Jump to content


Photo
- - - - -

malware


  • This topic is locked This topic is locked
19 replies to this topic

#1 MarkThaHeat

MarkThaHeat

    New Member

  • Members
  • Pip
  • 20 posts

Posted 28 December 2011 - 09:59 AM

Good Afternoon ,


During times of heavy resource consumption when playing games , my PC has inconsiderable heavy delays to the point where it is completely unplayable. I know its not a hardware issue as my PC meets and exceeds the specifications and I have played these same titles previously without any problems. I have had this issue before and detected a Trojan that was removed and everything was back to functioning normal once again. This instance I have ran multiple virus sweeps with Malware Bytes , AVG , MSSE etc. all to no avail. I then ran a virus scan online using Trend Micro and found an infection of four Trojans by the name of " TROJ SPNR.03K411 (2) , TROJ SPNR.03JT11 , TROJ SPNR.08JR11 " . Following the removal of these infections the problem still persisted which has me leading to think there is some sort of hidden process or there are remnants left from the previous infection that wasn't completely removed. Any help on this matter would be greatly appreciated.

Thank You.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_29
Run by TwenTY20zOfHazE at 16:44:17 on 2011-12-25
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2037.1054 [GMT -5:00]
.
AV: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
FW: ZoneAlarm Free Firewall *Enabled*
.
============== Running Processes ===============
.
C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Advanced System Optimizer 3\ASO3DefragSrv.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Blaze Media Pro\NMSAccess32.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\AVG\AVG10\avgnsx.exe
C:\Program Files\AVG\AVG10\avgemcx.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
svchost.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\9.0.1\ToolbarUpdater.exe
C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\AVG\AVG10\avgtray.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Logitech\Gaming Software\LWEMon.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\PeerGuardian2\pg2.exe
C:\PROGRA~1\AVG\AVG10\avgrsx.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
mStart Page = about:blank
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
uURLSearchHooks: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - c:\program files\vuze_remote\prxtbVuze.dll
mURLSearchHooks: H - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg10\avgssie.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SearchHelper.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~2\office14\GROOVEEX.DLL
BHO: ZoneAlarm Security Engine Registrar: {8a4a36c2-0535-4d2c-bd3d-496cb7eed6e3} - c:\program files\checkpoint\zaforcefield\trustchecker\bin\TrustCheckerIEPlugin.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: ZoneAlarm Security Toolbar: {91da5e8a-3318-4f8c-b67e-5964de3ab546} - c:\program files\zonealarm_security\prxtbZone.dll
BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\9.0.0.18\AVG Secure Search_toolbar.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7018.1622\swg.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\progra~1\micros~2\office14\URLREDIR.DLL
BHO: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - c:\program files\vuze_remote\prxtbVuze.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - c:\program files\vuze_remote\prxtbVuze.dll
TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll
TB: DAEMON Tools Toolbar: {32099aac-c132-4136-9e9a-4e364a424e17} - c:\program files\daemon tools toolbar\DTToolbar.dll
TB: ZoneAlarm Security Toolbar: {91da5e8a-3318-4f8c-b67e-5964de3ab546} - c:\program files\zonealarm_security\prxtbZone.dll
TB: ZoneAlarm Security Engine: {ee2ac4e5-b0b0-4ec6-88a9-bca1a32ab107} - c:\program files\checkpoint\zaforcefield\trustchecker\bin\TrustCheckerIEPlugin.dll
TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\9.0.0.18\AVG Secure Search_toolbar.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [PeerGuardian] c:\program files\peerguardian2\pg2.exe
uRun: [Aim] "c:\program files\aim7\aim.exe" /d locale=en-US
uRun: [GBMPro8Agent] c:\program files\genie-soft\gbmpro8\GBMAgent.exe
mRun: [ehTray] c:\windows\ehome\ehtray.exe
mRun: [NUSB3MON] "c:\program files\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [AVG_TRAY] c:\program files\avg\avg10\avgtray.exe
mRun: [itype] "c:\program files\microsoft intellitype pro\itype.exe"
mRun: [PWRISOVM.EXE] c:\program files\poweriso\PWRISOVM.EXE
mRun: [WinampAgent] "c:\program files\winamp\winampa.exe"
mRun: [GBMPro8Agent] c:\program files\genie-soft\gbmpro8\GBMAgent.exe
mRun: [Start WingMan Profiler] c:\program files\logitech\gaming software\LWEMon.exe /noui
mRun: [IMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
mRun: [IMEKRMIG6.1] c:\windows\ime\imkr6_1\IMEKRMIG.EXE
mRun: [MSPY2002] c:\windows\system32\ime\pintlgnt\ImScInst.exe /SYNC
mRun: [PHIME2002ASync] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /SYNC
mRun: [PHIME2002A] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /IMEName
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [RIMBBLaunchAgent.exe] c:\program files\common files\research in motion\usb drivers\RIMBBLaunchAgent.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Live Update 5] c:\program files\msi\live update 5\LU5.exe /reminder
mRun: [ISW] c:\program files\checkpoint\zaforcefield\ForceField.exe /icon="hidden"
mRun: [ZoneAlarm] "c:\program files\checkpoint\zonealarm\zatray.exe"
mRun: [vProt] "c:\program files\avg secure search\vprot.exe"
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet
mRun: [SystemProtector] "c:\program files\advanced system optimizer 3\SystemProtector.exe" /autorun
mRunOnce: [SymInstallStub] c:\windows\system32\adobe\shockwave 11\SymInstallStub.exe /partnerid=adobe /productlist=nss /staging=false /delay=5 /lang=English /desktopshortcut=1 /startmenushortcut=1 /tasktries=1
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\micros~2\office14\ONBttnIE.dll/105
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1306591376061
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.1.1 68.237.161.12
TCP: Interfaces\{A402117F-F411-4574-AEEC-320E0932777F} : DhcpNameServer = 192.168.1.1 68.237.161.12
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg10\avgpp.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\9.0.1\ViProtocol.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~2\office14\GROOVEEX.DLL
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\twenty20zofhaze\application data\mozilla\firefox\profiles\4sk90nti.default\
FF - prefs.js: browser.search.defaulturl - hxxp://aim.search.aol.com/aol/search?query={searchTerms}&invocationType=tb50-ff-aim-chromesbox-en-us&tb_uuid=20100324223133512&tb_oid=24-03-2010&tb_mrud=29-05-2011
FF - prefs.js: browser.search.selectedEngine - AVG Secure Search
FF - prefs.js: browser.startup.homepage - hxxps://www.google.com/webhp?hl=en&output=html&nomo=1
FF - prefs.js: keyword.URL - hxxp://slirsredirect.search.aol.com/redirector/sredir?sredir=2706&invocationType=tb50-ff-aim-ab-en-us&query=
FF - plugin: c:\documents and settings\twenty20zofhaze\application data\mozilla\firefox\profiles\4sk90nti.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\plugins\npqscan.dll
FF - plugin: c:\documents and settings\twenty20zofhaze\local settings\application data\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\progra~1\micros~2\office14\NPAUTHZ.DLL
FF - plugin: c:\progra~1\micros~2\office14\NPSPWRAP.DLL
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\checkpoint\zaforcefield\trustchecker\bin\npFFApi.dll
FF - plugin: c:\program files\common files\research in motion\bbwebsllauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60831.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnu.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnupdater2.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll
FF - plugin: c:\program files\nos\bin\np_gp.dll
FF - plugin: c:\program files\veetle\player\npvlc.dll
FF - plugin: c:\program files\veetle\plugins\npVeetle.dll
FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.protocol-handler.warn-external.dnupdate - false);user_pref(network.protocol-handler.warn-external.dnupdate, false
FF - user.js: browser.sessionstore.resume_from_crash - false
FF - user.js: network.protocol-handler.warn-external.dnupdate - false);user_pref(network.protocol-handler.warn-external.dnupdate, false);user_pref(network.protocol-handler.warn-external.dnupdate, false);user_pref(network.protocol-handler.warn-external.dnupdate, false
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2011-2-22 22992]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-3-16 32592]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-1-7 248656]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-3-1 34896]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-4-4 297168]
R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2010-10-24 165648]
R1 MpKsl590d8685;MpKsl590d8685;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{abd6fe1f-103e-4732-9247-89ea9455e346}\MpKsl590d8685.sys [2011-12-25 29904]
R1 MpKsl74feb407;MpKsl74feb407;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{abd6fe1f-103e-4732-9247-89ea9455e346}\MpKsl74feb407.sys [2011-12-25 29904]
R1 Vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2011-11-9 525840]
R2 ASO3DiskOptimizer;ASO3DiskOptimizer;c:\program files\advanced system optimizer 3\ASO3DefragSrv.exe [2011-5-28 238824]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg10\identity protection\agent\bin\AVGIDSAgent.exe [2011-8-18 7390560]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg10\avgwdsvc.exe [2011-2-8 269520]
R2 ISWKL;ZoneAlarm Toolbar ISWKL;c:\program files\checkpoint\zaforcefield\ISWKL.sys [2011-11-3 27016]
R2 IswSvc;ZoneAlarm Toolbar IswSvc;c:\program files\checkpoint\zaforcefield\ISWSVC.exe [2011-11-3 497280]
R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia updatus\daemonu.exe [2011-5-28 2253120]
R2 vsmon;TrueVector Internet Monitor;c:\program files\checkpoint\zonealarm\vsmon.exe -service --> c:\program files\checkpoint\zonealarm\vsmon.exe -service [?]
R2 vToolbarUpdater;vToolbarUpdater;c:\program files\common files\avg secure search\vtoolbarupdater\9.0.1\ToolbarUpdater.exe [2011-12-8 855904]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2011-4-14 134480]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2011-2-10 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2011-2-10 27216]
R3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\drivers\dc3d.sys [2011-5-28 45472]
R3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507;c:\program files\msi\live update 5\msibios32_100507.sys [2011-11-6 25912]
R3 NTIOLib_1_0_4;NTIOLib_1_0_4;c:\program files\msi\live update 5\NTIOLib.sys [2011-11-6 7680]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2010-12-10 62336]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2010-12-10 141440]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\drivers\tap0901t.sys [2011-5-28 27136]
S0 TfFsMon;TfFsMon;c:\windows\system32\drivers\tffsmon.sys --> c:\windows\system32\drivers\TfFsMon.sys [?]
S0 TFSysMon;TfSysMon;c:\windows\system32\drivers\tfsysmon.sys --> c:\windows\system32\drivers\TfSysMon.sys [?]
S1 7989609drv;7989609drv;c:\windows\system32\drivers\7989609drv.sys --> c:\windows\system32\drivers\7989609drv.sys [?]
S1 MpKsl0598a10d;MpKsl0598a10d;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{eae906b5-58ab-460f-aa5b-7a1a67fdc9ae}\mpksl0598a10d.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{eae906b5-58ab-460f-aa5b-7a1a67fdc9ae}\MpKsl0598a10d.sys [?]
S1 MpKsl0a3872f4;MpKsl0a3872f4;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb7c8397-dc9b-40ed-a1d7-eac2066089ad}\mpksl0a3872f4.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb7c8397-dc9b-40ed-a1d7-eac2066089ad}\MpKsl0a3872f4.sys [?]
S1 MpKsl10b6fe46;MpKsl10b6fe46;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{eae906b5-58ab-460f-aa5b-7a1a67fdc9ae}\mpksl10b6fe46.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{eae906b5-58ab-460f-aa5b-7a1a67fdc9ae}\MpKsl10b6fe46.sys [?]
S1 MpKsl1297e534;MpKsl1297e534;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c9880e43-070c-4075-80f5-97844f40c3c6}\mpksl1297e534.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c9880e43-070c-4075-80f5-97844f40c3c6}\MpKsl1297e534.sys [?]
S1 MpKsl19bced5e;MpKsl19bced5e;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{891e801f-aeae-47c5-8ca9-af4a91242c91}\mpksl19bced5e.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{891e801f-aeae-47c5-8ca9-af4a91242c91}\MpKsl19bced5e.sys [?]
S1 MpKsl2314177c;MpKsl2314177c;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{edfd08a2-f6cc-4d4e-9330-960bc0a82a31}\mpksl2314177c.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{edfd08a2-f6cc-4d4e-9330-960bc0a82a31}\MpKsl2314177c.sys [?]
S1 MpKsl23f3f158;MpKsl23f3f158;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{87c61ea8-c2e1-4a7a-958e-779490a34fb4}\mpksl23f3f158.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{87c61ea8-c2e1-4a7a-958e-779490a34fb4}\MpKsl23f3f158.sys [?]
S1 MpKsl25a56b84;MpKsl25a56b84;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5c1a6bf7-68a9-4c4d-bff8-f6560b46968f}\mpksl25a56b84.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5c1a6bf7-68a9-4c4d-bff8-f6560b46968f}\MpKsl25a56b84.sys [?]
S1 MpKsl27379ed7;MpKsl27379ed7;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb3c2939-f561-46d1-b62a-773ad427ec77}\mpksl27379ed7.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb3c2939-f561-46d1-b62a-773ad427ec77}\MpKsl27379ed7.sys [?]
S1 MpKsl2842aac3;MpKsl2842aac3;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4c1607df-6fa5-4a9e-8d2a-6df1801047bb}\mpksl2842aac3.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4c1607df-6fa5-4a9e-8d2a-6df1801047bb}\MpKsl2842aac3.sys [?]
S1 MpKsl2b0bdbc4;MpKsl2b0bdbc4;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb7c8397-dc9b-40ed-a1d7-eac2066089ad}\mpksl2b0bdbc4.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb7c8397-dc9b-40ed-a1d7-eac2066089ad}\MpKsl2b0bdbc4.sys [?]
S1 MpKsl2d47d129;MpKsl2d47d129;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c9880e43-070c-4075-80f5-97844f40c3c6}\mpksl2d47d129.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c9880e43-070c-4075-80f5-97844f40c3c6}\MpKsl2d47d129.sys [?]
S1 MpKsl3305eb99;MpKsl3305eb99;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{e20b495d-b1bc-4db2-a1b7-87dedda82b90}\mpksl3305eb99.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{e20b495d-b1bc-4db2-a1b7-87dedda82b90}\MpKsl3305eb99.sys [?]
S1 MpKsl3401f868;MpKsl3401f868;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{e20b495d-b1bc-4db2-a1b7-87dedda82b90}\mpksl3401f868.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{e20b495d-b1bc-4db2-a1b7-87dedda82b90}\MpKsl3401f868.sys [?]
S1 MpKsl347efce5;MpKsl347efce5;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb7c8397-dc9b-40ed-a1d7-eac2066089ad}\mpksl347efce5.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fb7c8397-dc9b-40ed-a1d7-eac2066089ad}\MpKsl347efce5.sys [?]
S1 MpKsl34a59b0e;MpKsl34a59b0e;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{95edbc0c-acba-4f8e-98dd-8821c823adba}\mpksl34a59b0e.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{95edbc0c-acba-4f8e-98dd-8821c823adba}\MpKsl34a59b0e.sys [?]
S1 MpKsl3c5c4e0a;MpKsl3c5c4e0a;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{890ade05-7f22-4fff-ae1c-dd10b33ef1ac}\mpksl3c5c4e0a.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{890ade05-7f22-4fff-ae1c-dd10b33ef1ac}\MpKsl3c5c4e0a.sys [?]
S1 MpKsl3de503e5;MpKsl3de503e5;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{32a02c1b-1e40-4b3b-baf9-a54e762104de}\mpksl3de503e5.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{32a02c1b-1e40-4b3b-baf9-a54e762104de}\MpKsl3de503e5.sys [?]
S1 MpKsl43574dee;MpKsl43574dee;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{87c61ea8-c2e1-4a7a-958e-779490a34fb4}\mpksl43574dee.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{87c61ea8-c2e1-4a7a-958e-779490a34fb4}\MpKsl43574dee.sys [?]
S1 MpKsl4468f080;MpKsl4468f080;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f5622473-d12d-4cac-aeb7-5c859744bbdd}\mpksl4468f080.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f5622473-d12d-4cac-aeb7-5c859744bbdd}\MpKsl4468f080.sys [?]
S1 MpKsl44e04ee3;MpKsl44e04ee3;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{edfd08a2-f6cc-4d4e-9330-960bc0a82a31}\mpksl44e04ee3.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{edfd08a2-f6cc-4d4e-9330-960bc0a82a31}\MpKsl44e04ee3.sys [?]
S1 MpKsl45468207;MpKsl45468207;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{468f0a69-3ce1-4325-bb9c-db4141ddf25e}\mpksl45468207.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{468f0a69-3ce1-4325-bb9c-db4141ddf25e}\MpKsl45468207.sys [?]
S1 MpKsl4871fb62;MpKsl4871fb62;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7e3d015f-ad54-4339-a9c4-6ed385b35861}\mpksl4871fb62.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7e3d015f-ad54-4339-a9c4-6ed385b35861}\MpKsl4871fb62.sys [?]
S1 MpKsl49c4bc59;MpKsl49c4bc59;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5c1a6bf7-68a9-4c4d-bff8-f6560b46968f}\mpksl49c4bc59.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5c1a6bf7-68a9-4c4d-bff8-f6560b46968f}\MpKsl49c4bc59.sys [?]
S1 MpKsl4a3a8a5a;MpKsl4a3a8a5a;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5c1a6bf7-68a9-4c4d-bff8-f6560b46968f}\mpksl4a3a8a5a.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5c1a6bf7-68a9-4c4d-bff8-f6560b46968f}\MpKsl4a3a8a5a.sys [?]
S1 MpKsl4c6eb6a3;MpKsl4c6eb6a3;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{de3293ad-02d7-49c9-bf75-cd825d33a55d}\mpksl4c6eb6a3.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{de3293ad-02d7-49c9-bf75-cd825d33a55d}\MpKsl4c6eb6a3.sys [?]
S1 MpKsl4e6ef89f;MpKsl4e6ef89f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b41d6da1-8ccb-40c4-ab05-35448374a70e}\mpksl4e6ef89f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b41d6da1-8ccb-40c4-ab05-35448374a70e}\MpKsl4e6ef89f.sys [?]
S1 MpKsl4eecc878;MpKsl4eecc878;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{95edbc0c-acba-4f8e-98dd-8821c823adba}\mpksl4eecc878.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{95edbc0c-acba-4f8e-98dd-8821c823adba}\MpKsl4eecc878.sys [?]
S1 MpKsl519b7ddb;MpKsl519b7ddb;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fa8bd3b6-e388-4b27-8593-b324d9b85c4b}\mpksl519b7ddb.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fa8bd3b6-e388-4b27-8593-b324d9b85c4b}\MpKsl519b7ddb.sys [?]
S1 MpKsl51c7791d;MpKsl51c7791d;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5d4c9958-30b4-434c-af65-f0d3fff4b5d2}\mpksl51c7791d.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5d4c9958-30b4-434c-af65-f0d3fff4b5d2}\MpKsl51c7791d.sys [?]
S1 MpKsl51f5c93a;MpKsl51f5c93a;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{2ef02a97-a5c8-442e-a741-5503e0da2741}\mpksl51f5c93a.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{2ef02a97-a5c8-442e-a741-5503e0da2741}\MpKsl51f5c93a.sys [?]
S1 MpKsl54a50c22;MpKsl54a50c22;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7889cd4e-555f-4500-a5b1-3903174d463f}\mpksl54a50c22.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7889cd4e-555f-4500-a5b1-3903174d463f}\MpKsl54a50c22.sys [?]
S1 MpKsl5ba98317;MpKsl5ba98317;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5c1a6bf7-68a9-4c4d-bff8-f6560b46968f}\mpksl5ba98317.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5c1a6bf7-68a9-4c4d-bff8-f6560b46968f}\MpKsl5ba98317.sys [?]
S1 MpKsl6149e9a0;MpKsl6149e9a0;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{1b5f96d2-7ce8-4c65-ac9d-96c41a5593ce}\mpksl6149e9a0.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{1b5f96d2-7ce8-4c65-ac9d-96c41a5593ce}\MpKsl6149e9a0.sys [?]
S1 MpKsl64e9dc04;MpKsl64e9dc04;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{eae906b5-58ab-460f-aa5b-7a1a67fdc9ae}\mpksl64e9dc04.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{eae906b5-58ab-460f-aa5b-7a1a67fdc9ae}\MpKsl64e9dc04.sys [?]
S1 MpKsl65dd8335;MpKsl65dd8335;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5ca35170-c2f8-4507-bab4-34681d48d266}\mpksl65dd8335.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5ca35170-c2f8-4507-bab4-34681d48d266}\MpKsl65dd8335.sys [?]
S1 MpKsl704bf366;MpKsl704bf366;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{52bcf8eb-9420-4295-b9f5-dbd3447b8a23}\mpksl704bf366.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{52bcf8eb-9420-4295-b9f5-dbd3447b8a23}\MpKsl704bf366.sys [?]
S1 MpKsl708a3b9b;MpKsl708a3b9b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{95edbc0c-acba-4f8e-98dd-8821c823adba}\mpksl708a3b9b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{95edbc0c-acba-4f8e-98dd-8821c823adba}\MpKsl708a3b9b.sys [?]
S1 MpKsl728aa061;MpKsl728aa061;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b00a444c-c56b-49df-b472-75d7fc88ea57}\mpksl728aa061.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b00a444c-c56b-49df-b472-75d7fc88ea57}\MpKsl728aa061.sys [?]
S1 MpKsl73969a5c;MpKsl73969a5c;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f8a183db-aa09-4e2e-bba3-02e0a29d13a9}\mpksl73969a5c.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f8a183db-aa09-4e2e-bba3-02e0a29d13a9}\MpKsl73969a5c.sys [?]
S1 MpKsl73c3bd66;MpKsl73c3bd66;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fd39350d-5a7a-4520-b441-3de74d3b3db8}\mpksl73c3bd66.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fd39350d-5a7a-4520-b441-3de74d3b3db8}\MpKsl73c3bd66.sys [?]
S1 MpKsl73d9b3b4;MpKsl73d9b3b4;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002796d-ec16-4073-9ac6-f7cdc83448aa}\mpksl73d9b3b4.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002796d-ec16-4073-9ac6-f7cdc83448aa}\MpKsl73d9b3b4.sys [?]
S1 MpKsl7bd7e6a9;MpKsl7bd7e6a9;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d9f4f46b-fd9a-4d2e-af35-a4bb6c244780}\mpksl7bd7e6a9.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d9f4f46b-fd9a-4d2e-af35-a4bb6c244780}\MpKsl7bd7e6a9.sys [?]
S1 MpKsl7c638330;MpKsl7c638330;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7e3d015f-ad54-4339-a9c4-6ed385b35861}\mpksl7c638330.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7e3d015f-ad54-4339-a9c4-6ed385b35861}\MpKsl7c638330.sys [?]
S1 MpKsl7e40de05;MpKsl7e40de05;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{de3293ad-02d7-49c9-bf75-cd825d33a55d}\mpksl7e40de05.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{de3293ad-02d7-49c9-bf75-cd825d33a55d}\MpKsl7e40de05.sys [?]
S1 MpKsl80c9917e;MpKsl80c9917e;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5ca35170-c2f8-4507-bab4-34681d48d266}\mpksl80c9917e.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5ca35170-c2f8-4507-bab4-34681d48d266}\MpKsl80c9917e.sys [?]
S1 MpKsl83a72b0e;MpKsl83a72b0e;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{38739d11-7db6-4ccb-86ad-407d27cc9396}\mpksl83a72b0e.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{38739d11-7db6-4ccb-86ad-407d27cc9396}\MpKsl83a72b0e.sys [?]
S1 MpKsl84b89d5d;MpKsl84b89d5d;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5fee835f-0a76-4131-a4ed-d465efef220a}\mpksl84b89d5d.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5fee835f-0a76-4131-a4ed-d465efef220a}\MpKsl84b89d5d.sys [?]
S1 MpKsl85f9f263;MpKsl85f9f263;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f2892512-8826-4155-8fd9-4d2068558df0}\mpksl85f9f263.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f2892512-8826-4155-8fd9-4d2068558df0}\MpKsl85f9f263.sys [?]
S1 MpKsl865578ff;MpKsl865578ff;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b9652e93-00e8-46a6-80c4-1082fe1f1c98}\mpksl865578ff.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b9652e93-00e8-46a6-80c4-1082fe1f1c98}\MpKsl865578ff.sys [?]
S1 MpKsl92607528;MpKsl92607528;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{468f0a69-3ce1-4325-bb9c-db4141ddf25e}\mpksl92607528.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{468f0a69-3ce1-4325-bb9c-db4141ddf25e}\MpKsl92607528.sys [?]
S1 MpKsl9ad6e6b2;MpKsl9ad6e6b2;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{0b140760-c8fe-4780-99bf-7b8f4c7ad4e7}\mpksl9ad6e6b2.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{0b140760-c8fe-4780-99bf-7b8f4c7ad4e7}\MpKsl9ad6e6b2.sys [?]
S1 MpKsl9d79ddd9;MpKsl9d79ddd9;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{1b3c04cb-3b3a-4291-b12e-0fda486a8108}\mpksl9d79ddd9.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{1b3c04cb-3b3a-4291-b12e-0fda486a8108}\MpKsl9d79ddd9.sys [?]
S1 MpKsl9de07d11;MpKsl9de07d11;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f8eea8cf-b39e-4e27-8685-cd7a0a3e47f9}\mpksl9de07d11.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f8eea8cf-b39e-4e27-8685-cd7a0a3e47f9}\MpKsl9de07d11.sys [?]
S1 MpKsla0713dbf;MpKsla0713dbf;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4c1607df-6fa5-4a9e-8d2a-6df1801047bb}\mpksla0713dbf.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{4c1607df-6fa5-4a9e-8d2a-6df1801047bb}\MpKsla0713dbf.sys [?]
S1 MpKsla0ed5967;MpKsla0ed5967;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f6482d8d-6f2a-4744-9fa2-148a40e4b195}\mpksla0ed5967.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f6482d8d-6f2a-4744-9fa2-148a40e4b195}\MpKsla0ed5967.sys [?]
S1 MpKsla225631e;MpKsla225631e;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8f387a42-433c-4364-855f-0a3726046aa4}\mpksla225631e.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8f387a42-433c-4364-855f-0a3726046aa4}\MpKsla225631e.sys [?]
S1 MpKsla74a3746;MpKsla74a3746;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{468f0a69-3ce1-4325-bb9c-db4141ddf25e}\mpksla74a3746.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{468f0a69-3ce1-4325-bb9c-db4141ddf25e}\MpKsla74a3746.sys [?]
S1 MpKslad9d4725;MpKslad9d4725;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{32a02c1b-1e40-4b3b-baf9-a54e762104de}\mpkslad9d4725.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{32a02c1b-1e40-4b3b-baf9-a54e762104de}\MpKslad9d4725.sys [?]
S1 MpKslb5c5ca62;MpKslb5c5ca62;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d0829fed-2eb6-456d-906c-65b6fadabb9d}\mpkslb5c5ca62.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d0829fed-2eb6-456d-906c-65b6fadabb9d}\MpKslb5c5ca62.sys [?]
S1 MpKslb85d5af2;MpKslb85d5af2;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{30237fad-72fa-4d6f-a84c-176f6ad1eca5}\mpkslb85d5af2.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{30237fad-72fa-4d6f-a84c-176f6ad1eca5}\MpKslb85d5af2.sys [?]
S1 MpKslbb9f2aff;MpKslbb9f2aff;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a38244b1-4a96-498e-89ed-d215f973a886}\mpkslbb9f2aff.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a38244b1-4a96-498e-89ed-d215f973a886}\MpKslbb9f2aff.sys [?]
S1 MpKslbe6db7ad;MpKslbe6db7ad;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{05c039df-f59d-4b3c-827b-0ba08c93dca6}\mpkslbe6db7ad.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{05c039df-f59d-4b3c-827b-0ba08c93dca6}\MpKslbe6db7ad.sys [?]
S1 MpKslc0b8cde2;MpKslc0b8cde2;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{87213bf0-2d89-435c-9a41-4041bf1a1ae3}\mpkslc0b8cde2.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{87213bf0-2d89-435c-9a41-4041bf1a1ae3}\MpKslc0b8cde2.sys [?]
S1 MpKslc1d0872f;MpKslc1d0872f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{eae906b5-58ab-460f-aa5b-7a1a67fdc9ae}\mpkslc1d0872f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{eae906b5-58ab-460f-aa5b-7a1a67fdc9ae}\MpKslc1d0872f.sys [?]
S1 MpKslc89dbf09;MpKslc89dbf09;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{685e8400-b619-4030-ac08-e4d5a882b42b}\mpkslc89dbf09.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{685e8400-b619-4030-ac08-e4d5a882b42b}\MpKslc89dbf09.sys [?]
S1 MpKslcaa37dcb;MpKslcaa37dcb;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{6072bad3-11a9-4fc1-a56a-ee2dcc162447}\mpkslcaa37dcb.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{6072bad3-11a9-4fc1-a56a-ee2dcc162447}\MpKslcaa37dcb.sys [?]
S1 MpKslcdcbf57a;MpKslcdcbf57a;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{afd91ee5-b159-40ab-a252-1c8f15444805}\mpkslcdcbf57a.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{afd91ee5-b159-40ab-a252-1c8f15444805}\MpKslcdcbf57a.sys [?]
S1 MpKsld540f9b2;MpKsld540f9b2;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7e3d015f-ad54-4339-a9c4-6ed385b35861}\mpksld540f9b2.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7e3d015f-ad54-4339-a9c4-6ed385b35861}\MpKsld540f9b2.sys [?]
S1 MpKsld67133c7;MpKsld67133c7;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{993da9fd-e2d6-406b-9465-fd83adc88cb0}\mpksld67133c7.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{993da9fd-e2d6-406b-9465-fd83adc88cb0}\MpKsld67133c7.sys [?]
S1 MpKsld97aac3b;MpKsld97aac3b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3688b08d-7f7e-4361-953f-36d5d56065bb}\mpksld97aac3b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3688b08d-7f7e-4361-953f-36d5d56065bb}\MpKsld97aac3b.sys [?]
S1 MpKsldc293362;MpKsldc293362;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{13c0cfc5-66ec-42e7-a022-dcf48de6ab1a}\mpksldc293362.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{13c0cfc5-66ec-42e7-a022-dcf48de6ab1a}\MpKsldc293362.sys [?]
S1 MpKslddf25d39;MpKslddf25d39;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{52bcf8eb-9420-4295-b9f5-dbd3447b8a23}\mpkslddf25d39.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{52bcf8eb-9420-4295-b9f5-dbd3447b8a23}\MpKslddf25d39.sys [?]
S1 MpKsldea974db;MpKsldea974db;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{9ac02783-50a3-4be8-a949-26adfbe0f956}\mpksldea974db.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{9ac02783-50a3-4be8-a949-26adfbe0f956}\MpKsldea974db.sys [?]
S1 MpKsldeab5511;MpKsldeab5511;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{993da9fd-e2d6-406b-9465-fd83adc88cb0}\mpksldeab5511.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{993da9fd-e2d6-406b-9465-fd83adc88cb0}\MpKsldeab5511.sys [?]
S1 MpKsle654c836;MpKsle654c836;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8dc9948e-f69c-431d-8e2d-f8bae6585a68}\mpksle654c836.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8dc9948e-f69c-431d-8e2d-f8bae6585a68}\MpKsle654c836.sys [?]
S1 MpKslec570b94;MpKslec570b94;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3a559833-429e-4929-84cf-8b42b7e248d4}\mpkslec570b94.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3a559833-429e-4929-84cf-8b42b7e248d4}\MpKslec570b94.sys [?]
S1 MpKslf048c4a6;MpKslf048c4a6;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5ca35170-c2f8-4507-bab4-34681d48d266}\mpkslf048c4a6.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5ca35170-c2f8-4507-bab4-34681d48d266}\MpKslf048c4a6.sys [?]
S1 MpKslf8f898f7;MpKslf8f898f7;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f2892512-8826-4155-8fd9-4d2068558df0}\mpkslf8f898f7.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f2892512-8826-4155-8fd9-4d2068558df0}\MpKslf8f898f7.sys [?]
S1 MpKslf9a1e809;MpKslf9a1e809;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fa8bd3b6-e388-4b27-8593-b324d9b85c4b}\mpkslf9a1e809.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{fa8bd3b6-e388-4b27-8593-b324d9b85c4b}\MpKslf9a1e809.sys [?]
S1 MpKslfb2623eb;MpKslfb2623eb;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{e7e1e334-7aeb-425e-a4b9-1a734d08a01e}\mpkslfb2623eb.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{e7e1e334-7aeb-425e-a4b9-1a734d08a01e}\MpKslfb2623eb.sys [?]
S1 MpKslfb70c984;MpKslfb70c984;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5bbc80d5-416b-4f57-bdce-3e8a2396e30a}\mpkslfb70c984.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5bbc80d5-416b-4f57-bdce-3e8a2396e30a}\MpKslfb70c984.sys [?]
S1 MpKslfd1b6cf5;MpKslfd1b6cf5;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{de5ad70f-223b-4b92-bc90-d8cbeda6af6d}\mpkslfd1b6cf5.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{de5ad70f-223b-4b92-bc90-d8cbeda6af6d}\MpKslfd1b6cf5.sys [?]
S1 MpKslff244a6f;MpKslff244a6f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c06b90bd-baea-4940-b64f-21197138ad2e}\mpkslff244a6f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{c06b90bd-baea-4940-b64f-21197138ad2e}\MpKslff244a6f.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-5-28 135664]
S3 ADASPROT;SYSTWEAKASO;c:\program files\advanced system optimizer 3\adasprot32.sys [2011-5-28 6656]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2011-5-28 1691480]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg10\toolbar\ToolbarBroker.exe [2011-5-28 167264]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-5-28 135664]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\microsoft office\office14\GROOVE.EXE [2010-1-21 30963576]
S3 nosGetPlusHelper;getPlus® Helper 3004;c:\windows\system32\svchost.exe -k nosGetPlusHelper [2011-5-28 14336]
S3 osppsvc;Office Software Protection Platform;c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\OSPPSVC.EXE [2010-1-9 4640000]
S3 TfNetMon;TfNetMon;\??\c:\windows\system32\drivers\tfnetmon.sys --> c:\windows\system32\drivers\TfNetMon.sys [?]
S3 TunngleService;TunngleService;c:\program files\tunngle\TnglCtrl.exe [2011-5-28 751464]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2011-5-28 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S3 XoftSpyService;XoftSpyService;c:\program files\common files\xoftspyse\6\xoftspyservice.exe [2010-9-29 582424]
.
=============== Created Last 30 ================
.
2011-12-25 21:28:26 29904 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{abd6fe1f-103e-4732-9247-89ea9455e346}\MpKsl74feb407.sys
2011-12-25 21:09:55 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-12-25 07:14:44 29904 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{abd6fe1f-103e-4732-9247-89ea9455e346}\MpKsl590d8685.sys
2011-12-25 07:14:32 56200 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{abd6fe1f-103e-4732-9247-89ea9455e346}\offreg.dll
2011-12-25 07:14:27 6823496 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{abd6fe1f-103e-4732-9247-89ea9455e346}\mpengine.dll
2011-12-24 00:12:01 -------- d-sha-r- C:\cmdcons
2011-12-24 00:09:24 98816 ----a-w- c:\windows\sed.exe
2011-12-24 00:09:24 518144 ----a-w- c:\windows\SWREG.exe
2011-12-24 00:09:24 256000 ----a-w- c:\windows\PEV.exe
2011-12-24 00:09:24 208896 ----a-w- c:\windows\MBR.exe
2011-12-23 22:43:01 -------- d-----w- c:\program files\common files\ParetoLogic
2011-12-23 22:43:01 -------- d-----w- c:\documents and settings\all users\application data\ParetoLogic
2011-12-23 22:42:58 -------- d-----w- c:\program files\common files\XoftSpySE
2011-12-23 22:42:58 -------- d-----w- c:\documents and settings\all users\application data\XoftSpySE
2011-12-23 22:42:50 -------- d-----w- c:\program files\XoftSpySE6
2011-12-23 20:03:07 22032 ----a-w- c:\windows\DCEBoot.exe
2011-12-23 08:00:32 -------- d-----w- c:\program files\ESET
2011-12-22 19:49:42 -------- d-----w- c:\documents and settings\twenty20zofhaze\application data\QuickScan
2011-12-19 22:07:49 -------- d-----w- c:\documents and settings\twenty20zofhaze\application data\PCToolsFirewallPlus
2011-12-19 22:07:44 -------- d-----w- c:\documents and settings\twenty20zofhaze\application data\Spam Monitor
2011-12-18 18:34:21 -------- d--h--w- c:\windows\PIF
2011-12-09 23:11:59 -------- d-----w- c:\documents and settings\all users\application data\PC Tools
2011-12-09 03:37:01 -------- d-----w- c:\documents and settings\twenty20zofhaze\application data\AVG Secure Search
2011-12-08 21:33:50 -------- d-----w- c:\documents and settings\twenty20zofhaze\local settings\application data\mpress
2011-12-08 11:52:28 -------- d-----w- c:\documents and settings\all users\application data\AVG Secure Search
2011-12-08 11:52:21 -------- d-----w- c:\program files\common files\AVG Secure Search
2011-12-08 11:52:19 -------- d-----w- c:\program files\AVG Secure Search
2011-11-28 19:53:10 -------- d-----w- c:\documents and settings\twenty20zofhaze\local settings\application data\WB Games
2011-11-28 18:07:02 -------- d-----w- c:\documents and settings\all users\application data\RELOADED
2011-11-28 17:33:59 -------- d-----w- c:\program files\Snowblind Studios
.
==================== Find3M ====================
.
2011-12-24 08:55:56 285280 ----a-w- c:\windows\system32\nvdrsdb1.bin
2011-12-24 08:55:56 1 ----a-w- c:\windows\system32\nvdrssel.bin
2011-12-24 08:55:45 285280 ----a-w- c:\windows\system32\nvdrsdb0.bin
2011-12-23 21:55:07 114688 ----a-w- c:\windows\DUMP4e4e.tmp
2011-12-23 20:09:17 3292 ----a-w- c:\windows\system32\ASOROSet.bin
2011-12-02 18:00:59 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-23 13:25:32 1859584 ------w- c:\windows\system32\win32k.sys
2011-11-17 02:00:16 124712 ----a-w- c:\program files\steam_api.dll
2011-11-13 17:05:02 1752400 ----a-w- c:\program files\SkyrimLauncher.exe
2011-11-13 16:56:56 214016 ----a-w- c:\program files\binkw32.dll
2011-11-04 19:20:51 916992 ----a-w- c:\windows\system32\wininet.dll
2011-11-04 19:20:51 43520 ------w- c:\windows\system32\licmgr10.dll
2011-11-04 19:20:51 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-11-04 11:23:59 385024 ------w- c:\windows\system32\html.iec
2011-11-01 16:07:10 1288704 ----a-w- c:\windows\system32\ole32.dll
2011-10-28 05:31:48 33280 ------w- c:\windows\system32\csrsrv.dll
2011-10-25 13:37:08 2148864 ------w- c:\windows\system32\ntoskrnl.exe
2011-10-25 12:52:02 2027008 ------w- c:\windows\system32\ntkrnlpa.exe
2011-10-24 17:28:48 58696 ------w- c:\windows\system32\AOLParconLink.exe
2011-10-18 16:22:55 50425024 ------w- c:\program files\bf3.exe
2011-10-14 22:38:00 456192 ------w- c:\windows\system32\encdec.dll
2011-10-10 14:22:41 692736 ------w- c:\windows\system32\inetcomm.dll
2011-10-03 09:06:03 472808 ------w- c:\windows\system32\deployJava1.dll
2011-10-03 06:37:52 73728 ------w- c:\windows\system32\javacpl.cpl
2011-09-28 07:06:50 599040 ----a-w- c:\windows\system32\crypt32.dll
2009-12-27 22:40:30 2801683 ------w- c:\program files\BMP.exe
.
============= FINISH: 16:45:53.34 ===============

#2 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,137 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 29 December 2011 - 12:07 PM

Welcome to the forum.

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

Please download and run RogueKiller.
Choose 1 to scan the system
Post back the report.

MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#3 MarkThaHeat

MarkThaHeat

    New Member

  • Members
  • Pip
  • 20 posts

Posted 30 December 2011 - 05:55 PM

Good Afternoon ,

Thank you for the reply ....

Farbar Service Scanner
Ran by TwenTY20zOfHazE (administrator) on 30-12-2011 at 17:48:29
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Avgtdix(8) Gpc(6) IPSec(4) NetBT(5) PSched(7) Tcpip(3)
0x0A000000040000000100000002000000030000005A000000080000000500000006000000070000000A000000

**** End of log ****

RogueKiller V6.2.1 [12/28/2011] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo...13-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User: TwenTY20zOfHazE [Admin rights]
Mode: Scan -- Date : 12/30/2011 17:53:08

¤¤¤ Bad processes: 1 ¤¤¤
[SUSP PATH] ComboFix.exe -- C:\Documents and Settings\TwenTY20zOfHazE\Desktop\ComboFix.exe -> KILLED [TermProc]

¤¤¤ Registry Entries: 1 ¤¤¤
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver: [LOADED] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: +++++
--- User ---
[MBR] 30275c24501a2200e5d665993bef87bc
[BSP] 8ab19b39771ddc17ff0e4c4fcd044678 : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS [VISIBLE] Offset (sectors): 63 | Size: 250056 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: +++++
--- User ---
[MBR] 7084dba39dc439d522f93af6e868bd1b
[BSP] 00a2a4f5817293c65c24b47447ff76e5 : MBR Code unknown
Partition table:
0 - [XXXXXX] UNKNW [VISIBLE] Offset (sectors): 16065 | Size: 79982 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[1].txt >>
RKreport[1].txt

#4 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,137 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 30 December 2011 - 06:30 PM

C:\Documents and Settings\TwenTY20zOfHazE\Desktop\ComboFix.exe

I see you have ComboFix on the system, did you run it??
If so can you post the log.

MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#5 MarkThaHeat

MarkThaHeat

    New Member

  • Members
  • Pip
  • 20 posts

Posted 30 December 2011 - 11:47 PM

Yes I ran it twice now to no avail , here is the most recent log , I split it in more than one post because it was too long :

ComboFix 11-12-30.02 - TwenTY20zOfHazE 12/30/2011 21:17:39.2.4 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2037.1127 [GMT -5:00]
Running from: c:\documents and settings\TwenTY20zOfHazE\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
FW: ZoneAlarm Free Firewall *Enabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\AppPatch\Custom\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb
.
.
((((((((((((((((((((((((( Files Created from 2011-11-28 to 2011-12-31 )))))))))))))))))))))))))))))))
.
.
2011-12-30 23:25 . 2011-12-30 23:25 56200 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{0CA2E752-F939-4143-A140-017461DA7C17}\offreg.dll
2011-12-30 22:52 . 2011-12-30 22:52 111872 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2011-12-30 19:05 . 2011-11-21 10:47 6823496 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{0CA2E752-F939-4143-A140-017461DA7C17}\mpengine.dll
2011-12-29 07:21 . 2011-12-29 07:31 -------- d-----w- c:\program files\mmm
2011-12-29 07:21 . 2010-01-04 07:14 614912 ------w- c:\windows\eiunin21.exe
2011-12-29 01:07 . 2011-12-29 19:00 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2011-12-29 01:05 . 2009-01-25 18:14 15224 ----a-w- c:\windows\system32\sdnclean.exe
2011-12-29 01:04 . 2011-12-29 01:11 -------- d-----w- c:\program files\Spybot - Search & Destroy 2
2011-12-29 00:47 . 2011-12-29 00:47 -------- d-----w- c:\documents and settings\TwenTY20zOfHazE\Application Data\Avira
2011-12-29 00:45 . 2011-12-29 18:30 81984 ----a-w- c:\windows\system32\bdod.bin
2011-12-29 00:34 . 2011-12-29 00:59 -------- d-----w- c:\documents and settings\TwenTY20zOfHazE\Local Settings\Application Data\Comodo
2011-12-29 00:29 . 2011-12-29 00:59 -------- d-----w- c:\documents and settings\All Users\Application Data\CPA_VA
2011-12-29 00:20 . 2011-12-29 00:20 149272 ----a-w- c:\windows\system32\drivers\dwprot.sys
2011-12-29 00:17 . 2011-12-15 20:00 74640 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-12-29 00:17 . 2011-12-15 20:00 36000 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2011-12-29 00:17 . 2011-12-15 20:00 134856 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-12-29 00:17 . 2011-12-29 00:17 -------- d-----w- c:\program files\Avira
2011-12-29 00:17 . 2011-12-29 00:17 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2011-12-29 00:16 . 2011-12-29 00:16 -------- d-----w- c:\documents and settings\TwenTY20zOfHazE\Application Data\BitDefender
2011-12-29 00:16 . 2011-12-29 00:16 -------- d-----w- c:\documents and settings\All Users\Application Data\Comodo
2011-12-29 00:15 . 2011-12-29 01:00 -------- d-----w- c:\program files\Comodo
2011-12-29 00:14 . 2011-12-29 00:26 -------- d-----w- c:\documents and settings\All Users\Application Data\BitDefender
2011-12-29 00:14 . 2011-12-29 00:14 -------- d-----w- c:\program files\BitDefender
2011-12-29 00:12 . 2011-12-29 00:15 -------- d-----w- c:\program files\Common Files\BitDefender
2011-12-28 23:58 . 2011-12-28 23:58 -------- d-----w- c:\documents and settings\TwenTY20zOfHazE\Local Settings\Application Data\G DATA
2011-12-28 23:50 . 2011-12-29 00:44 -------- d-----w- c:\program files\Anti Trojan Elite
2011-12-28 23:32 . 2011-12-28 23:32 239168 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-12-28 01:05 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2011-12-26 08:41 . 2011-12-26 08:41 -------- d-----w- c:\documents and settings\TwenTY20zOfHazE\Application Data\f-secure
2011-12-26 08:41 . 2011-12-26 08:41 -------- d-----w- c:\documents and settings\All Users\Application Data\F-Secure
2011-12-25 23:10 . 2011-12-27 12:02 -------- d-----w- c:\program files\Common Files\Symantec Shared
2011-12-25 23:10 . 2011-12-25 23:22 -------- d-----w- c:\documents and settings\All Users\Application Data\Norton
2011-12-23 22:43 . 2011-12-23 22:43 -------- d-----w- c:\program files\Common Files\ParetoLogic
2011-12-23 22:43 . 2011-12-23 22:43 -------- d-----w- c:\documents and settings\All Users\Application Data\ParetoLogic
2011-12-23 22:42 . 2011-12-23 22:42 -------- d-----w- c:\program files\Common Files\XoftSpySE
2011-12-23 22:42 . 2011-12-23 22:42 -------- d-----w- c:\documents and settings\All Users\Application Data\XoftSpySE
2011-12-23 22:42 . 2011-12-23 22:43 -------- d-----w- c:\program files\XoftSpySE6
2011-12-23 20:03 . 2011-12-23 20:03 22032 ----a-w- c:\windows\DCEBoot.exe
2011-12-23 08:00 . 2011-12-23 08:00 -------- d-----w- c:\program files\ESET
2011-12-22 19:49 . 2011-12-22 19:49 -------- d-----w- c:\documents and settings\TwenTY20zOfHazE\Application Data\QuickScan
2011-12-19 22:07 . 2011-12-19 22:07 -------- d-----w- c:\documents and settings\TwenTY20zOfHazE\Application Data\PCToolsFirewallPlus
2011-12-19 22:07 . 2011-12-19 22:07 -------- d-----w- c:\documents and settings\TwenTY20zOfHazE\Application Data\Spam Monitor
2011-12-18 18:34 . 2011-12-18 18:34 -------- d--h--w- c:\windows\PIF
2011-12-09 23:11 . 2011-12-22 20:05 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Tools
2011-12-09 03:37 . 2011-12-09 03:37 -------- d-----w- c:\documents and settings\TwenTY20zOfHazE\Application Data\AVG Secure Search
2011-12-08 21:33 . 2011-12-08 21:52 -------- d-----w- c:\documents and settings\TwenTY20zOfHazE\Local Settings\Application Data\mpress
2011-12-08 11:52 . 2011-12-08 19:17 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG Secure Search
2011-12-08 11:52 . 2011-12-08 11:52 -------- d-----w- c:\program files\Common Files\AVG Secure Search
2011-12-08 11:52 . 2011-12-08 11:52 -------- d-----w- c:\program files\AVG Secure Search
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-12-29 00:45 . 2009-04-15 20:13 146312 ----a-w- c:\windows\system32\drivers\bdfm.sys
2011-12-29 00:21 . 2011-05-28 17:27 114688 ----a-w- c:\windows\DUMPad57.tmp
2011-12-23 21:55 . 2011-05-28 17:27 114688 ----a-w- c:\windows\DUMP4e4e.tmp
2011-12-02 18:00 . 2011-05-28 20:56 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-11-23 13:25 . 2011-05-28 17:21 1859584 ------w- c:\windows\system32\win32k.sys
2011-11-21 10:47 . 2011-05-30 08:43 6823496 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2011-11-17 02:00 . 2011-11-17 11:33 124712 ----a-w- c:\program files\steam_api.dll
2011-11-13 17:05 . 2011-11-13 17:12 1752400 ----a-w- c:\program files\SkyrimLauncher.exe
2011-11-13 16:56 . 2011-11-13 17:12 214016 ----a-w- c:\program files\binkw32.dll
2011-11-04 19:20 . 2011-05-28 17:21 916992 ----a-w- c:\windows\system32\wininet.dll
2011-11-04 19:20 . 2011-05-28 17:20 43520 ------w- c:\windows\system32\licmgr10.dll
2011-11-04 19:20 . 2011-05-28 17:19 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-11-04 11:23 . 2011-05-28 17:19 385024 ------w- c:\windows\system32\html.iec
2011-11-01 16:07 . 2011-05-28 17:21 1288704 ----a-w- c:\windows\system32\ole32.dll
2011-10-28 05:31 . 2011-05-28 17:19 33280 ------w- c:\windows\system32\csrsrv.dll
2011-10-25 13:37 . 2011-05-28 17:21 2148864 ------w- c:\windows\system32\ntoskrnl.exe
2011-10-25 12:52 . 2011-05-28 17:23 2027008 ------w- c:\windows\system32\ntkrnlpa.exe
2011-10-24 17:28 . 2011-10-24 17:32 58696 ------w- c:\windows\system32\AOLParconLink.exe
2011-10-18 16:22 . 2011-10-26 14:03 50425024 ------w- c:\program files\bf3.exe
2011-10-14 22:38 . 2011-05-28 17:19 456192 ------w- c:\windows\system32\encdec.dll
2011-10-10 14:22 . 2011-05-28 17:19 692736 ------w- c:\windows\system32\inetcomm.dll
2011-10-08 04:50 . 2011-10-26 17:25 919872 ----a-w- c:\windows\system32\nvdispco32.dll
2011-10-08 04:50 . 2011-10-26 17:25 877376 ----a-w- c:\windows\system32\nvgenco32.dll
2011-10-08 04:50 . 2011-05-28 21:00 65536 ----a-w- c:\windows\system32\OpenCL.dll
2011-10-08 04:50 . 2011-05-28 21:00 17956864 ----a-w- c:\windows\system32\nvoglnt.dll
2011-10-08 04:50 . 2011-05-28 21:00 5595136 ----a-w- c:\windows\system32\nvcuda.dll
2011-10-08 04:50 . 2011-05-28 21:00 2398016 ----a-w- c:\windows\system32\nvcuvid.dll
2011-10-08 04:50 . 2011-05-28 21:00 2099520 ----a-w- c:\windows\system32\nvcuvenc.dll
2011-10-08 04:50 . 2011-05-28 21:00 2449408 ----a-w- c:\windows\system32\nvapi.dll
2011-10-08 04:50 . 2011-05-28 21:00 17240064 ----a-w- c:\windows\system32\nvcompiler.dll
2011-10-08 04:50 . 2011-05-28 17:23 4226688 ----a-w- c:\windows\system32\nv4_disp.dll
2011-10-08 04:50 . 2011-05-28 17:22 12791488 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2011-10-08 04:50 . 2011-04-08 02:15 602432 ----a-w- c:\windows\system32\easyupdatusapiu.dll
2011-10-08 04:50 . 2011-04-08 02:15 54272 ----a-w- c:\windows\system32\nvwddi.dll
2011-10-08 04:50 . 2011-04-08 02:15 203072 ----a-w- c:\windows\system32\nvmctray.dll
2011-10-08 04:50 . 2011-04-08 02:15 16744256 ----a-w- c:\windows\system32\nvcpl.dll
2011-10-08 04:50 . 2011-04-08 02:15 298304 ----a-w- c:\windows\system32\nvsvc32.exe
2011-10-08 04:50 . 2011-04-08 02:15 220992 ----a-w- c:\windows\system32\nvcolor.exe
2011-10-03 09:06 . 2011-05-28 23:14 472808 ------w- c:\windows\system32\deployJava1.dll
2011-10-03 06:37 . 2011-05-28 23:14 73728 ------w- c:\windows\system32\javacpl.cpl
2009-12-27 22:40 . 2011-07-11 22:12 2801683 ------w- c:\program files\BMP.exe
2011-11-09 01:38 . 2011-10-01 15:44 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-12-24_00.25.33 )))))))))))))))))))))))))))))))))))))))))
.
- 2006-12-02 04:08 . 2006-12-02 04:08 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80KOR.dll
+ 2006-12-02 05:08 . 2006-12-02 05:08 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80KOR.dll
- 2006-12-02 04:08 . 2006-12-02 04:08 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80JPN.dll
+ 2006-12-02 05:08 . 2006-12-02 05:08 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80JPN.dll
- 2006-12-02 04:08 . 2006-12-02 04:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ITA.dll
+ 2006-12-02 05:08 . 2006-12-02 05:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ITA.dll
- 2006-12-02 04:08 . 2006-12-02 04:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80FRA.dll
+ 2006-12-02 05:08 . 2006-12-02 05:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80FRA.dll
- 2006-12-02 04:08 . 2006-12-02 04:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ESP.dll
+ 2006-12-02 05:08 . 2006-12-02 05:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ESP.dll
- 2006-12-02 04:08 . 2006-12-02 04:08 57344 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll
+ 2006-12-02 05:08 . 2006-12-02 05:08 57344 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll
+ 2006-12-02 05:08 . 2006-12-02 05:08 65536 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80DEU.dll
- 2006-12-02 04:08 . 2006-12-02 04:08 65536 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80DEU.dll
+ 2006-12-02 05:08 . 2006-12-02 05:08 45056 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHT.dll
- 2006-12-02 04:08 . 2006-12-02 04:08 45056 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHT.dll
+ 2006-12-02 05:08 . 2006-12-02 05:08 40960 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHS.dll
- 2006-12-02 04:08 . 2006-12-02 04:08 40960 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHS.dll
+ 2006-12-02 05:26 . 2006-12-02 05:26 57856 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll
- 2006-12-02 04:26 . 2006-12-02 04:26 57856 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll
- 2006-12-02 04:25 . 2006-12-02 04:25 69632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll
+ 2006-12-02 05:25 . 2006-12-02 05:25 69632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll
+ 2011-12-30 23:25 . 2011-12-30 23:25 16384 c:\windows\Temp\Perflib_Perfdata_d00.dat
+ 2011-06-05 18:48 . 2010-07-05 13:15 17272 c:\windows\system32\spmsg.dll
- 2011-06-05 18:48 . 2010-12-21 16:36 17272 c:\windows\system32\spmsg.dll
- 2004-10-28 07:52 . 2011-11-06 17:12 88662 c:\windows\system32\perfc009.dat
+ 2004-10-28 07:52 . 2011-12-29 19:05 88662 c:\windows\system32\perfc009.dat
+ 2002-01-05 08:38 . 2002-01-05 08:38 54784 c:\windows\system32\msvci70.dll
- 2002-01-05 11:38 . 2002-01-05 11:38 54784 c:\windows\system32\msvci70.dll
+ 2011-12-29 00:17 . 2010-06-17 19:14 28520 c:\windows\system32\drivers\ssmdrv.sys
+ 2004-10-28 08:24 . 2011-12-29 00:27 49152 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2004-10-28 08:24 . 2011-12-29 00:27 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2004-10-28 08:24 . 2011-12-21 21:56 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2011-12-29 00:29 . 2011-12-29 00:29 80048 c:\windows\system32\config\systemprofile\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
- 2004-10-28 08:24 . 2011-12-21 21:56 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2011-12-29 00:28 . 2011-12-29 00:27 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2011-06-01 22:49 . 2011-12-25 21:33 87901 c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
+ 2011-12-15 10:45 . 2011-12-15 10:45 86016 c:\windows\system32\Adobe\Shockwave 11\SwMenu.dll
+ 2011-12-15 10:29 . 2011-12-15 10:29 73408 c:\windows\system32\Adobe\Shockwave 11\gtapi.dll
- 2011-04-26 06:07 . 2011-04-26 06:07 73408 c:\windows\system32\Adobe\Shockwave 11\gtapi.dll
+ 2011-12-15 10:29 . 2011-12-15 10:29 64512 c:\windows\system32\Adobe\Shockwave 11\gcapi_dll.dll
- 2011-04-26 06:07 . 2011-04-26 06:07 64512 c:\windows\system32\Adobe\Shockwave 11\gcapi_dll.dll
+ 2011-12-15 10:46 . 2011-12-15 10:46 12800 c:\windows\system32\Adobe\Shockwave 11\DynaPlayer.dll
+ 2011-04-06 21:48 . 2011-04-06 21:48 11120 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
+ 2011-05-17 14:27 . 2011-05-17 14:27 44368 c:\windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll
- 2010-03-18 17:16 . 2010-03-18 17:16 44368 c:\windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 87408 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsFormsIntegration\v4.0_4.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
- 2011-10-14 16:31 . 2011-10-14 16:31 87408 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsFormsIntegration\v4.0_4.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
- 2011-10-14 16:31 . 2011-10-14 16:31 93024 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationTypes\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 93024 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationTypes\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
- 2011-10-14 16:31 . 2011-10-14 16:31 35688 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationProvider\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 35688 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationProvider\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 11120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
- 2011-10-14 16:31 . 2011-10-14 16:31 17784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Presentation\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Presentation.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 17784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Presentation\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Presentation.dll
- 2011-10-14 16:31 . 2011-10-14 16:31 58240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Input.Manipulations\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Input.Manipulations.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 58240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Input.Manipulations\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Input.Manipulations.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 37240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Channels\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Channels.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 37240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Channels\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Channels.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2011-10-14 16:30 . 2011-10-14 16:30 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2011-10-14 16:29 . 2011-10-14 16:29 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-12-25 21:34 . 2011-12-25 21:34 10134 c:\windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
+ 2011-12-29 00:17 . 2011-12-29 00:17 57344 c:\windows\Installer\{44B436FA-FB33-4B24-8AD1-D8C9A50474E9}\texticon.exe
+ 2011-12-29 00:17 . 2011-12-29 00:17 22486 c:\windows\Installer\{44B436FA-FB33-4B24-8AD1-D8C9A50474E9}\register_icon.exe
+ 2011-12-29 00:17 . 2011-12-29 00:17 32768 c:\windows\Installer\{44B436FA-FB33-4B24-8AD1-D8C9A50474E9}\maintenance_icon.exe
+ 2011-12-29 00:17 . 2011-12-29 00:17 61440 c:\windows\Installer\{44B436FA-FB33-4B24-8AD1-D8C9A50474E9}\helpicon.exe
+ 2011-12-28 01:40 . 2011-12-28 01:40 96768 c:\windows\assembly\NativeImages_v4.0.30319_32\UIAutomationProvider\1c177e9aa7a1661ddec16c2f9f30947c\UIAutomationProvider.ni.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 35328 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Pres#\e4f0e0d45a1739bad6cc96377c9dd7f2\System.Windows.Presentation.ni.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 71680 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Applicat#\385b56be2d617548e4b731dd050a1f32\System.Web.ApplicationServices.ni.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 82432 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\e08ecf530f270cd45c72318b67826cb1\System.ServiceModel.Channels.ni.dll
+ 2011-12-28 01:41 . 2011-12-28 01:41 78848 c:\windows\assembly\NativeImages_v4.0.30319_32\System.AddIn.Contra#\117b65133fc00228bc249d1c61c387ea\System.AddIn.Contract.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 11776 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualC\432eb09604ab71ee1aa4622bfbc4afee\Microsoft.VisualC.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 44544 c:\windows\assembly\NativeImages_v4.0.30319_32\Accessibility\06ac8d640d2dfa7d4bb23c03584304ef\Accessibility.ni.dll
+ 2011-12-28 01:29 . 2011-12-28 01:29 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\569ae3c239c7270b687996583ca97c28\UIAutomationProvider.ni.dll
- 2011-10-14 16:48 . 2011-10-14 16:48 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\569ae3c239c7270b687996583ca97c28\UIAutomationProvider.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\dae96db9fac82bbd377a769302c2e1e0\System.Windows.Presentation.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\dae96db9fac82bbd377a769302c2e1e0\System.Windows.Presentation.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\a54a122f1070ab71931dd9679ddd8e90\System.Web.DynamicData.Design.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\a54a122f1070ab71931dd9679ddd8e90\System.Web.DynamicData.Design.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\ac92806d5bd508eb25f1b4b73a36b101\System.ComponentModel.DataAnnotations.ni.dll
+ 2011-12-28 01:36 . 2011-12-28 01:36 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\ac92806d5bd508eb25f1b4b73a36b101\System.ComponentModel.DataAnnotations.ni.dll
+ 2011-12-28 01:36 . 2011-12-28 01:36 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\e6a9cd66d11a21776dbf425e8e28099c\System.AddIn.Contract.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\e6a9cd66d11a21776dbf425e8e28099c\System.AddIn.Contract.ni.dll
- 2011-10-14 16:45 . 2011-10-14 16:45 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\63a7dfb7d8e0a4d8d5dde7ff42227b78\PresentationFontCache.ni.exe
+ 2011-12-28 01:27 . 2011-12-28 01:27 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\63a7dfb7d8e0a4d8d5dde7ff42227b78\PresentationFontCache.ni.exe
+ 2011-12-28 01:27 . 2011-12-28 01:27 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\ec8a45a9155e7c64504ca87b3d3c498c\PresentationCFFRasterizer.ni.dll
- 2011-10-14 16:44 . 2011-10-14 16:44 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\ec8a45a9155e7c64504ca87b3d3c498c\PresentationCFFRasterizer.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 17920 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.WSMan.Run#\a615508098c5f4f5a34e89d22527c9de\Microsoft.WSMan.Runtime.ni.dll
+ 2011-12-28 01:36 . 2011-12-28 01:36 17920 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.WSMan.Run#\a615508098c5f4f5a34e89d22527c9de\Microsoft.WSMan.Runtime.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\eaa8d72317e5b8047e413939cc71ffba\Microsoft.Vsa.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\eaa8d72317e5b8047e413939cc71ffba\Microsoft.Vsa.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\aefe683674c97a998f4e908c1a7ee7c6\Microsoft.Build.Framework.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\aefe683674c97a998f4e908c1a7ee7c6\Microsoft.Build.Framework.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\845eef4d09f28da6ee05d99f93c90f6e\Microsoft.Build.Framework.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\845eef4d09f28da6ee05d99f93c90f6e\Microsoft.Build.Framework.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 91648 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Backgroun#\17fc30ccabf04ef1cf60a571067bc6dc\Microsoft.BackgroundIntelligentTransfer.Management.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 91648 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Backgroun#\17fc30ccabf04ef1cf60a571067bc6dc\Microsoft.BackgroundIntelligentTransfer.Management.ni.dll
+ 2011-12-28 01:34 . 2011-12-28 01:34 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\ab7ce2d94ca725c3889a4e3c1ee88ece\dfsvc.ni.exe
- 2011-10-14 17:32 . 2011-10-14 17:32 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\ab7ce2d94ca725c3889a4e3c1ee88ece\dfsvc.ni.exe
- 2011-10-14 17:31 . 2011-10-14 17:31 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\d86a3346c3d90ff12d0df9d7726f3ece\Accessibility.ni.dll
+ 2011-12-28 01:33 . 2011-12-28 01:33 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\d86a3346c3d90ff12d0df9d7726f3ece\Accessibility.ni.dll
- 2003-06-13 21:23 . 2003-06-13 21:23 50176 c:\windows\AppPatch\AppLoc.exe
+ 2003-06-13 22:23 . 2003-06-13 22:23 50176 c:\windows\AppPatch\AppLoc.exe
- 2003-06-13 21:23 . 2003-06-13 21:23 81408 c:\windows\AppPatch\AlLayer.dll
+ 2003-06-13 22:23 . 2003-06-13 22:23 81408 c:\windows\AppPatch\AlLayer.dll
+ 2011-12-28 01:30 . 2010-10-18 11:10 7680 c:\windows\ie8updates\KB2598845-IE8\iecompat.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 9216 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Serializ#\3a2ab56bb224b871516526753985ff69\System.Xml.Serialization.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 9728 c:\windows\assembly\NativeImages_v4.0.30319_32\dfsvc\5cc246adea1b07b9c2a76bbe86fbfe2e\dfsvc.ni.exe
+ 2011-12-28 01:21 . 2011-12-28 01:21 109568 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.Wrapper.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 109568 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.Wrapper.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 246128 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 246128 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.dll
+ 2006-12-02 03:54 . 2006-12-02 03:54 626688 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll
- 2006-12-02 02:54 . 2006-12-02 02:54 626688 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll
+ 2006-12-02 03:54 . 2006-12-02 03:54 548864 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcp80.dll
- 2006-12-02 02:54 . 2006-12-02 02:54 548864 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcp80.dll
- 2006-12-02 02:54 . 2006-12-02 02:54 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcm80.dll
+ 2006-12-02 03:54 . 2006-12-02 03:54 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcm80.dll
+ 2007-01-31 19:50 . 2007-01-31 19:50 913408 c:\windows\system32\xreglib.dll
+ 2008-10-09 21:31 . 2008-10-09 21:31 192512 c:\windows\system32\txmlutil.dll
- 2004-10-28 07:52 . 2011-11-06 17:12 508824 c:\windows\system32\perfh009.dat
+ 2004-10-28 07:52 . 2011-12-29 19:05 508824 c:\windows\system32\perfh009.dat
- 2011-05-28 21:00 . 2011-11-28 19:39 285280 c:\windows\system32\nvdrsdb1.bin
+ 2011-05-28 21:00 . 2011-12-24 08:55 285280 c:\windows\system32\nvdrsdb1.bin
+ 2011-05-28 21:00 . 2011-12-24 08:55 285280 c:\windows\system32\nvdrsdb0.bin
- 2011-05-28 21:00 . 2011-11-28 19:39 285280 c:\windows\system32\nvdrsdb0.bin
+ 2003-02-21 09:42 . 2003-02-21 09:42 348160 c:\windows\system32\msvcr71.dll
- 2011-04-25 21:52 . 2011-04-25 21:52 348160 c:\windows\system32\msvcr71.dll
+ 2002-01-05 07:37 . 2002-01-05 07:37 344064 c:\windows\system32\msvcr70.dll
- 2002-01-05 11:37 . 2002-01-05 11:37 344064 c:\windows\system32\msvcr70.dll
- 2011-04-25 21:52 . 2011-04-25 21:52 499712 c:\windows\system32\msvcp71.dll
+ 2003-03-19 01:14 . 2003-03-19 01:14 499712 c:\windows\system32\msvcp71.dll
+ 2002-01-05 08:40 . 2002-01-05 08:40 487424 c:\windows\system32\msvcp70.dll
- 2002-01-05 11:40 . 2002-01-05 11:40 487424 c:\windows\system32\msvcp70.dll
- 2002-01-05 12:36 . 2002-01-05 12:36 964608 c:\windows\system32\mfc70u.dll
+ 2002-01-05 08:36 . 2002-01-05 08:36 964608 c:\windows\system32\mfc70u.dll
+ 2002-01-05 08:48 . 2002-01-05 08:48 974848 c:\windows\system32\mfc70.dll
- 2002-01-05 12:48 . 2002-01-05 12:48 974848 c:\windows\system32\mfc70.dll
+ 2009-04-06 21:44 . 2009-04-06 21:44 266376 c:\windows\system32\drivers\bdfsfltr.sys
+ 2007-04-11 16:11 . 2007-04-11 16:11 511328 c:\windows\system32\capicom.dll
+ 2011-12-15 10:29 . 2011-12-15 10:29 279992 c:\windows\system32\Adobe\Shockwave 11\SymCCIS.dll
+ 2011-12-15 10:45 . 2011-12-15 10:45 114176 c:\windows\system32\Adobe\Shockwave 11\SwInit.exe
+ 2011-12-15 10:47 . 2011-12-15 10:47 434176 c:\windows\system32\Adobe\Shockwave 11\Proj.dll
+ 2011-12-15 10:45 . 2011-12-15 10:45 365056 c:\windows\system32\Adobe\Shockwave 11\Plugin.dll
+ 2011-12-15 10:33 . 2011-12-15 10:33 990208 c:\windows\system32\Adobe\Shockwave 11\iml32.dll
+ 2011-12-15 10:44 . 2011-12-15 10:44 543232 c:\windows\system32\Adobe\Shockwave 11\Control.dll
+ 2011-12-15 10:53 . 2011-12-15 10:53 113592 c:\windows\system32\Adobe\Director\SWDNLD.EXE
+ 2011-12-15 10:53 . 2011-12-15 10:53 281016 c:\windows\system32\Adobe\Director\SwDir.dll
+ 2011-12-15 10:46 . 2011-12-15 10:46 145920 c:\windows\system32\Adobe\Director\np32dsw.dll
+ 2011-04-06 21:48 . 2011-04-06 21:48 916312 c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpftxt_v0400.dll
+ 2011-04-06 21:48 . 2011-04-06 21:48 236880 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.Net.dll
+ 2011-04-06 21:48 . 2011-04-06 21:48 191840 c:\windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelReg.exe
+ 2011-05-17 14:27 . 2011-05-17 14:27 413520 c:\windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
+ 2011-05-17 14:27 . 2011-05-17 14:27 385864 c:\windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
- 2011-04-12 19:11 . 2011-04-12 19:11 385864 c:\windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
- 2011-10-14 16:31 . 2011-10-14 16:31 350592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClientsideProviders\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClientsideProviders.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 350592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClientsideProviders\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClientsideProviders.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 163168 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClient\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClient.dll
- 2011-10-14 16:31 . 2011-10-14 16:31 163168 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClient\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClient.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 138592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Linq.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 138592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Linq.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 699224 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xaml\v4.0_4.0.0.0__b77a5c561934e089\System.Xaml.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 699224 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xaml\v4.0_4.0.0.0__b77a5c561934e089\System.Xaml.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 857960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.Services\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 857960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.Services\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 675672 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Speech\v4.0_4.0.0.0__31bf3856ad364e35\System.Speech.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 675672 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Speech\v4.0_4.0.0.0__31bf3856ad364e35\System.Speech.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 113512 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 113512 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 129912 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Routing\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Routing.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 129912 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Routing\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Routing.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 390008 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Discovery\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Discovery.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 390008 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Discovery\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Discovery.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 505208 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Activities.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 505208 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Activities.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 261472 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 261472 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 122264 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 122264 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 291184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 291184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 349568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Runtime.DurableInstancing.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 349568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Runtime.DurableInstancing.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 236880 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Net\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Net.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 253280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Messaging\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 253280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Messaging\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 378720 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 378720 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 134528 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Instrumentation\v4.0_4.0.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 134528 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Instrumentation\v4.0_4.0.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 123736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Log\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 123736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Log\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 392552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 392552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 125816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel.Selectors\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 125816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel.Selectors\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 120152 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Dynamic\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Dynamic.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 120152 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Dynamic\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Dynamic.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 607064 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 607064 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 395120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 395120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 182144 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.Protocols\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 182144 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.Protocols\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 285072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\v4.0_4.0.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 285072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\v4.0_4.0.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 829280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 829280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 747360 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.SqlXml\v4.0_4.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 747360 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.SqlXml\v4.0_4.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 436600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Services.Client\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Services.Client.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 436600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Services.Client\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Services.Client.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 683872 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 683872 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Linq.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 409448 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 409448 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 210816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.Composition\v4.0_4.0.0.0__b77a5c561934e089\System.ComponentModel.Composition.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 210816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.Composition\v4.0_4.0.0.0__b77a5c561934e089\System.ComponentModel.Composition.dll

#6 MarkThaHeat

MarkThaHeat

    New Member

  • Members
  • Pip
  • 20 posts

Posted 30 December 2011 - 11:51 PM

+ 2011-12-28 01:21 . 2011-12-28 01:21 149848 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn\v4.0_4.0.0.0__b77a5c561934e089\System.AddIn.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 149848 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn\v4.0_4.0.0.0__b77a5c561934e089\System.AddIn.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 122248 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.DurableInstancing.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 122248 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.DurableInstancing.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 525704 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Core.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Core.Presentation.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 525704 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Core.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Core.Presentation.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 112976 c:\windows\Microsoft.NET\assembly\GAC_MSIL\sysglobl\v4.0_4.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 112976 c:\windows\Microsoft.NET\assembly\GAC_MSIL\sysglobl\v4.0_4.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 581464 c:\windows\Microsoft.NET\assembly\GAC_MSIL\ReachFramework\v4.0_4.0.0.0__31bf3856ad364e35\ReachFramework.dll
- 2011-10-14 16:31 . 2011-10-14 16:31 581464 c:\windows\Microsoft.NET\assembly\GAC_MSIL\ReachFramework\v4.0_4.0.0.0__31bf3856ad364e35\ReachFramework.dll
- 2011-10-14 16:31 . 2011-10-14 16:31 832856 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationUI\v4.0_4.0.0.0__31bf3856ad364e35\PresentationUI.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 832856 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationUI\v4.0_4.0.0.0__31bf3856ad364e35\PresentationUI.dll
- 2011-10-14 16:31 . 2011-10-14 16:31 194424 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Royale\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Royale.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 194424 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Royale\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Royale.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 478576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Luna\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
- 2011-10-14 16:31 . 2011-10-14 16:31 478576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Luna\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 167288 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Classic\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Classic.dll
- 2011-10-14 16:31 . 2011-10-14 16:31 167288 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Classic\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Classic.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 232304 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Aero\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 232304 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Aero\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 661352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 661352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 349576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 349576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 387960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 387960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 746336 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.JScript\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 746336 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.JScript\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 505184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 505184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 269672 c:\windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 269672 c:\windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 334688 c:\windows\Microsoft.NET\assembly\GAC_32\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 334688 c:\windows\Microsoft.NET\assembly\GAC_32\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 109568 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 109568 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 246128 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 246128 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 170368 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 170368 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2011-12-25 21:34 . 2011-12-25 21:34 430592 c:\windows\Installer\73423.msi
+ 2011-12-24 07:49 . 2011-12-24 07:49 409600 c:\windows\Installer\1aacd0b.msi
+ 2010-03-18 17:16 . 2010-03-18 17:16 915800 c:\windows\Installer\$PatchCache$\Managed\5C1093C35543A0E32A41B090A305076A\4.0.30319\wpftxt_x86.dll
+ 2011-12-28 01:30 . 2010-07-05 13:16 382840 c:\windows\ie8updates\KB2598845-IE8\spuninst\updspapi.dll
+ 2011-12-28 01:30 . 2010-07-05 13:15 231288 c:\windows\ie8updates\KB2598845-IE8\spuninst\spuninst.exe
+ 2011-12-28 01:55 . 2011-12-28 01:55 253952 c:\windows\assembly\NativeImages_v4.0.30319_32\WindowsFormsIntegra#\962b04386ebf18f5871d5ceefa83ba4b\WindowsFormsIntegration.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 196096 c:\windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\5b96ee4992d9559ba5483c769bc5c889\UIAutomationTypes.ni.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 484352 c:\windows\assembly\NativeImages_v4.0.30319_32\UIAutomationClient\1c29539a07226b411e0a1a47aed57183\UIAutomationClient.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 393216 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\bd729791a7504ef9ecb4ad6ebfd94935\System.Xml.Linq.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 189440 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Inpu#\dcad72e49476386b76a81d2df187c32c\System.Windows.Input.Manipulations.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 649728 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Transactions\caf1d94cb89859c72d6c8cd8774068d3\System.Transactions.ni.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 221696 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\aab1c287bc73a03c51b55fb3f102c27e\System.ServiceProcess.ni.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 369664 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\bd104bb2f798661c5a972249582b5441\System.ServiceModel.Routing.ni.dll
+ 2011-12-28 01:24 . 2011-12-28 01:24 736768 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Security\aecd169d75edbcbe626d2a222a02e9f3\System.Security.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 311296 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\bed774dde4b62ed1d2d55c2d1769d600\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 762880 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\44d18693baaee5ee0e6f6fd4910e8f81\System.Runtime.Remoting.ni.dll
+ 2011-12-28 01:20 . 2011-12-28 01:20 145408 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Numerics\97126244f88693adb36f94116d8d0dda\System.Numerics.ni.dll
+ 2011-12-28 01:54 . 2011-12-28 01:54 657408 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Net\56fe9070b1d56613fd5cf7c73ec3b26f\System.Net.ni.dll
+ 2011-12-28 01:54 . 2011-12-28 01:54 626176 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Messaging\420c9d9b271bc26d1b6f437f1f4913a9\System.Messaging.ni.dll
+ 2011-12-28 01:54 . 2011-12-28 01:54 395264 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Management.I#\b71ea67c5bfa5b660efc12eb1c6ea4af\System.Management.Instrumentation.ni.dll
+ 2011-12-28 01:54 . 2011-12-28 01:54 413696 c:\windows\assembly\NativeImages_v4.0.30319_32\System.IO.Log\267d7dbdbe126590fba4a11c1ab12926\System.IO.Log.ni.dll
+ 2011-12-28 01:54 . 2011-12-28 01:54 229888 c:\windows\assembly\NativeImages_v4.0.30319_32\System.IdentityMode#\4ca1f130cbacf72beedf13da42b93e75\System.IdentityModel.Selectors.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 236032 c:\windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\fd4f85af43b2c177c8d085a8ba3f4993\System.EnterpriseServices.Wrapper.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 787456 c:\windows\assembly\NativeImages_v4.0.30319_32\System.EnterpriseSe#\fd4f85af43b2c177c8d085a8ba3f4993\System.EnterpriseServices.ni.dll
+ 2011-12-28 01:24 . 2011-12-28 01:24 377856 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Dynamic\b806ef4a19c8157e7858e0a15f9cf48d\System.Dynamic.ni.dll
+ 2011-12-28 01:54 . 2011-12-28 01:54 470528 c:\windows\assembly\NativeImages_v4.0.30319_32\System.DirectorySer#\4178d8536c67896ab77af36a48ee7ec4\System.DirectoryServices.Protocols.ni.dll
+ 2011-12-28 01:54 . 2011-12-28 01:54 913920 c:\windows\assembly\NativeImages_v4.0.30319_32\System.DirectorySer#\324617c0a492d6acc64325c836553f2c\System.DirectoryServices.AccountManagement.ni.dll
+ 2011-12-28 01:54 . 2011-12-28 01:54 112640 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Device\ca25f888c067fa170d8bba824efa2ca8\System.Device.ni.dll
+ 2011-12-28 01:41 . 2011-12-28 01:41 134656 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.DataSet#\282487a15f595c199b6cc640ea8995e8\System.Data.DataSetExtensions.ni.dll
+ 2011-12-28 01:23 . 2011-12-28 01:23 982528 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\4844dd28e0611d1ebd1e449fe822c2a5\System.Configuration.ni.dll
+ 2011-12-28 01:41 . 2011-12-28 01:41 148480 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Configuratio#\06f71e66b9913a24c22f85a0caef3ae4\System.Configuration.Install.ni.dll
+ 2011-12-28 01:41 . 2011-12-28 01:41 194048 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ComponentMod#\fa608e0882b98981cb6fd6e0754bdff8\System.ComponentModel.DataAnnotations.ni.dll
+ 2011-12-28 01:24 . 2011-12-28 01:24 693760 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ComponentMod#\a91d48ec926171da7de01cf2a10b1dfc\System.ComponentModel.Composition.ni.dll
+ 2011-12-28 01:41 . 2011-12-28 01:41 617984 c:\windows\assembly\NativeImages_v4.0.30319_32\System.AddIn\f407937d4694c46537c470007a1df957\System.AddIn.ni.dll
+ 2011-12-28 01:41 . 2011-12-28 01:41 411136 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Activities.D#\80347a66af30b5c14c0114baee4c64f8\System.Activities.DurableInstancing.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 317952 c:\windows\assembly\NativeImages_v4.0.30319_32\SMSvcHost\fcbb4a33ebdc8562603bc7f725a088ce\SMSvcHost.ni.exe
+ 2011-12-28 01:40 . 2011-12-28 01:40 143360 c:\windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\398a52caf1e9fd1a6ea9dd589b0f6e68\SMDiagnostics.ni.dll
+ 2011-12-28 01:23 . 2011-12-28 01:23 387072 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\d2d4bdbd9e2196e04dcdd68994a1f952\PresentationFramework.Royale.ni.dll
+ 2011-12-28 01:25 . 2011-12-28 01:25 595968 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\9211f2faac02f0082b201a95731736c4\PresentationFramework.Aero.ni.dll
+ 2011-12-28 01:24 . 2011-12-28 01:24 755712 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\6e48fb2ce01b4758a68f61651d6461d8\PresentationFramework.Luna.ni.dll
+ 2011-12-28 01:24 . 2011-12-28 01:24 309760 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\351819dc653a07a310cf1387b3266936\PresentationFramework.Classic.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 219136 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\edec5402d5424967ba20de137835ed2a\Microsoft.VisualBasic.Compatibility.Data.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 418816 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Transacti#\f4ab32c177d931f26072a14c27efc3b5\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 194048 c:\windows\assembly\NativeImages_v4.0.30319_32\CustomMarshalers\48ad8351ab66166c853d410d3282a408\CustomMarshalers.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\c8627df7adb416722d8e0f05c57fef6b\WsatConfig.ni.exe
+ 2011-12-28 01:35 . 2011-12-28 01:35 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\c8627df7adb416722d8e0f05c57fef6b\WsatConfig.ni.exe
- 2011-10-14 16:48 . 2011-10-14 16:48 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\605a648f185a7eb6ea449798edbe2a0d\WindowsFormsIntegration.ni.dll
+ 2011-12-28 01:29 . 2011-12-28 01:29 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\605a648f185a7eb6ea449798edbe2a0d\WindowsFormsIntegration.ni.dll
- 2011-10-14 16:48 . 2011-10-14 16:48 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\f102afdffdbe2565bcedb7fa0626b865\UIAutomationTypes.ni.dll
+ 2011-12-28 01:29 . 2011-12-28 01:29 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\f102afdffdbe2565bcedb7fa0626b865\UIAutomationTypes.ni.dll
+ 2011-12-28 01:29 . 2011-12-28 01:29 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\a3743d6698a4877de2bed79fd7b7428b\UIAutomationClient.ni.dll
- 2011-10-14 16:48 . 2011-10-14 16:48 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\a3743d6698a4877de2bed79fd7b7428b\UIAutomationClient.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\566b2e11e7f3f6d973b17b86cf42f9bc\System.Xml.Linq.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\566b2e11e7f3f6d973b17b86cf42f9bc\System.Xml.Linq.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\3533d614ebecd4344efbee619dd11a74\System.Web.Routing.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\3533d614ebecd4344efbee619dd11a74\System.Web.Routing.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\018b6e48c32d5b5d78086998e3505f1c\System.Web.RegularExpressions.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\018b6e48c32d5b5d78086998e3505f1c\System.Web.RegularExpressions.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\e5d6b9f0d43c4621d655d0ce4ea0f6ea\System.Web.Extensions.Design.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\e5d6b9f0d43c4621d655d0ce4ea0f6ea\System.Web.Extensions.Design.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\1dfa7febbad1aa406dc0218962f51c72\System.Web.Entity.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\1dfa7febbad1aa406dc0218962f51c72\System.Web.Entity.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\b0d54d94445ff1a7cf025610ba6a1dd3\System.Web.Entity.Design.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\b0d54d94445ff1a7cf025610ba6a1dd3\System.Web.Entity.Design.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\a527c4a04618bd0b3fbc4eb979d923e4\System.Web.DynamicData.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\a527c4a04618bd0b3fbc4eb979d923e4\System.Web.DynamicData.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\734ab0ea87d7dfd5c583eea535c05878\System.Web.Abstractions.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\734ab0ea87d7dfd5c583eea535c05878\System.Web.Abstractions.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\8efcd633af87989355382b5039f1b7df\System.Transactions.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\8efcd633af87989355382b5039f1b7df\System.Transactions.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\abef85f2fb8ba830eda73e2d12e8d41e\System.ServiceProcess.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\abef85f2fb8ba830eda73e2d12e8d41e\System.ServiceProcess.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\36c12de583ee81e9c99acb72b09d77ac\System.Security.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\36c12de583ee81e9c99acb72b09d77ac\System.Security.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\81096bfe85eb0da5f05e8a127ffa43b2\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\81096bfe85eb0da5f05e8a127ffa43b2\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\b2a84980f206431821d85d5155d5916f\System.Net.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\b2a84980f206431821d85d5155d5916f\System.Net.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\90b90e700e59d73d6d692cf74e1ba16e\System.Management.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\90b90e700e59d73d6d692cf74e1ba16e\System.Management.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\f36eded354122da9555a6c7cdbdb5431\System.Management.Instrumentation.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\f36eded354122da9555a6c7cdbdb5431\System.Management.Instrumentation.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\20a77c41ee12362d303fb2574fcd5a24\System.IO.Log.ni.dll
+ 2011-12-28 01:33 . 2011-12-28 01:33 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\20a77c41ee12362d303fb2574fcd5a24\System.IO.Log.ni.dll
+ 2011-12-28 01:33 . 2011-12-28 01:33 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\41c3a2fcffc58b20023c7d54e57ea956\System.IdentityModel.Selectors.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\41c3a2fcffc58b20023c7d54e57ea956\System.IdentityModel.Selectors.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\69792bef8a100a055db88848836a7d88\System.EnterpriseServices.Wrapper.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\69792bef8a100a055db88848836a7d88\System.EnterpriseServices.Wrapper.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\69792bef8a100a055db88848836a7d88\System.EnterpriseServices.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\69792bef8a100a055db88848836a7d88\System.EnterpriseServices.ni.dll
+ 2011-12-28 01:29 . 2011-12-28 01:29 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\896eca06e2d9377b2dc4fad56ce49b07\System.Drawing.Design.ni.dll
- 2011-10-14 16:47 . 2011-10-14 16:47 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\896eca06e2d9377b2dc4fad56ce49b07\System.Drawing.Design.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\33e9b0c368c31ef37a2ec7b5a181044b\System.DirectoryServices.Protocols.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\33e9b0c368c31ef37a2ec7b5a181044b\System.DirectoryServices.Protocols.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\11cdd1c0d65428cd3505d3813d36638c\System.DirectoryServices.AccountManagement.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\11cdd1c0d65428cd3505d3813d36638c\System.DirectoryServices.AccountManagement.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\e5ada332a9bc3c982e6aede6ba354196\System.Data.Services.Client.ni.dll
+ 2011-12-28 01:37 . 2011-12-28 01:37 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\e5ada332a9bc3c982e6aede6ba354196\System.Data.Services.Client.ni.dll
+ 2011-12-28 01:37 . 2011-12-28 01:37 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\3f179f373f31817a914b639a56cc0497\System.Data.Services.Design.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\3f179f373f31817a914b639a56cc0497\System.Data.Services.Design.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\fee1a48b769a8c4beb335ee5ce006091\System.Data.Entity.Design.ni.dll
+ 2011-12-28 01:37 . 2011-12-28 01:37 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\fee1a48b769a8c4beb335ee5ce006091\System.Data.Entity.Design.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\b9d9ff5d03e90ede1116794f2c7dd6da\System.Data.DataSetExtensions.ni.dll
+ 2011-12-28 01:36 . 2011-12-28 01:36 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\b9d9ff5d03e90ede1116794f2c7dd6da\System.Data.DataSetExtensions.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bce0720436dc6cb76006377f295ea365\System.Configuration.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bce0720436dc6cb76006377f295ea365\System.Configuration.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\29d7091f6eab0ec61c4eb625ed221b73\System.Configuration.Install.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\29d7091f6eab0ec61c4eb625ed221b73\System.Configuration.Install.ni.dll
+ 2011-12-28 01:36 . 2011-12-28 01:36 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\3048737e9e3bf5173121a084337256bc\System.AddIn.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\3048737e9e3bf5173121a084337256bc\System.AddIn.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\6e45cf503f025c5fe814ea7e52f62a78\SMSvcHost.ni.exe
+ 2011-12-28 01:35 . 2011-12-28 01:35 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\6e45cf503f025c5fe814ea7e52f62a78\SMSvcHost.ni.exe
- 2011-10-14 17:32 . 2011-10-14 17:32 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\474a341340f687bcbd7777f2820a8c7a\SMDiagnostics.ni.dll
+ 2011-12-28 01:34 . 2011-12-28 01:34 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\474a341340f687bcbd7777f2820a8c7a\SMDiagnostics.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\f2df1ca28301bfe7e1d52b86c8394217\ServiceModelReg.ni.exe
+ 2011-12-28 01:34 . 2011-12-28 01:34 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\f2df1ca28301bfe7e1d52b86c8394217\ServiceModelReg.ni.exe
+ 2011-12-28 01:28 . 2011-12-28 01:28 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ddfde0924e873301edba5525d88f834d\PresentationFramework.Royale.ni.dll
- 2011-10-14 16:46 . 2011-10-14 16:46 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ddfde0924e873301edba5525d88f834d\PresentationFramework.Royale.ni.dll
+ 2011-12-28 01:28 . 2011-12-28 01:28 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\c81f3913e9137bb784d4bee92d7685a3\PresentationFramework.Aero.ni.dll
- 2011-10-14 16:46 . 2011-10-14 16:46 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\c81f3913e9137bb784d4bee92d7685a3\PresentationFramework.Aero.ni.dll
- 2011-10-14 16:46 . 2011-10-14 16:46 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\80d76470241fb4c14222a376e555f94a\PresentationFramework.Classic.ni.dll
+ 2011-12-28 01:28 . 2011-12-28 01:28 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\80d76470241fb4c14222a376e555f94a\PresentationFramework.Classic.ni.dll
+ 2011-12-28 01:28 . 2011-12-28 01:28 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\2e61301e065a359186924efb2f7a5a30\PresentationFramework.Luna.ni.dll
- 2011-10-14 16:46 . 2011-10-14 16:46 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\2e61301e065a359186924efb2f7a5a30\PresentationFramework.Luna.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\04595f414c49cf2a65b349648ba23e62\MSBuild.ni.exe
+ 2011-12-28 01:35 . 2011-12-28 01:35 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\04595f414c49cf2a65b349648ba23e62\MSBuild.ni.exe
+ 2011-12-28 01:36 . 2011-12-28 01:36 508928 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.WSMan.Man#\a976a4b51c81150402b0abee38f41ab1\Microsoft.WSMan.Management.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 508928 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.WSMan.Man#\a976a4b51c81150402b0abee38f41ab1\Microsoft.WSMan.Management.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\4cbd7ed9fbf9f1b3cbdf23906cc0f5a3\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2011-12-28 01:34 . 2011-12-28 01:34 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\4cbd7ed9fbf9f1b3cbdf23906cc0f5a3\Microsoft.Transactions.Bridge.Dtc.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 156160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\df4a7b6bc850621fa2d38fb08f910ef7\Microsoft.PowerShell.Security.ni.dll
+ 2011-12-28 01:36 . 2011-12-28 01:36 156160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\df4a7b6bc850621fa2d38fb08f910ef7\Microsoft.PowerShell.Security.ni.dll
+ 2011-12-28 01:36 . 2011-12-28 01:36 515584 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\b3d3d76cfc8350587616860fb0f64ccc\Microsoft.PowerShell.ConsoleHost.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 515584 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\b3d3d76cfc8350587616860fb0f64ccc\Microsoft.PowerShell.ConsoleHost.ni.dll
+ 2011-12-28 01:36 . 2011-12-28 01:36 729600 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\75470af1cd12c5273ff2d2cac41d0a8b\Microsoft.PowerShell.GraphicalHost.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 729600 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\75470af1cd12c5273ff2d2cac41d0a8b\Microsoft.PowerShell.GraphicalHost.ni.dll
+ 2011-12-28 01:36 . 2011-12-28 01:36 737792 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\592e4b99037ec91cd4201d1ee28895b7\Microsoft.PowerShell.Commands.Management.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 737792 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\592e4b99037ec91cd4201d1ee28895b7\Microsoft.PowerShell.Commands.Management.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 291328 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\3a03ec48148fa16aa65fd9ba5df49cb8\Microsoft.PowerShell.Commands.Diagnostics.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 291328 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\3a03ec48148fa16aa65fd9ba5df49cb8\Microsoft.PowerShell.Commands.Diagnostics.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\ff6d4892775fd1f9b137f7c92ea453f2\Microsoft.Build.Utilities.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\ff6d4892775fd1f9b137f7c92ea453f2\Microsoft.Build.Utilities.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\47ff0720cb80a0fc0bbd15ddc3d12adc\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\47ff0720cb80a0fc0bbd15ddc3d12adc\Microsoft.Build.Utilities.v3.5.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\da112c5757e3c68d6369b6aa46cc9682\Microsoft.Build.Engine.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\da112c5757e3c68d6369b6aa46cc9682\Microsoft.Build.Engine.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\dc278e1123086ae32fec8f7e9751db14\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\dc278e1123086ae32fec8f7e9751db14\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\3e6deccf191ab943d3a0812a38ab5c97\CustomMarshalers.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\3e6deccf191ab943d3a0812a38ab5c97\CustomMarshalers.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\4e68d5df30b197ff72c75f1c3c24b949\ComSvcConfig.ni.exe
+ 2011-12-28 01:34 . 2011-12-28 01:34 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\4e68d5df30b197ff72c75f1c3c24b949\ComSvcConfig.ni.exe
+ 2011-12-28 01:33 . 2011-12-28 01:33 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\e1bcee92f5af50d560d577c0a99ea3bd\AspNetMMCExt.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\e1bcee92f5af50d560d577c0a99ea3bd\AspNetMMCExt.ni.dll
- 2003-06-10 14:43 . 2003-06-10 14:43 380928 c:\windows\AppPatch\ALRes804.dll
+ 2003-06-10 15:43 . 2003-06-10 15:43 380928 c:\windows\AppPatch\ALRes804.dll
- 2003-06-10 14:43 . 2003-06-10 14:43 380928 c:\windows\AppPatch\ALRes412.dll
+ 2003-06-10 15:43 . 2003-06-10 15:43 380928 c:\windows\AppPatch\ALRes412.dll
- 2003-06-10 14:43 . 2003-06-10 14:43 380928 c:\windows\AppPatch\ALRes411.dll
+ 2003-06-10 15:43 . 2003-06-10 15:43 380928 c:\windows\AppPatch\ALRes411.dll
+ 2003-06-11 18:19 . 2003-06-11 18:19 380928 c:\windows\AppPatch\ALRes40D.dll
- 2003-06-11 17:19 . 2003-06-11 17:19 380928 c:\windows\AppPatch\ALRes40D.dll
- 2003-06-13 21:23 . 2003-06-13 21:23 340992 c:\windows\AppPatch\ALRes409.dll
+ 2003-06-13 22:23 . 2003-06-13 22:23 340992 c:\windows\AppPatch\ALRes409.dll
- 2003-06-10 14:43 . 2003-06-10 14:43 380928 c:\windows\AppPatch\ALRes407.dll
+ 2003-06-10 15:43 . 2003-06-10 15:43 380928 c:\windows\AppPatch\ALRes407.dll
+ 2003-06-10 15:43 . 2003-06-10 15:43 380928 c:\windows\AppPatch\ALRes404.dll
- 2003-06-10 14:43 . 2003-06-10 14:43 380928 c:\windows\AppPatch\ALRes404.dll
+ 2003-06-10 15:43 . 2003-06-10 15:43 380928 c:\windows\AppPatch\ALRes401.dll
- 2003-06-10 14:43 . 2003-06-10 14:43 380928 c:\windows\AppPatch\ALRes401.dll
- 2006-12-02 04:25 . 2006-12-02 04:25 1093120 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll
+ 2006-12-02 05:25 . 2006-12-02 05:25 1093120 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll
- 2006-12-02 04:25 . 2006-12-02 04:25 1101824 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll
+ 2006-12-02 05:25 . 2006-12-02 05:25 1101824 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll
- 2003-03-20 08:12 . 2003-03-20 08:12 1047552 c:\windows\system32\MFC71u.dll
+ 2003-03-19 02:12 . 2003-03-19 02:12 1047552 c:\windows\system32\mfc71u.dll
+ 2003-03-19 02:20 . 2003-03-19 02:20 1060864 c:\windows\system32\mfc71.dll
- 2003-03-20 08:20 . 2003-03-20 08:20 1060864 c:\windows\system32\MFC71.dll
+ 2011-12-15 10:53 . 2011-12-15 10:53 1040824 c:\windows\system32\Adobe\Shockwave 11\SwHelper_1163633.exe
+ 2011-12-15 10:29 . 2011-12-15 10:29 2376368 c:\windows\system32\Adobe\Shockwave 11\gt.exe
+ 2011-12-15 10:29 . 2011-12-15 10:29 1208832 c:\windows\system32\Adobe\Shockwave 11\gi.dll
+ 2011-12-15 10:35 . 2011-12-15 10:35 1742336 c:\windows\system32\Adobe\Shockwave 11\dirapi.dll
- 2010-03-18 17:16 . 2010-03-18 17:16 1663320 c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
+ 2011-04-06 21:48 . 2011-04-06 21:48 1663320 c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
+ 2011-04-06 21:48 . 2011-04-06 21:48 1368920 c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WindowsBase.dll
+ 2011-04-06 21:48 . 2011-04-06 21:48 6428520 c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationFramework.dll
+ 2011-04-06 21:48 . 2011-04-06 21:48 3788128 c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationCore.dll
+ 2011-04-06 21:48 . 2011-04-06 21:48 2261832 c:\windows\Microsoft.NET\Framework\v4.0.30319\vbc.exe
- 2010-03-18 17:16 . 2010-03-18 17:16 2207568 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.XML.dll
+ 2011-04-06 21:48 . 2011-04-06 21:48 2207568 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.XML.dll
+ 2011-04-06 21:48 . 2011-04-06 21:48 6097256 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.ServiceModel.dll
+ 2011-05-17 14:27 . 2011-05-17 14:27 2975064 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.Data.dll
+ 2011-04-06 21:48 . 2011-04-06 21:48 1354584 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.Core.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 1368920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsBase\v4.0_4.0.0.0__31bf3856ad364e35\WindowsBase.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 3510600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 3510600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 2207568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 2207568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 5028200 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 5028200 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 1711496 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.DataVisualization\v4.0_4.0.0.0__31bf3856ad364e35\System.Windows.Forms.DataVisualization.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 1711496 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.DataVisualization\v4.0_4.0.0.0__31bf3856ad364e35\System.Windows.Forms.DataVisualization.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 6097256 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel\v4.0_4.0.0.0__b77a5c561934e089\System.ServiceModel.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 1026936 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 1026936 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 4464480 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Entity\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Entity.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 4464480 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Entity\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Entity.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 1354584 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Core\v4.0_4.0.0.0__b77a5c561934e089\System.Core.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 1199968 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 1199968 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 1462648 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Presentation.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 1462648 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Presentation.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 6428520 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 2975064 c:\windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 3788128 c:\windows\Microsoft.NET\assembly\GAC_32\PresentationCore\v4.0_4.0.0.0__31bf3856ad364e35\PresentationCore.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 5197648 c:\windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 5197648 c:\windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-12-28 01:21 . 2011-12-28 01:21 2989456 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
- 2011-10-14 16:30 . 2011-10-14 16:30 2989456 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
+ 2011-12-28 01:32 . 2011-12-28 01:32 1067008 c:\windows\Installer\b15f591.msi
+ 2011-12-29 00:17 . 2011-12-29 00:17 5095424 c:\windows\Installer\20bfd65.msi
+ 2010-03-18 17:16 . 2010-03-18 17:16 1663320 c:\windows\Installer\$PatchCache$\Managed\5C1093C35543A0E32A41B090A305076A\4.0.30319\wpfgfx_x86.dll
+ 2010-03-18 17:16 . 2010-03-18 17:16 1303896 c:\windows\Installer\$PatchCache$\Managed\5C1093C35543A0E32A41B090A305076A\4.0.30319\WindowsBase_x86.dll
+ 2010-03-18 17:16 . 2010-03-18 17:16 6346600 c:\windows\Installer\$PatchCache$\Managed\5C1093C35543A0E32A41B090A305076A\4.0.30319\PresentationFramework_x86.dll
+ 2010-03-18 17:16 . 2010-03-18 17:16 3545952 c:\windows\Installer\$PatchCache$\Managed\5C1093C35543A0E32A41B090A305076A\4.0.30319\PresentationCore_x86.dll
+ 2011-12-28 01:23 . 2011-12-28 01:23 3857920 c:\windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\9dacf8a5033dfbcb435be166d2f42cdf\WindowsBase.ni.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 1063424 c:\windows\assembly\NativeImages_v4.0.30319_32\UIAutomationClients#\ac9379a0db1d8da11fbc46f09da411db\UIAutomationClientsideProviders.ni.dll
+ 2011-12-28 01:20 . 2011-12-28 01:20 3652608 c:\windows\assembly\NativeImages_v4.0.30319_32\Temp\778-0\WindowsBase.dll
+ 2011-12-28 01:22 . 2011-12-28 01:22 9086464 c:\windows\assembly\NativeImages_v4.0.30319_32\System\5286fe2d0167eb835a9f11025f1cb756\System.ni.dll
+ 2011-12-28 01:23 . 2011-12-28 01:23 5617664 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Xml\419103071a5a5d17738afbe9dd03d58a\System.Xml.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 1782272 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\a3ffdc1316821b5ceb32c9a788334329\System.Xaml.ni.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 4545024 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Form#\e3a0483820fafd51c8cd4576de6eb45f\System.Windows.Forms.DataVisualization.ni.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 1885696 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Services\4cbc10b8a84a7ef0fcf9d2885bfe9832\System.Web.Services.ni.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 2012160 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Speech\6663f8ba0327399c1a5b313707cff36f\System.Speech.ni.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 1392640 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\a19563d781ccd0807a41d27701d485c6\System.ServiceModel.Activities.ni.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 1140736 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel#\9be7f7f68d488eb02161d3f0663a61a4\System.ServiceModel.Discovery.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 2647040 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Seri#\993f89ba22499c379d2a9dd25d13cd94\System.Runtime.Serialization.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 1021952 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Dura#\41a4f6cc5d596e952fd880ae1a47308f\System.Runtime.DurableInstancing.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 1060864 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Printing\0a30a201408744c5315446aef7fb3d5a\System.Printing.ni.dll
+ 2011-12-28 01:54 . 2011-12-28 01:54 1218560 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Management\7c4eea005578d9990f604fda345fb2b4\System.Management.ni.dll
+ 2011-12-28 01:54 . 2011-12-28 01:54 1072640 c:\windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\16c385f23b5e493899f0d206dfb60094\System.IdentityModel.ni.dll
+ 2011-12-28 01:23 . 2011-12-28 01:23 1652736 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\17bfc7131aca3a393f430121f79307bd\System.Drawing.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 1172992 c:\windows\assembly\NativeImages_v4.0.30319_32\System.DirectorySer#\83a815291644645a3ab1ce55452e1e61\System.DirectoryServices.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 1879040 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Deployment\1c2d038775f2c9d42468261118019e6b\System.Deployment.ni.dll
+ 2011-12-28 01:24 . 2011-12-28 01:24 6815232 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data\14d8a7579839b11151cd901b846d0afb\System.Data.ni.dll
+ 2011-12-28 01:23 . 2011-12-28 01:24 2549760 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.SqlXml\05f8ccf31515e720b1663e710e992211\System.Data.SqlXml.ni.dll
+ 2011-12-28 01:54 . 2011-12-28 01:54 1343488 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.Service#\c05998cb3411b039bdfb5d852e1413be\System.Data.Services.Client.ni.dll
+ 2011-12-28 01:24 . 2011-12-28 01:24 2517504 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.Linq\d622a2c40d37cfdb88e4eea7315a323e\System.Data.Linq.ni.dll
+ 2011-12-28 01:23 . 2011-12-28 01:23 7069696 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Core\44a7d2597981a82da8b9e3e2298602de\System.Core.ni.dll
+ 2011-12-28 01:41 . 2011-12-28 01:41 4129792 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Activities\e69e487d338ceb3883b7d175885f0794\System.Activities.ni.dll
+ 2011-12-28 01:41 . 2011-12-28 01:41 3757568 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Activities.P#\cc25c620acedf02fd6b5c46238643cab\System.Activities.Presentation.ni.dll
+ 2011-12-28 01:41 . 2011-12-28 01:41 1547264 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Activities.C#\49577d8acbf16b6091f5466feae43403\System.Activities.Core.Presentation.ni.dll
+ 2011-12-28 01:41 . 2011-12-28 01:41 2907136 c:\windows\assembly\NativeImages_v4.0.30319_32\ReachFramework\2d23bb6dd81b41002c8f927b95b7b226\ReachFramework.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 1640448 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationUI\ec64d7c99f7e030d39c355ce7a968600\PresentationUI.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 1172480 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\c7dd3d91f33a79c70db8bd805a483f4b\Microsoft.VisualBasic.Activities.Compiler.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 1136128 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\596251e8604d886f1edfcd2671a2f371\Microsoft.VisualBasic.Compatibility.ni.dll
+ 2011-12-28 01:40 . 2011-12-28 01:40 1838080 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\51df2ad80d91a7669dd1856a9c1061f9\Microsoft.VisualBasic.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 1085952 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Transacti#\477c9b916a9aee0a8beb041ee00a5fcb\Microsoft.Transactions.Bridge.ni.dll
+ 2011-12-28 01:54 . 2011-12-28 01:54 2452480 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.JScript\614f6f698d269e2c56bf23feba58551c\Microsoft.JScript.ni.dll
+ 2011-12-28 01:24 . 2011-12-28 01:24 1616384 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.CSharp\f03a7f8f2393a04fac7fecc1c55bd02e\Microsoft.CSharp.ni.dll
- 2011-10-14 16:45 . 2011-10-14 16:45 3313664 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\02f642a258ffcab5e6cb400e6d0fe057\WindowsBase.ni.dll
+ 2011-12-28 01:27 . 2011-12-28 01:27 3313664 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\02f642a258ffcab5e6cb400e6d0fe057\WindowsBase.ni.dll
+ 2011-12-28 01:29 . 2011-12-28 01:29 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\e62dc3c11acf17b7e1933c8bc73a2da3\UIAutomationClientsideProviders.ni.dll
- 2011-10-14 16:48 . 2011-10-14 16:48 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\e62dc3c11acf17b7e1933c8bc73a2da3\UIAutomationClientsideProviders.ni.dll
+ 2011-12-28 01:27 . 2011-12-28 01:27 7950848 c:\windows\assembly\NativeImages_v2.0.50727_32\System\af39f6e644af02873b9bae319f2bfb13\System.ni.dll
- 2011-10-14 16:44 . 2011-10-14 16:44 7950848 c:\windows\assembly\NativeImages_v2.0.50727_32\System\af39f6e644af02873b9bae319f2bfb13\System.ni.dll
- 2011-10-14 16:48 . 2011-10-14 16:48 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\70cacc44f0b4257f6037eda7a59a0aeb\System.Xml.ni.dll
+ 2011-12-28 01:29 . 2011-12-28 01:29 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\70cacc44f0b4257f6037eda7a59a0aeb\System.Xml.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\17902fdb0e0d3bc8b49bce693415fe7e\System.WorkflowServices.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\17902fdb0e0d3bc8b49bce693415fe7e\System.WorkflowServices.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\f72c5f649951b0403e62bfab6c453e6f\System.Workflow.Runtime.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\f72c5f649951b0403e62bfab6c453e6f\System.Workflow.Runtime.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\0aa4f4174204c93cc5181df4a6b2fb09\System.Workflow.ComponentModel.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\0aa4f4174204c93cc5181df4a6b2fb09\System.Workflow.ComponentModel.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\921629dc69a5a895101097c88ae67897\System.Workflow.Activities.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\921629dc69a5a895101097c88ae67897\System.Workflow.Activities.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\6303e256d2ac0843c3e4c24172c90544\System.Web.Services.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\6303e256d2ac0843c3e4c24172c90544\System.Web.Services.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\f5dac0448a1dbe2687a5df92904d6274\System.Web.Mobile.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\f5dac0448a1dbe2687a5df92904d6274\System.Web.Mobile.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 2403328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\eb8678a59280d15589f7dba6a102ba42\System.Web.Extensions.ni.dll
+ 2011-12-28 01:39 . 2011-12-28 01:39 2403328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\eb8678a59280d15589f7dba6a102ba42\System.Web.Extensions.ni.dll
+ 2011-12-28 01:29 . 2011-12-28 01:29 1917952 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\10d7daa3d1e62a0e40587cdc707be93f\System.Speech.ni.dll
- 2011-10-14 16:47 . 2011-10-14 16:47 1917952 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\10d7daa3d1e62a0e40587cdc707be93f\System.Speech.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\26b01859047f9747004d0030e3f745e4\System.ServiceModel.Web.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\26b01859047f9747004d0030e3f745e4\System.ServiceModel.Web.ni.dll
+ 2011-12-28 01:33 . 2011-12-28 01:33 2345472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\afd6134c090faf8c29cd64d4835142b2\System.Runtime.Serialization.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 2345472 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\afd6134c090faf8c29cd64d4835142b2\System.Runtime.Serialization.ni.dll
+ 2011-12-28 01:29 . 2011-12-28 01:29 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\318f2630b19127e5c0328c956d3b6141\System.Printing.ni.dll
- 2011-10-14 16:47 . 2011-10-14 16:47 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\318f2630b19127e5c0328c956d3b6141\System.Printing.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 8365056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.A#\3959e9012ee532343861eb35c6c72b24\System.Management.Automation.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 8365056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.A#\3959e9012ee532343861eb35c6c72b24\System.Management.Automation.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\d14065ede44df8e9b5d6b60c5ddccc69\System.IdentityModel.ni.dll
+ 2011-12-28 01:33 . 2011-12-28 01:33 1070080 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\d14065ede44df8e9b5d6b60c5ddccc69\System.IdentityModel.ni.dll
+ 2011-12-28 01:29 . 2011-12-28 01:29 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\c10bea3c4bb7ef654651141bf9419090\System.Drawing.ni.dll
- 2011-10-14 16:47 . 2011-10-14 16:47 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\c10bea3c4bb7ef654651141bf9419090\System.Drawing.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\91cd88a803768151c6262853d3454ba7\System.DirectoryServices.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\91cd88a803768151c6262853d3454ba7\System.DirectoryServices.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\cc5ac99e8af2738e85cda5525fdd944f\System.Deployment.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\cc5ac99e8af2738e85cda5525fdd944f\System.Deployment.ni.dll
+ 2011-12-28 01:28 . 2011-12-28 01:28 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\ec323cf1df697cc0a45f67de685db90c\System.Data.ni.dll
- 2011-10-14 16:46 . 2011-10-14 16:46 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\ec323cf1df697cc0a45f67de685db90c\System.Data.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\ef748704f543a8791e23387652d34dfb\System.Data.SqlXml.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\ef748704f543a8791e23387652d34dfb\System.Data.SqlXml.ni.dll
+ 2011-12-28 01:37 . 2011-12-28 01:37 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\541142d8742e6e88f1e729fafee04e71\System.Data.Services.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\541142d8742e6e88f1e729fafee04e71\System.Data.Services.ni.dll
- 2011-10-14 16:47 . 2011-10-14 16:47 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\d96a94076acb8e0c5a96a1b2de4b3a7a\System.Data.Linq.ni.dll
+ 2011-12-28 01:28 . 2011-12-28 01:28 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\d96a94076acb8e0c5a96a1b2de4b3a7a\System.Data.Linq.ni.dll
+ 2011-12-28 01:37 . 2011-12-28 01:37 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\b70adfee3b5ed7e0688d13f24cbec556\System.Data.Entity.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\b70adfee3b5ed7e0688d13f24cbec556\System.Data.Entity.ni.dll
+ 2011-12-28 01:28 . 2011-12-28 01:28 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\d507b9e0e50e453793ee5e01c07a5485\System.Core.ni.dll
- 2011-10-14 16:46 . 2011-10-14 16:46 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\d507b9e0e50e453793ee5e01c07a5485\System.Core.ni.dll
+ 2011-12-28 01:28 . 2011-12-28 01:28 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\24fa02c099932cbbe03960b224a8657d\ReachFramework.ni.dll
- 2011-10-14 16:46 . 2011-10-14 16:46 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\24fa02c099932cbbe03960b224a8657d\ReachFramework.ni.dll
- 2011-10-14 16:46 . 2011-10-14 16:46 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\a200cbfb7be9d4775cfb342437b3931e\PresentationUI.ni.dll
+ 2011-12-28 01:28 . 2011-12-28 01:28 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\a200cbfb7be9d4775cfb342437b3931e\PresentationUI.ni.dll
+ 2011-12-28 01:27 . 2011-12-28 01:27 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\37fd70ad5f3726031995041b246fe862\PresentationBuildTasks.ni.dll
- 2011-10-14 16:44 . 2011-10-14 16:44 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\37fd70ad5f3726031995041b246fe862\PresentationBuildTasks.ni.dll
+ 2011-12-28 01:36 . 2011-12-28 01:36 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\24331b719aa25ac2b21099e32232840c\Microsoft.VisualBasic.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\24331b719aa25ac2b21099e32232840c\Microsoft.VisualBasic.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\ce1ecd602ca089eb13a9b428dc7f0449\Microsoft.Transactions.Bridge.ni.dll
+ 2011-12-28 01:34 . 2011-12-28 01:34 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\ce1ecd602ca089eb13a9b428dc7f0449\Microsoft.Transactions.Bridge.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 1704448 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\fe2b7a2fb77d0a98d5258aa6d8a754d6\Microsoft.PowerShell.GPowerShell.ni.dll
+ 2011-12-28 01:36 . 2011-12-28 01:36 1704448 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\fe2b7a2fb77d0a98d5258aa6d8a754d6\Microsoft.PowerShell.GPowerShell.ni.dll
+ 2011-12-28 01:36 . 2011-12-28 01:36 3722752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\e89e0098dc73443654763f1d63fe07ba\Microsoft.PowerShell.Editor.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 3722752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\e89e0098dc73443654763f1d63fe07ba\Microsoft.PowerShell.Editor.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 1609728 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\7c0df343514ab15e0fe9b11e9b013b11\Microsoft.PowerShell.Commands.Utility.ni.dll
+ 2011-12-28 01:36 . 2011-12-28 01:36 1609728 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\7c0df343514ab15e0fe9b11e9b013b11\Microsoft.PowerShell.Commands.Utility.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\8ad32b72258899177c07dc5912b5b748\Microsoft.JScript.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\8ad32b72258899177c07dc5912b5b748\Microsoft.JScript.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\50e7c5eb58c982dba7b21cd10a69b095\Microsoft.Build.Tasks.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\50e7c5eb58c982dba7b21cd10a69b095\Microsoft.Build.Tasks.ni.dll
- 2011-10-14 17:33 . 2011-10-14 17:33 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\415cef6abab5bb959f200f6c537bc289\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\415cef6abab5bb959f200f6c537bc289\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2011-12-28 01:35 . 2011-12-28 01:35 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\eea7bcc8d356e3f2dcb4f36dfc1c6bc0\Microsoft.Build.Engine.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\eea7bcc8d356e3f2dcb4f36dfc1c6bc0\Microsoft.Build.Engine.ni.dll
+ 2011-05-19 03:55 . 2011-05-19 03:55 19624448 c:\windows\Installer\b15f565.msp

#7 MarkThaHeat

MarkThaHeat

    New Member

  • Members
  • Pip
  • 20 posts

Posted 30 December 2011 - 11:55 PM

+ 2011-12-28 01:24 . 2011-12-28 01:24 13138432 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\2de8b7360d6a58fa7fd1b451fa88dde6\System.Windows.Forms.ni.dll
+ 2011-12-28 01:55 . 2011-12-28 01:55 18058752 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\559ebac0a85ae55da09827b8048f77bd\System.ServiceModel.ni.dll
+ 2011-12-28 01:54 . 2011-12-28 01:54 13346816 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.Entity\78afce4e1bd3d345ef1fff004659191c\System.Data.Entity.ni.dll
+ 2011-12-28 01:26 . 2011-12-28 01:26 18000384 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\813a0913bea1269e48613509609e72b4\PresentationFramework.ni.dll
+ 2011-12-28 01:24 . 2011-12-28 01:24 11450880 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\8244412387a82c0acd3d63622e22cef5\PresentationCore.ni.dll
+ 2011-12-28 01:19 . 2011-12-28 01:19 14407680 c:\windows\assembly\NativeImages_v4.0.30319_32\mscorlib\a774bd593b8420bae4a8cf1d46af3ba2\mscorlib.ni.dll
+ 2011-12-28 01:29 . 2011-12-28 01:29 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\71a2ae9ad561a62181cbd9fb11e9de7a\System.Windows.Forms.ni.dll
- 2011-10-14 16:47 . 2011-10-14 16:47 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\71a2ae9ad561a62181cbd9fb11e9de7a\System.Windows.Forms.ni.dll
- 2011-10-14 17:34 . 2011-10-14 17:34 11800576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\60df958ca96c9b8945f836759b6abd34\System.Web.ni.dll
+ 2011-12-28 01:38 . 2011-12-28 01:38 11800576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\60df958ca96c9b8945f836759b6abd34\System.Web.ni.dll
+ 2011-12-28 01:34 . 2011-12-28 01:34 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\ceadaf3b3d017c7a1ef10a06f8009f6f\System.ServiceModel.ni.dll
- 2011-10-14 17:32 . 2011-10-14 17:32 17403904 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\ceadaf3b3d017c7a1ef10a06f8009f6f\System.ServiceModel.ni.dll
- 2011-10-14 16:47 . 2011-10-14 16:47 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\c6374d32e4af7b7e3e46b32176f76558\System.Design.ni.dll
+ 2011-12-28 01:29 . 2011-12-28 01:29 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\c6374d32e4af7b7e3e46b32176f76558\System.Design.ni.dll
- 2011-10-14 16:46 . 2011-10-14 16:46 14327808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\0a5d5d16dc9082b0ea955f70faa459c8\PresentationFramework.ni.dll
+ 2011-12-28 01:28 . 2011-12-28 01:28 14327808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\0a5d5d16dc9082b0ea955f70faa459c8\PresentationFramework.ni.dll
+ 2011-12-28 01:27 . 2011-12-28 01:27 12216320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\f5e71b3c856300c4ee7e3c6185417462\PresentationCore.ni.dll
- 2011-10-14 16:45 . 2011-10-14 16:45 12216320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\f5e71b3c856300c4ee7e3c6185417462\PresentationCore.ni.dll
+ 2011-12-28 01:27 . 2011-12-28 01:27 11490816 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
- 2011-10-14 16:44 . 2011-10-14 16:44 11490816 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
+ 2011-04-07 02:43 . 2011-04-07 02:43 123313664 c:\windows\Installer\b15f57c.msp
.
-
- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{ba14329e-9550-4989-b3f2-9732e92d17cc}"= "c:\program files\Vuze_Remote\prxtbVuze.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{91da5e8a-3318-4f8c-b67e-5964de3ab546}]
2011-05-09 09:49 176936 ----a-w- c:\program files\ZoneAlarm_Security\prxtbZone.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2011-12-08 11:52 1547104 ----a-w- c:\program files\AVG Secure Search\9.0.0.18\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
2011-01-17 20:54 175912 ------w- c:\program files\Vuze_Remote\prxtbVuze.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{ba14329e-9550-4989-b3f2-9732e92d17cc}"= "c:\program files\Vuze_Remote\prxtbVuze.dll" [2011-01-17 175912]
"{91da5e8a-3318-4f8c-b67e-5964de3ab546}"= "c:\program files\ZoneAlarm_Security\prxtbZone.dll" [2011-05-09 176936]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\9.0.0.18\AVG Secure Search_toolbar.dll" [2011-12-08 1547104]
.
[HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
.
[HKEY_CLASSES_ROOT\clsid\{91da5e8a-3318-4f8c-b67e-5964de3ab546}]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{BA14329E-9550-4989-B3F2-9732E92D17CC}"= "c:\program files\Vuze_Remote\prxtbVuze.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-05-28 39408]
"PeerGuardian"="c:\program files\PeerGuardian2\pg2.exe" [2005-09-18 1382400]
"Aim"="c:\program files\AIM7\aim.exe" [2011-05-03 4321112]
"GBMPro8Agent"="c:\program files\Genie-Soft\GBMPro8\GBMAgent.exe" [2008-07-28 189056]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-11-10 3514176]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512]
"NUSB3MON"="c:\program files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"RTHDCPL"="RTHDCPL.EXE" [2011-04-14 20053608]
"AVG_TRAY"="c:\program files\AVG\AVG10\avgtray.exe" [2011-09-10 2338656]
"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2011-04-13 1298320]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2010-04-12 180224]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2011-03-22 74752]
"GBMPro8Agent"="c:\program files\Genie-Soft\GBMPro8\GBMAgent.exe" [2008-07-28 189056]
"Start WingMan Profiler"="c:\program files\Logitech\Gaming Software\LWEMon.exe" [2010-06-14 153672]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-04 208952]
"IMEKRMIG6.1"="c:\windows\ime\imkr6_1\IMEKRMIG.EXE" [2004-08-10 44032]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-04 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
"RIMBBLaunchAgent.exe"="c:\program files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-02-18 79192]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"Live Update 5"="c:\program files\MSI\Live Update 5\LU5.exe" [2011-11-04 1858064]
"ISW"="c:\program files\CheckPoint\ZAForceField\ForceField.exe" [2011-11-03 738944]
"ZoneAlarm"="c:\program files\CheckPoint\ZoneAlarm\zatray.exe" [2011-11-10 73360]
"vProt"="c:\program files\AVG Secure Search\vprot.exe" [2011-12-08 827232]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2011-10-08 16744256]
"NvMediaCenter"="NvMCTray.dll" [2011-10-08 203072]
"nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2011-10-08 1632360]
"BDAgent"="c:\program files\BitDefender\BitDefender 2009\bdagent.exe" [2011-12-29 782336]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-12-15 258512]
"SDTray"="c:\program files\Spybot - Search & Destroy 2\SDTray.exe" [2011-10-05 3578272]
"Spybot-S&D Cleaning"="c:\program files\Spybot - Search & Destroy 2\SDCleaner.exe" [2011-10-05 3025304]
"SystemProtector"="c:\program files\Advanced System Optimizer 3\SystemProtector.exe" [2010-04-19 9999080]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2010-01-10 519584]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Windows Search.lnk - c:\program files\Windows Desktop Search\WindowsSearch.exe [2008-5-26 123904]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sasnative32\0c:\progra~1\AVG\AVG10\avgchsvx.exe /sync\0c:\progra~1\AVG\AVG10\avgrsx.exe /sync /restart\0\0sdnclean.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"=
"c:\\Program Files\\AVG\\AVG10\\avgmfapx.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\AIM7\\aim.exe"=
"c:\\Program Files\\Capcom\\Super Street Fighter IV\\SSFIV.exe"=
"c:\\Program Files\\THQ\\Company of Heroes\\RelicCOH.exe"=
"c:\\Program Files\\THQ\\Company of Heroes\\RelicDownloader\\RelicDownloader.exe"=
"c:\\Program Files\\Veetle\\Player\\VeetleNet.exe"=
"c:\\Program Files\\Research In Motion\\BlackBerry Desktop\\Rim.Desktop.exe"=
"c:\\Program Files\\Ubisoft\\Ubisoft Game Launcher\\UbisoftGameLauncher.exe"=
"c:\\Program Files\\Tunngle\\tnglctrl.exe"=
"c:\\Program Files\\Tunngle\\tunngle.exe"=
"c:\\Program Files\\Vuze\\Azureus.exe"=
"c:\\Program Files\\AVG\\AVG10\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG10\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG10\\avgemcx.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
"c:\\Program Files\\Spybot - Search & Destroy 2\\SDTray.exe"=
"c:\\Program Files\\Spybot - Search & Destroy 2\\SDFSSvc.exe"=
"c:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdate.exe"=
"c:\\Program Files\\Spybot - Search & Destroy 2\\SDUpdSvc.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:Disabled:Windows Remote Management
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2/22/2011 7:13 AM 22992]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [3/16/2011 3:03 PM 32592]
R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [1/7/2011 5:41 AM 248656]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [4/4/2011 11:59 PM 297168]
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [12/28/2011 7:17 PM 36000]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [12/28/2011 6:32 PM 239168]
R1 SDHookDriver;Spybot-S&D 2 Hook Driver;c:\program files\Spybot - Search & Destroy 2\SDHookDrv32.sys [12/28/2011 8:06 PM 38504]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [12/28/2011 7:17 PM 86224]
R2 ASO3DiskOptimizer;ASO3DiskOptimizer;c:\program files\Advanced System Optimizer 3\ASO3DefragSrv.exe [5/28/2011 3:28 AM 238824]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [8/18/2011 12:33 AM 7390560]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG10\avgwdsvc.exe [2/8/2011 4:33 AM 269520]
R2 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\SeaPort.EXE [10/13/2011 5:21 PM 249648]
R2 ISWKL;ZoneAlarm Toolbar ISWKL;c:\program files\CheckPoint\ZAForceField\ISWKL.sys [11/3/2011 9:44 AM 27016]
R2 IswSvc;ZoneAlarm Toolbar IswSvc;c:\program files\CheckPoint\ZAForceField\ISWSVC.exe [11/3/2011 9:44 AM 497280]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [5/28/2011 4:01 PM 2253120]
R2 SDHookService;Spybot S&D 2 Live Protection Service;c:\program files\Spybot - Search & Destroy 2\SDHookSvc.exe [12/28/2011 8:06 PM 130976]
R2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files\Spybot - Search & Destroy 2\SDUpdSvc.exe [12/28/2011 8:06 PM 955816]
R2 vToolbarUpdater;vToolbarUpdater;c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\9.0.1\ToolbarUpdater.exe [12/8/2011 6:52 AM 855904]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [4/14/2011 8:28 PM 134480]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2/10/2011 6:53 AM 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2/10/2011 6:53 AM 27216]
R3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\drivers\dc3d.sys [5/28/2011 8:37 PM 45472]
R3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507;c:\program files\MSI\Live Update 5\msibios32_100507.sys [11/6/2011 11:56 AM 25912]
R3 NTIOLib_1_0_4;NTIOLib_1_0_4;c:\program files\MSI\Live Update 5\NTIOLib.sys [11/6/2011 11:56 AM 7680]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [12/10/2010 12:50 PM 62336]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [12/10/2010 12:50 PM 141440]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\drivers\tap0901t.sys [5/28/2011 4:17 AM 27136]
S0 DwProt;DrWeb Protection;c:\windows\system32\drivers\dwprot.sys [12/28/2011 7:20 PM 149272]
S0 TfFsMon;TfFsMon;c:\windows\system32\drivers\TfFsMon.sys --> c:\windows\system32\drivers\TfFsMon.sys [?]
S0 TFSysMon;TfSysMon;c:\windows\system32\drivers\TfSysMon.sys --> c:\windows\system32\drivers\TfSysMon.sys [?]
S1 7989609drv;7989609drv;c:\windows\system32\DRIVERS\7989609drv.sys --> c:\windows\system32\DRIVERS\7989609drv.sys [?]
S1 MpKsl0598a10d;MpKsl0598a10d;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EAE906B5-58AB-460F-AA5B-7A1A67FDC9AE}\MpKsl0598a10d.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EAE906B5-58AB-460F-AA5B-7A1A67FDC9AE}\MpKsl0598a10d.sys [?]
S1 MpKsl0a3872f4;MpKsl0a3872f4;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FB7C8397-DC9B-40ED-A1D7-EAC2066089AD}\MpKsl0a3872f4.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FB7C8397-DC9B-40ED-A1D7-EAC2066089AD}\MpKsl0a3872f4.sys [?]
S1 MpKsl10b6fe46;MpKsl10b6fe46;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EAE906B5-58AB-460F-AA5B-7A1A67FDC9AE}\MpKsl10b6fe46.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EAE906B5-58AB-460F-AA5B-7A1A67FDC9AE}\MpKsl10b6fe46.sys [?]
S1 MpKsl1297e534;MpKsl1297e534;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{C9880E43-070C-4075-80F5-97844F40C3C6}\MpKsl1297e534.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{C9880E43-070C-4075-80F5-97844F40C3C6}\MpKsl1297e534.sys [?]
S1 MpKsl19bced5e;MpKsl19bced5e;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{891E801F-AEAE-47C5-8CA9-AF4A91242C91}\MpKsl19bced5e.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{891E801F-AEAE-47C5-8CA9-AF4A91242C91}\MpKsl19bced5e.sys [?]
S1 MpKsl2314177c;MpKsl2314177c;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EDFD08A2-F6CC-4D4E-9330-960BC0A82A31}\MpKsl2314177c.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EDFD08A2-F6CC-4D4E-9330-960BC0A82A31}\MpKsl2314177c.sys [?]
S1 MpKsl23f3f158;MpKsl23f3f158;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{87C61EA8-C2E1-4A7A-958E-779490A34FB4}\MpKsl23f3f158.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{87C61EA8-C2E1-4A7A-958E-779490A34FB4}\MpKsl23f3f158.sys [?]
S1 MpKsl25a56b84;MpKsl25a56b84;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5C1A6BF7-68A9-4C4D-BFF8-F6560B46968F}\MpKsl25a56b84.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5C1A6BF7-68A9-4C4D-BFF8-F6560B46968F}\MpKsl25a56b84.sys [?]
S1 MpKsl27379ed7;MpKsl27379ed7;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FB3C2939-F561-46D1-B62A-773AD427EC77}\MpKsl27379ed7.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FB3C2939-F561-46D1-B62A-773AD427EC77}\MpKsl27379ed7.sys [?]
S1 MpKsl2842aac3;MpKsl2842aac3;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{4C1607DF-6FA5-4A9E-8D2A-6DF1801047BB}\MpKsl2842aac3.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{4C1607DF-6FA5-4A9E-8D2A-6DF1801047BB}\MpKsl2842aac3.sys [?]
S1 MpKsl2b0bdbc4;MpKsl2b0bdbc4;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FB7C8397-DC9B-40ED-A1D7-EAC2066089AD}\MpKsl2b0bdbc4.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FB7C8397-DC9B-40ED-A1D7-EAC2066089AD}\MpKsl2b0bdbc4.sys [?]
S1 MpKsl2d47d129;MpKsl2d47d129;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{C9880E43-070C-4075-80F5-97844F40C3C6}\MpKsl2d47d129.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{C9880E43-070C-4075-80F5-97844F40C3C6}\MpKsl2d47d129.sys [?]
S1 MpKsl3305eb99;MpKsl3305eb99;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E20B495D-B1BC-4DB2-A1B7-87DEDDA82B90}\MpKsl3305eb99.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E20B495D-B1BC-4DB2-A1B7-87DEDDA82B90}\MpKsl3305eb99.sys [?]
S1 MpKsl3401f868;MpKsl3401f868;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E20B495D-B1BC-4DB2-A1B7-87DEDDA82B90}\MpKsl3401f868.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E20B495D-B1BC-4DB2-A1B7-87DEDDA82B90}\MpKsl3401f868.sys [?]
S1 MpKsl347efce5;MpKsl347efce5;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FB7C8397-DC9B-40ED-A1D7-EAC2066089AD}\MpKsl347efce5.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FB7C8397-DC9B-40ED-A1D7-EAC2066089AD}\MpKsl347efce5.sys [?]
S1 MpKsl34a59b0e;MpKsl34a59b0e;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{95EDBC0C-ACBA-4F8E-98DD-8821C823ADBA}\MpKsl34a59b0e.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{95EDBC0C-ACBA-4F8E-98DD-8821C823ADBA}\MpKsl34a59b0e.sys [?]
S1 MpKsl3c5c4e0a;MpKsl3c5c4e0a;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{890ADE05-7F22-4FFF-AE1C-DD10B33EF1AC}\MpKsl3c5c4e0a.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{890ADE05-7F22-4FFF-AE1C-DD10B33EF1AC}\MpKsl3c5c4e0a.sys [?]
S1 MpKsl3de503e5;MpKsl3de503e5;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{32A02C1B-1E40-4B3B-BAF9-A54E762104DE}\MpKsl3de503e5.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{32A02C1B-1E40-4B3B-BAF9-A54E762104DE}\MpKsl3de503e5.sys [?]
S1 MpKsl43574dee;MpKsl43574dee;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{87C61EA8-C2E1-4A7A-958E-779490A34FB4}\MpKsl43574dee.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{87C61EA8-C2E1-4A7A-958E-779490A34FB4}\MpKsl43574dee.sys [?]
S1 MpKsl4468f080;MpKsl4468f080;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F5622473-D12D-4CAC-AEB7-5C859744BBDD}\MpKsl4468f080.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F5622473-D12D-4CAC-AEB7-5C859744BBDD}\MpKsl4468f080.sys [?]
S1 MpKsl44e04ee3;MpKsl44e04ee3;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EDFD08A2-F6CC-4D4E-9330-960BC0A82A31}\MpKsl44e04ee3.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EDFD08A2-F6CC-4D4E-9330-960BC0A82A31}\MpKsl44e04ee3.sys [?]
S1 MpKsl45468207;MpKsl45468207;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{468F0A69-3CE1-4325-BB9C-DB4141DDF25E}\MpKsl45468207.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{468F0A69-3CE1-4325-BB9C-DB4141DDF25E}\MpKsl45468207.sys [?]
S1 MpKsl4871fb62;MpKsl4871fb62;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7E3D015F-AD54-4339-A9C4-6ED385B35861}\MpKsl4871fb62.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7E3D015F-AD54-4339-A9C4-6ED385B35861}\MpKsl4871fb62.sys [?]
S1 MpKsl49c4bc59;MpKsl49c4bc59;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5C1A6BF7-68A9-4C4D-BFF8-F6560B46968F}\MpKsl49c4bc59.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5C1A6BF7-68A9-4C4D-BFF8-F6560B46968F}\MpKsl49c4bc59.sys [?]
S1 MpKsl4a3a8a5a;MpKsl4a3a8a5a;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5C1A6BF7-68A9-4C4D-BFF8-F6560B46968F}\MpKsl4a3a8a5a.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5C1A6BF7-68A9-4C4D-BFF8-F6560B46968F}\MpKsl4a3a8a5a.sys [?]
S1 MpKsl4c6eb6a3;MpKsl4c6eb6a3;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DE3293AD-02D7-49C9-BF75-CD825D33A55D}\MpKsl4c6eb6a3.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DE3293AD-02D7-49C9-BF75-CD825D33A55D}\MpKsl4c6eb6a3.sys [?]
S1 MpKsl4e6ef89f;MpKsl4e6ef89f;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{B41D6DA1-8CCB-40C4-AB05-35448374A70E}\MpKsl4e6ef89f.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{B41D6DA1-8CCB-40C4-AB05-35448374A70E}\MpKsl4e6ef89f.sys [?]
S1 MpKsl4eecc878;MpKsl4eecc878;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{95EDBC0C-ACBA-4F8E-98DD-8821C823ADBA}\MpKsl4eecc878.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{95EDBC0C-ACBA-4F8E-98DD-8821C823ADBA}\MpKsl4eecc878.sys [?]
S1 MpKsl519b7ddb;MpKsl519b7ddb;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FA8BD3B6-E388-4B27-8593-B324D9B85C4B}\MpKsl519b7ddb.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FA8BD3B6-E388-4B27-8593-B324D9B85C4B}\MpKsl519b7ddb.sys [?]
S1 MpKsl51c7791d;MpKsl51c7791d;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5D4C9958-30B4-434C-AF65-F0D3FFF4B5D2}\MpKsl51c7791d.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5D4C9958-30B4-434C-AF65-F0D3FFF4B5D2}\MpKsl51c7791d.sys [?]
S1 MpKsl51f5c93a;MpKsl51f5c93a;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{2EF02A97-A5C8-442E-A741-5503E0DA2741}\MpKsl51f5c93a.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{2EF02A97-A5C8-442E-A741-5503E0DA2741}\MpKsl51f5c93a.sys [?]
S1 MpKsl54a50c22;MpKsl54a50c22;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7889CD4E-555F-4500-A5B1-3903174D463F}\MpKsl54a50c22.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7889CD4E-555F-4500-A5B1-3903174D463F}\MpKsl54a50c22.sys [?]
S1 MpKsl5ba98317;MpKsl5ba98317;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5C1A6BF7-68A9-4C4D-BFF8-F6560B46968F}\MpKsl5ba98317.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5C1A6BF7-68A9-4C4D-BFF8-F6560B46968F}\MpKsl5ba98317.sys [?]
S1 MpKsl6149e9a0;MpKsl6149e9a0;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{1B5F96D2-7CE8-4C65-AC9D-96C41A5593CE}\MpKsl6149e9a0.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{1B5F96D2-7CE8-4C65-AC9D-96C41A5593CE}\MpKsl6149e9a0.sys [?]
S1 MpKsl64e9dc04;MpKsl64e9dc04;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EAE906B5-58AB-460F-AA5B-7A1A67FDC9AE}\MpKsl64e9dc04.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EAE906B5-58AB-460F-AA5B-7A1A67FDC9AE}\MpKsl64e9dc04.sys [?]
S1 MpKsl65dd8335;MpKsl65dd8335;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5CA35170-C2F8-4507-BAB4-34681D48D266}\MpKsl65dd8335.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5CA35170-C2F8-4507-BAB4-34681D48D266}\MpKsl65dd8335.sys [?]
S1 MpKsl704bf366;MpKsl704bf366;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{52BCF8EB-9420-4295-B9F5-DBD3447B8A23}\MpKsl704bf366.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{52BCF8EB-9420-4295-B9F5-DBD3447B8A23}\MpKsl704bf366.sys [?]
S1 MpKsl708a3b9b;MpKsl708a3b9b;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{95EDBC0C-ACBA-4F8E-98DD-8821C823ADBA}\MpKsl708a3b9b.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{95EDBC0C-ACBA-4F8E-98DD-8821C823ADBA}\MpKsl708a3b9b.sys [?]
S1 MpKsl728aa061;MpKsl728aa061;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{B00A444C-C56B-49DF-B472-75D7FC88EA57}\MpKsl728aa061.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{B00A444C-C56B-49DF-B472-75D7FC88EA57}\MpKsl728aa061.sys [?]
S1 MpKsl73969a5c;MpKsl73969a5c;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F8A183DB-AA09-4E2E-BBA3-02E0A29D13A9}\MpKsl73969a5c.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F8A183DB-AA09-4E2E-BBA3-02E0A29D13A9}\MpKsl73969a5c.sys [?]
S1 MpKsl73c3bd66;MpKsl73c3bd66;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FD39350D-5A7A-4520-B441-3DE74D3B3DB8}\MpKsl73c3bd66.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FD39350D-5A7A-4520-B441-3DE74D3B3DB8}\MpKsl73c3bd66.sys [?]
S1 MpKsl73d9b3b4;MpKsl73d9b3b4;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F002796D-EC16-4073-9AC6-F7CDC83448AA}\MpKsl73d9b3b4.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F002796D-EC16-4073-9AC6-F7CDC83448AA}\MpKsl73d9b3b4.sys [?]
S1 MpKsl7bd7e6a9;MpKsl7bd7e6a9;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{D9F4F46B-FD9A-4D2E-AF35-A4BB6C244780}\MpKsl7bd7e6a9.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{D9F4F46B-FD9A-4D2E-AF35-A4BB6C244780}\MpKsl7bd7e6a9.sys [?]
S1 MpKsl7c638330;MpKsl7c638330;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7E3D015F-AD54-4339-A9C4-6ED385B35861}\MpKsl7c638330.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7E3D015F-AD54-4339-A9C4-6ED385B35861}\MpKsl7c638330.sys [?]
S1 MpKsl7e40de05;MpKsl7e40de05;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DE3293AD-02D7-49C9-BF75-CD825D33A55D}\MpKsl7e40de05.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DE3293AD-02D7-49C9-BF75-CD825D33A55D}\MpKsl7e40de05.sys [?]
S1 MpKsl80c9917e;MpKsl80c9917e;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5CA35170-C2F8-4507-BAB4-34681D48D266}\MpKsl80c9917e.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5CA35170-C2F8-4507-BAB4-34681D48D266}\MpKsl80c9917e.sys [?]
S1 MpKsl83a72b0e;MpKsl83a72b0e;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{38739D11-7DB6-4CCB-86AD-407D27CC9396}\MpKsl83a72b0e.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{38739D11-7DB6-4CCB-86AD-407D27CC9396}\MpKsl83a72b0e.sys [?]
S1 MpKsl84b89d5d;MpKsl84b89d5d;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5FEE835F-0A76-4131-A4ED-D465EFEF220A}\MpKsl84b89d5d.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5FEE835F-0A76-4131-A4ED-D465EFEF220A}\MpKsl84b89d5d.sys [?]
S1 MpKsl85f9f263;MpKsl85f9f263;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F2892512-8826-4155-8FD9-4D2068558DF0}\MpKsl85f9f263.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F2892512-8826-4155-8FD9-4D2068558DF0}\MpKsl85f9f263.sys [?]
S1 MpKsl865578ff;MpKsl865578ff;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{B9652E93-00E8-46A6-80C4-1082FE1F1C98}\MpKsl865578ff.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{B9652E93-00E8-46A6-80C4-1082FE1F1C98}\MpKsl865578ff.sys [?]
S1 MpKsl92607528;MpKsl92607528;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{468F0A69-3CE1-4325-BB9C-DB4141DDF25E}\MpKsl92607528.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{468F0A69-3CE1-4325-BB9C-DB4141DDF25E}\MpKsl92607528.sys [?]
S1 MpKsl9ad6e6b2;MpKsl9ad6e6b2;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{0B140760-C8FE-4780-99BF-7B8F4C7AD4E7}\MpKsl9ad6e6b2.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{0B140760-C8FE-4780-99BF-7B8F4C7AD4E7}\MpKsl9ad6e6b2.sys [?]
S1 MpKsl9d79ddd9;MpKsl9d79ddd9;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{1B3C04CB-3B3A-4291-B12E-0FDA486A8108}\MpKsl9d79ddd9.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{1B3C04CB-3B3A-4291-B12E-0FDA486A8108}\MpKsl9d79ddd9.sys [?]
S1 MpKsl9de07d11;MpKsl9de07d11;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F8EEA8CF-B39E-4E27-8685-CD7A0A3E47F9}\MpKsl9de07d11.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F8EEA8CF-B39E-4E27-8685-CD7A0A3E47F9}\MpKsl9de07d11.sys [?]
S1 MpKsla0713dbf;MpKsla0713dbf;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{4C1607DF-6FA5-4A9E-8D2A-6DF1801047BB}\MpKsla0713dbf.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{4C1607DF-6FA5-4A9E-8D2A-6DF1801047BB}\MpKsla0713dbf.sys [?]
S1 MpKsla0ed5967;MpKsla0ed5967;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F6482D8D-6F2A-4744-9FA2-148A40E4B195}\MpKsla0ed5967.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F6482D8D-6F2A-4744-9FA2-148A40E4B195}\MpKsla0ed5967.sys [?]
S1 MpKsla225631e;MpKsla225631e;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{8F387A42-433C-4364-855F-0A3726046AA4}\MpKsla225631e.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{8F387A42-433C-4364-855F-0A3726046AA4}\MpKsla225631e.sys [?]
S1 MpKsla74a3746;MpKsla74a3746;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{468F0A69-3CE1-4325-BB9C-DB4141DDF25E}\MpKsla74a3746.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{468F0A69-3CE1-4325-BB9C-DB4141DDF25E}\MpKsla74a3746.sys [?]
S1 MpKslad9d4725;MpKslad9d4725;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{32A02C1B-1E40-4B3B-BAF9-A54E762104DE}\MpKslad9d4725.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{32A02C1B-1E40-4B3B-BAF9-A54E762104DE}\MpKslad9d4725.sys [?]
S1 MpKslb5c5ca62;MpKslb5c5ca62;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{D0829FED-2EB6-456D-906C-65B6FADABB9D}\MpKslb5c5ca62.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{D0829FED-2EB6-456D-906C-65B6FADABB9D}\MpKslb5c5ca62.sys [?]
S1 MpKslb85d5af2;MpKslb85d5af2;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{30237FAD-72FA-4D6F-A84C-176F6AD1ECA5}\MpKslb85d5af2.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{30237FAD-72FA-4D6F-A84C-176F6AD1ECA5}\MpKslb85d5af2.sys [?]
S1 MpKslbb9f2aff;MpKslbb9f2aff;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{A38244B1-4A96-498E-89ED-D215F973A886}\MpKslbb9f2aff.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{A38244B1-4A96-498E-89ED-D215F973A886}\MpKslbb9f2aff.sys [?]
S1 MpKslbe6db7ad;MpKslbe6db7ad;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{05C039DF-F59D-4B3C-827B-0BA08C93DCA6}\MpKslbe6db7ad.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{05C039DF-F59D-4B3C-827B-0BA08C93DCA6}\MpKslbe6db7ad.sys [?]
S1 MpKslc0b8cde2;MpKslc0b8cde2;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{87213BF0-2D89-435C-9A41-4041BF1A1AE3}\MpKslc0b8cde2.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{87213BF0-2D89-435C-9A41-4041BF1A1AE3}\MpKslc0b8cde2.sys [?]
S1 MpKslc1d0872f;MpKslc1d0872f;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EAE906B5-58AB-460F-AA5B-7A1A67FDC9AE}\MpKslc1d0872f.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EAE906B5-58AB-460F-AA5B-7A1A67FDC9AE}\MpKslc1d0872f.sys [?]
S1 MpKslc89dbf09;MpKslc89dbf09;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{685E8400-B619-4030-AC08-E4D5A882B42B}\MpKslc89dbf09.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{685E8400-B619-4030-AC08-E4D5A882B42B}\MpKslc89dbf09.sys [?]
S1 MpKslcaa37dcb;MpKslcaa37dcb;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{6072BAD3-11A9-4FC1-A56A-EE2DCC162447}\MpKslcaa37dcb.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{6072BAD3-11A9-4FC1-A56A-EE2DCC162447}\MpKslcaa37dcb.sys [?]
S1 MpKslcdcbf57a;MpKslcdcbf57a;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{AFD91EE5-B159-40AB-A252-1C8F15444805}\MpKslcdcbf57a.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{AFD91EE5-B159-40AB-A252-1C8F15444805}\MpKslcdcbf57a.sys [?]
S1 MpKsld540f9b2;MpKsld540f9b2;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7E3D015F-AD54-4339-A9C4-6ED385B35861}\MpKsld540f9b2.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7E3D015F-AD54-4339-A9C4-6ED385B35861}\MpKsld540f9b2.sys [?]
S1 MpKsld67133c7;MpKsld67133c7;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{993DA9FD-E2D6-406B-9465-FD83ADC88CB0}\MpKsld67133c7.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{993DA9FD-E2D6-406B-9465-FD83ADC88CB0}\MpKsld67133c7.sys [?]
S1 MpKsld97aac3b;MpKsld97aac3b;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{3688B08D-7F7E-4361-953F-36D5D56065BB}\MpKsld97aac3b.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{3688B08D-7F7E-4361-953F-36D5D56065BB}\MpKsld97aac3b.sys [?]
S1 MpKsldc293362;MpKsldc293362;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{13C0CFC5-66EC-42E7-A022-DCF48DE6AB1A}\MpKsldc293362.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{13C0CFC5-66EC-42E7-A022-DCF48DE6AB1A}\MpKsldc293362.sys [?]
S1 MpKslddf25d39;MpKslddf25d39;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{52BCF8EB-9420-4295-B9F5-DBD3447B8A23}\MpKslddf25d39.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{52BCF8EB-9420-4295-B9F5-DBD3447B8A23}\MpKslddf25d39.sys [?]
S1 MpKsldea974db;MpKsldea974db;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{9AC02783-50A3-4BE8-A949-26ADFBE0F956}\MpKsldea974db.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{9AC02783-50A3-4BE8-A949-26ADFBE0F956}\MpKsldea974db.sys [?]
S1 MpKsldeab5511;MpKsldeab5511;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{993DA9FD-E2D6-406B-9465-FD83ADC88CB0}\MpKsldeab5511.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{993DA9FD-E2D6-406B-9465-FD83ADC88CB0}\MpKsldeab5511.sys [?]
S1 MpKsle654c836;MpKsle654c836;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{8DC9948E-F69C-431D-8E2D-F8BAE6585A68}\MpKsle654c836.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{8DC9948E-F69C-431D-8E2D-F8BAE6585A68}\MpKsle654c836.sys [?]
S1 MpKslec570b94;MpKslec570b94;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{3A559833-429E-4929-84CF-8B42B7E248D4}\MpKslec570b94.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{3A559833-429E-4929-84CF-8B42B7E248D4}\MpKslec570b94.sys [?]
S1 MpKslf048c4a6;MpKslf048c4a6;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5CA35170-C2F8-4507-BAB4-34681D48D266}\MpKslf048c4a6.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5CA35170-C2F8-4507-BAB4-34681D48D266}\MpKslf048c4a6.sys [?]
S1 MpKslf8f898f7;MpKslf8f898f7;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F2892512-8826-4155-8FD9-4D2068558DF0}\MpKslf8f898f7.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F2892512-8826-4155-8FD9-4D2068558DF0}\MpKslf8f898f7.sys [?]
S1 MpKslf9a1e809;MpKslf9a1e809;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FA8BD3B6-E388-4B27-8593-B324D9B85C4B}\MpKslf9a1e809.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{FA8BD3B6-E388-4B27-8593-B324D9B85C4B}\MpKslf9a1e809.sys [?]
S1 MpKslfb2623eb;MpKslfb2623eb;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E7E1E334-7AEB-425E-A4B9-1A734D08A01E}\MpKslfb2623eb.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E7E1E334-7AEB-425E-A4B9-1A734D08A01E}\MpKslfb2623eb.sys [?]
S1 MpKslfb70c984;MpKslfb70c984;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5BBC80D5-416B-4F57-BDCE-3E8A2396E30A}\MpKslfb70c984.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5BBC80D5-416B-4F57-BDCE-3E8A2396E30A}\MpKslfb70c984.sys [?]
S1 MpKslfd1b6cf5;MpKslfd1b6cf5;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DE5AD70F-223B-4B92-BC90-D8CBEDA6AF6D}\MpKslfd1b6cf5.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DE5AD70F-223B-4B92-BC90-D8CBEDA6AF6D}\MpKslfd1b6cf5.sys [?]
S1 MpKslff244a6f;MpKslff244a6f;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{C06B90BD-BAEA-4940-B64F-21197138AD2E}\MpKslff244a6f.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{C06B90BD-BAEA-4940-B64F-21197138AD2E}\MpKslff244a6f.sys [?]
S2 ATE_PROCMON;ATE_PROCMON;\??\c:\program files\Anti Trojan Elite\ATEPMon.sys --> c:\program files\Anti Trojan Elite\ATEPMon.sys [?]
S2 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [10/21/2011 3:23 PM 196176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [3/18/2010 12:16 PM 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [5/28/2011 12:31 AM 135664]
S2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files\Spybot - Search & Destroy 2\SDFSSvc.exe [12/28/2011 8:05 PM 892336]
S3 ADASPROT;SYSTWEAKASO;c:\program files\Advanced System Optimizer 3\adasprot32.sys [5/28/2011 3:28 AM 6656]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [5/28/2011 4:45 PM 1691480]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG10\Toolbar\ToolbarBroker.exe [5/28/2011 7:00 PM 167264]
S3 bdfm;BDFM;c:\windows\system32\drivers\bdfm.sys [4/15/2009 3:13 PM 146312]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [5/28/2011 12:31 AM 135664]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [1/21/2010 4:51 PM 30963576]
S3 nosGetPlusHelper;getPlus® Helper 3004;c:\windows\System32\svchost.exe -k nosGetPlusHelper [5/28/2011 12:21 PM 14336]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [1/9/2010 7:37 PM 4640000]
S3 TfNetMon;TfNetMon;\??\c:\windows\system32\drivers\TfNetMon.sys --> c:\windows\system32\drivers\TfNetMon.sys [?]
S3 TunngleService;TunngleService;c:\program files\Tunngle\TnglCtrl.exe [5/28/2011 4:17 AM 751464]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [5/28/2011 12:21 PM 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [3/18/2010 12:16 PM 753504]
S3 XoftSpyService;XoftSpyService;c:\program files\Common Files\XoftSpySE\6\xoftspyservice.exe [9/29/2010 1:43 PM 582424]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
nosGetPlusHelper REG_MULTI_SZ nosGetPlusHelper
WINRM REG_MULTI_SZ WINRM
bdx REG_MULTI_SZ scan
.
Contents of the 'Scheduled Tasks' folder
.
2011-12-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-05-28 05:31]
.
2011-12-31 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-05-28 05:31]
.
2011-12-30 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1951331312-3607356801-2693221895-1005Core.job
- c:\documents and settings\TwenTY20zOfHazE\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-05-28 21:04]
.
2011-12-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1951331312-3607356801-2693221895-1005UA.job
- c:\documents and settings\TwenTY20zOfHazE\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-05-28 21:04]
.
2011-05-29 c:\windows\Tasks\Microsoft_Hardware_Launch_IType_exe.job
- c:\program files\Microsoft IntelliType Pro\itype.exe [2011-04-13 19:03]
.
2011-12-30 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 19:39]
.
2011-12-30 c:\windows\Tasks\ParetoLogic Registration3.job
- c:\program files\Common Files\ParetoLogic\UUS3\UUS3.dll [2010-09-29 18:43]
.
2011-12-29 c:\windows\Tasks\ParetoLogic Update Version3.job
- c:\program files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2010-09-29 18:43]
.
2011-12-29 c:\windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
- c:\program files\Spybot - Search & Destroy 2\SDImmunize.exe [2011-12-29 20:46]
.
2011-12-31 c:\windows\Tasks\User_Feed_Synchronization-{194DE050-D515-462E-9509-3F730C61C112}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 08:31]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
mStart Page = about:blank
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.1 68.237.161.12
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\9.0.1\ViProtocol.dll
FF - ProfilePath - c:\documents and settings\TwenTY20zOfHazE\Application Data\Mozilla\Firefox\Profiles\4sk90nti.default\
FF - prefs.js: browser.search.defaulturl - hxxp://aim.search.aol.com/aol/search?query={searchTerms}&invocationType=tb50-ff-aim-chromesbox-en-us&tb_uuid=20100324223133512&tb_oid=24-03-2010&tb_mrud=29-05-2011
FF - prefs.js: browser.search.selectedEngine - AVG Secure Search
FF - prefs.js: browser.startup.homepage - hxxps://www.google.com/webhp?hl=en&output=html&nomo=1
FF - prefs.js: keyword.URL - hxxp://slirsredirect.search.aol.com/redirector/sredir?sredir=2706&invocationType=tb50-ff-aim-ab-en-us&query=
FF - user.js: network.protocol-handler.warn-external.dnupdate - false);user_pref(network.protocol-handler.warn-external.dnupdate, false
FF - user.js: browser.sessionstore.resume_from_crash - false
FF - user.js: network.protocol-handler.warn-external.dnupdate - false);user_pref(network.protocol-handler.warn-external.dnupdate, false);user_pref(network.protocol-handler.warn-external.dnupdate, false);user_pref(network.protocol-handler.warn-external.dnupdate, false
.
- - - - ORPHANS REMOVED - - - -
.
Notify-SDWinLogon - SDWinLogon.dll
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-12-30 21:32
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1951331312-3607356801-2693221895-1005\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Sawatex\FFHC Kasumi - Rebirth\‚ÿÔˆ-*Úâû0]
"Order"=hex:08,00,00,00,02,00,00,00,18,01,00,00,01,00,00,00,02,00,00,00,86,00,
00,00,00,00,00,00,78,00,00,00,41,75,67,4d,02,00,00,00,01,00,00,00,66,00,32,\
.
[HKEY_USERS\S-1-5-21-1951331312-3607356801-2693221895-1005\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:b1,bd,34,62,97,70,a8,06,f3,c9,cd,23,f1,5e,f6,0d,cb,c6,01,35,2f,8b,23,
ca,1f,64,ce,9f,8f,59,3d,90,f6,6a,f3,1c,fa,9b,d8,57,82,f8,97,0c,eb,d0,bb,43,\
"??"=hex:e2,06,90,c3,a9,ab,f7,ca,1c,f7,63,d7,3e,f2,89,5d
.
[HKEY_LOCAL_MACHINE\software\Microsoft\DbgagD\1*]
"value"="?\05\06\1c\15\01\0d?"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(1328)
c:\program files\Spybot - Search & Destroy 2\SDHook32.dll
c:\program files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll
.
- - - - - - - > 'lsass.exe'(1392)
c:\program files\Spybot - Search & Destroy 2\SDHook32.dll
c:\program files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll
.
Completion time: 2011-12-30 21:38:47
ComboFix-quarantined-files.txt 2011-12-31 02:38
ComboFix2.txt 2011-12-24 00:29
.
Pre-Run: 8,949,407,744 bytes free
Post-Run: 9,087,918,080 bytes free
.
- - End Of File - - 0E64D616E85F28A8958440C98CF7FBC7

#8 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,137 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 01 January 2012 - 09:23 AM

AV: AVG Anti-Virus Free Edition 2011
AV: Microsoft Security Essentials


You're running two anti-virus programs, you have to uninstall one of them....I suggest you keep MSE and uninstall AVG.

Let me know, MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#9 MarkThaHeat

MarkThaHeat

    New Member

  • Members
  • Pip
  • 20 posts

Posted 01 January 2012 - 03:55 PM

I had these two AV applications installed simultaneously concurrently for years and this performance decrease only started happening a month ago which should negate that as being the issue. The system performs fine under normal operation , just under higher demanding situations it begins to compromise such as gaming. But I will remove one of the AV applications anyway because what you say is actually correct although one again I doubt that's the issue outlaid here. Upon removal of MSSE the system still remains the same.

#10 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,137 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 02 January 2012 - 08:49 AM

I also see you have Spybot running too.
ComboFix is a very powerful tool and it comes up clean.
-------------
Run TDSSKiller just to double check for rootkits.....
Please download and run TDSSKiller as outlined in the post below:

http://forums.malwar...ndpost&p=499595

Post back the log, MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#11 MarkThaHeat

MarkThaHeat

    New Member

  • Members
  • Pip
  • 20 posts

Posted 02 January 2012 - 02:32 PM

Apologize about the duplicate post , figured two heads were better than one. I removed spybot also , I pretty much downloaded about twenty different AV applications in desperation. As of right now I only have one real time scanner active. Here is the TDSS Log:

14:26:32.0236 3676 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
14:26:32.0799 3676 ============================================================
14:26:32.0799 3676 Current date / time: 2012/01/02 14:26:32.0799
14:26:32.0799 3676 SystemInfo:
14:26:32.0799 3676
14:26:32.0799 3676 OS Version: 5.1.2600 ServicePack: 3.0
14:26:32.0799 3676 Product type: Workstation
14:26:32.0846 3676 ComputerName: BLOCK-PROVIDER
14:26:32.0846 3676 UserName: TwenTY20zOfHazE
14:26:32.0846 3676 Windows directory: C:\WINDOWS
14:26:32.0846 3676 System windows directory: C:\WINDOWS
14:26:32.0846 3676 Processor architecture: Intel x86
14:26:32.0846 3676 Number of processors: 4
14:26:32.0846 3676 Page size: 0x1000
14:26:32.0846 3676 Boot type: Normal boot
14:26:32.0846 3676 ============================================================
14:26:34.0549 3676 Initialize success
14:27:38.0471 5108 ============================================================
14:27:38.0471 5108 Scan started
14:27:38.0471 5108 Mode: Manual; SigCheck; TDLFS;
14:27:38.0471 5108 ============================================================
14:27:40.0080 5108 7989609drv - ok
14:27:40.0096 5108 Abiosdsk - ok
14:27:40.0127 5108 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
14:27:42.0299 5108 abp480n5 - ok
14:27:42.0549 5108 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:27:42.0690 5108 ACPI - ok
14:27:42.0736 5108 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
14:27:42.0830 5108 ACPIEC - ok
14:27:42.0908 5108 ADASPROT (e9b047e166480f67fb6d50b3eec8bd35) C:\Program Files\Advanced System Optimizer 3\adasprot32.sys
14:27:42.0940 5108 ADASPROT ( UnsignedFile.Multi.Generic ) - warning
14:27:42.0940 5108 ADASPROT - detected UnsignedFile.Multi.Generic (1)
14:27:42.0955 5108 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
14:27:43.0018 5108 adpu160m - ok
14:27:43.0065 5108 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
14:27:43.0174 5108 aec - ok
14:27:43.0221 5108 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
14:27:43.0440 5108 AFD - ok
14:27:43.0518 5108 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
14:27:43.0627 5108 agp440 - ok
14:27:43.0643 5108 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
14:27:43.0705 5108 agpCPQ - ok
14:27:43.0721 5108 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
14:27:43.0783 5108 Aha154x - ok
14:27:43.0815 5108 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
14:27:43.0924 5108 aic78u2 - ok
14:27:43.0940 5108 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
14:27:44.0002 5108 aic78xx - ok
14:27:44.0033 5108 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
14:27:44.0127 5108 AliIde - ok
14:27:44.0143 5108 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
14:27:44.0236 5108 alim1541 - ok
14:27:44.0315 5108 Ambfilt (267fc636801edc5ab28e14036349e3be) C:\WINDOWS\system32\drivers\Ambfilt.sys
14:27:44.0455 5108 Ambfilt - ok
14:27:44.0471 5108 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
14:27:44.0533 5108 amdagp - ok
14:27:44.0565 5108 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
14:27:44.0611 5108 amsint - ok
14:27:44.0627 5108 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
14:27:44.0721 5108 asc - ok
14:27:44.0736 5108 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
14:27:44.0799 5108 asc3350p - ok
14:27:44.0815 5108 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
14:27:44.0893 5108 asc3550 - ok
14:27:44.0924 5108 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:27:45.0049 5108 AsyncMac - ok
14:27:45.0065 5108 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
14:27:45.0127 5108 atapi - ok
14:27:45.0143 5108 Atdisk - ok
14:27:45.0190 5108 ATE_PROCMON - ok
14:27:45.0221 5108 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:27:45.0268 5108 Atmarpc - ok
14:27:45.0283 5108 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
14:27:45.0346 5108 audstub - ok
14:27:45.0393 5108 AVGIDSDriver (2d18221aab3db2d408d6c55c0f23090a) C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys
14:27:45.0408 5108 AVGIDSDriver - ok
14:27:45.0440 5108 AVGIDSEH (1af676db3f3d4cc709cfab2571cf5fc3) C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys
14:27:45.0455 5108 AVGIDSEH - ok
14:27:45.0471 5108 AVGIDSFilter (4c51e233c87f9ec7598551de554bc99d) C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys
14:27:45.0486 5108 AVGIDSFilter - ok
14:27:45.0502 5108 AVGIDSShim (c3fc426e54f55c1cc3219e415b88e10c) C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys
14:27:45.0502 5108 AVGIDSShim - ok
14:27:45.0518 5108 Avgldx86 (4e796d3d2c3182b13b3e3b5a2ad4ef0a) C:\WINDOWS\system32\DRIVERS\avgldx86.sys
14:27:45.0533 5108 Avgldx86 - ok
14:27:45.0549 5108 Avgmfx86 (5639de66b37d02bd22df4cf3155fba60) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
14:27:45.0565 5108 Avgmfx86 - ok
14:27:45.0580 5108 Avgrkx86 (d1baf652eda0ae70896276a1fb32c2d4) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
14:27:45.0580 5108 Avgrkx86 - ok
14:27:45.0596 5108 Avgtdix (aaf0ebcad95f2164cffb544e00392498) C:\WINDOWS\system32\DRIVERS\avgtdix.sys
14:27:45.0611 5108 Avgtdix - ok
14:27:45.0658 5108 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
14:27:45.0768 5108 Beep - ok
14:27:45.0846 5108 catchme - ok
14:27:45.0877 5108 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
14:27:45.0986 5108 cbidf - ok
14:27:45.0986 5108 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
14:27:46.0080 5108 cbidf2k - ok
14:27:46.0111 5108 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
14:27:46.0174 5108 CCDECODE - ok
14:27:46.0190 5108 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
14:27:46.0221 5108 cd20xrnt - ok
14:27:46.0236 5108 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
14:27:46.0299 5108 Cdaudio - ok
14:27:46.0315 5108 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
14:27:46.0361 5108 Cdfs - ok
14:27:46.0377 5108 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:27:46.0455 5108 Cdrom - ok
14:27:46.0471 5108 Changer - ok
14:27:46.0486 5108 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
14:27:46.0533 5108 CmdIde - ok
14:27:46.0565 5108 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
14:27:46.0627 5108 Cpqarray - ok
14:27:46.0627 5108 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
14:27:46.0705 5108 dac2w2k - ok
14:27:46.0721 5108 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
14:27:46.0783 5108 dac960nt - ok
14:27:46.0815 5108 dc3d (13f87920b684b23d1fa803e1bb017507) C:\WINDOWS\system32\DRIVERS\dc3d.sys
14:27:46.0846 5108 dc3d - ok
14:27:46.0877 5108 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
14:27:46.0940 5108 Disk - ok
14:27:46.0986 5108 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
14:27:47.0127 5108 dmboot - ok
14:27:47.0143 5108 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
14:27:47.0221 5108 dmio - ok
14:27:47.0268 5108 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
14:27:47.0330 5108 dmload - ok
14:27:47.0346 5108 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
14:27:47.0408 5108 DMusic - ok
14:27:47.0424 5108 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
14:27:47.0471 5108 dpti2o - ok
14:27:47.0486 5108 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
14:27:47.0549 5108 drmkaud - ok
14:27:47.0580 5108 dtsoftbus01 (fb38473835476a6fb272215a1d972af9) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
14:27:47.0596 5108 dtsoftbus01 - ok
14:27:47.0643 5108 DwProt (09180c7f43f365b1530a707b9d1a83bd) C:\WINDOWS\system32\drivers\dwprot.sys
14:27:47.0643 5108 Suspicious file (Forged): C:\WINDOWS\system32\drivers\dwprot.sys. Real md5: 09180c7f43f365b1530a707b9d1a83bd, Fake md5: 0ffbfb144c6e09bb6d354acfee97785d
14:27:47.0643 5108 DwProt ( ForgedFile.Multi.Generic ) - warning
14:27:47.0643 5108 DwProt - detected ForgedFile.Multi.Generic (1)
14:27:47.0658 5108 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
14:27:47.0721 5108 Fastfat - ok
14:27:47.0736 5108 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
14:27:47.0815 5108 Fdc - ok
14:27:47.0830 5108 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
14:27:47.0908 5108 Fips - ok
14:27:47.0908 5108 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
14:27:47.0971 5108 Flpydisk - ok
14:27:48.0002 5108 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
14:27:48.0065 5108 FltMgr - ok
14:27:48.0111 5108 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:27:48.0174 5108 Fs_Rec - ok
14:27:48.0205 5108 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:27:48.0268 5108 Ftdisk - ok
14:27:48.0283 5108 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:27:48.0346 5108 Gpc - ok
14:27:48.0377 5108 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:27:48.0455 5108 HDAudBus - ok
14:27:48.0471 5108 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:27:48.0549 5108 HidUsb - ok
14:27:48.0565 5108 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
14:27:48.0627 5108 hpn - ok
14:27:48.0658 5108 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
14:27:48.0705 5108 HTTP - ok
14:27:48.0736 5108 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
14:27:48.0783 5108 i2omgmt - ok
14:27:48.0799 5108 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
14:27:48.0861 5108 i2omp - ok
14:27:48.0893 5108 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
14:27:48.0940 5108 i8042prt - ok
14:27:48.0955 5108 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
14:27:49.0018 5108 Imapi - ok
14:27:49.0049 5108 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
14:27:49.0096 5108 ini910u - ok
14:27:49.0283 5108 IntcAzAudAddService (824c303baa9ec62696debb913f58a466) C:\WINDOWS\system32\drivers\RtkHDAud.sys
14:27:49.0533 5108 IntcAzAudAddService - ok
14:27:49.0768 5108 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
14:27:49.0830 5108 IntelIde - ok
14:27:49.0861 5108 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:27:49.0924 5108 intelppm - ok
14:27:49.0940 5108 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
14:27:50.0002 5108 Ip6Fw - ok
14:27:50.0033 5108 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:27:50.0080 5108 IpFilterDriver - ok
14:27:50.0111 5108 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:27:50.0158 5108 IpInIp - ok
14:27:50.0174 5108 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:27:50.0252 5108 IpNat - ok
14:27:50.0268 5108 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:27:50.0346 5108 IPSec - ok
14:27:50.0361 5108 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
14:27:50.0393 5108 IRENUM - ok
14:27:50.0408 5108 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:27:50.0471 5108 isapnp - ok
14:27:50.0549 5108 ISWKL (08a811bfd207dfdec588881c18bacbaa) C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys
14:27:50.0565 5108 ISWKL - ok
14:27:50.0596 5108 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:27:50.0674 5108 Kbdclass - ok
14:27:50.0674 5108 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:27:50.0736 5108 kbdhid - ok
14:27:50.0768 5108 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
14:27:50.0846 5108 kmixer - ok
14:27:50.0861 5108 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
14:27:50.0955 5108 KSecDD - ok
14:27:50.0971 5108 lbrtfdc - ok
14:27:51.0002 5108 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
14:27:51.0018 5108 MHNDRV ( UnsignedFile.Multi.Generic ) - warning
14:27:51.0018 5108 MHNDRV - detected UnsignedFile.Multi.Generic (1)
14:27:51.0049 5108 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
14:27:51.0096 5108 mnmdd - ok
14:27:51.0111 5108 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
14:27:51.0174 5108 Modem - ok
14:27:51.0236 5108 Monfilt (c7d9f9717916b34c1b00dd4834af485c) C:\WINDOWS\system32\drivers\Monfilt.sys
14:27:51.0315 5108 Monfilt - ok
14:27:51.0361 5108 motmodem (fe80c18ba448ddd76b7bead9eb203d37) C:\WINDOWS\system32\DRIVERS\motmodem.sys
14:27:51.0424 5108 motmodem - ok
14:27:51.0455 5108 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:27:51.0518 5108 Mouclass - ok
14:27:51.0549 5108 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:27:51.0627 5108 mouhid - ok
14:27:51.0658 5108 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
14:27:51.0721 5108 MountMgr - ok
14:27:51.0799 5108 MpKsl0598a10d - ok
14:27:51.0815 5108 MpKsl0a3872f4 - ok
14:27:51.0815 5108 MpKsl10b6fe46 - ok
14:27:51.0815 5108 MpKsl1297e534 - ok
14:27:51.0815 5108 MpKsl19bced5e - ok
14:27:51.0815 5108 MpKsl2314177c - ok
14:27:51.0830 5108 MpKsl23f3f158 - ok
14:27:51.0830 5108 MpKsl25a56b84 - ok
14:27:51.0830 5108 MpKsl27379ed7 - ok
14:27:51.0846 5108 MpKsl2842aac3 - ok
14:27:51.0846 5108 MpKsl2b0bdbc4 - ok
14:27:51.0846 5108 MpKsl2d47d129 - ok
14:27:51.0861 5108 MpKsl3305eb99 - ok
14:27:51.0861 5108 MpKsl3401f868 - ok
14:27:51.0861 5108 MpKsl347efce5 - ok
14:27:51.0861 5108 MpKsl34a59b0e - ok
14:27:51.0877 5108 MpKsl3c5c4e0a - ok
14:27:51.0877 5108 MpKsl3de503e5 - ok
14:27:51.0877 5108 MpKsl43574dee - ok
14:27:51.0877 5108 MpKsl4468f080 - ok
14:27:51.0893 5108 MpKsl44e04ee3 - ok
14:27:51.0893 5108 MpKsl45468207 - ok
14:27:51.0893 5108 MpKsl4871fb62 - ok
14:27:51.0893 5108 MpKsl49c4bc59 - ok
14:27:51.0893 5108 MpKsl4a3a8a5a - ok
14:27:51.0893 5108 MpKsl4c6eb6a3 - ok
14:27:51.0908 5108 MpKsl4e6ef89f - ok
14:27:51.0908 5108 MpKsl4eecc878 - ok
14:27:51.0908 5108 MpKsl519b7ddb - ok
14:27:51.0908 5108 MpKsl51c7791d - ok
14:27:51.0908 5108 MpKsl51f5c93a - ok
14:27:51.0924 5108 MpKsl54a50c22 - ok
14:27:51.0924 5108 MpKsl5ba98317 - ok
14:27:51.0924 5108 MpKsl6149e9a0 - ok
14:27:51.0924 5108 MpKsl64e9dc04 - ok
14:27:51.0924 5108 MpKsl65dd8335 - ok
14:27:51.0940 5108 MpKsl704bf366 - ok
14:27:51.0940 5108 MpKsl708a3b9b - ok
14:27:51.0940 5108 MpKsl728aa061 - ok
14:27:51.0940 5108 MpKsl73969a5c - ok
14:27:51.0940 5108 MpKsl73c3bd66 - ok
14:27:51.0955 5108 MpKsl73d9b3b4 - ok
14:27:51.0955 5108 MpKsl7bd7e6a9 - ok
14:27:51.0955 5108 MpKsl7c638330 - ok
14:27:51.0955 5108 MpKsl7e40de05 - ok
14:27:51.0971 5108 MpKsl80c9917e - ok
14:27:51.0971 5108 MpKsl83a72b0e - ok
14:27:51.0971 5108 MpKsl84b89d5d - ok
14:27:51.0971 5108 MpKsl85f9f263 - ok
14:27:51.0971 5108 MpKsl865578ff - ok
14:27:51.0971 5108 MpKsl92607528 - ok
14:27:51.0986 5108 MpKsl9ad6e6b2 - ok
14:27:51.0986 5108 MpKsl9d79ddd9 - ok
14:27:51.0986 5108 MpKsl9de07d11 - ok
14:27:51.0986 5108 MpKsla0713dbf - ok
14:27:51.0986 5108 MpKsla0ed5967 - ok
14:27:52.0002 5108 MpKsla225631e - ok
14:27:52.0002 5108 MpKsla74a3746 - ok
14:27:52.0002 5108 MpKslad9d4725 - ok
14:27:52.0002 5108 MpKslb5c5ca62 - ok
14:27:52.0002 5108 MpKslb85d5af2 - ok
14:27:52.0002 5108 MpKslbb9f2aff - ok
14:27:52.0018 5108 MpKslbe6db7ad - ok
14:27:52.0018 5108 MpKslc0b8cde2 - ok
14:27:52.0018 5108 MpKslc1d0872f - ok
14:27:52.0018 5108 MpKslc89dbf09 - ok
14:27:52.0018 5108 MpKslcaa37dcb - ok
14:27:52.0033 5108 MpKslcdcbf57a - ok
14:27:52.0033 5108 MpKsld540f9b2 - ok
14:27:52.0033 5108 MpKsld67133c7 - ok
14:27:52.0033 5108 MpKsld97aac3b - ok
14:27:52.0033 5108 MpKsldc293362 - ok
14:27:52.0033 5108 MpKslddf25d39 - ok
14:27:52.0049 5108 MpKsldea974db - ok
14:27:52.0049 5108 MpKsldeab5511 - ok
14:27:52.0049 5108 MpKsle654c836 - ok
14:27:52.0049 5108 MpKslec570b94 - ok
14:27:52.0049 5108 MpKslf048c4a6 - ok
14:27:52.0065 5108 MpKslf8f898f7 - ok
14:27:52.0065 5108 MpKslf9a1e809 - ok
14:27:52.0065 5108 MpKslfb2623eb - ok
14:27:52.0065 5108 MpKslfb70c984 - ok
14:27:52.0065 5108 MpKslfd1b6cf5 - ok
14:27:52.0080 5108 MpKslff244a6f - ok
14:27:52.0111 5108 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
14:27:52.0174 5108 mraid35x - ok
14:27:52.0205 5108 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:27:52.0268 5108 MRxDAV - ok
14:27:52.0361 5108 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:27:52.0408 5108 MRxSmb - ok
14:27:52.0424 5108 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
14:27:52.0471 5108 Msfs - ok
14:27:52.0549 5108 MSI_MSIBIOS_010507 (3846c05a66a3f5cd1d33e1a323c1762c) C:\Program Files\MSI\Live Update 5\msibios32_100507.sys
14:27:52.0565 5108 MSI_MSIBIOS_010507 - ok
14:27:52.0580 5108 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:27:52.0658 5108 MSKSSRV - ok
14:27:52.0690 5108 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:27:52.0736 5108 MSPCLOCK - ok
14:27:52.0752 5108 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
14:27:52.0815 5108 MSPQM - ok
14:27:52.0861 5108 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:27:52.0924 5108 mssmbios - ok
14:27:52.0955 5108 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
14:27:53.0018 5108 MSTEE - ok
14:27:53.0049 5108 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
14:27:53.0096 5108 Mup - ok
14:27:53.0127 5108 mxnic (e1cdf20697d992cf83ff86dd04df1285) C:\WINDOWS\system32\DRIVERS\mxnic.sys
14:27:53.0190 5108 mxnic - ok
14:27:53.0221 5108 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
14:27:53.0268 5108 NABTSFEC - ok
14:27:53.0315 5108 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
14:27:53.0377 5108 NDIS - ok
14:27:53.0393 5108 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
14:27:53.0455 5108 NdisIP - ok
14:27:53.0502 5108 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:27:53.0549 5108 NdisTapi - ok
14:27:53.0565 5108 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:27:53.0627 5108 Ndisuio - ok
14:27:53.0658 5108 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:27:53.0721 5108 NdisWan - ok
14:27:53.0752 5108 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
14:27:53.0799 5108 NDProxy - ok
14:27:53.0815 5108 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
14:27:53.0877 5108 NetBIOS - ok
14:27:53.0908 5108 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
14:27:53.0971 5108 NetBT - ok
14:27:54.0002 5108 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
14:27:54.0049 5108 Npfs - ok
14:27:54.0096 5108 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
14:27:54.0158 5108 Ntfs - ok
14:27:54.0221 5108 NTIOLib_1_0_4 (cd2166c9511d336a058cde91778aaa69) C:\Program Files\MSI\Live Update 5\NTIOLib.sys
14:27:54.0268 5108 NTIOLib_1_0_4 ( UnsignedFile.Multi.Generic ) - warning
14:27:54.0268 5108 NTIOLib_1_0_4 - detected UnsignedFile.Multi.Generic (1)
14:27:54.0315 5108 NuidFltr (9620a1d8160a550f064bbaf48d0f97cc) C:\WINDOWS\system32\DRIVERS\NuidFltr.sys
14:27:54.0346 5108 NuidFltr - ok
14:27:54.0361 5108 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
14:27:54.0424 5108 Null - ok
14:27:54.0471 5108 nusb3hub (f0cbf252811bc5fc49e7ecca3ee9519f) C:\WINDOWS\system32\DRIVERS\nusb3hub.sys
14:27:54.0502 5108 nusb3hub - ok
14:27:54.0518 5108 nusb3xhc (bdc5ff9b669b5475e3a6e47e5608205c) C:\WINDOWS\system32\DRIVERS\nusb3xhc.sys
14:27:54.0596 5108 nusb3xhc - ok
14:27:54.0893 5108 nv (4b54dcd6adee535df80f07c59ddd8f14) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
14:27:55.0752 5108 nv - ok
14:27:55.0861 5108 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:27:55.0924 5108 NwlnkFlt - ok
14:27:55.0955 5108 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:27:56.0033 5108 NwlnkFwd - ok
14:27:56.0096 5108 P3 (c90018bafdc7098619a4a95b046b30f3) C:\WINDOWS\system32\DRIVERS\p3.sys
14:27:56.0174 5108 P3 - ok
14:27:56.0205 5108 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
14:27:56.0268 5108 Parport - ok
14:27:56.0299 5108 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
14:27:56.0361 5108 PartMgr - ok
14:27:56.0393 5108 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
14:27:56.0455 5108 ParVdm - ok
14:27:56.0471 5108 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
14:27:56.0533 5108 PCI - ok
14:27:56.0549 5108 PCIDump - ok
14:27:56.0565 5108 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
14:27:56.0611 5108 PCIIde - ok
14:27:56.0643 5108 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
14:27:56.0705 5108 Pcmcia - ok
14:27:56.0705 5108 PDCOMP - ok
14:27:56.0721 5108 PDFRAME - ok
14:27:56.0721 5108 PDRELI - ok
14:27:56.0736 5108 PDRFRAME - ok
14:27:56.0752 5108 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
14:27:56.0799 5108 perc2 - ok
14:27:56.0830 5108 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
14:27:56.0877 5108 perc2hib - ok
14:27:56.0908 5108 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:27:56.0971 5108 PptpMiniport - ok
14:27:57.0002 5108 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
14:27:57.0065 5108 PSched - ok
14:27:57.0080 5108 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:27:57.0143 5108 Ptilink - ok
14:27:57.0174 5108 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
14:27:57.0174 5108 PxHelp20 - ok
14:27:57.0190 5108 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
14:27:57.0236 5108 ql1080 - ok
14:27:57.0252 5108 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
14:27:57.0315 5108 Ql10wnt - ok
14:27:57.0330 5108 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
14:27:57.0377 5108 ql12160 - ok
14:27:57.0408 5108 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
14:27:57.0471 5108 ql1240 - ok
14:27:57.0471 5108 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
14:27:57.0533 5108 ql1280 - ok
14:27:57.0533 5108 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:27:57.0596 5108 RasAcd - ok
14:27:57.0596 5108 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:27:57.0658 5108 Rasl2tp - ok
14:27:57.0690 5108 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:27:57.0736 5108 RasPppoe - ok
14:27:57.0752 5108 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
14:27:57.0799 5108 Raspti - ok
14:27:57.0815 5108 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:27:57.0893 5108 Rdbss - ok
14:27:57.0908 5108 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:27:57.0971 5108 RDPCDD - ok
14:27:58.0002 5108 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
14:27:58.0080 5108 rdpdr - ok
14:27:58.0158 5108 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
14:27:58.0190 5108 RDPWD - ok
14:27:58.0205 5108 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
14:27:58.0252 5108 redbook - ok
14:27:58.0299 5108 RimUsb (616eac1b0e48b236a5a9b8ae07fdb81c) C:\WINDOWS\system32\Drivers\RimUsb.sys
14:27:58.0408 5108 RimUsb - ok
14:27:58.0440 5108 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
14:27:58.0502 5108 RimVSerPort - ok
14:27:58.0518 5108 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
14:27:58.0565 5108 ROOTMODEM - ok
14:27:58.0627 5108 RTLE8023xp (bc34024636b0b47f6bbf96da525e307a) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
14:27:58.0674 5108 RTLE8023xp - ok
14:27:58.0705 5108 SCDEmu (20b2751cd4c8f3fd989739ca661b9f30) C:\WINDOWS\system32\drivers\SCDEmu.sys
14:27:58.0736 5108 SCDEmu ( UnsignedFile.Multi.Generic ) - warning
14:27:58.0736 5108 SCDEmu - detected UnsignedFile.Multi.Generic (1)
14:27:58.0783 5108 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:27:58.0815 5108 Secdrv - ok
14:27:58.0846 5108 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
14:27:58.0893 5108 serenum - ok
14:27:58.0908 5108 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
14:27:59.0002 5108 Serial - ok
14:27:59.0018 5108 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
14:27:59.0065 5108 Sfloppy - ok
14:27:59.0096 5108 Simbad - ok
14:27:59.0127 5108 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
14:27:59.0174 5108 sisagp - ok
14:27:59.0190 5108 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
14:27:59.0252 5108 SLIP - ok
14:27:59.0315 5108 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
14:27:59.0361 5108 Sparrow - ok
14:27:59.0393 5108 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
14:27:59.0440 5108 splitter - ok
14:27:59.0502 5108 sptd (8ea0fd60a5b047e0c734d51aace531c9) C:\WINDOWS\System32\Drivers\sptd.sys
14:27:59.0502 5108 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: 8ea0fd60a5b047e0c734d51aace531c9
14:27:59.0502 5108 sptd ( LockedFile.Multi.Generic ) - warning
14:27:59.0502 5108 sptd - detected LockedFile.Multi.Generic (1)
14:27:59.0518 5108 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
14:27:59.0565 5108 sr - ok
14:27:59.0611 5108 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
14:27:59.0658 5108 Srv - ok
14:27:59.0690 5108 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
14:27:59.0752 5108 streamip - ok
14:27:59.0768 5108 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
14:27:59.0815 5108 swenum - ok
14:27:59.0830 5108 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
14:27:59.0893 5108 swmidi - ok
14:27:59.0924 5108 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
14:27:59.0971 5108 symc810 - ok
14:27:59.0986 5108 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
14:28:00.0033 5108 symc8xx - ok
14:28:00.0049 5108 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
14:28:00.0096 5108 sym_hi - ok
14:28:00.0096 5108 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
14:28:00.0158 5108 sym_u3 - ok
14:28:00.0190 5108 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
14:28:00.0236 5108 sysaudio - ok
14:28:00.0283 5108 tap0901t (b7aee68d2e867cbf69b649b18fcedbbb) C:\WINDOWS\system32\DRIVERS\tap0901t.sys
14:28:00.0408 5108 tap0901t ( UnsignedFile.Multi.Generic ) - warning
14:28:00.0408 5108 tap0901t - detected UnsignedFile.Multi.Generic (1)
14:28:00.0455 5108 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:28:00.0502 5108 Tcpip - ok
14:28:00.0549 5108 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
14:28:00.0596 5108 TDPIPE - ok
14:28:00.0627 5108 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
14:28:00.0674 5108 TDTCP - ok
14:28:00.0705 5108 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
14:28:00.0752 5108 TermDD - ok
14:28:00.0768 5108 TfFsMon - ok
14:28:00.0768 5108 TfNetMon - ok
14:28:00.0783 5108 TFSysMon - ok
14:28:00.0815 5108 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
14:28:00.0861 5108 TosIde - ok
14:28:00.0908 5108 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
14:28:00.0940 5108 TrueSight ( UnsignedFile.Multi.Generic ) - warning
14:28:00.0940 5108 TrueSight - detected UnsignedFile.Multi.Generic (1)
14:28:00.0955 5108 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
14:28:01.0033 5108 Udfs - ok
14:28:01.0049 5108 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
14:28:01.0080 5108 ultra - ok
14:28:01.0127 5108 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
14:28:01.0174 5108 Update - ok
14:28:01.0221 5108 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
14:28:01.0283 5108 usbaudio - ok
14:28:01.0315 5108 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:28:01.0393 5108 usbccgp - ok
14:28:01.0424 5108 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:28:01.0471 5108 usbehci - ok
14:28:01.0486 5108 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:28:01.0533 5108 usbhub - ok
14:28:01.0580 5108 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
14:28:01.0627 5108 usbprint - ok
14:28:01.0643 5108 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:28:01.0705 5108 USBSTOR - ok
14:28:01.0736 5108 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:28:01.0783 5108 usbuhci - ok
14:28:01.0799 5108 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
14:28:01.0877 5108 usbvideo - ok
14:28:01.0908 5108 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
14:28:01.0955 5108 VgaSave - ok
14:28:01.0971 5108 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
14:28:02.0033 5108 viaagp - ok
14:28:02.0049 5108 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
14:28:02.0096 5108 ViaIde - ok
14:28:02.0111 5108 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
14:28:02.0158 5108 VolSnap - ok
14:28:02.0205 5108 Vsdatant (558cee3d9c470651f1843d51b42d761b) C:\WINDOWS\system32\vsdatant.sys
14:28:02.0299 5108 Vsdatant - ok
14:28:02.0330 5108 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:28:02.0393 5108 Wanarp - ok
14:28:02.0408 5108 wanatw - ok
14:28:02.0455 5108 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
14:28:02.0471 5108 Wdf01000 - ok
14:28:02.0502 5108 WDICA - ok
14:28:02.0518 5108 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
14:28:02.0565 5108 wdmaud - ok
14:28:02.0611 5108 WimFltr (f9ad3a5e3fd7e0bdb18b8202b0fdd4e4) C:\WINDOWS\system32\DRIVERS\wimfltr.sys
14:28:02.0627 5108 WimFltr - ok
14:28:02.0658 5108 WmBEnum (5d410936831f7fb58eff941eac3f6d3d) C:\WINDOWS\system32\drivers\WmBEnum.sys
14:28:02.0674 5108 WmBEnum - ok
14:28:02.0690 5108 WmFilter (7a13cfde92956ca61a0927d766c5ad4f) C:\WINDOWS\system32\drivers\WmFilter.sys
14:28:02.0690 5108 WmFilter - ok
14:28:02.0721 5108 WmVirHid (6f04646bc690f8bbfc344be32a60796d) C:\WINDOWS\system32\drivers\WmVirHid.sys
14:28:02.0736 5108 WmVirHid - ok
14:28:02.0736 5108 WmXlCore (1d6ca43d562333f4dfb40bcef2453f3a) C:\WINDOWS\system32\drivers\WmXlCore.sys
14:28:02.0752 5108 WmXlCore - ok
14:28:02.0783 5108 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
14:28:02.0861 5108 WS2IFSL - ok
14:28:02.0877 5108 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
14:28:02.0940 5108 WSTCODEC - ok
14:28:02.0971 5108 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
14:28:03.0018 5108 WudfPf - ok
14:28:03.0049 5108 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
14:28:03.0065 5108 WudfRd - ok
14:28:03.0096 5108 MBR (0x1B8) (a9bc6085158a2785b9eb6a494a4b11f1) \Device\Harddisk0\DR0
14:28:03.0315 5108 \Device\Harddisk0\DR0 - ok
14:28:03.0315 5108 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR1
14:28:03.0393 5108 \Device\Harddisk1\DR1 - ok
14:28:03.0393 5108 Boot (0x1200) (c7304e6f33de0547577dcb0377564904) \Device\Harddisk0\DR0\Partition0
14:28:03.0393 5108 \Device\Harddisk0\DR0\Partition0 - ok
14:28:03.0393 5108 Boot (0x1200) (8e90b61dcaca3423e3887f95e74a8f52) \Device\Harddisk1\DR1\Partition0
14:28:03.0393 5108 \Device\Harddisk1\DR1\Partition0 - ok
14:28:03.0393 5108 ============================================================
14:28:03.0393 5108 Scan finished
14:28:03.0393 5108 ============================================================
14:28:03.0502 0416 Detected object count: 8
14:28:03.0502 0416 Actual detected object count: 8
14:29:19.0033 0416 ADASPROT ( UnsignedFile.Multi.Generic ) - skipped by user
14:29:19.0033 0416 ADASPROT ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:29:19.0033 0416 DwProt ( ForgedFile.Multi.Generic ) - skipped by user
14:29:19.0033 0416 DwProt ( ForgedFile.Multi.Generic ) - User select action: Skip
14:29:19.0033 0416 MHNDRV ( UnsignedFile.Multi.Generic ) - skipped by user
14:29:19.0033 0416 MHNDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:29:19.0049 0416 NTIOLib_1_0_4 ( UnsignedFile.Multi.Generic ) - skipped by user
14:29:19.0049 0416 NTIOLib_1_0_4 ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:29:19.0049 0416 SCDEmu ( UnsignedFile.Multi.Generic ) - skipped by user
14:29:19.0049 0416 SCDEmu ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:29:19.0049 0416 sptd ( LockedFile.Multi.Generic ) - skipped by user
14:29:19.0049 0416 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
14:29:19.0049 0416 tap0901t ( UnsignedFile.Multi.Generic ) - skipped by user
14:29:19.0049 0416 tap0901t ( UnsignedFile.Multi.Generic ) - User select action: Skip
14:29:19.0049 0416 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user
14:29:19.0049 0416 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip

#12 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,137 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 02 January 2012 - 07:38 PM

Find this file and upload it to VirusTotal for a free scan, let me know the results (copy the url)
C:\WINDOWS\system32\drivers\dwprot.sys

http://www.virustotal.com/

You may have to enable hidden files to see it:
http://www.bleepingc...-windows/#winxp

MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#13 MarkThaHeat

MarkThaHeat

    New Member

  • Members
  • Pip
  • 20 posts

Posted 02 January 2012 - 11:01 PM

http://www.virustota...e328-1325562701

also I ran MBRCheck this is the log that came up , it said something about non standard or infected MBR :

MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows XP Professional
Windows Information: Service Pack 3 (build 2600)
Logical Drives Mask: 0x0000003c

Kernel Drivers (total 188):
0x804D7000 \WINDOWS\system32\ntkrnlpa.exe
0x806E5000 \WINDOWS\system32\hal.dll
0xB85A8000 \WINDOWS\system32\KDCOM.DLL
0xB84B8000 \WINDOWS\system32\BOOTVID.dll
0xB7E91000 sptd.sys
0xB7E63000 ACPI.sys
0xB85AA000 \WINDOWS\system32\DRIVERS\WMILIB.SYS
0xB7E52000 pci.sys
0xB80A8000 isapnp.sys
0xB8670000 pciide.sys
0xB8328000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
0xB85AC000 aliide.sys
0xB85AE000 cmdide.sys
0xB85B0000 toside.sys
0xB85B2000 viaide.sys
0xB85B4000 intelide.sys
0xB80B8000 MountMgr.sys
0xB7E33000 ftdisk.sys
0xB85B6000 dmload.sys
0xB7E0D000 dmio.sys
0xB8330000 PartMgr.sys
0xB80C8000 VolSnap.sys
0xB84BC000 cpqarray.sys
0xB7DF5000 \WINDOWS\system32\DRIVERS\SCSIPORT.SYS
0xB7DDD000 atapi.sys
0xB84C0000 aha154x.sys
0xB8338000 sparrow.sys
0xB84C4000 symc810.sys
0xB80D8000 aic78xx.sys
0xB84C8000 dac960nt.sys
0xB80E8000 ql10wnt.sys
0xB84CC000 amsint.sys
0xB8340000 asc.sys
0xB84D0000 asc3550.sys
0xB8348000 mraid35x.sys
0xB8350000 i2omp.sys
0xB84D4000 ini910u.sys
0xB80F8000 ql1240.sys
0xB8108000 aic78u2.sys
0xB8358000 symc8xx.sys
0xB8360000 sym_hi.sys
0xB8368000 sym_u3.sys
0xB8370000 ABP480N5.SYS
0xB8378000 asc3350p.sys
0xB85B8000 cd20xrnt.sys
0xB8118000 ultra.sys
0xB7DC4000 adpu160m.sys
0xB8380000 dpti2o.sys
0xB8128000 ql1080.sys
0xB8138000 ql1280.sys
0xB8148000 ql12160.sys
0xB8388000 perc2.sys
0xB85BA000 perc2hib.sys
0xB8390000 hpn.sys
0xB84D8000 cbidf2k.sys
0xB7D98000 dac2w2k.sys
0xB8158000 disk.sys
0xB8168000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
0xB7D78000 fltmgr.sys
0xB7D66000 sr.sys
0xB8178000 PxHelp20.sys
0xB7D4F000 KSecDD.sys
0xB7CC2000 Ntfs.sys
0xB7C95000 NDIS.sys
0xB8188000 sisagp.sys
0xB8198000 viaagp.sys
0xB7C7B000 Mup.sys
0xB8398000 avgrkx86.sys
0xB84DC000 AVGIDSEH.Sys
0xB81A8000 agp440.sys
0xB81B8000 alim1541.sys
0xB81C8000 amdagp.sys
0xB81D8000 agpCPQ.sys
0xB64B0000 \SystemRoot\system32\DRIVERS\nv4_mini.sys
0xB649C000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
0xB84B0000 \SystemRoot\system32\DRIVERS\usbehci.sys
0xB6433000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0xB640B000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0xB63E8000 \SystemRoot\system32\DRIVERS\nusb3xhc.sys
0xB85DA000 \SystemRoot\system32\DRIVERS\USBD.SYS
0xB63A6000 \SystemRoot\system32\DRIVERS\Rtenicxp.sys
0xB82F8000 \SystemRoot\system32\DRIVERS\serial.sys
0xB7C13000 \SystemRoot\system32\DRIVERS\serenum.sys
0xB6392000 \SystemRoot\system32\DRIVERS\parport.sys
0xB8308000 \SystemRoot\system32\DRIVERS\intelppm.sys
0xB871E000 \SystemRoot\system32\DRIVERS\audstub.sys
0xB8318000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0xB7C0F000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0xB637B000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0xB7BAB000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0xB7B9B000 \SystemRoot\system32\DRIVERS\raspptp.sys
0xB83B8000 \SystemRoot\system32\DRIVERS\TDI.SYS
0xB636A000 \SystemRoot\system32\DRIVERS\psched.sys
0xB7B8B000 \SystemRoot\system32\DRIVERS\msgpc.sys
0xB83F8000 \SystemRoot\system32\DRIVERS\ptilink.sys
0xB8400000 \SystemRoot\system32\DRIVERS\raspti.sys
0xB7B7B000 \SystemRoot\system32\DRIVERS\tap0901t.sys
0xB633A000 \SystemRoot\system32\DRIVERS\rdpdr.sys
0xB7B6B000 \SystemRoot\system32\DRIVERS\termdd.sys
0xB8408000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0xB8410000 \SystemRoot\system32\DRIVERS\mouclass.sys
0xB85DC000 \SystemRoot\system32\DRIVERS\swenum.sys
0xB62EF000 \SystemRoot\system32\DRIVERS\ks.sys
0xB6291000 \SystemRoot\system32\DRIVERS\update.sys
0xB7BEF000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0xB6252000 \SystemRoot\system32\DRIVERS\dtsoftbus01.sys
0xB7BE7000 \SystemRoot\system32\drivers\WmBEnum.sys
0xB7B5B000 \SystemRoot\system32\drivers\WmXlCore.sys
0xB7B3B000 \SystemRoot\System32\Drivers\NDProxy.SYS
0xB7B2B000 \SystemRoot\system32\DRIVERS\cdrom.sys
0xB7B1B000 \SystemRoot\system32\DRIVERS\redbook.sys
0xB81E8000 \SystemRoot\system32\DRIVERS\usbhub.sys
0xB18F4000 \SystemRoot\system32\drivers\RtkHDAud.sys
0xB18D0000 \SystemRoot\system32\drivers\portcls.sys
0xB81F8000 \SystemRoot\system32\drivers\drmk.sys
0xB8208000 \SystemRoot\system32\DRIVERS\nusb3hub.sys
0xB6312000 \SystemRoot\System32\Drivers\i2omgmt.SYS
0xB8218000 \SystemRoot\system32\DRIVERS\avgmfx86.sys
0xB85EE000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0xB86AF000 \SystemRoot\System32\Drivers\Null.SYS
0xB85F0000 \SystemRoot\System32\Drivers\Beep.SYS
0xB8430000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0xB8438000 \SystemRoot\System32\drivers\vga.sys
0xB85F2000 \SystemRoot\System32\Drivers\mnmdd.SYS
0xB85F4000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0xB8440000 \SystemRoot\System32\Drivers\Msfs.SYS
0xB712B000 \SystemRoot\System32\Drivers\Npfs.SYS
0xB200D000 \SystemRoot\system32\DRIVERS\rasacd.sys
0xB1825000 \SystemRoot\system32\DRIVERS\ipsec.sys
0xB17CC000 \SystemRoot\system32\DRIVERS\tcpip.sys
0xB1785000 \SystemRoot\system32\DRIVERS\avgtdix.sys
0xB175F000 \SystemRoot\system32\DRIVERS\ipnat.sys
0xB8238000 \SystemRoot\system32\DRIVERS\wanarp.sys
0xB1737000 \SystemRoot\system32\DRIVERS\netbt.sys
0xB16B8000 \SystemRoot\System32\vsdatant.sys
0xB1696000 \SystemRoot\System32\drivers\afd.sys
0xB8248000 \SystemRoot\system32\DRIVERS\netbios.sys
0xB8268000 \SystemRoot\System32\Drivers\SCDEmu.SYS
0xB161B000 \SystemRoot\system32\DRIVERS\rdbss.sys
0xB1583000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xB8288000 \SystemRoot\System32\Drivers\Fips.SYS
0xB1547000 \SystemRoot\system32\DRIVERS\avgldx86.sys
0xB7123000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0xB8298000 \SystemRoot\system32\DRIVERS\dc3d.sys
0xB82A8000 \SystemRoot\system32\DRIVERS\WDFLDR.SYS
0xB1436000 \SystemRoot\system32\DRIVERS\Wdf01000.sys
0xB1418000 \SystemRoot\System32\Drivers\usbvideo.sys
0xB82B8000 \SystemRoot\system32\drivers\usbaudio.sys
0xB1838000 \SystemRoot\system32\DRIVERS\hidusb.sys
0xB82C8000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0xB1FED000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0xB18CC000 \SystemRoot\system32\DRIVERS\NuidFltr.sys
0xB1692000 \SystemRoot\system32\DRIVERS\mouhid.sys
0xB711B000 \SystemRoot\system32\drivers\WmFilter.sys
0xB1FCD000 \SystemRoot\System32\Drivers\Cdfs.SYS
0xB1360000 \SystemRoot\System32\Drivers\dump_atapi.sys
0xB85D8000 \SystemRoot\System32\Drivers\dump_WMILIB.SYS
0xBF800000 \SystemRoot\System32\win32k.sys
0xB13EC000 \SystemRoot\System32\drivers\Dxapi.sys
0xB70F3000 \SystemRoot\System32\watchdog.sys
0xBD000000 \SystemRoot\System32\drivers\dxg.sys
0xB8728000 \SystemRoot\System32\drivers\dxgthk.sys
0xBD012000 \SystemRoot\System32\nv4_disp.dll
0xBD41A000 \SystemRoot\System32\ATMFD.DLL
0xB06AE000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xB8428000 \??\C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys
0xB0255000 \SystemRoot\system32\drivers\wdmaud.sys
0xB1517000 \SystemRoot\system32\drivers\sysaudio.sys
0xB0020000 \SystemRoot\system32\DRIVERS\mrxdav.sys
0xB8668000 \SystemRoot\System32\Drivers\ParVdm.SYS
0xB8448000 \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys
0xAFDFF000 \SystemRoot\System32\Drivers\HTTP.sys
0xAFB9F000 \SystemRoot\system32\DRIVERS\srv.sys
0xAFEE8000 \SystemRoot\system32\DRIVERS\AVGIDSFilter.Sys
0xAF7BF000 \SystemRoot\system32\DRIVERS\AVGIDSDriver.Sys
0xAF71B000 \SystemRoot\system32\drivers\WmVirHid.sys
0xAF1E3000 \SystemRoot\System32\Drivers\Udfs.SYS
0xAF1A3000 \SystemRoot\system32\drivers\bdfsfltr.sys
0xAF274000 \??\C:\Program Files\MSI\Live Update 5\NTIOLib.sys
0xAF073000 \??\C:\Program Files\BitDefender\BitDefender 2009\bdselfpr.sys
0xAEFC8000 \SystemRoot\system32\drivers\bdfm.sys
0xAFDAF000 \??\C:\Program Files\MSI\Live Update 5\msibios32_100507.sys
0xB1652000 \??\C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\profos.sys
0xAEC23000 \??\C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\trufos.sys
0x8AC63000 \SystemRoot\System32\Drivers\caf248bd.sys
0x8AC52000 \SystemRoot\System32\Drivers\10067b0f.sys
0x8AD5A000 \SystemRoot\system32\drivers\kmixer.sys
0x7C900000 \WINDOWS\system32\ntdll.dll

Processes (total 58):
0 System Idle Process
4 System
1060 C:\WINDOWS\system32\smss.exe
1124 C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
1288 csrss.exe
1320 C:\WINDOWS\system32\winlogon.exe
1364 C:\WINDOWS\system32\services.exe
1376 C:\WINDOWS\system32\lsass.exe
1548 C:\WINDOWS\system32\svchost.exe
1632 svchost.exe
1908 C:\WINDOWS\system32\svchost.exe
2032 svchost.exe
348 svchost.exe
644 C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
1572 C:\Program Files\CheckPoint\ZAForceField\ISWSVC.exe
1748 C:\WINDOWS\system32\spoolsv.exe
620 C:\WINDOWS\explorer.exe
1160 svchost.exe
200 C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
1940 C:\Program Files\Advanced System Optimizer 3\ASO3DefragSrv.exe
2008 C:\Program Files\AVG\AVG10\avgwdsvc.exe
2328 C:\WINDOWS\ehome\ehrecvr.exe
2360 C:\WINDOWS\ehome\ehSched.exe
2724 C:\Program Files\Java\jre6\bin\jqs.exe
3076 C:\Program Files\Blaze Media Pro\NMSAccess32.exe
3100 C:\WINDOWS\system32\nvsvc32.exe
3232 daemonu.exe
3328 svchost.exe
3356 C:\Program Files\AVG\AVG10\avgnsx.exe
3364 C:\WINDOWS\system32\svchost.exe
3404 C:\Program Files\AVG\AVG10\avgemcx.exe
3556 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\9.0.1\ToolbarUpdater.exe
3704 mcrdsvc.exe
2424 C:\WINDOWS\ehome\ehtray.exe
2684 C:\WINDOWS\ehome\ehmsas.exe
2708 C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
2720 C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
3008 C:\Program Files\AVG\AVG10\avgtray.exe
3068 C:\Program Files\Microsoft IntelliType Pro\itype.exe
1848 C:\Program Files\Logitech\Gaming Software\LWEMon.exe
3832 C:\Program Files\Common Files\Java\Java Update\jusched.exe
4008 C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
1988 C:\Program Files\AVG Secure Search\vprot.exe
712 C:\WINDOWS\system32\rundll32.exe
1092 C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
1032 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
2120 C:\Program Files\PeerGuardian2\pg2.exe
2872 C:\Program Files\DAEMON Tools Lite\DTLite.exe
3808 C:\WINDOWS\system32\dllhost.exe
4188 C:\WINDOWS\system32\ctfmon.exe
5300 alg.exe
4020 C:\PROGRA~1\AVG\AVG10\avgrsx.exe
3140 C:\Program Files\AVG\AVG10\avgcsrvx.exe
6080 C:\WINDOWS\system32\svchost.exe
2416 C:\Program Files\Java\jre6\bin\javaw.exe
4012 C:\Program Files\mmm\mmm.exe
3944 C:\Program Files\Mozilla Firefox\firefox.exe
5636 D:\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)
\\.\D: --> \\.\PhysicalDrive1 at offset 0x00000000`007e0000 (NTFS)

PhysicalDrive0 Model Number: WDCWD2500JD-00HBC0, Rev: 08.02D08
PhysicalDrive1 Model Number: ST380815AS, Rev: 4.ADA

Size Device Name MBR Status
--------------------------------------------
232 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: 304A9F057B00D1A4CC32B9CE350DCE5B41B70AA7
74 GB \\.\PhysicalDrive1 Unknown MBR code
SHA1: 639AC5CDF8A5CF3245975932C6A4215450A7B98F


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:

#14 MarkThaHeat

MarkThaHeat

    New Member

  • Members
  • Pip
  • 20 posts

Posted 02 January 2012 - 11:26 PM

This is the new Virustotalscan with up to date material , still no detections :

http://www.virustota...328-1325562701#

#15 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,137 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 03 January 2012 - 08:32 AM

That doesn't mean it's bad, TDSSKiller or ComboFix would have shown something.

MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#16 MarkThaHeat

MarkThaHeat

    New Member

  • Members
  • Pip
  • 20 posts

Posted 03 January 2012 - 04:42 PM

So.... Now What

#17 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,137 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 03 January 2012 - 05:22 PM

My job is to make sure your computer is free of malware, LDTate and I agree that you're free of malware.

I suggest you take a look at all the programs you're running, system ram etc.

There's plenty of tutorials on the web for this.

MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#18 MarkThaHeat

MarkThaHeat

    New Member

  • Members
  • Pip
  • 20 posts

Posted 03 January 2012 - 10:39 PM

Well you were wrong ... I just ran another scan and an infection appeared ... all seems to be running fine now

#19 MrCharlie

MrCharlie

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 28,137 posts
  • Gender:Male
  • Location:So. Plainfield, New Jersey, USA

Posted 04 January 2012 - 11:40 AM

I'm glad you got it fixed, MrC

Malware Removal Expert


Posted Image


I volunteer my free time to help you, if you would like to donate to show your appreciation, it will be much appreciated.

Posted Image Thanks MrC & crew

#20 LDTate

LDTate

    Forum Deity

  • Moderators
  • PipPipPipPipPipPip
  • 21,126 posts
  • Gender:Male
  • Location:Missouri, USA

Posted 06 January 2012 - 05:26 PM

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!
Larry Tate
Product Support

Posted Image

Follow us: Twitter, Become a fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users