Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

iexplorer dont work with javascript and mcafee dont install


  • This topic is locked This topic is locked
2 replies to this topic

#1 cerossignolo

cerossignolo

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:02 PM

Posted 22 July 2011 - 03:07 PM

ComboFix 11-07-22.02 - escritorio 22/07/2011 16:45:36.2.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.55.1046.18.3319.2810 [GMT -3:00]
Executando de: c:\documents and settings\escritorio\Desktop\download\ComboFix.exe
.
ATENÇAO - ESTA MAQUINA NAO TEM O CONSOLE DE RECUPERAÇÃO INSTALADO !!
.
.
(((((((((((((((( Arquivos/Ficheiros criados de 2011-06-22 to 2011-07-22 ))))))))))))))))))))))))))))
.
.
2011-07-22 13:17 . 2011-07-22 13:17 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
2011-07-22 12:20 . 2011-07-22 12:20 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2011-07-22 12:14 . 2011-07-22 12:15 -------- dc-h--w- c:\windows\ie8
2011-07-21 20:41 . 2009-07-23 03:13 306 ----a-w- c:\windows\myClean.bat
2011-07-21 20:22 . 2011-07-21 20:22 -------- d-----w- c:\documents and settings\escritorio\Dados de aplicativos\ElevatedDiagnostics
2011-07-21 19:56 . 2011-07-21 19:56 -------- d-----w- c:\arquivos de programas\Microsoft Silverlight
2011-07-21 13:04 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2011-07-21 12:59 . 2011-07-21 12:59 -------- d-----w- c:\windows\system32\NtmsData
2011-07-21 12:54 . 2010-10-18 11:10 7680 -c----w- c:\windows\system32\dllcache\iecompat.dll
2011-07-21 12:49 . 2011-07-21 12:49 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-07-21 12:49 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2011-07-21 12:46 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2011-07-21 12:43 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2011-07-21 12:35 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2011-07-05 19:25 . 2011-07-05 19:25 -------- d-----w- c:\documents and settings\escritorio\.cagednet
2011-07-01 17:56 . 2011-07-01 17:56 -------- d-----w- c:\arquivos de programas\Marcos Velasco Security
2011-07-01 17:50 . 2011-07-01 17:50 -------- d-----w- c:\arquivos de programas\CCleaner
2011-07-01 17:43 . 2011-07-01 17:44 -------- d-----w- c:\documents and settings\escritorio\Configurações locais\Dados de aplicativos\Deployment
.
.
.
((((((((((((((((((((((((((((((((((((( Relatório Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-21 12:49 . 2009-03-18 18:26 73728 ----a-w- c:\windows\system32\javacpl.cpl
2011-07-20 19:34 . 2010-09-29 11:49 720766381 ----a-w- C:\bkp geral_qua.zip
2011-07-19 20:31 . 2010-09-28 10:51 719330585 ----a-w- C:\bkp geral_ter.zip
2011-07-18 18:56 . 2010-09-27 10:52 719906258 ----a-w- C:\bkp geral_seg.zip
2011-07-15 17:50 . 2010-09-24 13:19 720068268 ----a-w- C:\bkp geral_sex.zip
2011-07-14 17:52 . 2010-09-30 10:53 720054335 ----a-w- C:\bkp geral_qui.zip
2011-07-01 12:23 . 2011-05-17 10:28 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-06-06 11:35 . 2004-08-04 03:38 1859072 ----a-w- c:\windows\system32\win32k.sys
2011-05-02 15:31 . 2009-03-18 16:38 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 17:25 . 2004-08-04 03:45 151552 ----a-w- c:\windows\system32\schannel.dll
2011-04-29 16:19 . 2004-08-04 02:15 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-29 14:31 . 2011-04-29 14:31 862208 ----a-w- C:\epson10926.exe
2011-04-26 11:07 . 2004-08-04 03:45 293888 ----a-w- c:\windows\system32\winsrv.dll
2011-04-26 11:07 . 2004-08-04 03:45 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-04-25 16:06 . 2004-08-04 03:45 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-04-25 16:06 . 2004-08-04 03:45 916480 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 16:06 . 2004-08-04 03:45 43520 ------w- c:\windows\system32\licmgr10.dll
2011-04-25 12:01 . 2004-08-04 03:37 385024 ------w- c:\windows\system32\html.iec
.
.
((((((((((((((((((((((((((((( SnapShot@2011-07-22_14.19.47 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-04-19 01:51 . 2011-04-19 01:51 51024 c:\windows\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_4ddc769f\vcomp90.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 59728 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90rus.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 42832 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90kor.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 43344 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90jpn.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 61264 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90ita.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 62800 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90fra.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 61776 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90esp.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 61776 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90esn.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 53584 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90enu.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 63312 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90deu.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 36688 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90cht.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 35664 c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90chs.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfcm90u.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 59904 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfcm90.dll
+ 2011-07-22 19:41 . 2011-07-22 19:41 16384 c:\windows\Temp\Perflib_Perfdata_758.dat
- 2010-09-10 14:41 . 2010-04-21 13:28 46080 c:\windows\system32\tzchange.exe
+ 2010-09-10 14:41 . 2010-11-03 13:12 46080 c:\windows\system32\tzchange.exe
+ 2004-08-04 03:45 . 2010-08-27 05:53 99840 c:\windows\system32\srvsvc.dll
+ 2001-10-28 15:07 . 2011-07-22 15:07 79240 c:\windows\system32\perfc016.dat
- 2001-10-28 15:07 . 2011-07-21 19:57 79240 c:\windows\system32\perfc016.dat
+ 2001-10-28 15:07 . 2011-07-22 15:07 67448 c:\windows\system32\perfc009.dat
- 2001-10-28 15:07 . 2011-07-21 19:57 67448 c:\windows\system32\perfc009.dat
- 2009-03-18 16:38 . 2008-04-14 02:20 86016 c:\windows\system32\isign32.dll
+ 2009-03-18 16:38 . 2010-11-18 18:15 86016 c:\windows\system32\isign32.dll
+ 2001-10-28 15:07 . 2010-11-02 15:17 40960 c:\windows\system32\drivers\ndproxy.sys
+ 2010-08-27 05:53 . 2010-08-27 05:53 99840 c:\windows\system32\dllcache\srvsvc.dll
+ 2010-11-18 18:15 . 2010-11-18 18:15 86016 c:\windows\system32\dllcache\isign32.dll
+ 2009-12-14 07:09 . 2011-04-26 11:07 33280 c:\windows\system32\dllcache\csrsrv.dll
- 2009-12-14 07:09 . 2009-12-14 07:09 33280 c:\windows\system32\dllcache\csrsrv.dll
- 2010-09-13 12:56 . 2011-07-22 12:17 90112 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\xlicons.exe
+ 2010-09-13 12:56 . 2011-07-22 15:05 90112 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\xlicons.exe
+ 2010-09-13 12:56 . 2011-07-22 15:05 45056 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\wordicon.exe
- 2010-09-13 12:56 . 2011-07-22 12:17 45056 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\wordicon.exe
- 2010-09-13 12:56 . 2011-07-22 12:17 22528 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\unbndico.exe
+ 2010-09-13 12:56 . 2011-07-22 15:05 22528 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\unbndico.exe
- 2010-09-13 12:56 . 2011-07-22 12:17 12800 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\pubs.exe
+ 2010-09-13 12:56 . 2011-07-22 15:05 12800 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\pubs.exe
+ 2010-09-13 12:56 . 2011-07-22 15:05 16384 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\PEicons.exe
- 2010-09-13 12:56 . 2011-07-22 12:17 16384 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\PEicons.exe
+ 2010-09-13 12:56 . 2011-07-22 15:05 34304 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\misc.exe
- 2010-09-13 12:56 . 2011-07-22 12:17 34304 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\misc.exe
+ 2011-07-22 15:11 . 2011-07-22 15:11 47616 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLiveWriter\b2dc30e70b5ea91de129412d82fde221\WindowsLiveWriter.ni.exe
+ 2011-07-22 15:12 . 2011-07-22 15:12 99840 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\dcc1c61cb25d14ca99961d5221ac7fa7\WindowsLive.Writer.Api.ni.dll
+ 2011-07-22 15:09 . 2011-07-22 15:09 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\1492e9393417d6e91b5ddc746b5ef320\UIAutomationProvider.ni.dll
+ 2011-07-22 15:14 . 2011-07-22 15:14 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\61c3b1e170de97a8d418b610bd9b0c77\System.Windows.Presentation.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\ccb1b43d566432badd3c8154c020e92f\System.Web.DynamicData.Design.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\ab5802527ce15dbcc25e301dbbb4d666\System.ComponentModel.DataAnnotations.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\177a17af98d803ab79006d6785706462\System.AddIn.Contract.ni.dll
+ 2011-07-22 15:08 . 2011-07-22 15:08 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\e9bb32c656a2f80b629f129d738c392b\PresentationFontCache.ni.exe
+ 2011-07-22 15:07 . 2011-07-22 15:07 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\d54d318ae1eb0667badea576d0534f9d\PresentationCFFRasterizer.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\87fe1d01b568b3bc9c750b7cf7802516\Microsoft.Vsa.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 15872 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualC\a96b02abbfcaae424cfb91a198a9e0e9\Microsoft.VisualC.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 19456 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\a8844048139471f4c7914a41f36a7e81\Microsoft.PowerShell.Commands.Management.resources.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 35328 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\9804c5ec5e7a8945d4da1c7e3caf40c7\Microsoft.PowerShell.ConsoleHost.resources.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 30208 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\0fe4eb7e116bacc97d476713af23f42e\Microsoft.PowerShell.Commands.Utility.resources.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 17408 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\01eba2bdd4d6baa3102dc8610e8cec92\Microsoft.PowerShell.Security.resources.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\f5057c30d89ad8d99e38c946a68def9e\Microsoft.Build.Framework.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\623c05a555ac0719a1367f511d4a9270\Microsoft.Build.Framework.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\c40d3caad8bff3c52db7e7562286406a\dfsvc.ni.exe
+ 2011-07-22 15:10 . 2011-07-22 15:10 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\d9228d58804dfd75fd92a4d12ffac8af\Accessibility.ni.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
- 2011-07-21 13:08 . 2011-07-21 13:08 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2011-07-21 13:08 . 2011-07-21 13:08 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
- 2008-05-05 10:24 . 2010-08-13 21:44 5120 c:\windows\system32\xpsp4res.dll
+ 2008-05-05 10:24 . 2011-02-17 12:54 5120 c:\windows\system32\xpsp4res.dll
+ 2010-09-13 12:56 . 2011-07-22 15:05 3584 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\opwicon.exe
- 2010-09-13 12:56 . 2011-07-22 12:17 3584 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\opwicon.exe
- 2010-09-13 12:56 . 2011-07-22 12:17 8192 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\mspicons.exe
+ 2010-09-13 12:56 . 2011-07-22 15:05 8192 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\mspicons.exe
+ 2010-09-13 12:56 . 2011-07-22 15:05 2560 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\cagicon.exe
- 2010-09-13 12:56 . 2011-07-22 12:17 2560 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\cagicon.exe
- 2011-07-21 13:09 . 2011-07-21 13:09 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2011-07-21 13:09 . 2011-07-21 13:09 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 653136 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 569680 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 225280 c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcm90.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 159048 c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_92453bb7\atl90.dll
- 2004-08-04 03:45 . 2009-10-15 16:32 119808 c:\windows\system32\t2embed.dll
+ 2004-08-04 03:45 . 2010-08-27 08:03 119808 c:\windows\system32\t2embed.dll
+ 2004-08-04 03:45 . 2011-01-21 14:44 440832 c:\windows\system32\shimgvw.dll
+ 2004-08-04 03:45 . 2011-02-09 13:53 270848 c:\windows\system32\sbe.dll
- 2004-08-04 03:45 . 2008-04-14 02:20 270848 c:\windows\system32\sbe.dll
+ 2001-10-28 15:07 . 2011-07-22 15:07 468462 c:\windows\system32\perfh016.dat
- 2001-10-28 15:07 . 2011-07-21 19:57 468462 c:\windows\system32\perfh016.dat
+ 2001-10-28 15:07 . 2011-07-22 15:07 432492 c:\windows\system32\perfh009.dat
- 2001-10-28 15:07 . 2011-07-21 19:57 432492 c:\windows\system32\perfh009.dat
+ 2004-08-04 03:45 . 2010-12-20 17:32 551936 c:\windows\system32\oleaut32.dll
- 2004-08-04 03:45 . 2008-04-14 02:20 551936 c:\windows\system32\oleaut32.dll
- 2004-08-04 03:45 . 2008-04-14 02:20 249856 c:\windows\system32\odbc32.dll
+ 2004-08-04 03:45 . 2010-11-09 14:52 249856 c:\windows\system32\odbc32.dll
- 2009-03-18 16:36 . 2008-04-14 02:21 677888 c:\windows\system32\mstsc.exe
+ 2009-03-18 16:36 . 2011-01-27 11:57 677888 c:\windows\system32\mstsc.exe
+ 2001-10-28 15:06 . 2010-09-18 06:53 953856 c:\windows\system32\mfc40u.dll
+ 2001-10-28 15:06 . 2010-09-18 06:53 954368 c:\windows\system32\mfc40.dll
- 2004-08-04 03:45 . 2009-06-25 08:27 301568 c:\windows\system32\kerberos.dll
+ 2004-08-04 03:45 . 2010-12-22 12:34 301568 c:\windows\system32\kerberos.dll
+ 2009-03-18 13:28 . 2011-07-22 15:23 270192 c:\windows\system32\FNTCACHE.DAT
- 2009-03-18 13:28 . 2011-07-21 13:17 270192 c:\windows\system32\FNTCACHE.DAT
- 2004-08-04 03:45 . 2008-04-14 02:20 186880 c:\windows\system32\encdec.dll
+ 2004-08-04 03:45 . 2011-02-09 13:53 186880 c:\windows\system32\encdec.dll
+ 2004-08-04 02:14 . 2011-02-17 13:18 357888 c:\windows\system32\drivers\srv.sys
+ 2004-08-04 02:15 . 2011-04-21 13:37 105472 c:\windows\system32\drivers\mup.sys
+ 2004-08-04 02:14 . 2011-02-16 13:22 138496 c:\windows\system32\drivers\afd.sys
- 2004-08-04 02:14 . 2008-10-16 14:43 138496 c:\windows\system32\drivers\afd.sys
- 2010-06-18 17:47 . 2010-06-18 17:47 293888 c:\windows\system32\dllcache\winsrv.dll
+ 2010-06-18 17:47 . 2011-04-26 11:07 293888 c:\windows\system32\dllcache\winsrv.dll
+ 2010-09-10 14:39 . 2010-08-27 08:03 119808 c:\windows\system32\dllcache\t2embed.dll
- 2010-09-10 14:39 . 2009-10-15 16:32 119808 c:\windows\system32\dllcache\t2embed.dll
+ 2010-09-10 14:39 . 2011-02-17 13:18 357888 c:\windows\system32\dllcache\srv.sys
+ 2011-01-21 14:44 . 2011-01-21 14:44 440832 c:\windows\system32\dllcache\shimgvw.dll
+ 2011-02-09 13:53 . 2011-02-09 13:53 270848 c:\windows\system32\dllcache\sbe.dll
+ 2010-12-20 17:32 . 2010-12-20 17:32 551936 c:\windows\system32\dllcache\oleaut32.dll
+ 2010-11-09 14:52 . 2010-11-09 14:52 249856 c:\windows\system32\dllcache\odbc32.dll
+ 2010-11-09 14:52 . 2010-11-09 14:52 102400 c:\windows\system32\dllcache\msjro.dll
+ 2010-11-09 14:52 . 2010-11-09 14:52 200704 c:\windows\system32\dllcache\msadox.dll
+ 2010-11-09 14:52 . 2010-11-09 14:52 180224 c:\windows\system32\dllcache\msadomd.dll
+ 2010-11-09 14:52 . 2010-11-09 14:52 536576 c:\windows\system32\dllcache\msado15.dll
+ 2010-11-09 14:52 . 2010-11-09 14:52 143360 c:\windows\system32\dllcache\msadco.dll
+ 2010-09-10 14:40 . 2011-04-29 16:19 456320 c:\windows\system32\dllcache\mrxsmb.sys
+ 2001-10-28 15:06 . 2010-09-18 06:53 954368 c:\windows\system32\dllcache\mfc40.dll
+ 2011-01-27 11:57 . 2011-01-27 11:57 677888 c:\windows\system32\dllcache\lhmstsc.exe
- 2009-06-25 08:27 . 2009-06-25 08:27 301568 c:\windows\system32\dllcache\kerberos.dll
+ 2009-06-25 08:27 . 2010-12-22 12:34 301568 c:\windows\system32\dllcache\kerberos.dll
+ 2011-02-09 13:53 . 2011-02-09 13:53 186880 c:\windows\system32\dllcache\encdec.dll
+ 2004-08-04 03:44 . 2011-02-15 12:56 290432 c:\windows\system32\dllcache\atmfd.dll
- 2008-06-20 11:40 . 2008-10-16 14:43 138496 c:\windows\system32\dllcache\afd.sys
+ 2008-06-20 11:40 . 2011-02-16 13:22 138496 c:\windows\system32\dllcache\afd.sys
+ 2004-08-04 03:44 . 2011-02-15 12:56 290432 c:\windows\system32\atmfd.dll
+ 2011-03-25 09:15 . 2011-03-25 09:15 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
- 2010-05-11 09:40 . 2010-05-11 09:40 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2011-03-25 09:15 . 2011-03-25 09:15 363856 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
- 2010-05-11 09:40 . 2010-05-11 09:40 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2011-03-25 09:15 . 2011-03-25 09:15 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2011-07-22 15:04 . 2011-07-22 15:04 223744 c:\windows\Installer\3a5ac8.msi
+ 2010-09-24 00:02 . 2010-09-24 00:02 798208 c:\windows\Installer\3a5ac1.msp
- 2010-09-13 12:56 . 2011-07-22 12:17 114688 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\outicon.exe
+ 2010-09-13 12:56 . 2011-07-22 15:05 114688 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\outicon.exe
- 2010-09-10 16:30 . 2011-07-22 12:17 155702 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\bcicon.exe
+ 2010-09-10 16:30 . 2011-07-22 15:05 155702 c:\windows\Installer\{91130416-6000-11D3-8CFE-0050048383C9}\bcicon.exe
+ 2010-09-10 14:40 . 2011-04-29 16:19 456320 c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2011-07-22 15:12 . 2011-07-22 15:12 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\8ba27eaa0f7d987f92319c64aefd2e98\WsatConfig.ni.exe
+ 2011-07-22 15:12 . 2011-07-22 15:12 626688 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLiveLocal.Wr#\f6e06ba560db15040205d6baea4c9b8a\WindowsLiveLocal.WriterPlugin.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 152064 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\f54bdf00b39a0ba1ae9815e862e0092a\WindowsLive.Writer.HtmlParser.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 313856 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\d78f83ddd58e30d6b7beb63b7534f092\WindowsLive.Writer.Interop.SHDocVw.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 319488 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\cba2a36a0647b35a053a105c221227b3\WindowsLive.Writer.Interop.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 322048 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\ab32c80d7a012284afe389c73bb85682\WindowsLive.Writer.SpellChecker.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 108544 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\8d7b083bedd7137a39fdbdcea3049db4\WindowsLive.Writer.Passport.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 117760 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\8a2c295e4d5fb359282c560538b6233c\WindowsLive.Writer.Instrumentation.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 428032 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\830e48e255ca1c52a20ea227437a3345\WindowsLive.Writer.Localization.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 843776 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\6a838d46f6575eed9e10447632d07d81\WindowsLive.Writer.Controls.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\691f61eae034b2c615977e43a7b1877d\WindowsLive.Writer.Mshtml.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 851968 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\3e346fab23815fb968540210d5572b55\WindowsLive.Writer.BlogClient.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 119296 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\355c6e760d6e5114b4e00c24dd877abe\WindowsLive.Writer.FileDestinations.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 174080 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\1ab402b09723bbe3d2cd04d72334275b\WindowsLive.Writer.BrowserControl.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 334848 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\1802baf79662b34a028da7f1a5de1e64\WindowsLive.Writer.Interop.Mshtml.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 594944 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\1416cabe18dee45d27d784e9004acbce\WindowsLive.Writer.HtmlEditor.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 118784 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\014f348e2e7958eaa4a8b1bdc365fc8a\WindowsLive.Writer.Extensibility.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 145920 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Client\ce65be83f7338b39882e053efb157d05\WindowsLive.Client.ni.dll
+ 2011-07-22 15:09 . 2011-07-22 15:09 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\431d5dc1cfcc0c0530e813f370931670\WindowsFormsIntegration.ni.dll
+ 2011-07-22 15:09 . 2011-07-22 15:09 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\3740d6db28af31a6523a79fcdd71fbeb\UIAutomationTypes.ni.dll
+ 2011-07-22 15:09 . 2011-07-22 15:09 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\00dfe5563886a1f69c96b3acb839107b\UIAutomationClient.ni.dll
+ 2011-07-22 15:14 . 2011-07-22 15:14 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\80187a9cfed4fd0ec82746495be76764\System.Xml.Linq.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\8d4060880019a6c26e837d3068e2f4f2\System.Web.Routing.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\dc26fff00ce95d24fd190f38904bb2b3\System.Web.RegularExpressions.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\390950068d6285d056bead1380507f6e\System.Web.Extensions.Design.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\535cc46e3c9109b33ab12c5a90babb9c\System.Web.Entity.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\2a05b737193c3db4184185b525b974ee\System.Web.Entity.Design.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\3148fbcf9a6758132b07a4e7db29bd0f\System.Web.DynamicData.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\55a4ff2d20f8e1347fa6525d8a63f010\System.Web.Abstractions.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\7c430c38d71d632c019ae37d5ef12c8e\System.Transactions.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\0f3d321ebd65af974ff0ad424223276d\System.ServiceProcess.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\e4bcb14e8e53c8dcaff3d2c20daf746e\System.Security.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\503ccbb50e9c06c2f0b02ad8c3f2d100\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 771584 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\0eca3a4c1e0aa1e8be2b6883a60e44e3\System.Runtime.Remoting.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\ac53723e41898bc0e8a591c2e4f6f39b\System.Net.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\19280e723d215c0d6607d3884f453cdf\System.Management.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\4a3a674008d8102c1aa5b3fc18251ef7\System.Management.Instrumentation.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 160256 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.A#\35b34a452180a868171e1364bcc02208\System.Management.Automation.resources.ni.dll
+ 2011-07-22 15:10 . 2011-07-22 15:10 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\7f5f5bfd5f8d6587c96870751a6eb44d\System.IO.Log.ni.dll
+ 2011-07-22 15:10 . 2011-07-22 15:10 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\de1bf796614ca11afd9fab95edb1b4e2\System.IdentityModel.Selectors.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\94aae9e592c0f104120572f9925fca12\System.EnterpriseServices.Wrapper.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\94aae9e592c0f104120572f9925fca12\System.EnterpriseServices.ni.dll
+ 2011-07-22 15:09 . 2011-07-22 15:09 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\1af8683e05c42eb32f46578fe5a8f83f\System.Drawing.Design.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\791a6643b70542b148d977ff42f2f2ef\System.DirectoryServices.Protocols.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\31759ad8be21735f0a369c37514c2efc\System.DirectoryServices.AccountManagement.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\df507a4500e73fa4cfc13f65a1c9055e\System.Data.Services.Client.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\d1778fffc09d783bc90512b65d35be66\System.Data.Services.Design.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\8c1efa839b3807633576e834de00c137\System.Data.Entity.Design.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\50492d147392c238edc5a614beccb91b\System.Data.DataSetExtensions.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\48f8b951a598647dd309ca2031807a5d\System.Configuration.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\fa21b6c9badcf916bb254b4b823c2463\System.Configuration.Install.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\77015cc1e6d9e7d20e63903777afd6df\System.AddIn.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\6ca41c7917119c3a9de0bcdca525001d\SMSvcHost.ni.exe
+ 2011-07-22 15:12 . 2011-07-22 15:12 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\8ff6d395f8861384bc9bfbe34cafb64e\SMDiagnostics.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\f23e61ee12b29ad6623d9a9834df42e6\ServiceModelReg.ni.exe
+ 2011-07-22 15:08 . 2011-07-22 15:08 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e468e9265c844f74577530e4df71f120\PresentationFramework.Aero.ni.dll
+ 2011-07-22 15:08 . 2011-07-22 15:08 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\959709491c71caef88fb41b0eb159714\PresentationFramework.Classic.ni.dll
+ 2011-07-22 15:08 . 2011-07-22 15:08 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\807b62468c2893ee943dffff63a34d8d\PresentationFramework.Royale.ni.dll
+ 2011-07-22 15:08 . 2011-07-22 15:08 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\6cf82f370413a2cd1e6bc54060334753\PresentationFramework.Luna.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\0add35a0fbe0c381c998b651c5979902\MSBuild.ni.exe
+ 2011-07-22 15:12 . 2011-07-22 15:12 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\667dc256d9eb3577f2514c89c5974aff\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 433664 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\a4a79ab57600da00a30d9752b4df9fa4\Microsoft.PowerShell.Commands.Management.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 492032 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\55d6f56c092bb6e1a07b0261e9a7c4f2\Microsoft.PowerShell.ConsoleHost.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 148480 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\30087c1eceefa670ba9d2dd6c114e537\Microsoft.PowerShell.Security.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 968192 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\15cd48c75023ce6669390b5010636cd1\Microsoft.PowerShell.Commands.Utility.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\d5561a4ad04c22f0eb5acf4736c7936e\Microsoft.Build.Utilities.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\1a0623063225521aa43044314cc5e721\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\530f98922474a31636c34fa3db9a63ba\Microsoft.Build.Engine.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\7e75fca3ca1f36df8ac624190d9cd283\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\80bd17388778c90f301746ad88700758\CustomMarshalers.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\c0f5f3c318a92212bbe3b413eeb2b374\ComSvcConfig.ni.exe
+ 2011-07-22 15:10 . 2011-07-22 15:10 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\7e33709355e2de0de4bf77d2011bb6b7\AspNetMMCExt.ni.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2011-07-21 13:08 . 2011-07-21 13:08 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2011-07-21 13:08 . 2011-07-21 13:08 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2011-07-21 13:08 . 2011-07-21 13:08 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2011-07-21 13:08 . 2011-07-21 13:08 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2011-07-21 12:43 . 2010-10-23 00:48 1748992 c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22509_x-ww_c7dad023\GdiPlus.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 3781960 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfc90u.dll
+ 2011-04-19 01:51 . 2011-04-19 01:51 3766600 c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfc90.dll
- 2004-08-04 03:45 . 2010-07-27 06:29 8492032 c:\windows\system32\shell32.dll
+ 2004-08-04 03:45 . 2011-01-21 14:44 8492032 c:\windows\system32\shell32.dll
+ 2009-03-18 16:36 . 2011-02-02 07:58 2067456 c:\windows\system32\mstscax.dll
- 2008-06-17 19:02 . 2010-07-27 06:29 8492032 c:\windows\system32\dllcache\shell32.dll
+ 2008-06-17 19:02 . 2011-01-21 14:44 8492032 c:\windows\system32\dllcache\shell32.dll
+ 2011-02-02 07:58 . 2011-02-02 07:58 2067456 c:\windows\system32\dllcache\lhmstscx.dll
+ 2011-03-25 09:15 . 2011-03-25 09:15 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
- 2008-07-25 14:17 . 2008-07-25 14:17 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2011-03-25 09:15 . 2011-03-25 09:15 5912400 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2011-03-25 09:15 . 2011-03-25 09:15 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
- 2010-05-11 09:40 . 2010-05-11 09:40 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2010-09-23 10:39 . 2010-09-23 10:39 4265472 c:\windows\Installer\3a5ab4.msp
+ 2010-10-04 16:59 . 2010-10-04 16:59 8300032 c:\windows\Installer\3a5ab2.msp
+ 2011-07-22 15:12 . 2011-07-22 15:12 1105920 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\ca54efc69040a0a54db81dfcbe1a7ee8\WindowsLive.Writer.ApplicationFramework.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 2018816 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\bf7216551923c1ef51a1f702707c8826\WindowsLive.Writer.CoreServices.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 6392832 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\b114493228cfe518a0793cf864511468\WindowsLive.Writer.PostEditor.ni.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 3325440 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\11526c1635b97a7d49e25e72ed6e9662\WindowsBase.ni.dll
+ 2011-07-22 15:09 . 2011-07-22 15:09 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\901c3796073853746fecd8979c679494\UIAutomationClientsideProviders.ni.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 7950848 c:\windows\assembly\NativeImages_v2.0.50727_32\System\f6a9a002526806f3a5b745cf5c407cae\System.ni.dll
+ 2011-07-22 15:09 . 2011-07-22 15:09 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f354057a5b4fad4c399da28449ba0d92\System.Xml.ni.dll
+ 2011-07-22 15:14 . 2011-07-22 15:14 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\c2ebfd5c4a98e76e6f435ed2c1caa563\System.WorkflowServices.ni.dll
+ 2011-07-22 15:14 . 2011-07-22 15:14 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\b00e29d171d8b6986cf261c3d861def3\System.Workflow.Runtime.ni.dll
+ 2011-07-22 15:14 . 2011-07-22 15:14 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\3ed551ab8634dfc931e11e43c1bf3471\System.Workflow.ComponentModel.ni.dll
+ 2011-07-22 15:14 . 2011-07-22 15:14 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\e63e9dd4deeba3aa1bdc535d7d46b840\System.Workflow.Activities.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\85bddc2d57c9798b432894e2aa0f81ef\System.Web.Services.ni.dll
+ 2011-07-22 15:14 . 2011-07-22 15:14 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\8b33b3de77e4ef5da5b4c51f2d930709\System.Web.Mobile.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 2405376 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\e57e3bdb17ffd36f99a5d94c3313b90a\System.Web.Extensions.ni.dll
+ 2011-07-22 15:09 . 2011-07-22 15:09 1917952 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\2047e63293e067b351b8f0e038253f33\System.Speech.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\7119a19c5ecf6caa2d15e294c8cb1a9b\System.ServiceModel.Web.ni.dll
+ 2011-07-22 15:10 . 2011-07-22 15:10 2345472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\c889a45c82004537f1620dd3b211af66\System.Runtime.Serialization.ni.dll
+ 2011-07-22 15:09 . 2011-07-22 15:09 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\c64aa916251a45206a805ab6488b9255\System.Printing.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 4949504 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.A#\654e80cc700c835210f77527b53a6802\System.Management.Automation.ni.dll
+ 2011-07-22 15:10 . 2011-07-22 15:10 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\e009d783a2c67ebfa99894d9b6f111ea\System.IdentityModel.ni.dll
+ 2011-07-22 15:09 . 2011-07-22 15:09 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\a59b17e6040e3f6286a2227dfdb17096\System.Drawing.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\55211bc8f4fcff47c05bfc3020d97148\System.DirectoryServices.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\f9ff2fb342cd5102e2d95883b3433a5d\System.Deployment.ni.dll
+ 2011-07-22 15:08 . 2011-07-22 15:08 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\05d99241bd45cbd96a6053841790a4a2\System.Data.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\ef31ab37b0d7c3c1a6d72646966c8911\System.Data.SqlXml.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\bf848567d8aa92738dbb9f5575dae126\System.Data.Services.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 1115136 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.OracleC#\e12e3036e337cbeb2d274b37ff4c1279\System.Data.OracleClient.ni.dll
+ 2011-07-22 15:08 . 2011-07-22 15:08 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\283e9bf48e17bdb34acdc93bd5721be0\System.Data.Linq.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\368c85cccea8a1206be5c849fd6614e3\System.Data.Entity.ni.dll
+ 2011-07-22 15:08 . 2011-07-22 15:08 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\bd2e04dfab2993479ae17ea3fa4f6222\System.Core.ni.dll
+ 2011-07-22 15:08 . 2011-07-22 15:08 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\4f82a0a1b4405ef61dfa088d11161e35\ReachFramework.ni.dll
+ 2011-07-22 15:08 . 2011-07-22 15:08 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\148505f5b0307230de5d355f10d30a20\PresentationUI.ni.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\1fab86af683c04bdb0aaf65ce7fcd9e5\PresentationBuildTasks.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\96d861a227cbfcc748b3f2cdc973ee49\Microsoft.VisualBasic.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\abaf7a180354ed5ec099fb69339b538a\Microsoft.Transactions.Bridge.ni.dll
+ 2011-07-22 15:13 . 2011-07-22 15:13 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\b41db9f2897f538203911026bb0abd5d\Microsoft.JScript.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\a91940f9033c7910f3f64c061571cec9\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\5195a94327ccef45d202776e932e847b\Microsoft.Build.Tasks.ni.dll
+ 2011-07-22 15:12 . 2011-07-22 15:12 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\3efbca53acdd34586bd7f6f87e71ed62\Microsoft.Build.Engine.ni.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 3182592 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2011-07-21 13:08 . 2011-07-21 13:08 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2011-07-22 15:03 . 2011-07-22 15:03 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
- 2010-09-14 21:05 . 2010-09-14 21:05 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
- 2011-07-21 13:08 . 2011-07-21 13:08 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2011-07-22 15:06 . 2011-07-22 15:06 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2011-07-21 13:08 . 2011-07-21 13:08 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
- 2011-07-21 13:09 . 2011-07-21 13:09 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
- 2004-08-04 03:45 . 2009-07-14 02:43 10841088 c:\windows\system32\wmp.dll
+ 2004-08-04 03:45 . 2010-08-26 02:36 10841088 c:\windows\system32\wmp.dll
- 2004-08-04 03:45 . 2009-07-14 02:43 10841088 c:\windows\system32\dllcache\wmp.dll
+ 2004-08-04 03:45 . 2010-08-26 02:36 10841088 c:\windows\system32\dllcache\wmp.dll
+ 2011-03-28 06:27 . 2011-03-28 06:27 15456256 c:\windows\Installer\3a5ae6.msp
+ 2011-04-27 22:21 . 2011-04-27 22:21 17515520 c:\windows\Installer\3a5ada.msp
+ 2011-07-22 15:09 . 2011-07-22 15:09 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\29d16d2f164fe2263539789ecd0d9d4f\System.Windows.Forms.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 11797504 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\9baf0191738e8f193fbf1eb1f0ad7986\System.Web.ni.dll
+ 2011-07-22 15:11 . 2011-07-22 15:11 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\d3df525cda45f400637bf3ab81ec71c7\System.ServiceModel.ni.dll
+ 2011-07-22 15:09 . 2011-07-22 15:09 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\33f57f791f00805bd2d6b3464bbbc84e\System.Design.ni.dll
+ 2011-07-22 15:08 . 2011-07-22 15:08 14328320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\999df2b262da53356dda514512bb7bb8\PresentationFramework.ni.dll
+ 2011-07-22 15:08 . 2011-07-22 15:08 12215808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\caafa254739e326b0cf55eed815b4333\PresentationCore.ni.dll
+ 2011-07-22 15:07 . 2011-07-22 15:07 11490816 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll
.
-- Snapshot resetado para data atual --
.
(((((((((((((((((((((((((( Pontos de Carregamento do Registro )))))))))))))))))))))))))))))))))))))))
.
.
*Nota* entradas vazias e legítimas por padrão não são apresentadas.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\arquivos de programas\Windows Live\Messenger\msnmsgr.exe" [2010-04-17 3872080]
"Skype"="c:\arquivos de programas\Skype\Phone\Skype.exe" [2011-06-15 15141768]
"swg"="c:\arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-02-01 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\arquivos de programas\Arquivos comuns\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"SunJavaUpdateSched"="c:\arquivos de programas\Arquivos comuns\Java\Java Update\jusched.exe" [2011-04-08 254696]
"MVS Splash"="c:\arquivos de programas\McAfee\Managed VirusScan\DesktopUI\XTray.exe" [2011-01-25 476480]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^EPSON Status Monitor 3 Environment Check 2.lnk]
backup=c:\windows\pss\EPSON Status Monitor 3 Environment Check 2.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^GammaTray.lnk]
backup=c:\windows\pss\GammaTray.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Iniciar^Programas^Inicializar^Microsoft Office.lnk]
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2011-06-06 15:55 937920 ----a-w- c:\arquivos de programas\Arquivos comuns\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
2005-05-03 10:43 69632 ------r- c:\windows\Alcmtr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CertificateRegistration]
2010-07-20 16:02 151552 ----a-w- c:\windows\system32\aetcrss1.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
2008-04-14 02:20 15360 ----a-w- c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxhkcmd]
2005-11-28 05:52 77824 ----a-r- c:\windows\system32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxpers]
2005-11-28 05:55 118784 ----a-r- c:\windows\system32\igfxpers.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxtray]
2005-11-28 05:55 98304 ----a-r- c:\windows\system32\igfxtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
2007-11-26 17:54 1057064 ----a-w- c:\arquivos de programas\Nero\Nero 7\InCD\InCD.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
2007-01-09 01:17 52256 ----a-w- c:\arquivos de programas\CyberLink\PowerDVD\Language\Language.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MVS Splash]
2011-01-25 04:10 476480 ----a-w- c:\arquivos de programas\McAfee\Managed VirusScan\DesktopUI\XTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-01 17:57 153136 ----a-w- c:\arquivos de programas\Arquivos comuns\Ahead\Lib\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2007-06-29 03:43 8466432 ----a-w- c:\windows\system32\nvcpl.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2007-06-29 03:43 81920 ----a-w- c:\windows\system32\nvmctray.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
2007-03-15 00:01 71216 ------w- c:\arquivos de programas\CyberLink\PowerDVD\PDVDServ.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2007-07-05 08:08 16380416 ------r- c:\windows\RTHDCPL.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SecurDisc]
2007-11-26 17:54 1629480 ----a-w- c:\arquivos de programas\Nero\Nero 7\InCD\NBHGui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]
2005-07-05 20:47 544768 ----a-r- c:\windows\sm56hlpr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2007-07-12 07:00 132496 ----a-w- c:\arquivos de programas\Java\jre1.6.0_02\bin\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2011-02-01 10:03 39408 ----a-w- c:\arquivos de programas\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]
2006-04-01 20:33 53248 ----a-r- c:\windows\system32\VTTimer.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTrayp]
2006-04-01 20:33 143360 ----a-r- c:\windows\system32\VTTrayp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"InCDsrv"=2 (0x2)
"NMIndexingService"=3 (0x3)
"NBService"=3 (0x3)
"MagicTuneEngine"=2 (0x2)
"idsvc"=3 (0x3)
"gupdate"=2 (0x2)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Arquivos de programas\\CyberLink\\PowerDVD\\PowerDVD.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Arquivos de programas\\MagicTune Premium\\MagicTune.exe"=
"c:\\Arquivos de programas\\Proveu\\Programador Kurumim\\Ckusb.exe"=
"c:\\Arquivos de programas\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Arquivos de programas\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Arquivos de programas\\Java\\jre1.6.0_02\\bin\\javaw.exe"=
"c:\\Arquivos de programas\\TeamViewer\\Version6\\TeamViewer.exe"=
"c:\\Arquivos de programas\\TeamViewer\\Version6\\TeamViewer_Service.exe"=
"c:\\Arquivos de programas\\Skype\\Phone\\Skype.exe"=
"c:\\Arquivos de programas\\McAfee\\Managed VirusScan\\Agent\\myAgtSvc.exe"=
.
R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\arquivos de programas\Firebird\Firebird_2_0\bin\fbguard.exe -s --> c:\arquivos de programas\Firebird\Firebird_2_0\bin\fbguard.exe -s [?]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service;c:\arquivos de programas\McAfee\Managed VirusScan\Agent\myAgtSvc.exe [22/07/2011 08:54 291064]
R2 RumorServer;McAfee Peer Distribution Service;c:\arquivos de programas\McAfee\Managed VirusScan\Agent\myAgtSvc.exe [22/07/2011 08:54 291064]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\arquivos de programas\Firebird\Firebird_2_0\bin\fbserver.exe -s --> c:\arquivos de programas\Firebird\Firebird_2_0\bin\fbserver.exe -s [?]
R3 PciPPorts;PCI ECP Parallel Port;c:\windows\system32\drivers\PciPPorts.sys [10/09/2010 11:02 82432]
S3 GemCCID;GemCCID;c:\windows\system32\drivers\GemCCID.sys [14/10/2010 17:23 89600]
S3 gupdatem;Serviço do Google Update (gupdatem);c:\arquivos de programas\Google\Update\GoogleUpdate.exe [10/11/2010 09:28 136176]
S4 gupdate;Google Update Service (gupdate);c:\arquivos de programas\Google\Update\GoogleUpdate.exe [10/11/2010 09:28 136176]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\aetsprov]
2010-08-01 01:55 81920 ----a-w- c:\windows\system32\aetsprov.dll
.
Conteúdo da pasta 'Tarefas Agendadas'
.
2011-07-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\arquivos de programas\Google\Update\GoogleUpdate.exe [2010-11-10 12:28]
.
2011-07-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\arquivos de programas\Google\Update\GoogleUpdate.exe [2010-11-10 12:28]
.
2011-07-22 c:\windows\Tasks\Script BancoDadosClippnet.job
- c:\arquivos de programas\BraZip\BraZip.exe [2005-05-03 15:40]
.
2011-07-22 c:\windows\Tasks\User_Feed_Synchronization-{31D59DEF-F006-4650-B1AE-1A9D9B4F5E8F}.job
- c:\windows\system32\msfeedssync.exe [2006-10-17 07:31]
.
.
------- Scan Suplementar -------
.
uStart Page = hxxp://www.google.com.br/
Trusted Zone: caixa.gov.br
Trusted Zone: internet
Trusted Zone: mcafee.com
Trusted Zone: //about.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Update.htm/
Trusted Zone: mcafee.com\*
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
TCP: DhcpNameServer = 192.168.0.1
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-07-22 16:50
Windows 5.1.2600 Service Pack 3 NTFS
.
Procurando processos ocultos ...
.
Procurando entradas auto inicializáveis ocultas ...
.
Procurando ficheiros/arquivos ocultos ...
.
Varredura completada com sucesso
arquivos/ficheiros ocultos: 0
.
**************************************************************************
.
--------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\0A3B6277AC9C4BC43808258987EE730F\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"102"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\17AFD8C1970420F48BBB741BC2A165F5\SourceList\Media]
@DACL=(02 0000)
"100"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\17BB7F68F8EF60333A529FE30E46718B\SourceList\Media]
@DACL=(02 0000)
"111"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\1FDE42FC632E233438BCC407A1B9BC0F\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"107"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\2451D69CF585D214C8A52004DB1A469B\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"106"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\24DF66A32D05A9E3185BCE3E5E3C90A7\SourceList\Media]
@DACL=(02 0000)
"111"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\256917180E811B74A9218FB20F574DBD\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"105"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\28C9EA2BB7CD1463FB8C7872C5F46370\SourceList\Media]
@DACL=(02 0000)
"101"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\295DC294DD789E13083868560A521636\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"110"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\2F2AEE7ADCFB45A45A57B7187A686E85\SourceList\Media]
@DACL=(02 0000)
"100"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\3D90EFE177C6D6E478F667BC032D50C6\SourceList\Media]
@DACL=(02 0000)
"101"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\4152E9034D92C5043B1B417D32B1AF61\SourceList\Media]
@DACL=(02 0000)
"102"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\41A670B5874F6653EBA789C5C326F94A\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"110"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\43F3D5FAA348FB140A3FF2BB0AB09A9B\SourceList\Media]
@DACL=(02 0000)
"104"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\4517A55D362FBD24B9A7B88BA1776B59\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"103"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\484CA1D2615EC8048852CA1B3C65CAA7\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"101"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\4C9878626E35BDD4F833D8F0E900B0AE\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"100"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\53A8397A44EFB264995AA12C4029155A\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"103"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\5E903427217EC6249BD46B4B52112CF9\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"104"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\60DAE83D16BD47048B6FAA966D2B4487\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"102"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\63B2B95DCCFD3AE48B8812BD3EBB6DAF\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"104"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\82B28DCEEB84C6245BB5E60C22162658\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"108"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\881B67FDBD11CD343A98012492599A97\SourceList\Media]
@DACL=(02 0000)
"107"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\91C30D4F0ACD90B4387EEBB3608C4DCD\SourceList\Media]
@DACL=(02 0000)
"109"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\930A243C0F18F6A45815DBE5B4E40BAC\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"105"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\AD33164C92DBB1844B1251C46F7F0542\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"101"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\B4C419EC05CA8E13D92A51BD928D65F8\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"112"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\B8F6D1795C8E4A94E93D980C010B8D2D\SourceList\Media]
@DACL=(02 0000)
"103"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\BB3686E2280450B3BBC202FE614DDB28\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"111"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\BE7C28545F39D804F992A5B51E7E8654\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"103"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\C3CFBEEB1B8483A43A5C18AB91FDF504\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"109"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\CC5820D61CB35C04B8F08781ECEA5E98\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"101"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\CDA0E9DED2257694697C33013CC7952F\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"106"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\D9D6D861134B1434F923AF09901D2397\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"100"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\DE6BA3F2C1597EC4A89C5864DFFCF1A5\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"102"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\E0337B0F8B42AE34C86D1D4124A8C1CE\SourceList\Media]
@DACL=(02 0000)
"108"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\E54DA494170E9184E8511E40F1FB0F37\SourceList\Media]
@DACL=(02 0000)
"110"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\E6C461BDA4E80374796CED4868BE63F7\SourceList\Media]
@DACL=(02 0000)
"106"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\E776E4EBDDE0C7D4C935BB3A8D3C7180\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"104"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\E9030CAD6F70DA545BFBB5D0FE17FFEE\SourceList\Media]
@DACL=(02 0000)
"105"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\F9DC276355B3ECF3D85A5DC7A31B1005\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"113"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Patches\FE4D60D0908A94347AB1BD83A3B05BD9\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"100"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\0D756077321A70C3E844C138CE981581\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"1"=";1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\0DC1503A46F231838AD88BCDDC8E8F7C\SourceList\Media]
@DACL=(02 0000)
"1"=";1"
"100"=";"
"101"=";"
"102"=";"
"103"=";"
"104"=";"
"105"=";"
"106"=";"
"107"=";"
"108"=";"
"109"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\18B56C49ECC139D3595B58B3A1D35A93\SourceList\Media]
@DACL=(02 0000)
"MediaPackage"="\\Msi\\"
"DiskPrompt"="[1]"
"1"=";"
"100"=";"
"101"=";"
"102"=";"
"103"=";"
"104"=";"
"105"=";"
"106"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\26DDC2EC4210AC63483DF9D4FCC5B59D\SourceList\Media]
@DACL=(02 0000)
"1"=";1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\41CA51282CFBCCE4696D010302F2B8FD\SourceList\Media]
@DACL=(02 0000)
"1"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\6E8A266FCD4F2A1409E1C8110F44DBCE\SourceList\Media]
@DACL=(02 0000)
"1"=";"
"2"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\6F9E66FF7E38E3A3FA41D89E8A906A4A\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"1"=";1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\84DCF2ED73246554A94911824DF4DAEB\SourceList\Media]
@DACL=(02 0000)
"MediaPackage"="\\pendrive\\Hora Sol\\DMPREP\\DMPREP 7.00.0002\\"
"DiskPrompt"="[1]"
"1"="LINCOLN;1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\A03F9ADE56B8F6E33B35CC1A9C424117\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"1"=";"
"100"=";"
"101"=";"
"102"=";"
"103"=";"
"104"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\A3A0F44F011250745BCE5D6B73F1351C\SourceList\Media]
@DACL=(02 0000)
"1"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\b25099274a207264182f8181add555d0\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"1"=";Microsoft Visual C++ 2005 Redistributable [Disk 1]"
"2"=";Microsoft Visual C++ 2005 Redistributable [Disk 1]"
"3"=";Microsoft Visual C++ 2005 Redistributable [Disk 1]"
"4"=";Microsoft Visual C++ 2005 Redistributable [Disk 1]"
"5"=";Microsoft Visual C++ 2005 Redistributable [Disk 1]"
"6"=";Microsoft Visual C++ 2005 Redistributable [Disk 1]"
"7"=";Microsoft Visual C++ 2005 Redistributable [Disk 1]"
"8"=";Microsoft Visual C++ 2005 Redistributable [Disk 1]"
"9"=";Microsoft Visual C++ 2005 Redistributable [Disk 1]"
"10"=";Microsoft Visual C++ 2005 Redistributable [Disk 1]"
"11"=";Microsoft Visual C++ 2005 Redistributable [Disk 1]"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\C1047436062C03B48961F8A54191CC94\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"1"="DISK1;1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\DB3A3B54D09FEF841A747D84875A0164\SourceList\Media]
@DACL=(02 0000)
"MediaPackage"="\\Nero\\Installation\\Cab\\"
"DiskPrompt"="[1]"
"1"="DENIS;"
"2"="DENIS;"
"3"="DENIS;"
"4"="DENIS;"
"5"="DENIS;"
"6"="DENIS;"
"7"="DENIS;"
"8"="DENIS;"
"9"="DENIS;"
"10"="DENIS;"
"11"="DENIS;"
"12"="DENIS;"
"13"="DENIS;"
"14"="DENIS;"
"15"="DENIS;"
"16"="DENIS;"
"17"="DENIS;"
"18"="DENIS;"
"19"="DENIS;"
"20"="DENIS;"
"21"="DENIS;"
"22"="DENIS;"
"23"="DENIS;"
"24"="DENIS;"
"25"="DENIS;"
"26"="DENIS;"
"27"="DENIS;"
"28"="DENIS;"
"29"="DENIS;"
"30"="DENIS;"
"31"="DENIS;"
"32"="DENIS;"
"33"="DENIS;"
"34"="DENIS;"
"35"="DENIS;"
"36"="DENIS;"
"37"="DENIS;"
"38"="DENIS;"
"39"="DENIS;"
"40"="DENIS;"
"41"="DENIS;"
"42"="DENIS;"
"43"="DENIS;"
"44"="DENIS;"
"45"="DENIS;"
"46"="DENIS;"
"47"="DENIS;"
"48"="DENIS;"
"49"="DENIS;"
"50"="DENIS;"
"51"="DENIS;"
"52"="DENIS;"
"53"="DENIS;"
"54"="DENIS;"
"55"="DENIS;"
"56"="DENIS;"
"57"="DENIS;"
"58"="DENIS;"
"59"="DENIS;"
"60"="DENIS;"
"61"="DENIS;"
"62"="DENIS;"
"63"="DENIS;"
"64"="DENIS;"
"65"="DENIS;"
"66"="DENIS;"
"67"="DENIS;"
"68"="DENIS;"
"69"="DENIS;"
"70"="DENIS;"
"71"="DENIS;"
"72"="DENIS;"
"73"="DENIS;"
"74"="DENIS;"
"75"="DENIS;"
"76"="DENIS;"
"77"="DENIS;"
"78"="DENIS;"
"79"="DENIS;"
"80"="DENIS;"
"81"="DENIS;"
"82"="DENIS;"
"83"="DENIS;"
"84"="DENIS;"
"85"="DENIS;"
"86"="DENIS;"
"87"="DENIS;"
"88"="DENIS;"
"89"="DENIS;"
"90"="DENIS;"
"91"="DENIS;"
"92"="DENIS;"
"93"="DENIS;"
"94"="DENIS;"
"95"="DENIS;"
"96"="DENIS;"
"97"="DENIS;"
"98"="DENIS;"
"99"="DENIS;"
"100"="DENIS;"
"101"="DENIS;"
"102"="DENIS;"
"103"="DENIS;"
"104"="DENIS;"
"105"="DENIS;"
"106"="DENIS;"
"107"="DENIS;"
"108"="DENIS;"
"109"="DENIS;"
"110"="DENIS;"
"111"="DENIS;"
"112"="DENIS;"
"113"="DENIS;"
"114"="DENIS;"
"115"="DENIS;"
"116"="DENIS;"
"117"="DENIS;"
"118"="DENIS;"
"119"="DENIS;"
"120"="DENIS;"
"121"="DENIS;"
"122"="DENIS;"
"123"="DENIS;"
"124"="DENIS;"
"125"="DENIS;"
"126"="DENIS;"
"127"="DENIS;"
"128"="DENIS;"
"129"="DENIS;"
"130"="DENIS;"
"131"="DENIS;"
"132"="DENIS;"
"133"="DENIS;"
"134"="DENIS;"
"135"="DENIS;"
"136"="DENIS;"
"137"="DENIS;"
"138"="DENIS;"
"139"="DENIS;"
"140"="DENIS;"
"141"="DENIS;"
"142"="DENIS;"
"143"="DENIS;"
"144"="DENIS;"
"145"="DENIS;"
"146"="DENIS;"
"147"="DENIS;"
"148"="DENIS;"
"149"="DENIS;"
"150"="DENIS;"
"151"="DENIS;"
"152"="DENIS;"
"153"="DENIS;"
"154"="DENIS;"
"155"="DENIS;"
"156"="DENIS;"
"157"="DENIS;"
"158"="DENIS;"
"159"="DENIS;"
"160"="DENIS;"
"161"="DENIS;"
"162"="DENIS;"
"163"="DENIS;"
"164"="DENIS;"
"165"="DENIS;"
"166"="DENIS;"
"167"="DENIS;"
"168"="DENIS;"
"169"="DENIS;"
"170"="DENIS;"
"171"="DENIS;"
"172"="DENIS;"
"173"="DENIS;"
"174"="DENIS;"
"175"="DENIS;"
"176"="DENIS;"
"177"="DENIS;"
"178"="DENIS;"
"179"="DENIS;"
"180"="DENIS;"
"181"="DENIS;"
"182"="DENIS;"
"183"="DENIS;"
"184"="DENIS;"
"185"="DENIS;"
"186"="DENIS;"
"187"="DENIS;"
"188"="DENIS;"
"189"="DENIS;"
"190"="DENIS;"
"191"="DENIS;"
"192"="DENIS;"
"193"="DENIS;"
"194"="DENIS;"
"195"="DENIS;"
"196"="DENIS;"
"197"="DENIS;"
"198"="DENIS;"
"199"="DENIS;"
"200"="DENIS;"
"201"="DENIS;"
"202"="DENIS;"
"203"="DENIS;"
"204"="DENIS;"
"205"="DENIS;"
"206"="DENIS;"
"207"="DENIS;"
"208"="DENIS;"
"209"="DENIS;"
"210"="DENIS;"
"211"="DENIS;"
"212"="DENIS;"
"213"="DENIS;"
"214"="DENIS;"
"215"="DENIS;"
"216"="DENIS;"
"217"="DENIS;"
"218"="DENIS;"
"219"="DENIS;"
"220"="DENIS;"
"221"="DENIS;"
"222"="DENIS;"
"223"="DENIS;"
"224"="DENIS;"
"225"="DENIS;"
"226"="DENIS;"
"227"="DENIS;"
"228"="DENIS;"
"229"="DENIS;"
"230"="DENIS;"
"231"="DENIS;"
"232"="DENIS;"
"233"="DENIS;"
"234"="DENIS;"
"235"="DENIS;"
"236"="DENIS;"
"237"="DENIS;"
"238"="DENIS;"
"239"="DENIS;"
"240"="DENIS;"
"241"="DENIS;"
"242"="DENIS;"
"243"="DENIS;"
"244"="DENIS;"
"245"="DENIS;"
"246"="DENIS;"
"247"="DENIS;"
"248"="DENIS;"
"249"="DENIS;"
"250"="DENIS;"
"251"="DENIS;"
"252"="DENIS;"
"253"="DENIS;"
"254"="DENIS;"
"255"="DENIS;"
"256"="DENIS;"
"257"="DENIS;"
"258"="DENIS;"
"259"="DENIS;"
"260"="DENIS;"
"261"="DENIS;"
"262"="DENIS;"
"263"="DENIS;"
"264"="DENIS;"
"265"="DENIS;"
"266"="DENIS;"
"267"="DENIS;"
"268"="DENIS;"
"269"="DENIS;"
"270"="DENIS;"
"271"="DENIS;"
"272"="DENIS;"
"273"="DENIS;"
"274"="DENIS;"
"275"="DENIS;"
"276"="DENIS;"
"277"="DENIS;"
"278"="DENIS;"
"279"="DENIS;"
"280"="DENIS;"
"281"="DENIS;"
"282"="DENIS;"
"283"="DENIS;"
"284"="DENIS;"
"285"="DENIS;"
"286"="DENIS;"
"287"="DENIS;"
"288"="DENIS;"
"289"="DENIS;"
"290"="DENIS;"
"291"="DENIS;"
"292"="DENIS;"
"293"="DENIS;"
"294"="DENIS;"
"295"="DENIS;"
"296"="DENIS;"
"297"="DENIS;"
"298"="DENIS;"
"299"="DENIS;"
"300"="DENIS;"
"301"="DENIS;"
"302"="DENIS;"
"303"="DENIS;"
"304"="DENIS;"
"305"="DENIS;"
"306"="DENIS;"
"307"="DENIS;"
"308"="DENIS;"
"309"="DENIS;"
"310"="DENIS;"
"311"="DENIS;"
"312"="DENIS;"
"313"="DENIS;"
"314"="DENIS;"
"315"="DENIS;"
"316"="DENIS;"
"317"="DENIS;"
"318"="DENIS;"
"319"="DENIS;"
"320"="DENIS;"
"321"="DENIS;"
"322"="DENIS;"
"323"="DENIS;"
"324"="DENIS;"
"325"="DENIS;"
"326"="DENIS;"
"327"="DENIS;"
"328"="DENIS;"
"329"="DENIS;"
"330"="DENIS;"
"331"="DENIS;"
"332"="DENIS;"
"333"="DENIS;"
"334"="DENIS;"
"335"="DENIS;"
"336"="DENIS;"
"337"="DENIS;"
"338"="DENIS;"
"339"="DENIS;"
"340"="DENIS;"
"341"="DENIS;"
"342"="DENIS;"
"343"="DENIS;"
"344"="DENIS;"
"345"="DENIS;"
"346"="DENIS;"
"347"="DENIS;"
"348"="DENIS;"
"349"="DENIS;"
"350"="DENIS;"
"351"="DENIS;"
"352"="DENIS;"
"353"="DENIS;"
"354"="DENIS;"
"355"="DENIS;"
"356"="DENIS;"
"357"="DENIS;"
"358"="DENIS;"
"359"="DENIS;"
"360"="DENIS;"
"361"="DENIS;"
"362"="DENIS;"
"363"="DENIS;"
"364"="DENIS;"
"365"="DENIS;"
"366"="DENIS;"
"367"="DENIS;"
"368"="DENIS;"
"369"="DENIS;"
"370"="DENIS;"
"371"="DENIS;"
"372"="DENIS;"
"373"="DENIS;"
"374"="DENIS;"
"375"="DENIS;"
"376"="DENIS;"
"377"="DENIS;"
"378"="DENIS;"
"379"="DENIS;"
"380"="DENIS;"
"381"="DENIS;"
"382"="DENIS;"
"383"="DENIS;"
"384"="DENIS;"
"385"="DENIS;"
"386"="DENIS;"
"387"="DENIS;"
"388"="DENIS;"
"389"="DENIS;"
"390"="DENIS;"
"391"="DENIS;"
"392"="DENIS;"
"393"="DENIS;"
"394"="DENIS;"
"395"="DENIS;"
"396"="DENIS;"
"397"="DENIS;"
"398"="DENIS;"
"399"="DENIS;"
"400"="DENIS;"
"401"="DENIS;"
"402"="DENIS;"
"403"="DENIS;"
"404"="DENIS;"
"405"="DENIS;"
"406"="DENIS;"
"407"="DENIS;"
"408"="DENIS;"
"409"="DENIS;"
"410"="DENIS;"
"411"="DENIS;"
"412"="DENIS;"
"413"="DENIS;"
"414"="DENIS;"
"415"="DENIS;"
"416"="DENIS;"
"417"="DENIS;"
"418"="DENIS;"
"419"="DENIS;"
"420"="DENIS;"
"421"="DENIS;"
"422"="DENIS;"
"423"="DENIS;"
"424"="DENIS;"
"425"="DENIS;"
"426"="DENIS;"
"427"="DENIS;"
"428"="DENIS;"
"429"="DENIS;"
"430"="DENIS;"
"431"="DENIS;"
"432"="DENIS;"
"433"="DENIS;"
"434"="DENIS;"
"435"="DENIS;"
"436"="DENIS;"
"437"="DENIS;"
"438"="DENIS;"
"439"="DENIS;"
"440"="DENIS;"
"441"="DENIS;"
"442"="DENIS;"
"443"="DENIS;"
"444"="DENIS;"
"445"="DENIS;"
"446"="DENIS;"
"447"="DENIS;"
"448"="DENIS;"
"449"="DENIS;"
"450"="DENIS;"
"451"="DENIS;"
"452"="DENIS;"
"453"="DENIS;"
"454"="DENIS;"
"455"="DENIS;"
"456"="DENIS;"
"457"="DENIS;"
"458"="DENIS;"
"459"="DENIS;"
"460"="DENIS;"
"461"="DENIS;"
"462"="DENIS;"
"463"="DENIS;"
"464"="DENIS;"
"465"="DENIS;"
"466"="DENIS;"
"467"="DENIS;"
"468"="DENIS;"
"469"="DENIS;"
"470"="DENIS;"
"471"="DENIS;"
"472"="DENIS;"
"473"="DENIS;"
"474"="DENIS;"
"475"="DENIS;"
"476"="DENIS;"
"477"="DENIS;"
"478"="DENIS;"
"479"="DENIS;"
"480"="DENIS;"
"481"="DENIS;"
"482"="DENIS;"
"483"="DENIS;"
"484"="DENIS;"
"485"="DENIS;"
"486"="DENIS;"
"487"="DENIS;"
"488"="DENIS;"
"489"="DENIS;"
"490"="DENIS;"
"491"="DENIS;"
"492"="DENIS;"
"493"="DENIS;"
"494"="DENIS;"
"495"="DENIS;"
"496"="DENIS;"
"497"="DENIS;"
"498"="DENIS;"
"499"="DENIS;"
"500"="DENIS;"
"501"="DENIS;"
"502"="DENIS;"
"503"="DENIS;"
"504"="DENIS;"
"505"="DENIS;"
"506"="DENIS;"
"507"="DENIS;"
"508"="DENIS;"
"509"="DENIS;"
"510"="DENIS;"
"511"="DENIS;"
"512"="DENIS;"
"513"="DENIS;"
"514"="DENIS;"
"515"="DENIS;"
"516"="DENIS;"
"517"="DENIS;"
"518"="DENIS;"
"519"="DENIS;"
"520"="DENIS;"
"521"="DENIS;"
"522"="DENIS;"
"523"="DENIS;"
"524"="DENIS;"
"525"="DENIS;"
"526"="DENIS;"
"527"="DENIS;"
"528"="DENIS;"
"529"="DENIS;"
"530"="DENIS;"
"531"="DENIS;"
"532"="DENIS;"
"533"="DENIS;"
"534"="DENIS;"
"535"="DENIS;"
"536"="DENIS;"
"537"="DENIS;"
"538"="DENIS;"
"539"="DENIS;"
"540"="DENIS;"
"541"="DENIS;"
"542"="DENIS;"
"543"="DENIS;"
"544"="DENIS;"
"545"="DENIS;"
"546"="DENIS;"
"547"="DENIS;"
"548"="DENIS;"
"549"="DENIS;"
"550"="DENIS;"
"551"="DENIS;"
"552"="DENIS;"
"553"="DENIS;"
"554"="DENIS;"
"555"="DENIS;"
"556"="DENIS;"
"557"="DENIS;"
"558"="DENIS;"
"559"="DENIS;"
"560"="DENIS;"
"561"="DENIS;"
"562"="DENIS;"
"563"="DENIS;"
"564"="DENIS;"
"565"="DENIS;"
"566"="DENIS;"
"567"="DENIS;"
"568"="DENIS;"
"569"="DENIS;"
"570"="DENIS;"
"571"="DENIS;"
"572"="DENIS;"
"573"="DENIS;"
"574"="DENIS;"
"575"="DENIS;"
"576"="DENIS;"
"577"="DENIS;"
"578"="DENIS;"
"579"="DENIS;"
"580"="DENIS;"
"581"="DENIS;"
"582"="DENIS;"
"583"="DENIS;"
"584"="DENIS;"
"585"="DENIS;"
"586"="DENIS;"
"587"="DENIS;"
"588"="DENIS;"
"589"="DENIS;"
"590"="DENIS;"
"591"="DENIS;"
"592"="DENIS;"
"593"="DENIS;"
"594"="DENIS;"
"595"="DENIS;"
"596"="DENIS;"
"597"="DENIS;"
"598"="DENIS;"
"599"="DENIS;"
"600"="DENIS;"
"601"="DENIS;"
"602"="DENIS;"
"603"="DENIS;"
"604"="DENIS;"
"605"="DENIS;"
"606"="DENIS;"
"607"="DENIS;"
"608"="DENIS;"
"609"="DENIS;"
"610"="DENIS;"
"611"="DENIS;"
"612"="DENIS;"
"613"="DENIS;"
"614"="DENIS;"
"615"="DENIS;"
"616"="DENIS;"
"617"="DENIS;"
"618"="DENIS;"
"619"="DENIS;"
"620"="DENIS;"
"621"="DENIS;"
"622"="DENIS;"
"623"="DENIS;"
"624"="DENIS;"
"625"="DENIS;"
"626"="DENIS;"
"627"="DENIS;"
"628"="DENIS;"
"629"="DENIS;"
"630"="DENIS;"
"631"="DENIS;"
"632"="DENIS;"
"633"="DENIS;"
"634"="DENIS;"
"635"="DENIS;"
"636"="DENIS;"
"637"="DENIS;"
"638"="DENIS;"
"639"="DENIS;"
"640"="DENIS;"
"641"="DENIS;"
"642"="DENIS;"
"643"="DENIS;"
"644"="DENIS;"
"645"="DENIS;"
"646"="DENIS;"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\DC3BF90CC0D3D2F398A9A6D1762F70F3\SourceList\Media]
@DACL=(02 0000)
"DiskPrompt"="[1]"
"1"=";"
"100"=";"
"101"=";"
"102"=";"
"103"=";"
"104"=";"
"105"=";"
"106"=";"
"107"=";"
"108"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\DDA39468D428E8B4DB27C8D5DC5CA217\SourceList\Media]
@DACL=(02 0000)
"1"=";"
"2"=";"
.
[HKEY_LOCAL_MACHINE\software\Classes\Installer\Products\F324E6AAFDBC8063CA03C00FD8C7A970\SourceList\Media]
@DACL=(02 0000)
"1"=";1"
.
[HKEY_LOCAL_MACHINE\software\McAfee\SystemCore\vscore\Email Scanner]
@DACL=(02 0000)
"ArtemisEnabled"=dword:00000001
"ArtemisLevel"=dword:00000003
.
[HKEY_LOCAL_MACHINE\software\McAfee\SystemCore\vscore\NVP]
@DACL=(02 0000)
"DetectRemoteAdminTools"=dword:00000001
"DetectionExclusions"=multi:"\00"
"DetectDialers"=dword:00000001
"DetectAdware"=dword:00000001
"DetectPasswordCrackers"=dword:00000001
"DetectPotentiallyUnwantedApps"=dword:00000001
"DetectSpyware"=dword:00000001
"DetectJokes"=dword:00000001
"DetectKeyLoggers"=dword:00000001
"DetectRootkits"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\McAfee\SystemCore\vscore\On Access Scanner]
@DACL=(02 0000)
"ArtemisEnabled"=dword:00000001
"ArtemisLevel"=dword:00000003
.
[HKEY_LOCAL_MACHINE\software\McAfee\SystemCore\vscore\Script Scanner]
@DACL=(02 0000)
"szInstallDir32"="c:\\Arquivos de programas\\Arquivos comuns\\McAfee\\SystemCore\00S"
"OpState"=dword:00000001
"ScriptScanEnabled"=dword:00000001
"EOLPId"=dword:000036d4
"PPContextIDs"=hex:00,90,00,00,03,90,00,00,01,50,00,00,02,50,00,00,03,50,00,00
"HookMode"=dword:00000001
"ExcludedProcesses"=multi:"htmldlg.exe\00upddlg.exe\00HPWAMain.exe\00HPWA_Main.exe\00HelpCtr.exe\00HP CONNECTION MANAGER.EXE\00SMMANAGER.EXE\00\00"
"ExcludedURLs"=multi:"\00\00"
"szBinary32"="ScriptSn.20110302073043.dll"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\SeCEdit\Reg Values]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\SeCEdit\Template Locations]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\Answer]
@DACL=(02 0000)
"1"="ATA<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\Clients]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\EnableCallerID]
@DACL=(02 0000)
"1"="at+vcid=1<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\EnableDistinctiveRing]
@DACL=(02 0000)
"1"="at+vdr=1<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\GenerateDigit]
@DACL=(02 0000)
"1"="at+vts=<Digit><cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\Hangup]
@DACL=(02 0000)
"1"="ATH<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\Init]
@DACL=(02 0000)
"1"="AT<cr>"
"2"="AT&F&D2&C1V1S0=0E0<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\LineSetPlayFormat]
@DACL=(02 0000)
"1"="at+vsm=129<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\LineSetRecordFormat]
@DACL=(02 0000)
"1"="at+vsm=129<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\Monitor]
@DACL=(02 0000)
"1"="ATS0=0<cr>"
"2"="None"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\Settings]
@DACL=(02 0000)
"Prefix"="AT"
"Terminator"="<cr>"
"DialPrefix"="D"
"DialSuffix"=";"
"SpeakerVolume_Low"="L0"
"SpeakerVolume_Med"="L2"
"SpeakerVolume_High"="L3"
"SpeakerMode_Off"="M0"
"SpeakerMode_Dial"="M1"
"SpeakerMode_On"="M2"
"SpeakerMode_Setup"="M3"
"FlowControl_Off"="\\Q0"
"FlowControl_Hard"="\\Q3"
"FlowControl_Soft"="\\Q1"
"ErrorControl_On"="\\N7"
"ErrorControl_Off"="\\N0"
"ErrorControl_Forced"="\\N6"
"Compression_On"="%C1"
"Compression_Off"="%C0"
"Pulse"="P"
"Tone"="T"
"Blind_Off"="X4"
"Blind_On"="X3"
"CallSetupFailTimer"="S7=<#>"
"InactivityTimeout"="\\T<#>"
"Modulation_CCITT"="*LS1"
"Modulation_Bell"="*LS0"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\SpeakerPhoneDisable]
@DACL=(02 0000)
"1"="at+vls=1<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\SpeakerPhoneEnable]
@DACL=(02 0000)
"1"="at+vls=13<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\SpeakerPhoneMute]
@DACL=(02 0000)
"1"="at+vls=9<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\SpeakerPhoneSetVolumeGain]
@DACL=(02 0000)
"1"="at+vgt=<vol><cr>"
"2"="at+vgr=<gain><cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\SpeakerPhoneUnMute]
@DACL=(02 0000)
"1"="at+vls=13<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\StartPlay]
@DACL=(02 0000)
"1"="at+vtx<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\StartRecord]
@DACL=(02 0000)
"1"="at+vrx<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\StopPlay]
@DACL=(02 0000)
"1"="None"
"2"="NoResponse"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\StopRecord]
@DACL=(02 0000)
"1"="None"
"2"="NoResponse"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\VoiceAnswer]
@DACL=(02 0000)
"1"="at+fclass=8<cr>"
"2"="at+vls=1<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\VoiceDialNumberSetup]
@DACL=(02 0000)
"1"="at+fclass=8<cr>"
"2"="at+vrn=7;+vra=0<cr>"
"3"="at+vtd=10<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\VoiceToDataAnswer]
@DACL=(02 0000)
"1"="at+fclass=0<cr>"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\WaveDriver]
@DACL=(02 0000)
"BaudRate"=hex:00,c2,01,00
"XformID"=hex:04,00
"WaveDevices"=hex:01,00
"XformModule"="umdmxfrm.dll"
"WaveHardwareID"="RockwellADPCMVoiceModemWave"
"WaveInstance"=dword:00000000
.
--------------------- DLLs Carregadas Sob os Processos em Execução ---------------------
.
- - - - - - - > 'explorer.exe'(416)
c:\windows\system32\WININET.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\arquivos de programas\Nero\Nero 7\Nero BackItUp\NBShell.dll
c:\arquivos de programas\Nero\Nero 7\Nero BackItUp\MSVCR71.dll
c:\arquivos de programas\Nero\Nero 7\InCD\InCDshx.dll
c:\arquivos de programas\BraZip\szShell.dll
c:\arquivos de programas\Microsoft Office\Office10\msohev.dll
c:\arquiv~1\MICROS~2\Office10\MCPS.DLL
c:\arquivos de programas\Microsoft Silverlight\xapauthenticodesip.dll
c:\arquivos de programas\Arquivos comuns\Adobe\Acrobat\ActiveX\PDFShell.dll
c:\arquivos de programas\Arquivos comuns\Adobe\Acrobat\ActiveX\PDFShell.PTB
.
Tempo para conclusão: 2011-07-22 16:51:55
ComboFix-quarantined-files.txt 2011-07-22 19:51
ComboFix2.txt 2011-07-22 14:21
.
Pré-execução: 53 pasta(s) 285.423.276.032 bytes disponíveis
Pós execução: 54 pasta(s) 285.523.611.648 bytes disponíveis
.
- - End Of File - - A143F8745954C7DF2E2DCE65EECC8440

BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,600 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:02 PM

Posted 02 August 2011 - 10:20 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you!

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

First, I need to know if you still need help! To tell me this, please click on http://www.bleepingcomputer.com/logreply/410725 and follow the instructions there. If you no longer need help, this is all you need to do. If you do need help please continue below.

***************************************************

If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS and GMER log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE


We also need a new log from the GMER anti-rootkit Scanner.

Please note that if you are running a 64-bit version of Windows you will not be able to run GMER and you may skip this step.

Please first disable any CD emulation programs using the steps found in this topic:

Why we request you disable CD Emulation when receiving Malware Removal Advice


Then create another GMER log and post it as an attachment to the reply where you post your new DDS log. Instructions on how to properly create a GMER log can be found here:

How to create a GMER log


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,600 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:02 PM

Posted 07 August 2011 - 10:25 AM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users