News: Cexx forums, with volunteers dedicated to helping you remove malware and stay protected
 
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
May 22, 2013, 13:11:11
linktree cexx.org - Support Forums  >  Spyware-Related Stuff  >  Spyware - Help!
linktree Topic: Freezing Up
Pages: [1] 2   Go Down
« previous next »
  Print  
Topic: Freezing Up  (Read 2824 times)
0 Members and 1 Guest are viewing this topic.
« on: January 25, 2012, 17:49:56 »
jerky Offline
Jr. Member

WWW 		**

Karma: 0
Posts: 64
Computer is running very slowly and freezing up in IE...when I try to reach Google I get a site called "pumadating.com"  ..............below is my HJT log...please help in any way that you can...thank you very much.

Logfile of HijackThis v1.99.1
Scan saved at 8:45:43 PM, on 1/25/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\lxdncoms.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\StartNow Toolbar\ToolbarUpdaterService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\StartupMonitor.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Softland\FBackup 4\fbaSched.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\HJT\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startnow.com/?src=startpage&provider=Bing&provider_code=Z059&partner_id=308&product_id=435&affiliate_id=&channel=rjacs&toolbar_id=200&toolbar_version=2.0&install_country=US&install_date=20110711&user_guid=A99A4834047F4409A166CDC599103169&machine_id=f89d68ee8c1df510010bce427351505d&browser=IE&os=win&os_version=5.1-x86-SP3
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: StartNowToolbarHelper - {6E13D095-45C3-4271-9475-F3B48227DD9F} - C:\Program Files\StartNow Toolbar\Toolbar32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: RebateRobot - {FA3FEDF6-1A34-4076-9F25-A26A2DE6A401} - C:\Program Files\RebateRobot\RebateRobot.dll
O3 - Toolbar: StartNow Toolbar - {5911488E-9D1E-40ec-8CBB-06B231CC153F} - C:\Program Files\StartNow Toolbar\Toolbar32.dll
O4 - HKLM\..\Run: [Run StartupMonitor] StartupMonitor.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [FBackup Scheduler] "C:\Program Files\Softland\FBackup 4\fbaSched.exe"
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: eBay - Homepage - {EF79EAC5-3452-4E02-B8BD-BA4C89F1AC7A} - C:\Program Files\IrfanView\Ebay\Ebay.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: {072D3F2E-5FB6-11D3-B461-00C04FA35A21} (CFForm Runtime) - http://pubgis.co.pinellas.fl.us/CFIDE/classes/CFJava.cab
O16 - DPF: {0C568603-D79D-11D2-87A7-00C04FF158BB} (BrowseFolderPopup Class) - http://download.mcafee.com/molbin/Shared/MGBrwFld.cab
O16 - DPF: {26CBF141-7D0F-46E1-AA06-718958B6E4D2} - http://download.ebay.com/turbo_lister/US/install.cab
O16 - DPF: {33E54F7F-561C-49E6-929B-D7E76D3AFEB1} (Pool Control) - http://www.worldwinner.com/games/v50/pool/pool.cab
O16 - DPF: {38AB0814-B09B-4378-9940-14A19638C3C2} (Auctiva Image Uploader Control) - http://www.auctiva.com/Aurigma/ImageUploader57.cab
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/20021205/qtinstall.info.apple.com/drakken/us/win/QuickTimeInstaller.exe
O16 - DPF: {474F00F5-3853-492C-AC3A-476512BBC336} (UploadListView Class) - http://picasaweb.google.com/s/v/14.22/uploader2.cab
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-3-48.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://bin.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,81/mcinsctl.cab
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (MSN Games – Game Chat) - http://zone.msn.com/binframework/v10/ZPAChat.cab55579.cab
O16 - DPF: {5D80A6D1-B500-47DA-82B8-EB9875F85B4D} (Google Gadget Control) - http://dl.google.com/dl/desktop/nv/GoogleGadgetPluginIEWin.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase6087.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1129420743546
O16 - DPF: {74C861A1-D548-4916-BC8A-FDE92EDFF62C} - http://mediaplayer.walmart.com/installer/install.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - http://www.worldwinner.com/games/shared/wwlaunch.cab
O16 - DPF: {94B82441-A413-4E43-8422-D49930E69764} (TLIEFlashObj Class) - https://webchat.dell.com/Media/VisitorChat/TLIEFlash.CAB
O16 - DPF: {95B5D20C-BD31-4489-8ABF-F8C8BE748463} (MSN Games – Hearts) - http://zone.msn.com/bingame/zpagames/zpa_hrtz.cab99160.cab
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - http://www.crucial.com/controls/cpcScanner.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab
O16 - DPF: {BC0AE9E6-E549-4554-A222-EA083A894683} (QuickUpload) - http://a01-b01.mypicturetown.com/P2PwebCmdController/x/Upld_47.CAB
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://bin.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,19/mcgdmgr.cab
O16 - DPF: {C487F60B-59B9-47D9-BFDF-AB26786F8823} - http://zone.msn.com/bingame/zpagames/zpa_stoo.cab62201.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} - http://fdl.msn.com/zone/datafiles/heartbeat.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: lxdn_device -   - C:\WINDOWS\system32\lxdncoms.exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINDOWS\System32\NMSSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Updater Service for StartNow Toolbar - Unknown owner - C:\Program Files\StartNow Toolbar\ToolbarUpdaterService.exe
Logged
« Reply #1 on: January 26, 2012, 00:38:07 »
dvk01 Offline
Administrator WWW
Karma: 6
Posts: 308
Run tdss killer from http://support.kaspersky.com/viruses/solutions?qid=208280684

let it cure anything it fnds ( except SPTD.SYS, which should be ignored) & then reboot

post back with its log
Logged
Derek
Microsoft MVP/Consumer Security
The Spykiller | Security and Privacy | Hedgehog Rescue
« Reply #2 on: January 26, 2012, 08:24:34 »
jerky Offline
Jr. Member

WWW 		**

Karma: 0
Posts: 64
The scan found 2 viruses which I "cured"...my computer freezes up when I attempt to "restart" so when it froze up I turned it off and then back on to log in again...I attempted to log in to Google but it continues to connect to a site called "pumadating.com". I ran a new HJT log and it is below....thank you for your patience and your help.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:18:12 AM, on 1/26/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\lxdncoms.exe
C:\WINDOWS\StartupMonitor.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Softland\FBackup 4\fbaSched.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\StartNow Toolbar\ToolbarUpdaterService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startnow.com/?src=startpage&provider=Bing&provider_code=Z059&partner_id=308&product_id=435&affiliate_id=&channel=rjacs&toolbar_id=200&toolbar_version=2.0&install_country=US&install_date=20110711&user_guid=A99A4834047F4409A166CDC599103169&machine_id=f89d68ee8c1df510010bce427351505d&browser=IE&os=win&os_version=5.1-x86-SP3
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: StartNowToolbarHelper - {6E13D095-45C3-4271-9475-F3B48227DD9F} - C:\Program Files\StartNow Toolbar\Toolbar32.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: RebateRobot - {FA3FEDF6-1A34-4076-9F25-A26A2DE6A401} - C:\Program Files\RebateRobot\RebateRobot.dll
O3 - Toolbar: StartNow Toolbar - {5911488E-9D1E-40ec-8CBB-06B231CC153F} - C:\Program Files\StartNow Toolbar\Toolbar32.dll
O4 - HKLM\..\Run: [Run StartupMonitor] StartupMonitor.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [FBackup Scheduler] "C:\Program Files\Softland\FBackup 4\fbaSched.exe"
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: eBay - Homepage - {EF79EAC5-3452-4E02-B8BD-BA4C89F1AC7A} - C:\Program Files\IrfanView\Ebay\Ebay.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: {072D3F2E-5FB6-11D3-B461-00C04FA35A21} (CFForm Runtime) - http://pubgis.co.pinellas.fl.us/CFIDE/classes/CFJava.cab
O16 - DPF: {0C568603-D79D-11D2-87A7-00C04FF158BB} (BrowseFolderPopup Class) - http://download.mcafee.com/molbin/Shared/MGBrwFld.cab
O16 - DPF: {26CBF141-7D0F-46E1-AA06-718958B6E4D2} - http://download.ebay.com/turbo_lister/US/install.cab
O16 - DPF: {33E54F7F-561C-49E6-929B-D7E76D3AFEB1} (Pool Control) - http://www.worldwinner.com/games/v50/pool/pool.cab
O16 - DPF: {38AB0814-B09B-4378-9940-14A19638C3C2} (Auctiva Image Uploader Control) - http://www.auctiva.com/Aurigma/ImageUploader57.cab
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/20021205/qtinstall.info.apple.com/drakken/us/win/QuickTimeInstaller.exe
O16 - DPF: {474F00F5-3853-492C-AC3A-476512BBC336} (UploadListView Class) - http://picasaweb.google.com/s/v/14.22/uploader2.cab
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-3-48.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://bin.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,81/mcinsctl.cab
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (MSN Games – Game Chat) - http://zone.msn.com/binframework/v10/ZPAChat.cab55579.cab
O16 - DPF: {5D80A6D1-B500-47DA-82B8-EB9875F85B4D} (Google Gadget Control) - http://dl.google.com/dl/desktop/nv/GoogleGadgetPluginIEWin.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase6087.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1129420743546
O16 - DPF: {74C861A1-D548-4916-BC8A-FDE92EDFF62C} - http://mediaplayer.walmart.com/installer/install.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - http://www.worldwinner.com/games/shared/wwlaunch.cab
O16 - DPF: {94B82441-A413-4E43-8422-D49930E69764} (TLIEFlashObj Class) - https://webchat.dell.com/Media/VisitorChat/TLIEFlash.CAB
O16 - DPF: {95B5D20C-BD31-4489-8ABF-F8C8BE748463} (MSN Games – Hearts) - http://zone.msn.com/bingame/zpagames/zpa_hrtz.cab99160.cab
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - http://www.crucial.com/controls/cpcScanner.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab
O16 - DPF: {BC0AE9E6-E549-4554-A222-EA083A894683} (QuickUpload) - http://a01-b01.mypicturetown.com/P2PwebCmdController/x/Upld_47.CAB
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://bin.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,19/mcgdmgr.cab
O16 - DPF: {C487F60B-59B9-47D9-BFDF-AB26786F8823} - http://zone.msn.com/bingame/zpagames/zpa_stoo.cab62201.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} - http://fdl.msn.com/zone/datafiles/heartbeat.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: lxdn_device -   - C:\WINDOWS\system32\lxdncoms.exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINDOWS\System32\NMSSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Updater Service for StartNow Toolbar - Unknown owner - C:\Program Files\StartNow Toolbar\ToolbarUpdaterService.exe

--
End of file - 10317 bytes
Logged
« Reply #3 on: January 26, 2012, 08:47:39 »
dvk01 Offline
Administrator WWW
Karma: 6
Posts: 308
please post the tdss log so I can see what it fixed
By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder.
Logs have names like: UtilityName.Version_Date_Time_log.txt.
E.g. C:\TDSSKiller.2.4.7_23.07.2010_15.31.43_log.txt
Logged
Derek
Microsoft MVP/Consumer Security
The Spykiller | Security and Privacy | Hedgehog Rescue
« Reply #4 on: January 26, 2012, 14:31:39 »
jerky Offline
Jr. Member

WWW 		**

Karma: 0
Posts: 64
Hope this is what you're referring to: thanks

11:03:29.0296 4088   TDSS rootkit removing tool 2.7.7.0 Jan 24 2012 16:44:27
11:03:31.0296 4088   ============================================================
11:03:31.0296 4088   Current date / time: 2012/01/26 11:03:31.0296
11:03:31.0296 4088   SystemInfo:
11:03:31.0296 4088   
11:03:31.0296 4088   OS Version: 5.1.2600 ServicePack: 3.0
11:03:31.0296 4088   Product type: Workstation
11:03:31.0296 4088   ComputerName: JERKY
11:03:31.0296 4088   UserName: kgkight
11:03:31.0296 4088   Windows directory: C:\WINDOWS
11:03:31.0296 4088   System windows directory: C:\WINDOWS
11:03:31.0296 4088   Processor architecture: Intel x86
11:03:31.0296 4088   Number of processors: 1
11:03:31.0296 4088   Page size: 0x1000
11:03:31.0296 4088   Boot type: Normal boot
11:03:31.0296 4088   ============================================================
11:03:36.0828 4088   Drive \Device\Harddisk0\DR0 - Size: 0xDF99E6000 (55.90 Gb), SectorSize: 0x200, Cylinders: 0x1C81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
11:03:36.0843 4088   Drive \Device\Harddisk1\DR3 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:03:36.0843 4088   Drive \Device\Harddisk2\DR5 - Size: 0xEF600000 (3.74 Gb), SectorSize: 0x200, Cylinders: 0x1E8, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:03:36.0843 4088   Drive \Device\Harddisk3\DR6 - Size: 0x11C0000 (0.02 Gb), SectorSize: 0x200, Cylinders: 0x2, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:03:36.0937 4088   Initialize success
11:03:43.0468 1056   ============================================================
11:03:43.0468 1056   Scan started
11:03:43.0468 1056   Mode: Manual;
11:03:43.0468 1056   ============================================================
11:03:43.0937 1056   Abiosdsk - ok
11:03:44.0062 1056   abp480n5        (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\System32\DRIVERS\ABP480N5.SYS
11:03:44.0078 1056   abp480n5 - ok
11:03:44.0265 1056   ACPI            (d8fb7d1c3f5bfa3f53fe9cc6367e9e99) C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:03:44.0265 1056   Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\ACPI.sys. Real md5: d8fb7d1c3f5bfa3f53fe9cc6367e9e99, Fake md5: 8fd99680a539792a30e97944fdaecf17
11:03:44.0265 1056   ACPI ( Virus.Win32.Rloader.a ) - infected
11:03:44.0265 1056   ACPI - detected Virus.Win32.Rloader.a (0)
11:03:44.0421 1056   ACPIEC          (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
11:03:44.0437 1056   ACPIEC - ok
11:03:44.0625 1056   adpu160m        (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\System32\DRIVERS\adpu160m.sys
11:03:44.0734 1056   adpu160m - ok
11:03:44.0921 1056   aeaudio         (11c04b17ed2abbb4833694bcd644ac90) C:\WINDOWS\system32\drivers\aeaudio.sys
11:03:44.0937 1056   aeaudio - ok
11:03:45.0093 1056   aec             (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
11:03:45.0109 1056   aec - ok
11:03:45.0312 1056   AFD             (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
11:03:45.0328 1056   AFD - ok
11:03:45.0500 1056   agp440          (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
11:03:45.0515 1056   agp440 - ok
11:03:45.0687 1056   agpCPQ          (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\System32\DRIVERS\agpCPQ.sys
11:03:45.0687 1056   agpCPQ - ok
11:03:45.0843 1056   Aha154x         (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\System32\DRIVERS\aha154x.sys
11:03:45.0859 1056   Aha154x - ok
11:03:46.0015 1056   aic78u2         (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\System32\DRIVERS\aic78u2.sys
11:03:46.0015 1056   aic78u2 - ok
11:03:46.0203 1056   aic78xx         (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\System32\DRIVERS\aic78xx.sys
11:03:46.0218 1056   aic78xx - ok
11:03:46.0390 1056   AliIde          (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\System32\DRIVERS\aliide.sys
11:03:46.0390 1056   AliIde - ok
11:03:46.0562 1056   alim1541        (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\System32\DRIVERS\alim1541.sys
11:03:46.0578 1056   alim1541 - ok
11:03:46.0750 1056   amdagp          (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\System32\DRIVERS\amdagp.sys
11:03:46.0765 1056   amdagp - ok
11:03:46.0906 1056   amsint          (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\System32\DRIVERS\amsint.sys
11:03:46.0921 1056   amsint - ok
11:03:47.0093 1056   asc             (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\System32\DRIVERS\asc.sys
11:03:47.0093 1056   asc - ok
11:03:47.0265 1056   asc3350p        (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\System32\DRIVERS\asc3350p.sys
11:03:47.0265 1056   asc3350p - ok
11:03:47.0421 1056   asc3550         (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\System32\DRIVERS\asc3550.sys
11:03:47.0421 1056   asc3550 - ok
11:03:47.0609 1056   AsyncMac        (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:03:47.0625 1056   AsyncMac - ok
11:03:47.0781 1056   atapi           (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
11:03:47.0796 1056   atapi - ok
11:03:47.0921 1056   Atdisk - ok
11:03:48.0046 1056   Atmarpc         (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:03:48.0062 1056   Atmarpc - ok
11:03:48.0187 1056   ATWPKT2 - ok
11:03:48.0359 1056   audstub         (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
11:03:48.0375 1056   audstub - ok
11:03:48.0515 1056   avgio           (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
11:03:48.0531 1056   avgio - ok
11:03:48.0750 1056   avgntflt        (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
11:03:48.0765 1056   avgntflt - ok
11:03:49.0078 1056   avipbb          (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys
11:03:49.0109 1056   avipbb - ok
11:03:49.0328 1056   Beep            (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
11:03:49.0328 1056   Beep - ok
11:03:49.0531 1056   BsStor          (d6d0f3860f022a12e888965f8237cbd9) C:\WINDOWS\system32\DRIVERS\bsstor.sys
11:03:49.0546 1056   BsStor - ok
11:03:49.0703 1056   BsUDF           (8ec5cc000a67ff74012be219cc8575c4) C:\WINDOWS\system32\drivers\BsUDF.sys
11:03:49.0796 1056   BsUDF - ok
11:03:50.0000 1056   Bulk503 - ok
11:03:50.0171 1056   catchme - ok
11:03:50.0515 1056   cbidf           (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\System32\DRIVERS\cbidf2k.sys
11:03:50.0578 1056   cbidf - ok
11:03:50.0953 1056   cbidf2k         (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
11:03:50.0953 1056   cbidf2k - ok
11:03:51.0093 1056   CCDECODE        (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
11:03:51.0109 1056   CCDECODE - ok
11:03:51.0593 1056   cd20xrnt        (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\System32\DRIVERS\cd20xrnt.sys
11:03:51.0609 1056   cd20xrnt - ok
11:03:51.0984 1056   Cdaudio         (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
11:03:52.0000 1056   Cdaudio - ok
11:03:52.0171 1056   Cdfs            (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
11:03:52.0171 1056   Cdfs - ok
11:03:52.0531 1056   Cdr4_xp         (837eef65af62d4e8a37c41d3879f7274) C:\WINDOWS\system32\drivers\Cdr4_xp.sys
11:03:52.0531 1056   Cdr4_xp - ok
11:03:52.0750 1056   Cdralw2k        (579da2f9f5401f55dae2cf8779d61dfc) C:\WINDOWS\system32\drivers\Cdralw2k.sys
11:03:52.0765 1056   Cdralw2k - ok
11:03:52.0984 1056   Cdrom           (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:03:53.0000 1056   Cdrom - ok
11:03:53.0359 1056   cdudf_xp        (8c7746acde6225a46b58ed7ae09ec166) C:\WINDOWS\system32\drivers\cdudf_xp.sys
11:03:53.0406 1056   cdudf_xp - ok
11:03:53.0515 1056   Changer - ok
11:03:53.0906 1056   CmdIde          (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\System32\DRIVERS\cmdide.sys
11:03:53.0906 1056   CmdIde - ok
11:03:54.0203 1056   CoachUsb        (86c64d2d157eef7f248b2894dc4da0e4) C:\WINDOWS\system32\DRIVERS\CoachUsb.sys
11:03:54.0234 1056   CoachUsb - ok
11:03:54.0437 1056   CoachVc         (9cfd57c133252fa5d19efaf2cf517ac3) C:\WINDOWS\system32\DRIVERS\CoachVc.sys
11:03:54.0437 1056   CoachVc - ok
11:03:54.0843 1056   Cpqarray        (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\System32\DRIVERS\cpqarray.sys
11:03:54.0843 1056   Cpqarray - ok
11:03:55.0046 1056   dac2w2k         (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\System32\DRIVERS\dac2w2k.sys
11:03:55.0109 1056   dac2w2k - ok
11:03:55.0375 1056   dac960nt        (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\System32\DRIVERS\dac960nt.sys
11:03:55.0390 1056   dac960nt - ok
11:03:55.0734 1056   DCamUSBEMPIA    (4273955f3aa1eaf22351417a238db095) C:\WINDOWS\system32\DRIVERS\emDevice.sys
11:03:55.0734 1056   DCamUSBEMPIA - ok
11:03:55.0953 1056   Disk            (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
11:03:55.0953 1056   Disk - ok
11:03:56.0234 1056   dmboot          (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
11:03:56.0296 1056   dmboot - ok
11:03:56.0484 1056   dmio            (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\DRIVERS\dmio.sys
11:03:56.0515 1056   dmio - ok
11:03:56.0640 1056   dmload          (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
11:03:56.0656 1056   dmload - ok
11:03:56.0796 1056   DMusic          (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
11:03:56.0796 1056   DMusic - ok
11:03:57.0140 1056   dpti2o          (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\System32\DRIVERS\dpti2o.sys
11:03:57.0140 1056   dpti2o - ok
11:03:57.0281 1056   drmkaud         (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
11:03:57.0296 1056   drmkaud - ok
11:03:57.0453 1056   dvd_2K          (800de2dfa19db3fd87aa95308ba0c17b) C:\WINDOWS\system32\drivers\dvd_2K.sys
11:03:57.0453 1056   dvd_2K - ok
11:03:57.0703 1056   E100B           (98ed0bea10477b0f252cca35eb50f838) C:\WINDOWS\system32\DRIVERS\e100b325.sys
11:03:57.0703 1056   E100B - ok
11:03:57.0843 1056   EL90XBC - ok
11:03:57.0968 1056   emAudio         (8bff3ef6f480b2ba00c0af75b2c8fce1) C:\WINDOWS\system32\drivers\emAudio.sys
11:03:57.0984 1056   emAudio - ok
11:03:58.0187 1056   Fastfat         (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
11:03:58.0203 1056   Fastfat - ok
11:03:58.0375 1056   Fdc             (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
11:03:58.0390 1056   Fdc - ok
11:03:58.0609 1056   FiltUSBEMPIA    (60c8a735887836d9919db606eacd0d0d) C:\WINDOWS\system32\DRIVERS\emFilter.sys
11:03:58.0625 1056   FiltUSBEMPIA - ok
11:03:58.0796 1056   Fips            (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
11:03:58.0796 1056   Fips - ok
11:03:58.0968 1056   Flpydisk        (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
11:03:58.0968 1056   Flpydisk - ok
11:03:59.0109 1056   FltMgr          (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
11:03:59.0125 1056   FltMgr - ok
11:03:59.0359 1056   Fs_Rec          (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:03:59.0375 1056   Fs_Rec - ok
11:03:59.0562 1056   Ftdisk          (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
11:03:59.0578 1056   Ftdisk - ok
11:03:59.0750 1056   Gpc             (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
11:03:59.0750 1056   Gpc - ok
11:03:59.0937 1056   HidUsb          (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
11:03:59.0937 1056   HidUsb - ok
11:04:00.0125 1056   hpn             (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\System32\DRIVERS\hpn.sys
11:04:00.0140 1056   hpn - ok
11:04:00.0343 1056   HSFHWBS2        (96fae6dc24574b1cb08dcf9d984a5be4) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
11:04:00.0359 1056   HSFHWBS2 - ok
11:04:00.0625 1056   HSF_DP          (2efa8dd8b0270a3a7202ce5f4da465b1) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
11:04:00.0750 1056   HSF_DP - ok
11:04:00.0921 1056   HTTP            (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
11:04:00.0937 1056   HTTP - ok
11:04:01.0125 1056   i2omgmt         (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
11:04:01.0125 1056   i2omgmt - ok
11:04:01.0281 1056   i2omp           (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\System32\DRIVERS\i2omp.sys
11:04:01.0296 1056   i2omp - ok
11:04:01.0468 1056   i8042prt        (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
11:04:01.0468 1056   i8042prt - ok
11:04:01.0703 1056   i81x            (06b7ef73ba5f302eecc294cdf7e19702) C:\WINDOWS\system32\DRIVERS\i81xnt5.sys
11:04:01.0718 1056   i81x - ok
11:04:01.0906 1056   iAimFP0         (7b5b44efe5eb9dadfb8ee29700885d23) C:\WINDOWS\system32\DRIVERS\wADV01nt.sys
11:04:01.0921 1056   iAimFP0 - ok
11:04:02.0078 1056   iAimFP1         (eb1f6bab6c22ede0ba551b527475f7e9) C:\WINDOWS\system32\DRIVERS\wADV02NT.sys
11:04:02.0093 1056   iAimFP1 - ok
11:04:02.0265 1056   iAimFP2         (03ce989d846c1aa81145cb22fcb86d06) C:\WINDOWS\system32\DRIVERS\wADV05NT.sys
11:04:02.0265 1056   iAimFP2 - ok
11:04:02.0421 1056   iAimFP3         (525849b4469de021d5d61b4db9be3a9d) C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys
11:04:02.0421 1056   iAimFP3 - ok
11:04:02.0640 1056   iAimFP4         (589c2bcdb5bd602bf7b63d210407ef8c) C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys
11:04:02.0640 1056   iAimFP4 - ok
11:04:02.0796 1056   iAimTV0         (d83bdd5c059667a2f647a6be5703a4d2) C:\WINDOWS\system32\DRIVERS\wATV01nt.sys
11:04:02.0812 1056   iAimTV0 - ok
11:04:02.0984 1056   iAimTV1         (ed968d23354daa0d7c621580c012a1f6) C:\WINDOWS\system32\DRIVERS\wATV02NT.sys
11:04:02.0984 1056   iAimTV1 - ok
11:04:03.0109 1056   iAimTV2 - ok
11:04:03.0187 1056   iAimTV3         (d738273f218a224c1ddac04203f27a84) C:\WINDOWS\system32\DRIVERS\wATV04nt.sys
11:04:03.0203 1056   iAimTV3 - ok
11:04:03.0359 1056   iAimTV4         (0052d118995cbab152daabe6106d1442) C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys
11:04:03.0359 1056   iAimTV4 - ok
11:04:03.0484 1056   Imapi           (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\drivers\Imapi.sys
11:04:03.0500 1056   Imapi - ok
11:04:03.0734 1056   ini910u         (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\System32\DRIVERS\ini910u.sys
11:04:03.0734 1056   ini910u - ok
11:04:03.0875 1056   IntelIde        (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\System32\DRIVERS\intelide.sys
11:04:03.0875 1056   IntelIde - ok
11:04:03.0984 1056   intelppm        (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
11:04:03.0984 1056   intelppm - ok
11:04:04.0093 1056   ip6fw           (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
11:04:04.0109 1056   ip6fw - ok
11:04:04.0218 1056   IpFilterDriver  (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:04:04.0218 1056   IpFilterDriver - ok
11:04:04.0328 1056   IpInIp          (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
11:04:04.0328 1056   IpInIp - ok
11:04:04.0437 1056   IpNat           (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
11:04:04.0453 1056   IpNat - ok
11:04:04.0593 1056   IPSec           (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
11:04:04.0640 1056   IPSec - ok
11:04:04.0796 1056   IRENUM          (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
11:04:04.0812 1056   IRENUM - ok
11:04:04.0953 1056   isapnp          (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
11:04:04.0953 1056   isapnp - ok
11:04:05.0109 1056   ISO503 - ok
11:04:05.0234 1056   Kbdclass        (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
11:04:05.0250 1056   Kbdclass - ok
11:04:05.0421 1056   kmixer          (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
11:04:05.0437 1056   kmixer - ok
11:04:05.0640 1056   KSecDD          (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
11:04:05.0671 1056   KSecDD - ok
11:04:05.0828 1056   Lavasoft Kernexplorer (6c4a3804510ad8e0f0c07b5be3d44ddb) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
11:04:05.0843 1056   Lavasoft Kernexplorer - ok
11:04:06.0015 1056   Lbd             (336abe8721cbc3110f1c6426da633417) C:\WINDOWS\system32\DRIVERS\Lbd.sys
11:04:06.0031 1056   Lbd - ok
11:04:06.0156 1056   lbrtfdc - ok
11:04:06.0343 1056   mdmxsdk         (aeb54ef22cb7c7e3f405f69f048d696c) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
11:04:06.0343 1056   mdmxsdk - ok
11:04:06.0500 1056   mmc_2K          (0a35ad036de912858a1c5e9637840724) C:\WINDOWS\system32\drivers\mmc_2K.sys
11:04:06.0515 1056   mmc_2K - ok
11:04:06.0703 1056   mnmdd           (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
11:04:06.0703 1056   mnmdd - ok
11:04:06.0859 1056   Modem           (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
11:04:06.0859 1056   Modem - ok
11:04:06.0968 1056   MODEMCSA        (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
11:04:06.0984 1056   MODEMCSA - ok
11:04:07.0093 1056   Mouclass        (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
11:04:07.0109 1056   Mouclass - ok
11:04:07.0296 1056   mouhid          (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
11:04:07.0296 1056   mouhid - ok
11:04:07.0468 1056   MountMgr        (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
11:04:07.0468 1056   MountMgr - ok
11:04:07.0687 1056   mraid35x        (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\System32\DRIVERS\mraid35x.sys
11:04:07.0703 1056   mraid35x - ok
11:04:07.0843 1056   MRxDAV          (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
11:04:07.0875 1056   MRxDAV - ok
11:04:08.0062 1056   MRxSmb          (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:04:08.0156 1056   MRxSmb - ok
11:04:08.0312 1056   Msfs            (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
11:04:08.0328 1056   Msfs - ok
11:04:08.0453 1056   MSKSSRV         (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:04:08.0453 1056   MSKSSRV - ok
11:04:08.0656 1056   MSPCLOCK        (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:04:08.0671 1056   MSPCLOCK - ok
11:04:08.0828 1056   MSPQM           (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
11:04:08.0828 1056   MSPQM - ok
11:04:09.0000 1056   mssmbios        (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
11:04:09.0000 1056   mssmbios - ok
11:04:09.0187 1056   MSTEE           (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
11:04:09.0187 1056   MSTEE - ok
11:04:09.0281 1056   Mup             (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
11:04:09.0296 1056   Mup - ok
11:04:09.0453 1056   MxlW2k          (a1520761f42dbb06db7929d6fa9753ea) C:\WINDOWS\system32\drivers\MxlW2k.sys
11:04:09.0468 1056   MxlW2k - ok
11:04:09.0640 1056   NABTSFEC        (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
11:04:09.0640 1056   NABTSFEC - ok
11:04:09.0875 1056   NDIS            (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
11:04:09.0906 1056   NDIS - ok
11:04:10.0046 1056   NdisIP          (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
11:04:10.0078 1056   NdisIP - ok
11:04:10.0234 1056   NdisTapi        (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:04:10.0250 1056   NdisTapi - ok
11:04:10.0328 1056   Ndisuio         (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
11:04:10.0343 1056   Ndisuio - ok
11:04:10.0500 1056   NdisWan         (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:04:10.0515 1056   NdisWan - ok
11:04:10.0625 1056   NDProxy         (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
11:04:10.0640 1056   NDProxy - ok
11:04:10.0859 1056   NetBIOS         (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
11:04:10.0859 1056   NetBIOS - ok
11:04:11.0046 1056   NetBT           (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
11:04:11.0062 1056   NetBT - ok
11:04:11.0187 1056   NMSCFG          (1d3bb79a0035077297779c8c52ca3c01) C:\WINDOWS\System32\drivers\NMSCFG.SYS
11:04:11.0187 1056   NMSCFG - ok
11:04:11.0343 1056   Npfs            (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
11:04:11.0359 1056   Npfs - ok
11:04:11.0500 1056   Ntfs            (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
11:04:11.0625 1056   Ntfs - ok
11:04:11.0875 1056   Null            (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
11:04:11.0875 1056   Null - ok
11:04:12.0140 1056   nv              (71dbdc08df86b80511e72953fa1ad6b0) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
11:04:12.0250 1056   nv - ok
11:04:12.0406 1056   NwlnkFlt        (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
11:04:12.0437 1056   NwlnkFlt - ok
11:04:12.0687 1056   NwlnkFwd        (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
11:04:12.0687 1056   NwlnkFwd - ok
11:04:12.0859 1056   omci            (1d98907d80461371437a7c898c58c8ae) C:\WINDOWS\system32\DRIVERS\omci.sys
11:04:12.0859 1056   omci - ok
11:04:13.0062 1056   P3              (c90018bafdc7098619a4a95b046b30f3) C:\WINDOWS\system32\DRIVERS\p3.sys
11:04:13.0093 1056   P3 - ok
11:04:13.0218 1056   Parport         (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
11:04:13.0218 1056   Parport - ok
11:04:13.0312 1056   PartMgr         (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
11:04:13.0312 1056   PartMgr - ok
11:04:13.0437 1056   ParVdm          (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
11:04:13.0437 1056   ParVdm - ok
11:04:13.0625 1056   PCI             (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
11:04:13.0640 1056   PCI - ok
11:04:13.0781 1056   PCIDump - ok
11:04:13.0906 1056   PCIIde          (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
11:04:13.0906 1056   PCIIde - ok
11:04:14.0078 1056   Pcmcia          (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
11:04:14.0093 1056   Pcmcia - ok
11:04:14.0218 1056   PDCOMP - ok
11:04:14.0296 1056   PDFRAME - ok
11:04:14.0406 1056   PDRELI - ok
11:04:14.0453 1056   PDRFRAME - ok
11:04:14.0593 1056   perc2           (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\System32\DRIVERS\perc2.sys
11:04:14.0593 1056   perc2 - ok
11:04:14.0843 1056   perc2hib        (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\System32\DRIVERS\perc2hib.sys
11:04:14.0843 1056   perc2hib - ok
11:04:15.0015 1056   pfc             (da86016f0672ada925f589ede715f185) C:\WINDOWS\system32\drivers\pfc.sys
11:04:15.0031 1056   pfc - ok
11:04:15.0156 1056   pgfilter - ok
11:04:15.0328 1056   PptpMiniport    (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
11:04:15.0343 1056   PptpMiniport - ok
11:04:15.0484 1056   Processor       (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
11:04:15.0500 1056   Processor - ok
11:04:15.0609 1056   PSched          (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
11:04:15.0609 1056   PSched - ok
11:04:15.0781 1056   Ptilink         (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
11:04:15.0796 1056   Ptilink - ok
11:04:16.0000 1056   pwd_2k          (1840112f3f3b7ece84dbbd93a70c4135) C:\WINDOWS\system32\drivers\pwd_2k.sys
11:04:16.0000 1056   pwd_2k - ok
11:04:16.0125 1056   PxHelp20        (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
11:04:16.0140 1056   PxHelp20 - ok
11:04:16.0234 1056   ql1080          (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\System32\DRIVERS\ql1080.sys
11:04:16.0250 1056   ql1080 - ok
11:04:16.0406 1056   Ql10wnt         (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\System32\DRIVERS\ql10wnt.sys
11:04:16.0421 1056   Ql10wnt - ok
11:04:16.0750 1056   ql12160         (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\System32\DRIVERS\ql12160.sys
11:04:16.0750 1056   ql12160 - ok
11:04:16.0984 1056   ql1240          (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\System32\DRIVERS\ql1240.sys
11:04:16.0984 1056   ql1240 - ok
11:04:17.0156 1056   ql1280          (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\System32\DRIVERS\ql1280.sys
11:04:17.0156 1056   ql1280 - ok
11:04:17.0343 1056   RasAcd          (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:04:17.0359 1056   RasAcd - ok
11:04:17.0562 1056   Rasl2tp         (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
11:04:17.0578 1056   Rasl2tp - ok
11:04:17.0750 1056   RasPppoe        (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
11:04:17.0765 1056   RasPppoe - ok
11:04:17.0937 1056   Raspti          (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
11:04:17.0953 1056   Raspti - ok
11:04:18.0125 1056   Rdbss           (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:04:18.0140 1056   Rdbss - ok
11:04:18.0312 1056   RDPCDD          (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
11:04:18.0328 1056   RDPCDD - ok
11:04:18.0546 1056   rdpdr           (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
11:04:18.0578 1056   rdpdr - ok
11:04:18.0765 1056   RDPWD           (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
11:04:18.0781 1056   RDPWD - ok
11:04:18.0984 1056   redbook         (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
11:04:19.0000 1056   redbook - ok
11:04:19.0203 1056   ScanUSBEMPIA    (f3cd3709919a453ac84c290dceeb767c) C:\WINDOWS\system32\DRIVERS\emScan.sys
11:04:19.0203 1056   ScanUSBEMPIA - ok
11:04:19.0390 1056   Secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
11:04:19.0390 1056   Secdrv - ok
11:04:19.0609 1056   serenum         (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
11:04:19.0625 1056   serenum - ok
11:04:19.0796 1056   Serial          (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
11:04:19.0812 1056   Serial - ok
11:04:20.0031 1056   Sfloppy         (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
11:04:20.0046 1056   Sfloppy - ok
11:04:20.0171 1056   Simbad - ok
11:04:20.0343 1056   sisagp          (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\System32\DRIVERS\sisagp.sys
11:04:20.0343 1056   sisagp - ok
11:04:20.0562 1056   SLIP            (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
11:04:20.0562 1056   SLIP - ok
11:04:20.0781 1056   smwdm           (70b8dd8707dbf6142530c106365df67d) C:\WINDOWS\system32\drivers\smwdm.sys
11:04:20.0875 1056   smwdm - ok
11:04:21.0062 1056   Sparrow         (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\System32\DRIVERS\sparrow.sys
11:04:21.0062 1056   Sparrow - ok
11:04:21.0218 1056   splitter        (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
11:04:21.0218 1056   splitter - ok
11:04:21.0375 1056   sr              (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
11:04:21.0390 1056   sr - ok
11:04:21.0562 1056   Srv             (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
11:04:21.0593 1056   Srv - ok
11:04:21.0750 1056   ssmdrv          (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
11:04:21.0765 1056   ssmdrv - ok
11:04:21.0921 1056   StillCam        (a9573045baa16eab9b1085205b82f1ed) C:\WINDOWS\system32\DRIVERS\serscan.sys
11:04:21.0921 1056   StillCam - ok
11:04:22.0109 1056   streamip        (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
11:04:22.0109 1056   streamip - ok
11:04:22.0265 1056   swenum          (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
11:04:22.0265 1056   swenum - ok
11:04:22.0468 1056   swmidi          (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
11:04:22.0468 1056   swmidi - ok
11:04:22.0687 1056   symc810         (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\System32\DRIVERS\symc810.sys
11:04:22.0687 1056   symc810 - ok
11:04:22.0859 1056   symc8xx         (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\System32\DRIVERS\symc8xx.sys
11:04:22.0875 1056   symc8xx - ok
11:04:23.0093 1056   sym_hi          (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\System32\DRIVERS\sym_hi.sys
11:04:23.0093 1056   sym_hi - ok
11:04:23.0265 1056   sym_u3          (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\System32\DRIVERS\sym_u3.sys
11:04:23.0281 1056   sym_u3 - ok
11:04:23.0406 1056   sysaudio        (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
11:04:23.0421 1056   sysaudio - ok
11:04:23.0593 1056   Tcpip           (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
11:04:23.0625 1056   Tcpip - ok
11:04:23.0812 1056   TDPIPE          (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
11:04:23.0812 1056   TDPIPE - ok
11:04:23.0968 1056   TDTCP           (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
11:04:23.0984 1056   TDTCP - ok
11:04:24.0125 1056   TermDD          (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
11:04:24.0140 1056   TermDD - ok
11:04:24.0312 1056   TosIde          (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\System32\DRIVERS\toside.sys
11:04:24.0312 1056   TosIde - ok
11:04:24.0546 1056   UdfReadr_xp     (e1b5bfba7f1cde1fc28934639e83b3cf) C:\WINDOWS\system32\drivers\UdfReadr_xp.sys
11:04:24.0562 1056   UdfReadr_xp - ok
11:04:24.0734 1056   Udfs            (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
11:04:24.0734 1056   Udfs - ok
11:04:24.0921 1056   ultra           (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\System32\DRIVERS\ultra.sys
11:04:24.0921 1056   ultra - ok
11:04:25.0140 1056   Update          (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
11:04:25.0250 1056   Update - ok
11:04:25.0421 1056   usbaudio        (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
11:04:25.0421 1056   usbaudio - ok
11:04:25.0562 1056   usbccgp         (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
11:04:25.0578 1056   usbccgp - ok
11:04:25.0765 1056   usbehci         (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
11:04:25.0765 1056   usbehci - ok
11:04:25.0953 1056   usbhub          (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
11:04:25.0968 1056   usbhub - ok
11:04:26.0218 1056   usbprint        (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
11:04:26.0218 1056   usbprint - ok
11:04:26.0609 1056   usbscan         (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
11:04:26.0609 1056   usbscan - ok
11:04:26.0968 1056   USBSTOR         (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
11:04:27.0000 1056   USBSTOR - ok
11:04:27.0390 1056   usbuhci         (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
11:04:27.0406 1056   usbuhci - ok
11:04:27.0734 1056   VgaSave         (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
11:04:27.0750 1056   VgaSave - ok
11:04:27.0906 1056   viaagp          (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\System32\DRIVERS\viaagp.sys
11:04:27.0937 1056   viaagp - ok
11:04:28.0328 1056   ViaIde          (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\System32\DRIVERS\viaide.sys
11:04:28.0343 1056   ViaIde - ok
11:04:28.0781 1056   VolSnap         (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
11:04:28.0828 1056   VolSnap - ok
11:04:29.0140 1056   vsdatant - ok
11:04:29.0609 1056   Wanarp          (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:04:29.0609 1056   Wanarp - ok
11:04:29.0796 1056   wanatw - ok
11:04:29.0875 1056   WDICA - ok
11:04:30.0031 1056   wdmaud          (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
11:04:30.0031 1056   wdmaud - ok
11:04:30.0218 1056   winachsf        (b3133dc158e59e80f5498484b0c2d558) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
11:04:30.0281 1056   winachsf - ok
11:04:30.0468 1056   WLNR - ok
11:04:30.0609 1056   WS2IFSL         (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
11:04:30.0625 1056   WS2IFSL - ok
11:04:30.0796 1056   WSTCODEC        (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
11:04:30.0812 1056   WSTCODEC - ok
11:04:30.0968 1056   WudfPf          (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
11:04:30.0984 1056   WudfPf - ok
11:04:31.0140 1056   WudfRd          (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
11:04:31.0156 1056   WudfRd - ok
11:04:31.0203 1056   MBR (0x1B8)     (1f753b395539269a3484aecd505b79bd) \Device\Harddisk0\DR0
11:04:31.0218 1056   \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - infected
11:04:31.0218 1056   \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.b (0)
11:04:31.0250 1056   MBR (0x1B8)     (a4a15d6782e6fe1dce41a606cb3affe3) \Device\Harddisk1\DR3
11:04:44.0890 1056   \Device\Harddisk1\DR3 - ok
11:04:44.0890 1056   MBR (0x1B8)     (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk2\DR5
11:04:44.0937 1056   \Device\Harddisk2\DR5 - ok
11:04:45.0000 1056   MBR (0x1B8)     (8253dc0c99d1c2858e0c39a993f61476) \Device\Harddisk3\DR6
11:04:46.0812 1056   \Device\Harddisk3\DR6 - ok
11:04:46.0843 1056   Boot (0x1200)   (bd7a036ad43acfb661a5bc21c851ed8a) \Device\Harddisk0\DR0\Partition0
11:04:46.0859 1056   \Device\Harddisk0\DR0\Partition0 - ok
11:04:46.0890 1056   Boot (0x1200)   (65b4adca9dd58ec0d5a5e5bf2e22d337) \Device\Harddisk1\DR3\Partition0
11:04:46.0890 1056   \Device\Harddisk1\DR3\Partition0 - ok
11:04:46.0906 1056   Boot (0x1200)   (473ecdde2de5b977f42abd5453ee2ff9) \Device\Harddisk2\DR5\Partition0
11:04:46.0906 1056   \Device\Harddisk2\DR5\Partition0 - ok
11:04:46.0921 1056   ============================================================
11:04:46.0921 1056   Scan finished
11:04:46.0921 1056   ============================================================
11:04:46.0937 1580   Detected object count: 2
11:04:46.0937 1580   Actual detected object count: 2
11:05:19.0296 1580   Backup copy found, using it..
11:05:19.0421 1580   C:\WINDOWS\system32\DRIVERS\ACPI.sys - will be cured on reboot
11:05:19.0421 1580   ACPI ( Virus.Win32.Rloader.a ) - User select action: Cure
11:05:19.0468 1580   \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - will be cured on reboot
11:05:19.0468 1580   \Device\Harddisk0\DR0 - ok
11:05:19.0468 1580   \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - User select action: Cure
11:05:25.0875 4084   Deinitialize success
Logged
« Reply #5 on: January 26, 2012, 23:59:33 »
dvk01 Offline
Administrator WWW
Karma: 6
Posts: 308
ok next step
Delete any existing version of ComboFix you have sitting on your desktop
Please read and follow all these instructions very carefully
Do not edit or remove any information or user names etc, otherwise we cannot fix the problem. If you insist on editing out anything then I will close the topic & refuse to offer any help.

Download ComboFix from Here or Hereto your Desktop.
As you download it rename it to username123.exe


**Note:  It is important that it is saved directly to your desktop  and run from the desktop and not any other folder on your computer**
--------------------------------------------------------------------
1. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

  • Very Important! Temporarily disable your anti-virus and  anti-malware real-time protection and any script blocking components of them or your firewall before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results" or stop combofix running at all
  • Click on THIS LINK to see instructions on how to temporarily disable many security programs while running combofix. The list does not cover every program. If yours is not listed and you don't know how to disable it, please ask.
  • Remember to re enable the protection again after combofix has finished
--------------------------------------------------------------------
2. Close any open browsers and any other programs you might have running
Double click on renamed combofix.exe & follow the prompts.
If you are using windows XP It might display a pop up saying that "Recovery console is not installed, do you want to install?"
Please select yes & let it download the files it needs to do this. Once the recovery console is installed Combofix will then offer to scan for malware. Select continue or yes.
When finished, it will produce a report for you. 
Please post the "C:\ComboFix.txt" for further review


****Note: Do not mouseclick combofix's window while it's running. That may cause it to stall or freeze ****

Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.
Note: Combofix prevents autorun of ALL CDs, floppies and USB devices to assist with malware removal & increase security. If this is an issue or makes it difficult for you -- please tell us when you reply. Read HERE why we disable autoruns

Please do not install any new programs or update anything (always allow your antivirus/antispyware to update) unless told to do so while we are fixing your problem. If combofix alerts to a new version and offers to update, please let it. It is essential we always use the latest version. 

Please tell us if it has cured the problems or if there are any outstanding issues
Logged
Derek
Microsoft MVP/Consumer Security
The Spykiller | Security and Privacy | Hedgehog Rescue
« Reply #6 on: January 27, 2012, 11:27:49 »
jerky Offline
Jr. Member

WWW 		**

Karma: 0
Posts: 64
Have to break the log into at least 4 parts...exceed maximum length. This is part one.

ComboFix 12-01-27.01 - kgkight 01/27/2012  13:09:47.2.1 - x86
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.1023.556 [GMT -5:00]
Running from: c:\documents and settings\kgkight\Desktop\KenKight123.exe
AV: AntiVir Desktop *Disabled/Outdated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\DirectCDUserNameD.txt
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\All Users\Application Data\TEMP\DFC5A2B2.TMP
c:\documents and settings\All Users\Desktop\Privacy Protection.lnk
c:\documents and settings\All Users\SPL118.tmp
c:\documents and settings\All Users\SPL2F.tmp
c:\documents and settings\All Users\SPL33.tmp
c:\documents and settings\All Users\SPL3A.tmp
c:\program files\aaw2008.exe
c:\program files\CouponAlert_2pEI
c:\program files\CouponAlert_2pEI\Installr\1.bin\2pEIPlug.dll
c:\program files\CouponAlert_2pEI\Installr\1.bin\NP2pEISb.dll
c:\program files\Object
c:\program files\Object\config.ini
c:\program files\Object\status2.txt
c:\program files\StartNow Toolbar
c:\program files\StartNow Toolbar\ReactivateIE.exe
c:\program files\StartNow Toolbar\Resources\images\btn-msn.png
c:\program files\StartNow Toolbar\Resources\images\chevronButton.png
c:\program files\StartNow Toolbar\Resources\images\engine_images.png
c:\program files\StartNow Toolbar\Resources\images\engine_maps.png
c:\program files\StartNow Toolbar\Resources\images\engine_news.png
c:\program files\StartNow Toolbar\Resources\images\engine_videos.png
c:\program files\StartNow Toolbar\Resources\images\engine_web.png
c:\program files\StartNow Toolbar\Resources\images\icon_amazon.png
c:\program files\StartNow Toolbar\Resources\images\icon_ebay.png
c:\program files\StartNow Toolbar\Resources\images\icon_facebook.png
c:\program files\StartNow Toolbar\Resources\images\icon_games.png
c:\program files\StartNow Toolbar\Resources\images\icon_msn.png
c:\program files\StartNow Toolbar\Resources\images\icon_shopping.png
c:\program files\StartNow Toolbar\Resources\images\icon_travel.png
c:\program files\StartNow Toolbar\Resources\images\icon_twitter.png
c:\program files\StartNow Toolbar\Resources\images\separator.png
c:\program files\StartNow Toolbar\Resources\images\splitter.png
c:\program files\StartNow Toolbar\Resources\images\startnow_logo.png
c:\program files\StartNow Toolbar\Resources\installer.xml
c:\program files\StartNow Toolbar\Resources\skin\chevron_button.png
c:\program files\StartNow Toolbar\Resources\skin\searchbox_button_hover.png
c:\program files\StartNow Toolbar\Resources\skin\searchbox_button_normal.png
c:\program files\StartNow Toolbar\Resources\skin\searchbox_dropdown_button_normal.png
c:\program files\StartNow Toolbar\Resources\skin\searchbox_input_background.png
c:\program files\StartNow Toolbar\Resources\skin\searchbox_input_left.png
c:\program files\StartNow Toolbar\Resources\skin\searchbox_input_middle.png
c:\program files\StartNow Toolbar\Resources\skin\separator.png
c:\program files\StartNow Toolbar\Resources\skin\splitter.png
c:\program files\StartNow Toolbar\Resources\skin\toolbarbutton_ff_hover_c.png
c:\program files\StartNow Toolbar\Resources\skin\toolbarbutton_ie_hover_c.png
c:\program files\StartNow Toolbar\Resources\skin\toolbarbutton_ie_hover_l.png
c:\program files\StartNow Toolbar\Resources\skin\toolbarbutton_ie_hover_r.png
c:\program files\StartNow Toolbar\Resources\skin\toolbarbutton_ie_normal_c.png
c:\program files\StartNow Toolbar\Resources\skin\toolbarbutton_ie_normal_l.png
c:\program files\StartNow Toolbar\Resources\skin\toolbarbutton_ie_normal_r.png
c:\program files\StartNow Toolbar\Resources\toolbar.xml
c:\program files\StartNow Toolbar\Resources\update.xml
c:\program files\StartNow Toolbar\StartNowToolbarUninstall.exe
c:\program files\StartNow Toolbar\Toolbar32.dll
c:\program files\StartNow Toolbar\ToolbarBroker.exe
c:\program files\StartNow Toolbar\ToolbarUpdaterService.exe
c:\program files\StartNow Toolbar\uninstall.dat
c:\program files\WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
c:\windows\help\wmplayer.bak
c:\windows\system32\comctl32.dll.tmp
c:\windows\system32\OLD6F.tmp
c:\windows\system32\PowerToyReadme.htm
c:\windows\system32\primary.exe
c:\windows\system32\rnaph.dll
c:\windows\system32\roboot.exe
.
.
(((((((((((((((((((((((((((((((((((((((   Drivers/Services   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_Updater_Service_for_StartNow_Toolbar
-------\Legacy_Updater_Service_for_StartNow_Toolbar
-------\Service_Updater Service for StartNow Toolbar
-------\Service_Updater Service for StartNow Toolbar
.
.
(((((((((((((((((((((((((   Files Created from 2011-12-27 to 2012-01-27  )))))))))))))))))))))))))))))))
.
.
2012-01-23 23:24 . 2012-01-23 23:24   --------   d-----w-   c:\documents and settings\kgkight\Local Settings\Application Data\magicJack
2012-01-23 20:46 . 2012-01-23 20:55   3116   ----a-w-   c:\windows\system32\ASOROSet.bin
2012-01-23 18:59 . 2012-01-27 17:52   --------   d-----w-   c:\documents and settings\kgkight\Application Data\Systweak
2012-01-23 18:59 . 2012-01-23 18:59   --------   d-----w-   C:\skin
2012-01-23 18:59 . 2012-01-23 18:59   --------   d-----w-   C:\defaults
2012-01-23 18:59 . 2012-01-23 18:59   --------   d-----w-   C:\content
2012-01-23 18:59 . 2011-12-03 22:49   811   ----a-w-   C:\compile.bat
2012-01-23 18:59 . 2012-01-23 18:59   --------   d-----w-   c:\program files\RebateRobot
2012-01-13 19:17 . 2012-01-13 19:16   101720   ----a-w-   c:\windows\system32\drivers\SBREDrv.sys
2012-01-12 02:29 . 2011-12-07 15:08   236576   ------w-   c:\windows\system32\MpSigStub.exe
2012-01-12 01:41 . 2012-01-12 01:41   --------   d-----w-   c:\documents and settings\kgkight\Application Data\ElevatedDiagnostics
2012-01-11 19:38 . 2012-01-11 19:38   --------   d-----w-   c:\program files\Windows Defender
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-26 16:11 . 2002-09-03 19:32   187776   ----a-w-   c:\windows\system32\drivers\acpi.sys
2012-01-06 04:19 . 2012-01-27 07:33   6557240   ----a-w-   c:\documents and settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\{DC6E1760-AC72-4C46-9BCE-0AE1C1A1C72F}\mpengine.dll
2012-01-06 04:19 . 2012-01-12 02:29   6557240   ----a-w-   c:\documents and settings\All Users\Application Data\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2011-11-25 21:57 . 2002-09-03 20:03   293376   ----a-w-   c:\windows\system32\winsrv.dll
2011-11-23 13:25 . 2002-09-03 20:03   1859584   ----a-w-   c:\windows\system32\win32k.sys
2011-11-21 15:17 . 2009-08-18 15:30   564632   ----a-w-   c:\documents and settings\All Users\Application Data\Microsoft\IdentityCRL\production\wlidui.dll
2011-11-21 15:17 . 2009-08-18 15:24   18328   ----a-w-   c:\documents and settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-11-18 12:35 . 2002-09-03 19:51   60416   ----a-w-   c:\windows\system32\packager.exe
2011-11-04 19:20 . 2004-01-21 21:16   916992   ----a-w-   c:\windows\system32\wininet.dll
2011-11-04 19:20 . 2002-09-03 19:42   43520   ----a-w-   c:\windows\system32\licmgr10.dll
2011-11-04 19:20 . 2002-09-03 19:40   1469440   ------w-   c:\windows\system32\inetcpl.cpl
2011-11-04 11:23 . 2004-08-04 05:59   385024   ----a-w-   c:\windows\system32\html.iec
2011-11-03 15:28 . 2003-05-13 14:28   1292288   ----a-w-   c:\windows\system32\quartz.dll
2011-11-03 15:28 . 2002-09-03 19:52   386048   ----a-w-   c:\windows\system32\qdvd.dll
2011-11-01 16:07 . 2003-09-16 21:21   1288704   ----a-w-   c:\windows\system32\ole32.dll
.
.
(((((((((((((((((((((((((((((   SnapShot@2011-03-06_15.33.19   )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-04-19 02:51 . 2011-04-19 02:51   51024              c:\windows\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_4ddc769f\vcomp90.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   59728              c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90rus.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   42832              c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90kor.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   43344              c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90jpn.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   61264              c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90ita.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   62800              c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90fra.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   61776              c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90esp.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   61776              c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90esn.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   53584              c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90enu.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   63312              c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90deu.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   36688              c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90cht.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   35664              c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90chs.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   59904              c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfcm90u.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   59904              c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfcm90.dll
+ 2011-05-14 00:17 . 2011-05-14 00:17   65536              c:\windows\WinSxS\x86_Microsoft.VC80.OpenMP_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_452bf920\vcomp.dll
+ 2011-05-13 23:45 . 2011-05-13 23:45   49152              c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80KOR.dll
+ 2011-05-13 23:45 . 2011-05-13 23:45   49152              c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80JPN.dll
+ 2011-05-13 23:45 . 2011-05-13 23:45   61440              c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ITA.dll
+ 2011-05-13 23:45 . 2011-05-13 23:45   61440              c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80FRA.dll
+ 2011-05-13 23:45 . 2011-05-13 23:45   61440              c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ESP.dll
+ 2011-05-13 23:45 . 2011-05-13 23:45   57344              c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ENU.dll
+ 2011-05-13 23:45 . 2011-05-13 23:45   65536              c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80DEU.dll
+ 2011-05-13 23:45 . 2011-05-13 23:45   45056              c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80CHT.dll
+ 2011-05-13 23:45 . 2011-05-13 23:45   40960              c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80CHS.dll
+ 2011-05-14 05:06 . 2011-05-14 05:06   57856              c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfcm80u.dll
+ 2011-05-14 05:23 . 2011-05-14 05:23   69632              c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfcm80.dll
+ 2011-05-13 22:37 . 2011-05-13 22:37   97280              c:\windows\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll
- 2010-03-15 17:31 . 2007-10-02 22:51   69632              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdncnv4.dll
+ 2011-11-18 18:27 . 2007-10-02 22:51   69632              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdncnv4.dll
- 2010-03-15 17:31 . 2007-11-05 14:32   77906              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdncfg.dll
+ 2011-11-18 18:27 . 2007-11-05 14:32   77906              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdncfg.dll
- 2010-03-15 17:31 . 2007-11-20 23:44   81920              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdncaps.dll
+ 2011-11-18 18:27 . 2007-11-20 23:44   81920              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdncaps.dll
+ 2012-01-27 18:39 . 2012-01-27 18:39   16384              c:\windows\temp\Perflib_Perfdata_6b0.dat
+ 2012-01-12 01:36 . 2007-11-01 04:48   20992              c:\windows\SYSTEM32\windowspowershell\v1.0\pwrshsip.dll
+ 2007-01-29 08:58 . 2011-11-08 13:46   46080              c:\windows\SYSTEM32\tzchange.exe
- 2007-01-29 08:58 . 2010-11-03 13:12   46080              c:\windows\SYSTEM32\tzchange.exe
+ 2011-11-18 18:28 . 2007-11-21 15:02   57344              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnwbgc.dll
- 2010-03-15 17:32 . 2007-11-21 15:02   57344              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnwbgc.dll
- 2010-03-15 17:32 . 2008-02-27 23:07   82600              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnview.exe
+ 2011-11-18 18:28 . 2008-02-27 23:07   82600              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnview.exe
- 2010-03-15 17:32 . 2008-02-27 23:07   82600              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnupld.exe
+ 2011-11-18 18:28 . 2008-02-27 23:07   82600              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnupld.exe
- 2010-03-15 17:32 . 2008-02-07 20:22   90112              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnupdr.dll
+ 2011-11-18 18:28 . 2008-02-07 20:22   90112              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnupdr.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   65536              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnupd.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   65536              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnupd.dll
- 2010-03-15 17:32 . 2008-02-27 23:07   82600              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdntime.exe
+ 2011-11-18 18:28 . 2008-02-27 23:07   82600              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdntime.exe
- 2010-03-15 17:32 . 2007-07-25 15:36   98304              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdntime.dll
+ 2011-11-18 18:28 . 2007-07-25 15:36   98304              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdntime.dll
- 2010-03-15 17:32 . 2008-02-27 23:07   98984              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnserv.exe
+ 2011-11-18 18:28 . 2008-02-27 23:07   98984              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnserv.exe
+ 2011-11-18 18:28 . 2008-02-07 20:22   36864              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncur.dll
- 2010-03-15 17:32 . 2008-02-07 20:22   36864              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncur.dll
- 2010-03-15 17:32 . 2008-02-07 20:19   90112              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncub.dll
+ 2011-11-18 18:28 . 2008-02-07 20:19   90112              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncub.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   77824              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncu.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   77824              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncu.dll
+ 2011-11-18 18:27 . 2007-11-05 14:32   77906              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncfg.dll
- 2010-03-15 17:31 . 2007-11-05 14:32   77906              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncfg.dll
+ 2011-11-18 18:28 . 2007-03-26 15:39   73728              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncats.dll
- 2010-03-15 17:32 . 2007-03-26 15:39   73728              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncats.dll
+ 2011-11-18 18:28 . 2007-07-06 22:41   45056              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnbubl.dll
- 2010-03-15 17:32 . 2007-07-06 22:41   45056              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnbubl.dll
- 2010-03-15 17:30 . 2008-02-27 23:07   17064              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnwupd.exe
+ 2011-11-18 18:25 . 2008-02-27 23:07   17064              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnwupd.exe
- 2010-03-15 17:32 . 2007-11-21 15:02   57344              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnwbgc.dll
+ 2011-11-18 18:28 . 2007-11-21 15:02   57344              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnwbgc.dll
+ 2011-11-18 18:28 . 2008-02-27 23:07   82600              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnview.exe
- 2010-03-15 17:32 . 2008-02-27 23:07   82600              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnview.exe
+ 2011-11-18 18:25 . 2007-11-21 14:45   13312              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\LXDNuptr.dll
- 2010-03-15 17:30 . 2007-11-21 14:45   13312              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\LXDNuptr.dll
+ 2011-11-18 18:28 . 2008-02-27 23:07   82600              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnupld.exe
- 2010-03-15 17:32 . 2008-02-27 23:07   82600              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnupld.exe
+ 2011-11-18 18:28 . 2008-02-07 20:22   90112              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnupdr.dll
- 2010-03-15 17:32 . 2008-02-07 20:22   90112              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnupdr.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   65536              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnupd.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   65536              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnupd.dll
+ 2011-11-18 18:28 . 2008-02-27 23:07   82600              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdntime.exe
- 2010-03-15 17:32 . 2008-02-27 23:07   82600              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdntime.exe
+ 2011-11-18 18:28 . 2007-07-25 15:36   98304              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdntime.dll
- 2010-03-15 17:32 . 2007-07-25 15:36   98304              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdntime.dll
- 2010-03-15 17:32 . 2008-02-27 23:07   98984              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnserv.exe
+ 2011-11-18 18:28 . 2008-02-27 23:07   98984              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnserv.exe
- 2010-03-15 17:32 . 2008-02-07 20:22   36864              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncur.dll
+ 2011-11-18 18:28 . 2008-02-07 20:22   36864              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncur.dll
+ 2011-11-18 18:28 . 2008-02-07 20:19   90112              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncub.dll
- 2010-03-15 17:32 . 2008-02-07 20:19   90112              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncub.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   77824              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncu.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   77824              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncu.dll
- 2010-03-15 17:31 . 2007-11-05 14:32   77906              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncfg.dll
+ 2011-11-18 18:27 . 2007-11-05 14:32   77906              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncfg.dll
- 2010-03-15 17:32 . 2007-03-26 15:39   73728              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncats.dll
+ 2011-11-18 18:28 . 2007-03-26 15:39   73728              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncats.dll
- 2010-03-15 17:32 . 2007-07-06 22:41   45056              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnbubl.dll
+ 2011-11-18 18:28 . 2007-07-06 22:41   45056              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnbubl.dll
+ 2011-03-12 00:35 . 2001-08-18 03:36   87040              c:\windows\SYSTEM32\ReinstallBackups\0004\DriverFiles\i386\wiafbdrv.dll
+ 2011-03-12 00:35 . 2008-04-13 18:45   15104              c:\windows\SYSTEM32\ReinstallBackups\0004\DriverFiles\i386\usbscan.sys
+ 2011-03-12 00:35 . 2007-10-02 22:51   69632              c:\windows\SYSTEM32\ReinstallBackups\0004\DriverFiles\i386\lxdncnv4.dll
+ 2011-03-12 00:35 . 2007-11-05 14:32   77906              c:\windows\SYSTEM32\ReinstallBackups\0004\DriverFiles\i386\lxdncfg.dll
+ 2011-03-12 00:35 . 2007-11-20 23:44   81920              c:\windows\SYSTEM32\ReinstallBackups\0004\DriverFiles\i386\lxdncaps.dll
+ 2003-03-26 03:01 . 2012-01-26 16:16   76536              c:\windows\SYSTEM32\PERFC009.DAT
+ 2002-09-03 19:51 . 2011-09-26 15:41   20480              c:\windows\SYSTEM32\oleaccrc.dll
- 2002-09-03 19:46 . 2010-12-20 23:59   66560              c:\windows\SYSTEM32\mshtmled.dll
+ 2002-09-03 19:46 . 2011-11-04 19:20   66560              c:\windows\SYSTEM32\mshtmled.dll
- 2006-11-08 01:03 . 2010-12-20 23:59   55296              c:\windows\SYSTEM32\msfeedsbs.dll
+ 2006-11-08 01:03 . 2011-11-04 19:20   55296              c:\windows\SYSTEM32\msfeedsbs.dll
+ 2002-09-03 19:42 . 2011-10-14 14:47   23040              c:\windows\SYSTEM32\mciseq.dll
- 2002-09-03 19:42 . 2008-04-14 00:11   23040              c:\windows\SYSTEM32\mciseq.dll
+ 2011-08-02 12:38 . 2011-08-02 12:38   98304              c:\windows\SYSTEM32\Macromed\Shockwave 10\SwOnce.dll
+ 2011-08-02 12:38 . 2011-08-02 12:38   86016              c:\windows\SYSTEM32\Macromed\Shockwave 10\SwMenuX.dll
+ 2011-08-02 12:38 . 2011-08-02 12:38   77824              c:\windows\SYSTEM32\Macromed\Shockwave 10\SwInit.exe
+ 2011-08-02 12:38 . 2011-08-02 12:38   24576              c:\windows\SYSTEM32\Macromed\Shockwave 10\DynaPlayer.dll
+ 2011-11-18 18:25 . 2008-02-27 23:07   17064              c:\windows\SYSTEM32\lxdnwupd.exe
- 2010-03-15 17:30 . 2008-02-27 23:07   17064              c:\windows\SYSTEM32\lxdnwupd.exe
+ 2011-11-18 18:28 . 2007-11-28 17:51   40960              c:\windows\SYSTEM32\lxdnvs.dll
- 2010-03-15 17:32 . 2007-11-28 17:51   40960              c:\windows\SYSTEM32\lxdnvs.dll
+ 2011-11-18 18:25 . 2007-11-28 23:10   53248              c:\windows\SYSTEM32\lxdnprox.dll
- 2010-03-15 17:30 . 2007-11-28 23:10   53248              c:\windows\SYSTEM32\lxdnprox.dll
- 2010-03-15 17:30 . 2008-02-07 20:22   36864              c:\windows\SYSTEM32\lxdncur.dll
+ 2011-11-18 18:24 . 2008-02-07 20:22   36864              c:\windows\SYSTEM32\lxdncur.dll
- 2010-03-15 17:30 . 2008-02-07 20:19   90112              c:\windows\SYSTEM32\lxdncub.dll
+ 2011-11-18 18:24 . 2008-02-07 20:19   90112              c:\windows\SYSTEM32\lxdncub.dll
+ 2011-11-18 18:24 . 2008-02-07 20:16   77824              c:\windows\SYSTEM32\lxdncu.dll
- 2010-03-15 17:30 . 2008-02-07 20:16   77824              c:\windows\SYSTEM32\lxdncu.dll
+ 2011-11-18 18:27 . 2007-10-02 22:51   69632              c:\windows\SYSTEM32\lxdncnv4.dll
- 2010-03-15 17:31 . 2007-10-02 22:51   69632              c:\windows\SYSTEM32\lxdncnv4.dll
- 2010-03-15 17:29 . 2007-11-05 14:32   77906              c:\windows\SYSTEM32\LXDNcfg.dll
+ 2011-11-18 18:24 . 2007-11-05 14:32   77906              c:\windows\SYSTEM32\LXDNcfg.dll
- 2010-03-15 17:31 . 2007-11-20 23:44   81920              c:\windows\SYSTEM32\lxdncaps.dll
+ 2011-11-18 18:27 . 2007-11-20 23:44   81920              c:\windows\SYSTEM32\lxdncaps.dll
- 2002-09-03 19:41 . 2010-12-20 23:59   25600              c:\windows\SYSTEM32\jsproxy.dll
+ 2002-09-03 19:41 . 2011-11-04 19:20   25600              c:\windows\SYSTEM32\jsproxy.dll
+ 2002-09-03 19:48 . 2011-07-08 14:02   10496              c:\windows\SYSTEM32\DRIVERS\ndistapi.sys
+ 2009-04-07 02:33 . 2011-07-01 07:20   66616              c:\windows\SYSTEM32\DRIVERS\avgntflt.sys
+ 2002-09-03 19:36 . 2009-04-20 17:17   45568              c:\windows\SYSTEM32\dnsrslvr.dll
- 2002-09-03 19:36 . 2008-04-14 00:11   45568              c:\windows\SYSTEM32\dnsrslvr.dll
+ 2009-12-24 18:02 . 2011-11-04 19:20   12800              c:\windows\SYSTEM32\DLLCACHE\xpshims.dll
- 2009-12-24 18:02 . 2010-12-20 23:59   12800              c:\windows\SYSTEM32\DLLCACHE\xpshims.dll
+ 2002-09-03 19:57 . 2010-08-17 13:17   58880              c:\windows\SYSTEM32\DLLCACHE\spoolsv.exe
- 2010-08-17 13:17 . 2010-08-17 13:17   58880              c:\windows\SYSTEM32\DLLCACHE\spoolsv.exe
+ 2011-11-18 12:35 . 2011-11-18 12:35   60416              c:\windows\SYSTEM32\DLLCACHE\packager.exe
+ 2002-09-03 19:51 . 2011-09-26 15:41   20480              c:\windows\SYSTEM32\DLLCACHE\oleaccrc.dll
+ 2011-08-11 03:14 . 2011-07-08 14:02   10496              c:\windows\SYSTEM32\DLLCACHE\ndistapi.sys
- 2002-09-03 19:46 . 2010-12-20 23:59   66560              c:\windows\SYSTEM32\DLLCACHE\mshtmled.dll
+ 2002-09-03 19:46 . 2011-11-04 19:20   66560              c:\windows\SYSTEM32\DLLCACHE\mshtmled.dll
+ 2007-04-25 08:41 . 2011-11-04 19:20   55296              c:\windows\SYSTEM32\DLLCACHE\msfeedsbs.dll
- 2007-04-25 08:41 . 2010-12-20 23:59   55296              c:\windows\SYSTEM32\DLLCACHE\msfeedsbs.dll
+ 2011-10-14 14:47 . 2011-10-14 14:47   23040              c:\windows\SYSTEM32\DLLCACHE\mciseq.dll
+ 2002-09-03 19:42 . 2011-11-04 19:20   43520              c:\windows\SYSTEM32\DLLCACHE\licmgr10.dll
- 2002-09-03 19:42 . 2010-12-20 23:59   43520              c:\windows\SYSTEM32\DLLCACHE\licmgr10.dll
+ 2006-05-10 05:22 . 2011-11-04 19:20   25600              c:\windows\SYSTEM32\DLLCACHE\jsproxy.dll
- 2006-05-10 05:22 . 2010-12-20 23:59   25600              c:\windows\SYSTEM32\DLLCACHE\jsproxy.dll
+ 2009-04-20 17:17 . 2009-04-20 17:17   45568              c:\windows\SYSTEM32\DLLCACHE\dnsrslvr.dll
- 2009-12-14 07:08 . 2010-12-09 14:30   33280              c:\windows\SYSTEM32\DLLCACHE\csrsrv.dll
+ 2009-12-14 07:08 . 2011-10-28 05:31   33280              c:\windows\SYSTEM32\DLLCACHE\csrsrv.dll
+ 2002-09-03 19:35 . 2011-10-28 05:31   33280              c:\windows\SYSTEM32\csrsrv.dll
- 2002-09-03 19:35 . 2010-12-09 14:30   33280              c:\windows\SYSTEM32\csrsrv.dll
+ 2002-09-03 19:45 . 2012-01-27 03:50   49152              c:\windows\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\INDEX.DAT
- 2002-09-03 19:45 . 2010-05-13 13:40   49152              c:\windows\SYSTEM32\CONFIG\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\INDEX.DAT
+ 2002-09-03 19:45 . 2012-01-27 03:50   32768              c:\windows\SYSTEM32\CONFIG\systemprofile\Local Settings\History\History.IE5\INDEX.DAT
- 2002-09-03 19:45 . 2010-05-13 13:40   32768              c:\windows\SYSTEM32\CONFIG\systemprofile\Local Settings\History\History.IE5\INDEX.DAT
- 2010-01-12 19:46 . 2010-05-12 23:59   16384              c:\windows\SYSTEM32\CONFIG\systemprofile\IETldCache\index.dat
+ 2010-01-12 19:46 . 2012-01-27 03:50   16384              c:\windows\SYSTEM32\CONFIG\systemprofile\IETldCache\index.dat
+ 2011-12-20 17:03 . 2012-01-27 03:50   16384              c:\windows\SYSTEM32\CONFIG\systemprofile\Cookies\index.dat
+ 2011-10-23 19:27 . 2011-10-23 19:27   87927              c:\windows\SYSTEM32\Adobe\Shockwave 11\uninstaller.exe
+ 2011-10-05 11:32 . 2011-10-05 11:32   86016              c:\windows\SYSTEM32\Adobe\Shockwave 11\SwMenu.dll
+ 2011-10-05 10:19 . 2011-10-05 10:19   73408              c:\windows\SYSTEM32\Adobe\Shockwave 11\gtapi.dll
+ 2011-10-05 10:19 . 2011-10-05 10:19   64512              c:\windows\SYSTEM32\Adobe\Shockwave 11\gcapi_dll.dll
+ 2011-10-05 11:33 . 2011-10-05 11:33   12800              c:\windows\SYSTEM32\Adobe\Shockwave 11\DynaPlayer.dll
+ 2011-12-25 08:49 . 2011-12-25 08:49   31504              c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
+ 2012-01-12 01:24 . 2012-01-12 01:24   19968              c:\windows\Installer\47b4e.msi
+ 2011-07-13 14:54 . 2011-07-13 14:54   18944              c:\windows\Installer\1975082.msi
+ 2011-07-13 14:53 . 2011-07-13 14:53   92672              c:\windows\Installer\1975074.msi
Logged
« Reply #7 on: January 27, 2012, 11:30:26 »
jerky Offline
Jr. Member

WWW 		**

Karma: 0
Posts: 64
PART TWO..Combofix log

- 2009-03-16 16:05 . 2011-02-10 08:15   35088              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
+ 2009-03-16 16:05 . 2012-01-12 01:19   35088              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
+ 2009-03-16 16:05 . 2012-01-12 01:19   18704              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
- 2009-03-16 16:05 . 2011-02-10 08:15   18704              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
- 2009-03-16 16:05 . 2011-02-10 08:15   20240              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
+ 2009-03-16 16:05 . 2012-01-12 01:19   20240              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
- 2010-11-11 08:20 . 2010-11-11 08:20   38240              c:\windows\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe
+ 2011-12-15 08:16 . 2011-12-15 08:16   38240              c:\windows\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe
+ 2010-06-05 07:01 . 2011-10-13 07:16   49152              c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
- 2010-06-05 07:01 . 2011-02-28 08:08   49152              c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll
+ 2011-10-23 19:27 . 2011-10-23 19:27   10134              c:\windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
+ 2011-11-18 14:18 . 2011-11-18 14:18   75656              c:\windows\Installer\{3839C2FF-2CD0-4601-91A8-B1E40A9BE8A8}\ProductName.chm.de_D066A77819B7480BA99CC79FB02C9357.exe
+ 2011-11-18 14:18 . 2011-11-18 14:18   75656              c:\windows\Installer\{3839C2FF-2CD0-4601-91A8-B1E40A9BE8A8}\DriverDetective.pt_6CF114D33913468CBA2AA6967939B819.exe
+ 2011-11-18 14:18 . 2011-11-18 14:18   75656              c:\windows\Installer\{3839C2FF-2CD0-4601-91A8-B1E40A9BE8A8}\DriverDetective.it_251B66F1CA924E82A1EE29E85D5EC5A1.exe
+ 2011-11-18 14:18 . 2011-11-18 14:18   75656              c:\windows\Installer\{3839C2FF-2CD0-4601-91A8-B1E40A9BE8A8}\DriverDetective.fr_E1678746353A46E3A9150D3E8B3832B1.exe
+ 2011-11-18 14:18 . 2011-11-18 14:18   75656              c:\windows\Installer\{3839C2FF-2CD0-4601-91A8-B1E40A9BE8A8}\DriverDetective.es_654C8EA5162D4D4084239A5EDD67F462.exe
+ 2010-09-21 03:07 . 2010-09-21 03:07   70584              c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0400000010\9.4.0\adobeextractfiles.dll
+ 2009-02-26 17:09 . 2009-02-26 17:09   10120              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\XLCALL32.DLL
+ 2009-02-26 22:43 . 2009-02-26 22:43   71520              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\XL12CNVP.DLL
+ 2009-02-26 21:45 . 2009-02-26 21:45   20808              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\WRD12EXE.EXE
+ 2008-08-26 02:50 . 2008-08-26 02:50   40960              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\VBAME.DLL
+ 2011-07-20 10:32 . 2011-07-20 10:32   47496              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\PUBTRAP.DLL
+ 2009-02-26 16:09 . 2009-02-26 16:09   43352              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\OUTLRPC.DLL
+ 2009-02-26 19:24 . 2009-02-26 19:24   71536              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\ONFILTER.DLL
+ 2009-02-26 19:24 . 2009-02-26 19:24   97680              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\ONENOTEM.EXE
+ 2008-08-26 02:50 . 2008-08-26 02:50   86016              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\MSADDNDR.DLL
+ 2009-02-26 16:09 . 2009-02-26 16:09   20352              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\MLSHEXT.DLL
+ 2009-03-16 15:58 . 2009-03-16 15:58   35648              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.4518\OLCTLPIA.DLL
+ 2006-10-27 00:13 . 2006-10-27 00:13   56192              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.4518\ACECNFLT.EXE
+ 2011-12-15 08:13 . 2011-08-22 23:48   12800              c:\windows\ie8updates\KB2618444-IE8\xpshims.dll
+ 2011-12-15 08:13 . 2011-08-22 23:48   66560              c:\windows\ie8updates\KB2618444-IE8\mshtmled.dll
+ 2011-12-15 08:13 . 2011-08-22 23:48   55296              c:\windows\ie8updates\KB2618444-IE8\msfeedsbs.dll
+ 2011-12-15 08:13 . 2011-08-22 23:48   43520              c:\windows\ie8updates\KB2618444-IE8\licmgr10.dll
+ 2011-12-15 08:13 . 2011-08-22 23:48   25600              c:\windows\ie8updates\KB2618444-IE8\jsproxy.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   12800              c:\windows\ie8updates\KB2586448-IE8\xpshims.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   66560              c:\windows\ie8updates\KB2586448-IE8\mshtmled.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   55296              c:\windows\ie8updates\KB2586448-IE8\msfeedsbs.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   43520              c:\windows\ie8updates\KB2586448-IE8\licmgr10.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   25600              c:\windows\ie8updates\KB2586448-IE8\jsproxy.dll
+ 2011-08-11 07:03 . 2011-04-25 16:11   12800              c:\windows\ie8updates\KB2559049-IE8\xpshims.dll
+ 2011-08-11 07:03 . 2011-04-25 16:11   66560              c:\windows\ie8updates\KB2559049-IE8\mshtmled.dll
+ 2011-08-11 07:03 . 2011-04-25 16:11   55296              c:\windows\ie8updates\KB2559049-IE8\msfeedsbs.dll
+ 2011-08-11 07:03 . 2011-04-25 16:11   43520              c:\windows\ie8updates\KB2559049-IE8\licmgr10.dll
+ 2011-08-11 07:03 . 2011-04-25 16:11   25600              c:\windows\ie8updates\KB2559049-IE8\jsproxy.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   12800              c:\windows\ie8updates\KB2530548-IE8\xpshims.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   66560              c:\windows\ie8updates\KB2530548-IE8\mshtmled.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   55296              c:\windows\ie8updates\KB2530548-IE8\msfeedsbs.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   43520              c:\windows\ie8updates\KB2530548-IE8\licmgr10.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   25600              c:\windows\ie8updates\KB2530548-IE8\jsproxy.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   12800              c:\windows\ie8updates\KB2497640-IE8\xpshims.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   66560              c:\windows\ie8updates\KB2497640-IE8\mshtmled.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   55296              c:\windows\ie8updates\KB2497640-IE8\msfeedsbs.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   43520              c:\windows\ie8updates\KB2497640-IE8\licmgr10.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   25600              c:\windows\ie8updates\KB2497640-IE8\jsproxy.dll
+ 2011-10-13 07:19 . 2011-10-13 07:19   60928              c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\888b745ca99d39692c2e9af222e5eae8\UIAutomationProvider.ni.dll
+ 2011-10-13 07:25 . 2011-10-13 07:25   37888              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\6c334564da041df8fb75415f2d503224\System.Windows.Presentation.ni.dll
+ 2012-01-12 09:06 . 2012-01-12 09:06   36864              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\750de53f30e516eb2c62de9bab7954e9\System.Web.DynamicData.Design.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   94208              c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\ac92806d5bd508eb25f1b4b73a36b101\System.ComponentModel.DataAnnotations.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   82944              c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\e6a9cd66d11a21776dbf425e8e28099c\System.AddIn.Contract.ni.dll
+ 2011-10-13 07:17 . 2011-10-13 07:17   47104              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\66873b557d5c7013e4c630361473b0c2\PresentationFontCache.ni.exe
+ 2011-10-13 07:16 . 2011-10-13 07:16   39424              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\5b30652a7b802199984f93b5e414260f\PresentationCFFRasterizer.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   55296              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\eaa8d72317e5b8047e413939cc71ffba\Microsoft.Vsa.ni.dll
+ 2012-01-12 01:55 . 2012-01-12 01:55   30208              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\9855d3fb15e6c63a811b1f0b66d78428\Microsoft.PowerShell.Commands.Utility.resources.ni.dll
+ 2012-01-12 01:55 . 2012-01-12 01:55   17408              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\7618f444d33b1311e952ba9285e4a4b2\Microsoft.PowerShell.Security.resources.ni.dll
+ 2012-01-12 01:55 . 2012-01-12 01:55   19456              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\1b23e2c0707d81e7eb14f78552562635\Microsoft.PowerShell.Commands.Management.resources.ni.dll
+ 2012-01-12 01:55 . 2012-01-12 01:55   35328              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\05bbffbe100ede49139819641a41dfda\Microsoft.PowerShell.ConsoleHost.resources.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   74752              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\aefe683674c97a998f4e908c1a7ee7c6\Microsoft.Build.Framework.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   65024              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\845eef4d09f28da6ee05d99f93c90f6e\Microsoft.Build.Framework.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   14336              c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\ab7ce2d94ca725c3889a4e3c1ee88ece\dfsvc.ni.exe
+ 2011-10-13 07:20 . 2011-10-13 07:20   25600              c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\d86a3346c3d90ff12d0df9d7726f3ece\Accessibility.ni.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   77824              c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   77824              c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2012-01-12 01:22 . 2012-01-12 01:22   81920              c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2010-10-06 07:07 . 2010-10-06 07:07   81920              c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   81920              c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   81920              c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   32768              c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   32768              c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   12800              c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   12800              c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   28672              c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   28672              c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2012-01-12 01:37 . 2012-01-12 01:37   65536              c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Security\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Security.dll
+ 2012-01-12 01:37 . 2012-01-12 01:37   36864              c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.ConsoleHost.resources\1.0.0.0_en_31bf3856ad364e35\Microsoft.PowerShell.ConsoleHost.resources.dll
+ 2012-01-12 01:37 . 2012-01-12 01:37   32768              c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Utility.resources\1.0.0.0_en_31bf3856ad364e35\Microsoft.PowerShell.Commands.Utility.resources.dll
+ 2012-01-12 01:37 . 2012-01-12 01:37   11264              c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Management.resources\1.0.0.0_en_31bf3856ad364e35\Microsoft.PowerShell.Commands.Management.resources.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   77824              c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   77824              c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   36864              c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   36864              c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   77824              c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   77824              c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   13312              c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   13312              c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   10752              c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   10752              c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   72192              c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   72192              c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   69120              c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   69120              c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-11-18 22:48 . 2011-11-18 22:48   11144              c:\windows\assembly\GAC\Policy.11.0.Microsoft.Office.Interop.Word\12.0.0.0__71e9bce111e9429c\Policy.11.0.Microsoft.Office.Interop.Word.dll
- 2009-09-29 07:06 . 2009-09-29 07:06   63336              c:\windows\assembly\GAC\Microsoft.Vbe.Interop\12.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.dll
+ 2011-11-18 22:47 . 2011-11-18 22:47   63336              c:\windows\assembly\GAC\Microsoft.Vbe.Interop\12.0.0.0__71e9bce111e9429c\Microsoft.Vbe.Interop.dll
+ 2011-11-18 22:48 . 2011-11-18 22:48   34696              c:\windows\assembly\GAC\Microsoft.Office.Interop.OutlookViewCtl\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.OutlookViewCtl.dll
+ 2011-07-11 21:58 . 2011-07-11 21:58   53248              c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2011-12-15 08:05 . 2011-07-08 13:49   46080              c:\windows\$NtUninstallKB2633952$\tzchange.exe
+ 2011-12-15 08:05 . 2011-11-08 14:58   16896              c:\windows\$NtUninstallKB2633952$\spuninst\tzchange.dll
+ 2011-12-15 08:03 . 2011-04-26 11:07   33280              c:\windows\$NtUninstallKB2620712$\csrsrv.dll
+ 2011-08-25 07:00 . 2010-11-03 13:12   46080              c:\windows\$NtUninstallKB2570791$\tzchange.exe
+ 2011-08-25 07:00 . 2011-07-09 00:32   16896              c:\windows\$NtUninstallKB2570791$\spuninst\tzchange.dll
+ 2011-08-11 07:03 . 2008-04-13 18:57   10112              c:\windows\$NtUninstallKB2566454$\ndistapi.sys
+ 2011-10-13 07:14 . 2002-09-03 19:51   16896              c:\windows\$NtUninstallKB2564958$\oleaccrc.dll
+ 2011-04-16 07:02 . 2008-04-14 00:11   45568              c:\windows\$NtUninstallKB2509553$\dnsrslvr.dll
+ 2011-07-13 07:08 . 2010-12-09 14:30   33280              c:\windows\$NtUninstallKB2507938$\csrsrv.dll
+ 2011-11-11 08:02 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2641690\update\spcustom.dll
+ 2011-11-11 08:02 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2641690\spmsg.dll
+ 2011-12-15 08:14 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2639417\update\spcustom.dll
+ 2011-12-15 08:14 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2639417\spmsg.dll
+ 2011-12-15 08:02 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2633171\update\spcustom.dll
+ 2011-12-15 03:30 . 2011-10-26 10:50   16896              c:\windows\$hf_mig$\KB2633171\update\mpsyschk.dll
+ 2011-12-15 08:02 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2633171\spmsg.dll
+ 2011-12-15 08:14 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2624667\update\spcustom.dll
+ 2011-12-15 08:14 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2624667\spmsg.dll
+ 2011-12-15 08:03 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2620712\update\spcustom.dll
+ 2011-12-15 08:03 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2620712\spmsg.dll
+ 2011-10-28 05:31 . 2011-10-28 05:31   33280              c:\windows\$hf_mig$\KB2620712\SP3QFE\csrsrv.dll
+ 2011-12-15 08:05 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2619339\update\spcustom.dll
+ 2011-12-15 08:05 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2619339\spmsg.dll
+ 2011-12-15 08:04 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2618451\update\spcustom.dll
+ 2011-12-15 08:04 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2618451\spmsg.dll
+ 2011-12-15 08:13 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2618444-IE8\update\spcustom.dll
+ 2011-12-15 08:13 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2618444-IE8\spmsg.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   12800              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\xpshims.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   66560              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\mshtmled.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   55296              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\msfeedsbs.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   43520              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\licmgr10.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   25600              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\jsproxy.dll
+ 2011-09-16 07:14 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2616676\update\spcustom.dll
+ 2011-09-16 07:14 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2616676\spmsg.dll
+ 2011-09-07 07:02 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2607712\update\spcustom.dll
+ 2011-09-07 07:02 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2607712\spmsg.dll
+ 2011-10-13 07:04 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2592799\update\spcustom.dll
+ 2011-10-13 07:04 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2592799\spmsg.dll
+ 2011-10-13 07:02 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2586448-IE8\update\spcustom.dll
+ 2011-10-13 07:02 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2586448-IE8\spmsg.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   12800              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\xpshims.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   66560              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\mshtmled.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   55296              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\msfeedsbs.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   43520              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\licmgr10.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   25600              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\jsproxy.dll
+ 2011-09-16 07:06 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2570947\update\spcustom.dll
+ 2011-09-16 07:06 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2570947\spmsg.dll
+ 2011-08-11 07:09 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2570222\update\spcustom.dll
+ 2011-08-11 07:09 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2570222\spmsg.dll
+ 2011-08-11 07:11 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2567680\update\spcustom.dll
+ 2011-08-11 07:11 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2567680\spmsg.dll
+ 2011-10-13 07:05 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2567053\update\spcustom.dll
+ 2011-10-13 07:05 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2567053\spmsg.dll
+ 2011-08-11 07:03 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2566454\update\spcustom.dll
+ 2011-08-11 07:03 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2566454\spmsg.dll
+ 2011-08-11 03:14 . 2011-07-08 13:51   10496              c:\windows\$hf_mig$\KB2566454\SP3QFE\ndistapi.sys
+ 2011-08-11 07:03 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2562937\update\spcustom.dll
+ 2011-08-11 07:03 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2562937\spmsg.dll
+ 2011-08-11 07:04 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2559049-IE8\update\spcustom.dll
+ 2011-08-11 07:04 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2559049-IE8\spmsg.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   12800              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\xpshims.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   66560              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\mshtmled.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   55296              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\msfeedsbs.dll
+ 2011-08-11 03:15 . 2011-06-23 18:33   43520              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\licmgr10.dll
+ 2011-08-11 03:15 . 2011-06-23 18:33   25600              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\jsproxy.dll
+ 2011-07-13 07:02 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2555917\update\spcustom.dll
+ 2011-07-13 07:02 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2555917\spmsg.dll
+ 2011-06-16 07:04 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2544893\update\spcustom.dll
+ 2011-06-16 07:04 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2544893\spmsg.dll
+ 2011-11-09 08:06 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2544893-v2\update\spcustom.dll
+ 2011-11-09 08:06 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2544893-v2\spmsg.dll
+ 2011-06-16 07:02 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2544521-IE8\update\spcustom.dll
+ 2011-06-16 07:02 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2544521-IE8\spmsg.dll
+ 2011-06-29 07:02 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2541763\update\spcustom.dll
+ 2011-06-29 07:02 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2541763\spmsg.dll
+ 2011-06-16 07:05 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2536276\update\spcustom.dll
+ 2011-06-16 07:05 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2536276\spmsg.dll
+ 2011-08-11 07:09 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2536276-v2\update\spcustom.dll
+ 2011-08-11 07:09 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2536276-v2\spmsg.dll
+ 2011-06-16 07:06 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2535512\update\spcustom.dll
+ 2011-06-16 07:06 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2535512\spmsg.dll
+ 2011-06-16 07:05 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2530548-IE8\update\spcustom.dll
+ 2011-06-16 07:05 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2530548-IE8\spmsg.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   12800              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\xpshims.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   66560              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\mshtmled.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   55296              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\msfeedsbs.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   43520              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\licmgr10.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   25600              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\jsproxy.dll
+ 2011-03-25 07:02 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2524375\update\spcustom.dll
+ 2011-03-25 07:02 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2524375\spmsg.dll
+ 2011-04-16 07:04 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2511455\update\spcustom.dll
+ 2011-04-16 07:04 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2511455\spmsg.dll
+ 2011-04-16 07:02 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2510531-IE8\update\spcustom.dll
+ 2011-04-16 07:02 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2510531-IE8\spmsg.dll
+ 2011-04-16 07:02 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2509553\update\spcustom.dll
+ 2011-04-16 07:02 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2509553\spmsg.dll
+ 2009-04-20 17:06 . 2009-04-20 17:06   45568              c:\windows\$hf_mig$\KB2509553\SP3QFE\dnsrslvr.dll
+ 2011-04-16 07:05 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2508429\update\spcustom.dll
+ 2011-04-16 07:05 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2508429\spmsg.dll
+ 2011-04-16 07:06 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2508272\update\spcustom.dll
+ 2011-04-16 07:06 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2508272\spmsg.dll
+ 2011-07-13 07:08 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2507938\update\spcustom.dll
+ 2011-07-13 07:08 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2507938\spmsg.dll
+ 2011-04-26 11:02 . 2011-04-26 11:02   33280              c:\windows\$hf_mig$\KB2507938\SP3QFE\csrsrv.dll
+ 2011-04-16 07:05 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2507618\update\spcustom.dll
+ 2011-04-16 07:05 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2507618\spmsg.dll
+ 2011-04-16 07:14 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2506223\update\spcustom.dll
+ 2011-04-16 07:14 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2506223\spmsg.dll
+ 2011-04-16 07:03 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2506212\update\spcustom.dll
+ 2011-04-16 07:03 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2506212\spmsg.dll
+ 2011-06-16 07:07 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2503665\update\spcustom.dll
+ 2011-06-16 07:07 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2503665\spmsg.dll
+ 2011-04-16 07:06 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2503658\update\spcustom.dll
+ 2011-04-16 07:06 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2503658\spmsg.dll
+ 2011-04-16 07:12 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2497640-IE8\update\spcustom.dll
+ 2011-04-16 07:12 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2497640-IE8\spmsg.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   12800              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\xpshims.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   66560              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\mshtmled.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   55296              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\msfeedsbs.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   43520              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\licmgr10.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   25600              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\jsproxy.dll
+ 2011-04-16 07:16 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2491683\update\spcustom.dll
+ 2011-04-16 07:16 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2491683\spmsg.dll
+ 2011-04-16 07:14 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2485663\update\spcustom.dll
+ 2011-04-16 07:14 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2485663\spmsg.dll
+ 2011-03-10 08:03 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2481109\update\spcustom.dll
+ 2011-03-10 08:03 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2481109\spmsg.dll
+ 2011-02-02 07:57 . 2011-02-02 07:57   53248              c:\windows\$hf_mig$\KB2481109\SP3QFE\tsgqec.dll
+ 2011-03-10 08:07 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2479943\update\spcustom.dll
+ 2011-03-10 08:07 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2479943\spmsg.dll
+ 2011-06-16 07:07 . 2010-07-05 13:15   26488              c:\windows\$hf_mig$\KB2476490\update\spcustom.dll
+ 2011-06-16 07:07 . 2010-07-05 13:15   17272              c:\windows\$hf_mig$\KB2476490\spmsg.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   8192              c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   8192              c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2009-04-17 06:04 . 2011-02-17 12:32   5120              c:\windows\SYSTEM32\xpsp4res.dll
- 2009-04-17 06:04 . 2010-08-26 12:52   5120              c:\windows\SYSTEM32\xpsp4res.dll
+ 2012-01-12 01:36 . 2007-06-30 18:49   4608              c:\windows\SYSTEM32\windowspowershell\v1.0\pwrshmsg.dll
- 2011-01-05 02:44 . 2011-01-05 02:44   5632              c:\windows\SYSTEM32\pndx5032.dll
+ 2011-01-05 02:44 . 2011-07-13 14:53   5632              c:\windows\SYSTEM32\pndx5032.dll
- 2011-01-05 02:44 . 2011-01-05 02:44   6656              c:\windows\SYSTEM32\pndx5016.dll
+ 2011-01-05 02:44 . 2011-07-13 14:53   6656              c:\windows\SYSTEM32\pndx5016.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   7168              c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   7168              c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   5632              c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   5632              c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2012-01-12 01:37 . 2012-01-12 01:37   8704              c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Security.resources\1.0.0.0_en_31bf3856ad364e35\Microsoft.PowerShell.Security.resources.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   6656              c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   6656              c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   8192              c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   8192              c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2011-04-16 07:04 . 2010-08-26 12:52   5120              c:\windows\$NtUninstallKB2508429$\xpsp4res.dll
+ 2011-02-17 12:32 . 2011-02-17 12:32   5120              c:\windows\$hf_mig$\KB2508429\SP3QFE\xpsp4res.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   113664              c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   113664              c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   258048              c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   258048              c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   653136              c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   569680              c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   225280              c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcm90.dll
- 2009-07-12 04:02 . 2009-07-12 04:02   653120              c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll
+ 2009-07-12 05:02 . 2009-07-12 05:02   653120              c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll
+ 2009-07-12 05:02 . 2009-07-12 05:02   569664              c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll
- 2009-07-12 04:02 . 2009-07-12 04:02   569664              c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll
+ 2009-07-12 05:05 . 2009-07-12 05:05   225280              c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcm90.dll
- 2009-07-12 04:05 . 2009-07-12 04:05   225280              c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcm90.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   159048              c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_92453bb7\atl90.dll
- 2009-07-12 04:02 . 2009-07-12 04:02   159032              c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_353599c2\atl90.dll
+ 2009-07-12 05:02 . 2009-07-12 05:02   159032              c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_353599c2\atl90.dll
+ 2011-05-14 05:17 . 2011-05-14 05:17   632656              c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
+ 2011-05-14 05:12 . 2011-05-14 05:12   554832              c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
+ 2011-05-14 05:11 . 2011-05-14 05:11   479232              c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcm80.dll
+ 2009-07-12 05:12 . 2009-07-12 05:12   632656              c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll
+ 2009-07-12 05:09 . 2009-07-12 05:09   554832              c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcp80.dll
+ 2009-07-12 05:08 . 2009-07-12 05:08   479232              c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcm80.dll
+ 2011-11-18 18:27 . 2007-12-03 15:27   520192              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdnTWUI.dll
- 2010-03-15 17:31 . 2007-12-03 15:27   520192              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdnTWUI.dll
+ 2011-11-18 18:27 . 2007-12-03 15:15   311296              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdnTwPro.dll
- 2010-03-15 17:31 . 2007-12-03 15:15   311296              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdnTwPro.dll
- 2010-03-15 17:31 . 2007-10-13 02:24   364544              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdnIPTK.dll
+ 2011-11-18 18:27 . 2007-10-13 02:24   364544              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdnIPTK.dll
+ 2011-11-18 18:27 . 2007-11-21 00:02   782336              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdndrs.dll
- 2010-03-15 17:31 . 2007-11-21 00:02   782336              c:\windows\TWAIN_32\Lexmark\2600 Series\lxdndrs.dll
+ 2002-09-03 20:03 . 2011-10-14 14:47   176128              c:\windows\SYSTEM32\winmm.dll
- 2002-09-03 20:03 . 2008-04-14 00:12   176128              c:\windows\SYSTEM32\winmm.dll
+ 2012-01-12 01:36 . 2007-10-30 09:15   330240              c:\windows\SYSTEM32\windowspowershell\v1.0\powershell.exe
+ 2002-09-03 20:01 . 2011-03-04 06:37   420864              c:\windows\SYSTEM32\vbscript.dll
+ 2002-09-03 20:00 . 2011-11-04 19:20   105984              c:\windows\SYSTEM32\url.dll
- 2002-09-03 20:00 . 2009-03-08 08:34   105984              c:\windows\SYSTEM32\url.dll
+ 2008-07-29 23:59 . 2011-09-26 15:41   611328              c:\windows\SYSTEM32\uiautomationcore.dll
+ 2011-11-18 18:28 . 2008-02-27 11:05   115200              c:\windows\SYSTEM32\SPOOL\PRTPROCS\W32X86\lxdndrpp.dll
- 2010-03-15 17:32 . 2008-02-27 11:05   115200              c:\windows\SYSTEM32\SPOOL\PRTPROCS\W32X86\lxdndrpp.dll
+ 2011-11-18 18:28 . 2007-10-26 12:35   122880              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnxmlu.dll
- 2010-03-15 17:32 . 2007-10-26 12:35   122880              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnxmlu.dll
- 2010-03-15 17:32 . 2008-02-27 23:07   139944              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnwbgw.exe
+ 2011-11-18 18:28 . 2008-02-27 23:07   139944              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnwbgw.exe
+ 2011-11-18 18:28 . 2007-10-04 09:30   343086              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnwavs.exe
- 2010-03-15 17:32 . 2007-10-04 09:30   343086              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnwavs.exe
+ 2011-11-18 18:28 . 2008-02-07 20:14   524288              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnutil.dll
- 2010-03-15 17:32 . 2008-02-07 20:14   524288              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnutil.dll
- 2010-03-15 17:32 . 2007-11-21 15:02   114688              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnuplr.dll
+ 2011-11-18 18:28 . 2007-11-21 15:02   114688              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnuplr.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   126976              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnupdb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   126976              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnupdb.dll
+ 2011-11-18 18:28 . 2007-07-25 15:36   364544              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnuldr.dll
- 2010-03-15 17:32 . 2007-07-25 15:36   364544              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnuldr.dll
+ 2011-11-18 18:28 . 2007-10-04 09:31   253952              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnsk0.dll
- 2010-03-15 17:32 . 2007-10-04 09:31   253952              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnsk0.dll
+ 2011-11-18 18:28 . 2007-07-25 15:36   327680              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnretv.dll
- 2010-03-15 17:32 . 2007-07-25 15:36   327680              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnretv.dll
+ 2011-11-18 18:28 . 2007-05-24 17:36   802816              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnptpc.dll
- 2010-03-15 17:32 . 2007-05-24 17:36   802816              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnptpc.dll
- 2010-03-15 17:32 . 2008-02-27 23:07   750248              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnpswx.exe
+ 2011-11-18 18:28 . 2008-02-27 23:07   750248              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnpswx.exe
+ 2011-11-18 18:28 . 2008-02-07 20:22   139264              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnpswr.dll
- 2010-03-15 17:32 . 2008-02-07 20:22   139264              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnpswr.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   708608              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnpsw.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   708608              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnpsw.dll
- 2010-03-15 17:32 . 2008-02-07 20:22   155648              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnprpr.dll
+ 2011-11-18 18:28 . 2008-02-07 20:22   155648              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnprpr.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   946176              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnprp.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   946176              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnprp.dll
- 2010-03-15 17:32 . 2007-11-29 17:17   544768              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnppx.dll
+ 2011-11-18 18:28 . 2007-11-29 17:17   544768              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnppx.dll
+ 2011-11-18 18:28 . 2008-02-07 20:22   237568              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnlpar.dll
- 2010-03-15 17:32 . 2008-02-07 20:22   237568              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnlpar.dll
+ 2011-11-18 18:28 . 2006-12-07 11:28   126976              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnlnks.dll
- 2010-03-15 17:32 . 2006-12-07 11:28   126976              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnlnks.dll
+ 2011-11-18 18:28 . 2008-02-27 23:07   701096              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnjswx.exe
- 2010-03-15 17:32 . 2008-02-27 23:07   701096              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnjswx.exe
+ 2011-11-18 18:28 . 2008-02-07 20:22   147456              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnjswr.dll
- 2010-03-15 17:32 . 2008-02-07 20:22   147456              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnjswr.dll
+ 2011-11-18 18:28 . 2008-02-07 20:19   688128              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnjswb.dll
- 2010-03-15 17:32 . 2008-02-07 20:19   688128              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnjswb.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   196608              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnjsw.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   196608              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnjsw.dll
+ 2011-11-18 18:28 . 2008-02-07 20:22   106496              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdninsr.dll
- 2010-03-15 17:32 . 2008-02-07 20:22   106496              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdninsr.dll
- 2010-03-15 17:32 . 2008-02-07 20:19   200704              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdninsb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:19   200704              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdninsb.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   176128              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnins.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   176128              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnins.dll
+ 2011-11-18 18:28 . 2007-01-08 22:33   253952              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnibuf.dll
- 2010-03-15 17:32 . 2007-01-08 22:33   253952              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnibuf.dll
+ 2011-11-18 18:28 . 2007-11-28 23:09   438272              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnhcp.dll
- 2010-03-15 17:32 . 2007-11-28 23:09   438272              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnhcp.dll
- 2010-03-15 17:32 . 2007-10-04 09:31   983121              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdngf.dll
+ 2011-11-18 18:28 . 2007-10-04 09:31   983121              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdngf.dll
- 2010-03-15 17:32 . 2007-08-14 11:01   434176              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnedf.dll
+ 2011-11-18 18:28 . 2007-08-14 11:01   434176              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnedf.dll
- 2010-03-15 17:32 . 2008-02-27 11:06   148480              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdndrui.dll
+ 2011-11-18 18:28 . 2008-02-27 11:06   148480              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdndrui.dll
+ 2011-11-18 18:28 . 2008-02-27 11:05   195072              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdndr.dll
- 2010-03-15 17:32 . 2008-02-27 11:05   195072              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdndr.dll
+ 2011-11-18 18:28 . 2007-05-29 15:39   589824              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdndatr.dll
- 2010-03-15 17:32 . 2007-05-29 15:39   589824              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdndatr.dll
- 2010-03-15 17:32 . 2007-11-29 17:17   335872              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncomx.dll
+ 2011-11-18 18:28 . 2007-11-29 17:17   335872              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncomx.dll
- 2010-03-15 17:32 . 2008-02-27 23:07   115848              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncfgx.exe
+ 2011-11-18 18:28 . 2008-02-27 23:07   115848              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdncfgx.exe
Logged
« Reply #8 on: January 27, 2012, 11:32:12 »
jerky Offline
Jr. Member

WWW 		**

Karma: 0
Posts: 64
PART THREE Combofix log.

+ 2011-11-18 18:25 . 2007-10-31 01:45   626688              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\msvcr80.dll
- 2010-03-15 17:30 . 2007-10-31 01:45   626688              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\msvcr80.dll
+ 2011-11-18 18:25 . 2007-10-31 01:45   548864              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\msvcp80.dll
- 2010-03-15 17:30 . 2007-10-31 01:45   548864              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\msvcp80.dll
+ 2011-11-18 18:25 . 2007-10-31 01:45   479232              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\msvcm80.dll
- 2010-03-15 17:30 . 2007-10-31 01:45   479232              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\msvcm80.dll
- 2010-03-15 17:32 . 2007-10-26 12:35   122880              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnxmlu.dll
+ 2011-11-18 18:28 . 2007-10-26 12:35   122880              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnxmlu.dll
- 2010-03-15 17:30 . 2007-11-21 14:39   102400              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnwupd.dll
+ 2011-11-18 18:25 . 2007-11-21 14:39   102400              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnwupd.dll
- 2010-03-15 17:32 . 2008-02-27 23:07   139944              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnwbgw.exe
+ 2011-11-18 18:28 . 2008-02-27 23:07   139944              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnwbgw.exe
- 2010-03-15 17:32 . 2007-10-04 09:30   343086              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnwavs.exe
+ 2011-11-18 18:28 . 2007-10-04 09:30   343086              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnwavs.exe
- 2010-03-15 17:32 . 2008-02-07 20:14   524288              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnutil.dll
+ 2011-11-18 18:28 . 2008-02-07 20:14   524288              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnutil.dll
+ 2011-11-18 18:28 . 2007-11-21 15:02   114688              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnuplr.dll
- 2010-03-15 17:32 . 2007-11-21 15:02   114688              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnuplr.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   126976              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnupdb.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   126976              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnupdb.dll
- 2010-03-15 17:32 . 2007-07-25 15:36   364544              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnuldr.dll
+ 2011-11-18 18:28 . 2007-07-25 15:36   364544              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnuldr.dll
- 2010-03-15 17:32 . 2007-10-04 09:31   253952              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnsk0.dll
+ 2011-11-18 18:28 . 2007-10-04 09:31   253952              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnsk0.dll
+ 2011-11-18 18:28 . 2007-07-25 15:36   327680              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnretv.dll
- 2010-03-15 17:32 . 2007-07-25 15:36   327680              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnretv.dll
- 2010-03-15 17:32 . 2007-05-24 17:36   802816              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnptpc.dll
+ 2011-11-18 18:28 . 2007-05-24 17:36   802816              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnptpc.dll
- 2010-03-15 17:32 . 2008-02-27 23:07   750248              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnpswx.exe
+ 2011-11-18 18:28 . 2008-02-27 23:07   750248              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnpswx.exe
- 2010-03-15 17:32 . 2008-02-07 20:22   139264              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnpswr.dll
+ 2011-11-18 18:28 . 2008-02-07 20:22   139264              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnpswr.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   708608              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnpsw.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   708608              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnpsw.dll
+ 2011-11-18 18:28 . 2008-02-07 20:22   155648              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnprpr.dll
- 2010-03-15 17:32 . 2008-02-07 20:22   155648              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnprpr.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   946176              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnprp.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   946176              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnprp.dll
+ 2011-11-18 18:28 . 2007-11-29 17:17   544768              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnppx.dll
- 2010-03-15 17:32 . 2007-11-29 17:17   544768              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnppx.dll
+ 2011-11-18 18:28 . 2008-02-07 20:22   237568              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnlpar.dll
- 2010-03-15 17:32 . 2008-02-07 20:22   237568              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnlpar.dll
+ 2011-11-18 18:28 . 2006-12-07 11:28   126976              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnlnks.dll
- 2010-03-15 17:32 . 2006-12-07 11:28   126976              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnlnks.dll
+ 2011-11-18 18:28 . 2008-02-27 23:07   701096              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnjswx.exe
- 2010-03-15 17:32 . 2008-02-27 23:07   701096              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnjswx.exe
- 2010-03-15 17:32 . 2008-02-07 20:22   147456              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnjswr.dll
+ 2011-11-18 18:28 . 2008-02-07 20:22   147456              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnjswr.dll
+ 2011-11-18 18:28 . 2008-02-07 20:19   688128              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnjswb.dll
- 2010-03-15 17:32 . 2008-02-07 20:19   688128              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnjswb.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   196608              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnjsw.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   196608              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnjsw.dll
+ 2011-11-18 18:28 . 2008-02-07 20:22   106496              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdninsr.dll
- 2010-03-15 17:32 . 2008-02-07 20:22   106496              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdninsr.dll
- 2010-03-15 17:32 . 2008-02-07 20:19   200704              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdninsb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:19   200704              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdninsb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   176128              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnins.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   176128              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnins.dll
- 2010-03-15 17:32 . 2007-01-08 22:33   253952              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnibuf.dll
+ 2011-11-18 18:28 . 2007-01-08 22:33   253952              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnibuf.dll
- 2010-03-15 17:32 . 2007-11-28 23:09   438272              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnhcp.dll
+ 2011-11-18 18:28 . 2007-11-28 23:09   438272              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnhcp.dll
+ 2011-11-18 18:28 . 2007-10-04 09:31   983121              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdngf.dll
- 2010-03-15 17:32 . 2007-10-04 09:31   983121              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdngf.dll
- 2010-03-15 17:32 . 2007-08-14 11:01   434176              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnedf.dll
+ 2011-11-18 18:28 . 2007-08-14 11:01   434176              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnedf.dll
+ 2011-11-18 18:28 . 2008-02-27 11:06   148480              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdndrui.dll
- 2010-03-15 17:32 . 2008-02-27 11:06   148480              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdndrui.dll
- 2010-03-15 17:32 . 2008-02-27 11:05   195072              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdndr.dll
+ 2011-11-18 18:28 . 2008-02-27 11:05   195072              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdndr.dll
+ 2011-11-18 18:28 . 2007-05-29 15:39   589824              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdndatr.dll
- 2010-03-15 17:32 . 2007-05-29 15:39   589824              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdndatr.dll
+ 2011-11-18 18:28 . 2007-11-29 17:17   335872              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncomx.dll
- 2010-03-15 17:32 . 2007-11-29 17:17   335872              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncomx.dll
+ 2011-11-18 18:28 . 2008-02-27 23:07   115848              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncfgx.exe
- 2010-03-15 17:32 . 2008-02-27 23:07   115848              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdncfgx.exe
+ 2002-09-03 19:54 . 2011-04-29 17:25   151552              c:\windows\SYSTEM32\schannel.dll
+ 2002-09-03 19:54 . 2011-02-09 13:53   270848              c:\windows\SYSTEM32\sbe.dll
- 2002-09-03 19:54 . 2008-04-14 00:12   270848              c:\windows\SYSTEM32\sbe.dll
+ 2011-01-05 02:45 . 2011-07-13 14:53   198848              c:\windows\SYSTEM32\rmoc3260.dll
+ 2003-04-22 16:21 . 2011-07-02 16:34   127836              c:\windows\SYSTEM32\Restore\rstrlog.dat
+ 2011-03-12 00:35 . 2007-12-03 15:15   311296              c:\windows\SYSTEM32\ReinstallBackups\0004\DriverFiles\lxdnTwPro.dll
+ 2011-03-12 00:35 . 2007-10-13 02:24   364544              c:\windows\SYSTEM32\ReinstallBackups\0004\DriverFiles\lxdnIPTK.dll
+ 2011-03-12 00:35 . 2007-11-21 00:02   782336              c:\windows\SYSTEM32\ReinstallBackups\0004\DriverFiles\i386\lxdndrs.dll
+ 2011-03-12 00:35 . 2007-12-03 15:27   520192              c:\windows\SYSTEM32\ReinstallBackups\0004\DriverFiles\English\lxdnTWUI.dll
- 2011-01-05 02:44 . 2011-01-05 02:44   272896              c:\windows\SYSTEM32\pncrt.dll
+ 2011-01-05 02:44 . 2011-07-13 14:53   272896              c:\windows\SYSTEM32\pncrt.dll
+ 2003-03-26 03:01 . 2012-01-26 16:16   458606              c:\windows\SYSTEM32\PERFH009.DAT
+ 2002-09-03 19:51 . 2010-12-20 17:32   551936              c:\windows\SYSTEM32\oleaut32.dll
- 2002-09-03 19:51 . 2008-04-14 00:12   551936              c:\windows\SYSTEM32\oleaut32.dll
+ 2002-09-03 19:51 . 2011-09-26 15:41   220160              c:\windows\SYSTEM32\oleacc.dll
- 2002-09-03 19:50 . 2010-12-20 23:59   206848              c:\windows\SYSTEM32\occache.dll
+ 2002-09-03 19:50 . 2011-11-04 19:20   206848              c:\windows\SYSTEM32\occache.dll
+ 2002-09-03 19:48 . 2008-06-20 16:02   245248              c:\windows\SYSTEM32\mswsock.dll
- 2002-09-03 19:48 . 2008-06-20 17:46   245248              c:\windows\SYSTEM32\mswsock.dll
- 2003-02-21 08:42 . 2011-01-05 02:44   348160              c:\windows\SYSTEM32\msvcr71.dll
+ 2003-02-21 08:42 . 2011-07-13 14:53   348160              c:\windows\SYSTEM32\msvcr71.dll
- 2003-03-19 02:14 . 2011-01-05 02:44   499712              c:\windows\SYSTEM32\msvcp71.dll
+ 2003-03-19 02:14 . 2011-07-13 14:53   499712              c:\windows\SYSTEM32\msvcp71.dll
- 2002-08-29 11:00 . 2008-04-14 00:12   677888              c:\windows\SYSTEM32\mstsc.exe
+ 2002-08-29 11:00 . 2011-01-27 11:57   677888              c:\windows\SYSTEM32\mstsc.exe
- 2002-09-03 19:48 . 2010-12-20 23:59   611840              c:\windows\SYSTEM32\mstime.dll
+ 2002-09-03 19:48 . 2011-11-04 19:20   611840              c:\windows\SYSTEM32\mstime.dll
+ 2006-11-08 01:03 . 2011-11-04 19:20   602112              c:\windows\SYSTEM32\msfeeds.dll
- 2006-11-08 01:03 . 2010-12-20 23:59   602112              c:\windows\SYSTEM32\msfeeds.dll
- 2002-09-03 19:44 . 2010-09-18 16:23   974848              c:\windows\SYSTEM32\mfc42u.dll
+ 2002-09-03 19:44 . 2011-02-08 13:33   974848              c:\windows\SYSTEM32\mfc42u.dll
+ 2002-09-03 19:44 . 2011-02-08 13:33   978944              c:\windows\SYSTEM32\mfc42.dll
+ 2011-08-02 12:38 . 2011-08-02 12:38   180224              c:\windows\SYSTEM32\Macromed\Shockwave 10\Proj.dll
+ 2011-08-02 12:38 . 2011-08-02 12:38   475136              c:\windows\SYSTEM32\Macromed\Shockwave 10\PluginPing.dll
+ 2011-08-02 12:38 . 2011-08-02 12:38   339968              c:\windows\SYSTEM32\Macromed\Shockwave 10\Plugin.dll
+ 2011-08-02 12:38 . 2011-08-02 12:38   606208              c:\windows\SYSTEM32\Macromed\Shockwave 10\iml32X.dll
+ 2011-08-02 12:38 . 2011-08-02 12:38   471040              c:\windows\SYSTEM32\Macromed\Shockwave 10\Control.dll
+ 2011-08-25 22:54 . 2011-08-25 22:54   243360              c:\windows\SYSTEM32\Macromed\Flash\FlashUtil10w_ActiveX.exe
+ 2011-08-25 22:54 . 2011-08-25 22:54   328864              c:\windows\SYSTEM32\Macromed\Flash\FlashUtil10w_ActiveX.dll
+ 2011-11-18 18:25 . 2007-11-21 14:39   102400              c:\windows\SYSTEM32\lxdnwupd.dll
- 2010-03-15 17:30 . 2007-11-21 14:39   102400              c:\windows\SYSTEM32\lxdnwupd.dll
- 2010-03-15 17:30 . 2008-02-07 20:14   524288              c:\windows\SYSTEM32\lxdnutil.dll
+ 2011-11-18 18:25 . 2008-02-07 20:14   524288              c:\windows\SYSTEM32\lxdnutil.dll
- 2010-03-15 17:30 . 2007-11-28 23:12   843776              c:\windows\SYSTEM32\lxdnusb1.dll
+ 2011-11-18 18:25 . 2007-11-28 23:12   843776              c:\windows\SYSTEM32\lxdnusb1.dll
- 2010-03-15 17:30 . 2007-11-28 23:19   647168              c:\windows\SYSTEM32\lxdnpmui.dll
+ 2011-11-18 18:25 . 2007-11-28 23:19   647168              c:\windows\SYSTEM32\lxdnpmui.dll
+ 2011-11-18 18:24 . 2007-11-28 23:13   569344              c:\windows\SYSTEM32\lxdnlmpm.dll
- 2010-03-15 17:30 . 2007-11-28 23:13   569344              c:\windows\SYSTEM32\lxdnlmpm.dll
- 2010-03-15 17:30 . 2008-02-07 20:22   147456              c:\windows\SYSTEM32\lxdnjswr.dll
+ 2011-11-18 18:24 . 2008-02-07 20:22   147456              c:\windows\SYSTEM32\lxdnjswr.dll
+ 2011-11-18 18:25 . 2007-11-28 23:09   348160              c:\windows\SYSTEM32\LXDNinst.dll
- 2010-03-15 17:30 . 2007-11-28 23:09   348160              c:\windows\SYSTEM32\LXDNinst.dll
+ 2011-11-18 18:24 . 2008-02-07 20:22   106496              c:\windows\SYSTEM32\lxdninsr.dll
- 2010-03-15 17:30 . 2008-02-07 20:22   106496              c:\windows\SYSTEM32\lxdninsr.dll
+ 2011-11-18 18:24 . 2008-02-07 20:19   200704              c:\windows\SYSTEM32\lxdninsb.dll
- 2010-03-15 17:30 . 2008-02-07 20:19   200704              c:\windows\SYSTEM32\lxdninsb.dll
- 2010-03-15 17:30 . 2008-02-07 20:16   176128              c:\windows\SYSTEM32\lxdnins.dll
+ 2011-11-18 18:24 . 2008-02-07 20:16   176128              c:\windows\SYSTEM32\lxdnins.dll
- 2010-03-15 17:30 . 2007-11-28 23:09   364544              c:\windows\SYSTEM32\lxdninpa.dll
+ 2011-11-18 18:25 . 2007-11-28 23:09   364544              c:\windows\SYSTEM32\lxdninpa.dll
+ 2011-11-18 18:24 . 2008-02-27 23:07   320168              c:\windows\SYSTEM32\lxdnih.exe
- 2010-03-15 17:30 . 2008-02-27 23:07   320168              c:\windows\SYSTEM32\lxdnih.exe
- 2010-03-15 17:30 . 2007-11-28 23:13   339968              c:\windows\SYSTEM32\lxdniesc.dll
+ 2011-11-18 18:25 . 2007-11-28 23:13   339968              c:\windows\SYSTEM32\lxdniesc.dll
- 2010-03-15 17:30 . 2007-11-28 23:09   438272              c:\windows\SYSTEM32\LXDNhcp.dll
+ 2011-11-18 18:25 . 2007-11-28 23:09   438272              c:\windows\SYSTEM32\LXDNhcp.dll
- 2010-03-15 17:30 . 2007-11-28 23:12   663552              c:\windows\SYSTEM32\lxdnhbn3.dll
+ 2011-11-18 18:24 . 2007-11-28 23:12   663552              c:\windows\SYSTEM32\lxdnhbn3.dll
- 2010-03-15 17:30 . 2008-02-07 20:13   208896              c:\windows\SYSTEM32\lxdngrd.dll
+ 2011-11-18 18:24 . 2008-02-07 20:13   208896              c:\windows\SYSTEM32\lxdngrd.dll
+ 2011-11-18 18:24 . 2007-10-04 09:31   983121              c:\windows\SYSTEM32\lxdngf.dll
- 2010-03-15 17:30 . 2007-10-04 09:31   983121              c:\windows\SYSTEM32\lxdngf.dll
- 2010-03-15 17:31 . 2007-11-21 00:02   782336              c:\windows\SYSTEM32\lxdndrs.dll
+ 2011-11-18 18:27 . 2007-11-21 00:02   782336              c:\windows\SYSTEM32\lxdndrs.dll
+ 2011-11-18 18:24 . 2008-02-27 23:07   594600              c:\windows\SYSTEM32\lxdncoms.exe
- 2010-03-15 17:30 . 2008-02-27 23:07   594600              c:\windows\SYSTEM32\lxdncoms.exe
+ 2011-11-18 18:24 . 2007-11-28 23:13   376832              c:\windows\SYSTEM32\lxdncomm.dll
- 2010-03-15 17:30 . 2007-11-28 23:13   376832              c:\windows\SYSTEM32\lxdncomm.dll
- 2010-03-15 17:30 . 2007-11-28 23:11   851968              c:\windows\SYSTEM32\lxdncomc.dll
+ 2011-11-18 18:24 . 2007-11-28 23:11   851968              c:\windows\SYSTEM32\lxdncomc.dll
- 2010-03-15 17:32 . 2008-02-15 04:52   348160              c:\windows\SYSTEM32\lxdncoin.dll
+ 2011-11-18 18:28 . 2008-02-15 04:52   348160              c:\windows\SYSTEM32\lxdncoin.dll
- 2010-03-15 17:30 . 2008-02-27 23:07   365224              c:\windows\SYSTEM32\lxdncfg.exe
+ 2011-11-18 18:24 . 2008-02-27 23:07   365224              c:\windows\SYSTEM32\lxdncfg.exe
+ 2003-01-13 18:57 . 2011-03-04 06:37   726528              c:\windows\SYSTEM32\jscript.dll
- 2003-01-13 18:57 . 2009-12-09 05:53   726528              c:\windows\SYSTEM32\jscript.dll
+ 2011-07-11 22:07 . 2011-07-11 22:06   153376              c:\windows\SYSTEM32\javaws.exe
+ 2011-07-11 22:07 . 2011-07-11 22:06   145184              c:\windows\SYSTEM32\javaw.exe
+ 2011-07-11 22:07 . 2011-07-11 22:06   145184              c:\windows\SYSTEM32\java.exe
+ 2004-06-07 18:19 . 2011-10-10 14:22   692736              c:\windows\SYSTEM32\inetcomm.dll
- 2004-06-07 18:19 . 2010-06-09 07:43   692736              c:\windows\SYSTEM32\inetcomm.dll
+ 2002-09-03 19:40 . 2011-11-04 19:20   184320              c:\windows\SYSTEM32\iepeers.dll
- 2002-09-03 19:40 . 2010-12-20 23:59   184320              c:\windows\SYSTEM32\iepeers.dll
+ 2002-09-03 19:40 . 2011-11-04 19:20   387584              c:\windows\SYSTEM32\iedkcs32.dll
- 2002-09-03 19:40 . 2010-12-20 23:59   387584              c:\windows\SYSTEM32\iedkcs32.dll
+ 2002-09-03 19:39 . 2011-11-04 11:24   174080              c:\windows\SYSTEM32\ie4uinit.exe
+ 2004-08-04 07:56 . 2011-02-11 13:25   229888              c:\windows\SYSTEM32\fxscover.exe
+ 2002-09-09 14:30 . 2012-01-11 19:30   428592              c:\windows\SYSTEM32\FNTCACHE.DAT
+ 2002-09-03 19:37 . 2011-10-18 11:13   186880              c:\windows\SYSTEM32\encdec.dll
- 2002-09-03 19:37 . 2008-04-14 00:11   186880              c:\windows\SYSTEM32\encdec.dll
+ 2011-03-07 02:02 . 2010-09-06 09:26   189520              c:\windows\SYSTEM32\DRIVERS\tmcomm.sys
+ 2002-09-03 19:57 . 2011-02-17 13:18   357888              c:\windows\SYSTEM32\DRIVERS\srv.sys
+ 2002-08-29 11:00 . 2011-06-24 14:10   139656              c:\windows\SYSTEM32\DRIVERS\rdpwd.sys
- 2002-08-29 11:00 . 2008-04-14 00:13   139656              c:\windows\SYSTEM32\DRIVERS\rdpwd.sys
+ 2002-09-03 19:48 . 2011-04-21 13:37   105472              c:\windows\SYSTEM32\DRIVERS\mup.sys
+ 2002-09-03 19:45 . 2011-07-15 13:29   456320              c:\windows\SYSTEM32\DRIVERS\mrxsmb.sys
+ 2009-04-07 02:33 . 2011-07-01 07:20   138192              c:\windows\SYSTEM32\DRIVERS\avipbb.sys
- 2002-09-03 19:33 . 2008-08-14 10:04   138496              c:\windows\SYSTEM32\DRIVERS\afd.sys
+ 2002-09-03 19:33 . 2011-08-17 13:49   138496              c:\windows\SYSTEM32\DRIVERS\afd.sys
+ 2002-09-03 19:36 . 2011-03-03 06:55   149504              c:\windows\SYSTEM32\dnsapi.dll
+ 2010-06-18 17:45 . 2011-11-25 21:57   293376              c:\windows\SYSTEM32\DLLCACHE\winsrv.dll
- 2010-06-18 17:45 . 2010-06-18 17:45   293376              c:\windows\SYSTEM32\DLLCACHE\winsrv.dll
+ 2011-10-14 14:47 . 2011-10-14 14:47   176128              c:\windows\SYSTEM32\DLLCACHE\winmm.dll
+ 2004-01-21 21:16 . 2011-11-04 19:20   916992              c:\windows\SYSTEM32\DLLCACHE\wininet.dll
+ 2006-09-18 14:15 . 2011-04-30 03:01   758784              c:\windows\SYSTEM32\DLLCACHE\vgx.dll
+ 2008-05-09 10:53 . 2011-03-04 06:37   420864              c:\windows\SYSTEM32\DLLCACHE\vbscript.dll
+ 2002-09-03 20:00 . 2011-11-04 19:20   105984              c:\windows\SYSTEM32\DLLCACHE\url.dll
- 2002-09-03 20:00 . 2009-03-08 08:34   105984              c:\windows\SYSTEM32\DLLCACHE\url.dll
+ 2008-10-14 22:33 . 2011-02-17 13:18   357888              c:\windows\SYSTEM32\DLLCACHE\srv.sys
+ 2008-12-05 06:54 . 2011-04-29 17:25   151552              c:\windows\SYSTEM32\DLLCACHE\schannel.dll
+ 2011-02-09 13:53 . 2011-02-09 13:53   270848              c:\windows\SYSTEM32\DLLCACHE\sbe.dll
+ 2011-08-11 03:15 . 2011-06-24 14:10   139656              c:\windows\SYSTEM32\DLLCACHE\rdpwd.sys
+ 2011-11-03 15:28 . 2011-11-03 15:28   386048              c:\windows\SYSTEM32\DLLCACHE\qdvd.dll
+ 2010-12-20 17:32 . 2010-12-20 17:32   551936              c:\windows\SYSTEM32\DLLCACHE\oleaut32.dll
+ 2002-09-03 19:51 . 2011-09-26 15:41   220160              c:\windows\SYSTEM32\DLLCACHE\oleacc.dll
+ 2006-10-17 16:04 . 2011-11-04 19:20   206848              c:\windows\SYSTEM32\DLLCACHE\occache.dll
- 2006-10-17 16:04 . 2010-12-20 23:59   206848              c:\windows\SYSTEM32\DLLCACHE\occache.dll
+ 2011-06-15 20:35 . 2011-04-21 13:37   105472              c:\windows\SYSTEM32\DLLCACHE\mup.sys
+ 2008-06-20 17:46 . 2008-06-20 16:02   245248              c:\windows\SYSTEM32\DLLCACHE\mswsock.dll
- 2008-06-20 17:46 . 2008-06-20 17:46   245248              c:\windows\SYSTEM32\DLLCACHE\mswsock.dll
+ 2006-05-10 05:23 . 2011-11-04 19:20   611840              c:\windows\SYSTEM32\DLLCACHE\mstime.dll
- 2006-05-10 05:23 . 2010-12-20 23:59   611840              c:\windows\SYSTEM32\DLLCACHE\mstime.dll
- 2007-04-25 08:41 . 2010-12-20 23:59   602112              c:\windows\SYSTEM32\DLLCACHE\msfeeds.dll
+ 2007-04-25 08:41 . 2011-11-04 19:20   602112              c:\windows\SYSTEM32\DLLCACHE\msfeeds.dll
+ 2008-11-12 19:09 . 2011-07-15 13:29   456320              c:\windows\SYSTEM32\DLLCACHE\mrxsmb.sys
+ 2002-09-03 19:44 . 2011-02-08 13:33   974848              c:\windows\SYSTEM32\DLLCACHE\mfc42u.dll
- 2002-09-03 19:44 . 2010-09-18 16:23   974848              c:\windows\SYSTEM32\DLLCACHE\mfc42u.dll
+ 2010-10-15 00:17 . 2011-02-08 13:33   978944              c:\windows\SYSTEM32\DLLCACHE\mfc42.dll
+ 2011-01-27 11:57 . 2011-01-27 11:57   677888              c:\windows\SYSTEM32\DLLCACHE\lhmstsc.exe
+ 2008-05-09 10:53 . 2011-03-04 06:37   726528              c:\windows\SYSTEM32\DLLCACHE\jscript.dll
- 2008-05-09 10:53 . 2009-12-09 05:53   726528              c:\windows\SYSTEM32\DLLCACHE\jscript.dll
+ 2008-08-13 20:49 . 2011-10-10 14:22   692736              c:\windows\SYSTEM32\DLLCACHE\inetcomm.dll
- 2008-08-13 20:49 . 2010-06-09 07:43   692736              c:\windows\SYSTEM32\DLLCACHE\inetcomm.dll
+ 2009-12-24 18:02 . 2011-11-04 19:20   247808              c:\windows\SYSTEM32\DLLCACHE\ieproxy.dll
- 2009-12-24 18:02 . 2010-12-20 23:59   247808              c:\windows\SYSTEM32\DLLCACHE\ieproxy.dll
+ 2002-09-03 19:40 . 2011-11-04 19:20   184320              c:\windows\SYSTEM32\DLLCACHE\iepeers.dll
- 2002-09-03 19:40 . 2010-12-20 23:59   184320              c:\windows\SYSTEM32\DLLCACHE\iepeers.dll
+ 2010-06-09 23:57 . 2011-11-04 19:20   743424              c:\windows\SYSTEM32\DLLCACHE\iedvtool.dll
- 2010-06-09 23:57 . 2010-12-20 23:59   743424              c:\windows\SYSTEM32\DLLCACHE\iedvtool.dll
- 2006-11-07 07:27 . 2010-12-20 23:59   387584              c:\windows\SYSTEM32\DLLCACHE\iedkcs32.dll
+ 2006-11-07 07:27 . 2011-11-04 19:20   387584              c:\windows\SYSTEM32\DLLCACHE\iedkcs32.dll
+ 2006-11-07 07:26 . 2011-11-04 11:24   174080              c:\windows\SYSTEM32\DLLCACHE\ie4uinit.exe
+ 2011-02-11 13:25 . 2011-02-11 13:25   229888              c:\windows\SYSTEM32\DLLCACHE\fxscover.exe
+ 2011-02-09 13:53 . 2011-10-18 11:13   186880              c:\windows\SYSTEM32\DLLCACHE\encdec.dll
+ 2008-06-20 17:46 . 2011-03-03 06:55   149504              c:\windows\SYSTEM32\DLLCACHE\dnsapi.dll
+ 2011-09-03 10:17 . 2011-09-28 07:06   599040              c:\windows\SYSTEM32\DLLCACHE\crypt32.dll
+ 2010-04-20 05:30 . 2011-02-15 12:56   290432              c:\windows\SYSTEM32\DLLCACHE\atmfd.dll
+ 2008-06-20 11:40 . 2011-08-17 13:49   138496              c:\windows\SYSTEM32\DLLCACHE\afd.sys
- 2008-06-20 11:40 . 2008-08-14 10:04   138496              c:\windows\SYSTEM32\DLLCACHE\afd.sys
+ 2011-07-11 22:07 . 2011-07-11 22:06   472808              c:\windows\SYSTEM32\deployJava1.dll
+ 2002-09-23 19:10 . 2011-09-28 07:06   599040              c:\windows\SYSTEM32\crypt32.dll
- 2002-09-23 19:10 . 2008-04-14 00:11   599040              c:\windows\SYSTEM32\crypt32.dll
+ 2002-09-03 19:33 . 2011-02-15 12:56   290432              c:\windows\SYSTEM32\atmfd.dll
+ 2011-10-05 10:19 . 2011-10-05 10:19   279992              c:\windows\SYSTEM32\Adobe\Shockwave 11\SymCCIS.dll
+ 2011-10-05 11:32 . 2011-10-05 11:32   114176              c:\windows\SYSTEM32\Adobe\Shockwave 11\SwInit.exe
+ 2011-10-05 11:34 . 2011-10-05 11:34   434176              c:\windows\SYSTEM32\Adobe\Shockwave 11\Proj.dll
+ 2011-10-05 11:32 . 2011-10-05 11:32   365056              c:\windows\SYSTEM32\Adobe\Shockwave 11\Plugin.dll
+ 2011-10-05 11:21 . 2011-10-05 11:21   990208              c:\windows\SYSTEM32\Adobe\Shockwave 11\iml32.dll
+ 2011-10-05 11:15 . 2011-10-05 11:15   919040              c:\windows\SYSTEM32\Adobe\Shockwave 11\gi.dll
+ 2011-10-05 11:31 . 2011-10-05 11:31   542720              c:\windows\SYSTEM32\Adobe\Shockwave 11\Control.dll
+ 2011-09-16 13:05 . 2011-09-16 13:05   113080              c:\windows\SYSTEM32\Adobe\Director\SWDNLD.EXE
+ 2011-09-16 13:05 . 2011-09-16 13:05   279480              c:\windows\SYSTEM32\Adobe\Director\SwDir.dll
+ 2011-10-05 11:33 . 2011-10-05 11:33   145920              c:\windows\SYSTEM32\Adobe\Director\np32dsw.dll
+ 2011-02-11 13:25 . 2011-02-11 13:25   229888              c:\windows\ServicePackFiles\ServicePackCache\i386\fxscover.exe
+ 2011-03-07 02:14 . 2011-03-07 02:15   102400              c:\windows\RegBootClean.exe
+ 2011-12-25 08:49 . 2011-12-25 08:49   436496              c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
+ 2011-07-07 09:18 . 2011-07-07 09:18   388936              c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
- 2010-05-11 10:40 . 2010-05-11 10:40   388936              c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2011-03-25 10:15 . 2011-03-25 10:15   363856              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
- 2010-05-11 10:40 . 2010-05-11 10:40   989016              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2011-07-07 09:18 . 2011-07-07 09:18   989016              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2011-03-18 00:03 . 2011-03-18 00:03   308736              c:\windows\Installer\873eb2b.msp
+ 2011-06-16 07:09 . 2011-06-16 07:09   223744              c:\windows\Installer\873eae2.msi
+ 2011-06-16 07:04 . 2011-06-16 07:04   467456              c:\windows\Installer\873eab3.msi
+ 2011-03-08 16:50 . 2011-03-08 16:50   850432              c:\windows\Installer\84601ca.msi
+ 2011-12-25 10:40 . 2011-12-25 10:40   819200              c:\windows\Installer\47b55.msp
+ 2011-07-11 22:07 . 2011-07-11 22:07   180224              c:\windows\Installer\2f82996d.msi
+ 2011-07-11 22:06 . 2011-07-11 22:06   677376              c:\windows\Installer\2f829967.msi
+ 2011-10-23 19:27 . 2011-10-23 19:27   430592              c:\windows\Installer\15b8539f.msi
+ 2011-03-12 00:57 . 2011-03-12 00:57   126976              c:\windows\Installer\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}\ARPPRODUCTICON.exe
+ 2011-03-12 00:57 . 2011-03-12 00:57   126976              c:\windows\Installer\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}\_SHCT_Sprint.exe.exe
+ 2009-03-16 16:05 . 2012-01-12 01:19   888080              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
- 2009-03-16 16:05 . 2011-02-10 08:15   888080              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
+ 2009-03-16 16:05 . 2012-01-12 01:19   272648              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\pubs.exe
- 2009-03-16 16:05 . 2011-02-10 08:15   272648              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\pubs.exe
- 2009-03-16 16:05 . 2011-02-10 08:15   922384              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\pptico.exe
+ 2009-03-16 16:05 . 2012-01-12 01:19   922384              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\pptico.exe
+ 2009-03-16 16:05 . 2012-01-12 01:19   845584              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\outicon.exe
- 2009-03-16 16:05 . 2011-02-10 08:15   845584              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\outicon.exe
- 2009-03-16 16:05 . 2011-02-10 08:15   217864              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\misc.exe
+ 2009-03-16 16:05 . 2012-01-12 01:19   217864              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\misc.exe
+ 2009-03-16 16:05 . 2012-01-12 01:19   184080              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\joticon.exe
- 2009-03-16 16:05 . 2011-02-10 08:15   184080              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\joticon.exe
- 2009-03-16 16:05 . 2011-02-10 08:15   159504              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2009-03-16 16:05 . 2012-01-12 01:19   159504              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\inficon.exe
+ 2011-11-18 22:41 . 2011-11-18 22:41   217864              c:\windows\Installer\{90120000-006E-0409-0000-0000000FF1CE}\misc.exe
- 2010-05-17 20:48 . 2010-05-17 20:48   217864              c:\windows\Installer\{90120000-006E-0409-0000-0000000FF1CE}\misc.exe
+ 2010-09-21 03:07 . 2010-09-21 03:07   338856              c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0400000010\9.4.0\readerupdater.exe
+ 2010-09-21 03:07 . 2010-09-21 03:07   932288              c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0400000010\9.4.0\adobearm.exe
+ 2010-09-21 03:07 . 2010-09-21 03:07   338856              c:\windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B7449A0400000010\9.4.0\acrobatupdater.exe
+ 2011-01-14 12:10 . 2011-01-14 12:10   155520              c:\windows\Installer\$PatchCache$\Managed\00004109500200000000000000F01FEC\14.0.5130\GKWORD6.DLL
+ 2011-01-14 12:10 . 2011-01-14 12:10   140160              c:\windows\Installer\$PatchCache$\Managed\00004109500200000000000000F01FEC\14.0.5130\GKEXCEL2.DLL
+ 2009-02-26 22:45 . 2009-02-26 22:45   509256              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\WRD12CVR.DLL
+ 2007-06-07 23:51 . 2007-06-07 23:51   125320              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\SSGEN.DLL
+ 2011-07-20 10:32 . 2011-07-20 10:32   593288              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\PUBCONV.DLL
+ 2011-07-27 09:42 . 2011-07-27 09:42   625040              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\PTXT9.DLL
+ 2011-07-20 10:32 . 2011-07-20 10:32   135056              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\PRTF9.DLL
+ 2011-05-31 20:58 . 2011-05-31 20:58   521080              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\POWERPNT.EXE
+ 2007-06-07 23:51 . 2007-06-07 23:51   465800              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\OUTLFLTR.DLL
+ 2008-03-19 10:27 . 2008-03-19 10:27   661536              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\OGALEGIT.DLL
+ 2011-07-27 09:42 . 2011-07-27 09:42   497056              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\MORPH9.DLL
+ 2008-10-25 10:18 . 2008-10-25 10:18   172880              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\IEAWSDC.DLL
+ 2009-02-26 16:09 . 2009-02-26 16:09   154000              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\ENVELOPE.DLL
+ 2006-10-27 19:35 . 2006-10-27 19:35   436512              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.4518\UMOUTLOOKADDIN.DLL
+ 2006-10-27 00:13 . 2006-10-27 00:13   764800              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.4518\ACECNF.DLL
+ 2011-12-15 08:13 . 2011-08-22 23:48   916480              c:\windows\ie8updates\KB2618444-IE8\wininet.dll
+ 2011-12-15 08:13 . 2011-08-22 23:48   105984              c:\windows\ie8updates\KB2618444-IE8\url.dll
+ 2011-12-15 08:13 . 2010-07-05 13:16   382840              c:\windows\ie8updates\KB2618444-IE8\spuninst\updspapi.dll
+ 2011-12-15 08:13 . 2010-07-05 13:15   231288              c:\windows\ie8updates\KB2618444-IE8\spuninst\spuninst.exe
+ 2011-12-15 08:13 . 2011-08-22 23:48   206848              c:\windows\ie8updates\KB2618444-IE8\occache.dll
+ 2011-12-15 08:13 . 2011-08-22 23:48   611840              c:\windows\ie8updates\KB2618444-IE8\mstime.dll
+ 2011-12-15 08:13 . 2011-08-22 23:48   602112              c:\windows\ie8updates\KB2618444-IE8\msfeeds.dll
+ 2011-12-15 08:13 . 2011-08-22 23:48   247808              c:\windows\ie8updates\KB2618444-IE8\ieproxy.dll
+ 2011-12-15 08:13 . 2011-08-22 23:48   184320              c:\windows\ie8updates\KB2618444-IE8\iepeers.dll
+ 2011-12-15 08:13 . 2011-08-22 23:48   743424              c:\windows\ie8updates\KB2618444-IE8\iedvtool.dll
+ 2011-12-15 08:13 . 2011-08-22 23:48   387584              c:\windows\ie8updates\KB2618444-IE8\iedkcs32.dll
+ 2011-12-15 08:13 . 2011-08-22 11:56   174080              c:\windows\ie8updates\KB2618444-IE8\ie4uinit.exe
+ 2011-10-13 07:02 . 2011-06-23 18:36   916480              c:\windows\ie8updates\KB2586448-IE8\wininet.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   105984              c:\windows\ie8updates\KB2586448-IE8\url.dll
+ 2011-10-13 07:02 . 2010-07-05 13:16   382840              c:\windows\ie8updates\KB2586448-IE8\spuninst\updspapi.dll
+ 2011-10-13 07:02 . 2010-07-05 13:15   231288              c:\windows\ie8updates\KB2586448-IE8\spuninst\spuninst.exe
+ 2011-10-13 07:02 . 2011-06-23 18:36   206848              c:\windows\ie8updates\KB2586448-IE8\occache.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   611840              c:\windows\ie8updates\KB2586448-IE8\mstime.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   602112              c:\windows\ie8updates\KB2586448-IE8\msfeeds.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   247808              c:\windows\ie8updates\KB2586448-IE8\ieproxy.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   184320              c:\windows\ie8updates\KB2586448-IE8\iepeers.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   743424              c:\windows\ie8updates\KB2586448-IE8\iedvtool.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   387584              c:\windows\ie8updates\KB2586448-IE8\iedkcs32.dll
+ 2011-10-13 07:02 . 2011-06-23 12:05   173568              c:\windows\ie8updates\KB2586448-IE8\ie4uinit.exe
+ 2011-08-11 07:03 . 2011-04-25 16:11   916480              c:\windows\ie8updates\KB2559049-IE8\wininet.dll
+ 2011-08-11 07:03 . 2009-03-08 08:34   105984              c:\windows\ie8updates\KB2559049-IE8\url.dll
+ 2011-08-11 07:04 . 2010-07-05 13:16   382840              c:\windows\ie8updates\KB2559049-IE8\spuninst\updspapi.dll
+ 2011-08-11 07:04 . 2010-07-05 13:15   231288              c:\windows\ie8updates\KB2559049-IE8\spuninst\spuninst.exe
+ 2011-08-11 07:03 . 2011-04-25 16:11   206848              c:\windows\ie8updates\KB2559049-IE8\occache.dll
+ 2011-08-11 07:03 . 2011-04-25 16:11   611840              c:\windows\ie8updates\KB2559049-IE8\mstime.dll
+ 2011-08-11 07:03 . 2011-04-25 16:11   602112              c:\windows\ie8updates\KB2559049-IE8\msfeeds.dll
+ 2011-08-11 07:03 . 2011-04-25 16:11   247808              c:\windows\ie8updates\KB2559049-IE8\ieproxy.dll
+ 2011-08-11 07:03 . 2011-04-25 16:11   184320              c:\windows\ie8updates\KB2559049-IE8\iepeers.dll
+ 2011-08-11 07:03 . 2011-04-25 16:11   743424              c:\windows\ie8updates\KB2559049-IE8\iedvtool.dll
+ 2011-08-11 07:03 . 2011-04-25 16:11   387584              c:\windows\ie8updates\KB2559049-IE8\iedkcs32.dll
+ 2011-08-11 07:03 . 2011-04-25 12:01   173568              c:\windows\ie8updates\KB2559049-IE8\ie4uinit.exe
+ 2011-06-16 07:02 . 2009-03-08 08:33   759296              c:\windows\ie8updates\KB2544521-IE8\vgx.dll
+ 2011-06-16 07:02 . 2010-07-05 13:16   382840              c:\windows\ie8updates\KB2544521-IE8\spuninst\updspapi.dll
+ 2011-06-16 07:02 . 2010-07-05 13:15   231288              c:\windows\ie8updates\KB2544521-IE8\spuninst\spuninst.exe
+ 2011-06-16 07:05 . 2011-02-22 23:06   916480              c:\windows\ie8updates\KB2530548-IE8\wininet.dll
+ 2011-06-16 07:05 . 2010-07-05 13:16   382840              c:\windows\ie8updates\KB2530548-IE8\spuninst\updspapi.dll
+ 2011-06-16 07:05 . 2010-07-05 13:15   231288              c:\windows\ie8updates\KB2530548-IE8\spuninst\spuninst.exe
+ 2011-06-16 07:05 . 2011-02-22 23:06   206848              c:\windows\ie8updates\KB2530548-IE8\occache.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   611840              c:\windows\ie8updates\KB2530548-IE8\mstime.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   602112              c:\windows\ie8updates\KB2530548-IE8\msfeeds.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   247808              c:\windows\ie8updates\KB2530548-IE8\ieproxy.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   184320              c:\windows\ie8updates\KB2530548-IE8\iepeers.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   743424              c:\windows\ie8updates\KB2530548-IE8\iedvtool.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   387584              c:\windows\ie8updates\KB2530548-IE8\iedkcs32.dll
+ 2011-06-16 07:05 . 2011-02-18 11:49   173568              c:\windows\ie8updates\KB2530548-IE8\ie4uinit.exe
+ 2011-04-16 07:02 . 2010-03-10 06:15   420352              c:\windows\ie8updates\KB2510531-IE8\vbscript.dll
+ 2011-04-16 07:02 . 2010-07-05 13:16   382840              c:\windows\ie8updates\KB2510531-IE8\spuninst\updspapi.dll
+ 2011-04-16 07:02 . 2010-07-05 13:15   231288              c:\windows\ie8updates\KB2510531-IE8\spuninst\spuninst.exe
+ 2011-04-16 07:02 . 2009-12-09 05:53   726528              c:\windows\ie8updates\KB2510531-IE8\jscript.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   916480              c:\windows\ie8updates\KB2497640-IE8\wininet.dll
+ 2011-04-16 07:12 . 2010-07-05 13:16   382840              c:\windows\ie8updates\KB2497640-IE8\spuninst\updspapi.dll
+ 2011-04-16 07:12 . 2010-07-05 13:15   231288              c:\windows\ie8updates\KB2497640-IE8\spuninst\spuninst.exe
+ 2011-04-16 07:12 . 2010-12-20 23:59   206848              c:\windows\ie8updates\KB2497640-IE8\occache.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   611840              c:\windows\ie8updates\KB2497640-IE8\mstime.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   602112              c:\windows\ie8updates\KB2497640-IE8\msfeeds.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   247808              c:\windows\ie8updates\KB2497640-IE8\ieproxy.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   184320              c:\windows\ie8updates\KB2497640-IE8\iepeers.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   743424              c:\windows\ie8updates\KB2497640-IE8\iedvtool.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   387584              c:\windows\ie8updates\KB2497640-IE8\iedkcs32.dll
+ 2011-04-16 07:12 . 2010-12-20 12:55   173568              c:\windows\ie8updates\KB2497640-IE8\ie4uinit.exe
+ 2008-11-12 19:09 . 2011-07-15 13:29   456320              c:\windows\Driver Cache\i386\mrxsmb.sys
Logged
« Reply #9 on: January 27, 2012, 11:38:45 »
jerky Offline
Jr. Member

WWW 		**

Karma: 0
Posts: 64
PART FOUR Combofix log

c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\c8627df7adb416722d8e0f05c57fef6b\WsatConfig.ni.exe
+ 2011-10-13 07:19 . 2011-10-13 07:19   240128              c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\a2c1bb3c5b1447b398e72c56091ca571\WindowsFormsIntegration.ni.dll
+ 2011-10-13 07:19 . 2011-10-13 07:19   187904              c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\f102afdffdbe2565bcedb7fa0626b865\UIAutomationTypes.ni.dll
+ 2011-10-13 07:19 . 2011-10-13 07:19   447488              c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\ba55240b7753047f8d1b03ef473bf74e\UIAutomationClient.ni.dll
+ 2011-10-13 07:25 . 2011-10-13 07:25   400896              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\566b2e11e7f3f6d973b17b86cf42f9bc\System.Xml.Linq.ni.dll
+ 2012-01-12 09:05 . 2012-01-12 09:05   129536              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\0bda7bdfaf440d5dd4bc6a1dea7ffa39\System.Web.Routing.ni.dll
+ 2011-10-13 07:25 . 2011-10-13 07:25   202240              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\018b6e48c32d5b5d78086998e3505f1c\System.Web.RegularExpressions.ni.dll
+ 2012-01-12 09:06 . 2012-01-12 09:06   859648              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\6e29f9faa74a48b83a13a3413b826295\System.Web.Extensions.Design.ni.dll
+ 2012-01-12 09:06 . 2012-01-12 09:06   328704              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\be8965fe859bc53dff61579bf626858b\System.Web.Entity.ni.dll
+ 2012-01-12 09:06 . 2012-01-12 09:06   301056              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\8441b3eb247e0344fede848337ee911c\System.Web.Entity.Design.ni.dll
+ 2012-01-12 09:05 . 2012-01-12 09:05   547328              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\09c6a41f187ba483486cdb92dad714a1\System.Web.DynamicData.ni.dll
+ 2012-01-12 09:05 . 2012-01-12 09:05   141312              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\5efb726d424b9712632eff749411fa89\System.Web.Abstractions.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   627200              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\8efcd633af87989355382b5039f1b7df\System.Transactions.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   212992              c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\abef85f2fb8ba830eda73e2d12e8d41e\System.ServiceProcess.ni.dll
+ 2011-10-13 07:20 . 2011-10-13 07:20   679936              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\36c12de583ee81e9c99acb72b09d77ac\System.Security.ni.dll
+ 2011-10-13 07:21 . 2011-10-13 07:21   311296              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\81096bfe85eb0da5f05e8a127ffa43b2\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   621056              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\b2a84980f206431821d85d5155d5916f\System.Net.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   998400              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\90b90e700e59d73d6d692cf74e1ba16e\System.Management.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   330752              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\f36eded354122da9555a6c7cdbdb5431\System.Management.Instrumentation.ni.dll
+ 2012-01-12 01:57 . 2012-01-12 01:57   160256              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.A#\5d6a0e02b8e1cff94d07d2507667edc7\System.Management.Automation.resources.ni.dll
+ 2011-10-13 07:21 . 2011-10-13 07:21   381440              c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\20a77c41ee12362d303fb2574fcd5a24\System.IO.Log.ni.dll
+ 2011-10-13 07:21 . 2011-10-13 07:21   212992              c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\41c3a2fcffc58b20023c7d54e57ea956\System.IdentityModel.Selectors.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   280064              c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\69792bef8a100a055db88848836a7d88\System.EnterpriseServices.Wrapper.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   627712              c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\69792bef8a100a055db88848836a7d88\System.EnterpriseServices.ni.dll
+ 2011-10-13 07:18 . 2011-10-13 07:18   208384              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\896eca06e2d9377b2dc4fad56ce49b07\System.Drawing.Design.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   455680              c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\33e9b0c368c31ef37a2ec7b5a181044b\System.DirectoryServices.Protocols.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   881152              c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\11cdd1c0d65428cd3505d3813d36638c\System.DirectoryServices.AccountManagement.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   939008              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\e5ada332a9bc3c982e6aede6ba354196\System.Data.Services.Client.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   354816              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\3f179f373f31817a914b639a56cc0497\System.Data.Services.Design.ni.dll
+ 2012-01-12 01:56 . 2012-01-12 01:56   756736              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\f374e8e7849a72d1470b4a6a0771a137\System.Data.Entity.Design.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   135680              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\b9d9ff5d03e90ede1116794f2c7dd6da\System.Data.DataSetExtensions.ni.dll
+ 2011-10-13 07:20 . 2011-10-13 07:20   971264              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bce0720436dc6cb76006377f295ea365\System.Configuration.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   141312              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\29d7091f6eab0ec61c4eb625ed221b73\System.Configuration.Install.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   633856              c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\3048737e9e3bf5173121a084337256bc\System.AddIn.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   366080              c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\6e45cf503f025c5fe814ea7e52f62a78\SMSvcHost.ni.exe
+ 2011-10-13 07:22 . 2011-10-13 07:22   256000              c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\474a341340f687bcbd7777f2820a8c7a\SMDiagnostics.ni.dll
+ 2012-01-12 01:55 . 2012-01-12 01:55   320512              c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\439732479756e0f6df88d29e50a402bf\ServiceModelReg.ni.exe
+ 2011-10-13 07:18 . 2011-10-13 07:18   539648              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\c2ebcc8d60422f224b4088f3d7a2ac1f\PresentationFramework.Luna.ni.dll
+ 2011-10-13 07:18 . 2011-10-13 07:18   368128              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\94cfc00ad448575bfb0e67c53b514cd5\PresentationFramework.Aero.ni.dll
+ 2011-10-13 07:18 . 2011-10-13 07:18   224768              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\478d57d96f3d8d5fc15c7ac635a4a6a1\PresentationFramework.Classic.ni.dll
+ 2011-10-13 07:18 . 2011-10-13 07:18   258048              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\23c5852ff8ed973ff9b63ce9ba7f91f0\PresentationFramework.Royale.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   133632              c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\04595f414c49cf2a65b349648ba23e62\MSBuild.ni.exe
+ 2011-10-13 07:22 . 2011-10-13 07:22   386560              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\4cbd7ed9fbf9f1b3cbdf23906cc0f5a3\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2012-01-12 01:55 . 2012-01-12 01:55   492032              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\fb17fceaa5465d6eeb15034a4bea2687\Microsoft.PowerShell.ConsoleHost.ni.dll
+ 2012-01-12 01:55 . 2012-01-12 01:55   433664              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\9963fdc4d47bf168d55ffca06288c0b6\Microsoft.PowerShell.Commands.Management.ni.dll
+ 2012-01-12 01:55 . 2012-01-12 01:55   148480              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\43b77700ad8d984224b12472318e02ec\Microsoft.PowerShell.Security.ni.dll
+ 2012-01-12 01:55 . 2012-01-12 01:55   968192              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\3062d06077a424dff6997145cad8e9e1\Microsoft.PowerShell.Commands.Utility.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   144384              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\ff6d4892775fd1f9b137f7c92ea453f2\Microsoft.Build.Utilities.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   175104              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\47ff0720cb80a0fc0bbd15ddc3d12adc\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   839680              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\da112c5757e3c68d6369b6aa46cc9682\Microsoft.Build.Engine.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   222720              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\dc278e1123086ae32fec8f7e9751db14\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   220672              c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\3e6deccf191ab943d3a0812a38ab5c97\CustomMarshalers.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   410112              c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\4e68d5df30b197ff72c75f1c3c24b949\ComSvcConfig.ni.exe
+ 2012-01-12 01:52 . 2012-01-12 01:52   842240              c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\bfcea15c95909860c4f4ac19bd7a2d6c\AspNetMMCExt.ni.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   839680              c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   839680              c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   835584              c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   835584              c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   114688              c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   114688              c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   258048              c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   258048              c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   131072              c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   131072              c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   303104              c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   303104              c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   258048              c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   258048              c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   372736              c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   372736              c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2012-01-12 01:37 . 2012-01-12 01:37   163840              c:\windows\assembly\GAC_MSIL\System.Management.Automation.resources\1.0.0.0_en_31bf3856ad364e35\System.Management.Automation.resources.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   626688              c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   626688              c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   401408              c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   401408              c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   188416              c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   188416              c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   970752              c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   970752              c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   745472              c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   745472              c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   425984              c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   425984              c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   110592              c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   110592              c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   659456              c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   659456              c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   372736              c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   372736              c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   110592              c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   110592              c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2012-01-12 01:37 . 2012-01-12 01:37   200704              c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.ConsoleHost\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.ConsoleHost.dll
+ 2012-01-12 01:37 . 2012-01-12 01:37   294912              c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Utility\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Utility.dll
+ 2012-01-12 01:37 . 2012-01-12 01:37   139264              c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Management\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Management.dll
+ 2011-11-18 22:48 . 2011-11-18 22:48   608136              c:\windows\assembly\GAC_MSIL\Microsoft.Office.InfoPath.Client.Internal.Host\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Infopath.Client.Internal.Host.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   749568              c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   749568              c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   655360              c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   655360              c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   348160              c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   348160              c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2010-10-06 07:07 . 2010-10-06 07:07   507904              c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2012-01-12 01:22 . 2012-01-12 01:22   507904              c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   261632              c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2010-10-06 07:08 . 2010-10-06 07:08   261632              c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   113664              c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   113664              c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   258048              c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   258048              c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   486400              c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   486400              c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2011-11-18 22:48 . 2011-11-18 22:48   117160              c:\windows\assembly\GAC_32\Microsoft.Office.InfoPath.Client.Internal.Host.Interop\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Infopath.Client.Internal.Host.Interop.dll
+ 2011-11-18 22:48 . 2011-11-18 22:48   870256              c:\windows\assembly\GAC\Microsoft.Office.Interop.Word\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Word.dll
- 2009-09-29 07:07 . 2009-09-29 07:07   870256              c:\windows\assembly\GAC\Microsoft.Office.Interop.Word\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Word.dll
+ 2011-11-18 22:49 . 2011-11-18 22:49   350080              c:\windows\assembly\GAC\Microsoft.Office.Interop.PowerPoint\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.PowerPoint.dll
+ 2011-11-18 22:47 . 2011-11-18 22:47   149368              c:\windows\assembly\GAC\Microsoft.Office.Interop.Graph\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Graph.dll
+ 2011-07-11 21:58 . 2011-07-11 21:58   223232              c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
+ 2011-07-11 21:58 . 2011-07-11 21:58   473600              c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2011-11-11 08:02 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2641690$\spuninst\updspapi.dll
+ 2011-11-11 08:02 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2641690$\spuninst\spuninst.exe
+ 2011-11-11 08:02 . 2011-09-09 09:12   599040              c:\windows\$NtUninstallKB2641690$\crypt32.dll
+ 2011-12-15 08:14 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2639417$\spuninst\updspapi.dll
+ 2011-12-15 08:14 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2639417$\spuninst\spuninst.exe
+ 2011-12-15 08:05 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2633952$\spuninst\updspapi.dll
+ 2011-12-15 08:05 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2633952$\spuninst\spuninst.exe
+ 2011-12-15 08:02 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2633171$\spuninst\updspapi.dll
+ 2011-12-15 08:02 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2633171$\spuninst\spuninst.exe
+ 2011-12-15 08:14 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2624667$\spuninst\updspapi.dll
+ 2011-12-15 08:14 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2624667$\spuninst\spuninst.exe
+ 2011-12-15 08:03 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2620712$\spuninst\updspapi.dll
+ 2011-12-15 08:03 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2620712$\spuninst\spuninst.exe
+ 2011-12-15 08:05 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2619339$\spuninst\updspapi.dll
+ 2011-12-15 08:05 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2619339$\spuninst\spuninst.exe
+ 2011-12-15 08:05 . 2011-02-09 13:53   186880              c:\windows\$NtUninstallKB2619339$\encdec.dll
+ 2011-12-15 08:04 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2618451$\spuninst\updspapi.dll
+ 2011-12-15 08:04 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2618451$\spuninst\spuninst.exe
+ 2011-09-16 07:14 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2616676$\spuninst\updspapi.dll
+ 2011-09-16 07:14 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2616676$\spuninst\spuninst.exe
+ 2011-09-16 07:14 . 2011-09-03 10:17   599040              c:\windows\$NtUninstallKB2616676$\crypt32.dll
+ 2011-09-07 07:02 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2607712$\spuninst\updspapi.dll
+ 2011-09-07 07:02 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2607712$\spuninst\spuninst.exe
+ 2011-09-07 07:02 . 2008-04-14 00:11   599040              c:\windows\$NtUninstallKB2607712$\crypt32.dll
+ 2011-10-13 07:04 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2592799$\spuninst\updspapi.dll
+ 2011-10-13 07:04 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2592799$\spuninst\spuninst.exe
+ 2011-10-13 07:04 . 2011-02-16 13:22   138496              c:\windows\$NtUninstallKB2592799$\afd.sys
+ 2011-09-16 07:06 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2570947$\spuninst\updspapi.dll
+ 2011-09-16 07:06 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2570947$\spuninst\spuninst.exe
+ 2011-08-25 07:00 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2570791$\spuninst\updspapi.dll
+ 2011-08-25 07:00 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2570791$\spuninst\spuninst.exe
+ 2011-08-11 07:09 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2570222$\spuninst\updspapi.dll
+ 2011-08-11 07:09 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2570222$\spuninst\spuninst.exe
+ 2011-08-11 07:09 . 2008-04-14 00:13   139656              c:\windows\$NtUninstallKB2570222$\rdpwd.sys
+ 2011-08-11 07:11 . 2011-04-26 11:07   293376              c:\windows\$NtUninstallKB2567680$\winsrv.dll
+ 2011-08-11 07:11 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2567680$\spuninst\updspapi.dll
+ 2011-08-11 07:11 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2567680$\spuninst\spuninst.exe
+ 2011-10-13 07:05 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2567053$\spuninst\updspapi.dll
+ 2011-10-13 07:05 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2567053$\spuninst\spuninst.exe
+ 2011-08-11 07:03 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2566454$\spuninst\updspapi.dll
+ 2011-08-11 07:03 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2566454$\spuninst\spuninst.exe
+ 2011-10-13 07:14 . 2008-07-29 23:59   161296              c:\windows\$NtUninstallKB2564958$\uiautomationcore.dll
+ 2011-10-13 07:14 . 2011-08-12 17:51   382840              c:\windows\$NtUninstallKB2564958$\spuninst\updspapi.dll
+ 2011-10-13 07:14 . 2011-08-12 17:51   231288              c:\windows\$NtUninstallKB2564958$\spuninst\spuninst.exe
+ 2011-10-13 07:14 . 2002-09-03 19:51   163328              c:\windows\$NtUninstallKB2564958$\oleacc.dll
+ 2011-08-11 07:03 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2562937$\spuninst\updspapi.dll
+ 2011-08-11 07:03 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2562937$\spuninst\spuninst.exe
+ 2011-07-13 07:02 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2555917$\spuninst\updspapi.dll
+ 2011-07-13 07:02 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2555917$\spuninst\spuninst.exe
+ 2011-06-16 07:04 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2544893$\spuninst\updspapi.dll
+ 2011-06-16 07:04 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2544893$\spuninst\spuninst.exe
+ 2011-06-16 07:04 . 2011-03-07 05:33   692736              c:\windows\$NtUninstallKB2544893$\inetcomm.dll
+ 2011-11-09 08:06 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2544893-v2$\spuninst\updspapi.dll
+ 2011-11-09 08:06 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2544893-v2$\spuninst\spuninst.exe
+ 2011-11-09 08:06 . 2011-05-02 15:31   692736              c:\windows\$NtUninstallKB2544893-v2$\inetcomm.dll
+ 2011-06-29 07:02 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2541763$\spuninst\updspapi.dll
+ 2011-06-29 07:02 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2541763$\spuninst\spuninst.exe
+ 2011-06-29 07:02 . 2010-06-30 12:31   149504              c:\windows\$NtUninstallKB2541763$\schannel.dll
+ 2011-06-16 07:05 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2536276$\spuninst\updspapi.dll
+ 2011-06-16 07:05 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2536276$\spuninst\spuninst.exe
+ 2011-06-16 07:05 . 2011-02-17 13:18   455936              c:\windows\$NtUninstallKB2536276$\mrxsmb.sys
+ 2011-08-11 07:09 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2536276-v2$\spuninst\updspapi.dll
+ 2011-08-11 07:09 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2536276-v2$\spuninst\spuninst.exe
+ 2011-08-11 07:09 . 2011-04-29 16:19   456320              c:\windows\$NtUninstallKB2536276-v2$\mrxsmb.sys
+ 2011-06-16 07:06 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2535512$\spuninst\updspapi.dll
+ 2011-06-16 07:06 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2535512$\spuninst\spuninst.exe
+ 2011-06-16 07:06 . 2008-04-13 19:17   105344              c:\windows\$NtUninstallKB2535512$\mup.sys
+ 2011-03-25 07:02 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2524375$\spuninst\updspapi.dll
+ 2011-03-25 07:02 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2524375$\spuninst\spuninst.exe
+ 2011-04-16 07:04 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2511455$\spuninst\updspapi.dll
+ 2011-04-16 07:04 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2511455$\spuninst\spuninst.exe
+ 2011-04-16 07:04 . 2010-02-24 13:11   455680              c:\windows\$NtUninstallKB2511455$\mrxsmb.sys
+ 2011-04-16 07:02 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2509553$\spuninst\updspapi.dll
+ 2011-04-16 07:02 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2509553$\spuninst\spuninst.exe
+ 2011-04-16 07:02 . 2008-06-20 17:46   245248              c:\windows\$NtUninstallKB2509553$\mswsock.dll
+ 2011-04-16 07:02 . 2008-06-20 17:46   147968              c:\windows\$NtUninstallKB2509553$\dnsapi.dll
+ 2011-04-16 07:02 . 2008-08-14 10:04   138496              c:\windows\$NtUninstallKB2509553$\afd.sys
+ 2011-04-16 07:04 . 2010-08-26 13:39   357248              c:\windows\$NtUninstallKB2508429$\srv.sys
+ 2011-04-16 07:04 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2508429$\spuninst\updspapi.dll
+ 2011-04-16 07:04 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2508429$\spuninst\spuninst.exe
+ 2011-04-16 07:06 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2508272$\spuninst\updspapi.dll
+ 2011-04-16 07:06 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2508272$\spuninst\spuninst.exe
+ 2011-07-13 07:08 . 2010-06-18 17:45   293376              c:\windows\$NtUninstallKB2507938$\winsrv.dll
+ 2011-07-13 07:08 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2507938$\spuninst\updspapi.dll
+ 2011-07-13 07:08 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2507938$\spuninst\spuninst.exe
+ 2011-04-16 07:05 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2507618$\spuninst\updspapi.dll
+ 2011-04-16 07:05 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2507618$\spuninst\spuninst.exe
+ 2011-04-16 07:05 . 2011-01-07 14:09   290048              c:\windows\$NtUninstallKB2507618$\atmfd.dll
+ 2011-04-16 07:14 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2506223$\spuninst\updspapi.dll
+ 2011-04-16 07:14 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2506223$\spuninst\spuninst.exe
+ 2011-04-16 07:03 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2506212$\spuninst\updspapi.dll
+ 2011-04-16 07:03 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2506212$\spuninst\spuninst.exe
+ 2011-04-16 07:03 . 2010-09-18 16:23   974848              c:\windows\$NtUninstallKB2506212$\mfc42u.dll
+ 2011-04-16 07:03 . 2010-09-18 06:53   974848              c:\windows\$NtUninstallKB2506212$\mfc42.dll
+ 2011-06-16 07:07 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2503665$\spuninst\updspapi.dll
+ 2011-06-16 07:07 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2503665$\spuninst\spuninst.exe
+ 2011-06-16 07:07 . 2008-10-16 14:43   138496              c:\windows\$NtUninstallKB2503665$\afd.sys
+ 2011-04-16 07:06 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2503658$\spuninst\updspapi.dll
+ 2011-04-16 07:06 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2503658$\spuninst\spuninst.exe
+ 2011-04-16 07:06 . 2010-06-09 07:43   692736              c:\windows\$NtUninstallKB2503658$\inetcomm.dll
+ 2011-04-16 07:16 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2491683$\spuninst\updspapi.dll
+ 2011-04-16 07:16 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2491683$\spuninst\spuninst.exe
+ 2011-04-16 07:16 . 2008-04-14 00:12   229376              c:\windows\$NtUninstallKB2491683$\fxscover.exe
+ 2011-04-16 07:14 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2485663$\spuninst\updspapi.dll
+ 2011-04-16 07:14 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2485663$\spuninst\spuninst.exe
+ 2011-03-10 08:03 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2481109$\spuninst\updspapi.dll
+ 2011-03-10 08:03 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2481109$\spuninst\spuninst.exe
+ 2011-03-10 08:03 . 2008-04-14 00:12   677888              c:\windows\$NtUninstallKB2481109$\mstsc.exe
+ 2011-03-10 08:07 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2479943$\spuninst\updspapi.dll
+ 2011-03-10 08:07 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2479943$\spuninst\spuninst.exe
+ 2011-03-10 08:07 . 2008-04-14 00:12   270848              c:\windows\$NtUninstallKB2479943$\sbe.dll
+ 2011-03-10 08:07 . 2008-04-14 00:11   186880              c:\windows\$NtUninstallKB2479943$\encdec.dll
+ 2011-06-16 07:07 . 2010-07-05 13:16   382840              c:\windows\$NtUninstallKB2476490$\spuninst\updspapi.dll
+ 2011-06-16 07:07 . 2010-07-05 13:15   231288              c:\windows\$NtUninstallKB2476490$\spuninst\spuninst.exe
+ 2011-06-16 07:07 . 2008-04-14 00:12   551936              c:\windows\$NtUninstallKB2476490$\oleaut32.dll
+ 2011-04-16 07:11 . 2009-05-26 11:40   382840              c:\windows\$NtUninstallKB2412687$\spuninst\updspapi.dll
+ 2011-04-16 07:11 . 2009-05-26 11:40   231288              c:\windows\$NtUninstallKB2412687$\spuninst\spuninst.exe
+ 2011-11-11 08:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2641690\update\updspapi.dll
+ 2011-11-11 08:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2641690\update\update.exe
+ 2011-11-11 08:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2641690\spuninst.exe
+ 2011-09-28 07:05 . 2011-09-28 07:05   599552              c:\windows\$hf_mig$\KB2641690\SP3QFE\crypt32.dll
+ 2011-12-15 08:14 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2639417\update\updspapi.dll
+ 2011-12-15 08:14 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2639417\update\update.exe
+ 2011-12-15 08:14 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2639417\spuninst.exe
+ 2011-12-15 08:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2633171\update\updspapi.dll
+ 2011-12-15 08:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2633171\update\update.exe
+ 2011-12-15 08:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2633171\spuninst.exe
+ 2011-12-15 08:14 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2624667\update\updspapi.dll
+ 2011-12-15 08:14 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2624667\update\update.exe
+ 2011-12-15 08:14 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2624667\spuninst.exe
+ 2011-12-15 08:03 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2620712\update\updspapi.dll
+ 2011-12-15 08:03 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2620712\update\update.exe
+ 2011-12-15 08:03 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2620712\spuninst.exe
+ 2011-12-15 08:05 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2619339\update\updspapi.dll
+ 2011-12-15 08:05 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2619339\update\update.exe
+ 2011-12-15 08:05 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2619339\spuninst.exe
+ 2011-10-18 11:12 . 2011-10-18 11:12   186880              c:\windows\$hf_mig$\KB2619339\SP3QFE\encdec.dll
+ 2011-12-15 08:04 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2618451\update\updspapi.dll
+ 2011-12-15 08:04 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2618451\update\update.exe
+ 2011-12-15 08:04 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2618451\spuninst.exe
+ 2011-12-15 08:13 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2618444-IE8\update\updspapi.dll
+ 2011-12-15 08:13 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2618444-IE8\update\update.exe
+ 2011-12-15 08:13 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2618444-IE8\spuninst.exe
+ 2011-12-15 03:29 . 2011-11-04 19:19   919552              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\wininet.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   105984              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\url.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   206848              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\occache.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   611840              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\mstime.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   602112              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\msfeeds.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   247808              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\ieproxy.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   184320              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\iepeers.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   743424              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\iedvtool.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   387584              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\iedkcs32.dll
+ 2011-12-15 03:29 . 2011-10-25 12:01   174080              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\ie4uinit.exe
+ 2011-09-16 07:14 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2616676\update\updspapi.dll
+ 2011-09-16 07:14 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2616676\update\update.exe
+ 2011-09-16 07:14 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2616676\spuninst.exe
+ 2011-09-09 09:11 . 2011-09-09 09:11   599552              c:\windows\$hf_mig$\KB2616676\SP3QFE\crypt32.dll
+ 2011-09-07 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2607712\update\updspapi.dll
+ 2011-09-07 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2607712\update\update.exe
+ 2011-09-07 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2607712\spuninst.exe
+ 2011-09-03 10:16 . 2011-09-03 10:16   599552              c:\windows\$hf_mig$\KB2607712\SP3QFE\crypt32.dll
+ 2011-10-13 07:04 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2592799\update\updspapi.dll
+ 2011-10-13 07:04 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2592799\update\update.exe
+ 2011-10-13 07:04 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2592799\spuninst.exe
+ 2011-10-13 06:24 . 2011-08-17 13:41   138496              c:\windows\$hf_mig$\KB2592799\SP3QFE\afd.sys
+ 2011-10-13 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2586448-IE8\update\updspapi.dll
+ 2011-10-13 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2586448-IE8\update\update.exe
+ 2011-10-13 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2586448-IE8\spuninst.exe
+ 2011-10-13 06:24 . 2011-08-22 23:47   919552              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\wininet.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   105984              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\url.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   206848              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\occache.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   611840              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\mstime.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   602112              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\msfeeds.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   247808              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\ieproxy.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   184320              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\iepeers.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   743424              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\iedvtool.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   387584              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\iedkcs32.dll
+ 2011-10-13 06:24 . 2011-08-22 11:52   174080              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\ie4uinit.exe
+ 2011-09-16 07:06 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2570947\update\updspapi.dll
+ 2011-09-16 07:06 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2570947\update\update.exe
+ 2011-09-16 07:06 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2570947\spuninst.exe
+ 2011-08-11 07:09 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2570222\update\updspapi.dll
+ 2011-08-11 07:09 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2570222\update\update.exe
Logged
« Reply #10 on: January 27, 2012, 11:40:35 »
jerky Offline
Jr. Member

WWW 		**

Karma: 0
Posts: 64
PART FIVE - Combofix

c:\windows\$hf_mig$\KB2570222\spuninst.exe
+ 2011-08-11 03:15 . 2011-06-24 14:09   139656              c:\windows\$hf_mig$\KB2570222\SP3QFE\rdpwd.sys
+ 2011-08-11 07:11 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2567680\update\updspapi.dll
+ 2011-08-11 07:11 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2567680\update\update.exe
+ 2011-08-11 07:11 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2567680\spuninst.exe
+ 2011-06-20 17:43 . 2011-06-20 17:43   293376              c:\windows\$hf_mig$\KB2567680\SP3QFE\winsrv.dll
+ 2011-10-13 07:05 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2567053\update\updspapi.dll
+ 2011-10-13 07:05 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2567053\update\update.exe
+ 2011-10-13 07:05 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2567053\spuninst.exe
+ 2011-08-11 07:03 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2566454\update\updspapi.dll
+ 2011-08-11 07:03 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2566454\update\update.exe
+ 2011-08-11 07:03 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2566454\spuninst.exe
+ 2011-08-11 07:03 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2562937\update\updspapi.dll
+ 2011-08-11 07:03 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2562937\update\update.exe
+ 2011-08-11 07:03 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2562937\spuninst.exe
+ 2011-08-11 07:04 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2559049-IE8\update\updspapi.dll
+ 2011-08-11 07:04 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2559049-IE8\update\update.exe
+ 2011-08-11 07:04 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2559049-IE8\spuninst.exe
+ 2011-08-11 03:14 . 2011-06-23 18:33   919552              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\wininet.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   105984              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\url.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   206848              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\occache.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   611840              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\mstime.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   602112              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\msfeeds.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   247808              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\ieproxy.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   184320              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\iepeers.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   743424              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\iedvtool.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   387584              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\iedkcs32.dll
+ 2011-08-11 03:14 . 2011-06-23 12:19   173568              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\ie4uinit.exe
+ 2011-07-13 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2555917\update\updspapi.dll
+ 2011-07-13 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2555917\update\update.exe
+ 2011-07-13 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2555917\spuninst.exe
+ 2011-06-16 07:04 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2544893\update\updspapi.dll
+ 2011-06-16 07:04 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2544893\update\update.exe
+ 2011-06-16 07:04 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2544893\spuninst.exe
+ 2011-06-15 20:34 . 2011-05-02 15:30   692736              c:\windows\$hf_mig$\KB2544893\SP3QFE\inetcomm.dll
+ 2011-11-09 08:06 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2544893-v2\update\updspapi.dll
+ 2011-11-09 08:06 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2544893-v2\update\update.exe
+ 2011-11-09 08:06 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2544893-v2\spuninst.exe
+ 2011-10-10 14:21 . 2011-10-10 14:21   692736              c:\windows\$hf_mig$\KB2544893-v2\SP3QFE\inetcomm.dll
+ 2011-06-16 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2544521-IE8\update\updspapi.dll
+ 2011-06-16 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2544521-IE8\update\update.exe
+ 2011-06-16 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2544521-IE8\spuninst.exe
+ 2011-06-15 20:34 . 2011-04-30 02:59   758784              c:\windows\$hf_mig$\KB2544521-IE8\SP3QFE\vgx.dll
+ 2011-06-29 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2541763\update\updspapi.dll
+ 2011-06-29 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2541763\update\update.exe
+ 2011-06-29 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2541763\spuninst.exe
+ 2011-04-29 17:23 . 2011-04-29 17:23   151552              c:\windows\$hf_mig$\KB2541763\SP3QFE\schannel.dll
+ 2011-06-16 07:05 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2536276\update\updspapi.dll
+ 2011-06-16 07:05 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2536276\update\update.exe
+ 2011-06-16 07:05 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2536276\spuninst.exe
+ 2011-06-15 20:35 . 2011-04-29 16:47   457856              c:\windows\$hf_mig$\KB2536276\SP3QFE\mrxsmb.sys
+ 2011-08-11 07:09 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2536276-v2\update\updspapi.dll
+ 2011-08-11 07:09 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2536276-v2\update\update.exe
+ 2011-08-11 07:09 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2536276-v2\spuninst.exe
+ 2011-08-11 03:15 . 2011-07-15 13:29   457856              c:\windows\$hf_mig$\KB2536276-v2\SP3QFE\mrxsmb.sys
+ 2011-06-16 07:06 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2535512\update\updspapi.dll
+ 2011-06-16 07:06 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2535512\update\update.exe
+ 2011-06-16 07:06 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2535512\spuninst.exe
+ 2011-06-15 20:35 . 2011-04-21 13:52   105472              c:\windows\$hf_mig$\KB2535512\SP3QFE\mup.sys
+ 2011-06-16 07:05 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2530548-IE8\update\updspapi.dll
+ 2011-06-16 07:05 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2530548-IE8\update\update.exe
+ 2011-06-16 07:05 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2530548-IE8\spuninst.exe
+ 2011-06-15 20:35 . 2011-04-25 16:09   919552              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\wininet.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   206848              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\occache.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   611840              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\mstime.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   602112              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\msfeeds.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   247808              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\ieproxy.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   184320              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\iepeers.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   743424              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\iedvtool.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   387584              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\iedkcs32.dll
+ 2011-06-15 20:35 . 2011-04-25 11:37   173568              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\ie4uinit.exe
+ 2011-03-25 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2524375\update\updspapi.dll
+ 2011-03-25 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2524375\update\update.exe
+ 2011-03-25 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2524375\spuninst.exe
+ 2011-04-16 07:04 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2511455\update\updspapi.dll
+ 2011-04-16 07:04 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2511455\update\update.exe
+ 2011-04-16 07:04 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2511455\spuninst.exe
+ 2011-04-15 18:24 . 2011-02-17 13:19   457472              c:\windows\$hf_mig$\KB2511455\SP3QFE\mrxsmb.sys
+ 2011-04-16 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2510531-IE8\update\updspapi.dll
+ 2011-04-16 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2510531-IE8\update\update.exe
+ 2011-04-16 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2510531-IE8\spuninst.exe
+ 2011-04-15 18:23 . 2011-03-04 06:35   420864              c:\windows\$hf_mig$\KB2510531-IE8\SP3QFE\vbscript.dll
+ 2011-04-15 18:23 . 2011-03-04 06:35   726528              c:\windows\$hf_mig$\KB2510531-IE8\SP3QFE\jscript.dll
+ 2011-04-16 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2509553\update\updspapi.dll
+ 2011-04-16 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2509553\update\update.exe
+ 2011-04-16 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2509553\spuninst.exe
+ 2008-06-20 11:16 . 2008-06-20 11:16   225856              c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip6.sys
+ 2008-06-20 11:59 . 2008-06-20 11:59   361600              c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
+ 2008-06-20 17:43 . 2008-06-20 17:43   245248              c:\windows\$hf_mig$\KB2509553\SP3QFE\mswsock.dll
+ 2011-03-03 06:53 . 2011-03-03 06:53   149504              c:\windows\$hf_mig$\KB2509553\SP3QFE\dnsapi.dll
+ 2008-10-16 15:07 . 2008-10-16 15:07   138496              c:\windows\$hf_mig$\KB2509553\SP3QFE\afd.sys
+ 2011-04-16 07:05 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2508429\update\updspapi.dll
+ 2011-04-16 07:05 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2508429\update\update.exe
+ 2011-04-16 07:05 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2508429\spuninst.exe
+ 2011-02-17 13:19 . 2011-02-17 13:19   357888              c:\windows\$hf_mig$\KB2508429\SP3QFE\srv.sys
+ 2011-04-16 07:06 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2508272\update\updspapi.dll
+ 2011-04-16 07:06 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2508272\update\update.exe
+ 2011-04-16 07:06 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2508272\spuninst.exe
+ 2011-07-13 07:08 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2507938\update\updspapi.dll
+ 2011-07-13 07:08 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2507938\update\update.exe
+ 2011-07-13 07:08 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2507938\spuninst.exe
+ 2011-04-26 11:02 . 2011-04-26 11:02   293376              c:\windows\$hf_mig$\KB2507938\SP3QFE\winsrv.dll
+ 2011-04-16 07:05 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2507618\update\updspapi.dll
+ 2011-04-16 07:05 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2507618\update\update.exe
+ 2011-04-16 07:05 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2507618\spuninst.exe
+ 2011-02-15 13:05 . 2011-02-15 13:05   290432              c:\windows\$hf_mig$\KB2507618\SP3QFE\atmfd.dll
+ 2011-04-16 07:14 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2506223\update\updspapi.dll
+ 2011-04-16 07:14 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2506223\update\update.exe
+ 2011-04-16 07:14 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2506223\spuninst.exe
+ 2011-04-16 07:03 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2506212\update\updspapi.dll
+ 2011-04-16 07:03 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2506212\update\update.exe
+ 2011-04-16 07:03 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2506212\spuninst.exe
+ 2011-02-08 13:32 . 2011-02-08 13:32   974848              c:\windows\$hf_mig$\KB2506212\SP3QFE\mfc42u.dll
+ 2011-02-08 13:32 . 2011-02-08 13:32   978944              c:\windows\$hf_mig$\KB2506212\SP3QFE\mfc42.dll
+ 2011-06-16 07:07 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2503665\update\updspapi.dll
+ 2011-06-16 07:07 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2503665\update\update.exe
+ 2011-06-16 07:07 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2503665\spuninst.exe
+ 2011-06-15 20:35 . 2011-02-16 13:25   138496              c:\windows\$hf_mig$\KB2503665\SP3QFE\afd.sys
+ 2011-04-16 07:06 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2503658\update\updspapi.dll
+ 2011-04-16 07:06 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2503658\update\update.exe
+ 2011-04-16 07:06 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2503658\spuninst.exe
+ 2011-03-07 05:31 . 2011-03-07 05:31   692736              c:\windows\$hf_mig$\KB2503658\SP3QFE\inetcomm.dll
+ 2011-04-16 07:12 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2497640-IE8\update\updspapi.dll
+ 2011-04-16 07:12 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2497640-IE8\update\update.exe
+ 2011-04-16 07:12 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2497640-IE8\spuninst.exe
+ 2011-04-15 18:24 . 2011-02-22 23:27   919552              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\wininet.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   206848              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\occache.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   611840              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\mstime.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   602112              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\msfeeds.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   247808              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\ieproxy.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   184320              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\iepeers.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   743424              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\iedvtool.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   387584              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\iedkcs32.dll
+ 2011-04-15 18:24 . 2011-02-22 12:08   173568              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\ie4uinit.exe
+ 2011-04-16 07:16 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2491683\update\updspapi.dll
+ 2011-04-16 07:16 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2491683\update\update.exe
+ 2011-04-16 07:16 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2491683\spuninst.exe
+ 2011-02-11 13:22 . 2011-02-11 13:22   229888              c:\windows\$hf_mig$\KB2491683\SP3QFE\fxscover.exe
+ 2011-04-16 07:14 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2485663\update\updspapi.dll
+ 2011-04-16 07:14 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2485663\update\update.exe
+ 2011-04-16 07:14 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2485663\spuninst.exe
+ 2011-03-10 08:03 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2481109\update\updspapi.dll
+ 2011-03-10 08:03 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2481109\update\update.exe
+ 2011-03-10 08:03 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2481109\spuninst.exe
+ 2011-01-27 11:41 . 2011-01-27 11:41   677888              c:\windows\$hf_mig$\KB2481109\SP3QFE\lhmstsc.exe
+ 2011-02-02 07:57 . 2011-02-02 07:57   136192              c:\windows\$hf_mig$\KB2481109\SP3QFE\aaclient.dll
+ 2011-03-10 08:07 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2479943\update\updspapi.dll
+ 2011-03-10 08:07 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2479943\update\update.exe
+ 2011-03-10 08:07 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2479943\spuninst.exe
+ 2011-02-09 13:52 . 2011-02-09 13:52   270848              c:\windows\$hf_mig$\KB2479943\SP3QFE\sbe.dll
+ 2011-02-09 13:52 . 2011-02-09 13:52   186880              c:\windows\$hf_mig$\KB2479943\SP3QFE\encdec.dll
+ 2011-06-16 07:07 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2476490\update\updspapi.dll
+ 2011-06-16 07:07 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2476490\update\update.exe
+ 2011-06-16 07:07 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2476490\spuninst.exe
+ 2010-12-20 17:30 . 2010-12-20 17:30   552448              c:\windows\$hf_mig$\KB2476490\SP3QFE\oleaut32.dll
+ 2011-04-15 18:24 . 2010-10-23 00:51   1748992              c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22509_x-ww_c7dad023\GdiPlus.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   3781960              c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfc90u.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   3766600              c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfc90.dll
+ 2011-05-14 00:04 . 2011-05-14 00:04   1093120              c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll
+ 2011-05-14 00:04 . 2011-05-14 00:04   1101824              c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80.dll
+ 2004-01-21 21:20 . 2011-11-04 19:20   1212416              c:\windows\SYSTEM32\urlmon.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   1392640              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnpswb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   1392640              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnpswb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   4038656              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnprpb.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   4038656              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnprpb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   3665920              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnlpab.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   3665920              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnlpab.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   1388544              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnlpa.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   1388544              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnlpa.dll
- 2010-03-15 17:32 . 2007-11-14 06:55   1339392              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnhpec.dll
+ 2011-11-18 18:28 . 2007-11-14 06:55   1339392              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnhpec.dll
+ 2011-11-18 18:25 . 2007-10-31 01:45   1079808              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\mfc80u.dll
- 2010-03-15 17:30 . 2007-10-31 01:45   1079808              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\mfc80u.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   1392640              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnpswb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   1392640              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnpswb.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   4038656              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnprpb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   4038656              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnprpb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   3665920              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnlpab.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   3665920              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnlpab.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   1388544              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnlpa.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   1388544              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnlpa.dll
- 2010-03-15 17:32 . 2007-11-14 06:55   1339392              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnhpec.dll
+ 2011-11-18 18:28 . 2007-11-14 06:55   1339392              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnhpec.dll
- 2002-09-03 19:50 . 2010-12-09 13:38   2192768              c:\windows\SYSTEM32\ntoskrnl.exe
+ 2002-09-03 19:50 . 2011-10-25 13:33   2192768              c:\windows\SYSTEM32\ntoskrnl.exe
+ 2002-08-29 01:04 . 2011-10-25 12:52   2069376              c:\windows\SYSTEM32\ntkrnlpa.exe
- 2002-08-29 01:04 . 2010-12-09 13:07   2069376              c:\windows\SYSTEM32\ntkrnlpa.exe
+ 2002-08-29 11:00 . 2011-02-02 07:58   2067456              c:\windows\SYSTEM32\mstscax.dll
+ 2004-07-07 22:37 . 2011-11-04 19:20   5978112              c:\windows\SYSTEM32\mshtml.dll
+ 2011-08-02 12:38 . 2011-08-02 12:38   1503232              c:\windows\SYSTEM32\Macromed\Shockwave 10\dirapiX.dll
+ 2011-11-18 18:25 . 2007-11-28 23:16   1101824              c:\windows\SYSTEM32\lxdnserv.dll
- 2010-03-15 17:30 . 2007-11-28 23:16   1101824              c:\windows\SYSTEM32\lxdnserv.dll
+ 2006-10-17 15:57 . 2011-11-04 19:20   2000384              c:\windows\SYSTEM32\iertutil.dll
- 2010-03-15 17:30 . 2007-06-28 13:52   1645320              c:\windows\SYSTEM32\gdiplus.dll
+ 2011-11-18 18:25 . 2007-06-28 13:52   1645320              c:\windows\SYSTEM32\gdiplus.dll
+ 2011-07-07 07:28 . 2011-07-07 07:28   1193320              c:\windows\SYSTEM32\FM20.DLL
+ 2008-10-14 22:33 . 2011-11-23 13:25   1859584              c:\windows\SYSTEM32\DLLCACHE\win32k.sys
+ 2004-01-21 21:20 . 2011-11-04 19:20   1212416              c:\windows\SYSTEM32\DLLCACHE\urlmon.dll
+ 2008-05-07 05:12 . 2011-11-03 15:28   1292288              c:\windows\SYSTEM32\DLLCACHE\quartz.dll
+ 2010-07-16 12:05 . 2011-11-01 16:07   1288704              c:\windows\SYSTEM32\DLLCACHE\ole32.dll
+ 2008-10-14 22:32 . 2011-10-25 13:33   2192768              c:\windows\SYSTEM32\DLLCACHE\ntoskrnl.exe
- 2008-10-14 22:32 . 2010-12-09 13:38   2192768              c:\windows\SYSTEM32\DLLCACHE\ntoskrnl.exe
+ 2008-10-14 22:32 . 2011-10-25 12:52   2027008              c:\windows\SYSTEM32\DLLCACHE\ntkrpamp.exe
- 2008-10-14 22:32 . 2010-12-09 13:07   2027008              c:\windows\SYSTEM32\DLLCACHE\ntkrpamp.exe
- 2008-10-14 22:32 . 2010-12-09 13:07   2069376              c:\windows\SYSTEM32\DLLCACHE\ntkrnlpa.exe
+ 2008-10-14 22:32 . 2011-10-25 12:52   2069376              c:\windows\SYSTEM32\DLLCACHE\ntkrnlpa.exe
+ 2008-10-14 22:32 . 2011-10-25 13:37   2148864              c:\windows\SYSTEM32\DLLCACHE\ntkrnlmp.exe
- 2008-10-14 22:32 . 2010-12-09 13:42   2148864              c:\windows\SYSTEM32\DLLCACHE\ntkrnlmp.exe
+ 2004-07-07 22:37 . 2011-11-04 19:20   5978112              c:\windows\SYSTEM32\DLLCACHE\mshtml.dll
+ 2011-02-02 07:58 . 2011-02-02 07:58   2067456              c:\windows\SYSTEM32\DLLCACHE\lhmstscx.dll
+ 2007-04-25 08:41 . 2011-11-04 19:20   2000384              c:\windows\SYSTEM32\DLLCACHE\iertutil.dll
+ 2011-10-05 11:40 . 2011-10-05 11:40   1040824              c:\windows\SYSTEM32\Adobe\Shockwave 11\SwHelper_1161629.exe
+ 2011-10-05 10:19 . 2011-10-05 10:19   2376368              c:\windows\SYSTEM32\Adobe\Shockwave 11\gt.exe
+ 2011-10-05 11:22 . 2011-10-05 11:22   1740800              c:\windows\SYSTEM32\Adobe\Shockwave 11\dirapi.dll
- 2008-07-25 15:17 . 2008-07-25 15:17   5025792              c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2011-03-25 10:15 . 2011-03-25 10:15   5025792              c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2011-12-25 08:50 . 2011-12-25 08:50   5246976              c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2011-04-29 01:50 . 2011-04-29 01:50   3182592              c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
- 2010-03-23 09:32 . 2010-03-23 09:32   3182592              c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2011-07-07 09:18 . 2011-07-07 09:18   5912400              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2011-07-07 09:18 . 2011-07-07 09:18   4550656              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
- 2010-05-11 10:40 . 2010-05-11 10:40   4550656              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2011-09-15 23:40 . 2011-09-15 23:40   7959552              c:\windows\Installer\ebf9f8.msp
+ 2011-09-15 23:35 . 2011-09-15 23:35   1411072              c:\windows\Installer\ebf708.msp
+ 2011-09-21 20:18 . 2011-09-21 20:18   4985856              c:\windows\Installer\eba11d5.msp
+ 2011-03-12 00:57 . 2011-03-12 00:57   1711616              c:\windows\Installer\a42bb.msi
+ 2011-08-10 21:43 . 2011-08-10 21:43   3795968              c:\windows\Installer\8f130b7.msp
+ 2011-09-07 01:46 . 2011-09-07 01:46   9006080              c:\windows\Installer\8f130ae.msp
+ 2011-06-21 15:59 . 2011-06-21 15:59   1764352              c:\windows\Installer\8f13097.msp
+ 2011-08-24 10:37 . 2011-08-24 10:37   4985856              c:\windows\Installer\8f1307f.msp
+ 2011-08-10 21:42 . 2011-08-10 21:42   7070208              c:\windows\Installer\8f13068.msp
+ 2011-09-07 01:48 . 2011-09-07 01:48   8181248              c:\windows\Installer\8f1303d.msp
+ 2011-07-27 11:39 . 2011-07-27 11:39   9892352              c:\windows\Installer\8f13002.msp
+ 2011-04-29 16:31 . 2011-04-29 16:31   9006080              c:\windows\Installer\873eb15.msp
+ 2011-04-29 16:28 . 2011-04-29 16:28   1995264              c:\windows\Installer\873eaea.msp
+ 2011-04-29 16:33 . 2011-04-29 16:33   8173568              c:\windows\Installer\873eabb.msp
+ 2011-01-19 03:36 . 2011-01-19 03:36   2687488              c:\windows\Installer\83fd4bf.msp
+ 2011-02-16 18:54 . 2011-02-16 18:54   4992000              c:\windows\Installer\7a30c2.msp
+ 2011-01-11 22:53 . 2011-01-11 22:53   1763328              c:\windows\Installer\7a30ac.msp
+ 2012-01-11 19:38 . 2012-01-11 19:38   1155072              c:\windows\Installer\72ced.msi
+ 2011-03-18 00:05 . 2011-03-18 00:05   4989440              c:\windows\Installer\6c9a0a2.msp
+ 2011-01-11 21:49 . 2011-01-11 21:49   9003008              c:\windows\Installer\6c9a08b.msp
+ 2010-11-21 03:32 . 2010-11-21 03:32   4165120              c:\windows\Installer\6c9a074.msp
+ 2010-11-21 03:34 . 2010-11-21 03:34   1198080              c:\windows\Installer\6c9a050.msp
+ 2011-03-18 00:01 . 2011-03-18 00:01   9563648              c:\windows\Installer\6c9a033.msp
+ 2011-01-11 21:50 . 2011-01-11 21:50   8177152              c:\windows\Installer\6c9a016.msp
+ 2010-11-21 03:33 . 2010-11-21 03:33   1980928              c:\windows\Installer\6c9a00d.msp
+ 2011-12-26 14:59 . 2011-12-26 14:59   4368896              c:\windows\Installer\47b47.msp
+ 2011-12-09 00:24 . 2011-12-09 00:24   4989952              c:\windows\Installer\47b3c.msp
+ 2011-09-07 23:36 . 2011-09-07 23:36   6069248              c:\windows\Installer\455923.msp
+ 2011-11-01 18:34 . 2011-11-01 18:34   1552384              c:\windows\Installer\3d21238.msp
+ 2011-11-01 18:34 . 2011-11-01 18:34   4250112              c:\windows\Installer\3d2122f.msp
+ 2011-11-01 18:34 . 2011-11-01 18:34   2247168              c:\windows\Installer\3d21218.msp
+ 2011-11-11 21:14 . 2011-11-11 21:14   9096192              c:\windows\Installer\3d21201.msp
+ 2011-11-01 18:34 . 2011-11-01 18:34   4225536              c:\windows\Installer\3d211ea.msp
+ 2011-11-01 18:34 . 2011-11-01 18:34   2531840              c:\windows\Installer\3d211ba.msp
+ 2011-11-11 21:15 . 2011-11-11 21:15   1795584              c:\windows\Installer\3d211b1.msp
+ 2011-11-11 21:16 . 2011-11-11 21:16   8458240              c:\windows\Installer\3d21186.msp
+ 2011-05-02 04:06 . 2011-05-02 04:06   2705920              c:\windows\Installer\3a7f16e.msp
+ 2011-07-27 11:42 . 2011-07-27 11:42   4985856              c:\windows\Installer\3a7f166.msp
+ 2011-06-21 16:01 . 2011-06-21 16:01   4991488              c:\windows\Installer\369b10d4.msp
+ 2011-09-07 14:38 . 2011-09-07 14:38   9474048              c:\windows\Installer\18dc1ac.msi
+ 2011-07-21 17:34 . 2011-07-21 17:34   3456000              c:\windows\Installer\1753915.msp
+ 2011-09-14 19:23 . 2011-09-14 19:23   2317312              c:\windows\Installer\14bba9e.msi
+ 2011-04-29 16:27 . 2011-04-29 16:27   4158464              c:\windows\Installer\1258f16.msp
+ 2011-04-28 09:42 . 2011-04-28 09:42   4990976              c:\windows\Installer\1258eff.msp
+ 2011-04-29 16:30 . 2011-04-29 16:30   1197056              c:\windows\Installer\1258ee8.msp
Logged
« Reply #11 on: January 27, 2012, 11:43:35 »
jerky Offline
Jr. Member

WWW 		**

Karma: 0
Posts: 64
PART SIX Combofix

c:\windows\$hf_mig$\KB2570222\spuninst.exe
+ 2011-08-11 03:15 . 2011-06-24 14:09   139656              c:\windows\$hf_mig$\KB2570222\SP3QFE\rdpwd.sys
+ 2011-08-11 07:11 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2567680\update\updspapi.dll
+ 2011-08-11 07:11 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2567680\update\update.exe
+ 2011-08-11 07:11 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2567680\spuninst.exe
+ 2011-06-20 17:43 . 2011-06-20 17:43   293376              c:\windows\$hf_mig$\KB2567680\SP3QFE\winsrv.dll
+ 2011-10-13 07:05 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2567053\update\updspapi.dll
+ 2011-10-13 07:05 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2567053\update\update.exe
+ 2011-10-13 07:05 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2567053\spuninst.exe
+ 2011-08-11 07:03 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2566454\update\updspapi.dll
+ 2011-08-11 07:03 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2566454\update\update.exe
+ 2011-08-11 07:03 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2566454\spuninst.exe
+ 2011-08-11 07:03 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2562937\update\updspapi.dll
+ 2011-08-11 07:03 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2562937\update\update.exe
+ 2011-08-11 07:03 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2562937\spuninst.exe
+ 2011-08-11 07:04 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2559049-IE8\update\updspapi.dll
+ 2011-08-11 07:04 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2559049-IE8\update\update.exe
+ 2011-08-11 07:04 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2559049-IE8\spuninst.exe
+ 2011-08-11 03:14 . 2011-06-23 18:33   919552              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\wininet.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   105984              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\url.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   206848              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\occache.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   611840              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\mstime.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   602112              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\msfeeds.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   247808              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\ieproxy.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   184320              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\iepeers.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   743424              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\iedvtool.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   387584              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\iedkcs32.dll
+ 2011-08-11 03:14 . 2011-06-23 12:19   173568              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\ie4uinit.exe
+ 2011-07-13 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2555917\update\updspapi.dll
+ 2011-07-13 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2555917\update\update.exe
+ 2011-07-13 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2555917\spuninst.exe
+ 2011-06-16 07:04 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2544893\update\updspapi.dll
+ 2011-06-16 07:04 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2544893\update\update.exe
+ 2011-06-16 07:04 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2544893\spuninst.exe
+ 2011-06-15 20:34 . 2011-05-02 15:30   692736              c:\windows\$hf_mig$\KB2544893\SP3QFE\inetcomm.dll
+ 2011-11-09 08:06 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2544893-v2\update\updspapi.dll
+ 2011-11-09 08:06 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2544893-v2\update\update.exe
+ 2011-11-09 08:06 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2544893-v2\spuninst.exe
+ 2011-10-10 14:21 . 2011-10-10 14:21   692736              c:\windows\$hf_mig$\KB2544893-v2\SP3QFE\inetcomm.dll
+ 2011-06-16 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2544521-IE8\update\updspapi.dll
+ 2011-06-16 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2544521-IE8\update\update.exe
+ 2011-06-16 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2544521-IE8\spuninst.exe
+ 2011-06-15 20:34 . 2011-04-30 02:59   758784              c:\windows\$hf_mig$\KB2544521-IE8\SP3QFE\vgx.dll
+ 2011-06-29 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2541763\update\updspapi.dll
+ 2011-06-29 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2541763\update\update.exe
+ 2011-06-29 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2541763\spuninst.exe
+ 2011-04-29 17:23 . 2011-04-29 17:23   151552              c:\windows\$hf_mig$\KB2541763\SP3QFE\schannel.dll
+ 2011-06-16 07:05 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2536276\update\updspapi.dll
+ 2011-06-16 07:05 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2536276\update\update.exe
+ 2011-06-16 07:05 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2536276\spuninst.exe
+ 2011-06-15 20:35 . 2011-04-29 16:47   457856              c:\windows\$hf_mig$\KB2536276\SP3QFE\mrxsmb.sys
+ 2011-08-11 07:09 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2536276-v2\update\updspapi.dll
+ 2011-08-11 07:09 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2536276-v2\update\update.exe
+ 2011-08-11 07:09 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2536276-v2\spuninst.exe
+ 2011-08-11 03:15 . 2011-07-15 13:29   457856              c:\windows\$hf_mig$\KB2536276-v2\SP3QFE\mrxsmb.sys
+ 2011-06-16 07:06 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2535512\update\updspapi.dll
+ 2011-06-16 07:06 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2535512\update\update.exe
+ 2011-06-16 07:06 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2535512\spuninst.exe
+ 2011-06-15 20:35 . 2011-04-21 13:52   105472              c:\windows\$hf_mig$\KB2535512\SP3QFE\mup.sys
+ 2011-06-16 07:05 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2530548-IE8\update\updspapi.dll
+ 2011-06-16 07:05 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2530548-IE8\update\update.exe
+ 2011-06-16 07:05 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2530548-IE8\spuninst.exe
+ 2011-06-15 20:35 . 2011-04-25 16:09   919552              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\wininet.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   206848              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\occache.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   611840              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\mstime.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   602112              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\msfeeds.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   247808              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\ieproxy.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   184320              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\iepeers.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   743424              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\iedvtool.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   387584              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\iedkcs32.dll
+ 2011-06-15 20:35 . 2011-04-25 11:37   173568              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\ie4uinit.exe
+ 2011-03-25 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2524375\update\updspapi.dll
+ 2011-03-25 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2524375\update\update.exe
+ 2011-03-25 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2524375\spuninst.exe
+ 2011-04-16 07:04 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2511455\update\updspapi.dll
+ 2011-04-16 07:04 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2511455\update\update.exe
+ 2011-04-16 07:04 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2511455\spuninst.exe
+ 2011-04-15 18:24 . 2011-02-17 13:19   457472              c:\windows\$hf_mig$\KB2511455\SP3QFE\mrxsmb.sys
+ 2011-04-16 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2510531-IE8\update\updspapi.dll
+ 2011-04-16 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2510531-IE8\update\update.exe
+ 2011-04-16 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2510531-IE8\spuninst.exe
+ 2011-04-15 18:23 . 2011-03-04 06:35   420864              c:\windows\$hf_mig$\KB2510531-IE8\SP3QFE\vbscript.dll
+ 2011-04-15 18:23 . 2011-03-04 06:35   726528              c:\windows\$hf_mig$\KB2510531-IE8\SP3QFE\jscript.dll
+ 2011-04-16 07:02 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2509553\update\updspapi.dll
+ 2011-04-16 07:02 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2509553\update\update.exe
+ 2011-04-16 07:02 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2509553\spuninst.exe
+ 2008-06-20 11:16 . 2008-06-20 11:16   225856              c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip6.sys
+ 2008-06-20 11:59 . 2008-06-20 11:59   361600              c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
+ 2008-06-20 17:43 . 2008-06-20 17:43   245248              c:\windows\$hf_mig$\KB2509553\SP3QFE\mswsock.dll
+ 2011-03-03 06:53 . 2011-03-03 06:53   149504              c:\windows\$hf_mig$\KB2509553\SP3QFE\dnsapi.dll
+ 2008-10-16 15:07 . 2008-10-16 15:07   138496              c:\windows\$hf_mig$\KB2509553\SP3QFE\afd.sys
+ 2011-04-16 07:05 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2508429\update\updspapi.dll
+ 2011-04-16 07:05 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2508429\update\update.exe
+ 2011-04-16 07:05 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2508429\spuninst.exe
+ 2011-02-17 13:19 . 2011-02-17 13:19   357888              c:\windows\$hf_mig$\KB2508429\SP3QFE\srv.sys
+ 2011-04-16 07:06 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2508272\update\updspapi.dll
+ 2011-04-16 07:06 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2508272\update\update.exe
+ 2011-04-16 07:06 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2508272\spuninst.exe
+ 2011-07-13 07:08 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2507938\update\updspapi.dll
+ 2011-07-13 07:08 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2507938\update\update.exe
+ 2011-07-13 07:08 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2507938\spuninst.exe
+ 2011-04-26 11:02 . 2011-04-26 11:02   293376              c:\windows\$hf_mig$\KB2507938\SP3QFE\winsrv.dll
+ 2011-04-16 07:05 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2507618\update\updspapi.dll
+ 2011-04-16 07:05 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2507618\update\update.exe
+ 2011-04-16 07:05 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2507618\spuninst.exe
+ 2011-02-15 13:05 . 2011-02-15 13:05   290432              c:\windows\$hf_mig$\KB2507618\SP3QFE\atmfd.dll
+ 2011-04-16 07:14 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2506223\update\updspapi.dll
+ 2011-04-16 07:14 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2506223\update\update.exe
+ 2011-04-16 07:14 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2506223\spuninst.exe
+ 2011-04-16 07:03 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2506212\update\updspapi.dll
+ 2011-04-16 07:03 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2506212\update\update.exe
+ 2011-04-16 07:03 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2506212\spuninst.exe
+ 2011-02-08 13:32 . 2011-02-08 13:32   974848              c:\windows\$hf_mig$\KB2506212\SP3QFE\mfc42u.dll
+ 2011-02-08 13:32 . 2011-02-08 13:32   978944              c:\windows\$hf_mig$\KB2506212\SP3QFE\mfc42.dll
+ 2011-06-16 07:07 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2503665\update\updspapi.dll
+ 2011-06-16 07:07 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2503665\update\update.exe
+ 2011-06-16 07:07 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2503665\spuninst.exe
+ 2011-06-15 20:35 . 2011-02-16 13:25   138496              c:\windows\$hf_mig$\KB2503665\SP3QFE\afd.sys
+ 2011-04-16 07:06 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2503658\update\updspapi.dll
+ 2011-04-16 07:06 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2503658\update\update.exe
+ 2011-04-16 07:06 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2503658\spuninst.exe
+ 2011-03-07 05:31 . 2011-03-07 05:31   692736              c:\windows\$hf_mig$\KB2503658\SP3QFE\inetcomm.dll
+ 2011-04-16 07:12 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2497640-IE8\update\updspapi.dll
+ 2011-04-16 07:12 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2497640-IE8\update\update.exe
+ 2011-04-16 07:12 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2497640-IE8\spuninst.exe
+ 2011-04-15 18:24 . 2011-02-22 23:27   919552              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\wininet.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   206848              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\occache.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   611840              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\mstime.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   602112              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\msfeeds.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   247808              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\ieproxy.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   184320              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\iepeers.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   743424              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\iedvtool.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   387584              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\iedkcs32.dll
+ 2011-04-15 18:24 . 2011-02-22 12:08   173568              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\ie4uinit.exe
+ 2011-04-16 07:16 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2491683\update\updspapi.dll
+ 2011-04-16 07:16 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2491683\update\update.exe
+ 2011-04-16 07:16 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2491683\spuninst.exe
+ 2011-02-11 13:22 . 2011-02-11 13:22   229888              c:\windows\$hf_mig$\KB2491683\SP3QFE\fxscover.exe
+ 2011-04-16 07:14 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2485663\update\updspapi.dll
+ 2011-04-16 07:14 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2485663\update\update.exe
+ 2011-04-16 07:14 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2485663\spuninst.exe
+ 2011-03-10 08:03 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2481109\update\updspapi.dll
+ 2011-03-10 08:03 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2481109\update\update.exe
+ 2011-03-10 08:03 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2481109\spuninst.exe
+ 2011-01-27 11:41 . 2011-01-27 11:41   677888              c:\windows\$hf_mig$\KB2481109\SP3QFE\lhmstsc.exe
+ 2011-02-02 07:57 . 2011-02-02 07:57   136192              c:\windows\$hf_mig$\KB2481109\SP3QFE\aaclient.dll
+ 2011-03-10 08:07 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2479943\update\updspapi.dll
+ 2011-03-10 08:07 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2479943\update\update.exe
+ 2011-03-10 08:07 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2479943\spuninst.exe
+ 2011-02-09 13:52 . 2011-02-09 13:52   270848              c:\windows\$hf_mig$\KB2479943\SP3QFE\sbe.dll
+ 2011-02-09 13:52 . 2011-02-09 13:52   186880              c:\windows\$hf_mig$\KB2479943\SP3QFE\encdec.dll
+ 2011-06-16 07:07 . 2010-07-05 13:16   382840              c:\windows\$hf_mig$\KB2476490\update\updspapi.dll
+ 2011-06-16 07:07 . 2010-07-05 13:15   755576              c:\windows\$hf_mig$\KB2476490\update\update.exe
+ 2011-06-16 07:07 . 2010-07-05 13:15   231288              c:\windows\$hf_mig$\KB2476490\spuninst.exe
+ 2010-12-20 17:30 . 2010-12-20 17:30   552448              c:\windows\$hf_mig$\KB2476490\SP3QFE\oleaut32.dll
+ 2011-04-15 18:24 . 2010-10-23 00:51   1748992              c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22509_x-ww_c7dad023\GdiPlus.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   3781960              c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfc90u.dll
+ 2011-04-19 02:51 . 2011-04-19 02:51   3766600              c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfc90.dll
+ 2011-05-14 00:04 . 2011-05-14 00:04   1093120              c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll
+ 2011-05-14 00:04 . 2011-05-14 00:04   1101824              c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80.dll
+ 2004-01-21 21:20 . 2011-11-04 19:20   1212416              c:\windows\SYSTEM32\urlmon.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   1392640              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnpswb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   1392640              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnpswb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   4038656              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnprpb.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   4038656              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnprpb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   3665920              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnlpab.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   3665920              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnlpab.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   1388544              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnlpa.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   1388544              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnlpa.dll
- 2010-03-15 17:32 . 2007-11-14 06:55   1339392              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnhpec.dll
+ 2011-11-18 18:28 . 2007-11-14 06:55   1339392              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\lexmark_2600_seriesaa0d\lxdnhpec.dll
+ 2011-11-18 18:25 . 2007-10-31 01:45   1079808              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\mfc80u.dll
- 2010-03-15 17:30 . 2007-10-31 01:45   1079808              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\mfc80u.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   1392640              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnpswb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   1392640              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnpswb.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   4038656              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnprpb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   4038656              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnprpb.dll
+ 2011-11-18 18:28 . 2008-02-07 20:20   3665920              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnlpab.dll
- 2010-03-15 17:32 . 2008-02-07 20:20   3665920              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnlpab.dll
+ 2011-11-18 18:28 . 2008-02-07 20:16   1388544              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnlpa.dll
- 2010-03-15 17:32 . 2008-02-07 20:16   1388544              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnlpa.dll
- 2010-03-15 17:32 . 2007-11-14 06:55   1339392              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnhpec.dll
+ 2011-11-18 18:28 . 2007-11-14 06:55   1339392              c:\windows\SYSTEM32\SPOOL\DRIVERS\W32X86\3\lxdnhpec.dll
- 2002-09-03 19:50 . 2010-12-09 13:38   2192768              c:\windows\SYSTEM32\ntoskrnl.exe
+ 2002-09-03 19:50 . 2011-10-25 13:33   2192768              c:\windows\SYSTEM32\ntoskrnl.exe
+ 2002-08-29 01:04 . 2011-10-25 12:52   2069376              c:\windows\SYSTEM32\ntkrnlpa.exe
- 2002-08-29 01:04 . 2010-12-09 13:07   2069376              c:\windows\SYSTEM32\ntkrnlpa.exe
+ 2002-08-29 11:00 . 2011-02-02 07:58   2067456              c:\windows\SYSTEM32\mstscax.dll
+ 2004-07-07 22:37 . 2011-11-04 19:20   5978112              c:\windows\SYSTEM32\mshtml.dll
+ 2011-08-02 12:38 . 2011-08-02 12:38   1503232              c:\windows\SYSTEM32\Macromed\Shockwave 10\dirapiX.dll
+ 2011-11-18 18:25 . 2007-11-28 23:16   1101824              c:\windows\SYSTEM32\lxdnserv.dll
- 2010-03-15 17:30 . 2007-11-28 23:16   1101824              c:\windows\SYSTEM32\lxdnserv.dll
+ 2006-10-17 15:57 . 2011-11-04 19:20   2000384              c:\windows\SYSTEM32\iertutil.dll
- 2010-03-15 17:30 . 2007-06-28 13:52   1645320              c:\windows\SYSTEM32\gdiplus.dll
+ 2011-11-18 18:25 . 2007-06-28 13:52   1645320              c:\windows\SYSTEM32\gdiplus.dll
+ 2011-07-07 07:28 . 2011-07-07 07:28   1193320              c:\windows\SYSTEM32\FM20.DLL
+ 2008-10-14 22:33 . 2011-11-23 13:25   1859584              c:\windows\SYSTEM32\DLLCACHE\win32k.sys
+ 2004-01-21 21:20 . 2011-11-04 19:20   1212416              c:\windows\SYSTEM32\DLLCACHE\urlmon.dll
+ 2008-05-07 05:12 . 2011-11-03 15:28   1292288              c:\windows\SYSTEM32\DLLCACHE\quartz.dll
+ 2010-07-16 12:05 . 2011-11-01 16:07   1288704              c:\windows\SYSTEM32\DLLCACHE\ole32.dll
+ 2008-10-14 22:32 . 2011-10-25 13:33   2192768              c:\windows\SYSTEM32\DLLCACHE\ntoskrnl.exe
- 2008-10-14 22:32 . 2010-12-09 13:38   2192768              c:\windows\SYSTEM32\DLLCACHE\ntoskrnl.exe
+ 2008-10-14 22:32 . 2011-10-25 12:52   2027008              c:\windows\SYSTEM32\DLLCACHE\ntkrpamp.exe
- 2008-10-14 22:32 . 2010-12-09 13:07   2027008              c:\windows\SYSTEM32\DLLCACHE\ntkrpamp.exe
- 2008-10-14 22:32 . 2010-12-09 13:07   2069376              c:\windows\SYSTEM32\DLLCACHE\ntkrnlpa.exe
+ 2008-10-14 22:32 . 2011-10-25 12:52   2069376              c:\windows\SYSTEM32\DLLCACHE\ntkrnlpa.exe
+ 2008-10-14 22:32 . 2011-10-25 13:37   2148864              c:\windows\SYSTEM32\DLLCACHE\ntkrnlmp.exe
- 2008-10-14 22:32 . 2010-12-09 13:42   2148864              c:\windows\SYSTEM32\DLLCACHE\ntkrnlmp.exe
+ 2004-07-07 22:37 . 2011-11-04 19:20   5978112              c:\windows\SYSTEM32\DLLCACHE\mshtml.dll
+ 2011-02-02 07:58 . 2011-02-02 07:58   2067456              c:\windows\SYSTEM32\DLLCACHE\lhmstscx.dll
+ 2007-04-25 08:41 . 2011-11-04 19:20   2000384              c:\windows\SYSTEM32\DLLCACHE\iertutil.dll
+ 2011-10-05 11:40 . 2011-10-05 11:40   1040824              c:\windows\SYSTEM32\Adobe\Shockwave 11\SwHelper_1161629.exe
+ 2011-10-05 10:19 . 2011-10-05 10:19   2376368              c:\windows\SYSTEM32\Adobe\Shockwave 11\gt.exe
+ 2011-10-05 11:22 . 2011-10-05 11:22   1740800              c:\windows\SYSTEM32\Adobe\Shockwave 11\dirapi.dll
- 2008-07-25 15:17 . 2008-07-25 15:17   5025792              c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2011-03-25 10:15 . 2011-03-25 10:15   5025792              c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2011-12-25 08:50 . 2011-12-25 08:50   5246976              c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2011-04-29 01:50 . 2011-04-29 01:50   3182592              c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
- 2010-03-23 09:32 . 2010-03-23 09:32   3182592              c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2011-07-07 09:18 . 2011-07-07 09:18   5912400              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2011-07-07 09:18 . 2011-07-07 09:18   4550656              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
- 2010-05-11 10:40 . 2010-05-11 10:40   4550656              c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2011-09-15 23:40 . 2011-09-15 23:40   7959552              c:\windows\Installer\ebf9f8.msp
+ 2011-09-15 23:35 . 2011-09-15 23:35   1411072              c:\windows\Installer\ebf708.msp
+ 2011-09-21 20:18 . 2011-09-21 20:18   4985856              c:\windows\Installer\eba11d5.msp
+ 2011-03-12 00:57 . 2011-03-12 00:57   1711616              c:\windows\Installer\a42bb.msi
+ 2011-08-10 21:43 . 2011-08-10 21:43   3795968              c:\windows\Installer\8f130b7.msp
+ 2011-09-07 01:46 . 2011-09-07 01:46   9006080              c:\windows\Installer\8f130ae.msp
+ 2011-06-21 15:59 . 2011-06-21 15:59   1764352              c:\windows\Installer\8f13097.msp
+ 2011-08-24 10:37 . 2011-08-24 10:37   4985856              c:\windows\Installer\8f1307f.msp
+ 2011-08-10 21:42 . 2011-08-10 21:42   7070208              c:\windows\Installer\8f13068.msp
+ 2011-09-07 01:48 . 2011-09-07 01:48   8181248              c:\windows\Installer\8f1303d.msp
+ 2011-07-27 11:39 . 2011-07-27 11:39   9892352              c:\windows\Installer\8f13002.msp
+ 2011-04-29 16:31 . 2011-04-29 16:31   9006080              c:\windows\Installer\873eb15.msp
+ 2011-04-29 16:28 . 2011-04-29 16:28   1995264              c:\windows\Installer\873eaea.msp
+ 2011-04-29 16:33 . 2011-04-29 16:33   8173568              c:\windows\Installer\873eabb.msp
+ 2011-01-19 03:36 . 2011-01-19 03:36   2687488              c:\windows\Installer\83fd4bf.msp
+ 2011-02-16 18:54 . 2011-02-16 18:54   4992000              c:\windows\Installer\7a30c2.msp
+ 2011-01-11 22:53 . 2011-01-11 22:53   1763328              c:\windows\Installer\7a30ac.msp
+ 2012-01-11 19:38 . 2012-01-11 19:38   1155072              c:\windows\Installer\72ced.msi
+ 2011-03-18 00:05 . 2011-03-18 00:05   4989440              c:\windows\Installer\6c9a0a2.msp
+ 2011-01-11 21:49 . 2011-01-11 21:49   9003008              c:\windows\Installer\6c9a08b.msp
+ 2010-11-21 03:32 . 2010-11-21 03:32   4165120              c:\windows\Installer\6c9a074.msp
+ 2010-11-21 03:34 . 2010-11-21 03:34   1198080              c:\windows\Installer\6c9a050.msp
+ 2011-03-18 00:01 . 2011-03-18 00:01   9563648              c:\windows\Installer\6c9a033.msp
+ 2011-01-11 21:50 . 2011-01-11 21:50   8177152              c:\windows\Installer\6c9a016.msp
+ 2010-11-21 03:33 . 2010-11-21 03:33   1980928              c:\windows\Installer\6c9a00d.msp
+ 2011-12-26 14:59 . 2011-12-26 14:59   4368896              c:\windows\Installer\47b47.msp
+ 2011-12-09 00:24 . 2011-12-09 00:24   4989952              c:\windows\Installer\47b3c.msp
+ 2011-09-07 23:36 . 2011-09-07 23:36   6069248              c:\windows\Installer\455923.msp
+ 2011-11-01 18:34 . 2011-11-01 18:34   1552384              c:\windows\Installer\3d21238.msp
+ 2011-11-01 18:34 . 2011-11-01 18:34   4250112              c:\windows\Installer\3d2122f.msp
+ 2011-11-01 18:34 . 2011-11-01 18:34   2247168              c:\windows\Installer\3d21218.msp
+ 2011-11-11 21:14 . 2011-11-11 21:14   9096192              c:\windows\Installer\3d21201.msp
+ 2011-11-01 18:34 . 2011-11-01 18:34   4225536              c:\windows\Installer\3d211ea.msp
+ 2011-11-01 18:34 . 2011-11-01 18:34   2531840              c:\windows\Installer\3d211ba.msp
+ 2011-11-11 21:15 . 2011-11-11 21:15   1795584              c:\windows\Installer\3d211b1.msp
+ 2011-11-11 21:16 . 2011-11-11 21:16   8458240              c:\windows\Installer\3d21186.msp
+ 2011-05-02 04:06 . 2011-05-02 04:06   2705920              c:\windows\Installer\3a7f16e.msp
+ 2011-07-27 11:42 . 2011-07-27 11:42   4985856              c:\windows\Installer\3a7f166.msp
+ 2011-06-21 16:01 . 2011-06-21 16:01   4991488              c:\windows\Installer\369b10d4.msp
+ 2011-09-07 14:38 . 2011-09-07 14:38   9474048              c:\windows\Installer\18dc1ac.msi
+ 2011-07-21 17:34 . 2011-07-21 17:34   3456000              c:\windows\Installer\1753915.msp
+ 2011-09-14 19:23 . 2011-09-14 19:23   2317312              c:\windows\Installer\14bba9e.msi
+ 2011-04-29 16:27 . 2011-04-29 16:27   4158464              c:\windows\Installer\1258f16.msp
+ 2011-04-28 09:42 . 2011-04-28 09:42   4990976              c:\windows\Installer\1258eff.msp
+ 2011-04-29 16:30 . 2011-04-29 16:30   1197056              c:\windows\Installer\1258ee8.msp
Logged
« Reply #12 on: January 27, 2012, 11:44:50 »
jerky Offline
Jr. Member

WWW 		**

Karma: 0
Posts: 64
PART SEVEN Combofix - final part

c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
+ 2009-03-16 16:05 . 2012-01-12 01:19   1172240              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
+ 2009-03-16 16:05 . 2012-01-12 01:19   1165584              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\accicons.exe
- 2009-03-16 16:05 . 2011-02-10 08:15   1165584              c:\windows\Installer\{91120000-0030-0000-0000-0000000FF1CE}\accicons.exe
+ 2011-01-14 12:10 . 2011-01-14 12:10   2395008              c:\windows\Installer\$PatchCache$\Managed\00004109500200000000000000F01FEC\14.0.5130\GKWORD.DLL
+ 2011-01-14 12:10 . 2011-01-14 12:10   2180992              c:\windows\Installer\$PatchCache$\Managed\00004109500200000000000000F01FEC\14.0.5130\GKPOWERPOINT.DLL
+ 2011-01-14 12:10 . 2011-01-14 12:10   3443072              c:\windows\Installer\$PatchCache$\Managed\00004109500200000000000000F01FEC\14.0.5130\GKEXCEL.DLL
+ 2011-08-17 14:49 . 2011-08-17 14:49   4683624              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\WRD12CNV.DLL
+ 2009-10-10 03:10 . 2009-10-10 03:10   2594632              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\VBE6.DLL
+ 2011-05-31 22:24 . 2011-05-31 22:24   2014592              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\PPTVIEW.EXE
+ 2011-07-27 09:44 . 2011-07-27 09:44   8494968              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\PPCORE.DLL
+ 2011-07-07 07:58 . 2011-07-07 07:58   1616240              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\OGL.DLL
+ 2011-08-03 05:14 . 2011-08-03 05:14   8579448              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\OARTCONV.DLL
+ 2011-07-27 09:42 . 2011-07-27 09:42   9596784              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\MSPUB.EXE
+ 2011-07-27 10:47 . 2011-07-27 10:47   2532736              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\GRAPH.EXE
+ 2006-10-27 00:25 . 2006-10-27 00:25   2172688              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.4518\PSRCHFEA.DLL
+ 2011-07-27 09:44 . 2011-07-27 09:44   1791824              c:\windows\Installer\$PatchCache$\Managed\00002109020090400000000000F01FEC\12.0.6612\PPCNV.DLL
+ 2011-12-15 08:13 . 2011-08-22 23:48   1212416              c:\windows\ie8updates\KB2618444-IE8\urlmon.dll
+ 2011-12-15 08:13 . 2011-10-03 08:35   5971456              c:\windows\ie8updates\KB2618444-IE8\mshtml.dll
+ 2011-12-15 08:13 . 2011-08-22 23:48   2000384              c:\windows\ie8updates\KB2618444-IE8\iertutil.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   1212416              c:\windows\ie8updates\KB2586448-IE8\urlmon.dll
+ 2011-10-13 07:02 . 2011-07-25 15:17   5969920              c:\windows\ie8updates\KB2586448-IE8\mshtml.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   1991680              c:\windows\ie8updates\KB2586448-IE8\iertutil.dll
+ 2011-08-11 07:03 . 2011-04-25 16:11   1211904              c:\windows\ie8updates\KB2559049-IE8\urlmon.dll
+ 2011-08-11 07:03 . 2011-05-30 22:19   5964800              c:\windows\ie8updates\KB2559049-IE8\mshtml.dll
+ 2011-08-11 07:03 . 2011-04-25 16:11   1991680              c:\windows\ie8updates\KB2559049-IE8\iertutil.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   1210880              c:\windows\ie8updates\KB2530548-IE8\urlmon.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   5962240              c:\windows\ie8updates\KB2530548-IE8\mshtml.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   1991680              c:\windows\ie8updates\KB2530548-IE8\iertutil.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   1210880              c:\windows\ie8updates\KB2497640-IE8\urlmon.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   5961216              c:\windows\ie8updates\KB2497640-IE8\mshtml.dll
+ 2011-04-16 07:12 . 2010-12-20 23:59   1991680              c:\windows\ie8updates\KB2497640-IE8\iertutil.dll
- 2008-10-14 22:32 . 2010-12-09 13:38   2192768              c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2008-10-14 22:32 . 2011-10-25 13:33   2192768              c:\windows\Driver Cache\i386\ntoskrnl.exe
- 2008-10-14 22:32 . 2010-12-09 13:07   2027008              c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2008-10-14 22:32 . 2011-10-25 12:52   2027008              c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2008-10-14 22:32 . 2011-10-25 12:52   2069376              c:\windows\Driver Cache\i386\ntkrnlpa.exe
- 2008-10-14 22:32 . 2010-12-09 13:07   2069376              c:\windows\Driver Cache\i386\ntkrnlpa.exe
- 2008-10-14 22:32 . 2010-12-09 13:42   2148864              c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2008-10-14 22:32 . 2011-10-25 13:37   2148864              c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2011-10-13 07:16 . 2011-10-13 07:16   3325440              c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1adc4ae51a5ac63e896a1402749ca495\WindowsBase.ni.dll
+ 2011-10-13 07:19 . 2011-10-13 07:19   1049600              c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\55d4813580b1e5d268ff0564942cee9c\UIAutomationClientsideProviders.ni.dll
+ 2011-10-13 07:15 . 2011-10-13 07:15   7950848              c:\windows\assembly\NativeImages_v2.0.50727_32\System\af39f6e644af02873b9bae319f2bfb13\System.ni.dll
+ 2011-10-13 07:19 . 2011-10-13 07:19   5450752              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\70cacc44f0b4257f6037eda7a59a0aeb\System.Xml.ni.dll
+ 2012-01-12 09:06 . 2012-01-12 09:06   1356288              c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\05c29118462056cf810df0b6aa660d05\System.WorkflowServices.ni.dll
+ 2012-01-12 09:06 . 2012-01-12 09:06   1908224              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\26b3258c559dc0ab6bdce481ffd458b3\System.Workflow.Runtime.ni.dll
+ 2012-01-12 09:06 . 2012-01-12 09:06   4514304              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\1642d1b72cd84caf24cbe7c5e8fd8368\System.Workflow.ComponentModel.ni.dll
+ 2012-01-12 09:06 . 2012-01-12 09:06   2992640              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\32ce12c3c2049f2df94c44c94b052e16\System.Workflow.Activities.ni.dll
+ 2012-01-12 09:06 . 2012-01-12 09:06   1840640              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\f63ae1310e004777e880f28377bcddd2\System.Web.Services.ni.dll
+ 2012-01-12 09:06 . 2012-01-12 09:06   2209280              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\c99b02434e71ca9898bebbc08d63e885\System.Web.Mobile.ni.dll
+ 2012-01-12 09:05 . 2012-01-12 09:05   2405888              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\c8f78b9e94857fdf6c2a378dd1629ee0\System.Web.Extensions.ni.dll
+ 2011-10-13 07:19 . 2011-10-13 07:19   1917952              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\10d7daa3d1e62a0e40587cdc707be93f\System.Speech.ni.dll
+ 2012-01-12 09:05 . 2012-01-12 09:05   1706496              c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\ae749b024162e9ac79110c633b5ce6be\System.ServiceModel.Web.ni.dll
+ 2011-10-13 07:21 . 2011-10-13 07:21   2345472              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\afd6134c090faf8c29cd64d4835142b2\System.Runtime.Serialization.ni.dll
+ 2011-10-13 07:18 . 2011-10-13 07:18   1035776              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\0f8e14bfdb27645fb1a92ce26f9bf521\System.Printing.ni.dll
+ 2012-01-12 01:57 . 2012-01-12 01:57   4949504              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.A#\1a32e7ce68fa086773b235fc8b525476\System.Management.Automation.ni.dll
+ 2012-01-12 01:52 . 2012-01-12 01:52   1070080              c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\23eb4618c9d171be9fb551a13a475a32\System.IdentityModel.ni.dll
+ 2011-10-13 07:18 . 2011-10-13 07:18   1587200              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\c10bea3c4bb7ef654651141bf9419090\System.Drawing.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   1116672              c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\91cd88a803768151c6262853d3454ba7\System.DirectoryServices.ni.dll
+ 2011-10-13 07:21 . 2011-10-13 07:21   1801216              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\cc5ac99e8af2738e85cda5525fdd944f\System.Deployment.ni.dll
+ 2011-10-13 07:18 . 2011-10-13 07:18   6616576              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\ec323cf1df697cc0a45f67de685db90c\System.Data.ni.dll
+ 2011-10-13 07:20 . 2011-10-13 07:20   2510336              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\ef748704f543a8791e23387652d34dfb\System.Data.SqlXml.ni.dll
+ 2012-01-12 01:56 . 2012-01-12 01:56   1328128              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\f35064c125799df650c1a959d8fa450b\System.Data.Services.ni.dll
+ 2011-10-13 07:18 . 2011-10-13 07:18   2516480              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\d96a94076acb8e0c5a96a1b2de4b3a7a\System.Data.Linq.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   9924096              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\a3ce22c2a84fdcb008d72d230ee0b2c0\System.Data.Entity.ni.dll
+ 2011-10-13 07:18 . 2011-10-13 07:18   2295296              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\d507b9e0e50e453793ee5e01c07a5485\System.Core.ni.dll
+ 2011-10-13 07:18 . 2011-10-13 07:18   2128896              c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\714e9504255565bd9076fe13628e104a\ReachFramework.ni.dll
+ 2011-10-13 07:18 . 2011-10-13 07:18   1657856              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\7dc6ee14234b0686182ced75f7dae990\PresentationUI.ni.dll
+ 2011-10-13 07:16 . 2011-10-13 07:16   1451008              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\b42ad515bb20ec1f1250c040371c6730\PresentationBuildTasks.ni.dll
+ 2012-01-12 01:56 . 2012-01-12 01:56   1712128              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\a86c12788293105a0d9fda1bc90c90bc\Microsoft.VisualBasic.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   1093120              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\ce1ecd602ca089eb13a9b428dc7f0449\Microsoft.Transactions.Bridge.ni.dll
+ 2011-10-13 07:24 . 2011-10-13 07:24   2332160              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\8ad32b72258899177c07dc5912b5b748\Microsoft.JScript.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   1620992              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\50e7c5eb58c982dba7b21cd10a69b095\Microsoft.Build.Tasks.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   1966080              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\415cef6abab5bb959f200f6c537bc289\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2011-10-13 07:22 . 2011-10-13 07:22   1888768              c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\eea7bcc8d356e3f2dcb4f36dfc1c6bc0\Microsoft.Build.Engine.ni.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   3182592              c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   3182592              c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   2048000              c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   2048000              c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   5025792              c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2010-10-06 07:07 . 2010-10-06 07:07   5025792              c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2012-01-12 01:24 . 2012-01-12 01:24   1277952              c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
- 2010-10-06 07:16 . 2010-10-06 07:16   1277952              c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
+ 2012-01-12 01:37 . 2012-01-12 01:37   1564672              c:\windows\assembly\GAC_MSIL\System.Management.Automation\1.0.0.0__31bf3856ad364e35\System.Management.Automation.dll
+ 2012-01-12 01:22 . 2012-01-12 01:23   5062656              c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
- 2010-10-06 07:07 . 2010-10-06 07:08   5062656              c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2012-01-12 01:22 . 2012-01-12 01:22   5246976              c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   2933248              c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   2933248              c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
- 2010-10-06 07:09 . 2010-10-06 07:09   4550656              c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2012-01-12 01:23 . 2012-01-12 01:23   4550656              c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-11-18 22:48 . 2011-11-18 22:48   1279864              c:\windows\assembly\GAC\Microsoft.Office.Interop.Excel\12.0.0.0__71e9bce111e9429c\Microsoft.Office.Interop.Excel.dll
+ 2011-12-15 08:14 . 2011-09-06 13:20   1858944              c:\windows\$NtUninstallKB2639417$\win32k.sys
+ 2011-12-15 08:02 . 2010-12-09 13:38   2192768              c:\windows\$NtUninstallKB2633171$\ntoskrnl.exe
+ 2011-12-15 08:02 . 2010-12-09 13:07   2027008              c:\windows\$NtUninstallKB2633171$\ntkrpamp.exe
+ 2011-12-15 08:02 . 2010-12-09 13:07   2069376              c:\windows\$NtUninstallKB2633171$\ntkrnlpa.exe
+ 2011-12-15 08:02 . 2010-12-09 13:42   2148864              c:\windows\$NtUninstallKB2633171$\ntkrnlmp.exe
+ 2011-12-15 08:14 . 2010-07-16 12:05   1288192              c:\windows\$NtUninstallKB2624667$\ole32.dll
+ 2011-10-13 07:05 . 2011-06-02 14:02   1858944              c:\windows\$NtUninstallKB2567053$\win32k.sys
+ 2011-07-13 07:02 . 2011-03-03 13:21   1857920              c:\windows\$NtUninstallKB2555917$\win32k.sys
+ 2011-04-16 07:14 . 2010-12-31 13:10   1854976              c:\windows\$NtUninstallKB2506223$\win32k.sys
+ 2011-03-10 08:03 . 2009-06-10 13:19   2066432              c:\windows\$NtUninstallKB2481109$\mstscax.dll
+ 2011-11-23 13:29 . 2011-11-23 13:29   1868544              c:\windows\$hf_mig$\KB2639417\SP3QFE\win32k.sys
+ 2011-10-25 13:34 . 2011-10-25 13:34   2192768              c:\windows\$hf_mig$\KB2633171\SP3QFE\ntoskrnl.exe
+ 2011-10-25 12:52 . 2011-10-25 12:52   2027008              c:\windows\$hf_mig$\KB2633171\SP3QFE\ntkrpamp.exe
+ 2011-10-25 12:52 . 2011-10-25 12:52   2069376              c:\windows\$hf_mig$\KB2633171\SP3QFE\ntkrnlpa.exe
+ 2011-10-25 13:38 . 2011-10-25 13:38   2148864              c:\windows\$hf_mig$\KB2633171\SP3QFE\ntkrnlmp.exe
+ 2011-11-01 16:05 . 2011-11-01 16:05   1289216              c:\windows\$hf_mig$\KB2624667\SP3QFE\ole32.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   1214464              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\urlmon.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   5978624              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\mshtml.dll
+ 2011-12-15 03:29 . 2011-11-04 19:19   2001408              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\iertutil.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   1214464              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\urlmon.dll
+ 2011-10-13 06:24 . 2011-10-03 08:34   5972992              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\mshtml.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   2001408              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\iertutil.dll
+ 2011-09-06 13:25 . 2011-09-06 13:25   1867904              c:\windows\$hf_mig$\KB2567053\SP3QFE\win32k.sys
+ 2011-08-11 03:14 . 2011-06-23 18:33   1214464              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\urlmon.dll
+ 2011-08-11 03:14 . 2011-07-25 15:15   5971456              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\mshtml.dll
+ 2011-08-11 03:14 . 2011-06-23 18:33   1992192              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\iertutil.dll
+ 2011-06-02 14:07 . 2011-06-02 14:07   1867904              c:\windows\$hf_mig$\KB2555917\SP3QFE\win32k.sys
+ 2011-06-15 20:35 . 2011-04-25 16:09   1213952              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\urlmon.dll
+ 2011-06-15 20:35 . 2011-05-30 22:17   5967360              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\mshtml.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   1992192              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\iertutil.dll
+ 2011-03-03 13:27 . 2011-03-03 13:27   1866880              c:\windows\$hf_mig$\KB2506223\SP3QFE\win32k.sys
+ 2011-04-15 18:24 . 2011-02-22 23:27   1212928              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\urlmon.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   5964800              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\mshtml.dll
+ 2011-04-15 18:24 . 2011-02-22 23:27   1992192              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\iertutil.dll
+ 2011-02-02 07:57 . 2011-02-02 07:57   2069504              c:\windows\$hf_mig$\KB2481109\SP3QFE\lhmstscx.dll
+ 2005-05-11 07:00 . 2012-01-12 01:25   52128560              c:\windows\SYSTEM32\MRT.exe
+ 2006-11-08 01:03 . 2011-11-04 19:20   11081728              c:\windows\SYSTEM32\ieframe.dll
+ 2007-04-25 08:41 . 2011-11-04 19:20   11081728              c:\windows\SYSTEM32\DLLCACHE\ieframe.dll
+ 2011-09-15 23:39 . 2011-09-15 23:39   11163136              c:\windows\Installer\ebf9ee.msp
+ 2011-09-15 23:38 . 2011-09-15 23:38   10838528              c:\windows\Installer\ebf9e2.msp
+ 2011-09-15 23:37 . 2011-09-15 23:37   16691712              c:\windows\Installer\ebf722.msp
+ 2011-09-15 23:37 . 2011-09-15 23:37   34428416              c:\windows\Installer\ebf709.msp
+ 2011-09-15 23:37 . 2011-09-15 23:37   38176256              c:\windows\Installer\ebf6fc.msp
+ 2011-10-13 07:14 . 2011-10-13 07:14   20333568              c:\windows\Installer\eba11ec.msp
+ 2011-07-12 00:43 . 2011-07-12 00:43   11641344              c:\windows\Installer\eba11e0.msp
+ 2011-07-27 11:37 . 2011-07-27 11:37   11592192              c:\windows\Installer\8f13034.msp
+ 2011-06-16 07:07 . 2011-06-16 07:07   20333056              c:\windows\Installer\873eadb.msp
+ 2011-03-28 07:27 . 2011-03-28 07:27   15456256              c:\windows\Installer\83fd4cc.msp
+ 2011-02-12 00:47 . 2011-02-12 00:47   12028928              c:\windows\Installer\6c9a05c.msp
+ 2011-06-08 04:39 . 2011-06-08 04:39   19798016              c:\windows\Installer\22061fb9.msp
+ 2011-04-21 07:00 . 2011-04-21 07:00   20314624              c:\windows\Installer\19a2ac98.msp
+ 2011-04-22 23:41 . 2011-04-22 23:41   11507712              c:\windows\Installer\1258f33.msp
+ 2011-08-30 13:40 . 2011-08-30 13:40   15145832              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\XL12CNV.EXE
+ 2011-08-04 00:53 . 2011-08-04 00:53   17324928              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\MSO.DLL
+ 2011-08-31 01:25 . 2011-08-31 01:25   18367336              c:\windows\Installer\$PatchCache$\Managed\00002119030000000000000000F01FEC\12.0.6612\EXCEL.EXE
+ 2011-08-30 13:40 . 2011-08-30 13:40   15145832              c:\windows\Installer\$PatchCache$\Managed\00002109020090400000000000F01FEC\12.0.6612\XL12CNV.EXE
+ 2011-12-15 08:13 . 2011-08-23 21:48   11081728              c:\windows\ie8updates\KB2618444-IE8\ieframe.dll
+ 2011-10-13 07:02 . 2011-06-23 18:36   11081728              c:\windows\ie8updates\KB2586448-IE8\ieframe.dll
+ 2011-08-11 07:03 . 2011-04-26 14:11   11081728              c:\windows\ie8updates\KB2559049-IE8\ieframe.dll
+ 2011-06-16 07:05 . 2011-02-22 23:06   11080704              c:\windows\ie8updates\KB2530548-IE8\ieframe.dll
+ 2011-04-16 07:12 . 2010-12-21 10:29   11080704              c:\windows\ie8updates\KB2497640-IE8\ieframe.dll
+ 2011-10-13 07:19 . 2011-10-13 07:19   12430848              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\71a2ae9ad561a62181cbd9fb11e9de7a\System.Windows.Forms.ni.dll
+ 2012-01-12 09:05 . 2012-01-12 09:05   11817472              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\62e34cfb5a8b233667c7c5a47a32ad93\System.Web.ni.dll
+ 2012-01-12 01:54 . 2012-01-12 01:54   17403904              c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\2dac4fc006596760cd4988d0bfd52ff0\System.ServiceModel.ni.dll
+ 2012-01-12 01:26 . 2012-01-12 01:26   10683392              c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\9e15d80ffb037e9171fa4bd2e0233497\System.Design.ni.dll
+ 2011-10-13 07:18 . 2011-10-13 07:18   14328320              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\054488924fcc579cce9fa0209dafe28b\PresentationFramework.ni.dll
+ 2011-10-13 07:17 . 2011-10-13 07:17   12215808              c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\b2f0318713eca304eaa9d86fc17edb96\PresentationCore.ni.dll
+ 2011-10-13 07:15 . 2011-10-13 07:15   11490816              c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
+ 2011-11-05 19:19 . 2011-11-05 19:19   11083776              c:\windows\$hf_mig$\KB2618444-IE8\SP3QFE\ieframe.dll
+ 2011-10-13 06:24 . 2011-08-22 23:47   11084288              c:\windows\$hf_mig$\KB2586448-IE8\SP3QFE\ieframe.dll
+ 2011-06-25 05:03 . 2011-06-25 05:03   11083776              c:\windows\$hf_mig$\KB2559049-IE8\SP3QFE\ieframe.dll
+ 2011-06-15 20:35 . 2011-04-25 16:09   11083776              c:\windows\$hf_mig$\KB2530548-IE8\SP3QFE\ieframe.dll
+ 2011-02-23 08:57 . 2011-02-23 08:57   11082752              c:\windows\$hf_mig$\KB2497640-IE8\SP3QFE\ieframe.dll
+ 2011-09-15 23:34 . 2011-09-15 23:34   428804608              c:\windows\Installer\ebf9d7.msp
.
-- Snapshot reset to current date --
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FA3FEDF6-1A34-4076-9F25-A26A2DE6A401}]
2011-12-04 05:05   88576   ----a-w-   c:\program files\RebateRobot\RebateRobot.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"FBackup Scheduler"="c:\program files\Softland\FBackup 4\fbaSched.exe" [2010-03-09 2013008]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Run StartupMonitor"="StartupMonitor.exe" [2000-05-20 86016]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-11-03 281768]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders   msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, zwebauth.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-03 07:37   843712   ----a-w-   c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DwlClient]
2004-05-28 01:05   323584   ------w-   c:\program files\Common Files\Dell\EUSW\Support.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FBackup Scheduler]
2010-03-09 15:56   2013008   ----a-w-   c:\program files\Softland\FBackup 4\fbaSched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2009-02-26 23:36   30040   ----a-w-   c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxdnamon]
2009-01-29 15:43   16040   ----a-w-   c:\program files\Lexmark 2600 Series\lxdnamon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mmtask]
2004-04-20 20:50   53248   ------w-   c:\program files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray]
2004-04-20 20:50   118784   ------w-   c:\program files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2003-10-06 19:16   5058560   ------w-   c:\windows\SYSTEM32\nvcpl.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2003-10-06 19:16   741376   ------w-   c:\windows\SYSTEM32\nwiz.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2011-07-05 22:36   421888   ----a-w-   c:\program files\QuickTime\QTTask.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Lexmark 2600 Series\\frun.exe"=
"c:\\Program Files\\Kodak\\Kodak EasyShare Software\\bin\\EasyShare.exe"=
"c:\\Program Files\\WinMX\\WinMX.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\WINDOWS\\SYSTEM32\\lxdncoms.exe"=
"c:\\Program Files\\Lexmark 2600 Series\\lxdnmon.exe"=
"c:\\WINDOWS\\SYSTEM32\\SPOOL\\DRIVERS\\W32X86\\3\\lxdnpswx.exe"=
"c:\\WINDOWS\\SYSTEM32\\SPOOL\\DRIVERS\\W32X86\\3\\lxdnjswx.exe"=
"c:\\WINDOWS\\SYSTEM32\\SPOOL\\DRIVERS\\W32X86\\3\\lxdntime.exe"=
"c:\\Documents and Settings\\kgkight\\Application Data\\mjusbsp\\magicJack.exe"=
.
R0 BsStor;InCD Storage Helper Driver;c:\windows\SYSTEM32\DRIVERS\bsstor.sys [12/29/2003 9:20 PM 9344]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [4/6/2009 9:33 PM 136360]
R2 BsUDF;InCD UDF Driver;c:\windows\SYSTEM32\DRIVERS\bsudf.sys [12/29/2003 9:20 PM 441728]
R2 lxdn_device;lxdn_device;c:\windows\system32\lxdncoms.exe -service --> c:\windows\system32\lxdncoms.exe -service [?]
R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [11/3/2006 7:19 PM 13592]
S3 Bulk503;Chameleon Mega Digital Camera;
S3 ISO503;Chameleon Mega Video Camera;
S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys --> c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys [?]
S3 WLNR;WLNR;
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
getPlusHelper   REG_MULTI_SZ      getPlusHelper
.
Contents of the 'Scheduled Tasks' folder
.
2012-01-27 c:\windows\Tasks\fba_Daily Backup.job
- c:\program files\Softland\FBackup 4\fbaSchedStarter.exe [2010-04-16 15:56]
.
2012-01-27 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-04 00:20]
.
2012-01-27 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-215539009-2608142635-1263807789-1007.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-03-29 14:47]
.
2012-01-27 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-215539009-2608142635-1263807789-1009.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-03-29 14:47]
.
2012-01-25 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-215539009-2608142635-1263807789-1007.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-03-29 14:47]
.
2012-01-27 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-215539009-2608142635-1263807789-1009.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2011-03-29 14:47]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.startnow.com/?src=startpage&provider=Bing&provider_code=Z059&partner_id=308&product_id=435&affiliate_id=&channel=rjacs&toolbar_id=200&toolbar_version=2.0&install_country=US&install_date=20110711&user_guid=A99A4834047F4409A166CDC599103169&machine_id=f89d68ee8c1df510010bce427351505d&browser=IE&os=win&os_version=5.1-x86-SP3
uInternet Settings,ProxyOverride = <local>
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 207.69.188.186 207.69.188.187
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
DPF: {5D80A6D1-B500-47DA-82B8-EB9875F85B4D} - hxxp://dl.google.com/dl/desktop/nv/GoogleGadgetPluginIEWin.cab
DPF: {BC0AE9E6-E549-4554-A222-EA083A894683} - hxxp://a01-b01.mypicturetown.com/P2PwebCmdController/x/Upld_47.CAB
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-44258985.sys
AddRemove-StartNow Toolbar - c:\program files\StartNow Toolbar\StartNowToolbarUninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-27 13:41
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ... 
.
scanning hidden autostart entries ...
.
scanning hidden files ... 
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(3008)
c:\windows\system32\WININET.dll
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCR80.dll
c:\program files\Windows Desktop Search\deskbar.dll
c:\program files\Windows Desktop Search\en-us\dbres.dll.mui
c:\program files\Windows Desktop Search\dbres.dll
c:\program files\Windows Desktop Search\wordwheel.dll
c:\program files\Windows Desktop Search\en-us\msnlExtRes.dll.mui
c:\program files\Windows Desktop Search\msnlExtRes.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\mshtml.dll
c:\windows\system32\msls31.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\lxdncoms.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\windows\system32\SearchIndexer.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\SearchProtocolHost.exe
c:\windows\StartupMonitor.exe
c:\windows\system32\SearchFilterHost.exe
.
**************************************************************************
.
Completion time: 2012-01-27  13:55:10 - machine was rebooted
ComboFix-quarantined-files.txt  2012-01-27 18:55
.
Pre-Run: 17,814,896,640 bytes free
Post-Run: 18,920,599,552 bytes free
.
- - End Of File - - DACF62B4833F338B9F53146FA43CB4DA
Logged
« Reply #13 on: January 27, 2012, 18:13:35 »
jerky Offline
Jr. Member

WWW 		**

Karma: 0
Posts: 64
Most of the problems appear to be gone...my Active Desktop has been restored and I can now connect to Google and MSN (which I could not before)...also have not had any further freeze ups or messages about "low virtual memory"....Many thanks for your efforts on my behalf.
Logged
« Reply #14 on: January 28, 2012, 08:01:45 »
dvk01 Offline
Administrator WWW
Karma: 6
Posts: 308
A little bit of clearing up still to do

Download the attached CFScript.txt  and save it to your  desktop ( click on the link underneath this post & if you are using internet explorer when the "File download" pop up comes press SAVE and choose desktop  in the list of selections in that window & press save)

Disable any antivirus/antimalware/firewall realtime protection or script blocking in the same way you did previously before running combofix & remember to re-enable it when it has finished

Close any open browsers
Then drag the CFScript.txt into the ComboFix.exe  or renamed combofix icon as shown in the screenshot below.

 



 

This will start ComboFix again.  It may ask to reboot.  Post the contents of Combofix.txt in your next reply .


Note: these instructions and script were created specifically for this user.  If you are not this user, do NOT follow these instructions or use this script as it could damage the workings of your system and will not fix your problem. If you have a similar problem start your own topic in the malware fixing forum
Logged
Derek
Microsoft MVP/Consumer Security
The Spykiller | Security and Privacy | Hedgehog Rescue
 
Pages: [1] 2   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by SMF 1.1.18 | SMF © 2013, Simple Machines Page created in 0.394 seconds with 20 queries.