0xB11D9014]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwDuplicateObject [0xB11D870C]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwOpenKey [0xB11D8C10]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwOpenProcess [0xB11D864C]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwOpenThread [0xB11D86B0]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwQueryValueKey [0xB11D8D30]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwRenameKey [0xB11D91B8]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwRestoreKey [0xB11D8CF0]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwSetValueKey [0xB11D8E70]
SSDT \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SASKUTIL.SYS/SUPERAdBlocker.com and SUPERAntiSpyware.com) ZwTerminateProcess [0xB129C620]
SSDT \??\C:\WINDOWS\system32\Drivers\uphcleanhlp.sys ZwUnloadKey [0xAEA936D0]

Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwCreateProcessEx [0xB11E5AC6]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwCreateSection [0xB11E58EA]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwLoadDriver [0xB11E5A24]
Code 89D07CEC ZwRequestPort
Code 89D07D8C ZwRequestWaitReplyPort
Code 89D07C4C ZwTraceEvent
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) NtCreateSection
Code 89D07CEB NtRequestPort
Code 89D07D8B NtRequestWaitReplyPort
Code 89D07C4B NtTraceEvent
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ObMakeTemporaryObject

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwCallbackReturn + 2CCC 80504568 4 Bytes JMP 54B11D90
.text ntkrnlpa.exe!NtTraceEvent 80535114 5 Bytes JMP 89D07C50
PAGE ntkrnlpa.exe!ZwLoadDriver 8058413A 7 Bytes JMP B11E5A28 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software)
PAGE ntkrnlpa.exe!NtRequestPort 805A2A10 5 Bytes JMP 89D07CF0
PAGE ntkrnlpa.exe!NtRequestWaitReplyPort 805A2D3C 5 Bytes JMP 89D07D90
PAGE ntkrnlpa.exe!NtCreateSection 805AB38E 7 Bytes JMP B11E58EE \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software)
PAGE ntkrnlpa.exe!ObMakeTemporaryObject 805BC502 5 Bytes JMP B11E1536 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software)
PAGE ntkrnlpa.exe!ObInsertObject 805C2F86 5 Bytes JMP B11E2EC2 \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software)
PAGE ntkrnlpa.exe!ZwCreateProcessEx 805D1134 7 Bytes JMP B11E5ACA \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software)
.text win32k.sys!EngAcquireSemaphore + 20E2 BF808308 5 Bytes JMP 89D074D0
.text win32k.sys!EngFreeUserMem + 5BD2 BF80EE8F 5 Bytes JMP 89D07430
.text win32k.sys!EngCopyBits + 68D BF838EFF 5 Bytes JMP 89D07610
.text win32k.sys!EngCreateBitmap + 6F4 BF83E122 5 Bytes JMP 89D07750
.text win32k.sys!EngMultiByteToWideChar + 2F32 BF8A0D51 5 Bytes JMP 89D07930
.text win32k.sys!EngAlphaBlend + 350F BF8AA40A 5 Bytes JMP 89D07A70
.text win32k.sys!EngMulDiv + 90FA BF8B4264 5 Bytes JMP 89D076B0
.text win32k.sys!XLATEOBJ_iXlate + 3A50 BF8B9E25 5 Bytes JMP 89D07570
.text win32k.sys!EngUnicodeToMultiByteN + 1756 BF8C322E 5 Bytes JMP 89D077F0
.text win32k.sys!PATHOBJ_bCloseFigure + 19F1 BF8F98FC 5 Bytes JMP 89D079D0
.text win32k.sys!EngCreateClip + 1994 BF9132F6 5 Bytes JMP 89D07B10
.text win32k.sys!EngCreateClip + 1F24 BF913886 5 Bytes JMP 89D07BB0
.text win32k.sys!EngCreateClip + 256A BF913ECC 5 Bytes JMP 89D07890
? C:\WINDOWS\system32\Drivers\uphcleanhlp.sys The system cannot find the file specified. !

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/ALWIL Software)

AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/ALWIL Software)

Device \FileSystem\Fastfat \FatCdrom aswSP.SYS (avast! self protection module/ALWIL Software)

AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)
AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)
AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)
AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)

Device \FileSystem\Fastfat \Fat aswSP.SYS (avast! self protection module/ALWIL Software)

AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat aswMon2.SYS (avast! File System Filter Driver for Windows XP/ALWIL Software)

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001f81000250 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001f81000250@00237a8b4587 0x0C 0x14 0xB0 0x11 ...
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x82 0xA6 0x12 0xC1 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001f81000250
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001f81000250@00237a8b4587 0x0C 0x14 0xB0 0x11 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x82 0xA6 0x12 0xC1 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0xB9 0x7B 0x55 0x72 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh 0x7E 0x00 0xA1 0x37 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh 0x86 0x0A 0x88 0x19 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41@khjeh 0x7C 0x67 0x37 0x05 ...
Reg HKLM\SYSTEM\ControlSet004\Services\BTHPORT\Parameters\Keys\001f81000250 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet004\Services\BTHPORT\Parameters\Keys\001f81000250@00237a8b4587 0x0C 0x14 0xB0 0x11 ...
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0
Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x82 0xA6 0x12 0xC1 ...

---- EOF - GMER 1.0.15 ----


Here's the SUPERantisptware log:

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 06/14/2010 at 02:03 AM

Application Version : 4.39.1002

Core Rules Database Version : 5063
Trace Rules Database Version: 2875

Scan type : Complete Scan
Total Scan Time : 05:15:48

Memory items scanned : 475
Memory threats detected : 0
Registry items scanned : 9688
Registry threats detected : 0
File items scanned : 33566
File threats detected : 100

Adware.Tracking Cookie
C:\Documents and Settings\James\Cookies\james@rambler[1].txt
C:\Documents and Settings\James\Cookies\james@atdmt[2].txt
.doubleclick.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
www.googleadservices.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.adtech.de [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.atdmt.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.tacoda.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.atdmt.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.imrworldwide.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.imrworldwide.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.apmebf.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.mediaplex.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.invitemedia.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.insightexpressai.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.adxpose.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.at.atwola.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.at.atwola.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.dmtracker.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.content.yieldmanager.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.adbrite.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.adbrite.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.adbrite.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.adbrite.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.media6degrees.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.media6degrees.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.adbrite.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.adbrite.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.122.2o7.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.atdmt.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.atdmt.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.bs.serving-sys.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.tacoda.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.tacoda.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.tacoda.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.tacoda.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.tacoda.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.adviva.net [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.invitemedia.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
.invitemedia.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
www.googleadservices.com [ C:\Documents and Settings\James\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
www.naiadsystems.com [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Macromedia\Flash Player\#SharedObjects\QRBDMWQ6 ]
www.warez-bb.org [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.warez-bb.org [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.warez-bb.org [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.revsci.net [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.revsci.net [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.tacoda.net [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.tacoda.net [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.tacoda.net [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.tacoda.net [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.tacoda.net [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.revsci.net [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.imrworldwide.com [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.imrworldwide.com [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
stats.mytraveline.info [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.microsoftsto.112.2o7.net [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.media6degrees.com [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.media6degrees.com [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.media6degrees.com [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.revsci.net [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.revsci.net [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.revsci.net [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.gametracker.com [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.unrulymedia.com [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.viralvideochart.unrulymedia.com [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.viralvideochart.unrulymedia.com [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.media6degrees.com [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]
.tacoda.net [ C:\Sandbox\James\DefaultBox\user\current\Application Data\Mozilla\Firefox\Profiles\e8ydp80o.default\cookies.sqlite ]


#4 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:09:01 PM

Posted 19 June 2010 - 05:43 PM

Can you run MBAM for me

Please download Malwarebytes Anti-Malware and save it to your desktop.
  • Make sure you are connected to the Internet.
  • Double-click on mbam-setup.exe to install the application or, if you are using Vista, right-click and select Run As Administrator on mbam-setup.exe to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both of these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
  • MBAM will automatically start and you will be asked to update the program before performing a scan. If an update is found, the program will automatically update itself. Press the OK button to close that box and continue. If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • On the Scanner tab:
    • Make sure the "Perform Full Scan" option is selected.
    • Then click on the Scan button.
  • If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box and continue with the removal process.
  • Back at the main Scanner screen, click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply and exit MBAM.
Note: If MBAM encounters a file that is difficult to remove, you may be asked to reboot your computer so it can proceed with the disinfection process. Regardless if prompted to restart the computer or not, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware. MBAM may make changes to your registry as part of its disinfection routine. If you're using other security programs that detect registry changes, they may alert you after scanning with MBAM. Please permit the program to allow the changes.
Posted Image
m0le is a proud member of UNITE

#5 hoithere

hoithere
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:10:01 PM

Posted 20 June 2010 - 08:17 AM

This is the one from the time of the original post and it didn't find any problems but the issues still exist, so unless you want me to do another scan, I'll just post this one as it takes 8 to 9 hours to scan.

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4189

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

11/06/2010 23:48:06
mbam-log-2010-06-11 (23-48-06).txt

Scan type: Full scan (C:\|)
Objects scanned: 281929
Time elapsed: 8 hour(s), 20 minute(s), 59 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Thanks

#6 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:09:01 PM

Posted 20 June 2010 - 03:50 PM

The PC is clean so I think you need to look elsewhere for the solution.

I recommend that you read this tutorial on the site which explains what you can do to speed up your PC.

Failing that please post a new topic in the XP forum.
Posted Image
m0le is a proud member of UNITE

#7 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:09:01 PM

Posted 28 June 2010 - 03:16 PM

Since this issue appears to be resolved ... this topic has been closed. Glad we could help. smile.gif

If you're the topic starter, and need this topic reopened, please contact me via pm with the address of the thread.

Everyone else please begin a New Topic.
Posted Image
m0le is a proud member of UNITE




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users