Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Trojan.Gen.2

Started by RieLize , Aug 22 2011 06:22 PM

  • This topic is locked This topic is locked

#1
RieLize
Posted 22 August 2011 - 06:22 PM

RieLize

    New Member

  • Member
  • Pip
  • 2 posts
Hey guys so I've been getting this alert from Symantec about Trojan.Gen.2 virus. It's being quarantined but the bad news is, it does not stop generating. I just ran Combofixer (because I've had this problem before and it fixed it for a while) AVP Tools, and Malwarebytes and Malwarebytes still found over 2000 and it's still scanning up to now. I've actually had this problem awhile back and I thought I fixed it with Combofixer right before I went on a cruise. But now that I came back, I'm having the same problem again and I don't think the Combofix is working. Any ideas?

Here's the OTL log:
OTL logfile created on: 8/22/2011 8:11:23 PM - Run 3
OTL by OldTimer - Version 3.2.26.5 Folder = C:\Documents and Settings\Rhodora\My Documents\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.75 Gb Total Physical Memory | 0.75 Gb Available Physical Memory | 42.70% Memory free
4.22 Gb Paging File | 3.33 Gb Available in Paging File | 78.77% Paging File free
Paging file location(s): C:\pagefile.sys 2686 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 229.07 Gb Total Space | 173.66 Gb Free Space | 75.81% Space Free | Partition Type: NTFS
Drive D: | 3.80 Gb Total Space | 0.35 Gb Free Space | 9.18% Space Free | Partition Type: NTFS

Computer Name: MCUBO | User Name: Rhodora | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/08/22 20:10:58 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Rhodora\My Documents\Downloads\OTL.exe
PRC - [2011/07/06 19:52:38 | 001,047,656 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
PRC - [2011/07/06 19:52:38 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/07/02 04:34:54 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/03/18 01:26:14 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) -- C:\windows\system32\ZoneLabs\vsmon.exe
PRC - [2011/03/18 01:24:50 | 001,043,968 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2011/03/09 13:29:16 | 000,366,000 | ---- | M] (Eastman Kodak Company) -- C:\Program Files\Kodak\AiO\Center\EKAiOHostService.exe
PRC - [2011/03/03 07:50:18 | 002,510,848 | ---- | M] (Eastman Kodak Company) -- C:\windows\system32\spool\drivers\w32x86\3\EKIJ5000MUI.exe
PRC - [2010/10/27 20:17:52 | 000,207,424 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
PRC - [2010/08/25 12:27:44 | 000,309,824 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
PRC - [2010/05/14 12:44:46 | 000,501,480 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2010/03/18 12:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
PRC - [2010/03/06 15:13:43 | 000,368,640 | ---- | M] () -- C:\Program Files\TRENDnet\TEW-421PC_TEW-423PI\WlanCU.exe
PRC - [2009/06/18 13:29:12 | 000,635,416 | ---- | M] (PDF Complete Inc) -- C:\Program Files\PDF Complete\pdfsvc.exe
PRC - [2008/12/08 23:01:58 | 000,181,688 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\SavUI.exe
PRC - [2008/12/08 23:01:54 | 002,440,120 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
PRC - [2008/12/08 22:42:34 | 001,443,144 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
PRC - [2008/12/08 22:42:32 | 001,795,400 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
PRC - [2008/08/14 15:45:52 | 000,115,560 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
PRC - [2008/08/14 15:45:28 | 000,108,392 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
PRC - [2008/04/14 05:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\windows\explorer.exe
PRC - [2007/07/24 15:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2007/04/03 17:18:14 | 001,537,064 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Cisco Systems\VPN Client\vpngui.exe
PRC - [2007/04/03 17:18:08 | 001,516,584 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
PRC - [2007/01/04 23:48:50 | 000,112,152 | ---- | M] (InterVideo) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe


========== Modules (No Company Name) ==========

MOD - [2011/07/02 04:34:53 | 001,850,328 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011/06/23 10:15:06 | 006,271,136 | ---- | M] () -- C:\windows\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011/06/15 03:25:23 | 011,800,576 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\1fb5d8788c9a9a7f44e2d0fa19c62729\System.Web.ni.dll
MOD - [2011/06/15 03:24:22 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\48f8b951a598647dd309ca2031807a5d\System.Configuration.ni.dll
MOD - [2011/06/15 03:22:32 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\f354057a5b4fad4c399da28449ba0d92\System.Xml.ni.dll
MOD - [2011/06/15 03:22:28 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\29d16d2f164fe2263539789ecd0d9d4f\System.Windows.Forms.ni.dll
MOD - [2011/06/15 03:22:19 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\a59b17e6040e3f6286a2227dfdb17096\System.Drawing.ni.dll
MOD - [2011/06/15 03:21:21 | 007,950,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\f6a9a002526806f3a5b745cf5c407cae\System.ni.dll
MOD - [2011/06/15 03:21:14 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll
MOD - [2011/06/15 03:20:20 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2011/03/02 12:40:51 | 000,140,288 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2010/03/06 15:13:43 | 000,368,640 | ---- | M] () -- C:\Program Files\TRENDnet\TEW-421PC_TEW-423PI\WlanCU.exe
MOD - [2009/04/21 18:30:32 | 000,221,184 | ---- | M] () -- C:\Program Files\TRENDnet\TEW-421PC_TEW-423PI\WlanDll.dll
MOD - [2009/03/24 15:01:00 | 000,233,472 | ---- | M] () -- C:\Program Files\TRENDnet\TEW-421PC_TEW-423PI\WlanSup.dll
MOD - [2009/03/10 20:03:52 | 000,184,320 | ---- | M] () -- C:\Program Files\TRENDnet\TEW-421PC_TEW-423PI\WPSCtrl.dll
MOD - [2009/01/23 12:58:00 | 000,212,992 | ---- | M] () -- C:\Program Files\TRENDnet\TEW-421PC_TEW-423PI\WlanCtl.dll
MOD - [2008/06/27 11:10:30 | 000,118,784 | ---- | M] () -- C:\Program Files\TRENDnet\TEW-421PC_TEW-423PI\WlanWPS.dll
MOD - [2007/04/03 17:18:26 | 000,197,672 | ---- | M] () -- C:\windows\system32\vpnapi.dll
MOD - [2005/09/21 08:57:56 | 004,325,376 | ---- | M] () -- C:\Program Files\Cisco Systems\VPN Client\qt-mt335.dll
MOD - [2005/07/20 05:53:04 | 000,966,765 | ---- | M] () -- C:\Program Files\TRENDnet\TEW-421PC_TEW-423PI\acAuth.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (TlntSvr32)
SRV - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/03/09 13:29:16 | 000,366,000 | ---- | M] (Eastman Kodak Company) [Auto | Running] -- C:\Program Files\Kodak\AiO\Center\EKAiOHostService.exe -- (Kodak AiO Network Discovery Service)
SRV - [2010/03/18 12:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2009/06/18 13:29:12 | 000,635,416 | ---- | M] (PDF Complete Inc) [Auto | Running] -- C:\Program Files\PDF Complete\pdfsvc.exe -- (pdfcDispatcher)
SRV - [2009/02/11 20:12:38 | 000,167,936 | ---- | M] () [Auto | Stopped] -- C:\Program Files\TRENDnet\TEW-421PC_TEW-423PI\WLSVC.exe -- (WLSVC)
SRV - [2008/12/08 23:01:54 | 002,440,120 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe -- (Symantec AntiVirus)
SRV - [2008/12/08 22:42:32 | 001,795,400 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe -- (SmcService)
SRV - [2008/12/08 22:01:28 | 000,320,840 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE -- (SNAC)
SRV - [2008/08/14 15:45:28 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2008/08/14 15:45:28 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2008/06/30 17:36:35 | 003,093,872 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_3.EXE -- (LiveUpdate)
SRV - [2007/07/24 15:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2007/04/03 17:18:08 | 001,516,584 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe -- (CVPND)
SRV - [2007/01/04 23:48:50 | 000,112,152 | ---- | M] (InterVideo) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe -- (IviRegMgr)
SRV - [2006/03/30 10:15:44 | 000,096,341 | ---- | M] (Canon Inc.) [Auto | Stopped] -- C:\Program Files\Canon\CAL\CALMAIN.exe -- (CCALib8)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Running] -- -- (catchme)
DRV - File not found [File_System | Unknown | Running] -- -- (1927369drv)
DRV - File not found [Kernel | Unknown | Running] -- -- (09602291)
DRV - [2011/08/18 04:00:00 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20110818.021\NAVEX15.SYS -- (NAVEX15)
DRV - [2011/08/18 04:00:00 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20110818.021\NAVENG.SYS -- (NAVENG)
DRV - [2011/07/27 04:00:00 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2011/07/27 04:00:00 | 000,105,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011/07/06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Running] -- C:\windows\system32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\windows\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/06/21 17:46:10 | 000,167,936 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\windows\system32\drivers\WpsHelper.sys -- (WpsHelper)
DRV - [2009/12/15 11:30:39 | 000,123,952 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\windows\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2009/08/18 08:32:00 | 005,884,416 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\windows\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009/06/30 21:31:00 | 000,164,896 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvgts.sys -- (nvgts)
DRV - [2009/03/18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2008/12/08 22:45:28 | 000,092,488 | ---- | M] (Symantec Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWS\SYSTEM32\Drivers\SysPlant.sys -- (SysPlant)
DRV - [2008/12/08 22:43:46 | 000,042,312 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\windows\system32\drivers\WPSDRVnt.sys -- (WPS)
DRV - [2008/11/18 19:17:08 | 000,023,888 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\COH_Mon.sys -- (COH_Mon)
DRV - [2008/10/14 12:24:18 | 000,049,536 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\windows\system32\drivers\Teefer2.sys -- (Teefer2)
DRV - [2008/10/13 13:31:46 | 000,319,664 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2008/10/13 13:31:46 | 000,279,600 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\windows\system32\drivers\srtsp.sys -- (SRTSP)
DRV - [2008/10/13 13:31:46 | 000,043,824 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\windows\system32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2008/08/21 12:13:56 | 000,191,536 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2008/08/21 12:13:56 | 000,027,696 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2008/08/01 19:36:26 | 000,022,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\windows\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008/08/01 19:36:20 | 000,054,784 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\windows\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2008/06/16 17:53:14 | 000,420,400 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2008/04/13 21:04:34 | 000,019,455 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wVchNTxx.sys -- (iAimFP4)
DRV - [2008/04/13 21:04:32 | 000,012,063 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wSiINTxx.sys -- (iAimFP3)
DRV - [2008/04/13 21:04:30 | 000,033,599 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wATV04nt.sys -- (iAimTV3)
DRV - [2008/04/13 21:04:30 | 000,029,311 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wATV01nt.sys -- (iAimTV0)
DRV - [2008/04/13 21:04:30 | 000,025,471 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wATV10nt.sys -- (iAimTV5)
DRV - [2008/04/13 21:04:30 | 000,023,615 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wCh7xxNT.sys -- (iAimTV4)
DRV - [2008/04/13 21:04:30 | 000,022,271 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wATV06nt.sys -- (iAimTV6)
DRV - [2008/04/13 21:04:30 | 000,019,551 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wATV02NT.sys -- (iAimTV1)
DRV - [2008/04/13 21:04:28 | 000,161,020 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\i81xnt5.sys -- (i81x)
DRV - [2008/04/13 21:04:28 | 000,012,415 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wADV01nt.sys -- (iAimFP0)
DRV - [2008/04/13 21:04:28 | 000,012,127 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wADV02NT.sys -- (iAimFP1)
DRV - [2008/04/13 21:04:28 | 000,011,871 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wADV09NT.sys -- (iAimFP7)
DRV - [2008/04/13 21:04:28 | 000,011,807 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wADV07nt.sys -- (iAimFP5)
DRV - [2008/04/13 21:04:28 | 000,011,775 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wADV05NT.sys -- (iAimFP2)
DRV - [2008/04/13 21:04:28 | 000,011,295 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\wADV08NT.sys -- (iAimFP6)
DRV - [2008/01/23 17:02:02 | 000,020,480 | ---- | M] () [Kernel | Auto | Running] -- C:\windows\system32\drivers\WLNdis50.sys -- (WLNdis50)
DRV - [2007/05/11 17:31:36 | 003,580,832 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\lvuvc.sys -- (LVUVC) Logitech QuickCam Fusion(UVC)
DRV - [2007/05/11 17:31:22 | 000,041,888 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2007/04/18 00:09:28 | 000,011,032 | ---- | M] (InterVideo) [Kernel | Auto | Running] -- C:\windows\system32\drivers\regi.sys -- (regi)
DRV - [2007/04/16 22:46:00 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\windows\system32\drivers\AmdPPM.sys -- (AmdPPM)
DRV - [2007/04/03 17:17:08 | 000,306,295 | ---- | M] (Cisco Systems, Inc.) [Kernel | Auto | Running] -- C:\windows\system32\drivers\CVPNDRVA.sys -- (CVPNDRVA)
DRV - [2007/01/31 14:45:06 | 000,127,376 | ---- | M] (Deterministic Networks, Inc.) [Kernel | On_Demand | Running] -- C:\windows\system32\drivers\dne2000.sys -- (DNE)
DRV - [2007/01/18 15:28:02 | 000,005,275 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\CVirtA.sys -- (CVirtA)
DRV - [2005/01/26 09:22:20 | 000,280,344 | ---- | M] (Zone Labs LLC) [Kernel | On_Demand | Running] -- C:\windows\system32\vsdatant.sys -- (vsdatant)
DRV - [2002/04/04 10:32:06 | 000,028,416 | R--- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\WINDOWS\system32\DRIVERS\symmpi.sys -- (Symmpi)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.hp.com
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "about:blank"
FF - prefs.js..extensions.enabledItems: {64161300-e22b-11db-8314-0800200c9a66}:0.9.5.8
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6778
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nexon.net/NxGame: C:\Documents and Settings\All Users\Application Data\NexonUS\NGM\npNxGameUS.dll File not found
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/07/07 21:07:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/07/07 21:07:58 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{1650a312-02bc-40ee-977e-83f158701739}: C:\Program Files\SiteAdvisor\6173\FF\

[2009/12/19 15:48:33 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Rhodora\Application Data\Mozilla\Extensions
[2011/08/22 16:12:19 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Rhodora\Application Data\Mozilla\Firefox\Profiles\sh776slk.default\extensions
[2010/06/10 11:08:42 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Rhodora\Application Data\Mozilla\Firefox\Profiles\sh776slk.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/06/09 21:00:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/06/09 21:00:32 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2010/11/07 13:53:28 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
File not found (No name found) --
() (No name found) -- C:\DOCUMENTS AND SETTINGS\RHODORA\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\SH776SLK.DEFAULT\EXTENSIONS\{64161300-E22B-11DB-8314-0800200C9A66}.XPI
[2010/03/17 09:11:34 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/07/02 04:34:54 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010/09/15 05:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/05/25 00:37:44 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

O1 HOSTS File: ([2011/08/22 16:09:31 | 000,000,027 | ---- | M]) - C:\windows\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [BYR_AGENT] C:\Documents and Settings\All Users\Application Data\LGMOBILEAX\BYR_Client\VZWNotiAgent.exe (LG Electronics)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [Conime] C:\windows\system32\conime.exe (Microsoft Corporation)
O4 - HKLM..\Run: [EKIJ5000StatusMonitor] C:\windows\system32\spool\drivers\w32x86\3\EKIJ5000MUI.exe (Eastman Kodak Company)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Nikon Message Center 2] C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe (Nikon Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe (PDF Complete Inc)
O4 - HKLM..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\VPN Client.lnk = C:\windows\Installer\{CCBAA1F7-E5E1-48B2-9ED9-A79C6A37CE78}\Icon3E5562ED7.ico ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Wireless Configuration Utility.lnk = C:\Program Files\TRENDnet\TEW-421PC_TEW-423PI\WlanCU.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_70C5B381380DB17F.dll (Google Inc.)
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O15 - HKLM\..Trusted Domains: //about.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Exclude.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //FWEvent.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //LanguageSelection.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Message.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyAgttryCmd.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyAgttryNag.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyNotification.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //NOCLessUpdate.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //quarantine.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //ScanNow.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //strings.vbs/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Template.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Update.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //VirFound.htm/ ([]myui in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1260535099468 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.mi...b?1260981778687 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\windows\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Rhodora\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Rhodora\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/08/22 17:32:08 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Rhodora\Recent
[2011/08/22 17:20:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rhodora\Desktop\In case of Virus
[2011/08/22 17:19:13 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011/08/22 17:12:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Rhodora\Local Settings\Application Data\Eastman_Kodak_Company
[2011/08/22 16:02:35 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Rhodora\Start Menu\Programs\Administrative Tools
[2011/08/22 15:27:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Kodak
[2011/08/22 15:27:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\kodak
[2011/08/22 15:20:55 | 000,000,000 | ---D | C] -- C:\Program Files\Kodak
[2011/08/22 15:18:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Kodak
[2011/08/22 15:14:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2011/07/25 19:48:33 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/07/25 19:48:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/07/25 19:48:30 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/07/25 19:48:30 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/07/25 00:06:32 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2011/07/24 23:44:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Norton

========== Files - Modified Within 30 Days ==========

[2011/08/22 20:08:00 | 000,000,888 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/08/22 17:30:25 | 000,000,893 | ---- | M] () -- C:\Documents and Settings\Rhodora\Desktop\Run this periodically.lnk
[2011/08/22 17:19:04 | 000,001,859 | ---- | M] () -- C:\Documents and Settings\Rhodora\Application Data\Microsoft\Internet Explorer\Quick Launch\KODAK AiO Home Center.lnk
[2011/08/22 17:13:53 | 000,002,433 | ---- | M] () -- C:\Documents and Settings\Rhodora\Application Data\Microsoft\Internet Explorer\Quick Launch\VPN Client.lnk
[2011/08/22 16:46:53 | 000,001,714 | -H-- | M] () -- C:\Documents and Settings\Rhodora\My Documents\Default.rdp
[2011/08/22 16:32:35 | 000,002,433 | ---- | M] () -- C:\Documents and Settings\Rhodora\Desktop\VPN Client.lnk
[2011/08/22 16:09:31 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011/08/22 15:49:45 | 000,002,427 | ---- | M] () -- C:\WINDOWS\System32\lgAxconfig.ini
[2011/08/22 15:49:39 | 000,002,447 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\VPN Client.lnk
[2011/08/22 15:49:35 | 000,276,202 | ---- | M] () -- C:\WINDOWS\System32\NvApps.xml
[2011/08/22 15:49:30 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/08/22 15:49:28 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/08/22 15:31:35 | 000,001,859 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\KODAK AiO Home Center.lnk
[2011/08/22 15:16:25 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2011/08/22 15:05:37 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/08/04 05:08:59 | 000,001,573 | ---- | M] () -- C:\Documents and Settings\Rhodora\Desktop\Remote Desktop Connection.lnk
[2011/07/31 02:37:52 | 000,056,136 | -H-- | M] () -- C:\WINDOWS\System32\mlfcache.dat
[2011/07/26 19:50:54 | 000,000,068 | ---- | M] () -- C:\WINDOWS\System32\746931672
[2011/07/25 00:22:53 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/07/24 18:02:08 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\lvuvc.hs

========== Files Created - No Company Name ==========

[2011/08/22 17:30:25 | 000,000,893 | ---- | C] () -- C:\Documents and Settings\Rhodora\Desktop\Run this periodically.lnk
[2011/08/22 17:19:04 | 000,001,859 | ---- | C] () -- C:\Documents and Settings\Rhodora\Application Data\Microsoft\Internet Explorer\Quick Launch\KODAK AiO Home Center.lnk
[2011/08/22 17:13:53 | 000,002,433 | ---- | C] () -- C:\Documents and Settings\Rhodora\Application Data\Microsoft\Internet Explorer\Quick Launch\VPN Client.lnk
[2011/08/22 15:31:35 | 000,001,859 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\KODAK AiO Home Center.lnk
[2011/07/31 02:37:52 | 000,056,136 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2011/07/19 23:10:14 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat
[2011/07/02 13:28:01 | 000,002,427 | ---- | C] () -- C:\WINDOWS\System32\lgAxconfig.ini
[2011/02/08 22:54:25 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ViewNX2.INI
[2010/12/17 22:49:08 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Dynamic Library
[2010/12/17 22:49:08 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Drums
[2010/12/17 22:49:08 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Drum Kits
[2010/12/17 22:49:08 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Rhodora\Application Data\Documentation
[2010/12/17 22:49:08 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Rhodora\Application Data\Distortion
[2010/12/17 22:49:08 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Rhodora\Application Data\Displays
[2010/12/17 22:49:08 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLev.DAT
[2010/12/17 22:49:08 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLet.DAT
[2010/12/17 22:49:08 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLes.DAT
[2010/12/17 22:49:08 | 000,000,012 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Filters
[2010/12/17 22:49:08 | 000,000,012 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Filesystems
[2010/12/17 22:49:08 | 000,000,012 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\External Build System
[2010/10/13 19:27:50 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010/08/04 15:28:16 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010/08/04 15:28:16 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010/08/04 15:28:16 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010/08/04 15:28:16 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010/08/04 15:28:16 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010/05/13 12:25:25 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010/02/25 19:47:11 | 000,000,273 | ---- | C] () -- C:\WINDOWS\Knp.ini
[2009/12/19 16:20:23 | 000,073,220 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat
[2009/12/19 16:20:23 | 000,031,053 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern131.dat
[2009/12/19 16:20:23 | 000,029,114 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat
[2009/12/19 16:20:23 | 000,027,417 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern121.dat
[2009/12/19 16:20:23 | 000,021,021 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat
[2009/12/19 16:20:23 | 000,015,670 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat
[2009/12/19 16:20:23 | 000,013,280 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat
[2009/12/19 16:20:23 | 000,010,673 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat
[2009/12/19 16:20:23 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat
[2009/12/19 16:20:23 | 000,001,140 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat
[2009/12/19 16:20:23 | 000,001,140 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat
[2009/12/19 16:20:23 | 000,001,137 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat
[2009/12/19 16:20:23 | 000,001,130 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat
[2009/12/19 16:20:23 | 000,001,130 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat
[2009/12/19 16:20:23 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat
[2009/12/19 16:20:23 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2009/12/19 16:17:40 | 000,000,044 | ---- | C] () -- C:\WINDOWS\EPWF500.ini
[2009/12/19 14:53:44 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009/12/15 15:17:50 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\drivers\WLNdis50.sys
[2009/12/11 11:44:58 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2009/11/24 01:30:17 | 002,183,470 | ---- | C] () -- C:\WINDOWS\System32\nvdata.bin
[2009/11/24 00:58:26 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2009/11/24 00:35:42 | 000,004,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/08/03 15:07:42 | 000,230,768 | ---- | C] () -- C:\WINDOWS\System32\OGAEXEC.exe
[2009/07/08 21:03:02 | 000,058,880 | ---- | C] () -- C:\WINDOWS\System32\bdmpegv.dll
[2009/04/06 11:00:45 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009/04/06 10:51:50 | 000,513,430 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2009/04/06 10:51:50 | 000,090,578 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2009/04/06 10:48:38 | 000,269,392 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/04/06 10:40:43 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2009/04/06 10:35:21 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008/04/14 05:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008/04/14 05:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008/04/14 05:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008/04/14 05:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008/04/14 05:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008/04/14 05:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008/04/14 05:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008/04/14 05:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2007/05/11 16:12:54 | 000,057,126 | ---- | C] () -- C:\WINDOWS\System32\lvcoinst.ini
[2007/04/03 17:18:26 | 000,197,672 | ---- | C] () -- C:\WINDOWS\System32\vpnapi.dll
[2007/04/03 17:18:06 | 000,193,576 | ---- | C] () -- C:\WINDOWS\System32\CSGina.dll
[2003/01/07 16:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/05/28 12:55:42 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2002/05/28 12:54:40 | 000,004,605 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2002/05/08 14:12:22 | 000,000,788 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini

========== LOP Check ==========

[2011/08/01 03:15:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Easybits GO
[2010/12/17 22:49:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EnterNHelp
[2009/12/19 16:21:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EPSON
[2011/07/02 13:28:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LGMOBILEAX
[2010/12/04 20:37:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nexon
[2011/04/19 21:11:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NexonUS
[2010/12/19 15:08:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nikon
[2011/08/22 15:07:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PDFC
[2011/08/03 02:26:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PMB Files
[2010/12/17 22:49:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ultima_T15
[2010/09/30 20:17:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rhodora\Application Data\.minecraft
[2010/12/28 15:25:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rhodora\Application Data\Amazon
[2010/02/06 11:15:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Rhodora\Application Data\EPSON

========== Purity Check ==========



< End of report >

Edited by RieLize, 22 August 2011 - 06:23 PM.

  • 0

Advertisements

#2
Essexboy
Posted 23 August 2011 - 08:59 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hi there could you post the last combofix log please

Download AVPTool from Here to your desktop

Run the programme you have just downloaded to your desktop (it will be randomly named )

First we will run a virus scan

Click the cog in the upper right
Posted Image


Select down to and including your main drive, once done select the Automatic scan tab and press Start Scan
Posted Image

Allow AVP to delete all infections found
Once it has finished select report tab (last tab)
Select Detected threats report from the left and press Save button
Save it to your desktop and attach to your next post


Now the Analysis

Rerun AVP and select the Manual Disinfection tab and press Start Gathering System Information

Posted Image

On completion click the link to locate the zip file to upload and attach to your next post

Posted Image
  • 0

#3
RieLize
Posted 25 August 2011 - 06:59 AM

RieLize

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts
I managed to get the combofix working but AVP Tool said it would take 11 hours and the next day it said it would take 5 days so I aborted it. Here is the Combofix log.

ComboFix 11-08-23.06 - Rhodora 08/23/2011 20:47:19.4.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1791.997 [GMT -4:00]
Running from: c:\documents and settings\Rhodora\My Documents\Downloads\ComboFix.exe
AV: Symantec Endpoint Protection *Disabled/Updated* {FB06448E-52B8-493A-90F3-E43226D3305C}
FW: Symantec Endpoint Protection *Enabled* {BE898FE3-CD0B-4014-85A9-03DB9923DDB6}
FW: ZoneAlarm Firewall *Enabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
.
.
((((((((((((((((((((((((( Files Created from 2011-07-24 to 2011-08-24 )))))))))))))))))))))))))))))))
.
.
2011-08-24 00:34 . 2011-08-24 00:34 -------- d-----w- C:\f4a2b559cd99a9ece62e5c5628
2011-08-24 00:27 . 2011-08-24 00:27 -------- d-----w- c:\documents and settings\Rhodora\Local Settings\Application Data\Eastman Kodak Company
2011-08-22 21:12 . 2011-08-22 21:12 -------- d-----w- c:\documents and settings\Rhodora\Local Settings\Application Data\Eastman_Kodak_Company
2011-08-22 19:27 . 2011-08-22 19:27 -------- d-----w- c:\windows\system32\kodak
2011-08-22 19:20 . 2011-08-22 19:22 -------- d-----w- c:\program files\Kodak
2011-08-22 19:18 . 2011-08-24 00:40 -------- d-----w- c:\documents and settings\All Users\Application Data\Kodak
2011-08-22 19:11 . 2011-07-08 14:02 10496 ------w- c:\windows\system32\dllcache\ndistapi.sys
2011-07-27 03:53 . 2011-08-02 22:12 -------- d-----w- c:\documents and settings\Gabriel\riotsGamesLogs
2011-07-25 23:48 . 2011-07-06 23:52 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-07-25 23:48 . 2011-07-25 23:48 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-07-25 23:48 . 2011-07-06 23:52 22712 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-07-25 03:44 . 2011-07-25 03:44 -------- d-----w- c:\documents and settings\All Users\Application Data\Norton
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-08-22 19:55 . 2011-06-23 14:15 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-07-08 14:02 . 2008-04-14 09:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys
2011-06-23 18:36 . 2008-04-14 09:00 916480 ----a-w- c:\windows\system32\wininet.dll
2011-06-23 18:36 . 2008-04-14 09:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-06-23 18:36 . 2008-04-14 09:00 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-06-23 12:05 . 2008-04-14 09:00 385024 ----a-w- c:\windows\system32\html.iec
2011-06-21 21:46 . 2008-06-20 04:12 167936 ----a-w- c:\windows\system32\drivers\WpsHelper.sys
2011-06-02 14:02 . 2008-04-14 09:00 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-05-28 14:23 . 2011-06-08 02:53 718208 ----a-w- c:\windows\system32\ezGOSvcApp.exe
2011-07-02 08:34 . 2011-05-25 04:37 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot_2011-08-22_20.09.37 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-08-24 00:40 . 2011-08-24 00:40 16384 c:\windows\Temp\Perflib_Perfdata_d4.dat
- 2009-04-06 14:51 . 2011-06-15 07:20 90578 c:\windows\system32\perfc009.dat
+ 2009-04-06 14:51 . 2011-08-24 00:36 90578 c:\windows\system32\perfc009.dat
- 2008-04-14 09:00 . 2011-04-25 16:11 66560 c:\windows\system32\mshtmled.dll
+ 2008-04-14 09:00 . 2011-06-23 18:36 66560 c:\windows\system32\mshtmled.dll
+ 2009-03-08 12:31 . 2011-06-23 18:36 55296 c:\windows\system32\msfeedsbs.dll
- 2009-03-08 12:31 . 2011-04-25 16:11 55296 c:\windows\system32\msfeedsbs.dll
- 2008-04-14 09:00 . 2011-04-25 16:11 25600 c:\windows\system32\jsproxy.dll
+ 2008-04-14 09:00 . 2011-06-23 18:36 25600 c:\windows\system32\jsproxy.dll
+ 2009-12-11 12:49 . 2011-06-23 18:36 12800 c:\windows\system32\dllcache\xpshims.dll
- 2009-12-11 12:49 . 2011-04-25 16:11 12800 c:\windows\system32\dllcache\xpshims.dll
- 2009-03-08 12:31 . 2011-04-25 16:11 66560 c:\windows\system32\dllcache\mshtmled.dll
+ 2009-03-08 12:31 . 2011-06-23 18:36 66560 c:\windows\system32\dllcache\mshtmled.dll
+ 2009-12-11 12:49 . 2011-06-23 18:36 55296 c:\windows\system32\dllcache\msfeedsbs.dll
- 2009-12-11 12:49 . 2011-04-25 16:11 55296 c:\windows\system32\dllcache\msfeedsbs.dll
- 2009-03-08 12:34 . 2011-04-25 16:11 43520 c:\windows\system32\dllcache\licmgr10.dll
+ 2009-03-08 12:34 . 2011-06-23 18:36 43520 c:\windows\system32\dllcache\licmgr10.dll
- 2009-03-08 12:33 . 2011-04-25 16:11 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-03-08 12:33 . 2011-06-23 18:36 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 87408 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\WindowsFormsIntegration.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 93024 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\UIAutomationTypes.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 35688 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\UIAutomationProvider.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 17784 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Windows.Presentation.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 58240 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Windows.Input.Manipulations.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 44920 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Web.ApplicationServices.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 37240 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.ServiceModel.Channels.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 64352 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Numerics.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 51032 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Device.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 50552 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Data.DataSetExtensions.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 81784 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Configuration.Install.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 81800 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.ComponentModel.DataAnnotations.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 39784 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.AddIn.Contract.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 68952 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\SMDiagnostics.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 12128 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\Microsoft.VisualC.Dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 97680 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 78168 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\ISymWrapper.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 81248 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\CustomMarshalers.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 17240 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\Accessibility.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2011-06-15 07:12 . 2011-06-15 07:12 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2009-12-11 15:44 . 2011-07-12 19:37 23040 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2009-12-11 15:44 . 2011-08-24 00:33 23040 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2009-12-11 15:44 . 2011-07-12 19:37 61440 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\pubs.exe
+ 2009-12-11 15:44 . 2011-08-24 00:33 61440 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\pubs.exe
- 2009-12-11 15:44 . 2011-07-12 19:37 27136 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2009-12-11 15:44 . 2011-08-24 00:33 27136 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2009-12-11 15:44 . 2011-07-12 19:37 11264 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2009-12-11 15:44 . 2011-08-24 00:33 11264 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\mspicons.exe
- 2009-12-11 15:44 . 2011-07-12 19:37 86016 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\inficon.exe
+ 2009-12-11 15:44 . 2011-08-24 00:33 86016 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\inficon.exe
- 2009-12-11 15:44 . 2011-07-12 19:37 12288 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2009-12-11 15:44 . 2011-08-24 00:33 12288 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2011-08-24 00:33 . 2011-04-25 16:11 12800 c:\windows\ie8updates\KB2559049-IE8\xpshims.dll
+ 2011-08-24 00:33 . 2011-04-25 16:11 66560 c:\windows\ie8updates\KB2559049-IE8\mshtmled.dll
+ 2011-08-24 00:33 . 2011-04-25 16:11 55296 c:\windows\ie8updates\KB2559049-IE8\msfeedsbs.dll
+ 2011-08-24 00:33 . 2011-04-25 16:11 43520 c:\windows\ie8updates\KB2559049-IE8\licmgr10.dll
+ 2011-08-24 00:33 . 2011-04-25 16:11 25600 c:\windows\ie8updates\KB2559049-IE8\jsproxy.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\1492e9393417d6e91b5ddc746b5ef320\UIAutomationProvider.ni.dll
+ 2011-08-24 00:49 . 2011-08-24 00:49 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\1492e9393417d6e91b5ddc746b5ef320\UIAutomationProvider.ni.dll
- 2011-08-22 19:28 . 2011-08-22 19:28 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\ShellLib\99eb1f0b35a74b861611f474327727ea\ShellLib.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\ShellLib\99eb1f0b35a74b861611f474327727ea\ShellLib.ni.dll
+ 2011-08-24 00:47 . 2011-08-24 00:47 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\e9bb32c656a2f80b629f129d738c392b\PresentationFontCache.ni.exe
- 2011-06-15 07:21 . 2011-06-15 07:21 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\e9bb32c656a2f80b629f129d738c392b\PresentationFontCache.ni.exe
- 2011-06-15 07:21 . 2011-06-15 07:21 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\d54d318ae1eb0667badea576d0534f9d\PresentationCFFRasterizer.ni.dll
+ 2011-08-24 00:46 . 2011-08-24 00:46 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\d54d318ae1eb0667badea576d0534f9d\PresentationCFFRasterizer.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\87fe1d01b568b3bc9c750b7cf7802516\Microsoft.Vsa.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\87fe1d01b568b3bc9c750b7cf7802516\Microsoft.Vsa.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 15872 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualC\a96b02abbfcaae424cfb91a198a9e0e9\Microsoft.VisualC.ni.dll
- 2011-08-22 19:28 . 2011-08-22 19:28 15872 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualC\a96b02abbfcaae424cfb91a198a9e0e9\Microsoft.VisualC.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\Interop.WIA\a83ae96a514e33195779afc5d8ff928f\Interop.WIA.ni.dll
- 2011-08-22 19:28 . 2011-08-22 19:28 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\Interop.WIA\a83ae96a514e33195779afc5d8ff928f\Interop.WIA.ni.dll
- 2011-08-22 19:28 . 2011-08-22 19:28 97280 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.DeviceSettin#\67d98847978d6505d2e8bd617ad6aa4f\Inkjet.DeviceSettings.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 97280 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.DeviceSettin#\67d98847978d6505d2e8bd617ad6aa4f\Inkjet.DeviceSettings.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 62464 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Configuration\1b77807db8a6c182e76dd89a29863420\Inkjet.Configuration.ni.dll
- 2011-08-22 19:27 . 2011-08-22 19:27 62464 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Configuration\1b77807db8a6c182e76dd89a29863420\Inkjet.Configuration.ni.dll
- 2011-08-22 19:32 . 2011-08-22 19:32 52224 c:\windows\assembly\NativeImages_v2.0.50727_32\HRIntp.Interop\afe6d83983bb9d3ffbd0f29e15895cde\HRIntp.Interop.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 52224 c:\windows\assembly\NativeImages_v2.0.50727_32\HRIntp.Interop\afe6d83983bb9d3ffbd0f29e15895cde\HRIntp.Interop.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 57344 c:\windows\assembly\NativeImages_v2.0.50727_32\Helper\df29829eb9a5222117c29b44ab7d88ee\Helper.ni.dll
- 2011-08-22 19:32 . 2011-08-22 19:32 57344 c:\windows\assembly\NativeImages_v2.0.50727_32\Helper\df29829eb9a5222117c29b44ab7d88ee\Helper.ni.dll
- 2011-06-15 07:23 . 2011-06-15 07:23 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\d9228d58804dfd75fd92a4d12ffac8af\Accessibility.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\d9228d58804dfd75fd92a4d12ffac8af\Accessibility.ni.dll
+ 2009-12-11 15:44 . 2011-08-24 00:33 4096 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
- 2009-12-11 15:44 . 2011-07-12 19:37 4096 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2011-08-24 00:36 . 2011-08-24 00:36 109568 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.Wrapper.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 109568 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.Wrapper.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 246128 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 246128 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.dll
+ 2008-04-14 09:00 . 2011-06-23 18:36 105984 c:\windows\system32\url.dll
- 2008-04-14 09:00 . 2009-03-08 12:34 105984 c:\windows\system32\url.dll
- 2009-04-06 14:51 . 2011-06-15 07:20 513430 c:\windows\system32\perfh009.dat
+ 2009-04-06 14:51 . 2011-08-24 00:36 513430 c:\windows\system32\perfh009.dat
+ 2008-04-14 09:00 . 2011-06-23 18:36 206848 c:\windows\system32\occache.dll
- 2008-04-14 09:00 . 2011-04-25 16:11 206848 c:\windows\system32\occache.dll
+ 2008-04-14 09:00 . 2011-06-23 18:36 611840 c:\windows\system32\mstime.dll
- 2008-04-14 09:00 . 2011-04-25 16:11 611840 c:\windows\system32\mstime.dll
+ 2009-03-08 12:32 . 2011-06-23 18:36 602112 c:\windows\system32\msfeeds.dll
- 2009-03-08 12:32 . 2011-04-25 16:11 602112 c:\windows\system32\msfeeds.dll
- 2008-04-14 09:00 . 2011-04-25 16:11 184320 c:\windows\system32\iepeers.dll
+ 2008-04-14 09:00 . 2011-06-23 18:36 184320 c:\windows\system32\iepeers.dll
- 2008-04-14 09:00 . 2011-04-25 16:11 387584 c:\windows\system32\iedkcs32.dll
+ 2008-04-14 09:00 . 2011-06-23 18:36 387584 c:\windows\system32\iedkcs32.dll
+ 2008-04-14 09:00 . 2011-06-23 12:05 173568 c:\windows\system32\ie4uinit.exe
- 2008-04-14 09:00 . 2011-04-25 12:01 173568 c:\windows\system32\ie4uinit.exe
+ 2009-03-08 12:34 . 2011-06-23 18:36 916480 c:\windows\system32\dllcache\wininet.dll
- 2009-03-08 12:34 . 2011-04-25 16:11 916480 c:\windows\system32\dllcache\wininet.dll
- 2009-03-08 12:34 . 2009-03-08 12:34 105984 c:\windows\system32\dllcache\url.dll
+ 2009-03-08 12:34 . 2011-06-23 18:36 105984 c:\windows\system32\dllcache\url.dll
+ 2009-03-08 12:34 . 2011-06-23 18:36 206848 c:\windows\system32\dllcache\occache.dll
- 2009-03-08 12:34 . 2011-04-25 16:11 206848 c:\windows\system32\dllcache\occache.dll
+ 2009-03-08 12:32 . 2011-06-23 18:36 611840 c:\windows\system32\dllcache\mstime.dll
- 2009-03-08 12:32 . 2011-04-25 16:11 611840 c:\windows\system32\dllcache\mstime.dll
- 2009-12-11 12:49 . 2011-04-25 16:11 602112 c:\windows\system32\dllcache\msfeeds.dll
+ 2009-12-11 12:49 . 2011-06-23 18:36 602112 c:\windows\system32\dllcache\msfeeds.dll
+ 2009-12-11 12:49 . 2011-06-23 18:36 247808 c:\windows\system32\dllcache\ieproxy.dll
- 2009-12-11 12:49 . 2011-04-25 16:11 247808 c:\windows\system32\dllcache\ieproxy.dll
+ 2009-03-08 12:31 . 2011-06-23 18:36 184320 c:\windows\system32\dllcache\iepeers.dll
- 2009-03-08 12:31 . 2011-04-25 16:11 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2010-06-10 19:18 . 2011-06-23 18:36 743424 c:\windows\system32\dllcache\iedvtool.dll
- 2010-06-10 19:18 . 2011-04-25 16:11 743424 c:\windows\system32\dllcache\iedvtool.dll
+ 2009-03-08 22:09 . 2011-06-23 18:36 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2009-03-08 22:09 . 2011-04-25 16:11 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2009-03-08 12:32 . 2011-04-25 12:01 173568 c:\windows\system32\dllcache\ie4uinit.exe
+ 2009-03-08 12:32 . 2011-06-23 12:05 173568 c:\windows\system32\dllcache\ie4uinit.exe
+ 2011-08-24 00:36 . 2010-03-18 17:16 350592 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\UIAutomationClientsideProviders.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 163168 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\UIAutomationClient.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 138592 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Xml.Linq.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 699224 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Xaml.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 857960 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Web.Services.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 269672 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Transactions.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 675672 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Speech.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 113512 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.ServiceProcess.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 129912 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.ServiceModel.Routing.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 390008 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.ServiceModel.Discovery.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 505208 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.ServiceModel.Activities.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 261472 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Security.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 122264 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Runtime.Serialization.Formatters.Soap.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 291184 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Runtime.Remoting.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 349568 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Runtime.DurableInstancing.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 334688 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Printing.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 231760 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Net.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 253280 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Messaging.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 134528 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Management.Instrumentation.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 378720 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Management.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 123736 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.IO.Log.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 125816 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.IdentityModel.Selectors.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 392552 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.IdentityModel.dll
+ 2011-08-24 00:35 . 2010-03-18 04:51 109568 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.EnterpriseServices.Wrapper.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 246128 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.EnterpriseServices.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 120152 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Dynamic.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 607064 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Drawing.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 182144 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.DirectoryServices.Protocols.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 395120 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.DirectoryServices.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 285072 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.DirectoryServices.AccountManagement.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 829280 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Deployment.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 747360 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Data.SqlXml.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 436600 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Data.Services.Client.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 683872 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Data.Linq.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 409448 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.configuration.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 210816 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.ComponentModel.Composition.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 149848 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.AddIn.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 122248 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Activities.DurableInstancing.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 525704 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Activities.Core.Presentation.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 112976 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\sysglobl.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 581464 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\ReachFramework.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 832856 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\PresentationUI.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 194424 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\PresentationFramework.Royale.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 478576 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\PresentationFramework.Luna.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 167288 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\PresentationFramework.Classic.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 232304 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\PresentationFramework.Aero.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 661352 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\Microsoft.VisualBasic.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 349576 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\Microsoft.VisualBasic.Compatibility.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 170368 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\Microsoft.Transactions.Bridge.Dtc.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 387960 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\Microsoft.Transactions.Bridge.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 746336 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\Microsoft.JScript.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 505184 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\Microsoft.CSharp.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 138592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Linq.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 138592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Linq.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 113512 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2011-08-24 00:37 . 2011-08-24 00:37 113512 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 261472 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2011-08-24 00:37 . 2011-08-24 00:37 261472 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 349568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Runtime.DurableInstancing.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 349568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Runtime.DurableInstancing.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 231760 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Net\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Net.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 231760 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Net\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Net.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 378720 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2011-08-24 00:37 . 2011-08-24 00:37 378720 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 134528 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Instrumentation\v4.0_4.0.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 134528 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Instrumentation\v4.0_4.0.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 123736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Log\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 123736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Log\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 392552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 392552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 125816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel.Selectors\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 125816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel.Selectors\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 120152 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Dynamic\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Dynamic.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 120152 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Dynamic\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Dynamic.dll
+ 2011-08-24 00:37 . 2011-08-24 00:37 607064 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 607064 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2011-08-24 00:37 . 2011-08-24 00:37 395120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 395120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2011-08-24 00:37 . 2011-08-24 00:37 182144 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.Protocols\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 182144 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.Protocols\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2011-08-24 00:37 . 2011-08-24 00:37 285072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\v4.0_4.0.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 285072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\v4.0_4.0.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
+ 2011-08-24 00:37 . 2011-08-24 00:37 829280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 829280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 747360 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.SqlXml\v4.0_4.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2011-08-24 00:37 . 2011-08-24 00:37 747360 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.SqlXml\v4.0_4.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 436600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Services.Client\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Services.Client.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 436600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Services.Client\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Services.Client.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 683872 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Linq.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 683872 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Linq.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 409448 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 409448 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 210816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.Composition\v4.0_4.0.0.0__b77a5c561934e089\System.ComponentModel.Composition.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 210816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.Composition\v4.0_4.0.0.0__b77a5c561934e089\System.ComponentModel.Composition.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 149848 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn\v4.0_4.0.0.0__b77a5c561934e089\System.AddIn.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 149848 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn\v4.0_4.0.0.0__b77a5c561934e089\System.AddIn.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 122248 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.DurableInstancing.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 122248 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.DurableInstancing.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 525704 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Core.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Core.Presentation.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 525704 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Core.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Core.Presentation.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 112976 c:\windows\Microsoft.NET\assembly\GAC_MSIL\sysglobl\v4.0_4.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 112976 c:\windows\Microsoft.NET\assembly\GAC_MSIL\sysglobl\v4.0_4.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 661352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 661352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 349576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 349576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 387960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 387960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 746336 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.JScript\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 746336 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.JScript\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 505184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 505184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 109568 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 109568 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 246128 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 246128 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 170368 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 170368 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
- 2009-12-11 15:44 . 2011-07-12 19:37 409600 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2009-12-11 15:44 . 2011-08-24 00:33 409600 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\xlicons.exe
- 2009-12-11 15:44 . 2011-07-12 19:37 286720 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2009-12-11 15:44 . 2011-08-24 00:33 286720 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2009-12-11 15:44 . 2011-08-24 00:33 249856 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2009-12-11 15:44 . 2011-07-12 19:37 249856 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2009-12-11 15:44 . 2011-08-24 00:33 794624 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2009-12-11 15:44 . 2011-07-12 19:37 794624 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2009-12-11 15:44 . 2011-07-12 19:37 135168 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2009-12-11 15:44 . 2011-08-24 00:33 135168 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2009-12-11 15:44 . 2011-07-12 19:37 593920 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2009-12-11 15:44 . 2011-08-24 00:33 593920 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2011-08-24 00:33 . 2011-04-25 16:11 916480 c:\windows\ie8updates\KB2559049-IE8\wininet.dll
+ 2011-08-24 00:33 . 2009-03-08 12:34 105984 c:\windows\ie8updates\KB2559049-IE8\url.dll
+ 2011-08-24 00:33 . 2010-07-05 13:16 382840 c:\windows\ie8updates\KB2559049-IE8\spuninst\updspapi.dll
+ 2011-08-24 00:33 . 2010-07-05 13:15 231288 c:\windows\ie8updates\KB2559049-IE8\spuninst\spuninst.exe
+ 2011-08-24 00:33 . 2011-04-25 16:11 206848 c:\windows\ie8updates\KB2559049-IE8\occache.dll
+ 2011-08-24 00:33 . 2011-04-25 16:11 611840 c:\windows\ie8updates\KB2559049-IE8\mstime.dll
+ 2011-08-24 00:33 . 2011-04-25 16:11 602112 c:\windows\ie8updates\KB2559049-IE8\msfeeds.dll
+ 2011-08-24 00:33 . 2011-04-25 16:11 247808 c:\windows\ie8updates\KB2559049-IE8\ieproxy.dll
+ 2011-08-24 00:33 . 2011-04-25 16:11 184320 c:\windows\ie8updates\KB2559049-IE8\iepeers.dll
+ 2011-08-24 00:33 . 2011-04-25 16:11 743424 c:\windows\ie8updates\KB2559049-IE8\iedvtool.dll
+ 2011-08-24 00:33 . 2011-04-25 16:11 387584 c:\windows\ie8updates\KB2559049-IE8\iedkcs32.dll
+ 2011-08-24 00:33 . 2011-04-25 12:01 173568 c:\windows\ie8updates\KB2559049-IE8\ie4uinit.exe
+ 2011-08-24 00:44 . 2011-08-24 00:44 730112 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Security\5d922d83c0778d5815be9e293109ff7d\System.Security.ni.dll
- 2011-06-15 07:05 . 2011-06-15 07:05 145408 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Numerics\6bff4a4db9703b01e7495f5f9e0f2baf\System.Numerics.ni.dll
+ 2011-08-24 00:44 . 2011-08-24 00:44 145408 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Numerics\6bff4a4db9703b01e7495f5f9e0f2baf\System.Numerics.ni.dll
+ 2011-08-24 00:44 . 2011-08-24 00:44 377344 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Dynamic\4a0396c8ea635530cad3276515349c43\System.Dynamic.ni.dll
+ 2011-08-24 00:45 . 2011-08-24 00:45 224768 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Drawing.Desi#\2a170f718d17859abc24b94bcb7d4e3c\System.Drawing.Design.ni.dll
+ 2011-08-24 00:45 . 2011-08-24 00:45 980480 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\adeec723413d77446d6606813c050048\System.Configuration.ni.dll
+ 2011-08-24 00:45 . 2011-08-24 00:45 690176 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ComponentMod#\17aff9c2c94f82753e669acc12631cfb\System.ComponentModel.Composition.ni.dll
+ 2011-08-24 00:45 . 2011-08-24 00:45 656896 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\b2449fe3db220f6110d76287246caaf6\PresentationFramework.Luna.ni.dll
+ 2011-08-24 00:45 . 2011-08-24 00:45 327680 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\814807b505a3f318fbd225ac41897a3f\PresentationFramework.Royale.ni.dll
+ 2011-08-24 00:44 . 2011-08-24 00:44 284160 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\63a4e0d2a3a83df23a2d120127e9312f\PresentationFramework.Classic.ni.dll
+ 2011-08-24 00:44 . 2011-08-24 00:44 450560 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\404f0d161b7bfc2c1ef9a4b47c37bfa8\PresentationFramework.Aero.ni.dll
+ 2011-08-24 00:49 . 2011-08-24 00:49 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\431d5dc1cfcc0c0530e813f370931670\WindowsFormsIntegration.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\431d5dc1cfcc0c0530e813f370931670\WindowsFormsIntegration.ni.dll
- 2011-08-22 19:32 . 2011-08-22 19:32 308736 c:\windows\assembly\NativeImages_v2.0.50727_32\Windows7.DesktopInt#\16eb0c0d7484e41e2b6cce12ed0c0c20\Windows7.DesktopIntegration.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 308736 c:\windows\assembly\NativeImages_v2.0.50727_32\Windows7.DesktopInt#\16eb0c0d7484e41e2b6cce12ed0c0c20\Windows7.DesktopIntegration.ni.dll
- 2011-08-22 19:32 . 2011-08-22 19:32 643584 c:\windows\assembly\NativeImages_v2.0.50727_32\VistaBridgeLibrary\df4b3238c8993bc1a776e655722e29ab\VistaBridgeLibrary.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 643584 c:\windows\assembly\NativeImages_v2.0.50727_32\VistaBridgeLibrary\df4b3238c8993bc1a776e655722e29ab\VistaBridgeLibrary.ni.dll
+ 2011-08-24 00:49 . 2011-08-24 00:49 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\3740d6db28af31a6523a79fcdd71fbeb\UIAutomationTypes.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\3740d6db28af31a6523a79fcdd71fbeb\UIAutomationTypes.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\00dfe5563886a1f69c96b3acb839107b\UIAutomationClient.ni.dll
+ 2011-08-24 00:49 . 2011-08-24 00:49 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\00dfe5563886a1f69c96b3acb839107b\UIAutomationClient.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\dc26fff00ce95d24fd190f38904bb2b3\System.Web.RegularExpressions.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\dc26fff00ce95d24fd190f38904bb2b3\System.Web.RegularExpressions.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\7c430c38d71d632c019ae37d5ef12c8e\System.Transactions.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\7c430c38d71d632c019ae37d5ef12c8e\System.Transactions.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\0f3d321ebd65af974ff0ad424223276d\System.ServiceProcess.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\0f3d321ebd65af974ff0ad424223276d\System.ServiceProcess.ni.dll
- 2011-06-15 07:24 . 2011-06-15 07:24 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\e4bcb14e8e53c8dcaff3d2c20daf746e\System.Security.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\e4bcb14e8e53c8dcaff3d2c20daf746e\System.Security.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\503ccbb50e9c06c2f0b02ad8c3f2d100\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\503ccbb50e9c06c2f0b02ad8c3f2d100\System.Runtime.Serialization.Formatters.Soap.ni.dll
- 2011-08-22 19:28 . 2011-08-22 19:28 771584 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\bdaf7904d223589a0f464de58d27e691\System.Runtime.Remoting.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 771584 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\bdaf7904d223589a0f464de58d27e691\System.Runtime.Remoting.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\19280e723d215c0d6607d3884f453cdf\System.Management.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\19280e723d215c0d6607d3884f453cdf\System.Management.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\94aae9e592c0f104120572f9925fca12\System.EnterpriseServices.Wrapper.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\94aae9e592c0f104120572f9925fca12\System.EnterpriseServices.Wrapper.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\94aae9e592c0f104120572f9925fca12\System.EnterpriseServices.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\94aae9e592c0f104120572f9925fca12\System.EnterpriseServices.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\1af8683e05c42eb32f46578fe5a8f83f\System.Drawing.Design.ni.dll
+ 2011-08-24 00:49 . 2011-08-24 00:49 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\1af8683e05c42eb32f46578fe5a8f83f\System.Drawing.Design.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\791a6643b70542b148d977ff42f2f2ef\System.DirectoryServices.Protocols.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\791a6643b70542b148d977ff42f2f2ef\System.DirectoryServices.Protocols.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\48f8b951a598647dd309ca2031807a5d\System.Configuration.ni.dll
- 2011-06-15 07:24 . 2011-06-15 07:24 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\48f8b951a598647dd309ca2031807a5d\System.Configuration.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\fa21b6c9badcf916bb254b4b823c2463\System.Configuration.Install.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\fa21b6c9badcf916bb254b4b823c2463\System.Configuration.Install.ni.dll
- 2011-06-15 07:21 . 2011-06-15 07:21 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e468e9265c844f74577530e4df71f120\PresentationFramework.Aero.ni.dll
+ 2011-08-24 00:48 . 2011-08-24 00:48 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e468e9265c844f74577530e4df71f120\PresentationFramework.Aero.ni.dll
- 2011-06-15 07:21 . 2011-06-15 07:21 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\959709491c71caef88fb41b0eb159714\PresentationFramework.Classic.ni.dll
+ 2011-08-24 00:48 . 2011-08-24 00:48 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\959709491c71caef88fb41b0eb159714\PresentationFramework.Classic.ni.dll
+ 2011-08-24 00:48 . 2011-08-24 00:48 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\807b62468c2893ee943dffff63a34d8d\PresentationFramework.Royale.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\807b62468c2893ee943dffff63a34d8d\PresentationFramework.Royale.ni.dll
+ 2011-08-24 00:48 . 2011-08-24 00:48 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\6cf82f370413a2cd1e6bc54060334753\PresentationFramework.Luna.ni.dll
- 2011-06-15 07:21 . 2011-06-15 07:21 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\6cf82f370413a2cd1e6bc54060334753\PresentationFramework.Luna.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 274944 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Utilities\224681f3f3d972d9f809e6c67383cce5\Inkjet.Utilities.ni.dll
- 2011-08-22 19:28 . 2011-08-22 19:28 274944 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Utilities\224681f3f3d972d9f809e6c67383cce5\Inkjet.Utilities.ni.dll
- 2011-08-22 19:32 . 2011-08-22 19:32 993280 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Tools\9d3af9a33479b97cd576a1ff45173997\Inkjet.Tools.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 993280 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Tools\9d3af9a33479b97cd576a1ff45173997\Inkjet.Tools.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 176128 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Statistics\fe4ae6cd7f5877cd2efb3b93bf6de674\Inkjet.Statistics.ni.dll
- 2011-08-22 19:27 . 2011-08-22 19:27 176128 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Statistics\fe4ae6cd7f5877cd2efb3b93bf6de674\Inkjet.Statistics.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 373760 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Scanning\96e6ce838ed8f687e16e2d08c86c86f2\Inkjet.Scanning.ni.dll
- 2011-08-22 19:28 . 2011-08-22 19:28 373760 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Scanning\96e6ce838ed8f687e16e2d08c86c86f2\Inkjet.Scanning.ni.dll
- 2011-08-22 19:32 . 2011-08-22 19:32 558592 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Scan\b4a3b04a183c45340d652d7b40c718c7\Inkjet.Scan.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 558592 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Scan\b4a3b04a183c45340d652d7b40c718c7\Inkjet.Scan.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 333312 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Printing\2bc54eaf5f06179efbb40240b2a18635\Inkjet.Printing.ni.dll
- 2011-08-22 19:28 . 2011-08-22 19:28 333312 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Printing\2bc54eaf5f06179efbb40240b2a18635\Inkjet.Printing.ni.dll
- 2011-08-22 19:28 . 2011-08-22 19:28 214528 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Localization\26c19466b9fd49bb344c3dba57fb832e\Inkjet.Localization.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 214528 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Localization\26c19466b9fd49bb344c3dba57fb832e\Inkjet.Localization.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 194048 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.IO\d248507272e88ed88641b27244841b85\Inkjet.IO.ni.dll
- 2011-08-22 19:32 . 2011-08-22 19:32 194048 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.IO\d248507272e88ed88641b27244841b85\Inkjet.IO.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 790528 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Hardware\967f67b0daf050808ab4a46e7b454fbc\Inkjet.Hardware.ni.dll
- 2011-08-22 19:28 . 2011-08-22 19:28 790528 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Hardware\967f67b0daf050808ab4a46e7b454fbc\Inkjet.Hardware.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 163840 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.EasyShare\acbc5ed14c84f98518e2969dec802ee0\Inkjet.EasyShare.ni.dll
- 2011-08-22 19:32 . 2011-08-22 19:32 163840 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.EasyShare\acbc5ed14c84f98518e2969dec802ee0\Inkjet.EasyShare.ni.dll
- 2011-08-22 19:27 . 2011-08-22 19:27 104960 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Diagnostics\ff4c36e61e4969f2d60b441042a4ba32\Inkjet.Diagnostics.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 104960 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Diagnostics\ff4c36e61e4969f2d60b441042a4ba32\Inkjet.Diagnostics.ni.dll
- 2011-08-22 19:28 . 2011-08-22 19:28 154624 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Automation\767805f5379b1704978258a758d74e9f\Inkjet.Automation.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 154624 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Automation\767805f5379b1704978258a758d74e9f\Inkjet.Automation.ni.dll
- 2011-08-22 19:32 . 2011-08-22 19:32 435200 c:\windows\assembly\NativeImages_v2.0.50727_32\EastmanKodakCompany#\ee9cb0d4e68c9a8fd73d8796af3256ce\EastmanKodakCompany.EasyShare.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 435200 c:\windows\assembly\NativeImages_v2.0.50727_32\EastmanKodakCompany#\ee9cb0d4e68c9a8fd73d8796af3256ce\EastmanKodakCompany.EasyShare.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\0524928cbd0a686db3960ef688d0d37e\AspNetMMCExt.ni.dll
- 2011-06-15 07:23 . 2011-06-15 07:23 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\0524928cbd0a686db3960ef688d0d37e\AspNetMMCExt.ni.dll
+ 2008-04-14 09:00 . 2011-06-23 18:36 1212416 c:\windows\system32\urlmon.dll
+ 2008-04-14 09:00 . 2011-07-25 15:17 5969920 c:\windows\system32\mshtml.dll
- 2009-03-08 12:32 . 2011-04-25 16:11 1991680 c:\windows\system32\iertutil.dll
+ 2009-03-08 12:32 . 2011-06-23 18:36 1991680 c:\windows\system32\iertutil.dll
+ 2009-03-08 12:34 . 2011-06-23 18:36 1212416 c:\windows\system32\dllcache\urlmon.dll
+ 2009-03-08 12:41 . 2011-07-25 15:17 5969920 c:\windows\system32\dllcache\mshtml.dll
+ 2009-12-11 12:49 . 2011-06-23 18:36 1991680 c:\windows\system32\dllcache\iertutil.dll
- 2009-12-11 12:49 . 2011-04-25 16:11 1991680 c:\windows\system32\dllcache\iertutil.dll
- 2011-03-23 02:01 . 2011-03-23 02:01 3510600 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.dll
+ 2011-04-28 12:48 . 2011-04-28 12:48 3510600 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 1303896 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\WindowsBase.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 2207568 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.XML.dll
+ 2011-08-24 00:35 . 2011-04-12 19:11 5028200 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Windows.Forms.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 1711496 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Windows.Forms.DataVisualization.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 6067048 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.ServiceModel.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 1026936 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Runtime.Serialization.dll
+ 2011-08-24 00:35 . 2011-03-23 02:01 3510600 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 4464480 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Data.Entity.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 2970968 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Data.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 1339736 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Core.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 1462648 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Activities.Presentation.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 1199968 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\System.Activities.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 6346600 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\PresentationFramework.dll
+ 2011-08-24 00:36 . 2010-03-18 17:16 3545952 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\PresentationCore.dll
+ 2011-08-24 00:35 . 2011-04-12 19:11 5197648 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\mscorlib.dll
+ 2011-08-24 00:35 . 2010-03-18 17:16 2989456 c:\windows\Microsoft.NET\Framework\v4.0.30319\GAC29956\Microsoft.VisualBasic.Activities.Compiler.dll
+ 2011-08-24 00:37 . 2011-08-24 00:37 3510600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 3510600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 2207568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 2207568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
+ 2011-08-24 00:37 . 2011-08-24 00:37 5028200 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 5028200 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 1711496 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.DataVisualization\v4.0_4.0.0.0__31bf3856ad364e35\System.Windows.Forms.DataVisualization.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 1711496 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.DataVisualization\v4.0_4.0.0.0__31bf3856ad364e35\System.Windows.Forms.DataVisualization.dll
+ 2011-08-24 00:39 . 2011-08-24 00:39 6067048 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel\v4.0_4.0.0.0__b77a5c561934e089\System.ServiceModel.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 6067048 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel\v4.0_4.0.0.0__b77a5c561934e089\System.ServiceModel.dll
+ 2011-08-24 00:39 . 2011-08-24 00:39 1026936 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 1026936 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 4464480 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Entity\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Entity.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 4464480 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Entity\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Entity.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 1339736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Core\v4.0_4.0.0.0__b77a5c561934e089\System.Core.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 1339736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Core\v4.0_4.0.0.0__b77a5c561934e089\System.Core.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 1199968 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 1199968 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 1462648 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Presentation.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 1462648 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Presentation.dll
+ 2011-08-24 00:36 . 2011-08-24 00:37 2970968 c:\windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 2970968 c:\windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
+ 2011-08-24 00:36 . 2011-08-24 00:36 5197648 c:\windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 5197648 c:\windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-08-24 00:38 . 2011-08-24 00:38 2989456 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
- 2011-06-15 07:12 . 2011-06-15 07:12 2989456 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
+ 2011-04-28 14:54 . 2011-04-28 14:54 2720768 c:\windows\Installer\82cd1.msp
+ 2011-07-26 17:50 . 2011-07-26 17:50 5522432 c:\windows\Installer\82cca.msp
+ 2011-08-24 00:33 . 2011-04-25 16:11 1211904 c:\windows\ie8updates\KB2559049-IE8\urlmon.dll
+ 2011-08-24 00:33 . 2011-05-30 22:19 5964800 c:\windows\ie8updates\KB2559049-IE8\mshtml.dll
+ 2011-08-24 00:33 . 2011-04-25 16:11 1991680 c:\windows\ie8updates\KB2559049-IE8\iertutil.dll
+ 2011-08-24 00:39 . 2011-08-24 00:39 2342912 c:\windows\assembly\tmp\TGRT5Y9P\System.ServiceModel.dll
+ 2011-08-24 00:44 . 2011-08-24 00:44 3798016 c:\windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\34f85cc53f8487a29fcaf90c9efd93b2\WindowsBase.ni.dll
+ 2011-08-24 00:44 . 2011-08-24 00:44 9085952 c:\windows\assembly\NativeImages_v4.0.30319_32\System\b13a0678a604588bfb6a4ebfadc32cb0\System.ni.dll
+ 2011-08-24 00:43 . 2011-08-24 00:43 5620224 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Xml\100817bd8cf9dfe133a9fdb55c4aecf1\System.Xml.ni.dll
+ 2011-08-24 00:45 . 2011-08-24 00:45 1652736 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\8c3b1fb3982b305452a4c7c8cdcb1934\System.Drawing.ni.dll
+ 2011-08-24 00:45 . 2011-08-24 00:45 6798336 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data\a2191137e48d026aafbd8395d767afa1\System.Data.ni.dll
+ 2011-08-24 00:44 . 2011-08-24 00:44 2549760 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.SqlXml\5467c0cc76469b8dac0b2f7ac9133110\System.Data.SqlXml.ni.dll
+ 2011-08-24 00:45 . 2011-08-24 00:45 2512384 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Data.Linq\12d1f89d64401ab14f15e3e5e4ddf966\System.Data.Linq.ni.dll
+ 2011-08-24 00:45 . 2011-08-24 00:45 7054336 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Core\2adac0cd51859321437cc684331a3b45\System.Core.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 3325440 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\11526c1635b97a7d49e25e72ed6e9662\WindowsBase.ni.dll
- 2011-08-22 19:32 . 2011-08-22 19:32 3325440 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\11526c1635b97a7d49e25e72ed6e9662\WindowsBase.ni.dll
+ 2011-08-24 00:49 . 2011-08-24 00:49 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\901c3796073853746fecd8979c679494\UIAutomationClientsideProviders.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\901c3796073853746fecd8979c679494\UIAutomationClientsideProviders.ni.dll
+ 2011-08-24 00:46 . 2011-08-24 00:46 7950848 c:\windows\assembly\NativeImages_v2.0.50727_32\System\f6a9a002526806f3a5b745cf5c407cae\System.ni.dll
- 2011-06-15 07:21 . 2011-06-15 07:21 7950848 c:\windows\assembly\NativeImages_v2.0.50727_32\System\f6a9a002526806f3a5b745cf5c407cae\System.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f354057a5b4fad4c399da28449ba0d92\System.Xml.ni.dll
+ 2011-08-24 00:49 . 2011-08-24 00:49 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f354057a5b4fad4c399da28449ba0d92\System.Xml.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\f31f1579160d87470cba918f06276e0d\System.Web.Services.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\f31f1579160d87470cba918f06276e0d\System.Web.Services.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 1917952 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\2047e63293e067b351b8f0e038253f33\System.Speech.ni.dll
+ 2011-08-24 00:49 . 2011-08-24 00:49 1917952 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\2047e63293e067b351b8f0e038253f33\System.Speech.ni.dll
+ 2011-08-24 00:49 . 2011-08-24 00:49 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\c64aa916251a45206a805ab6488b9255\System.Printing.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 1035776 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\c64aa916251a45206a805ab6488b9255\System.Printing.ni.dll
+ 2011-08-24 00:49 . 2011-08-24 00:49 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\a59b17e6040e3f6286a2227dfdb17096\System.Drawing.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\a59b17e6040e3f6286a2227dfdb17096\System.Drawing.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\55211bc8f4fcff47c05bfc3020d97148\System.DirectoryServices.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\55211bc8f4fcff47c05bfc3020d97148\System.DirectoryServices.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\f9ff2fb342cd5102e2d95883b3433a5d\System.Deployment.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\f9ff2fb342cd5102e2d95883b3433a5d\System.Deployment.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\05d99241bd45cbd96a6053841790a4a2\System.Data.ni.dll
+ 2011-08-24 00:48 . 2011-08-24 00:48 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\05d99241bd45cbd96a6053841790a4a2\System.Data.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\ef31ab37b0d7c3c1a6d72646966c8911\System.Data.SqlXml.ni.dll
- 2011-06-15 07:24 . 2011-06-15 07:24 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\ef31ab37b0d7c3c1a6d72646966c8911\System.Data.SqlXml.ni.dll
- 2011-08-22 19:28 . 2011-08-22 19:28 1115136 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.OracleC#\e12e3036e337cbeb2d274b37ff4c1279\System.Data.OracleClient.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 1115136 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.OracleC#\e12e3036e337cbeb2d274b37ff4c1279\System.Data.OracleClient.ni.dll
+ 2011-08-24 00:48 . 2011-08-24 00:48 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\283e9bf48e17bdb34acdc93bd5721be0\System.Data.Linq.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\283e9bf48e17bdb34acdc93bd5721be0\System.Data.Linq.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\bd2e04dfab2993479ae17ea3fa4f6222\System.Core.ni.dll
+ 2011-08-24 00:48 . 2011-08-24 00:48 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\bd2e04dfab2993479ae17ea3fa4f6222\System.Core.ni.dll
+ 2011-08-24 00:48 . 2011-08-24 00:48 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\4f82a0a1b4405ef61dfa088d11161e35\ReachFramework.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\4f82a0a1b4405ef61dfa088d11161e35\ReachFramework.ni.dll
+ 2011-08-24 00:48 . 2011-08-24 00:48 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\148505f5b0307230de5d355f10d30a20\PresentationUI.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\148505f5b0307230de5d355f10d30a20\PresentationUI.ni.dll
+ 2011-08-24 00:46 . 2011-08-24 00:46 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\5a1679928d35b08cc1985ca8598e70ab\PresentationBuildTasks.ni.dll
- 2011-06-15 07:21 . 2011-06-15 07:21 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\5a1679928d35b08cc1985ca8598e70ab\PresentationBuildTasks.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\b41db9f2897f538203911026bb0abd5d\Microsoft.JScript.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\b41db9f2897f538203911026bb0abd5d\Microsoft.JScript.ni.dll
- 2011-08-22 19:32 . 2011-08-22 19:32 1213440 c:\windows\assembly\NativeImages_v2.0.50727_32\InkjetCore\3cdf0f7ca7eedc794aea7eedab8baf6f\InkjetCore.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 1213440 c:\windows\assembly\NativeImages_v2.0.50727_32\InkjetCore\3cdf0f7ca7eedc794aea7eedab8baf6f\InkjetCore.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 1177600 c:\windows\assembly\NativeImages_v2.0.50727_32\idrskrn_net14\36fbefda957c972acf75ade7d41e78b1\idrskrn_net14.ni.dll
- 2011-08-22 19:32 . 2011-08-22 19:32 1177600 c:\windows\assembly\NativeImages_v2.0.50727_32\idrskrn_net14\36fbefda957c972acf75ade7d41e78b1\idrskrn_net14.ni.dll
- 2011-08-22 19:28 . 2011-08-22 19:28 3749888 c:\windows\assembly\NativeImages_v2.0.50727_32\CommonControls\fd9b3b607328ddf6eca3349ba4bf7506\CommonControls.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 3749888 c:\windows\assembly\NativeImages_v2.0.50727_32\CommonControls\fd9b3b607328ddf6eca3349ba4bf7506\CommonControls.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 1861120 c:\windows\assembly\NativeImages_v2.0.50727_32\AiOHomeCenter\fa49eb2b8c89f91a5fada856123b1385\AiOHomeCenter.ni.exe
- 2011-08-22 19:32 . 2011-08-22 19:32 1861120 c:\windows\assembly\NativeImages_v2.0.50727_32\AiOHomeCenter\fa49eb2b8c89f91a5fada856123b1385\AiOHomeCenter.ni.exe
+ 2009-03-08 12:39 . 2011-06-23 18:36 11081728 c:\windows\system32\ieframe.dll
- 2009-03-08 12:39 . 2011-04-26 14:11 11081728 c:\windows\system32\ieframe.dll
+ 2009-12-11 12:49 . 2011-06-23 18:36 11081728 c:\windows\system32\dllcache\ieframe.dll
- 2009-12-11 12:49 . 2011-04-26 14:11 11081728 c:\windows\system32\dllcache\ieframe.dll
+ 2011-08-24 00:33 . 2011-04-26 14:11 11081728 c:\windows\ie8updates\KB2559049-IE8\ieframe.dll
+ 2011-08-24 00:46 . 2011-08-24 00:46 13137920 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f72ff4e603cc8879eb7b18841bfa9c0c\System.Windows.Forms.ni.dll
+ 2011-08-24 00:45 . 2011-08-24 00:45 10969088 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Design\b21d85d9212da4598629dcbe5a2e2f79\System.Design.ni.dll
+ 2011-08-24 00:44 . 2011-08-24 00:44 17671168 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\1be95cb0b36c0cc1a0b13d20387e0bcc\PresentationFramework.ni.dll
+ 2011-08-24 00:44 . 2011-08-24 00:44 11106816 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\957a34ba01f489cf306bd9aeffcbf67b\PresentationCore.ni.dll
- 2011-06-15 07:05 . 2011-06-15 07:05 14407680 c:\windows\assembly\NativeImages_v4.0.30319_32\mscorlib\74353039393f68f4c068cc37f759e5be\mscorlib.ni.dll
+ 2011-08-24 00:34 . 2011-08-24 00:34 14407680 c:\windows\assembly\NativeImages_v4.0.30319_32\mscorlib\74353039393f68f4c068cc37f759e5be\mscorlib.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\29d16d2f164fe2263539789ecd0d9d4f\System.Windows.Forms.ni.dll
+ 2011-08-24 00:49 . 2011-08-24 00:49 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\29d16d2f164fe2263539789ecd0d9d4f\System.Windows.Forms.ni.dll
- 2011-06-15 07:25 . 2011-06-15 07:25 11800576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\1fb5d8788c9a9a7f44e2d0fa19c62729\System.Web.ni.dll
+ 2011-08-24 00:51 . 2011-08-24 00:51 11800576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\1fb5d8788c9a9a7f44e2d0fa19c62729\System.Web.ni.dll
+ 2011-08-24 00:48 . 2011-08-24 00:48 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\ee914f59ad8211e0b6734dccffd9986e\System.Design.ni.dll
- 2011-06-15 07:22 . 2011-06-15 07:22 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\ee914f59ad8211e0b6734dccffd9986e\System.Design.ni.dll
- 2011-08-22 19:33 . 2011-08-22 19:33 14880256 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\18d5a8b4091809c803f6aa98f6c51dd5\PresentationFramework.ni.dll
+ 2011-08-24 00:47 . 2011-08-24 00:47 14880256 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\18d5a8b4091809c803f6aa98f6c51dd5\PresentationFramework.ni.dll
- 2011-08-22 19:32 . 2011-08-22 19:32 12594688 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\b34e919ae7984234897304e0017b6090\PresentationCore.ni.dll
+ 2011-08-24 00:52 . 2011-08-24 00:52 12594688 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\b34e919ae7984234897304e0017b6090\PresentationCore.ni.dll
- 2011-06-15 07:21 . 2011-06-15 07:21 11490816 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll
+ 2011-08-24 00:46 . 2011-08-24 00:46 11490816 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\0309936a8e1672d39b9cf14463ce69f9\mscorlib.ni.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-12-19 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2009-08-14 18702336]
"PDF Complete"="c:\program files\PDF Complete\pdfsty.exe" [2009-06-18 563736]
"SetRefresh"="c:\program files\Compaq\SetRefresh\SetRefresh.exe" [2003-11-21 525824]
"ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2008-08-14 115560]
"ArcSoft Connection Service"="c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-28 207424]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-04-03 13670504]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-04-03 110696]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"Nikon Message Center 2"="c:\program files\Nikon\Nikon Message Center 2\NkMC2.exe" [2010-05-26 619008]
"BYR_AGENT"="c:\documents and settings\All Users\Application Data\LGMOBILEAX\BYR_Client\VZWNotiAgent.exe" [2011-06-14 392280]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-11-29 421888]
"ZoneAlarm Client"="c:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2011-03-18 1043968]
"Conime"="c:\windows\system32\conime.exe" [2008-04-14 27648]
"EKIJ5000StatusMonitor"="c:\windows\System32\spool\DRIVERS\W32X86\3\EKIJ5000MUI.exe" [2011-03-03 2510848]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-07-06 449584]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"WUAppSetup"="c:\program files\Common Files\logishrd\WUApp32.exe" [2007-05-11 441120]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
VPN Client.lnk - c:\windows\Installer\{CCBAA1F7-E5E1-48B2-9ED9-A79C6A37CE78}\Icon3E5562ED7.ico [2009-12-16 6144]
Wireless Configuration Utility.lnk - c:\program files\TRENDnet\TEW-421PC_TEW-423PI\WlanCU.exe [2009-12-15 368640]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccEvtMgr]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccSetMgr]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Symantec Antivirus]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Symantec\\Symantec Endpoint Protection\\Smc.exe"=
"c:\\Program Files\\Symantec\\Symantec Endpoint Protection\\SNAC.EXE"=
"c:\\Program Files\\Common Files\\Symantec Shared\\ccApp.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\windows\\system32\\ZoneLabs\\vsmon.exe"=
"c:\\Program Files\\Kodak\\AiO\\Center\\AiOHomeCenter.exe"=
"c:\\Program Files\\Kodak\\AiO\\Center\\Kodak.Statistics.exe"=
"c:\\Program Files\\Kodak\\AiO\\Center\\NetworkPrinterDiscovery.exe"=
"c:\\Program Files\\Kodak\\AiO\\Firmware\\KodakAiOUpdater.exe"=
"c:\\Documents and Settings\\All Users\\Application Data\\Kodak\\Installer\\Setup.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"57321:TCP"= 57321:TCP:Pando Media Booster
"57321:UDP"= 57321:UDP:Pando Media Booster
"8378:TCP"= 8378:TCP:League of Legends Launcher
"8378:UDP"= 8378:UDP:League of Legends Launcher
"8379:TCP"= 8379:TCP:League of Legends Launcher
"8379:UDP"= 8379:UDP:League of Legends Launcher
"58249:TCP"= 58249:TCP:Pando Media Booster
"58249:UDP"= 58249:UDP:Pando Media Booster
"8394:TCP"= 8394:TCP:League of Legends Launcher
"8394:UDP"= 8394:UDP:League of Legends Launcher
"6927:TCP"= 6927:TCP:League of Legends Launcher
"6927:UDP"= 6927:UDP:League of Legends Launcher
"8395:TCP"= 8395:TCP:League of Legends Launcher
"8395:UDP"= 8395:UDP:League of Legends Launcher
"8396:TCP"= 8396:TCP:League of Legends Launcher
"8396:UDP"= 8396:UDP:League of Legends Launcher
"6910:TCP"= 6910:TCP:League of Legends Launcher
"6910:UDP"= 6910:UDP:League of Legends Launcher
"8381:TCP"= 8381:TCP:League of Legends Launcher
"8381:UDP"= 8381:UDP:League of Legends Launcher
"6940:TCP"= 6940:TCP:League of Legends Launcher
"6940:UDP"= 6940:UDP:League of Legends Launcher
"6987:TCP"= 6987:TCP:League of Legends Launcher
"6987:UDP"= 6987:UDP:League of Legends Launcher
"6906:TCP"= 6906:TCP:League of Legends Launcher
"6906:UDP"= 6906:UDP:League of Legends Launcher
"6947:TCP"= 6947:TCP:League of Legends Launcher
"6947:UDP"= 6947:UDP:League of Legends Launcher
"6899:TCP"= 6899:TCP:League of Legends Launcher
"6899:UDP"= 6899:UDP:League of Legends Launcher
"6964:TCP"= 6964:TCP:League of Legends Launcher
"6964:UDP"= 6964:UDP:League of Legends Launcher
"6976:TCP"= 6976:TCP:League of Legends Launcher
"6976:UDP"= 6976:UDP:League of Legends Launcher
"6981:TCP"= 6981:TCP:League of Legends Launcher
"6981:UDP"= 6981:UDP:League of Legends Launcher
"6903:TCP"= 6903:TCP:League of Legends Launcher
"6903:UDP"= 6903:UDP:League of Legends Launcher
"6952:TCP"= 6952:TCP:League of Legends Launcher
"6952:UDP"= 6952:UDP:League of Legends Launcher
"6887:TCP"= 6887:TCP:League of Legends Launcher
"6887:UDP"= 6887:UDP:League of Legends Launcher
"6973:TCP"= 6973:TCP:League of Legends Launcher
"6973:UDP"= 6973:UDP:League of Legends Launcher
"1113:TCP"= 1113:TCP:Akamai NetSession Interface
"5000:UDP"= 5000:UDP:Akamai NetSession Interface
"57096:TCP"= 57096:TCP:Pando Media Booster
"57096:UDP"= 57096:UDP:Pando Media Booster
"9322:TCP"= 9322:TCP:EKDiscovery
"5353:UDP"= 5353:UDP:Bonjour Port 5353
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [3/18/2010 1:16 PM 130384]
R2 Kodak AiO Network Discovery Service;Kodak AiO Network Discovery Service;c:\program files\Kodak\AiO\Center\EKAiOHostService.exe [3/9/2011 1:29 PM 366000]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [7/25/2011 7:48 PM 366640]
R2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [11/24/2009 12:49 AM 635416]
R2 regi;regi;c:\windows\system32\drivers\regi.sys [4/18/2007 12:09 AM 11032]
R2 WLNdis50;Wireless Lan NDIS Protocol I/O Control;c:\windows\system32\drivers\WLNdis50.sys [12/15/2009 3:17 PM 20480]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [7/27/2011 8:32 PM 105592]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [7/25/2011 7:48 PM 22712]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [12/19/2009 5:06 PM 135664]
S2 TlntSvr32;Telnet ;c:\windows\system32\mqrt32.exe --> c:\windows\system32\mqrt32.exe [?]
S2 WLSVC;WLSVC;c:\program files\TRENDnet\TEW-421PC_TEW-423PI\WLSVC.exe [12/15/2009 3:17 PM 167936]
S3 COH_Mon;COH_Mon;c:\windows\system32\drivers\COH_Mon.sys [11/18/2008 7:17 PM 23888]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [12/19/2009 5:06 PM 135664]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [7/25/2011 7:48 PM 41272]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [3/18/2010 1:16 PM 753504]
S3 XDva337;XDva337;\??\c:\windows\system32\XDva337.sys --> c:\windows\system32\XDva337.sys [?]
S3 XDva341;XDva341;\??\c:\windows\system32\XDva341.sys --> c:\windows\system32\XDva341.sys [?]
S3 XDva343;XDva343;\??\c:\windows\system32\XDva343.sys --> c:\windows\system32\XDva343.sys [?]
S3 XDva349;XDva349;\??\c:\windows\system32\XDva349.sys --> c:\windows\system32\XDva349.sys [?]
S3 XDva351;XDva351;\??\c:\windows\system32\XDva351.sys --> c:\windows\system32\XDva351.sys [?]
S3 XDva352;XDva352;\??\c:\windows\system32\XDva352.sys --> c:\windows\system32\XDva352.sys [?]
S3 XDva359;XDva359;\??\c:\windows\system32\XDva359.sys --> c:\windows\system32\XDva359.sys [?]
S3 XDva362;XDva362;\??\c:\windows\system32\XDva362.sys --> c:\windows\system32\XDva362.sys [?]
.
Contents of the 'Scheduled Tasks' folder
.
2011-07-08 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 21:57]
.
2011-08-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-19 21:05]
.
2011-08-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-19 21:05]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.hp.com
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_70C5B381380DB17F.dll/cmsidewiki.html
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //FWEvent.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\documents and settings\Rhodora\Application Data\Mozilla\Firefox\Profiles\sh776slk.default\
FF - prefs.js: browser.startup.homepage - about:blank
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-08-23 20:52
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\DeterministicNetworks\DNE\Parameters]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,79,00,73,00,\
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(2192)
c:\windows\system32\WININET.dll
c:\windows\system32\msi.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Completion time: 2011-08-23 20:53:45
ComboFix-quarantined-files.txt 2011-08-24 00:53
ComboFix2.txt 2011-08-22 20:10
ComboFix3.txt 2011-07-27 00:18
ComboFix4.txt 2011-07-26 23:59
ComboFix5.txt 2011-08-24 00:36
.
Pre-Run: 185,641,852,928 bytes free
Post-Run: 185,400,373,248 bytes free
.
- - End Of File - - 9B84FB9FADA3BEEB0FC96ED2DB2C6B6D
  • 0

#4
Essexboy
Posted 25 August 2011 - 08:20 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK I will continue with Combofix and just ask for the AVP analysis scan (much quicker)

1. Close any open browsers.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
3. Open notepad and copy/paste the text in the quotebox below into it:

File::
c:\windows\system32\XDva337.sys
c:\windows\system32\XDva341.sys
c:\windows\system32\XDva343.sys
c:\windows\system32\XDva349.sys
c:\windows\system32\XDva351.sys
c:\windows\system32\XDva352.sys
c:\windows\system32\XDva359.sys
c:\windows\system32\XDva362.sys

Driver::
XDva337
XDva341
XDva343
XDva349
XDva351
XDva352
XDva359
XDva362

Save this as CFScript.txt, in the same location as ComboFix.exe
Posted Image

Refering to the picture above, drag CFScript into ComboFix.exeWhen finished, it shall produce a log for you at C:\ComboFix.txt which I will require in your next reply.

THEN

Now the Analysis

Rerun AVP and select the Manual Disinfection tab and press Start Gathering System Information

Posted Image

On completion click the link to locate the zip file to upload and attach to your next post

Posted Image
Megaupload
  • 0

#5
Essexboy
Posted 29 August 2011 - 05:19 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP