Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with TDSS & Google keeps redirecting


  • This topic is locked This topic is locked
38 replies to this topic

#1 kensama

kensama

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:12:15 PM

Posted 01 March 2012 - 05:45 PM

ComboFix 12-02-16.02 - ken 02/23/2012 19:31:10.17.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3037.2251 [GMT -8:00]
Running from: c:\documents and settings\ken.INSTITUTEOFGLOB\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\ken.INSTITUTEOFGLOB\Desktop\CFScript.txt
AV: AVG Anti-Virus Business Edition 2011 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: PC Cleaner Pro *Disabled/Updated* {737A8864-C2D9-4337-B49A-B5E35815B9BB}
AV: Trend Micro AntiVirus *Disabled/Updated* {7D2296BC-32CC-4519-917E-52E652474AF5}
.
- REDUCED FUNCTIONALITY MODE -
.
.
((((((((((((((((((((((((( Files Created from 2012-01-24 to 2012-02-24 )))))))))))))))))))))))))))))))
.
.
2012-02-23 22:27 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2012-02-23 22:27 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2012-02-23 22:27 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2012-02-23 22:27 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2012-02-23 22:27 . 2012-02-23 22:27 -------- d-----w- C:\383eb1c589e3871c87
2012-02-22 20:50 . 2012-02-22 20:50 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\SupportSoft
2012-02-16 02:40 . 2012-02-22 03:40 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2012-02-16 01:22 . 2012-02-16 01:22 -------- d-----w- c:\program files\Common Files\Java
2012-02-16 01:21 . 2012-02-16 01:21 73728 ----a-w- c:\windows\system32\javacpl.cpl
2012-02-16 01:21 . 2012-02-16 01:21 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-02-16 01:21 . 2012-02-16 01:21 -------- d-----w- c:\program files\Java
2012-02-16 01:02 . 2012-02-16 01:02 -------- d-----w- C:\_OTM
2012-02-11 00:38 . 2012-02-13 22:54 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}
2012-02-11 00:38 . 2012-02-11 00:38 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\PackageAware
2012-02-11 00:37 . 2012-02-11 00:37 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Funmoods
2012-02-11 00:33 . 2012-02-23 02:46 487 ----a-w- C:\user.js
2012-02-11 00:33 . 2012-02-11 00:33 -------- d-----w- c:\program files\BabylonToolbar
2012-02-11 00:33 . 2012-02-11 00:33 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\I Want This
2012-02-11 00:33 . 2012-02-11 00:33 -------- d-----w- c:\program files\I Want This
2012-02-11 00:33 . 2012-02-11 00:33 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon
2012-02-11 00:33 . 2012-02-11 00:33 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Babylon
2012-02-11 00:33 . 2012-02-11 00:33 -------- d-----w- c:\documents and settings\All Users\Application Data\Babylon
2012-02-10 23:21 . 2012-02-10 23:21 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Malwarebytes
2012-02-10 23:21 . 2012-02-10 23:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2012-02-10 23:11 . 2012-02-10 23:11 -------- d-----w- c:\documents and settings\ken\Local Settings\Application Data\Mozilla
2012-02-10 23:10 . 2012-02-10 23:10 -------- d-sh--w- c:\documents and settings\ken\IETldCache
2012-02-10 22:41 . 2012-02-10 22:41 -------- d-----w- c:\documents and settings\All Users\Application Data\0fe92a
2012-02-09 23:18 . 2012-02-10 00:45 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\PCPro
2012-02-09 23:18 . 2012-02-09 23:18 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\PC Cleaners
2012-02-09 23:18 . 2012-02-09 23:18 5279504 ----a-w- c:\windows\uninst.exe
2012-02-09 23:18 . 2012-02-09 23:18 -------- d-----w- c:\documents and settings\All Users\Application Data\PC1Data
2012-02-09 21:59 . 2012-02-09 21:59 -------- d-----w- c:\documents and settings\All Users\Application Data\RegAce
2012-02-09 21:58 . 2012-02-09 22:11 -------- d-----w- c:\windows\RegAce
2012-02-09 21:48 . 2012-02-09 21:48 -------- d-----w- c:\program files\Sophos
2012-02-09 21:20 . 2012-02-09 21:20 -------- d-----w- c:\program files\Common Files\Skype
2012-02-09 21:20 . 2012-02-09 21:20 -------- d-----r- c:\program files\Skype
2012-02-09 21:20 . 2012-02-09 21:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype
2012-02-09 18:41 . 2012-02-09 18:41 -------- d-----w- c:\program files\MSXML 4.0
2012-02-09 18:40 . 2012-02-09 18:43 -------- d-----w- c:\windows\ie8updates
2012-02-09 18:40 . 2012-02-09 18:40 -------- d-----w- c:\windows\ServicePackFiles
2012-02-09 18:30 . 2011-11-04 19:20 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2012-02-09 18:30 . 2011-11-04 19:20 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-02-09 18:30 . 2011-11-04 19:20 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2012-02-09 18:30 . 2011-11-04 19:20 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2012-02-09 18:30 . 2011-11-04 19:20 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2012-02-09 18:30 . 2011-11-04 19:20 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll
2012-02-09 18:30 . 2011-11-04 19:20 11081728 -c----w- c:\windows\system32\dllcache\ieframe.dll
2012-02-09 18:29 . 2011-06-24 14:10 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2012-02-09 18:29 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2012-02-09 18:28 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2012-02-09 18:26 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2012-02-09 18:26 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2012-02-09 18:25 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2012-02-09 18:25 . 2011-02-08 13:33 978944 -c----w- c:\windows\system32\dllcache\mfc42.dll
2012-02-09 18:25 . 2010-09-18 06:53 954368 -c----w- c:\windows\system32\dllcache\mfc40.dll
2012-02-09 18:25 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2012-02-09 18:25 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2012-02-09 18:24 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2012-02-09 18:24 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2012-02-09 18:22 . 2010-08-27 08:02 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2012-02-09 18:22 . 2009-10-15 16:28 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2012-02-09 18:21 . 2009-06-21 21:44 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2012-02-09 18:18 . 2011-02-17 12:32 5120 ----a-w- c:\windows\system32\xpsp4res.dll
2012-02-09 18:18 . 2010-07-12 12:55 218112 -c----w- c:\windows\system32\dllcache\wordpad.exe
2012-02-09 18:16 . 2009-08-07 03:24 21728 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-02-09 18:16 . 2009-08-07 03:24 17632 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-02-09 18:16 . 2009-08-07 03:24 15072 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-02-09 18:16 . 2009-08-07 03:24 15064 ----a-w- c:\windows\system32\wuapi.dll.mui
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-30 20:53 . 2011-06-02 17:35 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-02-22_20.31.50 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-02-24 01:07 . 2012-02-24 01:07 16384 c:\windows\Temp\Perflib_Perfdata_1b0.dat
+ 2008-07-30 05:10 . 2008-07-30 05:10 26112 c:\windows\system32\TsWpfWrp.exe
+ 2008-04-25 21:38 . 2008-07-06 12:06 89088 c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
+ 2008-07-30 03:59 . 2008-07-30 03:59 43544 c:\windows\system32\PresentationHostProxy.dll
+ 2008-04-25 16:16 . 2012-02-23 22:30 79834 c:\windows\system32\perfc009.dat
+ 2008-07-25 19:16 . 2008-07-25 19:16 83968 c:\windows\system32\mscories.dll
+ 2008-07-30 03:24 . 2008-07-30 03:24 97800 c:\windows\system32\infocardapi.dll
+ 2008-07-30 03:24 . 2008-07-30 03:24 11264 c:\windows\system32\icardres.dll
+ 2008-07-30 05:10 . 2008-07-30 05:10 73720 c:\windows\system32\dxva2.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 96760 c:\windows\system32\dfshim.dll
+ 2008-07-30 07:40 . 2008-07-30 07:40 70648 c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
+ 2008-07-30 07:40 . 2008-07-30 07:40 91136 c:\windows\Microsoft.NET\Framework\v3.5\MSBuild.exe
+ 2008-07-30 07:40 . 2008-07-30 07:40 41984 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft.VisualC.STLCLR.dll
+ 2008-07-30 07:40 . 2008-07-30 07:40 40960 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft.Data.Entity.Build.Tasks.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 89080 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.2052.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 92664 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1042.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 95224 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1041.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 89592 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1028.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 84480 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.2052.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 94720 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1042.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 97792 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1041.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 84992 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1028.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 97280 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\DeleteTemp.exe
+ 2008-07-30 07:40 . 2008-07-30 07:40 95224 c:\windows\Microsoft.NET\Framework\v3.5\EdmGen.exe
+ 2008-07-30 07:40 . 2008-07-30 07:40 78856 c:\windows\Microsoft.NET\Framework\v3.5\DataSvcUtil.exe
+ 2008-07-30 07:40 . 2008-07-30 07:40 41984 c:\windows\Microsoft.NET\Framework\v3.5\AddInUtil.exe
+ 2008-07-30 07:40 . 2008-07-30 07:40 41992 c:\windows\Microsoft.NET\Framework\v3.5\AddInProcess32.exe
+ 2008-07-30 07:40 . 2008-07-30 07:40 41992 c:\windows\Microsoft.NET\Framework\v3.5\AddInProcess.exe
+ 2008-07-30 05:10 . 2008-07-30 05:10 46104 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
+ 2008-07-30 03:59 . 2008-07-30 03:59 32768 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationCFFRasterizer.dll
- 2006-10-21 09:21 . 2006-10-21 09:21 32768 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationCFFRasterizer.dll
+ 2008-07-30 05:10 . 2008-07-30 05:10 71160 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PenIMC.dll
+ 2008-07-30 03:32 . 2008-07-30 03:32 17448 c:\windows\Microsoft.NET\Framework\v3.0\Windows Workflow Foundation\PerformanceCounterInstaller.exe
+ 2008-07-30 03:16 . 2008-07-30 03:16 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll
+ 2008-07-30 03:16 . 2008-07-30 03:16 73728 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.Install.dll
+ 2008-07-30 03:16 . 2008-07-30 03:16 20504 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceMonikerSupport.dll
+ 2008-07-30 03:16 . 2008-07-30 03:16 11280 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelEvents.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 37896 c:\windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 81400 c:\windows\Microsoft.NET\Framework\v2.0.50727\TLBREF.DLL
+ 2008-07-25 19:17 . 2008-07-25 19:17 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.RegularExpressions.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 57392 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Thunk.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.Design.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.Design.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Configuration.Install.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Configuration.Install.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 95232 c:\windows\Microsoft.NET\Framework\v2.0.50727\ShFusRes.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 16896 c:\windows\Microsoft.NET\Framework\v2.0.50727\sbscmp20_mscorlib.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 61952 c:\windows\Microsoft.NET\Framework\v2.0.50727\regtlibv12.exe
+ 2008-07-25 19:17 . 2008-07-25 19:17 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
- 2005-09-23 19:28 . 2005-09-23 19:28 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
+ 2008-07-25 19:17 . 2008-07-25 19:17 53248 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
- 2005-09-23 19:28 . 2005-09-23 19:28 53248 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
+ 2008-07-25 19:17 . 2008-07-25 19:17 88584 c:\windows\Microsoft.NET\Framework\v2.0.50727\PerfCounter.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 24584 c:\windows\Microsoft.NET\Framework\v2.0.50727\normalization.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 31744 c:\windows\Microsoft.NET\Framework\v2.0.50727\MUI\0409\mscorsecr.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 19456 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscortim.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
+ 2008-07-25 19:16 . 2008-07-25 19:16 18944 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsn.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 77312 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 94208 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorld.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 46592 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorie.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 83456 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbc.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe
- 2005-09-23 19:28 . 2005-09-23 19:28 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe
+ 2008-07-25 19:16 . 2008-07-25 19:16 97792 c:\windows\Microsoft.NET\Framework\v2.0.50727\MmcAspExt.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 12800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 12800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Vsa.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Vsa.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Utilities.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Framework.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Framework.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\jsc.exe
- 2005-09-23 19:28 . 2005-09-23 19:28 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\jsc.exe
- 2005-09-23 19:28 . 2005-09-23 19:28 72192 c:\windows\Microsoft.NET\Framework\v2.0.50727\ISymWrapper.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 72192 c:\windows\Microsoft.NET\Framework\v2.0.50727\ISymWrapper.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 65032 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtilLib.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
- 2005-09-23 19:28 . 2005-09-23 19:28 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
+ 2008-07-25 19:17 . 2008-07-25 19:17 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEHost.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 18936 c:\windows\Microsoft.NET\Framework\v2.0.50727\fusion.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 62968 c:\windows\Microsoft.NET\Framework\v2.0.50727\dfdll.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 35320 c:\windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
+ 2008-07-25 19:17 . 2008-07-25 19:17 69120 c:\windows\Microsoft.NET\Framework\v2.0.50727\CustomMarshalers.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 27136 c:\windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 13312 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscompmgd.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 13312 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscompmgd.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 80376 c:\windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
+ 2008-07-25 19:17 . 2008-07-25 19:17 89608 c:\windows\Microsoft.NET\Framework\v2.0.50727\CORPerfMonExt.dll
+ 2008-11-25 12:59 . 2008-11-25 12:59 31560 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
+ 2008-07-25 19:16 . 2008-07-25 19:16 34312 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
+ 2008-07-25 19:16 . 2008-07-25 19:16 33288 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe
+ 2008-07-25 19:16 . 2008-07-25 19:16 24576 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regbrowsers.exe
+ 2008-07-25 19:16 . 2008-07-25 19:16 84480 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_rc.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 33800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 17416 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 22024 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_filter.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe
- 2005-09-23 19:28 . 2005-09-23 19:28 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe
+ 2008-07-25 19:17 . 2008-07-25 19:17 58880 c:\windows\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
+ 2008-07-25 19:16 . 2008-07-25 19:16 98808 c:\windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 10752 c:\windows\Microsoft.NET\Framework\v2.0.50727\Accessibility.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 10752 c:\windows\Microsoft.NET\Framework\v2.0.50727\Accessibility.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 13824 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\CvtResUI.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\alinkui.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 96768 c:\windows\Microsoft.NET\Framework\v1.0.3705\mscormmc.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 16896 c:\windows\Microsoft.NET\Framework\SharedReg12.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 16896 c:\windows\Microsoft.NET\Framework\sbscmp20_perfcounter.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 16896 c:\windows\Microsoft.NET\Framework\sbscmp20_mscorwks.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 16896 c:\windows\Microsoft.NET\Framework\sbscmp10.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 82944 c:\windows\Microsoft.NET\Framework\NETFXSBS10.exe
+ 2008-07-30 05:07 . 2008-07-30 05:07 23040 c:\windows\Installer\f038dd.msp
+ 2012-02-23 22:26 . 2012-02-23 22:26 88576 c:\windows\Installer\ee4fa5.msi
+ 2012-02-23 22:27 . 2008-07-06 12:06 89088 c:\windows\Driver Cache\i386\filterpipelineprintproc.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 47616 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLiveWriter\bfad9f5deabd8b909190a48b1e9fa742\WindowsLiveWriter.ni.exe
+ 2012-02-23 23:30 . 2012-02-23 23:30 99840 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\4579c63ce2413da56074f4fe08b81a08\WindowsLive.Writer.Api.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\a715aa442ef87ae99b3ade185599249d\UIAutomationProvider.ni.dll
+ 2012-02-23 23:32 . 2012-02-23 23:32 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\423f794d1f4ed6e120fbb02e436491cb\System.Windows.Presentation.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\19ca1747c1ea18a3b639b302bca8df93\System.Web.DynamicData.Design.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\532438e2acfcadc469a4d468c51f8451\System.ComponentModel.DataAnnotations.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\597b20e1b053d6a510cfe033c07a63e6\System.AddIn.Contract.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\2d7408a0232f2e2efd0d7adf5dfa733a\PresentationFontCache.ni.exe
+ 2012-02-23 22:31 . 2012-02-23 22:31 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\c8fd2d9233f8ea3031fb16f697635231\PresentationCFFRasterizer.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\790cf1edb17ee41b59be62ecbd59613b\Microsoft.Vsa.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 15872 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualC\ec83ec80653eb20ccc6ed42075c90aee\Microsoft.VisualC.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\e9aba2eab90d647356f65e66053da02b\Microsoft.Build.Framework.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\28343d470d992f169ca0e7cdb3cc3117\Microsoft.Build.Framework.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\f4e38208e88cb4cc314a1d6543b9fcc6\dfsvc.ni.exe
+ 2012-02-23 22:31 . 2012-02-23 22:31 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\11eb4f6606ba01e5128805759121ea6c\Accessibility.ni.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 94208 c:\windows\assembly\GAC_MSIL\WindowsFormsIntegration\3.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 98304 c:\windows\assembly\GAC_MSIL\UIAutomationTypes\3.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 40960 c:\windows\assembly\GAC_MSIL\UIAutomationProvider\3.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 12288 c:\windows\assembly\GAC_MSIL\System.Windows.Presentation\3.5.0.0__b77a5c561934e089\System.Windows.Presentation.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 61440 c:\windows\assembly\GAC_MSIL\System.Web.Routing\3.5.0.0__31bf3856ad364e35\System.Web.Routing.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 32768 c:\windows\assembly\GAC_MSIL\System.Web.DynamicData.Design\3.5.0.0__31bf3856ad364e35\System.Web.DynamicData.Design.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 77824 c:\windows\assembly\GAC_MSIL\System.Web.Abstractions\3.5.0.0__31bf3856ad364e35\System.Web.Abstractions.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 32768 c:\windows\assembly\GAC_MSIL\System.ServiceModel.WasHosting\3.0.0.0__b77a5c561934e089\System.ServiceModel.WasHosting.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 73728 c:\windows\assembly\GAC_MSIL\System.ServiceModel.Install\3.0.0.0__b77a5c561934e089\System.ServiceModel.Install.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 53248 c:\windows\assembly\GAC_MSIL\System.Data.DataSetExtensions\3.5.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 57344 c:\windows\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\3.5.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 45056 c:\windows\assembly\GAC_MSIL\System.AddIn.Contract\2.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 46104 c:\windows\assembly\GAC_MSIL\PresentationFontCache\3.0.0.0__31bf3856ad364e35\PresentationFontCache.exe
- 2008-04-25 21:39 . 2008-04-25 21:39 32768 c:\windows\assembly\GAC_MSIL\PresentationCFFRasterizer\3.0.0.0__31bf3856ad364e35\PresentationCFFRasterizer.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 32768 c:\windows\assembly\GAC_MSIL\PresentationCFFRasterizer\3.0.0.0__31bf3856ad364e35\PresentationCFFRasterizer.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 41984 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC.STLCLR\1.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.STLCLR.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 94208 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.v3.5.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2008-04-25 21:37 . 2008-04-25 21:37 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2008-07-30 07:40 . 2008-07-30 07:40 5632 c:\windows\Microsoft.NET\Framework\v3.5\Sentinel.v3.5Client.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 7168 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft_VsaVb.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 7168 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft_VsaVb.dll
- 2005-09-23 19:29 . 2005-09-23 19:29 5632 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualC.Dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 5632 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualC.Dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 6656 c:\windows\Microsoft.NET\Framework\v2.0.50727\IIEHost.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 8192 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExecRemote.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 8192 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExecRemote.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 9728 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExec.exe
- 2005-09-23 19:28 . 2005-09-23 19:28 9728 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExec.exe
+ 2008-07-25 19:16 . 2008-07-25 19:16 5120 c:\windows\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe
+ 2012-02-23 22:28 . 2012-02-23 22:28 5632 c:\windows\assembly\GAC_MSIL\Sentinel.v3.5Client\3.5.0.0__b03f5f7f11d50a3a\Sentinel.v3.5Client.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2008-04-25 21:37 . 2008-04-25 21:37 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
- 2008-04-25 21:37 . 2008-04-25 21:37 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 635904 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 558080 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcp80.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcm80.dll
+ 2008-07-30 05:26 . 2008-07-30 05:26 301568 c:\windows\system32\XPSViewer\XPSViewer.exe
+ 2006-10-15 08:21 . 2008-07-06 12:06 575488 c:\windows\system32\xpsshhdr.dll
+ 2008-04-25 21:38 . 2008-07-06 12:06 765440 c:\windows\system32\spool\XPSEP\i386\mxdwdrv.dll
+ 2008-04-25 21:38 . 2008-07-06 12:06 765440 c:\windows\system32\spool\XPSEP\i386\i386\mxdwdrv.dll
+ 2008-04-25 21:38 . 2008-07-06 12:06 748032 c:\windows\system32\spool\XPSEP\amd64\mxdwdrv.dll
+ 2008-04-25 21:38 . 2008-07-06 12:06 748032 c:\windows\system32\spool\XPSEP\amd64\amd64\mxdwdrv.dll
+ 2008-04-25 21:38 . 2008-07-06 12:06 147456 c:\windows\system32\spool\prtprocs\x64\filterpipelineprintproc.dll
+ 2006-10-15 04:44 . 2008-07-06 10:50 597504 c:\windows\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
+ 2006-10-15 04:40 . 2008-03-13 04:52 761344 c:\windows\system32\spool\drivers\w32x86\3\unires.dll
- 2006-10-15 04:40 . 2007-05-15 21:38 761344 c:\windows\system32\spool\drivers\w32x86\3\UNIRES.DLL
+ 2006-10-15 04:42 . 2008-07-06 12:06 744960 c:\windows\system32\spool\drivers\w32x86\3\unidrvui.dll
+ 2006-10-15 04:42 . 2008-07-06 12:06 373248 c:\windows\system32\spool\drivers\w32x86\3\unidrv.dll
- 2006-10-15 04:42 . 2008-04-14 13:42 373248 c:\windows\system32\spool\drivers\w32x86\3\UNIDRV.DLL
+ 2006-10-15 04:42 . 2008-07-06 12:06 198656 c:\windows\system32\spool\drivers\w32x86\3\mxdwdui.dll
+ 2006-10-15 04:43 . 2008-07-06 12:06 765440 c:\windows\system32\spool\drivers\w32x86\3\mxdwdrv.dll
+ 2006-10-15 04:43 . 2008-07-06 12:06 117760 c:\windows\system32\prntvpt.dll
+ 2008-07-30 03:59 . 2008-07-30 03:59 781344 c:\windows\system32\PresentationNative_v0300.dll
+ 2008-07-30 04:35 . 2008-07-30 04:35 326160 c:\windows\system32\PresentationHost.exe
+ 2008-07-30 03:59 . 2008-07-30 03:59 105016 c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
+ 2008-04-25 16:16 . 2012-02-23 22:30 466744 c:\windows\system32\perfh009.dat
+ 2008-07-25 19:16 . 2008-07-25 19:16 158720 c:\windows\system32\mscorier.dll
+ 2008-07-30 03:24 . 2008-07-30 03:24 622080 c:\windows\system32\icardagt.exe
+ 2008-04-25 09:21 . 2012-02-23 22:56 290088 c:\windows\system32\FNTCACHE.DAT
- 2008-04-25 09:21 . 2012-02-09 20:23 290088 c:\windows\system32\FNTCACHE.DAT
+ 2008-07-30 05:10 . 2008-07-30 05:10 493048 c:\windows\system32\evr.dll
+ 2008-07-30 07:40 . 2008-07-30 07:40 196104 c:\windows\Microsoft.NET\Framework\v3.5\WFServicesReg.exe
+ 2008-07-30 07:40 . 2008-07-30 07:40 802816 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft.Build.Tasks.v3.5.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 984056 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapUI.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 107512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 111096 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.3082.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 110072 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.2070.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 106488 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1055.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 105976 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1053.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 107000 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1049.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 107512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1046.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 109048 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1045.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 106488 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1044.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 108536 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1043.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 110072 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1040.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 111096 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1038.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 101368 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1037.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 112120 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1036.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 106488 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1035.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 113656 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1032.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 111608 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1031.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 108536 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1030.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 108536 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1029.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 102904 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1025.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 689152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vsscenario.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 413184 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vsbasereqs.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 632320 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs70uimgr.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 652800 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs_setup.msi
+ 2008-07-30 02:47 . 2008-07-30 02:47 110080 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 131584 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.3082.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 131072 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.2070.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 121344 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1055.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 121344 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1053.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 123904 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1049.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 122880 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1046.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 128512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1045.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 121856 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1044.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 129024 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1043.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 128512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1040.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 132096 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1038.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 111104 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1037.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 133120 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1036.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 122368 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1035.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 137728 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1032.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 130048 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1031.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 126464 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1030.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 125440 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1029.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 113152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1025.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 269304 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
+ 2008-07-30 02:47 . 2008-07-30 02:47 177152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\HtmlLite.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 276984 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\dlmgr.dll
+ 2008-07-30 07:15 . 2008-07-30 07:15 225490 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\baseline.dat
+ 2008-07-30 07:40 . 2008-07-30 07:40 233976 c:\windows\Microsoft.NET\Framework\v3.5\1033\vbc7ui.dll
+ 2008-07-30 07:40 . 2008-07-30 07:40 168448 c:\windows\Microsoft.NET\Framework\v3.5\1033\cscompui.dll
+ 2008-07-30 04:35 . 2008-07-30 04:35 864256 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationUI.dll
+ 2008-07-30 03:59 . 2008-07-30 03:59 132120 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationHostDLL.dll
+ 2008-07-30 03:16 . 2008-07-30 03:16 152576 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\WsatConfig.exe
+ 2008-07-30 03:16 . 2008-07-30 03:16 966656 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
+ 2008-07-30 03:16 . 2008-07-30 03:16 132096 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
+ 2008-07-30 03:16 . 2008-07-30 03:16 110592 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMdiagnostics.dll
+ 2008-07-30 03:16 . 2008-07-30 03:16 156688 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelReg.exe
+ 2008-07-30 03:16 . 2008-07-30 03:16 163840 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\Microsoft.Transactions.Bridge.Dtc.dll
+ 2008-07-30 03:16 . 2008-07-30 03:16 397312 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\Microsoft.Transactions.Bridge.dll
+ 2008-07-30 03:24 . 2008-07-30 03:24 881664 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
+ 2008-07-30 03:16 . 2008-07-30 03:16 168968 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ComSvcConfig.exe
+ 2008-11-25 12:59 . 2008-11-25 12:59 436040 c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 839680 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Services.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 835584 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Mobile.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 835584 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Mobile.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 261632 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Transactions.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 114688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.ServiceProcess.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 114688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.ServiceProcess.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 131072 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 131072 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 303104 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Remoting.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Messaging.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Messaging.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Management.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 113664 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Wrapper.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 626688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 188416 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.Protocols.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 188416 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.Protocols.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 401408 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 970752 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Deployment.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 745472 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.SqlXml.dll
+ 2008-11-25 12:59 . 2008-11-25 12:59 486400 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.OracleClient.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 425984 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.configuration.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\sysglobl.dll
- 2005-09-23 19:28 . 2005-09-23 19:28 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\sysglobl.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 392184 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 118784 c:\windows\Microsoft.NET\Framework\v2.0.50727\shfusion.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 143360 c:\windows\Microsoft.NET\Framework\v2.0.50727\peverify.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 100856 c:\windows\Microsoft.NET\Framework\v2.0.50727\ngen.exe
+ 2008-07-25 19:17 . 2008-07-25 19:17 230912 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvc.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 345600 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorrc.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 114176 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
+ 2008-11-25 12:59 . 2008-11-25 12:59 364872 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 308224 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbi.dll
+ 2008-11-25 12:59 . 2008-11-25 12:59 990032 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 659456 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.dll
- 2005-09-23 19:29 . 2005-09-23 19:29 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.dll
- 2005-09-23 19:29 . 2005-09-23 19:29 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 749568 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.JScript.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 655360 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Tasks.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 348160 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Engine.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 230904 c:\windows\Microsoft.NET\Framework\v2.0.50727\ilasm.exe
+ 2008-07-25 19:17 . 2008-07-25 19:17 798224 c:\windows\Microsoft.NET\Framework\v2.0.50727\EventLogMessages.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 575496 c:\windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
- 2005-09-23 19:28 . 2005-09-23 19:28 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
+ 2008-07-25 19:16 . 2008-07-25 19:16 507904 c:\windows\Microsoft.NET\Framework\v2.0.50727\AspNetMMCExt.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regsql.exe
- 2005-09-23 19:28 . 2005-09-23 19:28 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regsql.exe
+ 2008-07-25 19:17 . 2008-07-25 19:17 147968 c:\windows\Microsoft.NET\Framework\v2.0.50727\AdoNetDiag.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 218112 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\Vsavb7rtUI.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 193016 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\vbc7ui.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 145408 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\cscompui.dll
+ 2008-12-13 17:58 . 2008-12-13 17:58 754688 c:\windows\Installer\f0de35.msp
+ 2012-02-23 22:28 . 2012-02-23 22:28 648192 c:\windows\Installer\f0de12.msi
+ 2008-07-30 05:23 . 2008-07-30 05:23 250880 c:\windows\Installer\f038e6.msp
+ 2008-07-30 05:28 . 2008-07-30 05:28 278016 c:\windows\Installer\f038e4.msp
+ 2008-07-30 03:40 . 2008-07-30 03:40 291840 c:\windows\Installer\f038e2.msp
+ 2012-02-23 22:28 . 2012-02-23 22:28 137728 c:\windows\Installer\f038dc.msi
+ 2008-07-30 01:35 . 2008-07-30 01:35 553472 c:\windows\Installer\ee4faa.msp
+ 2008-07-30 01:33 . 2008-07-30 01:33 506368 c:\windows\Installer\ee4fa8.msp
+ 2008-07-30 01:37 . 2008-07-30 01:37 911360 c:\windows\Installer\ee4fa7.msp
+ 2012-02-23 22:27 . 2008-03-13 04:52 761344 c:\windows\Driver Cache\i386\unires.dll
+ 2012-02-23 22:27 . 2008-07-06 12:06 744960 c:\windows\Driver Cache\i386\unidrvui.dll
+ 2012-02-23 22:27 . 2008-07-06 12:06 373248 c:\windows\Driver Cache\i386\unidrv.dll
+ 2012-02-23 22:27 . 2008-07-06 12:06 198656 c:\windows\Driver Cache\i386\mxdwdui.dll
+ 2012-02-23 22:27 . 2008-07-06 12:06 765440 c:\windows\Driver Cache\i386\mxdwdrv.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\2ef5bc3a2edd7570bb23886a4f32294a\WsatConfig.ni.exe
+ 2012-02-23 23:30 . 2012-02-23 23:30 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLiveLocal.Wr#\2fdea9e284d3556cc136d84da2e2a1f1\WindowsLiveLocal.WriterPlugin.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 118784 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\e49be4b9f9c7bc60d54351ba1c0ebf79\WindowsLive.Writer.Extensibility.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 319488 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\d4f0aaf1906c33734220a6880ac2defa\WindowsLive.Writer.Interop.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 322048 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\d0d9f3022b22c6e7fb2dc7a5bbc8a028\WindowsLive.Writer.SpellChecker.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\c9b2e369443625c456a70401198c6132\WindowsLive.Writer.Mshtml.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 594944 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\c7fc6e7adabb89419e8eb0b07515b886\WindowsLive.Writer.HtmlEditor.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 851968 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\c4fdca0dacc4febe5f7e9fd6d199b9c3\WindowsLive.Writer.BlogClient.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 152064 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\b99838da7492ea7268809deb4891e14d\WindowsLive.Writer.HtmlParser.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 843776 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\8be12d7b5a55a0f1f9ce1cb18f7edd32\WindowsLive.Writer.Controls.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 174080 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\71e1a2040f2329a1cb9ae82faaaf88eb\WindowsLive.Writer.BrowserControl.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 313856 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\681ad822aa7295018c1b9f96ad372ee0\WindowsLive.Writer.Interop.SHDocVw.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 334848 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\5314564aaa71ce63df6997ae6f80642a\WindowsLive.Writer.Interop.Mshtml.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 108544 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\4172c829af224bbf74f01141ef8afa55\WindowsLive.Writer.Passport.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 428032 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\36125da11b4bf5a1795fbbc2ed5986f3\WindowsLive.Writer.Localization.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 117760 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\2a3d9e5a58523a27d90cccf04056773b\WindowsLive.Writer.Instrumentation.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 119296 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\034e5881298e73d1daa767f19af4fe3a\WindowsLive.Writer.FileDestinations.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 145920 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Client\a2730a0c40843cd41dd7a950a941f963\WindowsLive.Client.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\6a818099f0386e2356ae94f886a2196f\WindowsFormsIntegration.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\a6d9503962d47c722231c1478f180695\UIAutomationTypes.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\5c028c3d8db6c0f0277673ea4a2d89fb\UIAutomationClient.ni.dll
+ 2012-02-23 23:32 . 2012-02-23 23:32 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\c338a470b14851ce5987bb0f0869c310\System.Xml.Linq.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\bb77ea11f46ab438b2b7ed7c180011a1\System.Web.Routing.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\6ee255220d90dcbe80c990e443051cc5\System.Web.RegularExpressions.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\58f62044fa702ea6f936071aa5520baa\System.Web.Extensions.Design.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\79c29ac85dd57dd485ab60118ac292ff\System.Web.Entity.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\d3d65e34fa60f0b6c72ca0d12ec89933\System.Web.Entity.Design.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\b7891f5659db299dbd1b3c72db7edb9f\System.Web.DynamicData.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\00ec08741a765c707bd9169346064a81\System.Web.Abstractions.ni.dll
+ 2012-02-23 22:32 . 2012-02-23 22:32 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\5a555c9ae6984c40157cf940bb519f7c\System.Transactions.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\ea3366939280c1715f1c620e33ee3c8a\System.ServiceProcess.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 676352 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\1c8df2da33222c048d683017f2095f04\System.Security.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\bfd6e16d8c3589cd2bd3f8d46f0a5402\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2012-02-23 22:32 . 2012-02-23 22:32 771584 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\2abd876a3c8a6b088fa6d8d39d901e3c\System.Runtime.Remoting.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\519d9c618341b136f9b963ffb7495308\System.Net.ni.dll
+ 2012-02-23 23:32 . 2012-02-23 23:32 593408 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Messaging\f48e3419fb2cb012fd160ae801600ae7\System.Messaging.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\8642fdfbf02a6cb6f01169fe6fdb5d11\System.Management.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\1d3fbbd23ce1e8637ef4f40a8d23cd32\System.Management.Instrumentation.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\7c367a96b10d626ec8cbf8149272d845\System.IO.Log.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\68e71147704ef0d34d9a4bece7767fc5\System.IdentityModel.Selectors.ni.dll
+ 2012-02-23 22:32 . 2012-02-23 22:32 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\4267bd908175603006c6c90bb5d900c7\System.EnterpriseServices.Wrapper.dll
+ 2012-02-23 22:32 . 2012-02-23 22:32 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\4267bd908175603006c6c90bb5d900c7\System.EnterpriseServices.ni.dll
+ 2012-02-23 22:32 . 2012-02-23 22:32 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\18bbe2b6717e7f1d1dd672526e9889ee\System.Drawing.Design.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\c434a07332ce490711c27fd0edb7562f\System.DirectoryServices.Protocols.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\8b3bb7a2c2f3ffe94c866283f1cd5957\System.DirectoryServices.AccountManagement.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\a4b887f476fa4b8746a93a9fc2208560\System.Data.Services.Client.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\1cf3acad6553d6c59df576794f4e8bd6\System.Data.Services.Design.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\392de34573f9f8ec885714f2f3e7f07f\System.Data.Entity.Design.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\1db495ff00bbd14df4af6680c4de0653\System.Data.DataSetExtensions.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\b82c00e2d24305ad6cb08556e3779b75\System.Configuration.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\de514e484e49b04b016949d57ffac03e\System.Configuration.Install.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\ce984d754e3c0b6be4504b785cc43574\System.AddIn.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 232448 c:\windows\assembly\NativeImages_v2.0.50727_32\sysglobl\45067d0793a09d3431d26bfa55c5a76a\sysglobl.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\045dd501b7257b1cc26083538ae69045\SMSvcHost.ni.exe
+ 2012-02-23 23:30 . 2012-02-23 23:30 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\9790551187e294b4ed3aaa1c221891c7\SMDiagnostics.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\10a0c9707876fc1f65e64b811a28b020\ServiceModelReg.ni.exe
+ 2012-02-23 22:35 . 2012-02-23 22:35 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\f475294d8c7dc2dd4febeef27bc0417e\PresentationFramework.Classic.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8003abaf6bcf70f7eb620d06837e897b\PresentationFramework.Luna.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\59a67874d8d8475faa5be1d993083d12\PresentationFramework.Aero.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\2c980c9a5051d723c6ec2a78a3d0e2b3\PresentationFramework.Royale.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\6d38e317128608bc4516ea46ab94590e\MSBuild.ni.exe
+ 2012-02-23 23:30 . 2012-02-23 23:30 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\1820d6a012fc0e16c3e1d29d973cd2d0\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\55b9eff9e23359faed4351386c062238\Microsoft.Build.Utilities.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\4217124db1ea5de5f1a1f3eea75e8d32\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\96825c34d7e1f7df1923ff2123bed8da\Microsoft.Build.Engine.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\9b321ebf67587237f576df6104a32588\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\9bea05938bee3555c5aa8763d89a68f9\CustomMarshalers.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\12629e2f3e315459bee67cbbaac85cb2\ComSvcConfig.ni.exe
+ 2012-02-23 23:30 . 2012-02-23 23:30 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\b5b2feadc3943e3976daebc0bcd2b5e2\AspNetMMCExt.ni.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 385024 c:\windows\assembly\GAC_MSIL\UIAutomationClientsideProviders\3.0.0.0__31bf3856ad364e35\UIAutomationClientsideProviders.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 167936 c:\windows\assembly\GAC_MSIL\UIAutomationClient\3.0.0.0__31bf3856ad364e35\UIAutomationClient.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 139264 c:\windows\assembly\GAC_MSIL\System.Xml.Linq\3.5.0.0__b77a5c561934e089\System.Xml.Linq.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 507904 c:\windows\assembly\GAC_MSIL\System.WorkflowServices\3.5.0.0__31bf3856ad364e35\System.WorkflowServices.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 540672 c:\windows\assembly\GAC_MSIL\System.Workflow.Runtime\3.0.0.0__31bf3856ad364e35\System.Workflow.Runtime.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2008-04-25 21:37 . 2008-04-25 21:37 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 335872 c:\windows\assembly\GAC_MSIL\System.Web.Extensions.Design\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.Design.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 139264 c:\windows\assembly\GAC_MSIL\System.Web.Entity\3.5.0.0__b77a5c561934e089\System.Web.Entity.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 131072 c:\windows\assembly\GAC_MSIL\System.Web.Entity.Design\3.5.0.0__b77a5c561934e089\System.Web.Entity.Design.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 229376 c:\windows\assembly\GAC_MSIL\System.Web.DynamicData\3.5.0.0__31bf3856ad364e35\System.Web.DynamicData.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 688128 c:\windows\assembly\GAC_MSIL\System.Speech\3.0.0.0__31bf3856ad364e35\System.Speech.dll
- 2008-04-25 21:39 . 2008-04-25 21:39 688128 c:\windows\assembly\GAC_MSIL\System.Speech\3.0.0.0__31bf3856ad364e35\System.Speech.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 569344 c:\windows\assembly\GAC_MSIL\System.ServiceModel.Web\3.5.0.0__31bf3856ad364e35\System.ServiceModel.Web.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 966656 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2008-04-25 21:37 . 2008-04-25 21:37 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 233472 c:\windows\assembly\GAC_MSIL\System.Net\3.5.0.0__b03f5f7f11d50a3a\System.Net.dll
- 2008-04-25 21:37 . 2008-04-25 21:37 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 143360 c:\windows\assembly\GAC_MSIL\System.Management.Instrumentation\3.5.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
- 2008-04-25 21:39 . 2008-04-25 21:39 131072 c:\windows\assembly\GAC_MSIL\System.IO.Log\3.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 131072 c:\windows\assembly\GAC_MSIL\System.IO.Log\3.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 430080 c:\windows\assembly\GAC_MSIL\System.IdentityModel\3.0.0.0__b77a5c561934e089\System.IdentityModel.dll
- 2008-04-25 21:39 . 2008-04-25 21:39 126976 c:\windows\assembly\GAC_MSIL\System.IdentityModel.Selectors\3.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 126976 c:\windows\assembly\GAC_MSIL\System.IdentityModel.Selectors\3.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 286720 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\3.5.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 442368 c:\windows\assembly\GAC_MSIL\System.Data.Services\3.5.0.0__b77a5c561934e089\System.Data.Services.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 114688 c:\windows\assembly\GAC_MSIL\System.Data.Services.Design\3.5.0.0__b77a5c561934e089\System.Data.Services.Design.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 294912 c:\windows\assembly\GAC_MSIL\System.Data.Services.Client\3.5.0.0__b77a5c561934e089\System.Data.Services.Client.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 684032 c:\windows\assembly\GAC_MSIL\System.Data.Linq\3.5.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 229376 c:\windows\assembly\GAC_MSIL\System.Data.Entity.Design\3.5.0.0__b77a5c561934e089\System.Data.Entity.Design.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 667648 c:\windows\assembly\GAC_MSIL\System.Core\3.5.0.0__b77a5c561934e089\System.Core.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 163840 c:\windows\assembly\GAC_MSIL\System.AddIn\3.5.0.0__b77a5c561934e089\System.AddIn.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2008-04-25 21:37 . 2008-04-25 21:37 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 110592 c:\windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMdiagnostics.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 528384 c:\windows\assembly\GAC_MSIL\ReachFramework\3.0.0.0__31bf3856ad364e35\ReachFramework.dll
- 2008-04-25 21:39 . 2008-04-25 21:39 528384 c:\windows\assembly\GAC_MSIL\ReachFramework\3.0.0.0__31bf3856ad364e35\ReachFramework.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 864256 c:\windows\assembly\GAC_MSIL\PresentationUI\3.0.0.0__31bf3856ad364e35\PresentationUI.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 163840 c:\windows\assembly\GAC_MSIL\PresentationFramework.Royale\3.0.0.0__31bf3856ad364e35\PresentationFramework.Royale.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 397312 c:\windows\assembly\GAC_MSIL\PresentationFramework.Luna\3.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 139264 c:\windows\assembly\GAC_MSIL\PresentationFramework.Classic\3.0.0.0__31bf3856ad364e35\PresentationFramework.Classic.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 196608 c:\windows\assembly\GAC_MSIL\PresentationFramework.Aero\3.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 598016 c:\windows\assembly\GAC_MSIL\PresentationBuildTasks\3.0.0.0__31bf3856ad364e35\PresentationBuildTasks.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2008-04-25 21:37 . 2008-04-25 21:37 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2008-04-25 21:37 . 2008-04-25 21:37 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 397312 c:\windows\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 802816 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.v3.5.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 733184 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 106496 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Conversion.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Conversion.v3.5.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 368640 c:\windows\assembly\GAC_32\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2008-04-25 21:36 . 2008-04-25 21:36 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 163840 c:\windows\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2006-10-15 08:22 . 2008-07-06 12:06 1676288 c:\windows\system32\xpssvcs.dll
+ 2008-04-25 21:38 . 2008-07-06 12:06 1676288 c:\windows\system32\spool\XPSEP\i386\xpssvcs.dll
+ 2008-04-25 21:38 . 2008-07-06 12:06 1676288 c:\windows\system32\spool\XPSEP\i386\i386\xpssvcs.dll
+ 2008-04-25 21:38 . 2008-07-07 01:36 2936832 c:\windows\system32\spool\XPSEP\amd64\xpssvcs.dll
+ 2008-04-25 21:38 . 2008-07-07 01:36 2936832 c:\windows\system32\spool\XPSEP\amd64\amd64\xpssvcs.dll
+ 2006-10-15 08:22 . 2008-07-06 12:06 1676288 c:\windows\system32\spool\drivers\w32x86\3\XpsSvcs.dll
+ 2008-07-30 07:40 . 2008-07-30 07:40 1720824 c:\windows\Microsoft.NET\Framework\v3.5\vbc.exe
+ 2008-07-30 02:47 . 2008-07-30 02:47 1054208 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs_setup.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 1364992 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\SITSetup.dll
+ 2008-07-30 02:47 . 2008-07-30 02:47 1064448 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\gencomp.dll
+ 2008-07-30 07:40 . 2008-07-30 07:40 1548280 c:\windows\Microsoft.NET\Framework\v3.5\csc.exe
+ 2008-12-06 03:35 . 2008-12-06 03:35 1736528 c:\windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
+ 2008-12-06 04:12 . 2008-12-06 04:12 5931008 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 1344000 c:\windows\Microsoft.NET\Framework\v2.0.50727\VsaVb7rt.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 1172472 c:\windows\Microsoft.NET\Framework\v2.0.50727\vbc.exe
+ 2008-11-25 12:59 . 2008-11-25 12:59 2048000 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.XML.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2008-11-25 12:59 . 2008-11-25 12:59 5242880 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 3149824 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 5062656 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Design.dll
+ 2008-07-25 19:17 . 2008-07-25 19:17 2933248 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.dll
+ 2008-11-25 12:59 . 2008-11-25 12:59 5813576 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2008-11-25 12:59 . 2008-11-25 12:59 4546560 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2008-07-25 19:16 . 2008-07-25 19:16 1163768 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
+ 2008-12-13 17:57 . 2008-12-13 17:57 8397824 c:\windows\Installer\f0de20.msp
+ 2008-07-30 03:26 . 2008-07-30 03:26 1043456 c:\windows\Installer\f038e5.msp
+ 2008-07-30 04:37 . 2008-07-30 04:37 2679808 c:\windows\Installer\f038e3.msp
+ 2008-07-30 05:15 . 2008-07-30 05:15 3697664 c:\windows\Installer\f038e1.msp
+ 2008-07-30 03:34 . 2008-07-30 03:34 1448448 c:\windows\Installer\f038e0.msp
+ 2008-07-30 04:22 . 2008-07-30 04:22 4137984 c:\windows\Installer\f038df.msp
+ 2008-07-30 03:18 . 2008-07-30 03:18 3376640 c:\windows\Installer\f038de.msp
+ 2008-07-30 01:45 . 2008-07-30 01:45 2543616 c:\windows\Installer\ee4fae.msp
+ 2008-07-30 01:29 . 2008-07-30 01:29 2926080 c:\windows\Installer\ee4fad.msp
+ 2008-07-30 01:41 . 2008-07-30 01:41 6487040 c:\windows\Installer\ee4fac.msp
+ 2008-07-30 01:39 . 2008-07-30 01:39 3403264 c:\windows\Installer\ee4fab.msp
+ 2008-07-30 01:43 . 2008-07-30 01:43 1013248 c:\windows\Installer\ee4fa9.msp
+ 2008-07-30 01:31 . 2008-07-30 01:31 6083072 c:\windows\Installer\ee4fa6.msp
+ 2012-02-23 23:30 . 2012-02-23 23:30 2002944 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\d26330ea822b02fb174a852016237e3e\WindowsLive.Writer.CoreServices.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 6392832 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\62d1f8674aa52cf151330a4a3d70e2ac\WindowsLive.Writer.PostEditor.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 1105920 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\44200cb83b0e2575a75ba9dca3478e0d\WindowsLive.Writer.ApplicationFramework.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 3313664 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\14cd5f4b61d35f9b76327d6be9853755\WindowsBase.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\f3c7957351aec85f526a3350c9718b1e\UIAutomationClientsideProviders.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 7868416 c:\windows\assembly\NativeImages_v2.0.50727_32\System\80978a322d7dd39f0a71be1251ae395a\System.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\773a9786013451d3baaeff003dc4230f\System.Xml.ni.dll
+ 2012-02-23 23:32 . 2012-02-23 23:32 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\ac1750e78d79520dcf19195772eff1b6\System.WorkflowServices.ni.dll
+ 2012-02-23 23:32 . 2012-02-23 23:32 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\d265da36954fcb4cb7ad5adc693ea0f2\System.Workflow.Runtime.ni.dll
+ 2012-02-23 23:32 . 2012-02-23 23:32 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\693a8fbe6f7ad6e4e429052da4317e59\System.Workflow.ComponentModel.ni.dll
+ 2012-02-23 23:32 . 2012-02-23 23:32 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\cc99fbbac0b6e4e9ca62093e49b0c16b\System.Workflow.Activities.ni.dll
+ 2012-02-23 22:32 . 2012-02-23 22:32 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\b57bb002a655920cbfa2bee29d1e22b7\System.Web.Services.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\81197e32ec931f439b3114e9031b65d6\System.Web.Mobile.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 2403328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\7f64c9d25471b72e1e957bdfe67947c8\System.Web.Extensions.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 1917440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\63cf639b6e0a3c25c1643c85016e7422\System.Speech.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\340cad17fe57947eacbc8fa2cea780da\System.ServiceModel.Web.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 2338304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\034c91b133dee73d452652c52767b5ea\System.Runtime.Serialization.ni.dll
+ 2012-02-23 22:32 . 2012-02-23 22:32 1035264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\646ab52eef343380aa002c220dc31e13\System.Printing.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 1056768 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\c2de8479e54852f56996f79bc93acb13\System.IdentityModel.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\3da96ee075bab9202626ae44c18d226c\System.Drawing.ni.dll
+ 2012-02-23 22:32 . 2012-02-23 22:32 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\543aced762f6b0c3f8e037955941afc6\System.DirectoryServices.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\a6b58624486714fa71e5e35186850ff0\System.Deployment.ni.dll
+ 2012-02-23 22:32 . 2012-02-23 22:32 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\c70731047b0022638b3f9fb158948a03\System.Data.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\826b09ab0d0e36f4d631b4cd335df511\System.Data.SqlXml.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\956a513dcbd44d5a6801840ef2b0b47b\System.Data.Services.ni.dll
+ 2012-02-23 22:34 . 2012-02-23 22:34 1115136 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.OracleC#\283ecfbaa6a6fab76c8b544a4a89d5ce\System.Data.OracleClient.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\0bbec79460b1137df5313f9baf7b246f\System.Data.Linq.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\6479f975b105808a8d9e7a7fdc762551\System.Data.Entity.ni.dll
+ 2012-02-23 22:35 . 2012-02-23 22:35 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\47d87251e93256c635eb73403b8db33e\System.Core.ni.dll
+ 2012-02-23 22:32 . 2012-02-23 22:32 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\4bfb3048bf200a6a8592d1b4ba861a7f\ReachFramework.ni.dll
+ 2012-02-23 22:32 . 2012-02-23 22:32 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\6bafb1a2a73794ddb9761cb321c9e7e2\PresentationUI.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\e634bc4c4a00635a0a254febab0e2e2c\PresentationBuildTasks.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\1c86afc399d0fdd8e069266ffbe748d1\Microsoft.VisualBasic.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\6b2f62f5e981913fce1d223f645d9ddf\Microsoft.Transactions.Bridge.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\b261961046545831aa60963e84905968\Microsoft.JScript.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\bd241492d96db39f20e758c13c845033\Microsoft.Build.Tasks.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\a47100d8f4574bed2d49d83d0ab8964e\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2012-02-23 23:31 . 2012-02-23 23:31 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\6cfe582681724965fb817e8ece5f0909\Microsoft.Build.Engine.ni.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 1245184 c:\windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 3149824 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 1630208 c:\windows\assembly\GAC_MSIL\System.Workflow.ComponentModel\3.0.0.0__31bf3856ad364e35\System.Workflow.ComponentModel.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 1138688 c:\windows\assembly\GAC_MSIL\System.Workflow.Activities\3.0.0.0__31bf3856ad364e35\System.Workflow.Activities.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 5931008 c:\windows\assembly\GAC_MSIL\System.ServiceModel\3.0.0.0__b77a5c561934e089\System.ServiceModel.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 2879488 c:\windows\assembly\GAC_MSIL\System.Data.Entity\3.5.0.0__b77a5c561934e089\System.Data.Entity.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 5283840 c:\windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2012-02-23 22:28 . 2012-02-23 22:28 4210688 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 4546560 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2008-12-13 18:21 . 2008-12-13 18:21 10473472 c:\windows\Installer\f0de2a.msp
+ 2012-02-23 22:31 . 2012-02-23 22:31 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\63406259e94d5c0ff5b79401dfe113ce\System.Windows.Forms.ni.dll
+ 2012-02-23 22:32 . 2012-02-23 22:32 11796992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\3963ce03d445a8619abbf388d590134b\System.Web.ni.dll
+ 2012-02-23 23:30 . 2012-02-23 23:30 17317888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\85a68b5908535729e0458a1a58001df3\System.ServiceModel.ni.dll
+ 2012-02-23 22:32 . 2012-02-23 22:32 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\8ee220bc3cce4f7bbd7818946519ed7f\System.Design.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 14327808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\96e710f47c601cba3f2348a8d11ddede\PresentationFramework.ni.dll
+ 2012-02-23 22:31 . 2012-02-23 22:31 12216320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\956375d487cbef36165b3250030e3574\PresentationCore.ni.dll
+ 2012-02-23 22:30 . 2012-02-23 22:30 11486720 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\6d667f19d687361886990f3ca0f49816\mscorlib.ni.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{11111111-1111-1111-1111-110011221158}]
2012-01-10 15:37 475480 ----a-w- c:\program files\I Want This\I Want This.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-09-11 218032]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-01-31 17147528]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2008-08-18 16806912]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-08-18 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-08-18 178712]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-08-18 150040]
"8169Diag"="c:\program files\Realtek\Diagnostics Utility\8169Diag.exe" [2008-02-26 909312]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-07-20 182808]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2012-01-04 40376]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2012-01-03 640440]
"dscactivate"="c:\program files\Dell Support Center\gs_agent\custom\dsca.exe" [2008-03-11 16384]
"PDVDDXSrv"="c:\program files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2008-05-23 128296]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2008-04-14 208952]
"IMEKRMIG6.1"="c:\windows\ime\imkr6_1\IMEKRMIG.EXE" [2008-04-14 44032]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2008-04-14 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"LifeCam"="c:\program files\Microsoft LifeCam\LifeExp.exe" [2007-05-17 279912]
"VX3000"="c:\windows\vVX3000.exe" [2007-04-10 709992]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"UfSeAgnt.exe"="c:\program files\Trend Micro\Internet Security\UfSeAgnt.exe" [2009-04-01 995528]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"LogMeIn GUI"="c:\program files\LogMeIn\x86\LogMeInSystray.exe" [2008-08-11 63048]
"AVG_TRAY"="c:\program files\AVG\AVG10\avgtray.exe" [2012-01-18 2339168]
"Dell PanelMgr"="c:\windows\Dell\PanelMgr\SSMMgr.exe" [2008-08-28 541936]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2004-11-4 258048]
QuickBooks Update Agent.lnk - c:\program files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe [2006-11-21 811008]
Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoWelcomeScreen"= 1 (0x1)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2010-09-28 17:20 87424 ----a-w- c:\windows\system32\LMIinit.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG10\avgchsvx.exe /sync\0c:\progra~1\AVG\AVG10\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\TrendAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\NetMeeting\\conf.exe"=
"c:\\Program Files\\Intuit\\QuickBooks 2006\\QBDBMgrN.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [9/13/2010 3:27 PM 22992]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [9/7/2010 2:48 AM 32592]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [9/7/2010 2:48 AM 248656]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [9/7/2010 2:49 AM 297168]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [1/31/2012 3:02 PM 7391072]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG10\avgwdsvc.exe [2/8/2011 4:33 AM 269520]
R2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn\x86\LMIGuardianSvc.exe [9/29/2010 9:20 AM 374152]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [8/11/2008 12:41 PM 12856]
R2 tmevtmgr;tmevtmgr;c:\windows\system32\drivers\tmevtmgr.sys [6/1/2009 8:37 AM 50192]
R2 tmpreflt;tmpreflt;c:\windows\system32\drivers\tmpreflt.sys [6/1/2009 8:32 AM 36368]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [8/19/2010 8:42 PM 134480]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [8/19/2010 8:42 PM 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [8/19/2010 8:42 PM 27216]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [3/4/2009 1:42 PM 110080]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [4/30/2010 3:48 PM 136176]
S2 LANPkt;Realtek LANPkt Protocol Driver;c:\windows\system32\drivers\LANPkt.sys [3/4/2009 11:53 AM 8960]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [1/31/2012 3:09 PM 158856]
S2 SSPORT;SSPORT;\??\c:\windows\system32\Drivers\SSPORT.sys --> c:\windows\system32\Drivers\SSPORT.sys [?]
S2 TmProxy;Trend Micro Proxy Service;c:\program files\Trend Micro\Internet Security\TmProxy.exe [6/1/2009 8:37 AM 677128]
S3 Diag69xp;Diag69xp;c:\windows\system32\drivers\diag69xp.sys [3/4/2009 11:54 AM 11264]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [4/30/2010 3:48 PM 136176]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\71.tmp --> c:\windows\system32\71.tmp [?]
S3 RTLVLAN;Realtek VLAN Intermediate Driver;c:\windows\system32\drivers\RTLVLAN.SYS [3/4/2009 11:53 AM 16640]
.
Contents of the 'Scheduled Tasks' folder
.
2012-02-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-30 23:48]
.
2012-02-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-30 23:48]
.
2012-02-24 c:\windows\Tasks\User_Feed_Synchronization-{390BD5F0-2EF7-409F-9B49-4D266E76E208}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 11:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.co.jp/
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{B6D5B198-AF64-4487-87C9-A4E70D7B661B}: NameServer = 192.168.1.65,68.94.156.1,68.94.157.1
FF - ProfilePath - c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Mozilla\Firefox\Profiles\80ynkwhc.default\
FF - prefs.js: browser.startup.homepage - hxxp://start.funmoods.com/?f=1&a=ironto
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?AF=109928&babsrc=adbartrp&mntrId=8e5d509300000000000000219b2bfc2e&q=
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 50370
FF - prefs.js: network.proxy.type - 0
FF - user.js: extensions.BabylonToolbar_i.id - 8e5d509300000000000000219b2bfc2e
FF - user.js: extensions.BabylonToolbar_i.hardId - 8e5d509300000000000000219b2bfc2e
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15381
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1716:33
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb9
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=109928
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
FF - user.js: extensions.funmoods_i.hmpg - true
FF - user.js: extensions.funmoods_i.hmpgUrl - hxxp://start.funmoods.com/?f=1&a=ironto
FF - user.js: extensions.funmoods_i.dfltSrch - true
FF - user.js: extensions.funmoods_i.srchPrvdr - Search
FF - user.js: extensions.funmoods_i.dnsErr - true
FF - user.js: extensions.funmoods_i.newTab - true
FF - user.js: extensions.funmoods_i.newTabUrl - hxxp://start.funmoods.com/?f=2&a=ironto
FF - user.js: extensions.funmoods_i.tlbrSrchUrl - hxxp://start.funmoods.com/results.php?f=3&a=ironto&q=
FF - user.js: extensions.funmoods_i.id - 8e5d509300000000000000219b2bfc2e
FF - user.js: extensions.funmoods_i.instlDay - 15393
FF - user.js: extensions.funmoods_i.vrsn - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsni - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsnTs - 1.5.11.1618:46
FF - user.js: extensions.funmoods_i.prtnrId - funmoods
FF - user.js: extensions.funmoods_i.prdct - funmoods
FF - user.js: extensions.funmoods_i.aflt - ironto
FF - user.js: extensions.funmoods_i.smplGrp - none
FF - user.js: extensions.funmoods_i.tlbrId - base
FF - user.js: extensions.funmoods_i.instlRef -
FF - user.js: extensions.funmoods_i.dfltLng -
FF - user.js: extensions.funmoods_i.excTlbr - false
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-funmoods - c:\program files\Funmoods\funmoods\1.5.11.16\uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-02-23 19:37
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MEMSWEEP2]
"ImagePath"="\??\c:\windows\system32\71.tmp"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(940)
c:\windows\system32\LMIinit.dll
c:\windows\system32\LMIRfsClientNP.dll
.
- - - - - - - > 'winlogon.exe'(5104)
c:\windows\system32\LMIinit.dll
c:\windows\IME\IMJP8_1\Dicts\IMJPCD.DIC
.
- - - - - - - > 'explorer.exe'(3512)
c:\windows\system32\WININET.dll
c:\windows\IME\IMJP8_1\Dicts\IMJPCD.DIC
c:\windows\system32\ieframe.dll
c:\windows\system32\mshtml.dll
c:\windows\system32\msls31.dll
c:\windows\system32\jscript.dll
c:\windows\system32\Macromed\Flash\Flash11e.ocx
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\windows\system32\LMIRfsClientNP.dll
.
Completion time: 2012-02-23 19:52:50
ComboFix-quarantined-files.txt 2012-02-24 03:52
ComboFix2.txt 2012-02-23 03:15
ComboFix3.txt 2012-02-22 20:46
.
Pre-Run: 214,482,845,696 bytes free
Post-Run: 214,494,990,336 bytes free
.
- - End Of File - - D0942E2C348CBA733A93A02E1F3F08F0

Attached Files



BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:15 PM

Posted 02 March 2012 - 02:44 AM

Hello and Welcome to the forums!

My name is Gringo and I'll be glad to help you with your computer problems.

Somethings to remember while we are working together.

  • Do not run any other tool untill instructed to do so!
  • please Do not Attach logs or put in code boxes.
  • Tell me about any problems that have occurred during the fix.
  • Tell me of any other symptoms you may be having as these can help also.
  • Do not run anything while running a fix.
  • Do not run any other tool untill instructed to do so!


Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.

Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.


Delete the combofix you have now (to old)
Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 kensama

kensama
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:12:15 PM

Posted 02 March 2012 - 08:28 PM

Dear Gringo,

Thank you so much for your help.
I appreciate it.
My PC is fine, has no problem besides redirecting websites.

Here is the new log from Combofix.

ComboFix 12-03-02.01 - ken 03/02/2012 16:50:54.19.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3037.2311 [GMT -8:00]
Running from: c:\documents and settings\ken.INSTITUTEOFGLOB\Desktop\ComboFix.exe
AV: AVG Anti-Virus Business Edition 2011 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: PC Cleaner Pro *Disabled/Updated* {737A8864-C2D9-4337-B49A-B5E35815B9BB}
AV: Trend Micro AntiVirus *Disabled/Updated* {7D2296BC-32CC-4519-917E-52E652474AF5}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
c:\windows\system32\oobe\msoobe.exe
c:\windows\system32\oobe\oobebaln.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-02-03 to 2012-03-03 )))))))))))))))))))))))))))))))
.
.
2012-02-25 02:00 . 2012-02-25 02:00 -------- d--h--w- c:\windows\PIF
2012-02-23 22:27 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2012-02-23 22:27 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2012-02-23 22:27 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2012-02-23 22:27 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2012-02-23 22:27 . 2012-02-23 22:27 -------- d-----w- C:\383eb1c589e3871c87
2012-02-22 20:50 . 2012-02-22 20:50 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\SupportSoft
2012-02-16 02:40 . 2012-02-22 03:40 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2012-02-16 01:22 . 2012-02-16 01:22 -------- d-----w- c:\program files\Common Files\Java
2012-02-16 01:21 . 2012-02-16 01:21 73728 ----a-w- c:\windows\system32\javacpl.cpl
2012-02-16 01:21 . 2012-02-16 01:21 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-02-16 01:21 . 2012-02-16 01:21 -------- d-----w- c:\program files\Java
2012-02-16 01:02 . 2012-02-16 01:02 -------- d-----w- C:\_OTM
2012-02-11 00:38 . 2012-02-13 22:54 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}
2012-02-11 00:38 . 2012-02-11 00:38 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\PackageAware
2012-02-11 00:37 . 2012-02-11 00:37 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Funmoods
2012-02-11 00:33 . 2012-02-23 02:46 487 ----a-w- C:\user.js
2012-02-11 00:33 . 2012-02-11 00:33 -------- d-----w- c:\program files\BabylonToolbar
2012-02-11 00:33 . 2012-02-11 00:33 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\I Want This
2012-02-11 00:33 . 2012-02-11 00:33 -------- d-----w- c:\program files\I Want This
2012-02-11 00:33 . 2012-02-11 00:33 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon
2012-02-11 00:33 . 2012-02-11 00:33 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Babylon
2012-02-11 00:33 . 2012-02-11 00:33 -------- d-----w- c:\documents and settings\All Users\Application Data\Babylon
2012-02-10 23:21 . 2012-02-10 23:21 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Malwarebytes
2012-02-10 23:21 . 2012-02-10 23:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2012-02-10 23:11 . 2012-02-10 23:11 -------- d-----w- c:\documents and settings\ken\Local Settings\Application Data\Mozilla
2012-02-10 23:10 . 2012-02-10 23:10 -------- d-sh--w- c:\documents and settings\ken\IETldCache
2012-02-10 22:41 . 2012-02-10 22:41 -------- d-----w- c:\documents and settings\All Users\Application Data\0fe92a
2012-02-09 23:18 . 2012-02-10 00:45 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\PCPro
2012-02-09 23:18 . 2012-02-09 23:18 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\PC Cleaners
2012-02-09 23:18 . 2012-02-09 23:18 5279504 ----a-w- c:\windows\uninst.exe
2012-02-09 23:18 . 2012-02-09 23:18 -------- d-----w- c:\documents and settings\All Users\Application Data\PC1Data
2012-02-09 21:59 . 2012-02-09 21:59 -------- d-----w- c:\documents and settings\All Users\Application Data\RegAce
2012-02-09 21:58 . 2012-02-09 22:11 -------- d-----w- c:\windows\RegAce
2012-02-09 21:48 . 2012-02-09 21:48 -------- d-----w- c:\program files\Sophos
2012-02-09 21:20 . 2012-02-09 21:20 -------- d-----w- c:\program files\Common Files\Skype
2012-02-09 21:20 . 2012-02-09 21:20 -------- d-----r- c:\program files\Skype
2012-02-09 21:20 . 2012-02-09 21:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype
2012-02-09 18:41 . 2012-02-09 18:41 -------- d-----w- c:\program files\MSXML 4.0
2012-02-09 18:40 . 2012-02-09 18:43 -------- d-----w- c:\windows\ie8updates
2012-02-09 18:40 . 2012-02-09 18:40 -------- d-----w- c:\windows\ServicePackFiles
2012-02-09 18:30 . 2011-11-04 19:20 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2012-02-09 18:30 . 2011-11-04 19:20 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-02-09 18:30 . 2011-11-04 19:20 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2012-02-09 18:30 . 2011-11-04 19:20 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2012-02-09 18:30 . 2011-11-04 19:20 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2012-02-09 18:30 . 2011-11-04 19:20 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll
2012-02-09 18:30 . 2011-11-04 19:20 11081728 -c----w- c:\windows\system32\dllcache\ieframe.dll
2012-02-09 18:29 . 2011-06-24 14:10 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2012-02-09 18:29 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2012-02-09 18:28 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2012-02-09 18:26 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2012-02-09 18:26 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2012-02-09 18:25 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2012-02-09 18:25 . 2011-02-08 13:33 978944 -c----w- c:\windows\system32\dllcache\mfc42.dll
2012-02-09 18:25 . 2010-09-18 06:53 954368 -c----w- c:\windows\system32\dllcache\mfc40.dll
2012-02-09 18:25 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2012-02-09 18:25 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2012-02-09 18:24 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2012-02-09 18:24 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2012-02-09 18:22 . 2010-08-27 08:02 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2012-02-09 18:22 . 2009-10-15 16:28 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2012-02-09 18:21 . 2009-06-21 21:44 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2012-02-09 18:18 . 2011-02-17 12:32 5120 ----a-w- c:\windows\system32\xpsp4res.dll
2012-02-09 18:18 . 2010-07-12 12:55 218112 -c----w- c:\windows\system32\dllcache\wordpad.exe
2012-02-09 18:16 . 2009-08-07 03:24 21728 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-02-09 18:16 . 2009-08-07 03:24 17632 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-02-09 18:16 . 2009-08-07 03:24 15072 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-02-09 18:16 . 2009-08-07 03:24 15064 ----a-w- c:\windows\system32\wuapi.dll.mui
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-30 20:53 . 2011-06-02 17:35 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot_2012-02-24_03.37.39 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-03-02 23:45 . 2012-03-02 23:45 16384 c:\windows\Temp\Perflib_Perfdata_1a8.dat
+ 2008-04-25 21:27 . 2008-04-14 12:00 51200 c:\windows\system32\dllcache\oobebaln.exe
+ 2008-04-25 21:27 . 2008-04-14 12:00 29184 c:\windows\system32\dllcache\msoobe.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-09-11 218032]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-01-31 17147528]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2008-08-18 16806912]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-08-18 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-08-18 178712]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-08-18 150040]
"8169Diag"="c:\program files\Realtek\Diagnostics Utility\8169Diag.exe" [2008-02-26 909312]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-07-20 182808]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2012-01-04 40376]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2012-01-03 640440]
"dscactivate"="c:\program files\Dell Support Center\gs_agent\custom\dsca.exe" [2008-03-11 16384]
"PDVDDXSrv"="c:\program files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2008-05-23 128296]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2008-04-14 208952]
"IMEKRMIG6.1"="c:\windows\ime\imkr6_1\IMEKRMIG.EXE" [2008-04-14 44032]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2008-04-14 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"LifeCam"="c:\program files\Microsoft LifeCam\LifeExp.exe" [2007-05-17 279912]
"VX3000"="c:\windows\vVX3000.exe" [2007-04-10 709992]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"UfSeAgnt.exe"="c:\program files\Trend Micro\Internet Security\UfSeAgnt.exe" [2009-04-01 995528]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"LogMeIn GUI"="c:\program files\LogMeIn\x86\LogMeInSystray.exe" [2008-08-11 63048]
"AVG_TRAY"="c:\program files\AVG\AVG10\avgtray.exe" [2012-01-18 2339168]
"Dell PanelMgr"="c:\windows\Dell\PanelMgr\SSMMgr.exe" [2008-08-28 541936]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2004-11-4 258048]
QuickBooks Update Agent.lnk - c:\program files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe [2006-11-21 811008]
Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoWelcomeScreen"= 1 (0x1)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2010-09-28 17:20 87424 ----a-w- c:\windows\system32\LMIinit.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG10\avgchsvx.exe /sync\0c:\progra~1\AVG\AVG10\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\TrendAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\NetMeeting\\conf.exe"=
"c:\\Program Files\\Intuit\\QuickBooks 2006\\QBDBMgrN.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [9/13/2010 3:27 PM 22992]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [9/7/2010 2:48 AM 32592]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [9/7/2010 2:48 AM 248656]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [9/7/2010 2:49 AM 297168]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [1/31/2012 3:02 PM 7391072]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG10\avgwdsvc.exe [2/8/2011 4:33 AM 269520]
R2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn\x86\LMIGuardianSvc.exe [9/29/2010 9:20 AM 374152]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [8/11/2008 12:41 PM 12856]
R2 tmevtmgr;tmevtmgr;c:\windows\system32\drivers\tmevtmgr.sys [6/1/2009 8:37 AM 50192]
R2 tmpreflt;tmpreflt;c:\windows\system32\drivers\tmpreflt.sys [6/1/2009 8:32 AM 36368]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [8/19/2010 8:42 PM 134480]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [8/19/2010 8:42 PM 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [8/19/2010 8:42 PM 27216]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [3/4/2009 1:42 PM 110080]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [4/30/2010 3:48 PM 136176]
S2 LANPkt;Realtek LANPkt Protocol Driver;c:\windows\system32\drivers\LANPkt.sys [3/4/2009 11:53 AM 8960]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [1/31/2012 3:09 PM 158856]
S2 SSPORT;SSPORT;\??\c:\windows\system32\Drivers\SSPORT.sys --> c:\windows\system32\Drivers\SSPORT.sys [?]
S2 TmProxy;Trend Micro Proxy Service;c:\program files\Trend Micro\Internet Security\TmProxy.exe [6/1/2009 8:37 AM 677128]
S3 Diag69xp;Diag69xp;c:\windows\system32\drivers\diag69xp.sys [3/4/2009 11:54 AM 11264]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [4/30/2010 3:48 PM 136176]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\71.tmp --> c:\windows\system32\71.tmp [?]
S3 RTLVLAN;Realtek VLAN Intermediate Driver;c:\windows\system32\drivers\RTLVLAN.SYS [3/4/2009 11:53 AM 16640]
.
Contents of the 'Scheduled Tasks' folder
.
2012-03-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-30 23:48]
.
2012-03-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-30 23:48]
.
2012-03-03 c:\windows\Tasks\User_Feed_Synchronization-{390BD5F0-2EF7-409F-9B49-4D266E76E208}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 11:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.co.jp/
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{B6D5B198-AF64-4487-87C9-A4E70D7B661B}: NameServer = 192.168.1.65,68.94.156.1,68.94.157.1
FF - ProfilePath - c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Mozilla\Firefox\Profiles\80ynkwhc.default\
FF - prefs.js: browser.startup.homepage - hxxp://start.funmoods.com/?f=1&a=ironto
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?AF=109928&babsrc=adbartrp&mntrId=8e5d509300000000000000219b2bfc2e&q=
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 50370
FF - prefs.js: network.proxy.type - 0
FF - user.js: extensions.BabylonToolbar_i.id - 8e5d509300000000000000219b2bfc2e
FF - user.js: extensions.BabylonToolbar_i.hardId - 8e5d509300000000000000219b2bfc2e
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15381
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1716:33
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb9
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=109928
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
FF - user.js: extensions.funmoods_i.hmpg - true
FF - user.js: extensions.funmoods_i.hmpgUrl - hxxp://start.funmoods.com/?f=1&a=ironto
FF - user.js: extensions.funmoods_i.dfltSrch - true
FF - user.js: extensions.funmoods_i.srchPrvdr - Search
FF - user.js: extensions.funmoods_i.dnsErr - true
FF - user.js: extensions.funmoods_i.newTab - true
FF - user.js: extensions.funmoods_i.newTabUrl - hxxp://start.funmoods.com/?f=2&a=ironto
FF - user.js: extensions.funmoods_i.tlbrSrchUrl - hxxp://start.funmoods.com/results.php?f=3&a=ironto&q=
FF - user.js: extensions.funmoods_i.id - 8e5d509300000000000000219b2bfc2e
FF - user.js: extensions.funmoods_i.instlDay - 15393
FF - user.js: extensions.funmoods_i.vrsn - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsni - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsnTs - 1.5.11.1618:46
FF - user.js: extensions.funmoods_i.prtnrId - funmoods
FF - user.js: extensions.funmoods_i.prdct - funmoods
FF - user.js: extensions.funmoods_i.aflt - ironto
FF - user.js: extensions.funmoods_i.smplGrp - none
FF - user.js: extensions.funmoods_i.tlbrId - base
FF - user.js: extensions.funmoods_i.instlRef -
FF - user.js: extensions.funmoods_i.dfltLng -
FF - user.js: extensions.funmoods_i.excTlbr - false
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-03-02 17:22
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MEMSWEEP2]
"ImagePath"="\??\c:\windows\system32\71.tmp"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(936)
c:\windows\system32\LMIinit.dll
c:\windows\system32\LMIRfsClientNP.dll
.
- - - - - - - > 'explorer.exe'(2468)
c:\windows\system32\WININET.dll
c:\windows\IME\IMJP8_1\Dicts\IMJPCD.DIC
c:\windows\system32\ieframe.dll
c:\windows\system32\mshtml.dll
c:\windows\system32\msls31.dll
c:\windows\system32\jscript.dll
c:\windows\system32\Macromed\Flash\Flash11e.ocx
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\windows\system32\LMIRfsClientNP.dll
.
Completion time: 2012-03-02 17:38:21
ComboFix-quarantined-files.txt 2012-03-03 01:37
ComboFix2.txt 2012-02-24 03:53
ComboFix3.txt 2012-02-23 03:15
ComboFix4.txt 2012-02-22 20:46
.
Pre-Run: 214,434,029,568 bytes free
Post-Run: 214,422,990,848 bytes free
.
- - End Of File - - BEFCCA95630B0AD60E52E7CBCE6F714A

#4 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:15 PM

Posted 02 March 2012 - 08:40 PM

Greetings

I want you to run these next,

tdsskiller:

Please read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Please download aswMBR to your desktop.
  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#5 kensama

kensama
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:12:15 PM

Posted 02 March 2012 - 08:56 PM

Thank you.

I downloaded both TDSSKiller and aswMBR, but neither of them start running...

What should I do now?

Thank you so much.

#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:15 PM

Posted 02 March 2012 - 09:25 PM

Hello

I would like you to run this tool for me - fixTDSS

download it to your desktop and start the program

Follow the prompts and Ok any security prompts

when it is complete it will say the infection was cleared or no infection was found - let me know what it says

after it is complete I want you to restart the computer and try to rerun TDSSKiller for me and send me the report

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 kensama

kensama
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:12:15 PM

Posted 02 March 2012 - 09:48 PM

Thank you.
Repair was successfull and here it the tdsskiller report.

19:00:23.0843 5560 TDSS rootkit removing tool 2.7.18.0 Mar 2 2012 09:40:07
19:00:24.0296 5560 ============================================================
19:00:24.0296 5560 Current date / time: 2012/03/02 19:00:24.0296
19:00:24.0296 5560 SystemInfo:
19:00:24.0296 5560
19:00:24.0296 5560 OS Version: 5.1.2600 ServicePack: 3.0
19:00:24.0296 5560 Product type: Workstation
19:00:24.0296 5560 ComputerName: KENXP
19:00:24.0296 5560 UserName: ken
19:00:24.0296 5560 Windows directory: C:\WINDOWS
19:00:24.0296 5560 System windows directory: C:\WINDOWS
19:00:24.0296 5560 Processor architecture: Intel x86
19:00:24.0296 5560 Number of processors: 2
19:00:24.0296 5560 Page size: 0x1000
19:00:24.0296 5560 Boot type: Normal boot
19:00:24.0296 5560 ============================================================
19:00:24.0687 5560 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:00:24.0687 5560 \Device\Harddisk0\DR0:
19:00:24.0687 5560 MBR used
19:00:24.0687 5560 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D194CA2
19:00:24.0718 5560 Initialize success
19:00:24.0718 5560 ============================================================
19:00:28.0593 5728 ============================================================
19:00:28.0593 5728 Scan started
19:00:28.0593 5728 Mode: Manual;
19:00:28.0593 5728 ============================================================
19:00:28.0859 5728 Abiosdsk - ok
19:00:28.0906 5728 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
19:00:28.0921 5728 abp480n5 - ok
19:00:28.0953 5728 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:00:28.0953 5728 ACPI - ok
19:00:28.0953 5728 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
19:00:28.0968 5728 ACPIEC - ok
19:00:29.0000 5728 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
19:00:29.0015 5728 adpu160m - ok
19:00:29.0046 5728 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
19:00:29.0046 5728 aec - ok
19:00:29.0093 5728 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
19:00:29.0093 5728 AFD - ok
19:00:29.0140 5728 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
19:00:29.0140 5728 agp440 - ok
19:00:29.0156 5728 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
19:00:29.0156 5728 agpCPQ - ok
19:00:29.0156 5728 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
19:00:29.0156 5728 Aha154x - ok
19:00:29.0171 5728 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
19:00:29.0171 5728 aic78u2 - ok
19:00:29.0187 5728 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
19:00:29.0187 5728 aic78xx - ok
19:00:29.0218 5728 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
19:00:29.0218 5728 AliIde - ok
19:00:29.0218 5728 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
19:00:29.0234 5728 alim1541 - ok
19:00:29.0250 5728 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
19:00:29.0250 5728 amdagp - ok
19:00:29.0250 5728 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
19:00:29.0250 5728 amsint - ok
19:00:29.0265 5728 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
19:00:29.0265 5728 asc - ok
19:00:29.0281 5728 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
19:00:29.0281 5728 asc3350p - ok
19:00:29.0281 5728 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
19:00:29.0296 5728 asc3550 - ok
19:00:29.0312 5728 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:00:29.0312 5728 AsyncMac - ok
19:00:29.0343 5728 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
19:00:29.0343 5728 atapi - ok
19:00:29.0343 5728 Atdisk - ok
19:00:29.0359 5728 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:00:29.0359 5728 Atmarpc - ok
19:00:29.0375 5728 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
19:00:29.0375 5728 audstub - ok
19:00:29.0453 5728 AVGIDSDriver (2d18221aab3db2d408d6c55c0f23090a) C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys
19:00:29.0453 5728 AVGIDSDriver - ok
19:00:29.0500 5728 AVGIDSEH (1af676db3f3d4cc709cfab2571cf5fc3) C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys
19:00:29.0500 5728 AVGIDSEH - ok
19:00:29.0515 5728 AVGIDSFilter (4c51e233c87f9ec7598551de554bc99d) C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys
19:00:29.0515 5728 AVGIDSFilter - ok
19:00:29.0562 5728 AVGIDSShim (c3fc426e54f55c1cc3219e415b88e10c) C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys
19:00:29.0562 5728 AVGIDSShim - ok
19:00:29.0609 5728 Avgldx86 (4e796d3d2c3182b13b3e3b5a2ad4ef0a) C:\WINDOWS\system32\DRIVERS\avgldx86.sys
19:00:29.0609 5728 Avgldx86 - ok
19:00:29.0625 5728 Avgmfx86 (5639de66b37d02bd22df4cf3155fba60) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
19:00:29.0625 5728 Avgmfx86 - ok
19:00:29.0656 5728 Avgrkx86 (d1baf652eda0ae70896276a1fb32c2d4) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
19:00:29.0656 5728 Avgrkx86 - ok
19:00:29.0687 5728 Avgtdix (aaf0ebcad95f2164cffb544e00392498) C:\WINDOWS\system32\DRIVERS\avgtdix.sys
19:00:29.0703 5728 Avgtdix - ok
19:00:29.0765 5728 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
19:00:29.0765 5728 Beep - ok
19:00:29.0906 5728 catchme - ok
19:00:29.0953 5728 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
19:00:29.0953 5728 cbidf - ok
19:00:29.0968 5728 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
19:00:29.0968 5728 cbidf2k - ok
19:00:30.0000 5728 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:00:30.0000 5728 CCDECODE - ok
19:00:30.0015 5728 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
19:00:30.0015 5728 cd20xrnt - ok
19:00:30.0046 5728 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
19:00:30.0062 5728 Cdaudio - ok
19:00:30.0078 5728 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
19:00:30.0078 5728 Cdfs - ok
19:00:30.0093 5728 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:00:30.0093 5728 Cdrom - ok
19:00:30.0093 5728 Changer - ok
19:00:30.0109 5728 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
19:00:30.0125 5728 CmdIde - ok
19:00:30.0125 5728 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
19:00:30.0140 5728 Cpqarray - ok
19:00:30.0140 5728 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
19:00:30.0156 5728 dac2w2k - ok
19:00:30.0156 5728 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
19:00:30.0156 5728 dac960nt - ok
19:00:30.0171 5728 DgiVecp - ok
19:00:30.0234 5728 Diag69xp (a22d5a027f397e412cbb2d97e8661bff) C:\WINDOWS\system32\Drivers\Diag69xp.sys
19:00:30.0234 5728 Diag69xp - ok
19:00:30.0250 5728 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
19:00:30.0250 5728 Disk - ok
19:00:30.0281 5728 DLABMFSM (a0500678a33802d8954153839301d539) C:\WINDOWS\system32\Drivers\DLABMFSM.SYS
19:00:30.0281 5728 DLABMFSM - ok
19:00:30.0281 5728 DLABOIOM (b8d2f68cac54d46281399f9092644794) C:\WINDOWS\system32\Drivers\DLABOIOM.SYS
19:00:30.0296 5728 DLABOIOM - ok
19:00:30.0296 5728 DLACDBHM (0ee93ab799d1cb4ec90b36f3612fe907) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
19:00:30.0296 5728 DLACDBHM - ok
19:00:30.0312 5728 DLADResM (87413b94ae1fabc117c4e8ae6725134e) C:\WINDOWS\system32\Drivers\DLADResM.SYS
19:00:30.0312 5728 DLADResM - ok
19:00:30.0312 5728 DLAIFS_M (766a148235be1c0039c974446e4c0edc) C:\WINDOWS\system32\Drivers\DLAIFS_M.SYS
19:00:30.0312 5728 DLAIFS_M - ok
19:00:30.0328 5728 DLAOPIOM (38267cca177354f1c64450a43a4f7627) C:\WINDOWS\system32\Drivers\DLAOPIOM.SYS
19:00:30.0328 5728 DLAOPIOM - ok
19:00:30.0343 5728 DLAPoolM (fd363369fd313b46b5aeab1a688b52e9) C:\WINDOWS\system32\Drivers\DLAPoolM.SYS
19:00:30.0343 5728 DLAPoolM - ok
19:00:30.0343 5728 DLARTL_M (336ae18f0912ef4fbe5518849e004d74) C:\WINDOWS\system32\Drivers\DLARTL_M.SYS
19:00:30.0343 5728 DLARTL_M - ok
19:00:30.0375 5728 DLAUDFAM (fd85f682c1cc2a7ca878c7a448e6d87e) C:\WINDOWS\system32\Drivers\DLAUDFAM.SYS
19:00:30.0375 5728 DLAUDFAM - ok
19:00:30.0390 5728 DLAUDF_M (af389ce587b6bf5bbdcd6f6abe5eabc0) C:\WINDOWS\system32\Drivers\DLAUDF_M.SYS
19:00:30.0390 5728 DLAUDF_M - ok
19:00:30.0437 5728 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
19:00:30.0453 5728 dmboot - ok
19:00:30.0453 5728 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
19:00:30.0468 5728 dmio - ok
19:00:30.0468 5728 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
19:00:30.0468 5728 dmload - ok
19:00:30.0515 5728 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
19:00:30.0515 5728 DMusic - ok
19:00:30.0562 5728 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
19:00:30.0578 5728 dpti2o - ok
19:00:30.0578 5728 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
19:00:30.0578 5728 drmkaud - ok
19:00:30.0609 5728 DRVMCDB (5d3b71bb2bb0009d65d290e2ef374bd3) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
19:00:30.0609 5728 DRVMCDB - ok
19:00:30.0640 5728 DRVNDDM (c591ba9f96f40a1fd6494dafdcd17185) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
19:00:30.0640 5728 DRVNDDM - ok
19:00:30.0687 5728 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
19:00:30.0703 5728 Fastfat - ok
19:00:30.0765 5728 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
19:00:30.0765 5728 Fdc - ok
19:00:30.0781 5728 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
19:00:30.0781 5728 Fips - ok
19:00:30.0796 5728 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
19:00:30.0796 5728 Flpydisk - ok
19:00:30.0812 5728 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:00:30.0812 5728 FltMgr - ok
19:00:30.0828 5728 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:00:30.0828 5728 Fs_Rec - ok
19:00:30.0859 5728 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:00:30.0859 5728 Ftdisk - ok
19:00:30.0875 5728 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:00:30.0890 5728 Gpc - ok
19:00:30.0906 5728 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:00:30.0906 5728 HDAudBus - ok
19:00:30.0921 5728 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:00:30.0921 5728 hidusb - ok
19:00:30.0953 5728 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
19:00:30.0953 5728 hpn - ok
19:00:30.0968 5728 HPZid412 (9f1d80908658eb7f1bf70809e0b51470) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
19:00:30.0984 5728 HPZid412 - ok
19:00:30.0984 5728 HPZipr12 (f7e3e9d50f9cd3de28085a8fdaa0a1c3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
19:00:30.0984 5728 HPZipr12 - ok
19:00:31.0000 5728 HPZius12 (cf1b7951b4ec8d13f3c93b74bb2b461b) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
19:00:31.0000 5728 HPZius12 - ok
19:00:31.0031 5728 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
19:00:31.0031 5728 HTTP - ok
19:00:31.0093 5728 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
19:00:31.0093 5728 i2omgmt - ok
19:00:31.0109 5728 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
19:00:31.0125 5728 i2omp - ok
19:00:31.0140 5728 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:00:31.0140 5728 i8042prt - ok
19:00:31.0312 5728 ialm (2da364ee62d4949620b6fae4ffea16a7) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
19:00:31.0468 5728 ialm - ok
19:00:31.0515 5728 iaStor (707c1692214b1c290271067197f075f6) C:\WINDOWS\system32\drivers\iaStor.sys
19:00:31.0515 5728 iaStor - ok
19:00:31.0546 5728 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
19:00:31.0546 5728 Imapi - ok
19:00:31.0578 5728 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
19:00:31.0578 5728 ini910u - ok
19:00:31.0750 5728 IntcAzAudAddService (5c8f36cdcb489111b24003af4dfe1fdc) C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:00:31.0781 5728 IntcAzAudAddService - ok
19:00:31.0812 5728 IntcHdmiAddService (c9ef68bee3b1a62f34125a9fbbaac10c) C:\WINDOWS\system32\drivers\IntcHdmi.sys
19:00:31.0812 5728 IntcHdmiAddService - ok
19:00:31.0828 5728 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
19:00:31.0828 5728 IntelIde - ok
19:00:31.0859 5728 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:00:31.0859 5728 intelppm - ok
19:00:31.0890 5728 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:00:31.0890 5728 Ip6Fw - ok
19:00:31.0921 5728 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:00:31.0921 5728 IpFilterDriver - ok
19:00:31.0921 5728 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:00:31.0921 5728 IpInIp - ok
19:00:31.0953 5728 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:00:31.0953 5728 IpNat - ok
19:00:31.0968 5728 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:00:31.0968 5728 IPSec - ok
19:00:31.0968 5728 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
19:00:31.0984 5728 IRENUM - ok
19:00:32.0031 5728 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:00:32.0031 5728 isapnp - ok
19:00:32.0093 5728 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:00:32.0093 5728 Kbdclass - ok
19:00:32.0109 5728 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:00:32.0109 5728 kbdhid - ok
19:00:32.0156 5728 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
19:00:32.0156 5728 kmixer - ok
19:00:32.0187 5728 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
19:00:32.0187 5728 KSecDD - ok
19:00:32.0234 5728 LANPkt (8f5795b166cbb50966e29982f8cdb310) C:\WINDOWS\system32\DRIVERS\LANPkt.sys
19:00:32.0234 5728 LANPkt - ok
19:00:32.0250 5728 lbrtfdc - ok
19:00:32.0375 5728 LMIInfo (4f69faaabb7db0d43e327c0b6aab40fc) C:\Program Files\LogMeIn\x86\RaInfo.sys
19:00:32.0375 5728 LMIInfo - ok
19:00:32.0437 5728 lmimirr (4477689e2d8ae6b78ba34c9af4cc1ed1) C:\WINDOWS\system32\DRIVERS\lmimirr.sys
19:00:32.0437 5728 lmimirr - ok
19:00:32.0437 5728 LMIRfsClientNP - ok
19:00:32.0453 5728 LMIRfsDriver (3faa563ddf853320f90259d455a01d79) C:\WINDOWS\system32\drivers\LMIRfsDriver.sys
19:00:32.0453 5728 LMIRfsDriver - ok
19:00:32.0468 5728 MEMSWEEP2 - ok
19:00:32.0500 5728 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
19:00:32.0515 5728 mnmdd - ok
19:00:32.0531 5728 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
19:00:32.0546 5728 Modem - ok
19:00:32.0578 5728 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:00:32.0578 5728 Mouclass - ok
19:00:32.0593 5728 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:00:32.0609 5728 mouhid - ok
19:00:32.0609 5728 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
19:00:32.0609 5728 MountMgr - ok
19:00:32.0656 5728 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
19:00:32.0656 5728 mraid35x - ok
19:00:32.0656 5728 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:00:32.0671 5728 MRxDAV - ok
19:00:32.0718 5728 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:00:32.0718 5728 MRxSmb - ok
19:00:32.0734 5728 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
19:00:32.0734 5728 Msfs - ok
19:00:32.0781 5728 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:00:32.0781 5728 MSKSSRV - ok
19:00:32.0828 5728 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:00:32.0828 5728 MSPCLOCK - ok
19:00:32.0859 5728 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
19:00:32.0859 5728 MSPQM - ok
19:00:32.0890 5728 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:00:32.0890 5728 mssmbios - ok
19:00:32.0921 5728 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
19:00:32.0921 5728 MSTEE - ok
19:00:32.0937 5728 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
19:00:32.0937 5728 Mup - ok
19:00:32.0968 5728 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:00:32.0968 5728 NABTSFEC - ok
19:00:33.0015 5728 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
19:00:33.0031 5728 NDIS - ok
19:00:33.0046 5728 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:00:33.0046 5728 NdisIP - ok
19:00:33.0093 5728 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:00:33.0093 5728 NdisTapi - ok
19:00:33.0109 5728 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:00:33.0109 5728 Ndisuio - ok
19:00:33.0109 5728 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:00:33.0109 5728 NdisWan - ok
19:00:33.0156 5728 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
19:00:33.0156 5728 NDProxy - ok
19:00:33.0171 5728 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
19:00:33.0187 5728 NetBIOS - ok
19:00:33.0203 5728 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
19:00:33.0203 5728 NetBT - ok
19:00:33.0234 5728 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
19:00:33.0234 5728 Npfs - ok
19:00:33.0296 5728 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
19:00:33.0296 5728 Ntfs - ok
19:00:33.0312 5728 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
19:00:33.0312 5728 Null - ok
19:00:33.0343 5728 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:00:33.0343 5728 NwlnkFlt - ok
19:00:33.0343 5728 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:00:33.0359 5728 NwlnkFwd - ok
19:00:33.0375 5728 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
19:00:33.0390 5728 Parport - ok
19:00:33.0390 5728 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
19:00:33.0390 5728 PartMgr - ok
19:00:33.0406 5728 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
19:00:33.0406 5728 ParVdm - ok
19:00:33.0421 5728 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
19:00:33.0437 5728 PCI - ok
19:00:33.0437 5728 PCIDump - ok
19:00:33.0468 5728 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
19:00:33.0468 5728 PCIIde - ok
19:00:33.0468 5728 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
19:00:33.0484 5728 Pcmcia - ok
19:00:33.0484 5728 PDCOMP - ok
19:00:33.0500 5728 PDFRAME - ok
19:00:33.0500 5728 PDRELI - ok
19:00:33.0515 5728 PDRFRAME - ok
19:00:33.0515 5728 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
19:00:33.0515 5728 perc2 - ok
19:00:33.0531 5728 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
19:00:33.0531 5728 perc2hib - ok
19:00:33.0578 5728 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:00:33.0578 5728 PptpMiniport - ok
19:00:33.0593 5728 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
19:00:33.0593 5728 PSched - ok
19:00:33.0593 5728 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:00:33.0609 5728 Ptilink - ok
19:00:33.0625 5728 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:00:33.0640 5728 PxHelp20 - ok
19:00:33.0656 5728 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
19:00:33.0656 5728 ql1080 - ok
19:00:33.0656 5728 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
19:00:33.0671 5728 Ql10wnt - ok
19:00:33.0671 5728 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
19:00:33.0671 5728 ql12160 - ok
19:00:33.0687 5728 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
19:00:33.0687 5728 ql1240 - ok
19:00:33.0687 5728 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
19:00:33.0703 5728 ql1280 - ok
19:00:33.0718 5728 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:00:33.0718 5728 RasAcd - ok
19:00:33.0765 5728 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:00:33.0765 5728 Rasl2tp - ok
19:00:33.0781 5728 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:00:33.0781 5728 RasPppoe - ok
19:00:33.0781 5728 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
19:00:33.0796 5728 Raspti - ok
19:00:33.0812 5728 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:00:33.0812 5728 Rdbss - ok
19:00:33.0828 5728 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:00:33.0828 5728 RDPCDD - ok
19:00:33.0859 5728 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:00:33.0859 5728 rdpdr - ok
19:00:33.0921 5728 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
19:00:33.0921 5728 RDPWD - ok
19:00:33.0937 5728 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
19:00:33.0937 5728 redbook - ok
19:00:34.0015 5728 RTLE8023xp (7174f20ad9b7b7878a51ecca03c499c2) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
19:00:34.0015 5728 RTLE8023xp - ok
19:00:34.0062 5728 RTLVLAN (b9ca69921379ea2931c4450fe975bce7) C:\WINDOWS\system32\DRIVERS\RTLVLAN.SYS
19:00:34.0078 5728 RTLVLAN - ok
19:00:34.0109 5728 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:00:34.0109 5728 Secdrv - ok
19:00:34.0125 5728 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
19:00:34.0125 5728 Serenum - ok
19:00:34.0140 5728 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
19:00:34.0140 5728 Serial - ok
19:00:34.0171 5728 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:00:34.0187 5728 Sfloppy - ok
19:00:34.0187 5728 Simbad - ok
19:00:34.0203 5728 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
19:00:34.0203 5728 sisagp - ok
19:00:34.0250 5728 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:00:34.0250 5728 SLIP - ok
19:00:34.0281 5728 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
19:00:34.0296 5728 Sparrow - ok
19:00:34.0312 5728 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
19:00:34.0312 5728 splitter - ok
19:00:34.0328 5728 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
19:00:34.0328 5728 sr - ok
19:00:34.0375 5728 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
19:00:34.0375 5728 Srv - ok
19:00:34.0390 5728 SSPORT - ok
19:00:34.0406 5728 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:00:34.0406 5728 streamip - ok
19:00:34.0437 5728 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:00:34.0437 5728 swenum - ok
19:00:34.0453 5728 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
19:00:34.0453 5728 swmidi - ok
19:00:34.0484 5728 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
19:00:34.0484 5728 symc810 - ok
19:00:34.0484 5728 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
19:00:34.0484 5728 symc8xx - ok
19:00:34.0500 5728 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
19:00:34.0500 5728 sym_hi - ok
19:00:34.0515 5728 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
19:00:34.0515 5728 sym_u3 - ok
19:00:34.0546 5728 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
19:00:34.0546 5728 sysaudio - ok
19:00:34.0609 5728 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:00:34.0609 5728 Tcpip - ok
19:00:34.0640 5728 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:00:34.0640 5728 TDPIPE - ok
19:00:34.0671 5728 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
19:00:34.0671 5728 TDTCP - ok
19:00:34.0687 5728 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:00:34.0687 5728 TermDD - ok
19:00:34.0750 5728 tmactmon (333fd294e6c34232af115f3f11dcaa98) C:\WINDOWS\system32\drivers\tmactmon.sys
19:00:34.0750 5728 tmactmon - ok
19:00:34.0812 5728 tmcomm (0567bf9d1a75bf6c8ff549579fa2aff1) C:\WINDOWS\system32\drivers\tmcomm.sys
19:00:34.0812 5728 tmcomm - ok
19:00:34.0812 5728 tmevtmgr (76920d2989848744b47b6de8c46fa175) C:\WINDOWS\system32\drivers\tmevtmgr.sys
19:00:34.0828 5728 tmevtmgr - ok
19:00:34.0875 5728 tmpreflt (1b9c5c00b30e2536944ae4816456e808) C:\WINDOWS\system32\DRIVERS\tmpreflt.sys
19:00:34.0875 5728 tmpreflt - ok
19:00:34.0921 5728 tmtdi (ce1321671eee4520b9b50cd513f67dad) C:\WINDOWS\system32\DRIVERS\tmtdi.sys
19:00:34.0921 5728 tmtdi - ok
19:00:34.0937 5728 tmxpflt (5a56fa3a97ab6833970409137de187d2) C:\WINDOWS\system32\DRIVERS\tmxpflt.sys
19:00:34.0953 5728 tmxpflt - ok
19:00:34.0984 5728 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
19:00:34.0984 5728 TosIde - ok
19:00:35.0000 5728 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
19:00:35.0000 5728 Udfs - ok
19:00:35.0046 5728 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
19:00:35.0046 5728 ultra - ok
19:00:35.0078 5728 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
19:00:35.0078 5728 Update - ok
19:00:35.0140 5728 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
19:00:35.0140 5728 usbaudio - ok
19:00:35.0171 5728 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:00:35.0171 5728 usbccgp - ok
19:00:35.0187 5728 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:00:35.0187 5728 usbehci - ok
19:00:35.0218 5728 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:00:35.0218 5728 usbhub - ok
19:00:35.0250 5728 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:00:35.0250 5728 usbprint - ok
19:00:35.0296 5728 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:00:35.0296 5728 usbscan - ok
19:00:35.0343 5728 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:00:35.0343 5728 USBSTOR - ok
19:00:35.0359 5728 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:00:35.0375 5728 usbuhci - ok
19:00:35.0421 5728 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
19:00:35.0421 5728 VgaSave - ok
19:00:35.0468 5728 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
19:00:35.0468 5728 viaagp - ok
19:00:35.0484 5728 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
19:00:35.0484 5728 ViaIde - ok
19:00:35.0515 5728 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
19:00:35.0515 5728 VolSnap - ok
19:00:35.0593 5728 vsapint (be0853b0adcb81781081b0954dd7009c) C:\WINDOWS\system32\DRIVERS\vsapint.sys
19:00:35.0609 5728 vsapint - ok
19:00:35.0703 5728 VX3000 (13acfed0e6adca97440169dfd127ebcf) C:\WINDOWS\system32\DRIVERS\VX3000.sys
19:00:35.0734 5728 VX3000 - ok
19:00:35.0796 5728 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:00:35.0812 5728 Wanarp - ok
19:00:35.0812 5728 WDICA - ok
19:00:35.0875 5728 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
19:00:35.0875 5728 wdmaud - ok
19:00:35.0937 5728 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:00:35.0937 5728 WS2IFSL - ok
19:00:36.0000 5728 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:00:36.0000 5728 WSTCODEC - ok
19:00:36.0046 5728 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0
19:00:36.0093 5728 \Device\Harddisk0\DR0 - ok
19:00:36.0109 5728 Boot (0x1200) (c744b919a669bc77e4ba176a22884446) \Device\Harddisk0\DR0\Partition0
19:00:36.0109 5728 \Device\Harddisk0\DR0\Partition0 - ok
19:00:36.0109 5728 ============================================================
19:00:36.0109 5728 Scan finished
19:00:36.0109 5728 ============================================================
19:00:36.0109 5724 Detected object count: 0
19:00:36.0109 5724 Actual detected object count: 0
19:00:50.0000 6084 ============================================================
19:00:50.0000 6084 Scan started
19:00:50.0000 6084 Mode: Manual;
19:00:50.0000 6084 ============================================================
19:00:50.0109 6084 Abiosdsk - ok
19:00:50.0156 6084 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
19:00:50.0156 6084 abp480n5 - ok
19:00:50.0187 6084 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:00:50.0187 6084 ACPI - ok
19:00:50.0187 6084 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
19:00:50.0187 6084 ACPIEC - ok
19:00:50.0234 6084 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
19:00:50.0234 6084 adpu160m - ok
19:00:50.0265 6084 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
19:00:50.0265 6084 aec - ok
19:00:50.0328 6084 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
19:00:50.0328 6084 AFD - ok
19:00:50.0343 6084 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
19:00:50.0343 6084 agp440 - ok
19:00:50.0343 6084 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
19:00:50.0343 6084 agpCPQ - ok
19:00:50.0359 6084 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
19:00:50.0359 6084 Aha154x - ok
19:00:50.0359 6084 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
19:00:50.0375 6084 aic78u2 - ok
19:00:50.0375 6084 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
19:00:50.0375 6084 aic78xx - ok
19:00:50.0390 6084 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
19:00:50.0390 6084 AliIde - ok
19:00:50.0406 6084 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
19:00:50.0406 6084 alim1541 - ok
19:00:50.0421 6084 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
19:00:50.0421 6084 amdagp - ok
19:00:50.0421 6084 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
19:00:50.0421 6084 amsint - ok
19:00:50.0453 6084 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
19:00:50.0453 6084 asc - ok
19:00:50.0468 6084 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
19:00:50.0484 6084 asc3350p - ok
19:00:50.0484 6084 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
19:00:50.0484 6084 asc3550 - ok
19:00:50.0500 6084 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:00:50.0500 6084 AsyncMac - ok
19:00:50.0531 6084 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
19:00:50.0531 6084 atapi - ok
19:00:50.0531 6084 Atdisk - ok
19:00:50.0546 6084 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:00:50.0546 6084 Atmarpc - ok
19:00:50.0562 6084 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
19:00:50.0562 6084 audstub - ok
19:00:50.0625 6084 AVGIDSDriver (2d18221aab3db2d408d6c55c0f23090a) C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys
19:00:50.0625 6084 AVGIDSDriver - ok
19:00:50.0671 6084 AVGIDSEH (1af676db3f3d4cc709cfab2571cf5fc3) C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys
19:00:50.0671 6084 AVGIDSEH - ok
19:00:50.0687 6084 AVGIDSFilter (4c51e233c87f9ec7598551de554bc99d) C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys
19:00:50.0687 6084 AVGIDSFilter - ok
19:00:50.0734 6084 AVGIDSShim (c3fc426e54f55c1cc3219e415b88e10c) C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys
19:00:50.0734 6084 AVGIDSShim - ok
19:00:50.0781 6084 Avgldx86 (4e796d3d2c3182b13b3e3b5a2ad4ef0a) C:\WINDOWS\system32\DRIVERS\avgldx86.sys
19:00:50.0781 6084 Avgldx86 - ok
19:00:50.0796 6084 Avgmfx86 (5639de66b37d02bd22df4cf3155fba60) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
19:00:50.0796 6084 Avgmfx86 - ok
19:00:50.0828 6084 Avgrkx86 (d1baf652eda0ae70896276a1fb32c2d4) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
19:00:50.0828 6084 Avgrkx86 - ok
19:00:50.0875 6084 Avgtdix (aaf0ebcad95f2164cffb544e00392498) C:\WINDOWS\system32\DRIVERS\avgtdix.sys
19:00:50.0875 6084 Avgtdix - ok
19:00:50.0921 6084 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
19:00:50.0921 6084 Beep - ok
19:00:51.0046 6084 catchme - ok
19:00:51.0093 6084 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
19:00:51.0093 6084 cbidf - ok
19:00:51.0109 6084 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
19:00:51.0109 6084 cbidf2k - ok
19:00:51.0140 6084 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:00:51.0140 6084 CCDECODE - ok
19:00:51.0140 6084 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
19:00:51.0140 6084 cd20xrnt - ok
19:00:51.0171 6084 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
19:00:51.0171 6084 Cdaudio - ok
19:00:51.0187 6084 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
19:00:51.0187 6084 Cdfs - ok
19:00:51.0203 6084 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:00:51.0203 6084 Cdrom - ok
19:00:51.0203 6084 Changer - ok
19:00:51.0218 6084 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
19:00:51.0218 6084 CmdIde - ok
19:00:51.0234 6084 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
19:00:51.0234 6084 Cpqarray - ok
19:00:51.0250 6084 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
19:00:51.0250 6084 dac2w2k - ok
19:00:51.0250 6084 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
19:00:51.0265 6084 dac960nt - ok
19:00:51.0265 6084 DgiVecp - ok
19:00:51.0312 6084 Diag69xp (a22d5a027f397e412cbb2d97e8661bff) C:\WINDOWS\system32\Drivers\Diag69xp.sys
19:00:51.0312 6084 Diag69xp - ok
19:00:51.0328 6084 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
19:00:51.0328 6084 Disk - ok
19:00:51.0359 6084 DLABMFSM (a0500678a33802d8954153839301d539) C:\WINDOWS\system32\Drivers\DLABMFSM.SYS
19:00:51.0359 6084 DLABMFSM - ok
19:00:51.0375 6084 DLABOIOM (b8d2f68cac54d46281399f9092644794) C:\WINDOWS\system32\Drivers\DLABOIOM.SYS
19:00:51.0375 6084 DLABOIOM - ok
19:00:51.0375 6084 DLACDBHM (0ee93ab799d1cb4ec90b36f3612fe907) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
19:00:51.0375 6084 DLACDBHM - ok
19:00:51.0390 6084 DLADResM (87413b94ae1fabc117c4e8ae6725134e) C:\WINDOWS\system32\Drivers\DLADResM.SYS
19:00:51.0390 6084 DLADResM - ok
19:00:51.0406 6084 DLAIFS_M (766a148235be1c0039c974446e4c0edc) C:\WINDOWS\system32\Drivers\DLAIFS_M.SYS
19:00:51.0406 6084 DLAIFS_M - ok
19:00:51.0406 6084 DLAOPIOM (38267cca177354f1c64450a43a4f7627) C:\WINDOWS\system32\Drivers\DLAOPIOM.SYS
19:00:51.0406 6084 DLAOPIOM - ok
19:00:51.0421 6084 DLAPoolM (fd363369fd313b46b5aeab1a688b52e9) C:\WINDOWS\system32\Drivers\DLAPoolM.SYS
19:00:51.0421 6084 DLAPoolM - ok
19:00:51.0421 6084 DLARTL_M (336ae18f0912ef4fbe5518849e004d74) C:\WINDOWS\system32\Drivers\DLARTL_M.SYS
19:00:51.0421 6084 DLARTL_M - ok
19:00:51.0453 6084 DLAUDFAM (fd85f682c1cc2a7ca878c7a448e6d87e) C:\WINDOWS\system32\Drivers\DLAUDFAM.SYS
19:00:51.0453 6084 DLAUDFAM - ok
19:00:51.0468 6084 DLAUDF_M (af389ce587b6bf5bbdcd6f6abe5eabc0) C:\WINDOWS\system32\Drivers\DLAUDF_M.SYS
19:00:51.0468 6084 DLAUDF_M - ok
19:00:51.0515 6084 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
19:00:51.0515 6084 dmboot - ok
19:00:51.0531 6084 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
19:00:51.0531 6084 dmio - ok
19:00:51.0531 6084 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
19:00:51.0531 6084 dmload - ok
19:00:51.0578 6084 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
19:00:51.0578 6084 DMusic - ok
19:00:51.0593 6084 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
19:00:51.0593 6084 dpti2o - ok
19:00:51.0640 6084 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
19:00:51.0640 6084 drmkaud - ok
19:00:51.0640 6084 DRVMCDB (5d3b71bb2bb0009d65d290e2ef374bd3) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
19:00:51.0640 6084 DRVMCDB - ok
19:00:51.0656 6084 DRVNDDM (c591ba9f96f40a1fd6494dafdcd17185) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
19:00:51.0656 6084 DRVNDDM - ok
19:00:51.0687 6084 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
19:00:51.0687 6084 Fastfat - ok
19:00:51.0718 6084 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
19:00:51.0718 6084 Fdc - ok
19:00:51.0734 6084 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
19:00:51.0734 6084 Fips - ok
19:00:51.0734 6084 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
19:00:51.0734 6084 Flpydisk - ok
19:00:51.0765 6084 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:00:51.0765 6084 FltMgr - ok
19:00:51.0765 6084 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:00:51.0765 6084 Fs_Rec - ok
19:00:51.0796 6084 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:00:51.0812 6084 Ftdisk - ok
19:00:51.0828 6084 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:00:51.0828 6084 Gpc - ok
19:00:51.0859 6084 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:00:51.0859 6084 HDAudBus - ok
19:00:51.0875 6084 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:00:51.0875 6084 hidusb - ok
19:00:51.0906 6084 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
19:00:51.0906 6084 hpn - ok
19:00:51.0921 6084 HPZid412 (9f1d80908658eb7f1bf70809e0b51470) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
19:00:51.0921 6084 HPZid412 - ok
19:00:51.0937 6084 HPZipr12 (f7e3e9d50f9cd3de28085a8fdaa0a1c3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
19:00:51.0937 6084 HPZipr12 - ok
19:00:51.0953 6084 HPZius12 (cf1b7951b4ec8d13f3c93b74bb2b461b) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
19:00:51.0953 6084 HPZius12 - ok
19:00:51.0984 6084 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
19:00:51.0984 6084 HTTP - ok
19:00:52.0000 6084 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
19:00:52.0000 6084 i2omgmt - ok
19:00:52.0031 6084 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
19:00:52.0031 6084 i2omp - ok
19:00:52.0046 6084 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:00:52.0046 6084 i8042prt - ok
19:00:52.0218 6084 ialm (2da364ee62d4949620b6fae4ffea16a7) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
19:00:52.0265 6084 ialm - ok
19:00:52.0281 6084 iaStor (707c1692214b1c290271067197f075f6) C:\WINDOWS\system32\drivers\iaStor.sys
19:00:52.0296 6084 iaStor - ok
19:00:52.0296 6084 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
19:00:52.0296 6084 Imapi - ok
19:00:52.0312 6084 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
19:00:52.0312 6084 ini910u - ok
19:00:52.0468 6084 IntcAzAudAddService (5c8f36cdcb489111b24003af4dfe1fdc) C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:00:52.0500 6084 IntcAzAudAddService - ok
19:00:52.0531 6084 IntcHdmiAddService (c9ef68bee3b1a62f34125a9fbbaac10c) C:\WINDOWS\system32\drivers\IntcHdmi.sys
19:00:52.0531 6084 IntcHdmiAddService - ok
19:00:52.0531 6084 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
19:00:52.0531 6084 IntelIde - ok
19:00:52.0562 6084 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:00:52.0562 6084 intelppm - ok
19:00:52.0593 6084 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:00:52.0593 6084 Ip6Fw - ok
19:00:52.0625 6084 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:00:52.0625 6084 IpFilterDriver - ok
19:00:52.0625 6084 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:00:52.0625 6084 IpInIp - ok
19:00:52.0671 6084 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:00:52.0671 6084 IpNat - ok
19:00:52.0671 6084 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:00:52.0687 6084 IPSec - ok
19:00:52.0687 6084 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
19:00:52.0687 6084 IRENUM - ok
19:00:52.0750 6084 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:00:52.0750 6084 isapnp - ok
19:00:52.0796 6084 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:00:52.0796 6084 Kbdclass - ok
19:00:52.0796 6084 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:00:52.0812 6084 kbdhid - ok
19:00:52.0859 6084 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
19:00:52.0859 6084 kmixer - ok
19:00:52.0890 6084 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
19:00:52.0890 6084 KSecDD - ok
19:00:52.0937 6084 LANPkt (8f5795b166cbb50966e29982f8cdb310) C:\WINDOWS\system32\DRIVERS\LANPkt.sys
19:00:52.0937 6084 LANPkt - ok
19:00:52.0937 6084 lbrtfdc - ok
19:00:53.0078 6084 LMIInfo (4f69faaabb7db0d43e327c0b6aab40fc) C:\Program Files\LogMeIn\x86\RaInfo.sys
19:00:53.0078 6084 LMIInfo - ok
19:00:53.0140 6084 lmimirr (4477689e2d8ae6b78ba34c9af4cc1ed1) C:\WINDOWS\system32\DRIVERS\lmimirr.sys
19:00:53.0140 6084 lmimirr - ok
19:00:53.0140 6084 LMIRfsClientNP - ok
19:00:53.0156 6084 LMIRfsDriver (3faa563ddf853320f90259d455a01d79) C:\WINDOWS\system32\drivers\LMIRfsDriver.sys
19:00:53.0156 6084 LMIRfsDriver - ok
19:00:53.0171 6084 MEMSWEEP2 - ok
19:00:53.0218 6084 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
19:00:53.0218 6084 mnmdd - ok
19:00:53.0250 6084 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
19:00:53.0250 6084 Modem - ok
19:00:53.0281 6084 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:00:53.0281 6084 Mouclass - ok
19:00:53.0296 6084 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:00:53.0296 6084 mouhid - ok
19:00:53.0312 6084 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
19:00:53.0312 6084 MountMgr - ok
19:00:53.0328 6084 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
19:00:53.0328 6084 mraid35x - ok
19:00:53.0343 6084 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:00:53.0343 6084 MRxDAV - ok
19:00:53.0390 6084 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:00:53.0390 6084 MRxSmb - ok
19:00:53.0406 6084 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
19:00:53.0406 6084 Msfs - ok
19:00:53.0453 6084 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:00:53.0453 6084 MSKSSRV - ok
19:00:53.0484 6084 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:00:53.0484 6084 MSPCLOCK - ok
19:00:53.0515 6084 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
19:00:53.0515 6084 MSPQM - ok
19:00:53.0515 6084 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:00:53.0515 6084 mssmbios - ok
19:00:53.0546 6084 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
19:00:53.0562 6084 MSTEE - ok
19:00:53.0578 6084 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
19:00:53.0578 6084 Mup - ok
19:00:53.0593 6084 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:00:53.0609 6084 NABTSFEC - ok
19:00:53.0640 6084 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
19:00:53.0640 6084 NDIS - ok
19:00:53.0687 6084 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:00:53.0687 6084 NdisIP - ok
19:00:53.0734 6084 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:00:53.0734 6084 NdisTapi - ok
19:00:53.0750 6084 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:00:53.0750 6084 Ndisuio - ok
19:00:53.0750 6084 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:00:53.0765 6084 NdisWan - ok
19:00:53.0796 6084 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
19:00:53.0796 6084 NDProxy - ok
19:00:53.0828 6084 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
19:00:53.0828 6084 NetBIOS - ok
19:00:53.0828 6084 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
19:00:53.0843 6084 NetBT - ok
19:00:53.0859 6084 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
19:00:53.0859 6084 Npfs - ok
19:00:53.0921 6084 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
19:00:53.0921 6084 Ntfs - ok
19:00:53.0937 6084 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
19:00:53.0937 6084 Null - ok
19:00:53.0968 6084 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:00:53.0968 6084 NwlnkFlt - ok
19:00:53.0968 6084 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:00:53.0968 6084 NwlnkFwd - ok
19:00:54.0000 6084 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
19:00:54.0000 6084 Parport - ok
19:00:54.0000 6084 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
19:00:54.0000 6084 PartMgr - ok
19:00:54.0015 6084 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
19:00:54.0015 6084 ParVdm - ok
19:00:54.0031 6084 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
19:00:54.0031 6084 PCI - ok
19:00:54.0046 6084 PCIDump - ok
19:00:54.0062 6084 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
19:00:54.0062 6084 PCIIde - ok
19:00:54.0078 6084 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
19:00:54.0078 6084 Pcmcia - ok
19:00:54.0078 6084 PDCOMP - ok
19:00:54.0093 6084 PDFRAME - ok
19:00:54.0093 6084 PDRELI - ok
19:00:54.0109 6084 PDRFRAME - ok
19:00:54.0109 6084 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
19:00:54.0109 6084 perc2 - ok
19:00:54.0125 6084 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
19:00:54.0125 6084 perc2hib - ok
19:00:54.0171 6084 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:00:54.0171 6084 PptpMiniport - ok
19:00:54.0171 6084 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
19:00:54.0171 6084 PSched - ok
19:00:54.0187 6084 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:00:54.0187 6084 Ptilink - ok
19:00:54.0218 6084 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:00:54.0218 6084 PxHelp20 - ok
19:00:54.0234 6084 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
19:00:54.0234 6084 ql1080 - ok
19:00:54.0234 6084 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
19:00:54.0234 6084 Ql10wnt - ok
19:00:54.0250 6084 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
19:00:54.0250 6084 ql12160 - ok
19:00:54.0265 6084 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
19:00:54.0265 6084 ql1240 - ok
19:00:54.0265 6084 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
19:00:54.0265 6084 ql1280 - ok
19:00:54.0281 6084 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:00:54.0281 6084 RasAcd - ok
19:00:54.0312 6084 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:00:54.0312 6084 Rasl2tp - ok
19:00:54.0328 6084 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:00:54.0328 6084 RasPppoe - ok
19:00:54.0328 6084 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
19:00:54.0328 6084 Raspti - ok
19:00:54.0359 6084 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:00:54.0359 6084 Rdbss - ok
19:00:54.0359 6084 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:00:54.0359 6084 RDPCDD - ok
19:00:54.0375 6084 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:00:54.0375 6084 rdpdr - ok
19:00:54.0421 6084 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
19:00:54.0421 6084 RDPWD - ok
19:00:54.0453 6084 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
19:00:54.0453 6084 redbook - ok
19:00:54.0515 6084 RTLE8023xp (7174f20ad9b7b7878a51ecca03c499c2) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
19:00:54.0515 6084 RTLE8023xp - ok
19:00:54.0562 6084 RTLVLAN (b9ca69921379ea2931c4450fe975bce7) C:\WINDOWS\system32\DRIVERS\RTLVLAN.SYS
19:00:54.0562 6084 RTLVLAN - ok
19:00:54.0593 6084 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:00:54.0593 6084 Secdrv - ok
19:00:54.0609 6084 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
19:00:54.0609 6084 Serenum - ok
19:00:54.0609 6084 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
19:00:54.0609 6084 Serial - ok
19:00:54.0656 6084 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:00:54.0656 6084 Sfloppy - ok
19:00:54.0671 6084 Simbad - ok
19:00:54.0687 6084 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
19:00:54.0687 6084 sisagp - ok
19:00:54.0734 6084 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:00:54.0734 6084 SLIP - ok
19:00:54.0765 6084 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
19:00:54.0765 6084 Sparrow - ok
19:00:54.0812 6084 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
19:00:54.0812 6084 splitter - ok
19:00:54.0828 6084 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
19:00:54.0828 6084 sr - ok
19:00:54.0859 6084 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
19:00:54.0875 6084 Srv - ok
19:00:54.0875 6084 SSPORT - ok
19:00:54.0906 6084 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:00:54.0906 6084 streamip - ok
19:00:54.0921 6084 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:00:54.0937 6084 swenum - ok
19:00:54.0937 6084 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
19:00:54.0937 6084 swmidi - ok
19:00:54.0968 6084 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
19:00:54.0968 6084 symc810 - ok
19:00:54.0984 6084 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
19:00:54.0984 6084 symc8xx - ok
19:00:54.0984 6084 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
19:00:54.0984 6084 sym_hi - ok
19:00:55.0000 6084 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
19:00:55.0000 6084 sym_u3 - ok
19:00:55.0031 6084 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
19:00:55.0031 6084 sysaudio - ok
19:00:55.0093 6084 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:00:55.0093 6084 Tcpip - ok
19:00:55.0125 6084 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:00:55.0125 6084 TDPIPE - ok
19:00:55.0156 6084 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
19:00:55.0156 6084 TDTCP - ok
19:00:55.0171 6084 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:00:55.0171 6084 TermDD - ok
19:00:55.0218 6084 tmactmon (333fd294e6c34232af115f3f11dcaa98) C:\WINDOWS\system32\drivers\tmactmon.sys
19:00:55.0218 6084 tmactmon - ok
19:00:55.0234 6084 tmcomm (0567bf9d1a75bf6c8ff549579fa2aff1) C:\WINDOWS\system32\drivers\tmcomm.sys
19:00:55.0234 6084 tmcomm - ok
19:00:55.0250 6084 tmevtmgr (76920d2989848744b47b6de8c46fa175) C:\WINDOWS\system32\drivers\tmevtmgr.sys
19:00:55.0250 6084 tmevtmgr - ok
19:00:55.0296 6084 tmpreflt (1b9c5c00b30e2536944ae4816456e808) C:\WINDOWS\system32\DRIVERS\tmpreflt.sys
19:00:55.0296 6084 tmpreflt - ok
19:00:55.0343 6084 tmtdi (ce1321671eee4520b9b50cd513f67dad) C:\WINDOWS\system32\DRIVERS\tmtdi.sys
19:00:55.0343 6084 tmtdi - ok
19:00:55.0375 6084 tmxpflt (5a56fa3a97ab6833970409137de187d2) C:\WINDOWS\system32\DRIVERS\tmxpflt.sys
19:00:55.0375 6084 tmxpflt - ok
19:00:55.0375 6084 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
19:00:55.0375 6084 TosIde - ok
19:00:55.0390 6084 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
19:00:55.0406 6084 Udfs - ok
19:00:55.0421 6084 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
19:00:55.0421 6084 ultra - ok
19:00:55.0453 6084 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
19:00:55.0468 6084 Update - ok
19:00:55.0515 6084 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
19:00:55.0515 6084 usbaudio - ok
19:00:55.0531 6084 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:00:55.0531 6084 usbccgp - ok
19:00:55.0546 6084 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:00:55.0546 6084 usbehci - ok
19:00:55.0578 6084 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:00:55.0578 6084 usbhub - ok
19:00:55.0625 6084 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:00:55.0625 6084 usbprint - ok
19:00:55.0671 6084 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:00:55.0671 6084 usbscan - ok
19:00:55.0718 6084 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:00:55.0718 6084 USBSTOR - ok
19:00:55.0734 6084 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:00:55.0750 6084 usbuhci - ok
19:00:55.0750 6084 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
19:00:55.0750 6084 VgaSave - ok
19:00:55.0796 6084 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
19:00:55.0796 6084 viaagp - ok
19:00:55.0812 6084 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
19:00:55.0812 6084 ViaIde - ok
19:00:55.0843 6084 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
19:00:55.0843 6084 VolSnap - ok
19:00:55.0906 6084 vsapint (be0853b0adcb81781081b0954dd7009c) C:\WINDOWS\system32\DRIVERS\vsapint.sys
19:00:55.0921 6084 vsapint - ok
19:00:56.0015 6084 VX3000 (13acfed0e6adca97440169dfd127ebcf) C:\WINDOWS\system32\DRIVERS\VX3000.sys
19:00:56.0031 6084 VX3000 - ok
19:00:56.0062 6084 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:00:56.0062 6084 Wanarp - ok
19:00:56.0062 6084 WDICA - ok
19:00:56.0125 6084 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
19:00:56.0125 6084 wdmaud - ok
19:00:56.0171 6084 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:00:56.0171 6084 WS2IFSL - ok
19:00:56.0218 6084 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:00:56.0218 6084 WSTCODEC - ok
19:00:56.0250 6084 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0
19:00:56.0312 6084 \Device\Harddisk0\DR0 - ok
19:00:56.0312 6084 Boot (0x1200) (c744b919a669bc77e4ba176a22884446) \Device\Harddisk0\DR0\Partition0
19:00:56.0312 6084 \Device\Harddisk0\DR0\Partition0 - ok
19:00:56.0312 6084 ============================================================
19:00:56.0312 6084 Scan finished
19:00:56.0312 6084 ============================================================
19:00:56.0328 6076 Detected object count: 0
19:00:56.0328 6076 Actual detected object count: 0

#8 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:15 PM

Posted 02 March 2012 - 10:01 PM

now try and run the aswMBR for me


gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#9 kensama

kensama
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:12:15 PM

Posted 02 March 2012 - 10:06 PM

Here is the log report for aswMBR

aswMBR version 0.9.9.1649 Copyright© 2011 AVAST Software
Run date: 2012-03-02 19:02:52
-----------------------------
19:02:52.296 OS Version: Windows 5.1.2600 Service Pack 3
19:02:52.296 Number of processors: 2 586 0x170A
19:02:52.296 ComputerName: KENXP UserName: ken
19:02:56.218 Initialize success
19:05:50.046 AVAST engine defs: 12030201
19:07:42.640 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
19:07:42.640 Disk 0 Vendor: WDC_WD25 01.0 Size: 238418MB BusType: 3
19:07:42.656 Disk 0 MBR read successfully
19:07:42.656 Disk 0 MBR scan
19:07:42.703 Disk 0 Windows VISTA default MBR code
19:07:42.718 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
19:07:42.750 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 238377 MB offset 81920
19:07:42.750 Disk 0 scanning sectors +488281234
19:07:43.109 Disk 0 scanning C:\WINDOWS\system32\drivers
19:07:53.671 Service scanning
19:08:10.484 Modules scanning
19:08:16.625 Disk 0 trace - called modules:
19:08:16.671 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
19:08:17.171 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8ac27ab8]
19:08:17.171 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x8a6c8028]
19:08:18.468 AVAST engine scan C:\WINDOWS
19:08:36.609 AVAST engine scan C:\WINDOWS\system32
19:10:59.265 AVAST engine scan C:\WINDOWS\system32\drivers
19:11:19.156 AVAST engine scan C:\Documents and Settings\ken.INSTITUTEOFGLOB
19:16:32.416 AVAST engine scan C:\Documents and Settings\All Users
19:18:40.564 Scan finished successfully
19:18:57.535 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\ken.INSTITUTEOFGLOB\Desktop\MBR.dat"
19:18:57.535 The log file has been saved successfully to "C:\Documents and Settings\ken.INSTITUTEOFGLOB\Desktop\aswMBR.txt"

#10 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:15 PM

Posted 02 March 2012 - 10:13 PM

Greetings

At this time I would like you to run this script for me and it is a good time to check out the computer to see if there is anything else that needs to be addressed.

:Run CFScript:

Open Notepad and copy/paste the text in the box into the window:

ClearJavaCache::

KillAll::

File::
C:\user.js

Folder::
c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Funmoods
c:\program files\BabylonToolbar
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\I Want This
c:\program files\I Want This
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon
c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Babylon
c:\documents and settings\All Users\Application Data\Babylon

FireFox::
FF - ProfilePath - c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Mozilla\Firefox\Profiles\80ynkwhc.default\
FF - prefs.js: browser.startup.homepage - hxxp://start.funmoods.com/?f=1&a=ironto
FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?AF=109928&babsrc=adbartrp&mntrId=8e5d509300000000000000219b2bfc2e&q=
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 50370
FF - user.js: extensions.BabylonToolbar_i.id - 8e5d509300000000000000219b2bfc2e
FF - user.js: extensions.BabylonToolbar_i.hardId - 8e5d509300000000000000219b2bfc2e
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15381
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1716:33
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb9
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=109928
FF - user.js: extensions.BabylonToolbar_i.babExt -
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
FF - user.js: extensions.funmoods_i.hmpg - true
FF - user.js: extensions.funmoods_i.hmpgUrl - hxxp://start.funmoods.com/?f=1&a=ironto
FF - user.js: extensions.funmoods_i.dfltSrch - true
FF - user.js: extensions.funmoods_i.srchPrvdr - Search
FF - user.js: extensions.funmoods_i.dnsErr - true
FF - user.js: extensions.funmoods_i.newTab - true
FF - user.js: extensions.funmoods_i.newTabUrl - hxxp://start.funmoods.com/?f=2&a=ironto
FF - user.js: extensions.funmoods_i.tlbrSrchUrl - hxxp://start.funmoods.com/results.php?f=3&a=ironto&q=
FF - user.js: extensions.funmoods_i.id - 8e5d509300000000000000219b2bfc2e
FF - user.js: extensions.funmoods_i.instlDay - 15393
FF - user.js: extensions.funmoods_i.vrsn - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsni - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsnTs - 1.5.11.1618:46
FF - user.js: extensions.funmoods_i.prtnrId - funmoods
FF - user.js: extensions.funmoods_i.prdct - funmoods
FF - user.js: extensions.funmoods_i.aflt - ironto
FF - user.js: extensions.funmoods_i.smplGrp - none
FF - user.js: extensions.funmoods_i.tlbrId - base
FF - user.js: extensions.funmoods_i.instlRef - 
FF - user.js: extensions.funmoods_i.dfltLng - 
FF - user.js: extensions.funmoods_i.excTlbr - false

Save it to your desktop as CFScript.txt

Refering to the picture above, drag CFScript.txt into ComboFix.exe
Posted Image
This will let ComboFix run again.
Restart if you have to.
Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following

  • report from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now after running the script?

Gringo

I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#11 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:15 PM

Posted 05 March 2012 - 01:49 AM

Hello


Just checking in on you as it has been a couple of days since I have heard from you.

Are you having any troubles or just need more time?




Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#12 kensama

kensama
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:12:15 PM

Posted 05 March 2012 - 12:05 PM

I'm sorry for the delay.
When I run the combofix, the computer crushed.
I will try again, and get back to you soon.
Thank you for your support.

#13 kensama

kensama
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:12:15 PM

Posted 05 March 2012 - 01:09 PM

here is the log report!

ComboFix 12-03-02.01 - ken 03/05/2012 10:08:43.20.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3037.1943 [GMT -8:00]
Running from: c:\documents and settings\ken.INSTITUTEOFGLOB\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\ken.INSTITUTEOFGLOB\Desktop\CFScript.txt
AV: AVG Anti-Virus Business Edition 2011 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: PC Cleaner Pro *Disabled/Updated* {737A8864-C2D9-4337-B49A-B5E35815B9BB}
AV: Trend Micro AntiVirus *Disabled/Updated* {7D2296BC-32CC-4519-917E-52E652474AF5}
* Created a new restore point
.
FILE ::
"C:\user.js"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\Babylon
c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Babylon
c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Babylon\log_file.txt
c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Funmoods
c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Funmoods\Funmoods\us\20101003\kywrds.tat
c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Funmoods\Funmoods\us\20101003\kywrds.ttr
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\bab033.tbinst.dat
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\bab091.norecovericon.dat
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\Babylon.dat
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\BExternal.dll
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\cmbx.png
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\common.js
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\eula.html
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\lngs.png
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\page1.css
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\page1.html
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\page1.js
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\page1Lrg.css
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\page2.css
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\page2.html
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\page2.js
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\page2Lrg.css
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\page9.html
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\pBar.gif
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\title1.png
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\title2.png
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\toolBar.jpg
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\HtmlScreens\vIcn.png
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\IECookieLow.dll
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\Setup-tbmntr903-9.0.3.34.zpb
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\Setup.exe
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\SetupStrings.dat
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\Babylon\Setup\sqlite3.dll
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\I Want This
c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\I Want This\Chrome\I Want This.crx
c:\program files\BabylonToolbar
c:\program files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarApp.dll
c:\program files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarEng.dll
c:\program files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarsrv.exe
c:\program files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll
c:\program files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll
c:\program files\BabylonToolbar\BabylonToolbar\1.5.3.17\uninstall.exe
c:\program files\I Want This
c:\program files\I Want This\appAPIinternalWrapper.js
c:\program files\I Want This\fb.js
c:\program files\I Want This\I Want This.dll
c:\program files\I Want This\I Want This.exe
c:\program files\I Want This\I Want This.ico
c:\program files\I Want This\I Want This.ini
c:\program files\I Want This\I Want ThisGui.exe
c:\program files\I Want This\I Want ThisInstaller.log
c:\program files\I Want This\jquery.js
c:\program files\I Want This\json.js
c:\program files\I Want This\Uninstall.exe
C:\user.js
.
.
((((((((((((((((((((((((( Files Created from 2012-02-05 to 2012-03-05 )))))))))))))))))))))))))))))))
.
.
2012-02-25 02:00 . 2012-02-25 02:00 -------- d--h--w- c:\windows\PIF
2012-02-23 22:27 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2012-02-23 22:27 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2012-02-23 22:27 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2012-02-23 22:27 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2012-02-23 22:27 . 2012-02-23 22:27 -------- d-----w- C:\383eb1c589e3871c87
2012-02-22 20:50 . 2012-02-22 20:50 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\SupportSoft
2012-02-16 02:40 . 2012-02-22 03:40 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2012-02-16 01:22 . 2012-02-16 01:22 -------- d-----w- c:\program files\Common Files\Java
2012-02-16 01:21 . 2012-02-16 01:21 73728 ----a-w- c:\windows\system32\javacpl.cpl
2012-02-16 01:21 . 2012-02-16 01:21 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-02-16 01:21 . 2012-02-16 01:21 -------- d-----w- c:\program files\Java
2012-02-16 01:02 . 2012-02-16 01:02 -------- d-----w- C:\_OTM
2012-02-11 00:38 . 2012-02-13 22:54 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}
2012-02-11 00:38 . 2012-02-11 00:38 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Local Settings\Application Data\PackageAware
2012-02-11 00:37 . 2012-02-11 00:37 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\BabylonToolbar
2012-02-10 23:21 . 2012-02-10 23:21 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Malwarebytes
2012-02-10 23:21 . 2012-02-10 23:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2012-02-10 23:11 . 2012-02-10 23:11 -------- d-----w- c:\documents and settings\ken\Local Settings\Application Data\Mozilla
2012-02-10 23:10 . 2012-02-10 23:10 -------- d-sh--w- c:\documents and settings\ken\IETldCache
2012-02-10 22:41 . 2012-02-10 22:41 -------- d-----w- c:\documents and settings\All Users\Application Data\0fe92a
2012-02-09 23:18 . 2012-02-10 00:45 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\PCPro
2012-02-09 23:18 . 2012-02-09 23:18 -------- d-----w- c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\PC Cleaners
2012-02-09 23:18 . 2012-02-09 23:18 5279504 ----a-w- c:\windows\uninst.exe
2012-02-09 23:18 . 2012-02-09 23:18 -------- d-----w- c:\documents and settings\All Users\Application Data\PC1Data
2012-02-09 21:59 . 2012-02-09 21:59 -------- d-----w- c:\documents and settings\All Users\Application Data\RegAce
2012-02-09 21:58 . 2012-02-09 22:11 -------- d-----w- c:\windows\RegAce
2012-02-09 21:48 . 2012-02-09 21:48 -------- d-----w- c:\program files\Sophos
2012-02-09 21:20 . 2012-02-09 21:20 -------- d-----w- c:\program files\Common Files\Skype
2012-02-09 21:20 . 2012-02-09 21:20 -------- d-----r- c:\program files\Skype
2012-02-09 21:20 . 2012-02-09 21:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype
2012-02-09 18:41 . 2012-02-09 18:41 -------- d-----w- c:\program files\MSXML 4.0
2012-02-09 18:40 . 2012-02-09 18:43 -------- d-----w- c:\windows\ie8updates
2012-02-09 18:40 . 2012-02-09 18:40 -------- d-----w- c:\windows\ServicePackFiles
2012-02-09 18:30 . 2011-11-04 19:20 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2012-02-09 18:30 . 2011-11-04 19:20 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-02-09 18:30 . 2011-11-04 19:20 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2012-02-09 18:30 . 2011-11-04 19:20 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2012-02-09 18:30 . 2011-11-04 19:20 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2012-02-09 18:30 . 2011-11-04 19:20 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll
2012-02-09 18:30 . 2011-11-04 19:20 11081728 -c----w- c:\windows\system32\dllcache\ieframe.dll
2012-02-09 18:29 . 2011-06-24 14:10 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2012-02-09 18:29 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2012-02-09 18:28 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2012-02-09 18:26 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2012-02-09 18:26 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2012-02-09 18:25 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2012-02-09 18:25 . 2011-02-08 13:33 978944 -c----w- c:\windows\system32\dllcache\mfc42.dll
2012-02-09 18:25 . 2010-09-18 06:53 954368 -c----w- c:\windows\system32\dllcache\mfc40.dll
2012-02-09 18:25 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2012-02-09 18:25 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2012-02-09 18:24 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2012-02-09 18:24 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2012-02-09 18:22 . 2010-08-27 08:02 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2012-02-09 18:22 . 2009-10-15 16:28 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2012-02-09 18:21 . 2009-06-21 21:44 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2012-02-09 18:18 . 2011-02-17 12:32 5120 ----a-w- c:\windows\system32\xpsp4res.dll
2012-02-09 18:18 . 2010-07-12 12:55 218112 -c----w- c:\windows\system32\dllcache\wordpad.exe
2012-02-09 18:16 . 2009-08-07 03:24 21728 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-02-09 18:16 . 2009-08-07 03:24 17632 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-02-09 18:16 . 2009-08-07 03:24 15072 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-02-09 18:16 . 2009-08-07 03:24 15064 ----a-w- c:\windows\system32\wuapi.dll.mui
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-30 20:53 . 2011-06-02 17:35 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot_2012-02-24_03.37.39 )))))))))))))))))))))))))))))))))))))))))
.
+ 1601-01-01 00:00 . 1601-01-01 00:00 0 c:\windows\SoftwareDistribution\EventCache\{2EC9F000-D9A6-4026-BC2D-957375394FA4}.bin
+ 2012-03-05 18:14 . 2012-03-05 18:14 16384 c:\windows\temp\Perflib_Perfdata_134.dat
+ 2008-04-25 21:27 . 2008-04-14 12:00 51200 c:\windows\system32\dllcache\oobebaln.exe
+ 2008-04-25 21:27 . 2008-04-14 12:00 29184 c:\windows\system32\dllcache\msoobe.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-09-11 218032]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-01-31 17147528]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2008-08-18 16806912]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-08-18 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-08-18 178712]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-08-18 150040]
"8169Diag"="c:\program files\Realtek\Diagnostics Utility\8169Diag.exe" [2008-02-26 909312]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-07-20 182808]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2012-01-04 40376]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2012-01-03 640440]
"dscactivate"="c:\program files\Dell Support Center\gs_agent\custom\dsca.exe" [2008-03-11 16384]
"PDVDDXSrv"="c:\program files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2008-05-23 128296]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2008-04-14 208952]
"IMEKRMIG6.1"="c:\windows\ime\imkr6_1\IMEKRMIG.EXE" [2008-04-14 44032]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2008-04-14 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"LifeCam"="c:\program files\Microsoft LifeCam\LifeExp.exe" [2007-05-17 279912]
"VX3000"="c:\windows\vVX3000.exe" [2007-04-10 709992]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"UfSeAgnt.exe"="c:\program files\Trend Micro\Internet Security\UfSeAgnt.exe" [2009-04-01 995528]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"LogMeIn GUI"="c:\program files\LogMeIn\x86\LogMeInSystray.exe" [2008-08-11 63048]
"AVG_TRAY"="c:\program files\AVG\AVG10\avgtray.exe" [2012-01-18 2339168]
"Dell PanelMgr"="c:\windows\Dell\PanelMgr\SSMMgr.exe" [2008-08-28 541936]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2004-11-4 258048]
QuickBooks Update Agent.lnk - c:\program files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe [2006-11-21 811008]
Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoWelcomeScreen"= 1 (0x1)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
2010-09-28 17:20 87424 ----a-w- c:\windows\system32\LMIinit.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG10\avgchsvx.exe /sync\0c:\progra~1\AVG\AVG10\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\TrendAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\NetMeeting\\conf.exe"=
"c:\\Program Files\\Intuit\\QuickBooks 2006\\QBDBMgrN.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [9/13/2010 3:27 PM 22992]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [9/7/2010 2:48 AM 32592]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [9/7/2010 2:48 AM 248656]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [9/7/2010 2:49 AM 297168]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [1/31/2012 3:02 PM 7391072]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG10\avgwdsvc.exe [2/8/2011 4:33 AM 269520]
R2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn\x86\LMIGuardianSvc.exe [9/29/2010 9:20 AM 374152]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [8/11/2008 12:41 PM 12856]
R2 tmevtmgr;tmevtmgr;c:\windows\system32\drivers\tmevtmgr.sys [6/1/2009 8:37 AM 50192]
R2 tmpreflt;tmpreflt;c:\windows\system32\drivers\tmpreflt.sys [6/1/2009 8:32 AM 36368]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [8/19/2010 8:42 PM 134480]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [8/19/2010 8:42 PM 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [8/19/2010 8:42 PM 27216]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [3/4/2009 1:42 PM 110080]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [4/30/2010 3:48 PM 136176]
S2 LANPkt;Realtek LANPkt Protocol Driver;c:\windows\system32\drivers\LANPkt.sys [3/4/2009 11:53 AM 8960]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [1/31/2012 3:09 PM 158856]
S2 SSPORT;SSPORT;\??\c:\windows\system32\Drivers\SSPORT.sys --> c:\windows\system32\Drivers\SSPORT.sys [?]
S2 TmProxy;Trend Micro Proxy Service;c:\program files\Trend Micro\Internet Security\TmProxy.exe [6/1/2009 8:37 AM 677128]
S3 Diag69xp;Diag69xp;c:\windows\system32\drivers\diag69xp.sys [3/4/2009 11:54 AM 11264]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [4/30/2010 3:48 PM 136176]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\71.tmp --> c:\windows\system32\71.tmp [?]
S3 RTLVLAN;Realtek VLAN Intermediate Driver;c:\windows\system32\drivers\RTLVLAN.SYS [3/4/2009 11:53 AM 16640]
.
Contents of the 'Scheduled Tasks' folder
.
2012-03-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-30 23:48]
.
2012-03-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-30 23:48]
.
2012-03-05 c:\windows\Tasks\User_Feed_Synchronization-{390BD5F0-2EF7-409F-9B49-4D266E76E208}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 11:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.co.jp/
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{B6D5B198-AF64-4487-87C9-A4E70D7B661B}: NameServer = 192.168.1.65,68.94.156.1,68.94.157.1
FF - ProfilePath - c:\documents and settings\ken.INSTITUTEOFGLOB\Application Data\Mozilla\Firefox\Profiles\80ynkwhc.default\
FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-BabylonToolbar - c:\program files\BabylonToolbar\BabylonToolbar\1.5.3.17\uninstall.exe
AddRemove-I Want This - c:\program files\I Want This\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-03-05 10:18
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MEMSWEEP2]
"ImagePath"="\??\c:\windows\system32\71.tmp"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(924)
c:\windows\system32\LMIinit.dll
c:\windows\system32\LMIRfsClientNP.dll
.
- - - - - - - > 'explorer.exe'(224)
c:\windows\system32\WININET.dll
c:\windows\IME\IMJP8_1\Dicts\IMJPCD.DIC
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\Roxio\Drag-to-Disc\Shellex.dll
c:\program files\Common Files\Roxio Shared\9.0\DLLShared\DLAAPI_W.DLL
c:\program files\Roxio\Drag-to-Disc\ShellRes.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\progra~1\AVG\AVG10\avgchsvx.exe
c:\program files\Trend Micro\BM\TMBMSRV.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\program files\Microsoft LifeCam\MSCamS32.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Trend Micro\Internet Security\SfCtlCom.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\windows\system32\SearchIndexer.exe
c:\program files\AVG\AVG10\avgnsx.exe
c:\program files\AVG\AVG10\avgcsrvx.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\igfxsrvc.exe
c:\program files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
c:\progra~1\AVG\AVG10\avgrsx.exe
c:\program files\AVG\AVG10\avgcsrvx.exe
.
**************************************************************************
.
Completion time: 2012-03-05 10:22:09 - machine was rebooted
ComboFix-quarantined-files.txt 2012-03-05 18:22
ComboFix2.txt 2012-03-03 01:38
ComboFix3.txt 2012-02-24 03:53
ComboFix4.txt 2012-02-23 03:15
ComboFix5.txt 2012-03-03 04:04
.
Pre-Run: 214,348,636,160 bytes free
Post-Run: 214,386,216,960 bytes free
.
- - End Of File - - 72C1AC7EE078E9FC8E8DF000820A0E76

#14 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:04:15 PM

Posted 06 March 2012 - 08:48 AM

Hello


I would like to know how the computer is doing now



I would like to see a report that combofix makes.

extra combofix report

  • push the "windows key" + "R" (between the "Ctrl" button and "Alt" Button)
  • please copy and past the following into the box
C:\Qoobox\Add-Remove Programs.txt
  • click ok

copy and paste the report into this topic for me to review

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#15 kensama

kensama
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:12:15 PM

Posted 06 March 2012 - 12:11 PM

1500
1500_Help
1500Trb
Adobe Acrobat 9 Standard - English, Français, Deutsch
Adobe Acrobat 9.5.0 - CPSID_83708
Adobe Flash Player 11 ActiveX
AiO_Scan
AiOSoftware
AVG 2011
Babylon toolbar on IE
BufferChm
Choice Guard
Compatibility Pack for the 2007 Office system
Dell 1230c Color Laser Printer
Dell Support Center
Destinations
Diagnostics Utility
Director
Fax
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB953955)
Hotfix for Windows XP (KB954434)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB954708)
Hotfix for Windows XP (KB958347)
Hotfix for Windows XP (KB959252)
HP Image Zone 4.7
HP Image Zone Express
HP Product Assistant
HP PSC & OfficeJet 4.7
HP Update
HPSystemDiagnostics
I Want This
IDC1004 PrintManager
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
Java Auto Updater
Java™ 6 Update 31
Junk Mail filter update
LogMeIn
MFCLOC
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft LifeCam
Microsoft Office Professional Edition 2003
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Sync Framework Runtime Native v1.0 (x86)
Microsoft Sync Framework Services Native v1.0 (x86)
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Mozilla Firefox 7.0.1 (x86 en-US)
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 6.0 Parser (KB927977)
PowerDVD
ProductContext
QFolder
QuickBooks Pro 2006
Readme
Realtek High Definition Audio Driver
Roxio Activation Module
Roxio Creator Audio
Roxio Creator BDAV Plugin
Roxio Creator Copy
Roxio Creator Data
Roxio Creator DE
Roxio Creator Tools
Roxio Drag-to-Disc
Roxio Express Labeler 3
Roxio Update Manager
Scan
ScannerCopy
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Search 4 - KB963093
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2491683)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960714)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982665)
Segoe UI
Skype™ 5.8
Sonic CinePlayer Decoder Pack
TrayApp
Trend Micro AntiVirus
Unload
Update for Windows XP (KB2641690)
Update for Windows XP (KB898461)
Update for Windows XP (KB951618-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
WebFldrs XP
WebReg
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Sync
Windows Live Toolbar
Windows Live Upload Tool
Windows Live Writer
Windows Media Format 11 runtime
Windows Presentation Foundation
Windows Search 4.0
XML Paper Specification Shared Components Pack 1.0




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users