Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

please help! unsure which virus/viruses are on my system


  • This topic is locked This topic is locked
27 replies to this topic

#1 mrandmrsgall

mrandmrsgall

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:24 PM

Posted 16 July 2011 - 01:48 AM

Hello all.

My problem started a little over a week ago when itunes stopped working and my internet access via google chrome, ie, opera and firefox started to slow and then not connect.

I have mcafee anti virus installed, and this has not detected any problems.

i have used spyware doctor and this has removed a few isssues, however i am not sure if these are real or not. I have heard about programs which "remove" viruses which never there.

I have used microsoft security scanner also which found the exploit Java:/cve-2010-0442.g and TROJAN:WIN32/VUNDO.GEN!AV. But these have been removed.

My computer when run in normal mode will not connect to the internet, will not allow adaware or any other system to update, and my computer is running unusually slow. It also wont shut down unless the power plug is removed.

I am having to use safe mode all the time.

I am using windows xp service pack three.

I think that is as much info as i have on the issue. Below are the logs required.
The ark.log file should be the ark.txt, however it would not let me save the file as a ..txt file.

Thanks in advance for any advice.

DDS (Ver_2011-07-14.01) - NTFS_x86 NETWORK
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_24
Run by Sean at 22:54:07 on 2011-07-15
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1015.584 [GMT 1:00]
.
AV: AVG Internet Security 2011 *Disabled/Outdated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Lavasoft Ad-Watch Live! Anti-Virus *Enabled/Updated* {A1C4F2E0-7FDE-4917-AFAE-013EFC3EDE33}
AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall *Enabled*
.
============== Running Processes ================
.
C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
C:\WINDOWS\system32\mfevtps.exe
C:\PC Tools Security\pctsAuxs.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxsrvc.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Sean\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sean\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sean\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sean\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sean\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sean\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\rundll32.exe
C:\Documents and Settings\Sean\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sean\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.bbc.co.uk/
mWinlogon: Userinit = c:\windows\system32\userinit.exe
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>
BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - c:\program files\conduitengine\ConduitEngine.dll
BHO: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\program files\avg\avg10\avgssie.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20110511124529.dll
BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\program files\mcafee\siteadvisor\McIEPlg.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\program files\mcafee\siteadvisor\McIEPlg.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [AVG_TRAY] c:\program files\avg\avg10\avgtray.exe
mRun: [ISTray] "c:\pc tools security\pctsGui.exe" /hideGUI
mRun: [MSConfig] c:\windows\pchealth\helpctr\binaries\MSCONFIG.EXE /auto
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRunOnce: [RunNarrator] Narrator.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoResolveTrack = dword:1
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
LSP: c:\program files\common files\pc tools\lsp\PCTLsp.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} - hxxp://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{E4449B02-F78F-420B-B714-D04D45D8CF4F} : DHCPNameServer = 192.168.0.1
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: ipp - <Clsid value has no data>
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg10\avgpp.dll
Handler: msdaipp - <Clsid value has no data>
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "c:\program files\outlook express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
mASetup: {7790769C-0471-11d2-AF11-00C04FA35D02} - "c:\program files\outlook express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
IFEO: Your Image File Name Here without a path - ntsd -d
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\sean\application data\mozilla\firefox\profiles\1himotu7.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Secure Search
FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2269050&SearchSource=13
FF - prefs.js: keyword.URL - hxxp://uk.search.yahoo.com/search?fr=mcafee&p=
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60531.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npCouponPrinter.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npMozCouponPrinter.dll
.
---- FIREFOX POLICIES ----
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2011-2-22 22992]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-3-16 32592]
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2011-1-19 64288]
R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2010-10-13 387480]
R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2011-7-12 263888]
R0 pctDS;PC Tools Data Store;c:\windows\system32\drivers\pctDS.sys [2011-7-12 338880]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-4-5 297168]
R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [2010-5-22 84200]
R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-4-10 271480]
R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2011-4-10 188136]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2011-4-10 141792]
R2 sdAuxService;PC Tools Auxiliary Service;c:\pc tools security\pctsAuxs.exe [2011-7-12 371472]
R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2010-7-12 30432]
R3 genmcmnUSB;USB Scroll Mouse Driver;c:\windows\system32\drivers\gflmouhid.sys [2011-6-21 7808]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-5-22 314088]
R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [2010-5-22 88736]
R3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [2011-6-26 572416]
S0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2011-7-11 28552]
S0 TFSysMon;TfSysMon;c:\windows\system32\drivers\tfsysmon.sys --> c:\windows\system32\drivers\TfSysMon.sys [?]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-1-7 248656]
S1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-3-1 34896]
S1 PCTSD;PC Tools Spyware Doctor Driver;c:\windows\system32\drivers\PCTSD.sys [2011-7-12 233976]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg10\identity protection\agent\bin\AVGIDSAgent.exe [2011-4-18 7398752]
S2 avgwd;AVG WatchDog;c:\program files\avg\avg10\avgwdsvc.exe [2011-2-8 269520]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-4-10 271480]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-4-10 271480]
S2 McProxy;McAfee Proxy Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-4-10 271480]
S2 McShield;McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2011-4-10 171168]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2011-6-20 1691480]
S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2010-7-12 30432]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2011-4-14 134480]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2011-2-10 24144]
S3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2011-2-10 27216]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-5-22 56064]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [2010-11-3 13224]
S3 Lavasoft Kernexplorer;Lavasoft helper driver;c:\program files\lavasoft\ad-aware\kernexplorer.sys [2010-12-3 15232]
S3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2010-5-22 153280]
S3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2010-5-22 52320]
S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [2010-5-22 88736]
S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-5-22 84488]
S3 olMntrService;olMntrService;c:\program files\olivetti\any_way\olMntrService.exe [2006-9-22 86016]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2010-6-3 174592]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\drivers\s1018bus.sys [2010-8-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\drivers\s1018mdfl.sys [2010-8-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\drivers\s1018mdm.sys [2010-8-25 114728]
S3 sdCoreService;PC Tools Security Service;c:\pc tools security\pctsSvc.exe [2011-7-12 1117144]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [2010-11-3 27632]
S3 VASDeviceDrm;Virtual Audio Streaming with Drm (WDM);c:\windows\system32\drivers\vasdDev.sys [2010-12-10 1441024]
S4 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2010-12-3 2151640]
S4 OMSI download service;Sony Ericsson OMSI download service;c:\program files\sony ericsson\sony ericsson pc suite\SupServ.exe [2010-11-5 90112]
S4 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\sony ericsson\sony ericsson pc companion\PCCService.exe [2011-5-13 152064]
S4 TomTomHOMEService;TomTomHOMEService;c:\program files\tomtom home 2\TomTomHOMEService.exe [2010-8-24 92008]
S4 UMVPFSrv;UMVPFSrv;c:\program files\common files\logishrd\lvmvfm\UMVPFSrv.exe [2011-3-4 428640]
.
=============== Created Last 30 ================
.
2011-07-12 17:26:21 73658768 ----a-w- C:\msert.exe
2011-07-12 17:25:47 656320 ----a-w- c:\windows\system32\drivers\pctEFA.sys
2011-07-12 17:25:47 338880 ----a-w- c:\windows\system32\drivers\pctDS.sys
2011-07-12 17:25:43 251560 ----a-w- c:\windows\system32\drivers\pctgntdi.sys
2011-07-12 17:25:20 263888 ----a-w- c:\windows\system32\drivers\PCTCore.sys
2011-07-12 17:25:20 160576 ----a-w- c:\windows\system32\drivers\PCTAppEvent.sys
2011-07-12 17:25:04 233976 ----a-w- c:\windows\system32\drivers\PCTSD.sys
2011-07-12 17:24:49 70664 ----a-w- c:\windows\system32\drivers\pctplsg.sys
2011-07-12 17:24:22 -------- d-----w- c:\program files\common files\PC Tools
2011-07-12 17:24:21 -------- d-----w- C:\PC Tools Security
2011-07-12 17:21:14 -------- d-----w- c:\documents and settings\all users\application data\PC Tools
2011-07-11 21:48:07 -------- d-----w- c:\windows\system32\MpEngineStore
2011-07-11 20:51:45 28552 ----a-w- c:\windows\system32\drivers\pavboot.sys
2011-07-11 20:50:08 -------- d-----w- c:\program files\Panda Security
2011-07-10 14:42:18 -------- d-----w- c:\documents and settings\sean\application data\AVG10
2011-07-10 14:29:35 -------- d-----w- c:\windows\system32\drivers\AVG
2011-07-09 22:28:30 -------- d-----w- c:\documents and settings\all users\application data\AVG10
2011-07-09 22:24:56 -------- d-----w- c:\program files\AVG
2011-07-09 22:08:14 -------- d-----w- c:\program files\iPod
2011-07-09 22:07:45 -------- d--h--w- c:\documents and settings\all users\application data\Common Files
2011-07-09 21:57:29 -------- d-----w- c:\documents and settings\all users\application data\MFAData
2011-06-29 21:11:55 -------- d-----w- c:\program files\MSXML 4.0
2011-06-26 19:08:08 -------- d-----w- c:\program files\common files\Jasc Software Inc
2011-06-26 19:07:51 -------- d-----w- c:\program files\Jasc Software Inc
2011-06-26 08:31:34 172032 ----a-r- c:\windows\system32\igfxres.dll
2011-06-26 07:29:50 137752 ----a-r- c:\windows\system32\SET118.tmp
2011-06-26 07:29:48 3293184 ----a-r- c:\windows\system32\SET117.tmp
2011-06-26 07:29:46 141848 ----a-r- c:\windows\system32\SET114.tmp
2011-06-26 07:29:45 208896 ----a-r- c:\windows\system32\SET112.tmp
2011-06-26 07:29:43 256536 ----a-r- c:\windows\system32\SET10E.tmp
2011-06-26 07:29:42 48128 ----a-r- c:\windows\system32\SET10D.tmp
2011-06-26 07:29:41 102400 ----a-r- c:\windows\system32\SET10C.tmp
2011-06-26 07:29:39 2643968 ----a-r- c:\windows\system32\SET109.tmp
2011-06-26 07:29:35 1668960 ----a-r- c:\windows\system32\SET108.tmp
2011-06-26 07:29:33 151040 ----a-r- c:\windows\system32\SET107.tmp
2011-06-26 07:29:32 57344 ----a-r- c:\windows\system32\SET106.tmp
2011-06-26 07:03:05 -------- d-----w- c:\program files\RALINK
2011-06-26 07:01:52 572416 ----a-w- c:\windows\system32\drivers\rt2860.sys
2011-06-25 15:00:06 2106216 ----a-w- c:\program files\mozilla firefox\D3DCompiler_43.dll
2011-06-25 15:00:05 1998168 ----a-w- c:\program files\mozilla firefox\d3dx9_43.dll
2011-06-25 07:59:00 -------- d-----w- c:\windows\system32\x64
2011-06-25 07:56:53 147456 ----a-w- c:\windows\system32\igfxCoIn_v4926.dll
2011-06-23 21:08:54 -------- d-----w- c:\windows\system32\wbem\repository\FS
2011-06-23 21:08:54 -------- d-----w- c:\windows\system32\wbem\Repository
2011-06-21 18:48:23 81936 ----a-w- c:\windows\system32\RtNicProp32.dll
2011-06-21 18:48:23 102416 ----a-w- c:\windows\system32\RTNUninst32.dll
2011-06-21 18:47:03 7808 ----a-w- c:\windows\system32\drivers\gflmouhid.sys
2011-06-20 21:15:27 359016 ----a-w- c:\windows\vncutil.exe
2011-06-20 21:15:24 53864 ----a-w- c:\windows\system32\RtkCoInstXP.dll
2011-06-20 21:15:24 129640 ----a-w- c:\windows\RtkAudioService.exe
2011-06-20 21:15:15 1395800 ----a-w- c:\windows\system32\drivers\Monfilt.sys
2011-06-20 21:15:04 1691480 ----a-w- c:\windows\system32\drivers\Ambfilt.sys
2011-06-20 20:36:42 -------- d-----w- c:\documents and settings\all users\Uniblue
2011-06-20 20:28:28 -------- dc-h--w- c:\documents and settings\all users\application data\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}
2011-06-20 20:25:01 -------- d-----w- c:\documents and settings\sean\local settings\application data\PackageAware
2011-06-19 20:54:26 -------- d-----w- c:\documents and settings\sean\application data\Uniblue
2011-06-19 20:53:32 -------- d-----w- c:\program files\Uniblue
2011-06-16 08:08:53 -------- d-----w- c:\windows\SxsCaPendDel
.
==================== Find3M ====================
.
2011-06-28 21:14:23 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-06-25 07:48:49 84584 ----a-w- c:\windows\SOUNDMAN.EXE
2011-06-25 07:48:49 1833576 ----a-w- c:\windows\SkyTel.exe
2011-06-25 07:48:48 6108776 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2011-06-25 07:48:48 1489512 ----a-w- c:\windows\RtlUpd.exe
2011-06-25 07:48:44 9721960 ----a-w- c:\windows\RTLCPL.EXE
2011-06-25 07:48:44 891496 ----a-w- c:\windows\system32\RTSndMgr.CPL
2011-06-25 07:48:19 2180712 ----a-w- c:\windows\MicCal.exe
2011-06-25 07:48:11 64104 ----a-w- c:\windows\ALCMTR.EXE
2011-06-25 07:48:11 2815592 ----a-w- c:\windows\ALCWZRD.EXE
2011-06-25 07:48:08 285288 ----a-w- c:\windows\system32\ALSNDMGR.CPL
2011-06-20 21:15:19 19557480 ----a-w- c:\windows\RTHDCPL.EXE
2011-05-02 15:31:52 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 17:25:27 151552 ----a-w- c:\windows\system32\SET227.tmp
2011-04-29 17:25:27 151552 ----a-w- c:\windows\system32\schannel.dll
2011-04-29 16:19:43 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-25 16:11:12 916480 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 16:11:11 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-04-25 16:11:11 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-04-25 12:01:22 385024 ----a-w- c:\windows\system32\html.iec
2011-04-21 13:37:43 105472 ----a-w- c:\windows\system32\drivers\mup.sys
2011-04-18 10:23:39 16432 -c--a-w- c:\windows\system32\lsdelete.exe
.
============= FINISH: 22:55:23.37 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:10:24 AM

Posted 19 July 2011 - 06:22 PM

Hi,

Please do the following:

Download ComboFix from one of the following locations:
Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

* IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here
  • Double click on ComboFix.exe & follow the prompts.
As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.

  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Posted Image

  • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

Posted Image

  • Click on Yes, to continue scanning for malware.
When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.
Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions.

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#3 mrandmrsgall

mrandmrsgall
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:24 PM

Posted 20 July 2011 - 02:48 PM

Hello,

Thank you for your help so far.

I have done as instructed and the combofix .txt file is pasted below.



ComboFix 11-07-20.02 - Sean 20/07/2011 20:19:39.2.2 - x86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1015.764 [GMT 1:00]
Running from: c:\documents and settings\Sean\Desktop\ComboFix.exe
AV: AVG Internet Security 2011 *Disabled/Outdated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall *Enabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator.EEEPC\Application Data\inst.exe
.
.
((((((((((((((((((((((((( Files Created from 2011-06-20 to 2011-07-20 )))))))))))))))))))))))))))))))
.
.
2011-07-20 06:46 . 2011-07-20 06:46 -------- d-----w- c:\windows\LastGood
2011-07-15 21:07 . 2011-07-15 21:08 -------- d-sh--w- c:\documents and settings\TEMP
2011-07-12 17:26 . 2011-07-12 17:27 73658768 ----a-w- C:\msert.exe
2011-07-12 17:25 . 2010-07-16 13:59 656320 ----a-w- c:\windows\system32\drivers\pctEFA.sys
2011-07-12 17:25 . 2010-07-16 13:59 338880 ----a-w- c:\windows\system32\drivers\pctDS.sys
2011-07-12 17:25 . 2011-05-06 12:26 251560 ----a-w- c:\windows\system32\drivers\pctgntdi.sys
2011-07-12 17:25 . 2011-05-11 12:35 160576 ----a-w- c:\windows\system32\drivers\PCTAppEvent.sys
2011-07-12 17:25 . 2011-05-11 08:55 263888 ----a-w- c:\windows\system32\drivers\PCTCore.sys
2011-07-12 17:25 . 2011-03-10 08:08 233976 ----a-w- c:\windows\system32\drivers\PCTSD.sys
2011-07-12 17:24 . 2011-05-06 12:28 70664 ----a-w- c:\windows\system32\drivers\pctplsg.sys
2011-07-12 17:24 . 2011-07-12 17:31 -------- d-----w- c:\program files\Common Files\PC Tools
2011-07-12 17:24 . 2011-07-20 06:41 -------- d-----w- C:\PC Tools Security
2011-07-12 17:21 . 2011-07-13 16:57 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Tools
2011-07-11 21:48 . 2011-07-12 17:31 -------- d-----w- c:\windows\system32\MpEngineStore
2011-07-11 20:51 . 2009-06-30 09:37 28552 ----a-w- c:\windows\system32\drivers\pavboot.sys
2011-07-11 20:50 . 2011-07-11 20:50 -------- d-----w- c:\program files\Panda Security
2011-07-10 14:42 . 2011-07-10 14:42 -------- d-----w- c:\documents and settings\Sean\Application Data\AVG10
2011-07-10 14:20 . 2011-07-10 14:24 -------- d-----w- c:\documents and settings\Administrator.EEEPC
2011-07-09 22:28 . 2011-07-20 06:46 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG10
2011-07-09 22:24 . 2011-07-09 22:24 -------- d-----w- c:\program files\AVG
2011-07-09 22:08 . 2011-07-09 22:08 -------- d-----w- c:\program files\iPod
2011-07-09 22:07 . 2011-07-09 22:07 -------- d--h--w- c:\documents and settings\All Users\Application Data\Common Files
2011-07-09 21:57 . 2011-07-20 18:58 -------- d-----w- c:\documents and settings\All Users\Application Data\MFAData
2011-07-05 18:42 . 2011-07-05 18:43 -------- d-----w- c:\program files\QuickTime
2011-06-29 21:11 . 2011-06-29 21:11 -------- d-----w- c:\program files\MSXML 4.0
2011-06-26 19:08 . 2011-06-26 19:08 -------- d-----w- c:\program files\Common Files\Jasc Software Inc
2011-06-26 19:07 . 2011-06-26 19:07 -------- d-----w- c:\program files\Jasc Software Inc
2011-06-26 08:31 . 2007-10-30 07:39 172032 ----a-r- c:\windows\system32\igfxres.dll
2011-06-26 07:29 . 2007-11-08 15:56 137752 ----a-r- c:\windows\system32\SET118.tmp
2011-06-26 07:29 . 2007-10-30 07:39 3293184 ----a-r- c:\windows\system32\SET117.tmp
2011-06-26 07:29 . 2007-11-08 15:56 141848 ----a-r- c:\windows\system32\SET114.tmp
2011-06-26 07:29 . 2007-10-30 07:39 208896 ----a-r- c:\windows\system32\SET112.tmp
2011-06-26 07:29 . 2007-11-08 15:56 256536 ----a-r- c:\windows\system32\SET10E.tmp
2011-06-26 07:29 . 2007-10-30 07:39 48128 ----a-r- c:\windows\system32\SET10D.tmp
2011-06-26 07:29 . 2007-10-30 07:39 102400 ----a-r- c:\windows\system32\SET10C.tmp
2011-06-26 07:29 . 2007-10-30 08:00 2643968 ----a-r- c:\windows\system32\SET109.tmp
2011-06-26 07:29 . 2007-10-30 08:00 1668960 ----a-r- c:\windows\system32\SET108.tmp
2011-06-26 07:29 . 2007-10-30 08:00 151040 ----a-r- c:\windows\system32\SET107.tmp
2011-06-26 07:29 . 2007-10-30 08:00 57344 ----a-r- c:\windows\system32\SET106.tmp
2011-06-26 07:03 . 2011-06-26 07:03 -------- d-----w- c:\program files\RALINK
2011-06-26 07:01 . 2007-11-15 20:18 572416 ----a-w- c:\windows\system32\drivers\rt2860.sys
2011-06-25 18:23 . 2011-06-25 18:23 -------- d-----w- c:\program files\Apple Software Update
2011-06-25 15:00 . 2011-06-25 15:00 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll
2011-06-25 15:00 . 2011-06-25 15:00 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll
2011-06-25 07:59 . 2011-06-25 07:59 -------- d-----w- c:\windows\system32\x64
2011-06-25 07:56 . 2011-06-25 07:56 147456 ----a-w- c:\windows\system32\igfxCoIn_v4926.dll
2011-06-23 21:08 . 2011-06-23 21:08 -------- d-----w- c:\windows\system32\wbem\Repository
2011-06-21 18:48 . 2011-06-21 18:48 81936 ----a-w- c:\windows\system32\RtNicProp32.dll
2011-06-21 18:48 . 2011-06-21 18:48 102416 ----a-w- c:\windows\system32\RTNUninst32.dll
2011-06-21 18:47 . 2011-06-25 07:55 7808 ----a-w- c:\windows\system32\drivers\gflmouhid.sys
2011-06-20 21:15 . 2011-06-25 07:48 359016 ----a-w- c:\windows\vncutil.exe
2011-06-20 21:15 . 2011-06-25 07:48 53864 ----a-w- c:\windows\system32\RtkCoInstXP.dll
2011-06-20 21:15 . 2011-06-25 07:48 129640 ----a-w- c:\windows\RtkAudioService.exe
2011-06-20 21:15 . 2011-06-25 07:48 1395800 ----a-w- c:\windows\system32\drivers\Monfilt.sys
2011-06-20 21:15 . 2011-06-25 07:48 1691480 ----a-w- c:\windows\system32\drivers\Ambfilt.sys
2011-06-20 20:36 . 2011-06-20 20:36 -------- d-----w- c:\documents and settings\All Users\Uniblue
2011-06-20 20:28 . 2011-06-20 20:28 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{AB2D8F2E-F7AD-4446-A11A-50D846B2CF2A}
2011-06-20 20:25 . 2011-06-20 20:25 -------- d-----w- c:\documents and settings\Sean\Local Settings\Application Data\PackageAware
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-28 21:14 . 2011-01-22 19:00 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-06-25 07:48 . 2010-05-22 20:23 84584 ----a-w- c:\windows\SOUNDMAN.EXE
2011-06-25 07:48 . 2010-05-22 20:23 1833576 ----a-w- c:\windows\SkyTel.exe
2011-06-25 07:48 . 2010-05-22 20:23 1489512 ----a-w- c:\windows\RtlUpd.exe
2011-06-25 07:48 . 2010-05-22 20:23 6108776 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys
2011-06-25 07:48 . 2010-05-22 20:23 891496 ----a-w- c:\windows\system32\RTSndMgr.CPL
2011-06-25 07:48 . 2010-05-22 20:23 9721960 ----a-w- c:\windows\RTLCPL.EXE
2011-06-25 07:48 . 2010-05-22 20:23 2180712 ----a-w- c:\windows\MicCal.exe
2011-06-25 07:48 . 2010-05-22 20:23 64104 ----a-w- c:\windows\ALCMTR.EXE
2011-06-25 07:48 . 2010-05-22 20:23 2815592 ----a-w- c:\windows\ALCWZRD.EXE
2011-06-25 07:48 . 2010-05-22 20:23 285288 ----a-w- c:\windows\system32\ALSNDMGR.CPL
2011-06-20 21:15 . 2010-05-22 20:23 19557480 ----a-w- c:\windows\RTHDCPL.EXE
2011-05-14 21:47 . 2011-05-14 21:47 53248 ----a-r- c:\documents and settings\Sean\Application Data\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2011-05-02 15:31 . 2010-05-22 19:21 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 17:25 . 2011-04-29 17:25 151552 ----a-w- c:\windows\system32\SET227.tmp
2011-04-29 17:25 . 2007-12-20 21:26 151552 ----a-w- c:\windows\system32\schannel.dll
2011-04-29 16:19 . 2007-12-20 21:26 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-25 16:11 . 2007-12-20 21:26 916480 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 16:11 . 2007-12-20 21:26 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-04-25 16:11 . 2007-12-20 21:26 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-04-25 12:01 . 2007-12-20 21:26 385024 ----a-w- c:\windows\system32\html.iec
2011-06-25 15:00 . 2011-05-21 06:40 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2011-04-14 13:01 . 2011-04-10 09:16 24376 ----a-w- c:\program files\mozilla firefox\components\Scriptff.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-05-28_17.18.13 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-04-18 21:51 . 2011-04-18 21:51 51024 c:\windows\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_4ddc769f\vcomp90.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 51024 c:\windows\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_214ee422\vcomp90.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 59728 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90rus.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 42832 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90kor.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 43344 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90jpn.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 61264 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90ita.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 62800 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90fra.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 61776 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90esp.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 61776 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90esn.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 53584 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90enu.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 63312 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90deu.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 36688 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90cht.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 35664 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90chs.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 59728 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_467ea28b\mfc90rus.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 42832 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_467ea28b\mfc90kor.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 43344 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_467ea28b\mfc90jpn.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 61264 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_467ea28b\mfc90ita.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 62800 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_467ea28b\mfc90fra.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 61776 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_467ea28b\mfc90esp.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 61776 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_467ea28b\mfc90esn.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 53584 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_467ea28b\mfc90enu.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 63312 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_467ea28b\mfc90deu.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 36688 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_467ea28b\mfc90cht.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 35664 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_467ea28b\mfc90chs.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfcm90u.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfcm90.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_d5fe2ecb\mfcm90u.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_d5fe2ecb\mfcm90.dll
+ 2011-05-13 19:17 . 2011-05-13 19:17 65536 c:\windows\WinSxS\x86_Microsoft.VC80.OpenMP_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_452bf920\vcomp.dll
+ 2011-05-13 18:45 . 2011-05-13 18:45 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80KOR.dll
+ 2011-05-13 18:45 . 2011-05-13 18:45 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80JPN.dll
+ 2011-05-13 18:45 . 2011-05-13 18:45 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ITA.dll
+ 2011-05-13 18:45 . 2011-05-13 18:45 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80FRA.dll
+ 2011-05-13 18:45 . 2011-05-13 18:45 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ESP.dll
+ 2011-05-13 18:45 . 2011-05-13 18:45 57344 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ENU.dll
+ 2011-05-13 18:45 . 2011-05-13 18:45 65536 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80DEU.dll
+ 2011-05-13 18:45 . 2011-05-13 18:45 45056 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80CHT.dll
+ 2011-05-13 18:45 . 2011-05-13 18:45 40960 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80CHS.dll
+ 2011-05-14 00:06 . 2011-05-14 00:06 57856 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfcm80u.dll
+ 2011-05-14 00:23 . 2011-05-14 00:23 69632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfcm80.dll
+ 2011-05-13 17:37 . 2011-05-13 17:37 97280 c:\windows\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll
+ 2009-06-28 22:42 . 2009-06-28 22:42 91656 c:\windows\WinSxS\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.1.0_x-ww_2a41bceb\msxml4r.dll
+ 2011-06-26 19:08 . 2011-06-26 19:08 82432 c:\windows\WinSxS\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.0.0_x-ww_29c3ad6a\msxml4r.dll
+ 2011-06-26 07:29 . 2011-06-25 07:59 57344 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igxprd32.dll
+ 2011-06-26 07:29 . 2011-06-25 07:59 48128 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igfxsrvc.dll
+ 2011-06-26 07:29 . 2007-10-30 07:40 24576 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igfxexps.dll
+ 2011-06-26 07:27 . 2009-03-06 20:18 67072 c:\windows\system32\ReinstallBackups\0042\DriverFiles\SDRTCPRM.dll
+ 2011-06-25 07:59 . 2007-10-30 08:00 57344 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igxprd32.dll
+ 2011-06-25 07:59 . 2007-10-30 07:39 48128 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igfxsrvc.dll
+ 2011-06-25 07:59 . 2011-06-25 07:56 24576 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igfxexps.dll
+ 2011-06-25 07:57 . 2007-10-30 08:00 57344 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igxprd32.dll
+ 2011-06-25 07:57 . 2007-10-30 07:39 48128 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igfxsrvc.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 24576 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igfxexps.dll
+ 2011-06-25 07:57 . 2007-10-30 08:00 57344 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igxprd32.dll
+ 2011-06-25 07:57 . 2007-10-30 07:39 48128 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igfxsrvc.dll
+ 2011-06-25 07:57 . 2007-10-30 07:40 24576 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igfxexps.dll
+ 2011-06-25 07:55 . 2006-02-28 12:00 12160 c:\windows\system32\ReinstallBackups\0036\DriverFiles\i386\mouhid.sys
+ 2011-06-25 07:55 . 2008-04-13 18:39 23040 c:\windows\system32\ReinstallBackups\0036\DriverFiles\i386\mouclass.sys
+ 2011-06-25 07:49 . 2011-06-20 21:15 84584 c:\windows\system32\ReinstallBackups\0032\DriverFiles\SOUNDMAN.EXE
+ 2011-06-25 07:49 . 2008-04-14 00:12 23552 c:\windows\system32\ReinstallBackups\0032\DriverFiles\i386\wdmaud.drv
+ 2011-06-25 07:49 . 2008-04-13 18:45 49408 c:\windows\system32\ReinstallBackups\0032\DriverFiles\i386\stream.sys
+ 2011-06-25 07:49 . 2008-04-13 18:45 60160 c:\windows\system32\ReinstallBackups\0032\DriverFiles\i386\drmk.sys
+ 2011-06-25 07:49 . 2011-06-20 21:15 64104 c:\windows\system32\ReinstallBackups\0032\DriverFiles\ALCMTR.EXE
+ 2011-06-21 18:47 . 2006-02-28 12:00 12160 c:\windows\system32\ReinstallBackups\0030\DriverFiles\i386\mouhid.sys
+ 2011-06-21 18:47 . 2008-04-13 18:39 23040 c:\windows\system32\ReinstallBackups\0030\DriverFiles\i386\mouclass.sys
+ 2011-06-20 21:16 . 2008-06-18 10:01 77824 c:\windows\system32\ReinstallBackups\0029\DriverFiles\SOUNDMAN.EXE
+ 2011-06-20 21:15 . 2008-04-14 00:12 23552 c:\windows\system32\ReinstallBackups\0029\DriverFiles\i386\wdmaud.drv
+ 2011-06-20 21:15 . 2008-04-13 18:45 49408 c:\windows\system32\ReinstallBackups\0029\DriverFiles\i386\stream.sys
+ 2011-06-20 21:15 . 2008-04-13 18:45 60160 c:\windows\system32\ReinstallBackups\0029\DriverFiles\i386\drmk.sys
+ 2011-06-20 21:16 . 2008-06-19 08:20 57344 c:\windows\system32\ReinstallBackups\0029\DriverFiles\ALCMTR.EXE
+ 2011-06-25 07:56 . 2008-04-13 18:36 68224 c:\windows\system32\ReinstallBackups\0014\DriverFiles\i386\pci.sys
+ 2011-06-26 07:28 . 2011-06-25 07:59 57344 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igxprd32.dll
+ 2011-06-26 07:28 . 2011-06-25 07:59 48128 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igfxsrvc.dll
+ 2011-06-26 07:28 . 2011-06-25 07:59 24576 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igfxexps.dll
+ 2007-12-20 21:26 . 2011-06-26 08:35 73212 c:\windows\system32\perfc009.dat
+ 2003-04-18 15:29 . 2003-04-18 15:29 82432 c:\windows\system32\msxml4r.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 66560 c:\windows\system32\mshtmled.dll
- 2007-12-20 21:26 . 2011-02-22 23:06 66560 c:\windows\system32\mshtmled.dll
+ 2006-11-08 04:03 . 2011-04-25 16:11 55296 c:\windows\system32\msfeedsbs.dll
- 2006-11-08 04:03 . 2011-02-22 23:06 55296 c:\windows\system32\msfeedsbs.dll
+ 2003-12-08 12:58 . 2003-12-08 12:58 94208 c:\windows\system32\Macromed\Flash\GetFlash.exe
- 2007-12-20 21:26 . 2011-02-22 23:06 25600 c:\windows\system32\jsproxy.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 25600 c:\windows\system32\jsproxy.dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(32).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(31).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(30).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(29).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(28).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(27).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(26).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(25).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(24).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(23).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(22).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(21).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(20).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(19).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(18).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(17).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(16).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(15).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(14).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 57344 c:\windows\system32\igxprd32(13).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(31).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(30).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(29).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(28).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(27).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(26).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(25).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(24).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(23).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(22).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(21).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(20).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(19).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(18).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(17).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(16).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(15).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(14).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(13).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 48128 c:\windows\system32\igfxsrvc(12).dll
+ 2011-06-25 18:22 . 2011-05-10 07:06 42496 c:\windows\system32\DRVSTORE\usbaapl_5CBB3A09528F68FC4AD2F36E43C028E7E6F20400\usbaapl.sys
+ 2011-06-25 18:22 . 2011-05-10 07:06 18432 c:\windows\system32\DRVSTORE\netaapl_B71F8545DA20A81C41BFD744E8D7D9784787E916\netaapl.sys
+ 2011-06-25 07:57 . 2011-06-25 07:56 57344 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igxprd32.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 48128 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igfxsrvc.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 24576 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igfxexps.dll
+ 2011-07-05 18:04 . 2008-04-17 12:12 15464 c:\windows\system32\DRVSTORE\GEARAspiWD_D213663B6381F01E45A131159A9DEFE018321CB3\x86\GEARAspiWDM.sys
- 2010-05-22 12:54 . 2010-09-28 15:44 41984 c:\windows\system32\drivers\usbaapl.sys
+ 2010-05-22 12:54 . 2011-02-18 16:36 41984 c:\windows\system32\drivers\usbaapl.sys
+ 2010-05-22 20:22 . 2008-01-16 18:58 47360 c:\windows\system32\drivers\RTSTOR.sys
- 2010-05-22 20:22 . 2008-01-17 02:58 47360 c:\windows\system32\drivers\RTSTOR.sys
+ 2010-05-22 12:57 . 2008-04-17 12:12 15464 c:\windows\system32\drivers\GEARAspiWDM.sys
+ 2011-06-15 07:25 . 2010-02-16 04:38 49904 c:\windows\system32\drivers\BVRPMPR5.SYS
+ 2010-07-12 03:33 . 2010-07-12 03:33 30432 c:\windows\system32\drivers\avgfwdx.sys
- 2010-10-07 12:23 . 2010-10-07 12:23 91424 c:\windows\system32\dnssd.dll
+ 2011-04-06 15:20 . 2011-04-06 15:20 91424 c:\windows\system32\dnssd.dll
+ 2010-06-02 07:14 . 2011-04-25 16:11 12800 c:\windows\system32\dllcache\xpshims.dll
- 2010-06-02 07:14 . 2011-02-22 23:06 12800 c:\windows\system32\dllcache\xpshims.dll
- 2007-12-20 21:26 . 2011-02-22 23:06 66560 c:\windows\system32\dllcache\mshtmled.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 66560 c:\windows\system32\dllcache\mshtmled.dll
+ 2010-03-11 12:38 . 2011-04-25 16:11 55296 c:\windows\system32\dllcache\msfeedsbs.dll
- 2010-03-11 12:38 . 2011-02-22 23:06 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 43520 c:\windows\system32\dllcache\licmgr10.dll
- 2007-12-20 21:26 . 2011-02-22 23:06 43520 c:\windows\system32\dllcache\licmgr10.dll
- 2007-12-20 21:26 . 2011-02-22 23:06 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 25600 c:\windows\system32\dllcache\jsproxy.dll
- 2010-05-25 01:32 . 2009-08-26 22:04 53248 c:\windows\system32\CSVer.dll
+ 2010-05-25 01:32 . 2008-06-04 06:55 53248 c:\windows\system32\CSVer.dll
- 2010-05-22 19:26 . 2011-05-25 18:05 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2010-05-22 19:26 . 2011-07-13 18:07 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
- 2010-05-22 19:26 . 2011-05-25 18:05 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2010-05-22 19:26 . 2011-07-13 18:07 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2011-05-28 19:49 . 2011-07-13 18:07 32768 c:\windows\system32\config\systemprofile\Cookies\index.dat
- 2010-05-22 19:26 . 2011-05-25 18:05 32768 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2010-07-12 03:33 . 2010-07-12 03:33 51040 c:\windows\system32\avgfwdx.dll
+ 2011-07-20 06:46 . 2011-03-16 15:03 32592 c:\windows\LastGood\system32\DRIVERS\avgrkx86.sys
+ 2011-07-20 06:46 . 2011-03-01 13:25 34896 c:\windows\LastGood\system32\DRIVERS\avgmfx86.sys
+ 2011-07-20 06:46 . 2011-02-10 06:53 27216 c:\windows\LastGood\system32\DRIVERS\AVGIDSShim.sys
+ 2011-07-20 06:46 . 2011-02-10 06:53 24144 c:\windows\LastGood\system32\DRIVERS\AVGIDSFilter.sys
+ 2011-07-20 06:46 . 2011-02-22 07:13 22992 c:\windows\LastGood\system32\DRIVERS\AVGIDSEH.sys
+ 2011-06-29 21:12 . 2011-06-29 21:12 32768 c:\windows\Installer\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}\icon.exe
+ 2011-06-25 18:23 . 2011-06-25 18:23 27136 c:\windows\Installer\{C6579A65-9CAE-4B31-8B6B-3306E0630A66}\AppleSoftwareUpdateIco.exe
+ 2010-08-22 09:54 . 2011-06-16 08:54 35088 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
- 2010-08-22 09:54 . 2011-05-11 08:05 35088 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
+ 2010-08-22 09:54 . 2011-06-16 08:54 18704 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
- 2010-08-22 09:54 . 2011-05-11 08:05 18704 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
+ 2010-08-22 09:54 . 2011-06-16 08:54 20240 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
- 2010-08-22 09:54 . 2011-05-11 08:05 20240 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
- 2010-12-19 10:49 . 2011-04-21 21:18 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2010-12-19 10:49 . 2011-06-16 08:31 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2011-06-29 21:12 . 2011-06-29 21:12 32768 c:\windows\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe
+ 2011-06-26 19:08 . 2011-06-26 19:08 22486 c:\windows\Installer\{24960CD0-661D-4957-9D5F-D2905A30EDB1}\JascAfterShotProgram_24960CD0661D49579D5FD2905A30EDB1.exe
+ 2011-06-26 19:08 . 2011-06-26 19:08 22486 c:\windows\Installer\{24960CD0-661D-4957-9D5F-D2905A30EDB1}\JascAfterShotDesktop_24960CD0661D49579D5FD2905A30EDB1.exe
+ 2011-06-26 19:08 . 2011-06-26 19:08 22486 c:\windows\Installer\{24960CD0-661D-4957-9D5F-D2905A30EDB1}\ARPPRODUCTICON.exe
+ 2003-12-29 09:57 . 2003-12-29 09:57 69632 c:\windows\Installer\$PatchCache$\Managed\0DC06942D1667594D9F52D09A503DE1B\5.22.0\Twunk_32.exe
+ 2003-12-29 09:57 . 2003-12-29 09:57 48560 c:\windows\Installer\$PatchCache$\Managed\0DC06942D1667594D9F52D09A503DE1B\5.22.0\Twunk_16.exe
+ 2003-12-29 09:57 . 2003-12-29 09:57 77312 c:\windows\Installer\$PatchCache$\Managed\0DC06942D1667594D9F52D09A503DE1B\5.22.0\Twain_32.dll
+ 2003-12-29 09:57 . 2003-12-29 09:57 87328 c:\windows\Installer\$PatchCache$\Managed\0DC06942D1667594D9F52D09A503DE1B\5.22.0\Twain.dll
+ 2011-06-16 08:20 . 2011-02-22 23:06 12800 c:\windows\ie8updates\KB2530548-IE8\xpshims.dll
+ 2011-06-16 08:20 . 2011-02-22 23:06 66560 c:\windows\ie8updates\KB2530548-IE8\mshtmled.dll
+ 2011-06-16 08:20 . 2011-02-22 23:06 55296 c:\windows\ie8updates\KB2530548-IE8\msfeedsbs.dll
+ 2011-06-16 08:20 . 2011-02-22 23:06 43520 c:\windows\ie8updates\KB2530548-IE8\licmgr10.dll
+ 2011-06-16 08:20 . 2011-02-22 23:06 25600 c:\windows\ie8updates\KB2530548-IE8\jsproxy.dll
+ 2011-06-16 09:04 . 2011-06-16 09:04 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\1492e9393417d6e91b5ddc746b5ef320\UIAutomationProvider.ni.dll
+ 2011-06-16 10:22 . 2011-06-16 10:22 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\61c3b1e170de97a8d418b610bd9b0c77\System.Windows.Presentation.ni.dll
+ 2011-06-16 10:22 . 2011-06-16 10:22 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\a4173f12a0fea30f95bc56ab04f64cae\System.Web.DynamicData.Design.ni.dll
+ 2011-06-16 09:51 . 2011-06-16 09:51 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\ab5802527ce15dbcc25e301dbbb4d666\System.ComponentModel.DataAnnotations.ni.dll
+ 2011-06-16 09:51 . 2011-06-16 09:51 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\177a17af98d803ab79006d6785706462\System.AddIn.Contract.ni.dll
+ 2011-06-16 08:57 . 2011-06-16 08:57 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\e9bb32c656a2f80b629f129d738c392b\PresentationFontCache.ni.exe
+ 2011-06-16 08:55 . 2011-06-16 08:55 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\d54d318ae1eb0667badea576d0534f9d\PresentationCFFRasterizer.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGUsersCenter\b278efd8164eca25394bc2d07907a240\PCGUsersCenter.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 39936 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGRSPProbe\28c50e9f4a9752b3ed873f5b24038e2b\PCGRSPProbe.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 57856 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGHIDProbe\a2c6d55c3710f2607047409e9eb9afd2\PCGHIDProbe.ni.dll
+ 2011-06-16 09:49 . 2011-06-16 09:49 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGEntities\9de9a2ecd0305cf30d3daff4f05697e0\PCGEntities.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 57344 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGConfiguration\a42d7ad1970164c80e0bbd2a9b96d712\PCGConfiguration.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 20480 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGAzureEntityFrame#\a7857f1230c6ff4471f598abf422d4ba\PCGAzureEntityFramework.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\87fe1d01b568b3bc9c750b7cf7802516\Microsoft.Vsa.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 15872 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualC\a96b02abbfcaae424cfb91a198a9e0e9\Microsoft.VisualC.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 19456 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\a8844048139471f4c7914a41f36a7e81\Microsoft.PowerShell.Commands.Management.resources.ni.dll
+ 2011-06-16 09:51 . 2011-06-16 09:51 35328 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\9804c5ec5e7a8945d4da1c7e3caf40c7\Microsoft.PowerShell.ConsoleHost.resources.ni.dll
+ 2011-06-16 09:51 . 2011-06-16 09:51 30208 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\0fe4eb7e116bacc97d476713af23f42e\Microsoft.PowerShell.Commands.Utility.resources.ni.dll
+ 2011-06-16 09:51 . 2011-06-16 09:51 17408 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\01eba2bdd4d6baa3102dc8610e8cec92\Microsoft.PowerShell.Security.resources.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\f5057c30d89ad8d99e38c946a68def9e\Microsoft.Build.Framework.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\623c05a555ac0719a1367f511d4a9270\Microsoft.Build.Framework.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\c40d3caad8bff3c52db7e7562286406a\dfsvc.ni.exe
+ 2011-06-16 09:44 . 2011-06-16 09:44 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\d9228d58804dfd75fd92a4d12ffac8af\Accessibility.ni.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2010-05-28 20:51 . 2006-02-28 12:00 24576 c:\windows\$NtServicePackUninstall$\userinit.exe
+ 2010-05-28 20:51 . 2011-06-28 21:14 24576 c:\windows\$NtServicePackUninstall$\userinit.exe
+ 2011-06-16 08:09 . 2010-07-05 13:15 26488 c:\windows\$hf_mig$\KB2544893\update\spcustom.dll
+ 2011-06-16 08:09 . 2010-07-05 13:15 17272 c:\windows\$hf_mig$\KB2544893\spmsg.dll
+ 2011-06-16 08:02 . 2010-07-05 13:15 26488 c:\windows\$hf_mig$\KB2544521-IE8\update\spcustom.dll
+ 2011-06-16 08:02 . 2010-07-05 13:15 17272 c:\windows\$hf_mig$\KB2544521-IE8\spmsg.dll
+ 2011-06-16 08:21 . 2010-07-05 13:15 26488 c:\windows\$hf_mig$\KB2536276\update\spcustom.dll
+ 2011-06-16 08:21 . 2010-07-05 13:15 17272 c:\windows\$hf_mig$\KB2536276\spmsg.dll
+ 2011-06-16 08:25 . 2010-07-05 13:15 26488 c:\windows\$hf_mig$\KB2535512\update\spcustom.dll
+ 2011-06-16 08:25 . 2010-07-05 13:15 17272 c:\windows\$hf_mig$\KB2535512\spmsg.dll
+ 2011-06-16 08:20 . 2010-07-05 13:15 26488 c:\windows\$hf_mig$\KB2530548-IE8\update\spcustom.dll
+ 2011-06-16 08:20 . 2010-07-05 13:15 17272 c:\windows\$hf_mig$\KB2530548-IE8\spmsg.dll
+ 2011-06-15 13:25 . 2011-04-25 16:09 12800 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\xpshims.dll
+ 2011-06-15 13:25 . 2011-04-25 16:09 66560 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\mshtmled.dll
+ 2011-06-15 13:25 . 2011-04-25 16:09 55296 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\msfeedsbs.dll
+ 2011-06-15 13:25 . 2011-04-25 16:09 43520 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\licmgr10.dll
+ 2011-06-15 13:25 . 2011-04-25 16:09 25600 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\jsproxy.dll
+ 2011-06-16 08:26 . 2010-07-05 13:15 26488 c:\windows\$hf_mig$\KB2503665\update\spcustom.dll
+ 2011-06-16 08:26 . 2010-07-05 13:15 17272 c:\windows\$hf_mig$\KB2503665\spmsg.dll
+ 2011-06-16 08:27 . 2010-07-05 13:15 26488 c:\windows\$hf_mig$\KB2476490\update\spcustom.dll
+ 2011-06-16 08:27 . 2010-07-05 13:15 17272 c:\windows\$hf_mig$\KB2476490\spmsg.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2011-06-25 07:49 . 2008-04-14 00:11 4096 c:\windows\system32\ReinstallBackups\0032\DriverFiles\i386\ksuser.dll
+ 2011-06-20 21:15 . 2008-04-14 00:11 4096 c:\windows\system32\ReinstallBackups\0029\DriverFiles\i386\ksuser.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2011-04-15 17:18 . 2011-04-15 17:18 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2011-04-15 17:18 . 2011-04-15 17:18 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 653136 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 569680 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcm90.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 653136 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_0517bbc6\msvcr90.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 569680 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_0517bbc6\msvcp90.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_0517bbc6\msvcm90.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 159048 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_92453bb7\atl90.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 159048 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_65b7a93a\atl90.dll
+ 2011-05-14 00:17 . 2011-05-14 00:17 632656 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
+ 2011-05-14 00:12 . 2011-05-14 00:12 554832 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
+ 2011-05-14 00:11 . 2011-05-14 00:11 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcm80.dll
+ 2005-01-31 07:26 . 2005-01-31 07:26 279392 c:\windows\system32\XceedFtp.dll
+ 2010-05-22 20:23 . 2011-06-25 07:48 137832 c:\windows\system32\RTCOM\RTLCPAPI.dll
+ 2010-05-22 20:23 . 2011-06-25 07:48 289384 c:\windows\system32\RTCOM\RTCOMDLL.dll
+ 2010-10-17 08:58 . 2011-06-23 21:09 237068 c:\windows\system32\Restore\rstrlog.dat
+ 2011-06-26 07:29 . 2011-06-25 07:59 151040 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igxpgd32.dll
+ 2011-06-26 07:29 . 2011-06-25 07:56 147456 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igxpco32.dll
+ 2011-06-26 07:29 . 2007-10-30 07:54 294912 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igldev32.dll
+ 2011-06-26 07:29 . 2007-11-08 15:56 170520 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igfxzoom.exe
+ 2011-06-26 07:29 . 2011-06-25 07:59 135168 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igfxtray.exe
+ 2011-06-26 07:29 . 2011-06-25 07:59 249856 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igfxsrvc.exe
+ 2011-06-26 07:29 . 2007-10-30 07:40 204800 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igfxpph.dll
+ 2011-06-26 07:29 . 2011-06-25 07:59 131072 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igfxpers.exe
+ 2011-06-26 07:29 . 2007-11-08 15:56 170520 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igfxext.exe
+ 2011-06-26 07:29 . 2007-10-30 07:39 135168 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igfxdo.dll
+ 2011-06-26 07:29 . 2011-06-25 07:59 208896 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igfxdev.dll
+ 2011-06-26 07:29 . 2007-11-08 15:56 530968 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igfxcfg.exe
+ 2011-06-26 07:29 . 2007-11-08 15:56 166424 c:\windows\system32\ReinstallBackups\0043\DriverFiles\hkcmd.exe
+ 2011-06-26 07:29 . 2011-06-25 07:59 102400 c:\windows\system32\ReinstallBackups\0043\DriverFiles\hccutils.dll
+ 2011-06-26 07:27 . 2009-09-02 16:59 174592 c:\windows\system32\ReinstallBackups\0042\DriverFiles\RtsUStor.sys
+ 2011-06-26 07:27 . 2009-08-19 17:23 270336 c:\windows\system32\ReinstallBackups\0042\DriverFiles\RtsUStor.dll
+ 2011-06-25 07:59 . 2007-10-30 08:00 151040 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igxpgd32.dll
+ 2011-06-25 07:59 . 2011-06-25 07:56 147456 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igxpco32.dll
+ 2011-06-25 07:59 . 2011-06-25 07:56 294912 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igldev32.dll
+ 2011-06-25 07:59 . 2011-06-25 07:56 163840 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igfxzoom.exe
+ 2011-06-25 07:59 . 2007-11-08 15:56 141848 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igfxtray.exe
+ 2011-06-25 07:59 . 2007-11-08 15:56 256536 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igfxsrvc.exe
+ 2011-06-25 07:59 . 2011-06-25 07:56 204800 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igfxpph.dll
+ 2011-06-25 07:59 . 2007-11-08 15:56 137752 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igfxpers.exe
+ 2011-06-25 07:59 . 2011-06-25 07:56 163840 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igfxext.exe
+ 2011-06-25 07:59 . 2011-06-25 07:56 135168 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igfxdo.dll
+ 2011-06-25 07:59 . 2007-10-30 07:39 208896 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igfxdev.dll
+ 2011-06-25 07:59 . 2011-06-25 07:56 524288 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igfxcfg.exe
+ 2011-06-25 07:59 . 2011-06-25 07:56 159744 c:\windows\system32\ReinstallBackups\0041\DriverFiles\hkcmd.exe
+ 2011-06-25 07:59 . 2007-10-30 07:39 102400 c:\windows\system32\ReinstallBackups\0041\DriverFiles\hccutils.dll
+ 2011-06-25 07:58 . 2007-10-30 08:08 147456 c:\windows\system32\ReinstallBackups\0040\DriverFiles\igxpco32.dll
+ 2011-06-25 07:57 . 2007-10-30 08:00 151040 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igxpgd32.dll
+ 2011-06-25 07:57 . 2007-10-30 08:08 147456 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igxpco32.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 294912 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igldev32.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 163840 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igfxzoom.exe
+ 2011-06-25 07:57 . 2007-11-08 15:56 141848 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igfxtray.exe
+ 2011-06-25 07:57 . 2007-11-08 15:56 256536 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igfxsrvc.exe
+ 2011-06-25 07:57 . 2011-06-25 07:56 204800 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igfxpph.dll
+ 2011-06-25 07:57 . 2007-11-08 15:56 137752 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igfxpers.exe
+ 2011-06-25 07:57 . 2011-06-25 07:56 163840 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igfxext.exe
+ 2011-06-25 07:57 . 2011-06-25 07:56 135168 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igfxdo.dll
+ 2011-06-25 07:57 . 2007-10-30 07:39 208896 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igfxdev.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 524288 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igfxcfg.exe
+ 2011-06-25 07:57 . 2011-06-25 07:56 159744 c:\windows\system32\ReinstallBackups\0039\DriverFiles\hkcmd.exe
+ 2011-06-25 07:57 . 2007-10-30 07:39 102400 c:\windows\system32\ReinstallBackups\0039\DriverFiles\hccutils.dll
+ 2011-06-25 07:57 . 2007-10-30 08:00 151040 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igxpgd32.dll
+ 2011-06-25 07:57 . 2007-10-30 08:08 147456 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igxpco32.dll
+ 2011-06-25 07:57 . 2007-10-30 07:54 294912 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igldev32.dll
+ 2011-06-25 07:57 . 2007-11-08 15:56 170520 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igfxzoom.exe
+ 2011-06-25 07:57 . 2007-11-08 15:56 141848 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igfxtray.exe
+ 2011-06-25 07:57 . 2007-11-08 15:56 256536 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igfxsrvc.exe
+ 2011-06-25 07:57 . 2007-10-30 07:40 204800 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igfxpph.dll
+ 2011-06-25 07:57 . 2007-11-08 15:56 137752 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igfxpers.exe
+ 2011-06-25 07:57 . 2007-11-08 15:56 170520 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igfxext.exe
+ 2011-06-25 07:57 . 2007-10-30 07:39 135168 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igfxdo.dll
+ 2011-06-25 07:57 . 2007-10-30 07:39 208896 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igfxdev.dll
+ 2011-06-25 07:57 . 2007-11-08 15:56 530968 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igfxcfg.exe
+ 2011-06-25 07:57 . 2007-11-08 15:56 166424 c:\windows\system32\ReinstallBackups\0038\DriverFiles\hkcmd.exe
+ 2011-06-25 07:57 . 2007-10-30 07:39 102400 c:\windows\system32\ReinstallBackups\0038\DriverFiles\hccutils.dll
+ 2011-06-25 07:49 . 2011-06-20 21:15 137832 c:\windows\system32\ReinstallBackups\0032\DriverFiles\RTLCPAPI.dll
+ 2011-06-25 07:49 . 2011-06-20 21:15 289384 c:\windows\system32\ReinstallBackups\0032\DriverFiles\RTCOMDLL.dll
+ 2011-06-25 07:49 . 2008-04-13 19:19 146048 c:\windows\system32\ReinstallBackups\0032\DriverFiles\i386\portcls.sys
+ 2011-06-25 07:49 . 2008-04-13 19:16 141056 c:\windows\system32\ReinstallBackups\0032\DriverFiles\i386\ks.sys
+ 2011-06-21 18:48 . 2007-11-16 04:18 572416 c:\windows\system32\ReinstallBackups\0031\DriverFiles\rt2860.sys
+ 2011-06-20 21:16 . 2008-03-26 10:50 131072 c:\windows\system32\ReinstallBackups\0029\DriverFiles\RTLCPAPI.dll
+ 2011-06-20 21:16 . 2008-06-10 06:39 266240 c:\windows\system32\ReinstallBackups\0029\DriverFiles\RTCOMDLL.dll
+ 2011-06-20 21:15 . 2008-04-13 19:19 146048 c:\windows\system32\ReinstallBackups\0029\DriverFiles\i386\portcls.sys
+ 2011-06-20 21:15 . 2008-04-13 19:16 141056 c:\windows\system32\ReinstallBackups\0029\DriverFiles\i386\ks.sys
+ 2011-06-26 07:28 . 2011-06-25 07:59 151040 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igxpgd32.dll
+ 2011-06-26 07:28 . 2011-06-25 07:56 147456 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igxpco32.dll
+ 2011-06-26 07:28 . 2011-06-25 07:59 294912 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igldev32.dll
+ 2011-06-26 07:28 . 2011-06-25 07:59 163840 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igfxzoom.exe
+ 2011-06-26 07:28 . 2011-06-25 07:59 135168 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igfxtray.exe
+ 2011-06-26 07:28 . 2011-06-25 07:59 249856 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igfxsrvc.exe
+ 2011-06-26 07:28 . 2011-06-25 07:59 204800 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igfxpph.dll
+ 2011-06-26 07:28 . 2011-06-25 07:59 131072 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igfxpers.exe
+ 2011-06-26 07:28 . 2011-06-25 07:59 163840 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igfxext.exe
+ 2011-06-26 07:28 . 2011-06-25 07:59 135168 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igfxdo.dll
+ 2011-06-26 07:28 . 2011-06-25 07:59 208896 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igfxdev.dll
+ 2011-06-26 07:28 . 2011-06-25 07:59 524288 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igfxcfg.exe
+ 2011-06-26 07:28 . 2011-06-25 07:59 159744 c:\windows\system32\ReinstallBackups\0000\DriverFiles\hkcmd.exe
+ 2011-06-26 07:28 . 2011-06-25 07:59 102400 c:\windows\system32\ReinstallBackups\0000\DriverFiles\hccutils.dll
+ 2005-01-31 07:48 . 2005-01-31 07:48 237568 c:\windows\system32\pspascrrc5.dll
+ 2007-12-20 21:26 . 2011-06-26 08:35 446098 c:\windows\system32\perfh009.dat
+ 2007-12-20 21:26 . 2010-12-20 17:32 551936 c:\windows\system32\oleaut32.dll
- 2007-12-20 21:26 . 2008-04-14 00:12 551936 c:\windows\system32\oleaut32.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 206848 c:\windows\system32\occache.dll
- 2007-12-20 21:26 . 2011-02-22 23:06 206848 c:\windows\system32\occache.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 611840 c:\windows\system32\mstime.dll
- 2007-12-20 21:26 . 2011-02-22 23:06 611840 c:\windows\system32\mstime.dll
- 2006-11-08 04:03 . 2011-02-22 23:06 602112 c:\windows\system32\msfeeds.dll
+ 2006-11-08 04:03 . 2011-04-25 16:11 602112 c:\windows\system32\msfeeds.dll
+ 2005-01-31 07:48 . 2005-01-31 07:48 487424 c:\windows\system32\Jasc Paint Shop Photo Album 5.scr
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(32).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(31).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(30).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(29).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(28).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(27).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(26).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(25).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(24).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(23).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(22).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(21).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(20).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(19).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(18).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(17).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(16).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(15).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(14).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 151040 c:\windows\system32\igxpgd32(13).dll
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(9).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(8).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(7).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(6).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(5).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(4).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(3).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(21).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(20).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(2).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(19).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(18).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(17).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(16).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(15).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(14).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(13).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(12).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(11).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 141848 c:\windows\system32\igfxtray(10).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(31).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(30).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(29).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(28).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(27).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(26).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(25).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(24).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(23).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(22).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(21).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(20).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(19).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(18).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(17).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(16).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(15).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(14).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(13).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 256536 c:\windows\system32\igfxsrvc(12).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(31).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(30).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(29).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(28).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(27).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(26).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(25).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(24).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(23).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(22).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(21).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(20).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(19).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(18).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(17).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(16).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(15).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(14).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(13).exe
+ 2010-05-22 12:25 . 2007-11-08 15:56 137752 c:\windows\system32\igfxpers(12).exe
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(31).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(30).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(29).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(28).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(27).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(26).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(25).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(24).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(23).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(22).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(21).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(20).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(19).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(18).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(17).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(16).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(15).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(14).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(13).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 208896 c:\windows\system32\igfxdev(12).dll
- 2007-12-20 21:26 . 2011-02-22 23:06 184320 c:\windows\system32\iepeers.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 184320 c:\windows\system32\iepeers.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 387584 c:\windows\system32\iedkcs32.dll
- 2007-12-20 21:26 . 2011-02-22 23:06 387584 c:\windows\system32\iedkcs32.dll
+ 2007-12-20 21:26 . 2011-04-25 12:01 173568 c:\windows\system32\ie4uinit.exe
- 2007-12-20 21:26 . 2011-02-18 11:49 173568 c:\windows\system32\ie4uinit.exe
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(31).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(30).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(29).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(28).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(27).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(26).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(25).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(24).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(23).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(22).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(21).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(20).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(19).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(18).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(17).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(16).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(15).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(14).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(13).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 102400 c:\windows\system32\hccutils(12).dll
+ 2010-05-22 12:57 . 2008-04-17 12:12 107368 c:\windows\system32\GEARAspi.dll
- 2010-05-22 12:57 . 2008-04-17 19:12 107368 c:\windows\system32\GEARAspi.dll
+ 2010-05-22 12:15 . 2011-06-15 13:38 267800 c:\windows\system32\FNTCACHE.DAT
- 2010-05-22 12:15 . 2011-04-15 17:42 267800 c:\windows\system32\FNTCACHE.DAT
- 2010-05-22 20:22 . 2007-11-16 04:18 572416 c:\windows\system32\DRVSTORE\rt2860_68B5A06F1B7E83E7A384DCBD44157C5FB82F5ADE\rt2860.sys
+ 2011-06-26 07:03 . 2007-11-15 20:18 572416 c:\windows\system32\DRVSTORE\rt2860_68B5A06F1B7E83E7A384DCBD44157C5FB82F5ADE\rt2860.sys
+ 2011-06-25 07:57 . 2011-06-25 07:56 151040 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igxpgd32.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 147456 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igxpco32.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 104636 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igmedcompkrn.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 294912 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igldev32.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 163840 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igfxzoom.exe
+ 2011-06-25 07:57 . 2011-06-25 07:56 135168 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igfxtray.exe
+ 2011-06-25 07:57 . 2011-06-25 07:56 249856 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igfxsrvc.exe
+ 2011-06-25 07:57 . 2011-06-25 07:56 204800 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igfxpph.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 131072 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igfxpers.exe
+ 2011-06-25 07:57 . 2011-06-25 07:56 163840 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igfxext.exe
+ 2011-06-25 07:57 . 2011-06-25 07:56 135168 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igfxdo.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 208896 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igfxdev.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 524288 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igfxcfg.exe
+ 2011-06-25 07:57 . 2011-06-25 07:56 159744 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\hkcmd.exe
+ 2011-06-25 07:57 . 2011-06-25 07:56 102400 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\hccutils.dll
+ 2011-07-05 18:04 . 2008-04-17 12:12 107368 c:\windows\system32\DRVSTORE\GEARAspiWD_D213663B6381F01E45A131159A9DEFE018321CB3\x86\GEARAspi.dll
+ 2007-12-20 21:26 . 2011-04-21 13:37 105472 c:\windows\system32\drivers\mup.sys
+ 2007-12-20 21:26 . 2011-02-16 13:22 138496 c:\windows\system32\drivers\afd.sys
- 2007-12-20 21:26 . 2008-10-16 14:43 138496 c:\windows\system32\drivers\afd.sys
- 2010-10-07 12:23 . 2010-10-07 12:23 107808 c:\windows\system32\dns-sd.exe
+ 2011-04-06 15:20 . 2011-04-06 15:20 107808 c:\windows\system32\dns-sd.exe
- 2007-12-20 21:26 . 2011-02-22 23:06 916480 c:\windows\system32\dllcache\wininet.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 916480 c:\windows\system32\dllcache\wininet.dll
+ 2010-05-22 19:22 . 2011-04-30 03:01 758784 c:\windows\system32\dllcache\vgx.dll
+ 2008-12-05 06:54 . 2011-04-29 17:25 151552 c:\windows\system32\dllcache\schannel.dll
+ 2010-12-20 17:32 . 2010-12-20 17:32 551936 c:\windows\system32\dllcache\oleaut32.dll
- 2007-12-20 21:26 . 2011-02-22 23:06 206848 c:\windows\system32\dllcache\occache.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 206848 c:\windows\system32\dllcache\occache.dll
+ 2011-06-15 13:26 . 2011-04-21 13:37 105472 c:\windows\system32\dllcache\mup.sys
+ 2007-12-20 21:26 . 2011-04-25 16:11 611840 c:\windows\system32\dllcache\mstime.dll
- 2007-12-20 21:26 . 2011-02-22 23:06 611840 c:\windows\system32\dllcache\mstime.dll
+ 2010-03-11 12:38 . 2011-04-25 16:11 602112 c:\windows\system32\dllcache\msfeeds.dll
- 2010-03-11 12:38 . 2011-02-22 23:06 602112 c:\windows\system32\dllcache\msfeeds.dll
+ 2010-05-24 00:44 . 2011-04-29 16:19 456320 c:\windows\system32\dllcache\mrxsmb.sys
+ 2010-01-29 15:01 . 2011-05-02 15:31 692736 c:\windows\system32\dllcache\inetcomm.dll
- 2010-01-29 15:01 . 2011-03-07 05:33 692736 c:\windows\system32\dllcache\inetcomm.dll
- 2010-06-02 07:14 . 2011-02-22 23:06 247808 c:\windows\system32\dllcache\ieproxy.dll
+ 2010-06-02 07:14 . 2011-04-25 16:11 247808 c:\windows\system32\dllcache\ieproxy.dll
- 2007-12-20 21:26 . 2011-02-22 23:06 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 184320 c:\windows\system32\dllcache\iepeers.dll
- 2010-06-13 19:55 . 2011-02-22 23:06 743424 c:\windows\system32\dllcache\iedvtool.dll
+ 2010-06-13 19:55 . 2011-04-25 16:11 743424 c:\windows\system32\dllcache\iedvtool.dll
- 2007-12-20 21:26 . 2011-02-22 23:06 387584 c:\windows\system32\dllcache\iedkcs32.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2007-12-20 21:26 . 2011-02-18 11:49 173568 c:\windows\system32\dllcache\ie4uinit.exe
+ 2007-12-20 21:26 . 2011-04-25 12:01 173568 c:\windows\system32\dllcache\ie4uinit.exe
+ 2007-12-20 21:26 . 2008-04-14 00:11 640000 c:\windows\system32\dllcache\dbghelp.dll
- 2008-06-20 11:40 . 2008-10-16 14:43 138496 c:\windows\system32\dllcache\afd.sys
+ 2008-06-20 11:40 . 2011-02-16 13:22 138496 c:\windows\system32\dllcache\afd.sys
+ 2011-03-25 05:15 . 2011-03-25 05:15 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
- 2011-01-18 03:39 . 2011-01-18 03:39 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2011-03-25 05:15 . 2011-03-25 05:15 363856 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
- 2011-01-18 03:39 . 2011-01-18 03:39 363856 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
- 2011-01-18 03:39 . 2011-01-18 03:39 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2011-03-25 05:15 . 2011-03-25 05:15 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2011-07-20 06:46 . 2011-04-04 23:59 297168 c:\windows\LastGood\system32\DRIVERS\avgtdix.sys
+ 2011-07-20 06:46 . 2011-01-07 05:41 248656 c:\windows\LastGood\system32\DRIVERS\avgldx86.sys
+ 2011-07-20 06:46 . 2011-04-14 20:28 134480 c:\windows\LastGood\system32\DRIVERS\AVGIDSDriver.sys
+ 2011-06-29 21:12 . 2011-06-29 21:12 432640 c:\windows\Installer\d16c69.msi
+ 2011-06-29 21:12 . 2011-06-29 21:12 429568 c:\windows\Installer\d16c62.msi
+ 2011-06-02 08:01 . 2011-06-02 08:01 223232 c:\windows\Installer\6b5c46.msi
+ 2011-03-17 19:03 . 2011-03-17 19:03 308736 c:\windows\Installer\3f42d05.msp
+ 2011-06-16 08:32 . 2011-06-16 08:32 223744 c:\windows\Installer\3f42cb5.msi
+ 2011-06-16 08:09 . 2011-06-16 08:09 467456 c:\windows\Installer\3f42c84.msi
+ 2011-07-09 22:07 . 2011-07-09 22:07 811520 c:\windows\Installer\217f55.msi
+ 2011-06-25 18:23 . 2011-06-25 18:23 771584 c:\windows\Installer\11079d.msi
+ 2011-06-19 18:09 . 2011-06-19 18:09 371272 c:\windows\Installer\{D6F879CC-59D6-4D4B-AE9B-D761E48D25ED}\SkypeIcon.exe
+ 2011-07-09 22:17 . 2011-07-09 22:17 380928 c:\windows\Installer\{C897FCB3-2F8B-4185-8035-79E2AF3A92A4}\iTunesIco.exe
- 2010-08-22 09:54 . 2011-05-11 08:05 888080 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
+ 2010-08-22 09:54 . 2011-06-16 08:54 888080 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
+ 2010-08-22 09:54 . 2011-06-16 08:54 272648 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\pubs.exe
- 2010-08-22 09:54 . 2011-05-11 08:05 272648 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\pubs.exe
+ 2010-08-22 09:54 . 2011-06-16 08:54 922384 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\pptico.exe
- 2010-08-22 09:54 . 2011-05-11 08:05 922384 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\pptico.exe
- 2010-08-22 09:54 . 2011-05-11 08:05 845584 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\outicon.exe
+ 2010-08-22 09:54 . 2011-06-16 08:54 845584 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\outicon.exe
- 2010-08-22 09:54 . 2011-05-11 08:05 217864 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\misc.exe
+ 2010-08-22 09:54 . 2011-06-16 08:54 217864 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\misc.exe
- 2010-08-22 09:54 . 2011-05-11 08:05 184080 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\joticon.exe
+ 2010-08-22 09:54 . 2011-06-16 08:54 184080 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\joticon.exe
- 2010-08-22 09:54 . 2011-05-11 08:05 159504 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2010-08-22 09:54 . 2011-06-16 08:54 159504 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2003-12-29 09:57 . 2003-12-29 09:57 250368 c:\windows\Installer\$PatchCache$\Managed\0DC06942D1667594D9F52D09A503DE1B\5.22.0\Msvcrt20.dll
+ 2011-06-16 08:02 . 2009-03-08 03:33 759296 c:\windows\ie8updates\KB2544521-IE8\vgx.dll
+ 2011-06-16 08:02 . 2010-07-05 13:16 382840 c:\windows\ie8updates\KB2544521-IE8\spuninst\updspapi.dll
+ 2011-06-16 08:02 . 2010-07-05 13:15 231288 c:\windows\ie8updates\KB2544521-IE8\spuninst\spuninst.exe
+ 2011-06-16 08:20 . 2011-02-22 23:06 916480 c:\windows\ie8updates\KB2530548-IE8\wininet.dll
+ 2011-06-16 08:20 . 2010-07-05 13:16 382840 c:\windows\ie8updates\KB2530548-IE8\spuninst\updspapi.dll
+ 2011-06-16 08:20 . 2010-07-05 13:15 231288 c:\windows\ie8updates\KB2530548-IE8\spuninst\spuninst.exe
+ 2011-06-16 08:20 . 2011-02-22 23:06 206848 c:\windows\ie8updates\KB2530548-IE8\occache.dll
+ 2011-06-16 08:20 . 2011-02-22 23:06 611840 c:\windows\ie8updates\KB2530548-IE8\mstime.dll
+ 2011-06-16 08:20 . 2011-02-22 23:06 602112 c:\windows\ie8updates\KB2530548-IE8\msfeeds.dll
+ 2011-06-16 08:20 . 2011-02-22 23:06 247808 c:\windows\ie8updates\KB2530548-IE8\ieproxy.dll
+ 2011-06-16 08:20 . 2011-02-22 23:06 184320 c:\windows\ie8updates\KB2530548-IE8\iepeers.dll
+ 2011-06-16 08:20 . 2011-02-22 23:06 743424 c:\windows\ie8updates\KB2530548-IE8\iedvtool.dll
+ 2011-06-16 08:20 . 2011-02-22 23:06 387584 c:\windows\ie8updates\KB2530548-IE8\iedkcs32.dll
+ 2011-06-16 08:20 . 2011-02-18 11:49 173568 c:\windows\ie8updates\KB2530548-IE8\ie4uinit.exe
+ 2010-05-24 00:44 . 2011-04-29 16:19 456320 c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2009-08-04 13:06 . 2009-08-04 13:06 132352 c:\windows\Downloaded Program Files\as2stubie.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\8ba27eaa0f7d987f92319c64aefd2e98\WsatConfig.ni.exe
+ 2011-06-16 09:04 . 2011-06-16 09:04 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\431d5dc1cfcc0c0530e813f370931670\WindowsFormsIntegration.ni.dll
+ 2011-06-16 09:04 . 2011-06-16 09:04 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\3740d6db28af31a6523a79fcdd71fbeb\UIAutomationTypes.ni.dll
+ 2011-06-16 09:04 . 2011-06-16 09:04 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\00dfe5563886a1f69c96b3acb839107b\UIAutomationClient.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\80187a9cfed4fd0ec82746495be76764\System.Xml.Linq.ni.dll
+ 2011-06-16 10:21 . 2011-06-16 10:21 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\58c421c537b1c3f3878458ad306b2a42\System.Web.Routing.ni.dll
+ 2011-06-16 09:47 . 2011-06-16 09:47 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\dc26fff00ce95d24fd190f38904bb2b3\System.Web.RegularExpressions.ni.dll
+ 2011-06-16 10:22 . 2011-06-16 10:22 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\4e3dd4d7f9aeda74a2fcefee036e5070\System.Web.Extensions.Design.ni.dll
+ 2011-06-16 10:22 . 2011-06-16 10:22 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\4fb1c0c07f40248b463f2e33444b9477\System.Web.Entity.ni.dll
+ 2011-06-16 10:22 . 2011-06-16 10:22 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\4dfcffc6e6d02bdcdc185d5527a8097e\System.Web.Entity.Design.ni.dll
+ 2011-06-16 10:22 . 2011-06-16 10:22 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\4b921d1cffcd5e80ea14c51db967edd6\System.Web.DynamicData.ni.dll
+ 2011-06-16 10:21 . 2011-06-16 10:21 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\702b506e56d3a7051aea7822cd915c7f\System.Web.Abstractions.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\7c430c38d71d632c019ae37d5ef12c8e\System.Transactions.ni.dll
+ 2011-06-16 09:47 . 2011-06-16 09:47 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\0f3d321ebd65af974ff0ad424223276d\System.ServiceProcess.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\e4bcb14e8e53c8dcaff3d2c20daf746e\System.Security.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\503ccbb50e9c06c2f0b02ad8c3f2d100\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 771584 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\bdaf7904d223589a0f464de58d27e691\System.Runtime.Remoting.ni.dll
+ 2011-06-16 10:21 . 2011-06-16 10:21 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\ac53723e41898bc0e8a591c2e4f6f39b\System.Net.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 593408 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Messaging\cdf4f4c280e68227acdd53a4f13d8995\System.Messaging.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\19280e723d215c0d6607d3884f453cdf\System.Management.ni.dll
+ 2011-06-16 10:21 . 2011-06-16 10:21 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\4a3a674008d8102c1aa5b3fc18251ef7\System.Management.Instrumentation.ni.dll
+ 2011-06-16 10:21 . 2011-06-16 10:21 160256 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.A#\35b34a452180a868171e1364bcc02208\System.Management.Automation.resources.ni.dll
+ 2011-06-16 09:44 . 2011-06-16 09:44 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\7f5f5bfd5f8d6587c96870751a6eb44d\System.IO.Log.ni.dll
+ 2011-06-16 09:44 . 2011-06-16 09:44 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\de1bf796614ca11afd9fab95edb1b4e2\System.IdentityModel.Selectors.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\94aae9e592c0f104120572f9925fca12\System.EnterpriseServices.Wrapper.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\94aae9e592c0f104120572f9925fca12\System.EnterpriseServices.ni.dll
+ 2011-06-16 09:02 . 2011-06-16 09:02 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\1af8683e05c42eb32f46578fe5a8f83f\System.Drawing.Design.ni.dll
+ 2011-06-16 09:47 . 2011-06-16 09:47 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\791a6643b70542b148d977ff42f2f2ef\System.DirectoryServices.Protocols.ni.dll
+ 2011-06-16 10:21 . 2011-06-16 10:21 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\31759ad8be21735f0a369c37514c2efc\System.DirectoryServices.AccountManagement.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 766976 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlServ#\b1ef036a0ff708e6f8f3cf2a4acf18a7\System.Data.SqlServerCe.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\df507a4500e73fa4cfc13f65a1c9055e\System.Data.Services.Client.ni.dll
+ 2011-06-16 10:21 . 2011-06-16 10:21 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\d1778fffc09d783bc90512b65d35be66\System.Data.Services.Design.ni.dll
+ 2011-06-16 10:20 . 2011-06-16 10:20 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\5a47a8bf16370c93b3c6a471e48cc67a\System.Data.Entity.Design.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\50492d147392c238edc5a614beccb91b\System.Data.DataSetExtensions.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\48f8b951a598647dd309ca2031807a5d\System.Configuration.ni.dll
+ 2011-06-16 09:47 . 2011-06-16 09:47 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\fa21b6c9badcf916bb254b4b823c2463\System.Configuration.Install.ni.dll
+ 2011-06-16 09:51 . 2011-06-16 09:51 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\77015cc1e6d9e7d20e63903777afd6df\System.AddIn.ni.dll
+ 2011-06-16 09:49 . 2011-06-16 09:49 140800 c:\windows\assembly\NativeImages_v2.0.50727_32\SolutoUpdateService\4f5ecbd9a929f023ae34177e8417f264\SolutoUpdateService.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 675840 c:\windows\assembly\NativeImages_v2.0.50727_32\SolutoCleanup\cf7a0f8f6e37e17f623ef02eb30fed5b\SolutoCleanup.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\6ca41c7917119c3a9de0bcdca525001d\SMSvcHost.ni.exe
+ 2011-06-16 09:46 . 2011-06-16 09:46 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\8ff6d395f8861384bc9bfbe34cafb64e\SMDiagnostics.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\67dc00c24e551003f6dacb73fe9cf881\ServiceModelReg.ni.exe
+ 2011-06-16 08:58 . 2011-06-16 08:58 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e468e9265c844f74577530e4df71f120\PresentationFramework.Aero.ni.dll
+ 2011-06-16 08:58 . 2011-06-16 08:58 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\959709491c71caef88fb41b0eb159714\PresentationFramework.Classic.ni.dll
+ 2011-06-16 08:58 . 2011-06-16 08:58 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\807b62468c2893ee943dffff63a34d8d\PresentationFramework.Royale.ni.dll
+ 2011-06-16 08:58 . 2011-06-16 08:58 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\6cf82f370413a2cd1e6bc54060334753\PresentationFramework.Luna.ni.dll
+ 2011-06-16 09:49 . 2011-06-16 09:49 112128 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGUpgrader\5e1cd46eb6c106cbfb5c9f13b8127741\PCGUpgrader.ni.dll
+ 2011-06-16 09:49 . 2011-06-16 09:49 354304 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGSAProbe\19168510eabaaca7e95fcbdba7d019f2\PCGSAProbe.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 644096 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGPostBootResources\fc7e4b6dd1a15a02592ed008c91b87ea\PCGPostBootResources.ni.dll
+ 2011-06-16 09:47 . 2011-06-16 09:47 168448 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGDriverProbe\51acf84275371b9b7741fd13e2d77de0\PCGDriverProbe.ni.dll
+ 2011-06-16 09:49 . 2011-06-16 09:49 510464 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGDataAggregation\0d0ea2d0a94ac1acd83cce910aa799ba\PCGDataAggregation.ni.dll
+ 2011-06-16 09:49 . 2011-06-16 09:49 880128 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGClientCommunicat#\8b032849715f63e3be9374a95279ed8c\PCGClientCommunication.ni.dll
+ 2011-06-16 09:49 . 2011-06-16 09:49 408576 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGCatalogItemFootp#\e0438b758ed533efa5128f775cbfe7bf\PCGCatalogItemFootprint.ni.dll
+ 2011-06-16 09:49 . 2011-06-16 09:49 102400 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGCatalogItemCache\e2ab35dcc84889c6998e11deb449caaa\PCGCatalogItemCache.ni.dll
+ 2011-06-16 09:49 . 2011-06-16 09:49 724992 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGBrowsersProbe\1a0a4eee5d5608779e5d75cded12b7e7\PCGBrowsersProbe.ni.dll
+ 2011-06-16 09:49 . 2011-06-16 09:49 380416 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGBootVisualizingC#\d7e48737cf4c2200829f204643fdabff\PCGBootVisualizingCore.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 189440 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGBootVisualizingC#\36ad19d1aa87650911507af4a14a79d5\PCGBootVisualizingCommon.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 672256 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGAzureShared\8cb44b7202f7a872dcf17102aff7d106\PCGAzureShared.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\0add35a0fbe0c381c998b651c5979902\MSBuild.ni.exe
+ 2011-06-16 09:50 . 2011-06-16 09:50 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\667dc256d9eb3577f2514c89c5974aff\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2011-06-16 09:47 . 2011-06-16 09:47 168448 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.ServiceHo#\01f9bff44989f75b09885555fa068bc2\Microsoft.ServiceHosting.ServiceRuntime.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 433664 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\a4a79ab57600da00a30d9752b4df9fa4\Microsoft.PowerShell.Commands.Management.ni.dll
+ 2011-06-16 09:51 . 2011-06-16 09:51 968192 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\6de23b7c94490de46b2cd8edf11f5dd0\Microsoft.PowerShell.Commands.Utility.ni.dll
+ 2011-06-16 09:51 . 2011-06-16 09:51 492032 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\55d6f56c092bb6e1a07b0261e9a7c4f2\Microsoft.PowerShell.ConsoleHost.ni.dll
+ 2011-06-16 09:51 . 2011-06-16 09:51 148480 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\30087c1eceefa670ba9d2dd6c114e537\Microsoft.PowerShell.Security.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\d5561a4ad04c22f0eb5acf4736c7936e\Microsoft.Build.Utilities.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\1a0623063225521aa43044314cc5e721\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\530f98922474a31636c34fa3db9a63ba\Microsoft.Build.Engine.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\7e75fca3ca1f36df8ac624190d9cd283\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 572928 c:\windows\assembly\NativeImages_v2.0.50727_32\Ionic.Zip.Reduced\147eba82477c1b6b4e9d5148648d47a0\Ionic.Zip.Reduced.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 100864 c:\windows\assembly\NativeImages_v2.0.50727_32\Interop.IWshRuntime#\2d54f480d0481219d626964c7c388e0a\Interop.IWshRuntimeLibrary.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\80bd17388778c90f301746ad88700758\CustomMarshalers.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\c0f5f3c318a92212bbe3b413eeb2b374\ComSvcConfig.ni.exe
+ 2011-06-16 09:44 . 2011-06-16 09:44 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\0524928cbd0a686db3960ef688d0d37e\AspNetMMCExt.ni.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2011-06-16 08:09 . 2010-07-05 13:16 382840 c:\windows\$NtUninstallKB2544893$\spuninst\updspapi.dll
+ 2011-06-16 08:09 . 2010-07-05 13:15 231288 c:\windows\$NtUninstallKB2544893$\spuninst\spuninst.exe
+ 2011-06-16 08:09 . 2011-03-07 05:33 692736 c:\windows\$NtUninstallKB2544893$\inetcomm.dll
+ 2011-06-16 08:21 . 2010-07-05 13:16 382840 c:\windows\$NtUninstallKB2536276$\spuninst\updspapi.dll
+ 2011-06-16 08:21 . 2010-07-05 13:15 231288 c:\windows\$NtUninstallKB2536276$\spuninst\spuninst.exe
+ 2011-06-16 08:21 . 2011-02-17 13:18 455936 c:\windows\$NtUninstallKB2536276$\mrxsmb.sys
+ 2011-06-16 08:25 . 2010-07-05 13:16 382840 c:\windows\$NtUninstallKB2535512$\spuninst\updspapi.dll
+ 2011-06-16 08:25 . 2010-07-05 13:15 231288 c:\windows\$NtUninstallKB2535512$\spuninst\spuninst.exe
+ 2011-06-16 08:25 . 2008-04-13 19:17 105344 c:\windows\$NtUninstallKB2535512$\mup.sys
+ 2011-06-16 08:25 . 2010-07-05 13:16 382840 c:\windows\$NtUninstallKB2503665$\spuninst\updspapi.dll
+ 2011-06-16 08:25 . 2010-07-05 13:15 231288 c:\windows\$NtUninstallKB2503665$\spuninst\spuninst.exe
+ 2011-06-16 08:25 . 2008-10-16 14:43 138496 c:\windows\$NtUninstallKB2503665$\afd.sys
+ 2011-06-16 08:27 . 2010-07-05 13:16 382840 c:\windows\$NtUninstallKB2476490$\spuninst\updspapi.dll
+ 2011-06-16 08:27 . 2010-07-05 13:15 231288 c:\windows\$NtUninstallKB2476490$\spuninst\spuninst.exe
+ 2011-06-16 08:27 . 2008-04-14 00:12 551936 c:\windows\$NtUninstallKB2476490$\oleaut32.dll
+ 2011-06-16 08:09 . 2010-07-05 13:16 382840 c:\windows\$hf_mig$\KB2544893\update\updspapi.dll
+ 2011-06-16 08:09 . 2010-07-05 13:15 755576 c:\windows\$hf_mig$\KB2544893\update\update.exe
+ 2011-06-16 08:09 . 2010-07-05 13:15 231288 c:\windows\$hf_mig$\KB2544893\spuninst.exe
+ 2011-06-15 13:30 . 2011-05-02 15:30 692736 c:\windows\$hf_mig$\KB2544893\SP3QFE\inetcomm.dll
+ 2011-06-16 08:02 . 2010-07-05 13:16 382840 c:\windows\$hf_mig$\KB2544521-IE8\update\updspapi.dll
+ 2011-06-16 08:02 . 2010-07-05 13:15 755576 c:\windows\$hf_mig$\KB2544521-IE8\update\update.exe
+ 2011-06-16 08:02 . 2010-07-05 13:15 231288 c:\windows\$hf_mig$\KB2544521-IE8\spuninst.exe
+ 2011-06-15 13:29 . 2011-04-30 02:59 758784 c:\windows\$hf_mig$\KB2544521-IE8\SP3QFE\vgx.dll
+ 2011-06-16 08:21 . 2010-07-05 13:16 382840 c:\windows\$hf_mig$\KB2536276\update\updspapi.dll
+ 2011-06-16 08:21 . 2010-07-05 13:15 755576 c:\windows\$hf_mig$\KB2536276\update\update.exe
+ 2011-06-16 08:21 . 2010-07-05 13:15 231288 c:\windows\$hf_mig$\KB2536276\spuninst.exe
+ 2011-06-15 13:26 . 2011-04-29 16:47 457856 c:\windows\$hf_mig$\KB2536276\SP3QFE\mrxsmb.sys
+ 2011-06-16 08:25 . 2010-07-05 13:16 382840 c:\windows\$hf_mig$\KB2535512\update\updspapi.dll
+ 2011-06-16 08:25 . 2010-07-05 13:15 755576 c:\windows\$hf_mig$\KB2535512\update\update.exe
+ 2011-06-16 08:25 . 2010-07-05 13:15 231288 c:\windows\$hf_mig$\KB2535512\spuninst.exe
+ 2011-06-15 13:26 . 2011-04-21 13:52 105472 c:\windows\$hf_mig$\KB2535512\SP3QFE\mup.sys
+ 2011-06-16 08:20 . 2010-07-05 13:16 382840 c:\windows\$hf_mig$\KB2530548-IE8\update\updspapi.dll
+ 2011-06-16 08:20 . 2010-07-05 13:15 755576 c:\windows\$hf_mig$\KB2530548-IE8\update\update.exe
+ 2011-06-16 08:20 . 2010-07-05 13:15 231288 c:\windows\$hf_mig$\KB2530548-IE8\spuninst.exe
+ 2011-06-15 13:25 . 2011-04-25 16:09 919552 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\wininet.dll
+ 2011-06-15 13:25 . 2011-04-25 16:09 206848 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\occache.dll
+ 2011-06-15 13:25 . 2011-04-25 16:09 611840 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\mstime.dll
+ 2011-06-15 13:25 . 2011-04-25 16:09 602112 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\msfeeds.dll
+ 2011-06-15 13:25 . 2011-04-25 16:09 247808 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\ieproxy.dll
+ 2011-06-15 13:25 . 2011-04-25 16:09 184320 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\iepeers.dll
+ 2011-06-15 13:25 . 2011-04-25 16:09 743424 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\iedvtool.dll
+ 2011-06-15 13:24 . 2011-04-25 16:09 387584 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\iedkcs32.dll
+ 2011-06-15 13:24 . 2011-04-25 11:37 173568 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\ie4uinit.exe
+ 2011-06-16 08:26 . 2010-07-05 13:16 382840 c:\windows\$hf_mig$\KB2503665\update\updspapi.dll
+ 2011-06-16 08:26 . 2010-07-05 13:15 755576 c:\windows\$hf_mig$\KB2503665\update\update.exe
+ 2011-06-16 08:26 . 2010-07-05 13:15 231288 c:\windows\$hf_mig$\KB2503665\spuninst.exe
+ 2011-06-15 13:26 . 2011-02-16 13:25 138496 c:\windows\$hf_mig$\KB2503665\SP3QFE\afd.sys
+ 2011-06-16 08:27 . 2010-07-05 13:16 382840 c:\windows\$hf_mig$\KB2476490\update\updspapi.dll
+ 2011-06-16 08:27 . 2010-07-05 13:15 755576 c:\windows\$hf_mig$\KB2476490\update\update.exe
+ 2011-06-16 08:27 . 2010-07-05 13:15 231288 c:\windows\$hf_mig$\KB2476490\spuninst.exe
+ 2010-12-20 17:30 . 2010-12-20 17:30 552448 c:\windows\$hf_mig$\KB2476490\SP3QFE\oleaut32.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 3781960 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfc90u.dll
+ 2011-04-18 21:51 . 2011-04-18 21:51 3766600 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfc90.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 3780936 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_d5fe2ecb\mfc90u.dll
+ 2011-01-11 09:59 . 2011-01-11 09:59 3766088 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.5570_x-ww_d5fe2ecb\mfc90.dll
+ 2011-05-13 19:04 . 2011-05-13 19:04 1093120 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll
+ 2011-05-13 19:04 . 2011-05-13 19:04 1101824 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80.dll
+ 2009-07-20 23:03 . 2009-07-20 23:03 1348432 c:\windows\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9876.0_x-ww_a621d1d5\msxml4.dll
+ 2008-09-30 15:42 . 2008-09-30 15:42 1286152 c:\windows\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9870.0_x-ww_a32d74cf\msxml4.dll
+ 2011-06-26 19:08 . 2011-06-26 19:08 1233920 c:\windows\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9818.0_x-ww_8ff50c5d\msxml4.dll
- 2010-05-22 12:54 . 2010-09-28 15:44 4184352 c:\windows\system32\usbaaplrc.dll
+ 2010-05-22 12:54 . 2011-02-18 16:36 4184352 c:\windows\system32\usbaaplrc.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 1211904 c:\windows\system32\urlmon.dll
+ 2011-06-26 07:29 . 2007-10-30 08:00 5851488 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igxpmp32.sys
+ 2011-06-26 07:29 . 2011-06-25 07:59 2643968 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igxpdx32.dll
+ 2011-06-26 07:29 . 2011-06-25 07:59 1670144 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igxpdv32.dll
+ 2011-06-26 07:29 . 2007-10-30 07:54 2334720 c:\windows\system32\ReinstallBackups\0043\DriverFiles\iglicd32.dll
+ 2011-06-26 07:29 . 2011-06-25 07:59 3293184 c:\windows\system32\ReinstallBackups\0043\DriverFiles\igfxress.dll
+ 2011-06-26 07:27 . 2009-02-03 01:27 7360512 c:\windows\system32\ReinstallBackups\0042\DriverFiles\RtsUStoricon.dll
+ 2011-06-25 07:59 . 2011-06-25 07:56 5854752 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igxpmp32.sys
+ 2011-06-25 07:59 . 2007-10-30 08:00 2643968 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igxpdx32.dll
+ 2011-06-25 07:59 . 2007-10-30 08:00 1668960 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igxpdv32.dll
+ 2011-06-25 07:59 . 2011-06-25 07:56 2334720 c:\windows\system32\ReinstallBackups\0041\DriverFiles\iglicd32.dll
+ 2011-06-25 07:59 . 2007-10-30 07:39 3293184 c:\windows\system32\ReinstallBackups\0041\DriverFiles\igfxress.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 5854752 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igxpmp32.sys
+ 2011-06-25 07:57 . 2007-10-30 08:00 2643968 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igxpdx32.dll
+ 2011-06-25 07:57 . 2007-10-30 08:00 1668960 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igxpdv32.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 2334720 c:\windows\system32\ReinstallBackups\0039\DriverFiles\iglicd32.dll
+ 2011-06-25 07:57 . 2007-10-30 07:39 3293184 c:\windows\system32\ReinstallBackups\0039\DriverFiles\igfxress.dll
+ 2011-06-25 07:57 . 2007-10-30 08:00 5851488 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igxpmp32.sys
+ 2011-06-25 07:57 . 2007-10-30 08:00 2643968 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igxpdx32.dll
+ 2011-06-25 07:57 . 2007-10-30 08:00 1668960 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igxpdv32.dll
+ 2011-06-25 07:57 . 2007-10-30 07:54 2334720 c:\windows\system32\ReinstallBackups\0038\DriverFiles\iglicd32.dll
+ 2011-06-25 07:57 . 2007-10-30 07:39 3293184 c:\windows\system32\ReinstallBackups\0038\DriverFiles\igfxress.dll
+ 2011-06-25 07:53 . 2011-06-21 18:48 1023872 c:\windows\system32\ReinstallBackups\0034\DriverFiles\rt2860.sys
+ 2011-06-25 07:49 . 2011-06-20 21:15 1833576 c:\windows\system32\ReinstallBackups\0032\DriverFiles\SkyTel.exe
+ 2011-06-25 07:49 . 2011-06-20 21:15 1489512 c:\windows\system32\ReinstallBackups\0032\DriverFiles\RtlUpd.exe
+ 2011-06-25 07:49 . 2011-06-20 21:15 9721960 c:\windows\system32\ReinstallBackups\0032\DriverFiles\RTLCPL.EXE
+ 2011-06-25 07:49 . 2011-06-20 21:15 6108776 c:\windows\system32\ReinstallBackups\0032\DriverFiles\RtkHDAud.sys
+ 2011-06-25 07:49 . 2011-06-20 21:15 2180712 c:\windows\system32\ReinstallBackups\0032\DriverFiles\MicCal.exe
+ 2011-06-25 07:49 . 2011-06-20 21:15 2815592 c:\windows\system32\ReinstallBackups\0032\DriverFiles\ALCWZRD.EXE
+ 2011-06-20 21:15 . 2007-11-20 10:15 1826816 c:\windows\system32\ReinstallBackups\0029\DriverFiles\SkyTel.exe
+ 2011-06-20 21:16 . 2008-04-02 01:27 1196032 c:\windows\system32\ReinstallBackups\0029\DriverFiles\RtlUpd.exe
+ 2011-06-20 21:16 . 2008-06-19 08:27 9715200 c:\windows\system32\ReinstallBackups\0029\DriverFiles\RTLCPL.EXE
+ 2011-06-20 21:15 . 2008-07-03 09:03 4745216 c:\windows\system32\ReinstallBackups\0029\DriverFiles\RtkHDAud.sys
+ 2011-06-20 21:15 . 2007-06-28 08:44 2165760 c:\windows\system32\ReinstallBackups\0029\DriverFiles\MicCal.exe
+ 2011-06-20 21:16 . 2008-06-19 08:42 2808832 c:\windows\system32\ReinstallBackups\0029\DriverFiles\ALCWZRD.EXE
+ 2011-06-26 07:28 . 2011-06-25 07:59 5854752 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igxpmp32.sys
+ 2011-06-26 07:28 . 2011-06-25 07:59 2643968 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igxpdx32.dll
+ 2011-06-26 07:28 . 2011-06-25 07:59 1670144 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igxpdv32.dll
+ 2011-06-26 07:28 . 2011-06-25 07:59 2334720 c:\windows\system32\ReinstallBackups\0000\DriverFiles\iglicd32.dll
+ 2011-06-26 07:28 . 2011-06-25 07:59 3293184 c:\windows\system32\ReinstallBackups\0000\DriverFiles\igfxress.dll
+ 2009-07-20 23:05 . 2009-07-20 23:05 1348432 c:\windows\system32\msxml4.dll
+ 2007-12-20 21:26 . 2011-05-30 22:19 5964800 c:\windows\system32\mshtml.dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(32).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(31).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(30).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(29).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(28).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(27).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(26).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(25).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(24).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(23).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(22).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(21).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(20).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(19).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(18).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(17).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(16).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(15).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(14).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 2643968 c:\windows\system32\igxpdx32(13).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(32).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(31).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(30).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(29).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(28).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(27).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(26).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(25).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(24).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(23).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(22).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(21).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(20).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(19).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(18).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(17).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(16).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(15).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(14).dll
+ 2010-05-22 12:25 . 2007-10-30 08:00 1668960 c:\windows\system32\igxpdv32(13).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(31).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(30).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(29).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(28).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(27).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(26).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(25).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(24).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(23).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(22).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(21).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(20).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(19).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(18).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(17).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(16).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(15).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(14).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(13).dll
+ 2010-05-22 12:25 . 2007-10-30 07:39 3293184 c:\windows\system32\igfxress(12).dll
- 2006-10-17 18:57 . 2011-02-22 23:06 1991680 c:\windows\system32\iertutil.dll
+ 2006-10-17 18:57 . 2011-04-25 16:11 1991680 c:\windows\system32\iertutil.dll
+ 2011-06-25 18:22 . 2011-05-10 07:06 4517664 c:\windows\system32\DRVSTORE\usbaapl_5CBB3A09528F68FC4AD2F36E43C028E7E6F20400\usbaaplrc.dll
+ 2011-06-25 18:22 . 2010-04-19 19:29 1461992 c:\windows\system32\DRVSTORE\netaapl_B71F8545DA20A81C41BFD744E8D7D9784787E916\wdfcoinstaller01009.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 5854752 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igxpmp32.sys
+ 2011-06-25 07:57 . 2011-06-25 07:56 2643968 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igxpdx32.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 1670144 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igxpdv32.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 2334720 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\iglicd32.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 1399880 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igklg450.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 1843784 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igklg400.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 3293184 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\igfxress.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 2412544 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\ig4icd32.dll
+ 2011-06-25 07:57 . 2011-06-25 07:56 1589248 c:\windows\system32\DRVSTORE\igxp32_28D4AE6A4B66DD890D24C65EE34E5B62AB7E0BB9\ig4dev32.dll
+ 2007-12-20 21:26 . 2011-04-25 16:11 1211904 c:\windows\system32\dllcache\urlmon.dll
+ 2007-12-20 21:26 . 2011-05-30 22:19 5964800 c:\windows\system32\dllcache\mshtml.dll
+ 2010-03-11 12:38 . 2011-04-25 16:11 1991680 c:\windows\system32\dllcache\iertutil.dll
- 2010-03-11 12:38 . 2011-02-22 23:06 1991680 c:\windows\system32\dllcache\iertutil.dll
+ 2010-05-22 20:22 . 2007-10-25 09:24 5624832 c:\windows\system\DriveIcon.dll
- 2010-05-22 20:22 . 2007-10-25 17:24 5624832 c:\windows\system\DriveIcon.dll
+ 2011-03-25 05:15 . 2011-03-25 05:15 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
- 2008-07-25 18:17 . 2008-07-25 18:17 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2011-01-18 03:39 . 2011-01-18 03:39 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
- 2010-03-23 04:32 . 2010-03-23 04:32 3182592 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2011-03-25 05:15 . 2011-03-25 05:15 5912400 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2011-03-25 05:15 . 2011-03-25 05:15 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
- 2011-01-18 03:39 . 2011-01-18 03:39 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2011-07-05 18:43 . 2011-07-05 18:43 9472000 c:\windows\Installer\d597f.msi
+ 2011-07-10 14:30 . 2011-07-10 14:30 3489280 c:\windows\Installer\8913f.msi
+ 2011-06-25 18:22 . 2011-06-25 18:22 3085312 c:\windows\Installer\76c42.msi
+ 2011-06-25 15:16 . 2011-06-25 15:16 3085312 c:\windows\Installer\6d763b.msi
+ 2011-04-29 11:31 . 2011-04-29 11:31 9006080 c:\windows\Installer\3f42ce2.msp
+ 2011-04-29 11:28 . 2011-04-29 11:28 1995264 c:\windows\Installer\3f42ccb.msp
+ 2011-04-29 11:33 . 2011-04-29 11:33 8173568 c:\windows\Installer\3f42ca2.msp
+ 2011-01-18 22:36 . 2011-01-18 22:36 2687488 c:\windows\Installer\3f42c8b.msp
+ 2011-07-05 17:41 . 2011-07-05 17:41 9472000 c:\windows\Installer\3994b.msi
+ 2011-05-29 09:23 . 2011-05-29 09:23 1984000 c:\windows\Installer\2a31b9.msi
+ 2011-07-09 22:24 . 2011-07-09 22:24 1611776 c:\windows\Installer\217f66.msi
+ 2011-07-09 22:17 . 2011-07-09 22:17 6541312 c:\windows\Installer\217f62.msi
+ 2011-07-10 06:05 . 2011-07-10 06:05 1611776 c:\windows\Installer\1d804dd.msi
+ 2011-06-19 18:09 . 2011-06-19 18:09 1541120 c:\windows\Installer\1bba688.msi
+ 2010-08-22 09:54 . 2011-06-16 08:54 1172240 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
- 2010-08-22 09:54 . 2011-05-11 08:05 1172240 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
- 2010-08-22 09:54 . 2011-05-11 08:05 1165584 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\accicons.exe
+ 2010-08-22 09:54 . 2011-06-16 08:54 1165584 c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\accicons.exe
+ 2011-06-16 08:20 . 2011-02-22 23:06 1210880 c:\windows\ie8updates\KB2530548-IE8\urlmon.dll
+ 2011-06-16 08:20 . 2011-02-22 23:06 5962240 c:\windows\ie8updates\KB2530548-IE8\mshtml.dll
+ 2011-06-16 08:20 . 2011-02-22 23:06 1991680 c:\windows\ie8updates\KB2530548-IE8\iertutil.dll
+ 2011-06-16 08:56 . 2011-06-16 08:56 3325440 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\11526c1635b97a7d49e25e72ed6e9662\WindowsBase.ni.dll
+ 2011-06-16 09:04 . 2011-06-16 09:04 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\901c3796073853746fecd8979c679494\UIAutomationClientsideProviders.ni.dll
+ 2011-06-16 08:54 . 2011-06-16 08:54 7950848 c:\windows\assembly\NativeImages_v2.0.50727_32\System\f6a9a002526806f3a5b745cf5c407cae\System.ni.dll
+ 2011-06-16 09:04 . 2011-06-16 09:04 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f354057a5b4fad4c399da28449ba0d92\System.Xml.ni.dll
+ 2011-06-16 10:23 . 2011-06-16 10:23 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\2877dda3e0f0faeba527b4bf1efe9cb5\System.WorkflowServices.ni.dll
+ 2011-06-16 10:23 . 2011-06-16 10:23 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\d7cb3697989fe6fa3a08d2821d38aa5e\System.Workflow.Runtime.ni.dll
+ 2011-06-16 10:23 . 2011-06-16 10:23 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\4ac04107c35485d415f9e1bebfd155dd\System.Workflow.ComponentModel.ni.dll
+ 2011-06-16 10:22 . 2011-06-16 10:22 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\2169feb8bd57d96e621fa26d9391d463\System.Workflow.Activities.ni.dll
+ 2011-06-16 09:47 . 2011-06-16 09:47 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\f31f1579160d87470cba918f06276e0d\System.Web.Services.ni.dll
+ 2011-06-16 10:22 . 2011-06-16 10:22 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\bdad1c0f4eb846543b234353fd2b926f\System.Web.Mobile.ni.dll
+ 2011-06-16 10:22 . 2011-06-16 10:22 2405376 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\647bfe6da40e8160b967c41424901dc8\System.Web.Extensions.ni.dll
+ 2011-06-16 09:02 . 2011-06-16 09:02 1917952 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\2047e63293e067b351b8f0e038253f33\System.Speech.ni.dll
+ 2011-06-16 10:21 . 2011-06-16 10:21 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\ead07662976fb7094811461c568643d5\System.ServiceModel.Web.ni.dll
+ 2011-06-16 09:44 . 2011-06-16 09:44 2345472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\c889a45c82004537f1620dd3b211af66\System.Runtime.Serialization.ni.dll
+ 2011-06-16 09:02 . 2011-06-16 09:02 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\c64aa916251a45206a805ab6488b9255\System.Printing.ni.dll
+ 2011-06-16 10:21 . 2011-06-16 10:21 4949504 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.A#\654e80cc700c835210f77527b53a6802\System.Management.Automation.ni.dll
+ 2011-06-16 09:44 . 2011-06-16 09:44 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\a8039af85f459c19c041313f9fe0d7e8\System.IdentityModel.ni.dll
+ 2011-06-16 09:02 . 2011-06-16 09:02 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\a59b17e6040e3f6286a2227dfdb17096\System.Drawing.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\55211bc8f4fcff47c05bfc3020d97148\System.DirectoryServices.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\f9ff2fb342cd5102e2d95883b3433a5d\System.Deployment.ni.dll
+ 2011-06-16 09:00 . 2011-06-16 09:00 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\05d99241bd45cbd96a6053841790a4a2\System.Data.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\ef31ab37b0d7c3c1a6d72646966c8911\System.Data.SqlXml.ni.dll
+ 2011-06-16 10:21 . 2011-06-16 10:21 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\f945e9c32c775bb604ab83d8933f1b2c\System.Data.Services.ni.dll
+ 2011-06-16 09:47 . 2011-06-16 09:47 1115136 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.OracleC#\e12e3036e337cbeb2d274b37ff4c1279\System.Data.OracleClient.ni.dll
+ 2011-06-16 09:01 . 2011-06-16 09:01 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\283e9bf48e17bdb34acdc93bd5721be0\System.Data.Linq.ni.dll
+ 2011-06-16 10:20 . 2011-06-16 10:20 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\368c85cccea8a1206be5c849fd6614e3\System.Data.Entity.ni.dll
+ 2011-06-16 09:00 . 2011-06-16 09:00 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\bd2e04dfab2993479ae17ea3fa4f6222\System.Core.ni.dll
+ 2011-06-16 09:49 . 2011-06-16 09:49 1223168 c:\windows\assembly\NativeImages_v2.0.50727_32\SolutoService\c28ab20f801787f8cc4d52e3755566db\SolutoService.ni.exe
+ 2011-06-16 09:49 . 2011-06-16 09:49 6889472 c:\windows\assembly\NativeImages_v2.0.50727_32\SolutoConsole\79a44372702c827cce39c0b731bf7bc8\SolutoConsole.ni.exe
+ 2011-06-16 09:46 . 2011-06-16 09:46 1982464 c:\windows\assembly\NativeImages_v2.0.50727_32\Soluto\875beaa6f01e48d7644767ea3203451f\Soluto.ni.exe
+ 2011-06-16 08:59 . 2011-06-16 08:59 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\4f82a0a1b4405ef61dfa088d11161e35\ReachFramework.ni.dll
+ 2011-06-16 08:59 . 2011-06-16 08:59 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\148505f5b0307230de5d355f10d30a20\PresentationUI.ni.dll
+ 2011-06-16 08:55 . 2011-06-16 08:55 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\1fab86af683c04bdb0aaf65ce7fcd9e5\PresentationBuildTasks.ni.dll
+ 2011-06-16 09:47 . 2011-06-16 09:47 2845696 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGPreCompiled\af76345cffcf22981e8540cad058e2b0\PCGPreCompiled.ni.dll
+ 2011-06-16 09:46 . 2011-06-16 09:46 2231296 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGFramework\b9a1fc53b211243a4b27c28e55f42d0b\PCGFramework.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 3473920 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGDatabase\db42358f378a4e660bd2d4c706379fb4\PCGDatabase.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 1241600 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGCommunication\702f3a4867a1c71e0d4a85b7a8509bee\PCGCommunication.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 2996736 c:\windows\assembly\NativeImages_v2.0.50727_32\PCGClientCommon\3dacc1d194ac28136636ad82f56c0e3f\PCGClientCommon.ni.dll
+ 2011-06-16 09:47 . 2011-06-16 09:47 1454080 c:\windows\assembly\NativeImages_v2.0.50727_32\Newtonsoft.Json\8bf0792ad2ff1c6ec305694fe0e9765e\Newtonsoft.Json.ni.dll
+ 2011-06-16 09:51 . 2011-06-16 09:51 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\7292ca9d793cb71cf3d41ae663e7139b\Microsoft.VisualBasic.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\abaf7a180354ed5ec099fb69339b538a\Microsoft.Transactions.Bridge.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\b41db9f2897f538203911026bb0abd5d\Microsoft.JScript.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\a91940f9033c7910f3f64c061571cec9\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\5195a94327ccef45d202776e932e847b\Microsoft.Build.Tasks.ni.dll
+ 2011-06-16 09:50 . 2011-06-16 09:50 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\3efbca53acdd34586bd7f6f87e71ed62\Microsoft.Build.Engine.ni.dll
+ 2011-06-16 09:48 . 2011-06-16 09:48 2327552 c:\windows\assembly\NativeImages_v2.0.50727_32\Community.CsharpSql#\9810405d0d5bce300ed05ee836f4a0c3\Community.CsharpSqlite.ni.dll
+ 2011-06-16 09:49 . 2011-06-16 09:49 1088000 c:\windows\assembly\NativeImages_v2.0.50727_32\AmCharts.Windows\91cd0226f92ea234874a4c37db5c8106\AmCharts.Windows.ni.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2011-04-15 17:18 . 2011-04-15 17:18 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2011-06-16 08:51 . 2011-06-16 08:51 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2011-04-15 17:17 . 2011-04-15 17:17 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-06-16 08:50 . 2011-06-16 08:50 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-06-15 13:24 . 2011-04-25 16:09 1213952 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\urlmon.dll
+ 2011-06-15 13:24 . 2011-05-30 22:17 5967360 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\mshtml.dll
+ 2011-06-15 13:24 . 2011-04-25 16:09 1992192 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\iertutil.dll
+ 2011-06-25 07:49 . 2011-06-20 21:15 19557480 c:\windows\system32\ReinstallBackups\0032\DriverFiles\RTHDCPL.EXE
+ 2011-06-20 21:15 . 2008-07-03 08:51 16876032 c:\windows\system32\ReinstallBackups\0029\DriverFiles\RTHDCPL.EXE
+ 2010-05-26 04:50 . 2011-06-16 08:35 47716296 c:\windows\system32\MRT.exe
+ 2006-11-08 04:03 . 2011-04-26 09:11 11081728 c:\windows\system32\ieframe.dll
+ 2010-03-11 12:38 . 2011-04-26 09:11 11081728 c:\windows\system32\dllcache\ieframe.dll
+ 2011-06-26 19:08 . 2011-06-26 19:08 13033472 c:\windows\Installer\6deff.msi
+ 2011-06-07 16:44 . 2011-06-07 16:44 10127360 c:\windows\Installer\6d762f.msi
+ 2011-03-28 02:27 . 2011-03-28 02:27 15456256 c:\windows\Installer\3f42cef.msp
+ 2011-06-16 08:28 . 2011-06-16 08:28 20333056 c:\windows\Installer\3f42cae.msp
+ 2011-06-16 08:20 . 2011-02-22 23:06 11080704 c:\windows\ie8updates\KB2530548-IE8\ieframe.dll
+ 2011-06-16 09:04 . 2011-06-16 09:04 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\29d16d2f164fe2263539789ecd0d9d4f\System.Windows.Forms.ni.dll
+ 2011-06-16 09:47 . 2011-06-16 09:47 11800576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\1fb5d8788c9a9a7f44e2d0fa19c62729\System.Web.ni.dll
+ 2011-06-16 09:45 . 2011-06-16 09:45 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\23abc8e4b535b9cd9c5560266c655ac2\System.ServiceModel.ni.dll
+ 2011-06-16 09:02 . 2011-06-16 09:02 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\ee914f59ad8211e0b6734dccffd9986e\System.Design.ni.dll
+ 2011-06-16 08:58 . 2011-06-16 08:58 14328320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\999df2b262da53356dda514512bb7bb8\PresentationFramework.ni.dll
+ 2011-06-16 08:57 . 2011-06-16 08:57 12215808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\caafa254739e326b0cf55eed815b4333\PresentationCore.ni.dll
+ 2011-06-16 08:53 . 2011-06-16 08:53 11490816 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll
+ 2011-06-15 13:23 . 2011-04-25 16:09 11083776 c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\ieframe.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-10-18 10:26 3908192 ----a-w- c:\program files\ConduitEngine\ConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2011-06-20 19557480]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-11-08 137752]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2011-04-05 1195408]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-11-08 141848]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"="start http://www.avg.com/ww.special-uninstallation-feedback-app?lic=SUFQT1UtVUczQU0tQ1ZWU1AtUVg5UjktSE85SlMtUw&inst=MC0w&prod=94&ver=10.0.1388" [?]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"RunNarrator"="Narrator.exe" [2008-04-14 53760]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdAuxService]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdCoreService]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2007-10-11 02:51 39792 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
2010-09-21 23:28 47904 ----a-w- c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ASUS Easy Update]
2008-10-16 23:07 188416 ----a-w- c:\program files\ASUS\ASUS Easy Update\ALU.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
c:\documents and settings\Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [BU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2008-10-25 10:44 31072 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Intel AppUp(SM) center]
2011-02-01 11:02 943 ----a-w- c:\program files\Intel\IntelAppStore\bin\serviceManager.lnk
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2011-06-07 16:51 421160 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS]
2011-03-01 22:14 190808 ----a-w- c:\program files\Logitech\LWS\Webcam Software\LWS.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Messenger (Yahoo!)]
2010-06-01 09:17 5252408 ----a-w- c:\progra~1\Yahoo!\Messenger\YahooMessenger.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 00:12 1695232 ------w- c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-29 16:38 421888 ----a-w- C:\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
2011-05-23 08:09 431616 ----a-w- c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
2010-08-24 09:38 247144 ----a-w- c:\program files\TomTom HOME 2\TomTomHOMERunner.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"YahooAUService"=2 (0x2)
"WMPNetworkSvc"=3 (0x3)
"UMVPFSrv"=3 (0x3)
"TomTomHOMEService"=3 (0x3)
"Sony Ericsson PCCompanion"=3 (0x3)
"ose"=3 (0x3)
"OMSI download service"=3 (0x3)
"odserv"=3 (0x3)
"Microsoft Office Groove Audit Service"=3 (0x3)
"Lavasoft Ad-Aware Service"=2 (0x2)
"JavaQuickStarterService"=3 (0x3)
"iPod Service"=3 (0x3)
"Bonjour Service"=2 (0x2)
"Apple Mobile Device"=2 (0x2)
"idsvc"=3 (0x3)
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Spotify\\spotify.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Sony Ericsson\\Update Service\\Update Service.exe"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Program Files\\Common Files\\Mcafee\\McSvcHost\\McSvHost.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\Sony Ericsson\\Update Engine\\Sony Ericsson Update Engine.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
.
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [19/01/2011 19:54 64288]
R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [12/07/2011 18:25 263888]
R0 pctDS;PC Tools Data Store;c:\windows\system32\drivers\pctDS.sys [12/07/2011 18:25 338880]
R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [22/05/2010 22:21 84200]
R2 McMPFSvc;McAfee Personal Firewall Service;"c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [10/04/2011 10:15 271480]
R2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\Mcafee\SystemCore\mfefire.exe [10/04/2011 10:16 188136]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [10/04/2011 09:58 141792]
R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [12/07/2010 04:33 30432]
R3 genmcmnUSB;USB Scroll Mouse Driver;c:\windows\system32\drivers\gflmouhid.sys [21/06/2011 19:47 7808]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [22/05/2010 22:21 314088]
R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [22/05/2010 22:21 88736]
R3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [26/06/2011 08:01 572416]
S0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [11/07/2011 21:51 28552]
S0 TFSysMon;TfSysMon;c:\windows\system32\drivers\TfSysMon.sys --> c:\windows\system32\drivers\TfSysMon.sys [?]
S1 PCTSD;PC Tools Spyware Doctor Driver;c:\windows\system32\drivers\PCTSD.sys [12/07/2011 18:25 233976]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;"c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [10/04/2011 10:15 271480]
S2 McNaiAnn;McAfee VirusScan Announcer;"c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [10/04/2011 10:15 271480]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [20/06/2011 22:15 1691480]
S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [12/07/2010 04:33 30432]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [22/05/2010 22:21 56064]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [03/11/2010 21:55 13224]
S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys --> c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys [?]
S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [22/05/2010 22:21 88736]
S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [22/05/2010 22:21 84488]
S3 olMntrService;olMntrService;c:\program files\Olivetti\ANY_WAY\olMntrService.exe [22/09/2006 20:56 86016]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [03/06/2010 08:46 174592]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\drivers\s1018bus.sys [25/08/2010 21:50 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\drivers\s1018mdfl.sys [25/08/2010 21:50 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\drivers\s1018mdm.sys [25/08/2010 21:50 114728]
S3 sdAuxService;PC Tools Auxiliary Service;c:\pc tools security\pctsAuxs.exe [12/07/2011 18:24 371472]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [03/11/2010 21:56 27632]
S3 VASDeviceDrm;Virtual Audio Streaming with Drm (WDM);c:\windows\system32\drivers\vasdDev.sys [10/12/2010 11:06 1441024]
S4 OMSI download service;Sony Ericsson OMSI download service;c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [05/11/2010 22:34 90112]
S4 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [13/05/2011 20:33 152064]
S4 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [24/08/2010 10:38 92008]
S4 UMVPFSrv;UMVPFSrv;c:\program files\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe [04/03/2011 02:31 428640]
.
Contents of the 'Scheduled Tasks' folder
.
2011-06-25 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 16:57]
.
2011-07-15 c:\windows\Tasks\DriverScanner.job
- c:\program files\Uniblue\DriverScanner\dsmonitor.exe [2011-06-20 10:22]
.
2011-07-15 c:\windows\Tasks\RegistryBooster.job
- c:\program files\Uniblue\RegistryBooster\rbmonitor.exe [2011-06-20 09:42]
.
2011-07-15 c:\windows\Tasks\SpeedUpMyPC.job
- c:\program files\Uniblue\SpeedUpMyPC\spmonitor.exe [2011-06-19 16:27]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.bbc.co.uk/
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
LSP: c:\program files\Common Files\PC Tools\Lsp\PCTLsp.dll
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\documents and settings\Sean\Application Data\Mozilla\Firefox\Profiles\1himotu7.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Secure Search
FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2269050&SearchSource=13
FF - prefs.js: keyword.URL - hxxp://uk.search.yahoo.com/search?fr=mcafee&p=
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-SolutoService
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-07-20 20:32
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
Completion time: 2011-07-20 20:36:53
ComboFix-quarantined-files.txt 2011-07-20 19:36
ComboFix2.txt 2011-05-28 17:22
.
Pre-Run: 29,932,875,776 bytes free
Post-Run: 30,468,558,848 bytes free
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect /safeboot:network
.
- - End Of File - - 033FAA7259F360D933ABB3650C7E004A

#4 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:10:24 AM

Posted 20 July 2011 - 07:47 PM

Hi,

Please do the following:

Please download Malwarebytes' Anti-Malware
  • Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish, so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected. <-- very important
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.

Extra Note:If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.



NEXT


Go here to run an online scanner from ESET.
  • Note: You will need to use Internet explorer for this scan
  • Turn off the real time scanner of any existing antivirus program while performing the online scan
  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start
  • When asked, allow the activeX control to install
  • Click Start
  • Make sure that the option Remove found threats is unticked and the Scan Archives option is ticked.
  • Click on Advanced Settings, ensure the options Scan for potentially unwanted applications, Scan for potentially unsafe applications, and Enable Anti-Stealth Technology are ticked.
  • Click Scan
  • Wait for the scan to finish
  • When the scan completes, press the LIST OF THREATS FOUND button
  • Press EXPORT TO TEXT FILE , name the file ESETSCAN and save it to your desktop
  • Include the contents of this report in your next reply.
  • Press the BACK button.
  • Press Finish

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#5 mrandmrsgall

mrandmrsgall
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:24 PM

Posted 21 July 2011 - 02:29 PM

Hi
I have done as instructed and the files are below .

Malware Bytes log is listed first then the eset


Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Database version: 7219

Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 8.0.6001.18702

21/07/2011 08:11:09
mbam-log-2011-07-21 (08-11-09).txt

Scan type: Quick scan
Objects scanned: 190519
Time elapsed: 6 minute(s), 38 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


------------------------------------------------------------------------------------------
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\WinMuollo1.zip Win32/Bagle.gen.zip worm
C:\Documents and Settings\Sean\Application Data\Uniblue\RegistryBooster\_temp\registrybooster.exe Win32/RegistryBooster application
C:\Documents and Settings\Sean\My Documents\Downloads\sOFTWARE\speedupmypc.exe Win32/SpeedUpMyPC application
C:\Program Files\Uniblue\RegistryBooster\Launcher.exe Win32/RegistryBooster application
C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe Win32/RegistryBooster application
C:\Program Files\Uniblue\RegistryBooster\rbnotifier.exe Win32/RegistryBooster application
C:\Program Files\Uniblue\RegistryBooster\rb_move_serial.exe Win32/RegistryBooster application
C:\Program Files\Uniblue\RegistryBooster\rb_ubm.exe Win32/RegistryBooster application
C:\Program Files\Uniblue\RegistryBooster\registrybooster.exe Win32/RegistryBooster application
C:\Program Files\Uniblue\SpeedUpMyPC\Launcher.exe Win32/SpeedUpMyPC application
C:\Program Files\Uniblue\SpeedUpMyPC\spmonitor.exe Win32/SpeedUpMyPC application
C:\Program Files\Uniblue\SpeedUpMyPC\spnotifier.exe Win32/SpeedUpMyPC application
C:\Program Files\Uniblue\SpeedUpMyPC\sp_move_serial.exe Win32/SpeedUpMyPC application
C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe Win32/SpeedUpMyPC application
C:\System Volume Information\_restore{00468192-C2CB-43AD-A896-D9C8182B3386}\RP158\A0059178.exe Win32/RegistryBooster application
C:\System Volume Information\_restore{00468192-C2CB-43AD-A896-D9C8182B3386}\RP158\A0059189.exe Win32/RegistryBooster application
C:\System Volume Information\_restore{00468192-C2CB-43AD-A896-D9C8182B3386}\RP158\A0059190.exe Win32/RegistryBooster application
C:\System Volume Information\_restore{00468192-C2CB-43AD-A896-D9C8182B3386}\RP158\A0059191.exe Win32/RegistryBooster application
C:\System Volume Information\_restore{00468192-C2CB-43AD-A896-D9C8182B3386}\RP158\A0059192.exe Win32/RegistryBooster application
C:\System Volume Information\_restore{00468192-C2CB-43AD-A896-D9C8182B3386}\RP158\A0059193.exe Win32/RegistryBooster application

#6 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:10:24 AM

Posted 21 July 2011 - 04:44 PM

Hi

Please do the following:

Visit ADOBEand download the latest version of Acrobat Reader (version X)
Having the latest updates ensures there are no security vulnerabilities in your system.

NEXT

Posted Image Your Java is out of date.
Java™ 6 Update 24 can be updated from the Java control panel Start > Control Panel (Classic View) > Java (looks like a coffee cup) > Update Tab > Update Now.
An update should begin; > follow the prompts.


Clear Java cache

Go into the Control Panel and double-click the Java Icon. (looks like a coffee cup) If you do not see the icon, look to your left and click 'Switch to Classic View'.
  • On the General tab, under Temporary Internet Files, click the Settings button.
  • Next, click on the Delete Files button
  • There are two options in the window to clear the cache - Leave BOTH Checked
    • Applications and Applets
      Trace and Log Files
  • Click OK on Delete Temporary Files Window
    Note: This deletes ALL the Downloaded Applications and Applets from the CACHE.
  • Click OK to leave the Temporary Files Window
  • Click OK to leave the Java Control Panel.



NEXT


Please post a fresh DDS Log and advise how your computer is running now and if there are any outstanding issues

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#7 mrandmrsgall

mrandmrsgall
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:24 PM

Posted 22 July 2011 - 02:05 PM

Hello,
Again thanks for taking the time to help!

I started my system in normal mode and opened i.e. This seemed to work ok(and it didnt previously)

I tried to update java, but got an error message. (error 1721. There is a problem with this windows installer package. program required for this install to complete could not be run. Contact your support personnel or package vendor)
Also Mcafee popped up with a message.
Mcafee prevented a potentially unwanted program from running. Protect your pc by only allowing programs you trust.
About this potentially unwanted program
Name Tool-NirCmd
Quarantined From: C:\System Volume Information\_restore(00468192-c2cb-43ad-a896-d9c8182b3386)\rp158\a0060805.exe

It then had three options. Remove, Allow or close. I tried remove, but it couldnt remove it. it popped up again, and every time i clicked close, the same message popped up.

My system is very slow in normal mode, and i could not get google chrome to open. Also my computer is telling me that there are update ready to install from microsoft, but when i click the yellow balloon in the system tray, nothing opens.

I have had to revert back to safe mode to access the net properly.

Have all of the issues been removed from my system now?

DDS log below.


DDS (Ver_2011-07-14.01) - NTFS_x86 NETWORK
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_24
Run by Sean at 17:59:03 on 2011-07-22
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1015.721 [GMT 1:00]
.
AV: AVG Internet Security 2011 *Disabled/Outdated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall *Enabled*
.
============== Running Processes ================
.
C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
C:\WINDOWS\system32\mfevtps.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\WINDOWS\Explorer.EXE
C:\Documents and Settings\Sean\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sean\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sean\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Sean\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\msiexec.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://uk.ask.com/?o=461
uWindow Title = Windows Internet Explorer provided by Ask Jeeves
uDefault_Page_URL = hxxp://uk.ask.com/?o=461
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Conduit Engine: {30F9B915-B755-4826-820B-08FBA6BD249D} - c:\program files\conduitengine\ConduitEngine.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20110511124529.dll
BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\program files\mcafee\siteadvisor\McIEPlg.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\program files\mcafee\siteadvisor\McIEPlg.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRunOnce: [RunNarrator] Narrator.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoResolveTrack = dword:1
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
LSP: c:\program files\common files\pc tools\lsp\PCTLsp.dll
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} - hxxp://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{E4449B02-F78F-420B-B714-D04D45D8CF4F} : DHCPNameServer = 192.168.0.1
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: ipp - <Clsid value has no data>
Handler: msdaipp - <Clsid value has no data>
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "c:\program files\outlook express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
mASetup: {7790769C-0471-11d2-AF11-00C04FA35D02} - "c:\program files\outlook express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
IFEO: Your Image File Name Here without a path - ntsd -d
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\sean\application data\mozilla\firefox\profiles\1himotu7.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Secure Search
FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2269050&SearchSource=13
FF - prefs.js: keyword.URL - hxxp://uk.search.yahoo.com/search?fr=mcafee&p=
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60531.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npCouponPrinter.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npMozCouponPrinter.dll
.
---- FIREFOX POLICIES ----
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true
.
============= SERVICES / DRIVERS ===============
.
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2011-1-19 64288]
R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2010-10-13 387480]
R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2011-7-12 263888]
R0 pctDS;PC Tools Data Store;c:\windows\system32\drivers\pctDS.sys [2011-7-12 338880]
R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [2010-5-22 84200]
R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-4-10 271480]
R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2011-4-10 188136]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2011-4-10 141792]
R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2010-7-12 30432]
R3 genmcmnUSB;USB Scroll Mouse Driver;c:\windows\system32\drivers\gflmouhid.sys [2011-6-21 7808]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-5-22 314088]
R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [2010-5-22 88736]
R3 RT80x86;Ralink 802.11n Wireless Driver;c:\windows\system32\drivers\rt2860.sys [2011-6-26 572416]
S0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2011-7-11 28552]
S0 TFSysMon;TfSysMon;c:\windows\system32\drivers\tfsysmon.sys --> c:\windows\system32\drivers\TfSysMon.sys [?]
S1 PCTSD;PC Tools Spyware Doctor Driver;c:\windows\system32\drivers\PCTSD.sys [2011-7-12 233976]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-4-10 271480]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-4-10 271480]
S2 McProxy;McAfee Proxy Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-4-10 271480]
S2 McShield;McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2011-4-10 171168]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2011-6-20 1691480]
S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2010-7-12 30432]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-5-22 56064]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [2010-11-3 13224]
S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\c:\program files\lavasoft\ad-aware\kernexplorer.sys --> c:\program files\lavasoft\ad-aware\KernExplorer.sys [?]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-7-21 41272]
S3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2010-5-22 153280]
S3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2010-5-22 52320]
S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [2010-5-22 88736]
S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-5-22 84488]
S3 olMntrService;olMntrService;c:\program files\olivetti\any_way\olMntrService.exe [2006-9-22 86016]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2010-6-3 174592]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\drivers\s1018bus.sys [2010-8-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\drivers\s1018mdfl.sys [2010-8-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\drivers\s1018mdm.sys [2010-8-25 114728]
S3 sdAuxService;PC Tools Auxiliary Service;c:\pc tools security\pctsAuxs.exe [2011-7-12 371472]
S3 sdCoreService;PC Tools Security Service;c:\pc tools security\pctsSvc.exe [2011-7-12 1117144]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [2010-11-3 27632]
S3 VASDeviceDrm;Virtual Audio Streaming with Drm (WDM);c:\windows\system32\drivers\vasdDev.sys [2010-12-10 1441024]
S4 OMSI download service;Sony Ericsson OMSI download service;c:\program files\sony ericsson\sony ericsson pc suite\SupServ.exe [2010-11-5 90112]
S4 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\sony ericsson\sony ericsson pc companion\PCCService.exe [2011-5-13 152064]
S4 TomTomHOMEService;TomTomHOMEService;c:\program files\tomtom home 2\TomTomHOMEService.exe [2010-8-24 92008]
S4 UMVPFSrv;UMVPFSrv;c:\program files\common files\logishrd\lvmvfm\UMVPFSrv.exe [2011-3-4 428640]
.
=============== Created Last 30 ================
.
2011-07-21 07:23:47 -------- d-----w- c:\program files\ESET
2011-07-21 07:19:00 -------- d--h--w- c:\windows\msdownld.tmp
2011-07-21 07:03:01 -------- d-----w- c:\documents and settings\sean\application data\Malwarebytes
2011-07-21 07:02:48 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-07-21 07:02:46 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2011-07-21 07:02:42 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-07-21 07:02:42 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-07-20 19:16:43 -------- d-sha-r- C:\cmdcons
2011-07-12 17:26:21 73658768 ----a-w- C:\msert.exe
2011-07-12 17:25:47 656320 ----a-w- c:\windows\system32\drivers\pctEFA.sys
2011-07-12 17:25:47 338880 ----a-w- c:\windows\system32\drivers\pctDS.sys
2011-07-12 17:25:43 251560 ----a-w- c:\windows\system32\drivers\pctgntdi.sys
2011-07-12 17:25:20 263888 ----a-w- c:\windows\system32\drivers\PCTCore.sys
2011-07-12 17:25:20 160576 ----a-w- c:\windows\system32\drivers\PCTAppEvent.sys
2011-07-12 17:25:04 233976 ----a-w- c:\windows\system32\drivers\PCTSD.sys
2011-07-12 17:24:49 70664 ----a-w- c:\windows\system32\drivers\pctplsg.sys
2011-07-12 17:24:22 -------- d-----w- c:\program files\common files\PC Tools
2011-07-12 17:24:21 -------- d-----w- C:\PC Tools Security
2011-07-12 17:21:14 -------- d-----w- c:\documents and settings\all users\application data\PC Tools
2011-07-11 21:48:07 -------- d-----w- c:\windows\system32\MpEngineStore
2011-07-11 20:51:45 28552 ----a-w- c:\windows\system32\drivers\pavboot.sys
2011-07-11 20:50:08 -------- d-----w- c:\program files\Panda Security
2011-07-10 14:42:18 -------- d-----w- c:\documents and settings\sean\application data\AVG10
2011-07-09 22:28:30 -------- d-----w- c:\documents and settings\all users\application data\AVG10
2011-07-09 22:24:56 -------- d-----w- c:\program files\AVG
2011-07-09 22:08:14 -------- d-----w- c:\program files\iPod
2011-07-09 22:07:45 -------- d--h--w- c:\documents and settings\all users\application data\Common Files
2011-07-09 21:57:29 -------- d-----w- c:\documents and settings\all users\application data\MFAData
2011-06-29 21:11:55 -------- d-----w- c:\program files\MSXML 4.0
2011-06-26 19:08:08 -------- d-----w- c:\program files\common files\Jasc Software Inc
2011-06-26 19:07:51 -------- d-----w- c:\program files\Jasc Software Inc
2011-06-26 08:31:34 172032 ----a-r- c:\windows\system32\igfxres.dll
2011-06-26 07:29:50 137752 ----a-r- c:\windows\system32\SET118.tmp
2011-06-26 07:29:48 3293184 ----a-r- c:\windows\system32\SET117.tmp
2011-06-26 07:29:46 141848 ----a-r- c:\windows\system32\SET114.tmp
2011-06-26 07:29:45 208896 ----a-r- c:\windows\system32\SET112.tmp
2011-06-26 07:29:43 256536 ----a-r- c:\windows\system32\SET10E.tmp
2011-06-26 07:29:42 48128 ----a-r- c:\windows\system32\SET10D.tmp
2011-06-26 07:29:41 102400 ----a-r- c:\windows\system32\SET10C.tmp
2011-06-26 07:29:39 2643968 ----a-r- c:\windows\system32\SET109.tmp
2011-06-26 07:29:35 1668960 ----a-r- c:\windows\system32\SET108.tmp
2011-06-26 07:29:33 151040 ----a-r- c:\windows\system32\SET107.tmp
2011-06-26 07:29:32 57344 ----a-r- c:\windows\system32\SET106.tmp
2011-06-26 07:03:05 -------- d-----w- c:\program files\RALINK
2011-06-26 07:01:52 572416 ----a-w- c:\windows\system32\drivers\rt2860.sys
2011-06-25 15:00:06 2106216 ----a-w- c:\program files\mozilla firefox\D3DCompiler_43.dll
2011-06-25 15:00:05 1998168 ----a-w- c:\program files\mozilla firefox\d3dx9_43.dll
2011-06-25 07:59:00 -------- d-----w- c:\windows\system32\x64
2011-06-25 07:56:53 147456 ----a-w- c:\windows\system32\igfxCoIn_v4926.dll
2011-06-23 21:08:54 -------- d-----w- c:\windows\system32\wbem\repository\FS
2011-06-23 21:08:54 -------- d-----w- c:\windows\system32\wbem\Repository
.
==================== Find3M ====================
.
2011-06-28 21:14:23 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-06-26 06:45:56 256000 ----a-w- c:\windows\PEV.exe
2011-06-25 07:55:00 7808 ----a-w- c:\windows\system32\drivers\gflmouhid.sys
2011-06-21 18:48:24 81936 ----a-w- c:\windows\system32\RtNicProp32.dll
2011-06-21 18:48:23 102416 ----a-w- c:\windows\system32\RTNUninst32.dll
2011-06-20 21:15:19 19557480 ----a-w- c:\windows\RTHDCPL.EXE
2011-05-02 15:31:52 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 17:25:27 151552 ----a-w- c:\windows\system32\SET227.tmp
2011-04-29 17:25:27 151552 ----a-w- c:\windows\system32\schannel.dll
2011-04-29 16:19:43 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-25 16:11:12 916480 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 16:11:11 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-04-25 16:11:11 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-04-25 12:01:22 385024 ----a-w- c:\windows\system32\html.iec
.
============= FINISH: 18:01:13.68 ===============

#8 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:10:24 AM

Posted 22 July 2011 - 06:57 PM

Please run the following:

  • Please download aswMBR.exe and save it to your desktop.
  • Double click aswMBR.exe to start the tool. (Vista/Windows 7 users - right click to run as administrator)
  • Click Scan

  • Upon completion of the scan, click Save log and save it to your desktop, and post that log in your next reply for review. Note - do NOT attempt any Fix yet.
  • You will also notice another file created on the desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) file. Attach that zipped file in your next reply as well.



NEXT


Please download TDSSKiller.zip
  • Extract it to your desktop
  • Double click TDSSKiller.exe
  • Press Start Scan
    • Only if Malicious objects are found then ensure Cure is selected
    • Then click Continue > Reboot now
  • Copy and paste the log in your next reply
    • A copy of the log will be saved automatically to the root of the drive (typically C:\)

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#9 mrandmrsgall

mrandmrsgall
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:24 PM

Posted 23 July 2011 - 04:38 AM

Good morning,

Details of the ASWMBR FIRST FOLLOWED BY THE TDSSKILLER.

aswMBR version 0.9.8.977 Copyright© 2011 AVAST Software
Run date: 2011-07-23 07:36:11
-----------------------------
07:36:11.140 OS Version: Windows 5.1.2600 Service Pack 3
07:36:11.140 Number of processors: 2 586 0x1C02
07:36:11.140 ComputerName: EEEPC UserName: Sean
07:36:11.890 Initialize success
07:40:11.968 AVAST engine defs: 11072300
07:40:25.609 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
07:40:25.609 Disk 0 Vendor: ST9160310AS 0303 Size: 152627MB BusType: 3
07:40:25.875 Disk 0 MBR read successfully
07:40:25.890 Disk 0 MBR scan
07:40:25.968 Disk 0 Windows XP default MBR code
07:40:25.984 Disk 0 scanning sectors +312576705
07:40:26.093 Disk 0 scanning C:\WINDOWS\system32\drivers
07:40:50.687 Service scanning
07:40:52.906 Modules scanning
07:40:58.593 Disk 0 trace - called modules:
07:40:58.640 ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x860be618]<<
07:40:58.656 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86b53030]
07:40:59.453 AVAST engine scan C:\
09:46:04.187 Scan finished successfully
10:34:03.515 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Sean\Desktop\MBR.dat"
10:34:03.531 The log file has been saved successfully to "C:\Documents and Settings\Sean\Desktop\aswMBR.txt"

------------------------------------------------------------------------------------

2011/07/23 07:35:28.0000 1700 TDSS rootkit removing tool 2.5.11.0 Jul 11 2011 16:56:56
2011/07/23 07:35:28.0984 1700 ================================================================================
2011/07/23 07:35:28.0984 1700 SystemInfo:
2011/07/23 07:35:28.0984 1700
2011/07/23 07:35:28.0984 1700 OS Version: 5.1.2600 ServicePack: 3.0
2011/07/23 07:35:28.0984 1700 Product type: Workstation
2011/07/23 07:35:28.0984 1700 ComputerName: EEEPC
2011/07/23 07:35:28.0984 1700 UserName: Sean
2011/07/23 07:35:28.0984 1700 Windows directory: C:\WINDOWS
2011/07/23 07:35:28.0984 1700 System windows directory: C:\WINDOWS
2011/07/23 07:35:28.0984 1700 Processor architecture: Intel x86
2011/07/23 07:35:28.0984 1700 Number of processors: 2
2011/07/23 07:35:28.0984 1700 Page size: 0x1000
2011/07/23 07:35:28.0984 1700 Boot type: Safe boot with network
2011/07/23 07:35:28.0984 1700 ================================================================================
2011/07/23 07:35:31.0484 1700 Initialize success
2011/07/23 07:35:36.0187 1460 ================================================================================
2011/07/23 07:35:36.0187 1460 Scan started
2011/07/23 07:35:36.0187 1460 Mode: Manual;
2011/07/23 07:35:36.0187 1460 ================================================================================
2011/07/23 07:35:38.0343 1460 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2011/07/23 07:35:38.0406 1460 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
2011/07/23 07:35:38.0500 1460 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2011/07/23 07:35:38.0609 1460 AFD (355556d9e580915118cd7ef736653a89) C:\WINDOWS\System32\drivers\afd.sys
2011/07/23 07:35:38.0906 1460 Ambfilt (267fc636801edc5ab28e14036349e3be) C:\WINDOWS\system32\drivers\Ambfilt.sys
2011/07/23 07:35:39.0281 1460 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2011/07/23 07:35:39.0375 1460 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2011/07/23 07:35:39.0468 1460 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2011/07/23 07:35:39.0562 1460 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2011/07/23 07:35:39.0671 1460 Avgfwdx (0c5941af0b6bf2fdf378937392865217) C:\WINDOWS\system32\DRIVERS\avgfwdx.sys
2011/07/23 07:35:39.0734 1460 Avgfwfd (0c5941af0b6bf2fdf378937392865217) C:\WINDOWS\system32\DRIVERS\avgfwdx.sys
2011/07/23 07:35:39.0859 1460 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2011/07/23 07:35:40.0031 1460 BVRPMPR5 (248dfa5762dde38dfddbbd44149e9d7a) C:\WINDOWS\system32\drivers\BVRPMPR5.SYS
2011/07/23 07:35:40.0390 1460 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2011/07/23 07:35:40.0500 1460 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2011/07/23 07:35:40.0609 1460 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2011/07/23 07:35:40.0734 1460 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2011/07/23 07:35:40.0765 1460 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2011/07/23 07:35:40.0875 1460 cfwids (7fd604cd7a7a0ff8975af61bdf64c577) C:\WINDOWS\system32\drivers\cfwids.sys
2011/07/23 07:35:41.0234 1460 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2011/07/23 07:35:41.0328 1460 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
2011/07/23 07:35:41.0421 1460 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
2011/07/23 07:35:41.0484 1460 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2011/07/23 07:35:41.0562 1460 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2011/07/23 07:35:41.0843 1460 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
2011/07/23 07:35:41.0937 1460 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2011/07/23 07:35:42.0015 1460 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
2011/07/23 07:35:42.0062 1460 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
2011/07/23 07:35:42.0093 1460 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
2011/07/23 07:35:42.0218 1460 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
2011/07/23 07:35:42.0265 1460 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2011/07/23 07:35:42.0375 1460 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2011/07/23 07:35:42.0500 1460 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
2011/07/23 07:35:42.0625 1460 genmcmnUSB (eefdac90ad97953e40d9c6df09bdd998) C:\WINDOWS\system32\DRIVERS\gflmouhid.sys
2011/07/23 07:35:42.0781 1460 ggflt (007aea2e06e7cef7372e40c277163959) C:\WINDOWS\system32\DRIVERS\ggflt.sys
2011/07/23 07:35:42.0875 1460 ggsemc (c73de35960ca75c5ab4ae636b127c64e) C:\WINDOWS\system32\DRIVERS\ggsemc.sys
2011/07/23 07:35:42.0953 1460 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2011/07/23 07:35:43.0031 1460 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2011/07/23 07:35:43.0140 1460 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2011/07/23 07:35:43.0296 1460 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
2011/07/23 07:35:43.0437 1460 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\drivers\i8042prt.sys
2011/07/23 07:35:43.0750 1460 ialm (c4018896856a1a1f1f3a0a6ee7206551) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
2011/07/23 07:35:44.0093 1460 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2011/07/23 07:35:44.0500 1460 IntcAzAudAddService (a109fe3ca1ee4e92292b349de1b32f7b) C:\WINDOWS\system32\drivers\RtkHDAud.sys
2011/07/23 07:35:44.0796 1460 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
2011/07/23 07:35:44.0843 1460 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
2011/07/23 07:35:44.0906 1460 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2011/07/23 07:35:44.0937 1460 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2011/07/23 07:35:45.0031 1460 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2011/07/23 07:35:45.0109 1460 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2011/07/23 07:35:45.0171 1460 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2011/07/23 07:35:45.0265 1460 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2011/07/23 07:35:45.0328 1460 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2011/07/23 07:35:45.0375 1460 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
2011/07/23 07:35:45.0406 1460 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
2011/07/23 07:35:45.0515 1460 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2011/07/23 07:35:45.0796 1460 Lbd (b7c19ec8b0dd7efa58ad41ffeb8b8cda) C:\WINDOWS\system32\DRIVERS\Lbd.sys
2011/07/23 07:35:46.0062 1460 LVRS (35c2b196a8773d1f33905831daf16c2b) C:\WINDOWS\system32\DRIVERS\lvrs.sys
2011/07/23 07:35:46.0312 1460 LVUVC (0d6b0ccd22caa668e559b4bb7e86abf1) C:\WINDOWS\system32\DRIVERS\lvuvc.sys
2011/07/23 07:35:46.0609 1460 MBAMSwissArmy (b18225739ed9caa83ba2df966e9f43e8) C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2011/07/23 07:35:46.0859 1460 mfeapfk (113445fc6a858ef453cded5b0a0df665) C:\WINDOWS\system32\drivers\mfeapfk.sys
2011/07/23 07:35:46.0921 1460 mfeavfk (dbf6e1b388d5c070d438c61adb990c30) C:\WINDOWS\system32\drivers\mfeavfk.sys
2011/07/23 07:35:47.0015 1460 mfebopk (a528b15e330edb83ea649be318d841d5) C:\WINDOWS\system32\drivers\mfebopk.sys
2011/07/23 07:35:47.0140 1460 mfefirek (c7da1b8003c89acedaa13768f7a1c622) C:\WINDOWS\system32\drivers\mfefirek.sys
2011/07/23 07:35:47.0203 1460 mfehidk (5e9679bb2fc4fa38ec8ca906c47acd46) C:\WINDOWS\system32\drivers\mfehidk.sys
2011/07/23 07:35:47.0250 1460 mfendisk (b1728195877b18ce63cf0cd00b2871eb) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
2011/07/23 07:35:47.0296 1460 mfendiskmp (b1728195877b18ce63cf0cd00b2871eb) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
2011/07/23 07:35:47.0375 1460 mferkdet (ce1711f7c3f72f6762abd241dcfd5ee1) C:\WINDOWS\system32\drivers\mferkdet.sys
2011/07/23 07:35:47.0453 1460 mfetdi2k (25e12c68b49a64ffc873603dfd578236) C:\WINDOWS\system32\drivers\mfetdi2k.sys
2011/07/23 07:35:47.0640 1460 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2011/07/23 07:35:47.0718 1460 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
2011/07/23 07:35:47.0906 1460 Monfilt (c7d9f9717916b34c1b00dd4834af485c) C:\WINDOWS\system32\drivers\Monfilt.sys
2011/07/23 07:35:48.0015 1460 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2011/07/23 07:35:48.0078 1460 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2011/07/23 07:35:48.0156 1460 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2011/07/23 07:35:48.0250 1460 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2011/07/23 07:35:48.0390 1460 MRxSmb (0dc719e9b15e902346e87e9dcd5751fa) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2011/07/23 07:35:48.0437 1460 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2011/07/23 07:35:48.0484 1460 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011/07/23 07:35:48.0515 1460 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011/07/23 07:35:48.0546 1460 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2011/07/23 07:35:48.0671 1460 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2011/07/23 07:35:48.0781 1460 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
2011/07/23 07:35:48.0859 1460 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
2011/07/23 07:35:48.0968 1460 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
2011/07/23 07:35:49.0031 1460 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2011/07/23 07:35:49.0171 1460 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2011/07/23 07:35:49.0234 1460 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2011/07/23 07:35:49.0296 1460 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2011/07/23 07:35:49.0328 1460 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2011/07/23 07:35:49.0375 1460 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2011/07/23 07:35:49.0468 1460 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
2011/07/23 07:35:49.0500 1460 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2011/07/23 07:35:49.0531 1460 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2011/07/23 07:35:49.0609 1460 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2011/07/23 07:35:49.0734 1460 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2011/07/23 07:35:49.0843 1460 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2011/07/23 07:35:49.0906 1460 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2011/07/23 07:35:49.0937 1460 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2011/07/23 07:35:50.0062 1460 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
2011/07/23 07:35:50.0140 1460 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2011/07/23 07:35:50.0187 1460 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
2011/07/23 07:35:50.0343 1460 pavboot (3adb8bd6154a3ef87496e8fce9c22493) C:\WINDOWS\system32\drivers\pavboot.sys
2011/07/23 07:35:50.0406 1460 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
2011/07/23 07:35:50.0500 1460 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
2011/07/23 07:35:50.0578 1460 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
2011/07/23 07:35:50.0671 1460 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\WINDOWS\system32\Drivers\pcouffin.sys
2011/07/23 07:35:50.0765 1460 PCTCore (3e8ce6c67b292a4fdf65ed625e5f5e81) C:\WINDOWS\system32\drivers\PCTCore.sys
2011/07/23 07:35:50.0875 1460 pctDS (f820b4c61d1e591325b679d479d4eea4) C:\WINDOWS\system32\drivers\pctDS.sys
2011/07/23 07:35:51.0015 1460 PCTSD (83ddd552f7f1043f764e8cc88ff41232) C:\WINDOWS\system32\Drivers\PCTSD.sys
2011/07/23 07:35:51.0250 1460 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2011/07/23 07:35:51.0296 1460 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2011/07/23 07:35:51.0359 1460 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2011/07/23 07:35:51.0562 1460 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2011/07/23 07:35:51.0593 1460 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2011/07/23 07:35:51.0625 1460 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2011/07/23 07:35:51.0687 1460 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2011/07/23 07:35:51.0750 1460 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2011/07/23 07:35:51.0812 1460 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2011/07/23 07:35:51.0859 1460 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2011/07/23 07:35:51.0953 1460 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
2011/07/23 07:35:52.0078 1460 RSUSBSTOR (f9541f3b59da30423f2f76ef443c07fc) C:\WINDOWS\system32\Drivers\RtsUStor.sys
2011/07/23 07:35:52.0203 1460 RT80x86 (aebf31765a926746dd7946fa14c52297) C:\WINDOWS\system32\DRIVERS\RT2860.sys
2011/07/23 07:35:52.0296 1460 RTLE8023xp (89619ef503f949fae09252a8b883ee11) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
2011/07/23 07:35:52.0359 1460 RTSTOR (e3939d5d17e3798e52d1c24a81fd70cc) C:\WINDOWS\system32\drivers\RTSTOR.SYS
2011/07/23 07:35:52.0453 1460 s1018bus (1c5c2cb892553d2cf3f45a4bb323fcd6) C:\WINDOWS\system32\DRIVERS\s1018bus.sys
2011/07/23 07:35:52.0500 1460 s1018mdfl (38f5ea219593f19b6b3a1b9c169e3b61) C:\WINDOWS\system32\DRIVERS\s1018mdfl.sys
2011/07/23 07:35:52.0562 1460 s1018mdm (666af6b64fc7df92d3ca4819ea91631d) C:\WINDOWS\system32\DRIVERS\s1018mdm.sys
2011/07/23 07:35:52.0703 1460 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2011/07/23 07:35:52.0796 1460 seehcri (e5b56569a9f79b70314fede6c953641e) C:\WINDOWS\system32\DRIVERS\seehcri.sys
2011/07/23 07:35:52.0906 1460 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
2011/07/23 07:35:52.0953 1460 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
2011/07/23 07:35:53.0062 1460 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2011/07/23 07:35:53.0171 1460 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2011/07/23 07:35:53.0218 1460 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
2011/07/23 07:35:53.0343 1460 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
2011/07/23 07:35:53.0437 1460 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2011/07/23 07:35:53.0500 1460 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2011/07/23 07:35:53.0546 1460 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2011/07/23 07:35:53.0703 1460 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2011/07/23 07:35:53.0796 1460 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2011/07/23 07:35:53.0859 1460 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2011/07/23 07:35:53.0906 1460 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2011/07/23 07:35:53.0984 1460 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2011/07/23 07:35:54.0093 1460 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2011/07/23 07:35:54.0234 1460 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2011/07/23 07:35:54.0375 1460 USBAAPL (d4fb6ecc60a428564ba8768b0e23c0fc) C:\WINDOWS\system32\Drivers\usbaapl.sys
2011/07/23 07:35:54.0500 1460 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
2011/07/23 07:35:54.0609 1460 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2011/07/23 07:35:54.0656 1460 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2011/07/23 07:35:54.0718 1460 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2011/07/23 07:35:54.0812 1460 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
2011/07/23 07:35:54.0843 1460 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
2011/07/23 07:35:54.0875 1460 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2011/07/23 07:35:54.0968 1460 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2011/07/23 07:35:55.0046 1460 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
2011/07/23 07:35:55.0187 1460 VASDeviceDrm (5a044f495f474faaf6154f75d1f81c1e) C:\WINDOWS\system32\drivers\vasdDev.sys
2011/07/23 07:35:55.0328 1460 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2011/07/23 07:35:55.0390 1460 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
2011/07/23 07:35:55.0453 1460 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2011/07/23 07:35:55.0546 1460 Wdf01000 (bbcfeab7e871cddac2d397ee7fa91fdc) C:\WINDOWS\system32\Drivers\wdf01000.sys
2011/07/23 07:35:55.0625 1460 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2011/07/23 07:35:55.0843 1460 WpdUsb (c60dc16d4e406810fad54b98dc92d5ec) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
2011/07/23 07:35:55.0953 1460 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
2011/07/23 07:35:56.0031 1460 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2011/07/23 07:35:56.0109 1460 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
2011/07/23 07:35:56.0156 1460 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
2011/07/23 07:35:56.0265 1460 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
2011/07/23 07:35:56.0375 1460 Boot (0x1200) (f1f39f3ccd305e83ba5f068dbae34fc5) \Device\Harddisk0\DR0\Partition0
2011/07/23 07:35:56.0390 1460 ================================================================================
2011/07/23 07:35:56.0390 1460 Scan finished
2011/07/23 07:35:56.0390 1460 ================================================================================
2011/07/23 07:35:56.0406 1920 Detected object count: 0
2011/07/23 07:35:56.0406 1920 Actual detected object count: 0

I have attached the zip file as requested.

Regards

Attached Files

  • Attached File  MBR.zip   499bytes   0 downloads


#10 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:10:24 AM

Posted 23 July 2011 - 05:59 AM

Please post the ComboFix Log(s) that you have, the most recent will be located at C:\ComboFix.txt, older logs at C:\Qoobox\ComboFix2.txt

Please afvise how the computer is running and any outstanding issues.

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#11 mrandmrsgall

mrandmrsgall
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:24 PM

Posted 23 July 2011 - 07:48 AM

I started my computer in normal mode, and the screen resolution keeps changing from 1024x768 down to 800x600. this needs to be changed every time. and when the computer is turned off, and back on, the screen will change back to 800 x600 every time.

When i started chrome, the first page opened ok, but when i clicked on a link, it came up page could not be displayed. This is the same as before.

Also Mcaffee keeps advising that my computer may be at risk as real time scanning is off. I have clicked enable, and the system goes green, however this is turned off straight away. I have managed to update windows, and mcafee.

I tried to open itunes, and this came up with the same message. It cannot be run because some of its files are missing, however when i open itunes in safe mode (which i have switched back to) it seems to open ok.

I found two combo fix logs and have attached them as a zip file, as when i tried to post them it came up with a message that my post was too long.

Thanks

Attached Files



#12 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:10:24 AM

Posted 23 July 2011 - 08:34 AM

Your log indicates you have two antivirus products installed, that can cause conflicts, system slow downs and crashes, please uninstall one of them completely.


Please do the following:

Re-Run aswMBR

  • Click Scan
  • On completion of the scan, click the FIX button,
  • There is a slight pause after clicking the 'Fix' button.
  • Wait for the tool to report 'Infection fixed successfully', now reboot the machine.
  • Rebooting the machine prematurely, before seeing this line will result in an incomplete fix.

    Note:After the 'Infection fixed successfully' message appears, the machine may became unresponsive. You may have to do a hard boot of your machine. That may be a side effect from the fix. All will be well after the reboot.
  • Save the log as before and post in your next reply.

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#13 mrandmrsgall

mrandmrsgall
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:24 PM

Posted 23 July 2011 - 02:56 PM

Hi,


I have deleted Panda anti virus, and some of the "speed up my pc tools".

I have run aswmbr again and when this finished the fix button was greyed out. The fixmbr button shows, and when i clicked on this it came up with a warning about writing standard master boot records which could cause instability etc etc.

I haven't done this as I wanted to check what you thought i should do. asw is still open at the moment so if i should click fixmbr then i still can.

I have attached the zip file of the log.

Attached Files

  • Attached File  MBR.zip   499bytes   2 downloads


#14 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:10:24 AM

Posted 23 July 2011 - 03:04 PM

does your machine have a recovery partition built in?

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#15 mrandmrsgall

mrandmrsgall
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:02:24 PM

Posted 23 July 2011 - 03:27 PM

I have no idea. How can i find out?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users