Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Google redirect virus

Started by baseballucdoy , Feb 08 2012 09:23 PM

Please log in to reply

#1
baseballucdoy

Posted 08 February 2012 - 09:23 PM

Member

Member
11 posts

Here's the log, as requested:

ComboFix 12-02-08.02 - Chris 2 02/08/2012 21:59:16.1.2 - x64
Microsoft® Windows Vista™ Ultimate 6.0.6002.2.1252.1.1033.18.4090.2565 [GMT -5:00]
Running from: c:\users\Chris 2\Desktop\CombooooFixndnd.exe
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Outdated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Disabled/Outdated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.

.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
c:\users\Chris 2\Documents\~WRL0003.tmp
.
.
((((((((((((((((((((((((( Files Created from 2012-01-09 to 2012-02-09 )))))))))))))))))))))))))))))))
.
.
2012-02-09 03:03 . 2012-02-09 03:03 -------- d-----w- c:\users\Guest\AppData\Local\temp
2012-02-09 03:03 . 2012-02-09 03:03 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-08 20:03 . 2012-02-08 20:03 55384 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2012-02-08 19:59 . 2012-02-08 19:59 -------- d-----w- c:\users\Chris 2\AppData\Local\adaware
2012-02-08 19:59 . 2012-02-08 19:59 -------- d-----w- c:\programdata\Ad-Aware Browsing Protection
2012-02-08 19:59 . 2012-02-08 19:59 -------- d-----w- c:\program files (x86)\Toolbar Cleaner
2012-02-08 19:58 . 2012-02-08 19:59 -------- d-----w- c:\program files (x86)\adawaretb
2012-02-08 19:58 . 2012-02-09 02:20 -------- d-----w- c:\programdata\Lavasoft
2012-02-08 04:43 . 2012-02-08 04:43 -------- d-----w- c:\users\Chris 2\AppData\Roaming\AVG2012
2012-02-08 04:29 . 2012-01-06 05:15 8602168 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0183B32C-576F-4430-9995-F4A56F3412BC}\mpengine.dll
2012-01-11 16:28 . 2011-11-17 06:53 515968 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-01-11 16:28 . 2011-11-16 16:42 347136 ----a-w- c:\windows\system32\schannel.dll
2012-01-11 16:28 . 2011-11-16 16:41 1689600 ----a-w- c:\windows\system32\lsasrv.dll
2012-01-11 16:28 . 2011-11-16 16:23 278528 ----a-w- c:\windows\SysWow64\schannel.dll
2012-01-11 16:28 . 2011-11-16 16:43 442368 ----a-w- c:\windows\system32\winhttp.dll
2012-01-11 16:28 . 2011-11-16 16:42 94720 ----a-w- c:\windows\system32\secur32.dll
2012-01-11 16:28 . 2011-11-16 16:24 77312 ----a-w- c:\windows\SysWow64\secur32.dll
2012-01-11 16:28 . 2011-11-16 16:23 377344 ----a-w- c:\windows\SysWow64\winhttp.dll
2012-01-11 16:28 . 2011-11-16 14:34 11264 ----a-w- c:\windows\system32\lsass.exe
2012-01-11 02:39 . 2011-12-01 15:29 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2012-01-11 02:39 . 2011-12-01 15:21 2409784 ----a-w- c:\program files (x86)\Windows Mail\OESpamFilter.dat
2012-01-11 02:39 . 2011-11-18 18:07 76800 ----a-w- c:\windows\system32\packager.dll
2012-01-11 02:39 . 2011-11-18 17:47 66560 ----a-w- c:\windows\SysWow64\packager.dll
2012-01-11 02:39 . 2011-10-14 17:31 211968 ----a-w- c:\windows\system32\winmm.dll
2012-01-11 02:39 . 2011-10-14 17:27 28672 ----a-w- c:\windows\system32\mciwave.dll
2012-01-11 02:39 . 2011-10-14 17:27 28160 ----a-w- c:\windows\system32\mciseq.dll
2012-01-11 02:39 . 2011-10-14 17:27 48128 ----a-w- c:\windows\system32\mcicda.dll
2012-01-11 02:39 . 2011-10-14 16:03 189952 ----a-w- c:\windows\SysWow64\winmm.dll
2012-01-11 02:39 . 2011-10-14 16:00 23552 ----a-w- c:\windows\SysWow64\mciseq.dll
2012-01-11 02:39 . 2011-11-25 16:25 451072 ----a-w- c:\windows\system32\winsrv.dll
2012-01-11 02:38 . 2011-10-25 16:13 1570816 ----a-w- c:\windows\system32\quartz.dll
2012-01-11 02:38 . 2011-10-25 16:13 352256 ----a-w- c:\windows\system32\qdvd.dll
2012-01-11 02:38 . 2011-10-25 15:58 1314816 ----a-w- c:\windows\SysWow64\quartz.dll
2012-01-11 02:38 . 2011-10-25 15:58 497152 ----a-w- c:\windows\SysWow64\qdvd.dll
2012-01-11 02:38 . 2011-11-18 20:55 1585152 ----a-w- c:\windows\system32\ntdll.dll
2012-01-11 02:38 . 2011-11-18 20:55 1167984 ----a-w- c:\windows\SysWow64\ntdll.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-29 10:10 . 2010-02-16 00:17 279656 ------w- c:\windows\system32\MpSigStub.exe
2011-12-28 01:31 . 2011-12-28 01:31 108144 ----a-w- c:\windows\SysWow64\CmdLineExt.dll
2011-11-28 18:01 . 2008-05-23 04:17 256960 ----a-w- c:\windows\system32\aswBoot.exe
2011-11-23 13:57 . 2011-12-15 16:28 2764800 ----a-w- c:\windows\system32\win32k.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{6c97a91e-4524-4019-86af-2aa2d567bf5c}]
2011-12-21 15:44 87440 ----a-w- c:\program files (x86)\adawaretb\adawareDx.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{6c97a91e-4524-4019-86af-2aa2d567bf5c}"= "c:\program files (x86)\adawaretb\adawareDx.dll" [2011-12-21 87440]
.
[HKEY_CLASSES_ROOT\clsid\{6c97a91e-4524-4019-86af-2aa2d567bf5c}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1555968]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-06-25 98304]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-06-09 976832]
"CarboniteSetupLite"="c:\program files (x86)\Carbonite\CarbonitePreinstaller.exe" [2010-11-21 283792]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
"Dell V715w"="c:\program files (x86)\Dell V715w\fm3032.exe" [2009-07-09 316072]
"AVG_TRAY"="c:\program files (x86)\AVG\AVG2012\avgtray.exe" [2012-01-24 2416480]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-02 59240]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2011-12-08 421736]
"Ad-Aware Browsing Protection"="c:\programdata\Ad-Aware Browsing Protection\adawarebp.exe" [2011-11-14 197288]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"adaware"="reg.exe delete HKCU\Software\AppDataLow\Software\adaware" [X]
"adaware_XP"="reg.exe delete HKCU\Software\adaware" [X]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Clean Access Agent.lnk - c:\program files (x86)\Cisco Systems\Clean Access Agent\CCAAgentLauncher.exe [2007-12-7 28672]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
Contents of the 'Scheduled Tasks' folder
.
2012-02-08 c:\windows\Tasks\User_Feed_Synchronization-{22543227-28D1-448C-887D-80EC548A96C2}.job
- c:\windows\system32\msfeedssync.exe [2011-12-15 04:44]
.
2012-02-09 c:\windows\Tasks\User_Feed_Synchronization-{C9BDE752-56DB-4800-8C20-B82FD7F534A4}.job
- c:\windows\system32\msfeedssync.exe [2011-12-15 04:44]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-11-21 1657128]
"QuickSet"="c:\program files\Dell\QuickSet\QuickSet.exe" [2009-05-14 2129488]
"dleemon.exe"="c:\program files (x86)\Dell V715w\dleemon.exe" [2009-07-09 766632]
"EzPrint"="c:\program files (x86)\Dell V715w\ezprint.exe" [2009-07-09 139944]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Supplementary Scan -------

.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.80.180.200 10.76.51.12
CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\browseui.dll
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKCU-Run-WMPNSCFG - c:\program files (x86)\Windows Media Player\WMPNSCFG.exe
HKLM-Run-Windows Defender - c:\program files (x86)\Windows Defender\MSASCui.exe
HKLM-Run-SysTrayApp - c:\program files (x86)\IDT\WDM\sttray64.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10w_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10w_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}]
@Denied: (A 2) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0]
@="Shockwave Flash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}]
@Denied: (A 2) (Everyone)
@=""
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0]
@="FlashBroker"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Classes]
"SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe
c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE
.
**************************************************************************
.
Completion time: 2012-02-08 22:09:57 - machine was rebooted
ComboFix-quarantined-files.txt 2012-02-09 03:09
.
Pre-Run: 363,966,910,464 bytes free
Post-Run: 366,086,983,680 bytes free
.
- - End Of File - - C91AE95F2B3EBCE823E43DBB0F5B9E0A

The virus kept redirecting me to "pumacredit," if that helps. I haven't used google since running combofix so I'm not sure if I still have it. I tried to get rid of it with anti-malwarebytes (which normally does the job), Avast!, AVG, and Microsoft Security Essentials but none got rid of it...MSE did get rid of a Java Virus though. The virus didn't block any of these anti-virus programs from running bu was efficient at hiding.

Anyway, thanks!

#2
RKinner

Posted 09 February 2012 - 04:26 PM

Malware Expert

Expert
24,624 posts

Download TDSSKiller:
http://support.kaspe.../tdsskiller.exe
Save it to your desktop then run it.
Double click on TDSSKiller.exe (Vista or Win 7 must right click and Run As Admin)
If TDSSKiller alerts you that the system needs to reboot, please consent.

Run TDSSKiller again but this time:
before you hit the Scan hit Change Parameters and check the two items under Additional Options. OK then Scan.
In this mode it is prone to false positives so do not change the SKIP option to DELETE unless it says TDSS.
When done, a log file should be created on your C: drive named "TDSSKiller.txt" please copy and paste the contents in your next reply.

Download aswMBR.exe ( 511KB ) to your desktop.
Right click aswMBR.exe and Run as Administrator
uncheck trace disk IO calls
Click the "Scan" button to start scan
On completion of the scan (Note if the Fix button is enabled (not the FixMBR button) and tell me) click save log, save it to your desktop and post in your next reply

Download OTL from
http://www.geekstogo...timers-list-it/
and Save it to your desktop.


nnetsvcs
%SYSTEMDRIVE%\*.exe
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.exe
%APPDATA%\*.
/md5start
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
%systemroot%\*. /mp /s
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
CREATERESTOREPOINT

Run OTL (Vista or Win 7 => right click and Run As Administrator)

Paste (Ctrl + v) the copied text in the box where it says Custom Scan/Fixes

Select the All option in the Extra Registry group then Run Scan.

You should get two logs. Please copy and paste both of them.

Right click on (My) Computer and select Manage (Continue) Then the Event Viewer. Next select Windows Logs. Right click on System and Clear Log, Clear. Repeat for Application.

Reboot.

Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator. Then type (with an Enter after each line).

sfc  /scannow

(This will check your critical system files. If it asks for a CD and you don't have one or it doesn't like your CD just tell it to SKIP.)

1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning

Then use the 'Number of events' as follows:

1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.

Please post the Output log in your next reply then repeat but select Application.

Ron

#3
baseballucdoy

Posted 10 February 2012 - 04:22 PM

Member

Topic Starter
Member
11 posts

I was doing great until the end, but unfortunately I cannot get that last one to run. Also, Avast froze at C:/Users/Chris 2/AppData/Local/Microsoft/Windows/Temporary Internet Files. Here's what I have so far. Thanks! My google was fine for a little while, but is now hijacked by this Puma thing again.

Also, I have tried to uninstall AVG, but the computer will not get rid of it. I wonder if that's part of my problem?

TDDSKiller:

19:58:46.0051 3984 TDSS rootkit removing tool 2.7.11.0 Feb 9 2012 10:12:57
19:58:46.0238 3984 ============================================================
19:58:46.0238 3984 Current date / time: 2012/02/09 19:58:46.0238
19:58:46.0238 3984 SystemInfo:
19:58:46.0238 3984
19:58:46.0238 3984 OS Version: 6.0.6002 ServicePack: 2.0
19:58:46.0238 3984 Product type: Workstation
19:58:46.0238 3984 ComputerName: CHRIS-PC
19:58:46.0238 3984 UserName: Chris 2
19:58:46.0238 3984 Windows directory: C:\Windows
19:58:46.0238 3984 System windows directory: C:\Windows
19:58:46.0238 3984 Running under WOW64
19:58:46.0238 3984 Processor architecture: Intel x64
19:58:46.0238 3984 Number of processors: 2
19:58:46.0238 3984 Page size: 0x1000
19:58:46.0238 3984 Boot type: Normal boot
19:58:46.0238 3984 ============================================================
19:58:47.0408 3984 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:58:47.0424 3984 \Device\Harddisk0\DR0:
19:58:47.0424 3984 MBR used
19:58:47.0424 3984 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1B800, BlocksNum 0x1E00000
19:58:47.0424 3984 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E1B800, BlocksNum 0x3856A000
19:58:47.0486 3984 Initialize success
19:58:47.0486 3984 ============================================================
19:59:22.0711 3428 ============================================================
19:59:22.0711 3428 Scan started
19:59:22.0711 3428 Mode: Manual;
19:59:22.0711 3428 ============================================================
19:59:24.0286 3428 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys
19:59:24.0302 3428 ACPI - ok
19:59:24.0364 3428 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
19:59:24.0396 3428 adp94xx - ok
19:59:24.0427 3428 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
19:59:24.0442 3428 adpahci - ok
19:59:24.0458 3428 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
19:59:24.0474 3428 adpu160m - ok
19:59:24.0536 3428 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
19:59:24.0536 3428 adpu320 - ok
19:59:24.0645 3428 AFD (0cc146c4addea45791b18b1e2659f4a9) C:\Windows\system32\drivers\afd.sys
19:59:24.0661 3428 AFD - ok
19:59:24.0708 3428 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
19:59:24.0708 3428 agp440 - ok
19:59:24.0770 3428 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
19:59:24.0770 3428 aic78xx - ok
19:59:24.0817 3428 aliide (9544c2c55541c0c6bfd7b489d0e7d430) C:\Windows\system32\drivers\aliide.sys
19:59:24.0817 3428 aliide - ok
19:59:24.0848 3428 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
19:59:24.0864 3428 amdide - ok
19:59:24.0895 3428 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys
19:59:24.0895 3428 AmdK8 - ok
19:59:24.0973 3428 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
19:59:24.0973 3428 arc - ok
19:59:25.0020 3428 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
19:59:25.0020 3428 arcsas - ok
19:59:25.0066 3428 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
19:59:25.0066 3428 AsyncMac - ok
19:59:25.0144 3428 atapi (e68d9b3a3905619732f7fe039466a623) C:\Windows\system32\drivers\atapi.sys
19:59:25.0144 3428 atapi - ok
19:59:25.0191 3428 AtiHdmiService (6309d37a01e04eb01a6c15ac87ec8294) C:\Windows\system32\drivers\AtiHdmi.sys
19:59:25.0191 3428 AtiHdmiService - ok
19:59:25.0378 3428 atikmdag (a08339ae90972e268b9622c668f450e8) C:\Windows\system32\DRIVERS\atikmdag.sys
19:59:25.0456 3428 atikmdag - ok
19:59:25.0534 3428 Beep - ok
19:59:25.0566 3428 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
19:59:25.0566 3428 blbdrive - ok
19:59:25.0628 3428 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys
19:59:25.0628 3428 bowser - ok
19:59:25.0659 3428 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
19:59:25.0659 3428 BrFiltLo - ok
19:59:25.0675 3428 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
19:59:25.0675 3428 BrFiltUp - ok
19:59:25.0706 3428 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
19:59:25.0706 3428 Brserid - ok
19:59:25.0722 3428 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
19:59:25.0722 3428 BrSerWdm - ok
19:59:25.0753 3428 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
19:59:25.0753 3428 BrUsbMdm - ok
19:59:25.0768 3428 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
19:59:25.0768 3428 BrUsbSer - ok
19:59:25.0800 3428 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
19:59:25.0800 3428 BTHMODEM - ok
19:59:25.0815 3428 catchme - ok
19:59:25.0831 3428 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
19:59:25.0831 3428 cdfs - ok
19:59:25.0893 3428 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys
19:59:25.0893 3428 cdrom - ok
19:59:25.0909 3428 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\DRIVERS\circlass.sys
19:59:25.0909 3428 circlass - ok
19:59:25.0971 3428 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys
19:59:25.0987 3428 CLFS - ok
19:59:26.0034 3428 CmBatt (b52d9a14ce4101577900a364ba86f3df) C:\Windows\system32\DRIVERS\CmBatt.sys
19:59:26.0034 3428 CmBatt - ok
19:59:26.0049 3428 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
19:59:26.0049 3428 cmdide - ok
19:59:26.0096 3428 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\DRIVERS\compbatt.sys
19:59:26.0112 3428 Compbatt - ok
19:59:26.0112 3428 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
19:59:26.0127 3428 crcdisk - ok
19:59:26.0174 3428 CSC (f60f50c8ed3fcbe358430b95fe27d09c) C:\Windows\system32\drivers\csc.sys
19:59:26.0190 3428 CSC - ok
19:59:26.0236 3428 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys
19:59:26.0236 3428 DfsC - ok
19:59:26.0299 3428 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys
19:59:26.0299 3428 disk - ok
19:59:26.0377 3428 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
19:59:26.0377 3428 drmkaud - ok
19:59:26.0424 3428 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys
19:59:26.0439 3428 DXGKrnl - ok
19:59:26.0502 3428 e1express (17d40652ef3e55eeae187a89df40965a) C:\Windows\system32\DRIVERS\e1e6032e.sys
19:59:26.0517 3428 e1express - ok
19:59:26.0548 3428 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
19:59:26.0548 3428 E1G60 - ok
19:59:26.0626 3428 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys
19:59:26.0642 3428 Ecache - ok
19:59:26.0689 3428 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
19:59:26.0689 3428 elxstor - ok
19:59:26.0720 3428 ErrDev (991fab6aa066e1214efb5b496fb7959a) C:\Windows\system32\drivers\errdev.sys
19:59:26.0720 3428 ErrDev - ok
19:59:26.0782 3428 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys
19:59:26.0782 3428 exfat - ok
19:59:26.0829 3428 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys
19:59:26.0845 3428 fastfat - ok
19:59:26.0860 3428 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
19:59:26.0860 3428 fdc - ok
19:59:26.0892 3428 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
19:59:26.0892 3428 FileInfo - ok
19:59:26.0923 3428 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
19:59:26.0923 3428 Filetrace - ok
19:59:26.0954 3428 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
19:59:26.0970 3428 flpydisk - ok
19:59:27.0016 3428 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys
19:59:27.0016 3428 FltMgr - ok
19:59:27.0079 3428 Fs_Rec (29d99e860a1ca0a03c6a733fdd0da703) C:\Windows\system32\drivers\Fs_Rec.sys
19:59:27.0079 3428 Fs_Rec - ok
19:59:27.0126 3428 fvevol (849e38db7d829962d0233a0a252b60c3) C:\Windows\system32\DRIVERS\fvevol.sys
19:59:27.0126 3428 fvevol - ok
19:59:27.0157 3428 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
19:59:27.0172 3428 gagp30kx - ok
19:59:27.0204 3428 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:59:27.0219 3428 GEARAspiWDM - ok
19:59:27.0297 3428 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:59:27.0313 3428 HDAudBus - ok
19:59:27.0344 3428 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
19:59:27.0344 3428 HidBth - ok
19:59:27.0375 3428 HidIr (5f47839455d01ff6403b008d481a6f5b) C:\Windows\system32\DRIVERS\hidir.sys
19:59:27.0391 3428 HidIr - ok
19:59:27.0422 3428 HidUsb (128e2da8483fdd4dd0c7b3f9abd6f323) C:\Windows\system32\DRIVERS\hidusb.sys
19:59:27.0422 3428 HidUsb - ok
19:59:27.0453 3428 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
19:59:27.0453 3428 HpCISSs - ok
19:59:27.0516 3428 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys
19:59:27.0531 3428 HTTP - ok
19:59:27.0562 3428 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
19:59:27.0562 3428 i2omp - ok
19:59:27.0594 3428 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
19:59:27.0594 3428 i8042prt - ok
19:59:27.0625 3428 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
19:59:27.0625 3428 iaStorV - ok
19:59:27.0656 3428 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
19:59:27.0656 3428 iirsp - ok
19:59:27.0703 3428 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys
19:59:27.0703 3428 intelide - ok
19:59:27.0734 3428 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
19:59:27.0734 3428 intelppm - ok
19:59:27.0781 3428 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:59:27.0781 3428 IpFilterDriver - ok
19:59:27.0812 3428 IpInIp - ok
19:59:27.0843 3428 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
19:59:27.0843 3428 IPMIDRV - ok
19:59:27.0874 3428 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
19:59:27.0874 3428 IPNAT - ok
19:59:27.0906 3428 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
19:59:27.0906 3428 IRENUM - ok
19:59:27.0937 3428 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
19:59:27.0937 3428 isapnp - ok
19:59:27.0999 3428 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys
19:59:27.0999 3428 iScsiPrt - ok
19:59:28.0015 3428 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
19:59:28.0015 3428 iteatapi - ok
19:59:28.0046 3428 itecir (5fef11c18ec25cdcb27e6c8680690b69) C:\Windows\system32\DRIVERS\itecir.sys
19:59:28.0046 3428 itecir - ok
19:59:28.0077 3428 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
19:59:28.0093 3428 iteraid - ok
19:59:28.0124 3428 k57nd60a (eb5c7891b9e6e4a1a4428f2160b12b53) C:\Windows\system32\DRIVERS\k57nd60a.sys
19:59:28.0124 3428 k57nd60a - ok
19:59:28.0140 3428 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
19:59:28.0140 3428 kbdclass - ok
19:59:28.0186 3428 kbdhid (dbdf75d51464fbc47d0104ec3d572c05) C:\Windows\system32\DRIVERS\kbdhid.sys
19:59:28.0202 3428 kbdhid - ok
19:59:28.0233 3428 KSecDD (2758d174604f597bbc8a217ff667913d) C:\Windows\system32\Drivers\ksecdd.sys
19:59:28.0249 3428 KSecDD - ok
19:59:28.0264 3428 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
19:59:28.0264 3428 ksthunk - ok
19:59:28.0280 3428 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
19:59:28.0280 3428 lltdio - ok
19:59:28.0311 3428 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
19:59:28.0311 3428 LSI_FC - ok
19:59:28.0327 3428 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
19:59:28.0327 3428 LSI_SAS - ok
19:59:28.0358 3428 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
19:59:28.0358 3428 LSI_SCSI - ok
19:59:28.0389 3428 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
19:59:28.0389 3428 luafv - ok
19:59:28.0405 3428 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
19:59:28.0405 3428 megasas - ok
19:59:28.0452 3428 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
19:59:28.0452 3428 MegaSR - ok
19:59:28.0483 3428 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
19:59:28.0483 3428 Modem - ok
19:59:28.0530 3428 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
19:59:28.0530 3428 monitor - ok
19:59:28.0545 3428 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
19:59:28.0545 3428 mouclass - ok
19:59:28.0561 3428 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
19:59:28.0561 3428 mouhid - ok
19:59:28.0576 3428 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
19:59:28.0576 3428 MountMgr - ok
19:59:28.0623 3428 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
19:59:28.0623 3428 mpio - ok
19:59:28.0654 3428 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
19:59:28.0654 3428 mpsdrv - ok
19:59:28.0670 3428 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
19:59:28.0670 3428 Mraid35x - ok
19:59:28.0701 3428 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys
19:59:28.0701 3428 MRxDAV - ok
19:59:28.0732 3428 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:59:28.0732 3428 mrxsmb - ok
19:59:28.0795 3428 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:59:28.0810 3428 mrxsmb10 - ok
19:59:28.0857 3428 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:59:28.0857 3428 mrxsmb20 - ok
19:59:28.0920 3428 msahci (aa459f2ab3ab603c357ff117cae3d818) C:\Windows\system32\drivers\msahci.sys
19:59:28.0920 3428 msahci - ok
19:59:28.0935 3428 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
19:59:28.0935 3428 msdsm - ok
19:59:28.0966 3428 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
19:59:28.0966 3428 Msfs - ok
19:59:28.0982 3428 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
19:59:28.0982 3428 msisadrv - ok
19:59:28.0998 3428 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
19:59:28.0998 3428 MSKSSRV - ok
19:59:29.0029 3428 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
19:59:29.0029 3428 MSPCLOCK - ok
19:59:29.0060 3428 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
19:59:29.0060 3428 MSPQM - ok
19:59:29.0107 3428 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys
19:59:29.0122 3428 MsRPC - ok
19:59:29.0154 3428 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
19:59:29.0154 3428 mssmbios - ok
19:59:29.0169 3428 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
19:59:29.0185 3428 MSTEE - ok
19:59:29.0200 3428 Mup (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys
19:59:29.0200 3428 Mup - ok
19:59:29.0278 3428 NativeWifiP (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys
19:59:29.0278 3428 NativeWifiP - ok
19:59:29.0356 3428 NDIS (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys
19:59:29.0372 3428 NDIS - ok
19:59:29.0419 3428 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
19:59:29.0419 3428 NdisTapi - ok
19:59:29.0450 3428 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
19:59:29.0450 3428 Ndisuio - ok
19:59:29.0497 3428 NdisWan (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys
19:59:29.0497 3428 NdisWan - ok
19:59:29.0512 3428 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
19:59:29.0512 3428 NDProxy - ok
19:59:29.0528 3428 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
19:59:29.0528 3428 NetBIOS - ok
19:59:29.0590 3428 netbt (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys
19:59:29.0590 3428 netbt - ok
19:59:29.0700 3428 NETw5v64 (f17eda58c8c5b1a4f873b322729168ff) C:\Windows\system32\DRIVERS\NETw5v64.sys
19:59:29.0762 3428 NETw5v64 - ok
19:59:29.0778 3428 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
19:59:29.0778 3428 nfrd960 - ok
19:59:29.0840 3428 Npfs (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys
19:59:29.0840 3428 Npfs - ok
19:59:29.0856 3428 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
19:59:29.0856 3428 nsiproxy - ok
19:59:29.0934 3428 Ntfs (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys
19:59:29.0965 3428 Ntfs - ok
19:59:29.0980 3428 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
19:59:29.0980 3428 Null - ok
19:59:29.0996 3428 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
19:59:29.0996 3428 nvraid - ok
19:59:30.0027 3428 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
19:59:30.0027 3428 nvstor - ok
19:59:30.0058 3428 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
19:59:30.0058 3428 nv_agp - ok
19:59:30.0074 3428 NwlnkFlt - ok
19:59:30.0074 3428 NwlnkFwd - ok
19:59:30.0105 3428 OA001Ufd (d09cc91e92fd1ff81af3a14be2cbb20d) C:\Windows\system32\DRIVERS\OA001Ufd.sys
19:59:30.0105 3428 OA001Ufd - ok
19:59:30.0121 3428 OA001Vid (a42cb6914ad67e1584e807ce53f1e62c) C:\Windows\system32\DRIVERS\OA001Vid.sys
19:59:30.0136 3428 OA001Vid - ok
19:59:30.0168 3428 ohci1394 (b5b1ce65ac15bbd11c0619e3ef7cfc28) C:\Windows\system32\DRIVERS\ohci1394.sys
19:59:30.0183 3428 ohci1394 - ok
19:59:30.0230 3428 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
19:59:30.0230 3428 Parport - ok
19:59:30.0261 3428 partmgr (f9b5eda4c17a2be7663f064dbf0fe254) C:\Windows\system32\drivers\partmgr.sys
19:59:30.0277 3428 partmgr - ok
19:59:30.0324 3428 pci (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys
19:59:30.0324 3428 pci - ok
19:59:30.0339 3428 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\drivers\pciide.sys
19:59:30.0339 3428 pciide - ok
19:59:30.0386 3428 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
19:59:30.0386 3428 pcmcia - ok
19:59:30.0417 3428 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
19:59:30.0433 3428 PEAUTH - ok
19:59:30.0495 3428 PptpMiniport (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys
19:59:30.0511 3428 PptpMiniport - ok
19:59:30.0526 3428 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys
19:59:30.0526 3428 Processor - ok
19:59:30.0589 3428 PSched (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys
19:59:30.0589 3428 PSched - ok
19:59:30.0636 3428 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
19:59:30.0667 3428 ql2300 - ok
19:59:30.0698 3428 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
19:59:30.0698 3428 ql40xx - ok
19:59:30.0729 3428 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
19:59:30.0745 3428 QWAVEdrv - ok
19:59:30.0870 3428 R300 (a08339ae90972e268b9622c668f450e8) C:\Windows\system32\DRIVERS\atikmdag.sys
19:59:30.0916 3428 R300 - ok
19:59:30.0932 3428 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
19:59:30.0932 3428 RasAcd - ok
19:59:30.0994 3428 Rasl2tp (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:59:30.0994 3428 Rasl2tp - ok
19:59:31.0041 3428 RasPppoe (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys
19:59:31.0041 3428 RasPppoe - ok
19:59:31.0104 3428 RasSstp (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys
19:59:31.0119 3428 RasSstp - ok
19:59:31.0166 3428 rdbss (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys
19:59:31.0166 3428 rdbss - ok
19:59:31.0197 3428 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:59:31.0197 3428 RDPCDD - ok
19:59:31.0260 3428 rdpdr (ae23e79b13feb62939e2ca1189e71735) C:\Windows\system32\DRIVERS\rdpdr.sys
19:59:31.0260 3428 rdpdr - ok
19:59:31.0275 3428 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
19:59:31.0275 3428 RDPENCDD - ok
19:59:31.0322 3428 RDPWD (b1d741c87cea8d7282146366cc9c3f81) C:\Windows\system32\drivers\RDPWD.sys
19:59:31.0338 3428 RDPWD - ok
19:59:31.0384 3428 rimmptsk (d13d70fac45fc1df69f88559b1f72f0a) C:\Windows\system32\DRIVERS\rimmpx64.sys
19:59:31.0384 3428 rimmptsk - ok
19:59:31.0416 3428 rimsptsk (bb9edc55b0b8cb4fcd713428820e0776) C:\Windows\system32\DRIVERS\rimspx64.sys
19:59:31.0416 3428 rimsptsk - ok
19:59:31.0431 3428 rismxdp (481c3fdeacaae04b74c58288dbc91df9) C:\Windows\system32\DRIVERS\rixdpx64.sys
19:59:31.0431 3428 rismxdp - ok
19:59:31.0462 3428 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
19:59:31.0462 3428 rspndr - ok
19:59:31.0478 3428 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
19:59:31.0478 3428 sbp2port - ok
19:59:31.0556 3428 sdbus (be100bc2be2513314c717bb2c4cfff10) C:\Windows\system32\DRIVERS\sdbus.sys
19:59:31.0556 3428 sdbus - ok
19:59:31.0587 3428 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:59:31.0587 3428 secdrv - ok
19:59:31.0618 3428 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
19:59:31.0618 3428 Serenum - ok
19:59:31.0634 3428 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
19:59:31.0650 3428 Serial - ok
19:59:31.0665 3428 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
19:59:31.0665 3428 sermouse - ok
19:59:31.0696 3428 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
19:59:31.0696 3428 sffdisk - ok
19:59:31.0712 3428 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
19:59:31.0712 3428 sffp_mmc - ok
19:59:31.0728 3428 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
19:59:31.0743 3428 sffp_sd - ok
19:59:31.0759 3428 sfloppy (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys
19:59:31.0759 3428 sfloppy - ok
19:59:31.0790 3428 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
19:59:31.0790 3428 SiSRaid2 - ok
19:59:31.0821 3428 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
19:59:31.0821 3428 SiSRaid4 - ok
19:59:31.0852 3428 Smb (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys
19:59:31.0868 3428 Smb - ok
19:59:31.0915 3428 spldr (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys
19:59:31.0915 3428 spldr - ok
19:59:31.0977 3428 srv (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys
19:59:31.0977 3428 srv - ok
19:59:32.0040 3428 srv2 (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys
19:59:32.0040 3428 srv2 - ok
19:59:32.0071 3428 srvnet (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys
19:59:32.0071 3428 srvnet - ok
19:59:32.0118 3428 STHDA (ba16447226abfd342e130d2f24f73d32) C:\Windows\system32\DRIVERS\stwrt64.sys
19:59:32.0133 3428 STHDA - ok
19:59:32.0164 3428 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
19:59:32.0164 3428 swenum - ok
19:59:32.0180 3428 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
19:59:32.0196 3428 Symc8xx - ok
19:59:32.0211 3428 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
19:59:32.0211 3428 Sym_hi - ok
19:59:32.0227 3428 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
19:59:32.0227 3428 Sym_u3 - ok
19:59:32.0274 3428 SynTP (79a93ec9d224b1f43c0e2f023d61dca3) C:\Windows\system32\DRIVERS\SynTP.sys
19:59:32.0289 3428 SynTP - ok
19:59:32.0383 3428 Tcpip (73bed5067ed53a9df05fa8eab42578d0) C:\Windows\system32\drivers\tcpip.sys
19:59:32.0414 3428 Tcpip - ok
19:59:32.0461 3428 Tcpip6 (73bed5067ed53a9df05fa8eab42578d0) C:\Windows\system32\DRIVERS\tcpip.sys
19:59:32.0461 3428 Tcpip6 - ok
19:59:32.0492 3428 tcpipreg (848f87c604b5e674602498cb51067db6) C:\Windows\system32\drivers\tcpipreg.sys
19:59:32.0492 3428 tcpipreg - ok
19:59:32.0539 3428 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
19:59:32.0539 3428 TDPIPE - ok
19:59:32.0570 3428 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
19:59:32.0570 3428 TDTCP - ok
19:59:32.0617 3428 tdx (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys
19:59:32.0617 3428 tdx - ok
19:59:32.0710 3428 TermDD (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys
19:59:32.0710 3428 TermDD - ok
19:59:32.0773 3428 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:59:32.0773 3428 tssecsrv - ok
19:59:32.0804 3428 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
19:59:32.0804 3428 tunmp - ok
19:59:32.0866 3428 tunnel (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys
19:59:32.0866 3428 tunnel - ok
19:59:32.0913 3428 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
19:59:32.0913 3428 uagp35 - ok
19:59:32.0991 3428 udfs (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys
19:59:33.0007 3428 udfs - ok
19:59:33.0054 3428 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
19:59:33.0069 3428 uliagpkx - ok
19:59:33.0116 3428 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
19:59:33.0132 3428 uliahci - ok
19:59:33.0210 3428 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
19:59:33.0210 3428 UlSata - ok
19:59:33.0256 3428 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
19:59:33.0256 3428 ulsata2 - ok
19:59:33.0303 3428 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
19:59:33.0303 3428 umbus - ok
19:59:33.0366 3428 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
19:59:33.0366 3428 USBAAPL64 - ok
19:59:33.0428 3428 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys
19:59:33.0444 3428 usbccgp - ok
19:59:33.0490 3428 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys
19:59:33.0490 3428 usbcir - ok
19:59:33.0568 3428 usbehci (b1c7edb07f61bdee587831b440fc7656) C:\Windows\system32\DRIVERS\usbehci.sys
19:59:33.0584 3428 usbehci - ok
19:59:33.0646 3428 usbhub (697c45d6cea9ad978f90636be7c93229) C:\Windows\system32\DRIVERS\usbhub.sys
19:59:33.0662 3428 usbhub - ok
19:59:33.0693 3428 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys
19:59:33.0693 3428 usbohci - ok
19:59:33.0740 3428 usbprint (acfee697af477021bb3ec78c5431fed2) C:\Windows\system32\drivers\usbprint.sys
19:59:33.0740 3428 usbprint - ok
19:59:33.0802 3428 usbscan (ea0bf666868964fbe8cb10e50c97b9f1) C:\Windows\system32\DRIVERS\usbscan.sys
19:59:33.0802 3428 usbscan - ok
19:59:33.0880 3428 USBSTOR (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:59:33.0880 3428 USBSTOR - ok
19:59:33.0927 3428 usbuhci (c8d88a2a3587a8424b4b17a6f7eb67fa) C:\Windows\system32\DRIVERS\usbuhci.sys
19:59:33.0927 3428 usbuhci - ok
19:59:33.0990 3428 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
19:59:33.0990 3428 vga - ok
19:59:34.0036 3428 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
19:59:34.0036 3428 VgaSave - ok
19:59:34.0083 3428 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
19:59:34.0083 3428 viaide - ok
19:59:34.0130 3428 volmgr (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys
19:59:34.0146 3428 volmgr - ok
19:59:34.0208 3428 volmgrx (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys
19:59:34.0224 3428 volmgrx - ok
19:59:34.0270 3428 volsnap (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys
19:59:34.0270 3428 volsnap - ok
19:59:34.0302 3428 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
19:59:34.0302 3428 vsmraid - ok
19:59:34.0333 3428 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
19:59:34.0333 3428 WacomPen - ok
19:59:34.0395 3428 Wanarp (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
19:59:34.0395 3428 Wanarp - ok
19:59:34.0411 3428 Wanarpv6 (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
19:59:34.0411 3428 Wanarpv6 - ok
19:59:34.0442 3428 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
19:59:34.0442 3428 Wd - ok
19:59:34.0473 3428 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys
19:59:34.0489 3428 Wdf01000 - ok
19:59:34.0536 3428 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:59:34.0536 3428 WmiAcpi - ok
19:59:34.0567 3428 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
19:59:34.0567 3428 ws2ifsl - ok
19:59:34.0598 3428 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:59:34.0598 3428 WUDFRd - ok
19:59:34.0629 3428 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
19:59:34.0707 3428 \Device\Harddisk0\DR0 - ok
19:59:34.0723 3428 Boot (0x1200) (a59e3a7e254421b77dbacbfd61bca3a1) \Device\Harddisk0\DR0\Partition0
19:59:34.0723 3428 \Device\Harddisk0\DR0\Partition0 - ok
19:59:34.0723 3428 Boot (0x1200) (037bb955afe67c4ba746a1b5099e42a7) \Device\Harddisk0\DR0\Partition1
19:59:34.0723 3428 \Device\Harddisk0\DR0\Partition1 - ok
19:59:34.0723 3428 ============================================================
19:59:34.0723 3428 Scan finished
19:59:34.0723 3428 ============================================================
19:59:34.0723 4240 Detected object count: 0
19:59:34.0723 4240 Actual detected object count: 0
20:00:04.0456 3264 Deinitialize success

OTL Logs:

OTL logfile created on: 2/10/2012 1:10:08 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = c:\Users\Chris 2\Desktop
64bit-Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19170)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.99 Gb Total Physical Memory | 2.11 Gb Available Physical Memory | 52.76% Memory free
8.19 Gb Paging File | 6.26 Gb Available in Paging File | 76.45% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 450.71 Gb Total Space | 403.50 Gb Free Space | 89.53% Space Free | Partition Type: NTFS
Drive D: | 15.00 Gb Total Space | 7.72 Gb Free Space | 51.46% Space Free | Partition Type: NTFS
Drive E: | 76.27 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: CHRIS-PC | User Name: Chris 2 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/02/10 13:07:11 | 000,584,192 | ---- | M] (OldTimer Tools) -- c:\Users\Chris 2\Desktop\OTL111.exe
PRC - [2012/01/24 17:24:26 | 002,416,480 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
PRC - [2011/11/14 18:15:16 | 000,197,288 | ---- | M] (Lavasoft) -- C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
PRC - [2011/08/02 05:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
PRC - [2011/02/25 09:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2009/07/09 14:36:12 | 000,139,944 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\ezprint.exe
PRC - [2009/07/09 14:36:09 | 000,766,632 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleemon.exe
PRC - [2009/05/11 05:43:48 | 001,909,472 | ---- | M] (Cisco Systems, Inc) -- C:\Program Files (x86)\Cisco Systems\Clean Access Agent\CCAAgent.exe

========== Modules (No Company Name) ==========

MOD - [2011/12/21 10:44:36 | 000,087,440 | ---- | M] () -- C:\Program Files (x86)\adawaretb\adawareDx.dll
MOD - [2011/11/01 23:26:32 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/11/01 23:26:12 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2009/07/09 14:36:12 | 000,139,944 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\ezprint.exe
MOD - [2009/07/09 14:36:09 | 000,766,632 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleemon.exe
MOD - [2009/05/29 09:09:48 | 001,159,168 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleedrs.dll
MOD - [2009/05/29 09:08:53 | 000,389,120 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleescw.dll
MOD - [2009/05/27 07:16:50 | 000,192,512 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleedatr.dll
MOD - [2009/05/26 15:18:10 | 000,086,121 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\DLEEcfg.dll
MOD - [2009/04/07 14:25:27 | 000,409,600 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\iptk.dll
MOD - [2009/03/30 07:40:44 | 000,196,608 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epoemdll.dll
MOD - [2009/03/30 07:40:43 | 000,045,056 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epstring.dll
MOD - [2009/03/30 07:40:42 | 002,203,648 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epwizres.dll
MOD - [2009/03/30 07:40:26 | 000,708,608 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epwizard.dll
MOD - [2009/03/30 07:38:36 | 000,159,744 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\customui.dll
MOD - [2009/03/30 07:38:16 | 000,061,440 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epfunct.dll
MOD - [2009/03/30 07:38:11 | 000,114,688 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\eputil.dll
MOD - [2009/03/30 07:37:58 | 000,139,264 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\imagutil.dll
MOD - [2009/03/10 00:43:49 | 000,155,648 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleecaps.dll
MOD - [2009/03/05 12:55:33 | 000,059,904 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleecnv4.dll
MOD - [2009/03/02 09:25:47 | 000,151,552 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleeptp.dll

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2009/07/01 08:07:00 | 001,054,888 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysNative\dleecoms.exe -- (dlee_device)
SRV:64bit: - [2009/06/25 21:48:28 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/03/30 07:25:18 | 000,268,288 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_15f4e438\STacSV64.exe -- (STacSV)
SRV:64bit: - [2009/03/30 07:24:46 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe -- (AESTFilters)
SRV:64bit: - [2008/01/20 21:50:23 | 000,195,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008/01/20 21:46:39 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011/11/16 11:23:44 | 000,377,344 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2011/10/12 05:25:22 | 004,433,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011/08/02 05:09:08 | 000,192,776 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2011/02/28 17:44:14 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/02/25 09:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/07/01 08:06:47 | 000,602,792 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysWow64\dleecoms.exe -- (dlee_device)
SRV - [2009/03/29 23:42:14 | 000,066,368 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/08/02 17:38:56 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2009/06/25 22:24:30 | 006,036,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (R300)
DRV:64bit: - [2009/06/25 22:24:30 | 006,036,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009/06/04 10:20:48 | 000,113,168 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/04/28 04:53:30 | 000,252,928 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\k57nd60a.sys -- (k57nd60a) Broadcom NetLink ™
DRV:64bit: - [2009/04/11 00:03:32 | 000,111,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\sdbus.sys -- (sdbus)
DRV:64bit: - [2009/03/30 07:25:34 | 000,477,696 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\stwrt64.sys -- (STHDA)
DRV:64bit: - [2009/01/12 23:46:32 | 000,318,656 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Vid.sys -- (OA001Vid)
DRV:64bit: - [2009/01/12 23:46:32 | 000,158,592 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Ufd.sys -- (OA001Ufd)
DRV:64bit: - [2008/12/22 04:26:28 | 004,735,488 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\NETw5v64.sys -- (NETw5v64) Intel®
DRV:64bit: - [2008/11/21 06:04:24 | 000,261,680 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\SynTP.sys -- (SynTP)
DRV:64bit: - [2008/08/25 03:24:28 | 000,059,392 | ---- | M] (ITE Tech. Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\itecir.sys -- (itecir)
DRV:64bit: - [2008/07/29 05:58:16 | 000,057,856 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rixdpx64.sys -- (rismxdp)
DRV:64bit: - [2008/07/29 05:58:14 | 000,062,976 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimmpx64.sys -- (rimmptsk)
DRV:64bit: - [2008/07/29 05:58:12 | 000,055,296 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimspx64.sys -- (rimsptsk)
DRV:64bit: - [2008/01/20 21:46:02 | 000,317,952 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\e1e6032e.sys -- (e1express) Intel®

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 40 85 47 77 B2 BA CB 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 4E D2 8A 00 60 46 12 44 85 6F DC 6D 14 4C 3E 23 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\MyWebSearch\bar\2.bin
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files (x86)\AVG\AVG2012\Firefox4\ [2012/02/01 11:41:02 | 000,000,000 | ---D | M]

O1 HOSTS File: ([2012/02/08 22:05:37 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Dell Toolbar) - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - C:\Program Files\Dell Printable Web\toolband.dll ()
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Ad-Aware Security Toolbar) - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\adawaretb\adawareDx.dll ()
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (Dell Toolbar) - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - C:\Program Files\Dell Printable Web\toolband.dll ()
O3 - HKLM\..\Toolbar: (Ad-Aware Security Toolbar) - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\adawaretb\adawareDx.dll ()
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O4:64bit: - HKLM..\Run: [dleemon.exe] C:\Program Files (x86)\Dell V715w\dleemon.exe ()
O4:64bit: - HKLM..\Run: [EzPrint] C:\Program Files (x86)\Dell V715w\ezprint.exe ()
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [CarboniteSetupLite] C:\Program Files (x86)\Carbonite\CarbonitePreinstaller.exe (Carbonite, Inc.)
O4 - HKLM..\Run: [Dell V715w] C:\Program Files (x86)\Dell V715w\fm3032.exe ()
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://netaccess.sv...SetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.80.180.200 10.76.51.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8BD5F978-09B4-48DF-A140-D5BC4DD9D9CC}: DhcpNameServer = 10.80.180.200 10.76.51.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BDCF5074-A8B6-457C-81A9-9977FA250CC4}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll (AVG Technologies CZ, s.r.o.)
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - Explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -Explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Chris 2\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Chris 2\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O29:64bit: - HKLM SecurityProviders - (credssp.dll) -credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) -credssp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/12/12 19:16:21 | 000,000,000 | ---D | M] - E:\AutoPlay -- [ CDFS ]
O32 - AutoRun File - [2008/12/12 19:27:54 | 000,000,047 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

SafeBootMin:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootMin:64bit: Base - Driver Group
SafeBootMin:64bit: Boot Bus Extender - Driver Group
SafeBootMin:64bit: Boot file system - Driver Group
SafeBootMin:64bit: File system - Driver Group
SafeBootMin:64bit: Filter - Driver Group
SafeBootMin:64bit: HelpSvc - Service
SafeBootMin:64bit: PCI Configuration - Driver Group
SafeBootMin:64bit: PNP Filter - Driver Group
SafeBootMin:64bit: Primary disk - Driver Group
SafeBootMin:64bit: sacsvr - Service
SafeBootMin:64bit: SCSI Class - Driver Group
SafeBootMin:64bit: System Bus Extender - Driver Group
SafeBootMin:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootNet:64bit: Base - Driver Group
SafeBootNet:64bit: Boot Bus Extender - Driver Group
SafeBootNet:64bit: Boot file system - Driver Group
SafeBootNet:64bit: File system - Driver Group
SafeBootNet:64bit: Filter - Driver Group
SafeBootNet:64bit: HelpSvc - Service
SafeBootNet:64bit: Messenger - Service
SafeBootNet:64bit: NDIS Wrapper - Driver Group
SafeBootNet:64bit: NetBIOSGroup - Driver Group
SafeBootNet:64bit: NetDDEGroup - Driver Group
SafeBootNet:64bit: Network - Driver Group
SafeBootNet:64bit: NetworkProvider - Driver Group
SafeBootNet:64bit: PCI Configuration - Driver Group
SafeBootNet:64bit: PNP Filter - Driver Group
SafeBootNet:64bit: PNP_TDI - Driver Group
SafeBootNet:64bit: Primary disk - Driver Group
SafeBootNet:64bit: rdsessmgr - Service
SafeBootNet:64bit: sacsvr - Service
SafeBootNet:64bit: SCSI Class - Driver Group
SafeBootNet:64bit: Streams Drivers - Driver Group
SafeBootNet:64bit: System Bus Extender - Driver Group
SafeBootNet:64bit: TDI - Driver Group
SafeBootNet:64bit: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet:64bit: WudfPf - Driver
SafeBootNet:64bit: WudfUsbccidDriver - Driver
SafeBootNet:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:64bit: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:64bit: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:64bit: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:64bit: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:64bit: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: WudfPf - Driver
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

ActiveX:64bit: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} -
ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 11.0
ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:64bit: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} -
ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\system32\ie4uinit.exe -BaseSettings
ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:64bit: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\system32\unregmp2.exe /ShowWMP
ActiveX:64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\system32\ie4uinit.exe -UserIconConfig
ActiveX:64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.8
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP

Drivers32:64bit: aux - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: midi - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: midi1 - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: midimapper - midimap.dll (Microsoft Corporation)
Drivers32:64bit: mixer - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: mixer1 - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: msacm.imaadpcm - imaadp32.acm (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: msacm.msadpcm - msadp32.acm (Microsoft Corporation)
Drivers32:64bit: msacm.msg711 - msg711.acm (Microsoft Corporation)
Drivers32:64bit: msacm.msgsm610 - msgsm32.acm (Microsoft Corporation)
Drivers32:64bit: MSVideo8 - VfWWDM32.dll (Microsoft Corporation)
Drivers32:64bit: vidc.i420 - iyuv_32.dll (Microsoft Corporation)
Drivers32:64bit: VIDC.IYUV - iyuv_32.dll (Microsoft Corporation)
Drivers32:64bit: vidc.mrle - msrle32.dll (Microsoft Corporation)
Drivers32:64bit: vidc.msvc - msvidc32.dll (Microsoft Corporation)
Drivers32:64bit: VIDC.UYVY - msyuv.dll (Microsoft Corporation)
Drivers32:64bit: VIDC.YUY2 - msyuv.dll (Microsoft Corporation)
Drivers32:64bit: VIDC.YVU9 - tsbyuv.dll (Microsoft Corporation)
Drivers32:64bit: VIDC.YVYU - msyuv.dll (Microsoft Corporation)
Drivers32:64bit: wave - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: wave1 - wdmaud.drv (Microsoft Corporation)
Drivers32:64bit: wavemapper - msacm32.drv (Microsoft Corporation)
Drivers32: aux - wdmaud.drv (Microsoft Corporation)
Drivers32: midi - wdmaud.drv (Microsoft Corporation)
Drivers32: midi1 - wdmaud.drv (Microsoft Corporation)
Drivers32: midimapper - midimap.dll (Microsoft Corporation)
Drivers32: mixer - wdmaud.drv (Microsoft Corporation)
Drivers32: mixer1 - wdmaud.drv (Microsoft Corporation)
Drivers32: msacm.imaadpcm - imaadp32.acm (Microsoft Corporation)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.msadpcm - msadp32.acm (Microsoft Corporation)
Drivers32: msacm.msg711 - msg711.acm (Microsoft Corporation)
Drivers32: msacm.msgsm610 - msgsm32.acm (Microsoft Corporation)
Drivers32: vidc.cvid - iccvid.dll (Radius Inc.)
Drivers32: vidc.i420 - iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.iyuv - iyuv_32.dll (Microsoft Corporation)
Drivers32: vidc.mrle - msrle32.dll (Microsoft Corporation)
Drivers32: vidc.msvc - msvidc32.dll (Microsoft Corporation)
Drivers32: vidc.uyvy - msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yuy2 - msyuv.dll (Microsoft Corporation)
Drivers32: vidc.yvu9 - tsbyuv.dll (Microsoft Corporation)
Drivers32: vidc.yvyu - msyuv.dll (Microsoft Corporation)
Drivers32: wave - wdmaud.drv (Microsoft Corporation)
Drivers32: wave1 - wdmaud.drv (Microsoft Corporation)
Drivers32: wavemapper - msacm32.drv (Microsoft Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012/02/10 13:07:11 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTL111.exe
[2012/02/09 22:28:53 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/02/09 20:27:52 | 004,733,440 | ---- | C] (AVAST Software) -- C:\Users\Chris 2\Desktop\aswMBR2.exe
[2012/02/09 20:00:40 | 002,059,824 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Chris 2\Desktop\tdsskiller.exe
[2012/02/09 19:47:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/02/09 19:47:14 | 000,023,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/02/08 22:09:59 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/02/08 21:56:22 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/02/08 21:56:22 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/02/08 21:56:22 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/02/08 21:56:18 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2012/02/08 21:56:15 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/02/08 21:53:41 | 004,399,064 | R--- | C] (Swearware) -- C:\Users\Chris 2\Desktop\CombooooFixndnd.exe
[2012/02/08 21:46:53 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2012/02/08 15:03:28 | 000,055,384 | ---- | C] (Sunbelt Software) -- C:\Windows\SysNative\drivers\SBREDrv.sys
[2012/02/08 14:59:12 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\AppData\Local\adaware
[2012/02/08 14:59:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Ad-Aware Browsing Protection
[2012/02/08 14:59:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Toolbar Cleaner
[2012/02/08 14:58:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\adawaretb
[2012/02/08 14:58:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2012/02/07 23:43:43 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\AppData\Roaming\AVG2012
[2008/05/23 04:25:20 | 000,364,544 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeinpa.dll
[2008/05/23 04:25:19 | 000,344,064 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeiesc.dll
[2008/05/23 04:25:18 | 000,651,264 | ---- | C] ( ) -- C:\Windows\SysWow64\dleepmui.dll
[2008/05/23 04:25:15 | 001,056,768 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeserv.dll
[2008/05/23 04:25:15 | 000,851,968 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeusb1.dll
[2008/05/23 04:25:14 | 000,581,632 | ---- | C] ( ) -- C:\Windows\SysWow64\dleelmpm.dll
[2008/05/23 04:25:13 | 000,328,360 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeih.exe
[2008/05/23 04:25:12 | 000,688,128 | ---- | C] ( ) -- C:\Windows\SysWow64\dleehbn3.dll
[2008/05/23 04:25:11 | 000,602,792 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecoms.exe
[2008/05/23 04:25:11 | 000,376,832 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecomm.dll
[2008/05/23 04:25:10 | 000,802,816 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecomc.dll
[2008/05/23 04:25:09 | 000,369,320 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecfg.exe

========== Files - Modified Within 30 Days ==========

[2012/02/10 13:13:59 | 000,000,418 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{C9BDE752-56DB-4800-8C20-B82FD7F534A4}.job
[2012/02/10 13:07:11 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTL111.exe
[2012/02/10 13:05:20 | 000,000,512 | ---- | M] () -- C:\Users\Chris 2\Documents\MBR.dat
[2012/02/10 13:05:14 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/02/10 13:05:14 | 000,000,438 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{22543227-28D1-448C-887D-80EC548A96C2}.job
[2012/02/10 04:28:57 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/02/10 04:28:56 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/02/09 22:35:42 | 000,703,388 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/02/09 22:35:42 | 000,604,502 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/02/09 22:35:42 | 000,104,170 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/02/09 22:28:51 | 4289,576,960 | -HS- | M] () -- C:\hiberfil.sys
[2012/02/09 22:28:46 | 733,228,612 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/02/09 20:27:52 | 004,733,440 | ---- | M] (AVAST Software) -- C:\Users\Chris 2\Desktop\aswMBR2.exe
[2012/02/09 20:00:40 | 002,059,824 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Chris 2\Desktop\tdsskiller.exe
[2012/02/09 19:47:15 | 000,000,950 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/02/08 22:05:37 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/02/08 21:53:42 | 004,399,064 | R--- | M] (Swearware) -- C:\Users\Chris 2\Desktop\CombooooFixndnd.exe
[2012/02/08 21:47:12 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/02/08 15:03:27 | 000,055,384 | ---- | M] (Sunbelt Software) -- C:\Windows\SysNative\drivers\SBREDrv.sys
[2012/02/07 23:44:40 | 000,721,764 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/02/07 22:25:53 | 088,445,076 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm
[2012/02/07 22:25:13 | 000,520,743 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\iavichjg.avm
[2012/02/07 22:22:28 | 000,000,680 | ---- | M] () -- C:\Users\Chris 2\AppData\Local\d3d9caps.dat

========== Files Created - No Company Name ==========

[2012/02/09 22:28:46 | 733,228,612 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/02/09 20:20:57 | 000,000,512 | ---- | C] () -- C:\Users\Chris 2\Documents\MBR.dat
[2012/02/09 19:47:15 | 000,000,950 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/02/08 21:56:22 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/02/08 21:56:22 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/02/08 21:56:22 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/02/08 21:56:22 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/02/08 21:56:22 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/03/26 20:58:31 | 000,003,584 | ---- | C] () -- C:\Users\Chris 2\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/02/14 17:59:57 | 000,721,764 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/01/23 21:54:35 | 000,000,680 | ---- | C] () -- C:\Users\Chris 2\AppData\Local\d3d9caps.dat
[2010/02/15 18:14:42 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2010/02/15 18:14:11 | 000,107,612 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchema.bin
[2010/02/15 18:13:40 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/04/24 19:04:27 | 000,018,904 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchemaTrivial.bin
[2008/06/03 11:39:26 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008/05/23 20:58:25 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\MSVolumeAMP.dll
[2008/05/23 04:25:21 | 000,385,024 | ---- | C] () -- C:\Windows\SysWow64\DLEEinst.dll
[2008/05/23 04:25:20 | 000,344,064 | ---- | C] () -- C:\Windows\SysWow64\dleecomx.dll
[2008/05/23 04:25:19 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\dleejswr.dll
[2008/05/23 04:25:18 | 000,106,496 | ---- | C] () -- C:\Windows\SysWow64\dleeinsr.dll
[2008/05/23 04:25:18 | 000,036,864 | ---- | C] () -- C:\Windows\SysWow64\dleecur.dll
[2008/05/23 04:25:17 | 000,323,584 | ---- | C] () -- C:\Windows\SysWow64\dleeins.dll
[2008/05/23 04:25:17 | 000,262,144 | ---- | C] () -- C:\Windows\SysWow64\dleeinsb.dll
[2008/05/23 04:25:16 | 000,253,952 | ---- | C] () -- C:\Windows\SysWow64\dleecu.dll
[2008/05/23 04:25:16 | 000,090,112 | ---- | C] () -- C:\Windows\SysWow64\dleecub.dll
[2008/05/23 04:25:03 | 000,086,121 | ---- | C] () -- C:\Windows\SysWow64\DLEEcfg.dll
[2008/05/23 04:22:06 | 000,299,008 | ---- | C] () -- C:\Windows\SysWow64\DLEEsm.dll
[2008/05/23 04:22:06 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\DLEEsmr.dll
[2008/05/23 01:37:50 | 000,000,732 | ---- | C] () -- C:\Users\Chris 2\AppData\Local\d3d9caps64.dat
[2008/05/23 00:16:41 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2008/01/20 21:49:10 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2006/11/02 10:35:48 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 07:37:14 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2006/11/02 07:24:17 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2006/11/02 07:18:17 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2006/11/02 04:47:54 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*.exe >

< %APPDATA%\*. >
[2011/07/25 13:41:02 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\.minecraft
[2011/01/19 20:41:21 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\Adobe
[2012/01/05 15:46:20 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\Apple Computer
[2011/01/15 22:25:05 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\ATI
[2012/02/07 23:43:43 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\AVG2012
[2011/01/15 22:26:20 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\CiscoCAA
[2011/07/17 13:23:55 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\Fugazo
[2011/01/15 22:24:37 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\Identities
[2010/02/23 09:27:17 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\Macromedia
[2011/08/30 18:49:24 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\Malwarebytes
[2006/11/02 10:06:33 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\Media Center Programs
[2008/05/23 04:51:23 | 000,000,000 | --SD | M] -- C:\Users\Chris 2\AppData\Roaming\Microsoft
[2010/11/30 12:39:28 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\Mozilla
[2011/11/13 03:36:10 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\Skype
[2011/11/13 03:11:05 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\skypePM
[2008/05/25 07:37:12 | 000,000,000 | ---D | M] -- C:\Users\Chris 2\AppData\Roaming\V715w

< MD5 for: EXPLORER.EXE >
[2009/04/24 19:00:09 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_b5f700fe698beb14\explorer.exe
[2009/04/24 19:00:08 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_b7eb106e66a7ac19\explorer.exe
[2009/04/24 19:00:09 | 003,087,360 | ---- | M] (Microsoft Corporation) MD5=50514057C28A74BAC2BD04B7B990D615 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_aba256ac352b2919\explorer.exe
[2009/04/24 19:00:07 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_b8583e9d7fda0512\explorer.exe
[2009/04/11 02:10:17 | 003,079,168 | ---- | M] (Microsoft Corporation) MD5=6B08E54A451B3F95E4109DBA7E594270 -- C:\Windows\ERDNT\cache86\explorer.exe
[2009/04/11 02:10:17 | 003,079,168 | ---- | M] (Microsoft Corporation) MD5=6B08E54A451B3F95E4109DBA7E594270 -- C:\Windows\explorer.exe
[2009/04/11 02:10:17 | 003,079,168 | ---- | M] (Microsoft Corporation) MD5=6B08E54A451B3F95E4109DBA7E594270 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_afbebba22f3bab41\explorer.exe
[2009/04/24 19:00:08 | 003,086,848 | ---- | M] (Microsoft Corporation) MD5=72B9990E45C25AA3C75C4FB50A9D6CE0 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_ac5266dd4e2b0a41\explorer.exe
[2009/04/24 19:00:08 | 003,080,704 | ---- | M] (Microsoft Corporation) MD5=BBD8E74F23D7605CB0CDB57A1B25D826 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_ad96661c3246ea1e\explorer.exe
[2009/04/11 01:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\SysWOW64\explorer.exe
[2009/04/11 01:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_ba1365f4639c6d3c\explorer.exe
[2009/04/24 19:00:07 | 003,081,216 | ---- | M] (Microsoft Corporation) MD5=E404A65EF890140410E9F3D405841C95 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_ae03944b4b794317\explorer.exe
[2009/04/24 19:00:08 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_b6a7112f828bcc3c\explorer.exe
[2008/01/20 21:47:50 | 003,080,704 | ---- | M] (Microsoft Corporation) MD5=F6D765FB6B457542D954682F50C26E4F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_add342963219dff5\explorer.exe
[2008/01/20 21:48:30 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_b827ece8667aa1f0\explorer.exe

< MD5 for: SVCHOST.EXE >
[2008/01/20 21:47:13 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\ERDNT\cache86\svchost.exe
[2008/01/20 21:47:13 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\SysWOW64\svchost.exe
[2008/01/20 21:47:13 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
[2012/01/13 14:53:20 | 000,182,856 | ---- | M] () MD5=63EEC8A8B221AB79045E776E5F592868 -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2008/01/20 21:49:28 | 000,027,648 | ---- | M] (Microsoft Corporation) MD5=CDA9F1373805AF88F6FA4F2064BBA24D -- C:\Windows\ERDNT\cache64\svchost.exe
[2008/01/20 21:49:28 | 000,027,648 | ---- | M] (Microsoft Corporation) MD5=CDA9F1373805AF88F6FA4F2064BBA24D -- C:\Windows\SysNative\svchost.exe
[2008/01/20 21:49:28 | 000,027,648 | ---- | M] (Microsoft Corporation) MD5=CDA9F1373805AF88F6FA4F2064BBA24D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_11d9f524bdab2f1b\svchost.exe

< MD5 for: USERINIT.EXE >
[2008/01/20 21:49:40 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\ERDNT\cache86\userinit.exe
[2008/01/20 21:49:40 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\SysWOW64\userinit.exe
[2008/01/20 21:49:40 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
[2008/01/20 21:48:49 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=A0AB2BB9A92293D9CE66E252719AB5FE -- C:\Windows\ERDNT\cache64\userinit.exe
[2008/01/20 21:48:49 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=A0AB2BB9A92293D9CE66E252719AB5FE -- C:\Windows\SysNative\userinit.exe
[2008/01/20 21:48:49 | 000,028,160 | ---- | M] (Microsoft Corporation) MD5=A0AB2BB9A92293D9CE66E252719AB5FE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_384755998a0d6941\userinit.exe

< MD5 for: WINLOGON.EXE >
[2012/01/13 14:53:20 | 000,182,856 | ---- | M] () MD5=63EEC8A8B221AB79045E776E5F592868 -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2009/04/11 02:11:08 | 000,405,504 | ---- | M] (Microsoft Corporation) MD5=6D0773A3A65D28B663F334C90441D01A -- C:\Windows\ERDNT\cache64\winlogon.exe
[2009/04/11 02:11:08 | 000,405,504 | ---- | M] (Microsoft Corporation) MD5=6D0773A3A65D28B663F334C90441D01A -- C:\Windows\SysNative\winlogon.exe
[2009/04/11 02:11:08 | 000,405,504 | ---- | M] (Microsoft Corporation) MD5=6D0773A3A65D28B663F334C90441D01A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_cdcd15a68a70b877\winlogon.exe
[2008/01/20 21:48:54 | 000,406,016 | ---- | M] (Microsoft Corporation) MD5=856491FCED98093D824B9EB2892F564A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_cbe19c9a8d4eed2b\winlogon.exe
[2009/04/11 01:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\SysWOW64\winlogon.exe
[2009/04/11 01:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2008/01/20 21:49:41 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

< %systemroot%\*. /mp /s >

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\SysWOW64\ie4uinit.exe" -hide [2011/11/02 23:45:23 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\SysWOW64\ie4uinit.exe" -show [2011/11/02 23:45:23 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\SysWOW64\ie4uinit.exe" -reinstall [2011/11/02 23:45:23 | 000,174,080 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -extoff [2011/11/03 01:23:19 | 000,638,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: "C:\Program Files (x86)\Internet Explorer\iexplore.exe" [2011/11/03 01:23:19 | 000,638,240 | ---- | M] (Microsoft Corporation)
< hklm\software\clients\startmenuinternet|command /64 /rs >
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -HIDE [2011/11/03 00:11:36 | 000,070,656 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -SHOW [2011/11/03 00:11:36 | 000,070,656 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\SYSTEM32\IE4UINIT.EXE" -REINSTALL [2011/11/03 00:11:36 | 000,070,656 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE" -EXTOFF [2011/11/03 01:23:19 | 000,638,240 | ---- | M] (Microsoft Corporation)
64bit-HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: "C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE" [2011/11/03 01:23:19 | 000,638,240 | ---- | M] (Microsoft Corporation)

< %systemroot%\system32\*.dll /lockedfiles >
[2009/03/08 06:31:42 | 000,348,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll
[2009/03/08 06:31:37 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll
[2011/11/03 01:17:07 | 011,081,728 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ieframe.dll
[2010/06/11 11:15:06 | 001,248,768 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\msxml3.dll

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< >

========== Alternate Data Streams ==========

@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:CA0CE093

< End of report >

OTL Extras logfile created on: 2/10/2012 1:10:13 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = c:\Users\Chris 2\Desktop
64bit-Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19170)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.99 Gb Total Physical Memory | 2.11 Gb Available Physical Memory | 52.76% Memory free
8.19 Gb Paging File | 6.26 Gb Available in Paging File | 76.45% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 450.71 Gb Total Space | 403.50 Gb Free Space | 89.53% Space Free | Partition Type: NTFS
Drive D: | 15.00 Gb Total Space | 7.72 Gb Free Space | 51.46% Space Free | Partition Type: NTFS
Drive E: | 76.27 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: CHRIS-PC | User Name: Chris 2 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (All) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm[@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp[@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.hta[@ = htafile] -- C:\Windows\SysWOW64\mshta.exe (Microsoft Corporation)
.html[@ = htmlfile] -- C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation)
.inf[@ = inffile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.ini[@ = inifile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
.js[@ = JSFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.jse[@ = JSEFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.reg[@ = regfile] -- C:\Windows\regedit.exe (Microsoft Corporation)
.txt[@ = txtfile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.vbe[@ = VBEFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.vbs[@ = VBSFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.wsf[@ = WSFFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.wsh[@ = WSHFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- "%1" %*
.chm [@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cmd [@ = cmdfile] -- "%1" %*
.com [@ = ComFile] -- "%1" %*
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.exe [@ = exefile] -- "%1" %*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.hta [@ = htafile] -- C:\Windows\SysWOW64\mshta.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation)
.inf [@ = inffile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.ini [@ = inifile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation)
.js [@ = JSFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\Windows\SysWOW64\WScript.exe (Microsoft Corporation)
.pif [@ = piffile] -- "%1" %*
.reg [@ = regfile] -- C:\Windows\SysWow64\regedit.exe (Microsoft Corporation)
.scr [@ = scrfile] -- "%1" /S
.txt [@ = txtfile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.vbe [@ = VBEFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.wsh [@ = WSHFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\SysWOW64\mshta.exe "%1" %* (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
inffile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\SysWOW64\mshta.exe "%1" %* (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
inffile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\SysWOW64\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\SysWOW64\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\SysWOW64\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\SysWOW64\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\SysWOW64\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = C2 FE 8D 6A DC 5B C8 01 [binary data]
"VistaSp2" = 0C CC 7E 39 8B 1B CB 01 [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"oobe_av" = 1

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{10475CB1-B511-4BA6-A95F-86EE05A581DD}" = lport=137 | protocol=17 | dir=in | app=system |
"{83228E03-429D-4A5B-A73D-8136EDD03D75}" = rport=137 | protocol=17 | dir=out | app=system |
"{848CD00C-47EA-44E6-A249-267BE0FFD386}" = rport=139 | protocol=6 | dir=out | app=system |
"{8ABDE31F-8322-4037-9F88-A97C10DF0609}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{90774766-E188-47B9-8F00-45C8F4F96320}" = rport=138 | protocol=17 | dir=out | app=system |
"{949F780B-708E-4486-A706-EDB547048E76}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{958ADB42-A486-4259-A116-CA10AD6B7DD5}" = lport=138 | protocol=17 | dir=in | app=system |
"{98E5DB0A-19DE-4775-8FCD-D30D60258C1A}" = lport=445 | protocol=6 | dir=in | app=system |
"{A416B06B-C072-420C-880A-CB628F06E02A}" = rport=445 | protocol=6 | dir=out | app=system |
"{B5CFEFD5-8166-4D97-9249-4AA7D412BBDE}" = lport=139 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{039B2E9A-FDDF-4B2C-B31D-DED3C483C1E2}" = dir=in | app=c:\windows\system32\dleecoms.exe |
"{041B7365-7B29-4227-B990-EFDB0D7AA71B}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgnsa.exe |
"{099A42EA-0F3A-435F-8408-8EE3D7503378}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgdiagex.exe |
"{0B7010CC-33D2-437B-8239-A7D67B63F635}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{136B7BA2-193F-42B7-AD5D-035D80872DC7}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{18698F64-18CC-49E5-B9F2-B46CAA64004D}" = protocol=17 | dir=in | app=c:\program files (x86)\abbyy finereader 6.0 sprint\scan\scanman6.exe |
"{1DFAD3D3-F3C6-4E2F-B551-7EF769C93057}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgemca.exe |
"{210BBB3F-A9AD-4C1E-938D-8F81AB64E348}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{22F1ECC8-B9F4-406D-A5B3-1E4FB77ADDD2}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{35E45CC7-499C-4D33-9C15-1C33EFE8CE38}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{4285A3B8-DF48-4C05-8AFD-66431AC6329B}" = protocol=58 | dir=out | [email protected],-28546 |
"{47158CDD-4F69-4FA5-8F08-5AD864537817}" = protocol=6 | dir=in | app=c:\program files (x86)\adawaretb\dtuser.exe |
"{490CF0CB-441B-4EA7-B36A-54B1D6F7597D}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgemca.exe |
"{585C2041-21DA-4E4C-8B0A-0899360894B2}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgdiagex.exe |
"{5872C98D-BBB9-40F1-94A3-5A1680D22DA3}" = protocol=17 | dir=in | app=c:\program files (x86)\adawaretb\dtuser.exe |
"{5DC492BD-2D8F-43B6-B294-6B22AE334663}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{738F211A-8FEC-48CE-B063-F0628EFA260A}" = dir=in | app=c:\windows\system32\dleecoms.exe |
"{7FF1AC08-D471-4DE0-B45E-FAB4E8579D6C}" = protocol=6 | dir=in | app=c:\program files (x86)\abbyy finereader 6.0 sprint\scan\scanman6.exe |
"{822E2AC1-AAD2-4B4F-A125-6EC02A2AA188}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgnsa.exe |
"{8BCF88BB-7C12-4E62-815B-B7513AB5910E}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe |
"{8CCA61B1-9CE7-419A-92CF-066638145A90}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe |
"{8E92294A-62B8-4B22-ABF2-595F54FF06D3}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{A1E7F74A-55A4-492F-A72A-F932B209E46E}" = protocol=6 | dir=in | app=c:\program files (x86)\dell v715w\dleefax.exe |
"{A280705E-C373-4F3C-9170-D30DC39615A7}" = protocol=58 | dir=in | [email protected],-28545 |
"{A3B457A0-CE91-4A21-8F48-2B88972A1C86}" = protocol=6 | dir=in | app=c:\program files (x86)\veetle\player\veetlenet.exe |
"{B207B71A-A8B4-4C00-A535-F4794C81F069}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgemca.exe |
"{B45F0C5D-8FAD-4449-876B-66AB355D0CC1}" = protocol=1 | dir=in | [email protected],-28543 |
"{B5E3CAFD-0A8A-4754-9667-C31ABBF5DCF3}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgemca.exe |
"{BA7FFE11-A57C-47EF-88E7-E0C1CCCD06F6}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgnsa.exe |
"{BAC67AE6-9629-40FA-AC12-E9FD89196B0D}" = protocol=17 | dir=in | app=c:\program files (x86)\dell v715w\dleefax.exe |
"{C0EF46C4-D636-452C-85DE-A886969DD191}" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{C558824C-7C7C-4E08-A2C4-D57F9C06D4AB}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{D0387831-4BFC-4479-B4CF-76DE0C074894}" = dir=in | app=c:\windows\system32\dleecoms.exe |
"{D8E42197-1F5C-43FF-B1C1-59E10BD32E6E}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgdiagex.exe |
"{E2ADC1C6-10E1-44ED-A0DD-8029E910A511}" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{E4A0AF65-8873-41EB-95A2-019C146C8D4E}" = protocol=1 | dir=out | [email protected],-28544 |
"{EDEBBC41-AE0C-4F60-B5F7-A2667672766D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{EF1513C1-B11B-4C7E-B1AF-7349D908FB8C}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgnsa.exe |
"{F8A36F49-CF5F-4CF5-9D15-D0D64BC93946}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{FD948D58-8A73-4942-9B1D-71F12E1C3BE8}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgdiagex.exe |
"TCP Query User{A162FBAB-312F-4B4E-9ADA-BE9DC51F5C81}C:\program files (x86)\quicktime\quicktimeplayer.exe" = protocol=6 | dir=in | app=c:\program files (x86)\quicktime\quicktimeplayer.exe |
"TCP Query User{B0236597-7930-47D3-85AC-FA70149D5BA5}C:\program files (x86)\itunes\itunes.exe" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"UDP Query User{1038BA5D-8B77-4674-9E97-C4C7B01CCA92}C:\program files (x86)\itunes\itunes.exe" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"UDP Query User{3B217DB2-9F1A-4620-8B61-A727BDE80550}C:\program files (x86)\quicktime\quicktimeplayer.exe" = protocol=17 | dir=in | app=c:\program files (x86)\quicktime\quicktimeplayer.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{65510247-DAA8-4161-9898-42C78EAF1BC5}" = AVG 2012
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{75104836-CAC7-444E-A39E-3F54151942F5}" = Apple Mobile Device Support
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D66F0C3C-24F2-4463-9E2F-4381E5C40A26}" = iTunes
"{E461C0B2-523B-2940-C5DF-D174284CE609}" = ccc-utility64
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"AVG" = AVG 2012
"Creative OA001" = Integrated Webcam Driver (1.05.02.1227)
"Dell V715w" = Dell V715w
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"SynTPDeinstKey" = Dell Touchpad

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{03CFDC67-5B03-EE5C-4176-F545B0D2F485}" = CCC Help Korean
"{04010300-6D72-4D54-8686-91D884A27B5C}" = Cisco Clean Access Agent
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{09B71986-2AC5-482d-B6CB-42EA34F4F85B}" = Dell Toolbar
"{0A2AC888-61DC-CD55-5969-8602A7E9716D}" = CCC Help Italian
"{0CF884B6-C6D8-EB7B-D2BF-2877C6F49EBC}" = CCC Help Swedish
"{185CC275-907C-0D83-B0C2-7B065C5108D8}" = CCC Help Chinese Traditional
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java™ 6 Update 22
"{2ED967AD-FBB0-5355-F5F2-E7A03AAD4F71}" = Catalyst Control Center Localization All
"{3018B943-C76C-44B0-B078-790A28CEF67E}" = Microsoft UI Engine
"{30FA0F5C-B1A9-39EB-8148-3D574C0C8332}" = Catalyst Control Center Graphics Previews Common
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{35852FDE-7263-23EA-435F-44E4B61996D0}" = CCC Help Japanese
"{3A07247E-0645-8BCF-8419-FD857790108D}" = Skins
"{445F6C1F-C48F-0CC9-A030-040D3EA42C93}" = Catalyst Control Center Graphics Full New
"{46E08E5F-02B4-E854-CD4F-ED3E4FEBE122}" = CCC Help French
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5A841BCF-1C5B-E3DA-9475-892CA6576425}" = CCC Help Finnish
"{5B8741B6-4BEA-47D3-DB77-959C7FF35B39}" = Catalyst Control Center Graphics Full Existing
"{5FA16D15-FA5B-7F0F-7CBB-369E1E2937C9}" = CCC Help Spanish
"{61EDBE71-5D3E-4AB7-AD95-E53FEAF68C17}" = Bing Rewards Client Installer
"{61F27C5E-5274-0DB8-67CC-5253C6CF2B93}" = CCC Help Dutch
"{6421F085-1FAA-DE13-D02A-CFB412C522A4}" = Acrobat.com
"{6625CE8F-6E89-561F-D828-1B8535DEEBB6}" = Catalyst Control Center Core Implementation
"{69533745-1E2D-4C98-8B4A-B7643EF9E1A2}" = Catalyst Control Center - Branding
"{6D2CCC4B-007D-EEE7-3E69-578B178A7B91}" = Catalyst Control Center Graphics Previews Vista
"{71E3D92F-2C51-B4E9-F2B6-EAF89C33E580}" = CCC Help Portuguese
"{77F218D6-EAF4-402C-36B1-C3F0EC62598D}" = ccc-core-static
"{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}" = Bing Bar
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{86C527CC-4AF2-903C-7BFF-5975272CC645}" = Catalyst Control Center InstallProxy
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8DDFDDE9-C206-F32E-66AD-D17558D7677E}" = CCC Help German
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{903679E8-44C8-4C07-9600-05C92654FC50}" = QualXServ Service Agreement
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2A4AC67-DC60-A92B-DD50-65BEE8FA8D71}" = CCC Help Russian
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.4
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{B9C5005C-56CA-38E4-A093-79F22ECA0427}" = CCC Help Norwegian
"{DC93F14E-D2C9-D6D1-31B6-D31AC2AD3BB0}" = Catalyst Control Center Graphics Light
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{E6E0F53B-B7B8-E052-5C32-76C885536A3E}" = CCC Help Danish
"{F6BB6248-C507-46FE-8A35-1B16F35E0441}" = ITECIR
"{F7FE3C6E-ECB8-0853-584F-BE19BA05B1B8}" = CCC Help Chinese Standard
"{FCC49808-C684-FEFA-3C02-46A04A7C9EBD}" = CCC Help English
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"adawaretb" = Ad-Aware Security Toolbar
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"BN_DesktopReader" = Barnes & Noble Desktop Reader
"Borders Desktop" = Borders Desktop
"Carbonite Setup Lite" = Carbonite Online Backup Setup
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.60.1.1000
"Monopoly by Parker Brothers" = Monopoly by Parker Brothers
"Monopoly Here & Now Edition" = Monopoly Here & Now Edition
"Veetle TV" = Veetle TV

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 1/26/2012 8:53:15 PM | Computer Name = Chris-PC | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.6001.19170 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 1bbc Start Time: 01ccdc8a8631fbd0 Termination Time: 16

Error - 1/26/2012 11:03:35 PM | Computer Name = Chris-PC | Source = WinMgmt | ID = 10
Description =

Error - 1/27/2012 12:40:43 PM | Computer Name = Chris-PC | Source = WinMgmt | ID = 10
Description =

Error - 1/27/2012 2:50:34 PM | Computer Name = Chris-PC | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.19170, time stamp
0x4eb21c98, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception
code 0xc00000fd, fault offset 0x75d99bb4, process id 0x1474, application start time
0x01ccdd1f12973d80.

Error - 1/27/2012 3:11:09 PM | Computer Name = Chris-PC | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.19170, time stamp
0x4eb21c98, faulting module jscript.dll, version 5.8.6001.19163, time stamp 0x4e9d1a54,
exception code 0xc0000005, fault offset 0x0001ef40, process id 0x18d0, application
start time 0x01ccdd239f30a930.

Error - 1/31/2012 10:17:32 AM | Computer Name = Chris-PC | Source = WinMgmt | ID = 10
Description =

Error - 2/1/2012 12:33:18 PM | Computer Name = Chris-PC | Source = WinMgmt | ID = 10
Description =

Error - 2/1/2012 12:41:35 PM | Computer Name = Chris-PC | Source = MsiInstaller | ID = 1013
Description =

Error - 2/1/2012 12:41:40 PM | Computer Name = Chris-PC | Source = MsiInstaller | ID = 1013
Description =

Error - 2/1/2012 6:45:15 PM | Computer Name = Chris-PC | Source = Application Error | ID = 1000
Description = Faulting application SearchIndexer.exe, version 7.0.6002.18005, time
stamp 0x49e03333, faulting module TQUERY.DLL, version 7.0.6002.18005, time stamp
0x49e0422e, exception code 0xc0000005, fault offset 0x0000000000148a11, process
id 0xfe8, application start time 0x01cce0ff2dc51378.

[ Media Center Events ]
Error - 7/2/2010 6:47:25 AM | Computer Name = Chris-PC | Source = MCUpdate | ID = 0
Description = Failed to wait on MCUpdate mutex with exception: 'The wait completed
due to an abandoned mutex.'.

[ System Events ]
Error - 2/8/2012 11:05:46 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 2/8/2012 11:05:46 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 2/9/2012 8:43:49 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 2/9/2012 8:43:49 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 2/9/2012 8:44:53 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 2/9/2012 8:45:08 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 2/9/2012 11:28:53 PM | Computer Name = Chris-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 10:27:11 PM on 2/9/2012 was unexpected.

Error - 2/9/2012 11:30:29 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 2/9/2012 11:30:29 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 2/10/2012 2:52:44 AM | Computer Name = Chris-PC | Source = volsnap | ID = 393245
Description = The shadow copies of volume C: were aborted during detection.

< End of repor

#4
RKinner

Posted 10 February 2012 - 08:33 PM

Malware Expert

Expert
24,624 posts

Try aswMBR again without the Avast Engine.

Copy the text in the code box:


/md5start
dxtmsft.dll
dxtrans.dll
ieframe.dll
msxml3.dll
/md5stop

Run OTL (Vista or Win 7 => right click and Run As Administrator)

Paste (Ctrl + v) the copied text in the box where it says Custom Scan/Fixes
then Run Scan.

You should get one log. Please copy and paste it.

#5
baseballucdoy

Posted 10 February 2012 - 09:34 PM

Member

Topic Starter
Member
11 posts

Puma is apparently new redirector...not sure if it's a rootkit, but apparently it is hard to get rid of. Thanks for your help.

OTL Extras logfile created on: 10/02/2012 10:07:06 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = c:\Users\Chris 2\Desktop
64bit-Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19170)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: dd/MM/yyyy

3.99 Gb Total Physical Memory | 2.10 Gb Available Physical Memory | 52.59% Memory free
8.18 Gb Paging File | 6.34 Gb Available in Paging File | 77.47% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 450.71 Gb Total Space | 401.10 Gb Free Space | 88.99% Space Free | Partition Type: NTFS
Drive D: | 15.00 Gb Total Space | 7.72 Gb Free Space | 51.46% Space Free | Partition Type: NTFS
Drive E: | 76.27 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: CHRIS-PC | User Name: Chris 2 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (All) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm[@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp[@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.hta[@ = htafile] -- C:\Windows\SysWOW64\mshta.exe (Microsoft Corporation)
.html[@ = htmlfile] -- C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation)
.inf[@ = inffile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.ini[@ = inifile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
.js[@ = JSFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.jse[@ = JSEFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.reg[@ = regfile] -- C:\Windows\regedit.exe (Microsoft Corporation)
.txt[@ = txtfile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.vbe[@ = VBEFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.vbs[@ = VBSFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.wsf[@ = WSFFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)
.wsh[@ = WSHFile] -- C:\Windows\SysNative\WScript.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] -- "%1" %*
.chm [@ = chm.file] -- C:\Windows\hh.exe (Microsoft Corporation)
.cmd [@ = cmdfile] -- "%1" %*
.com [@ = ComFile] -- "%1" %*
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.exe [@ = exefile] -- "%1" %*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.hta [@ = htafile] -- C:\Windows\SysWOW64\mshta.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation)
.inf [@ = inffile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.ini [@ = inifile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation)
.js [@ = JSFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\Windows\SysWOW64\WScript.exe (Microsoft Corporation)
.pif [@ = piffile] -- "%1" %*
.reg [@ = regfile] -- C:\Windows\SysWow64\regedit.exe (Microsoft Corporation)
.scr [@ = scrfile] -- "%1" /S
.txt [@ = txtfile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.vbe [@ = VBEFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)
.wsh [@ = WSHFile] -- C:\Windows\SysWow64\WScript.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\SysWOW64\mshta.exe "%1" %* (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
inffile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 (Microsoft Corporation)
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\SysWOW64\mshta.exe "%1" %* (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
inffile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\SysWOW64\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\SysWOW64\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\SysWOW64\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\SysWOW64\WScript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\SysWOW64\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- %SystemRoot%\System32\WScript.exe "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\WScript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = C2 FE 8D 6A DC 5B C8 01 [binary data]
"VistaSp2" = 0C CC 7E 39 8B 1B CB 01 [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"oobe_av" = 1

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{10475CB1-B511-4BA6-A95F-86EE05A581DD}" = lport=137 | protocol=17 | dir=in | app=system |
"{83228E03-429D-4A5B-A73D-8136EDD03D75}" = rport=137 | protocol=17 | dir=out | app=system |
"{848CD00C-47EA-44E6-A249-267BE0FFD386}" = rport=139 | protocol=6 | dir=out | app=system |
"{8ABDE31F-8322-4037-9F88-A97C10DF0609}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{90774766-E188-47B9-8F00-45C8F4F96320}" = rport=138 | protocol=17 | dir=out | app=system |
"{949F780B-708E-4486-A706-EDB547048E76}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{958ADB42-A486-4259-A116-CA10AD6B7DD5}" = lport=138 | protocol=17 | dir=in | app=system |
"{98E5DB0A-19DE-4775-8FCD-D30D60258C1A}" = lport=445 | protocol=6 | dir=in | app=system |
"{A416B06B-C072-420C-880A-CB628F06E02A}" = rport=445 | protocol=6 | dir=out | app=system |
"{B5CFEFD5-8166-4D97-9249-4AA7D412BBDE}" = lport=139 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{039B2E9A-FDDF-4B2C-B31D-DED3C483C1E2}" = dir=in | app=c:\windows\system32\dleecoms.exe |
"{041B7365-7B29-4227-B990-EFDB0D7AA71B}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgnsa.exe |
"{099A42EA-0F3A-435F-8408-8EE3D7503378}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgdiagex.exe |
"{0B7010CC-33D2-437B-8239-A7D67B63F635}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{136B7BA2-193F-42B7-AD5D-035D80872DC7}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{18698F64-18CC-49E5-B9F2-B46CAA64004D}" = protocol=17 | dir=in | app=c:\program files (x86)\abbyy finereader 6.0 sprint\scan\scanman6.exe |
"{210BBB3F-A9AD-4C1E-938D-8F81AB64E348}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{22F1ECC8-B9F4-406D-A5B3-1E4FB77ADDD2}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{35E45CC7-499C-4D33-9C15-1C33EFE8CE38}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{4285A3B8-DF48-4C05-8AFD-66431AC6329B}" = protocol=58 | dir=out | [email protected],-28546 |
"{47158CDD-4F69-4FA5-8F08-5AD864537817}" = protocol=6 | dir=in | app=c:\program files (x86)\adawaretb\dtuser.exe |
"{490CF0CB-441B-4EA7-B36A-54B1D6F7597D}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgemca.exe |
"{5872C98D-BBB9-40F1-94A3-5A1680D22DA3}" = protocol=17 | dir=in | app=c:\program files (x86)\adawaretb\dtuser.exe |
"{5DC492BD-2D8F-43B6-B294-6B22AE334663}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{738F211A-8FEC-48CE-B063-F0628EFA260A}" = dir=in | app=c:\windows\system32\dleecoms.exe |
"{7FF1AC08-D471-4DE0-B45E-FAB4E8579D6C}" = protocol=6 | dir=in | app=c:\program files (x86)\abbyy finereader 6.0 sprint\scan\scanman6.exe |
"{822E2AC1-AAD2-4B4F-A125-6EC02A2AA188}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgnsa.exe |
"{8BCF88BB-7C12-4E62-815B-B7513AB5910E}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe |
"{8CCA61B1-9CE7-419A-92CF-066638145A90}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe |
"{8E92294A-62B8-4B22-ABF2-595F54FF06D3}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{A1E7F74A-55A4-492F-A72A-F932B209E46E}" = protocol=6 | dir=in | app=c:\program files (x86)\dell v715w\dleefax.exe |
"{A280705E-C373-4F3C-9170-D30DC39615A7}" = protocol=58 | dir=in | [email protected],-28545 |
"{A3B457A0-CE91-4A21-8F48-2B88972A1C86}" = protocol=6 | dir=in | app=c:\program files (x86)\veetle\player\veetlenet.exe |
"{B207B71A-A8B4-4C00-A535-F4794C81F069}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgemca.exe |
"{B45F0C5D-8FAD-4449-876B-66AB355D0CC1}" = protocol=1 | dir=in | [email protected],-28543 |
"{BAC67AE6-9629-40FA-AC12-E9FD89196B0D}" = protocol=17 | dir=in | app=c:\program files (x86)\dell v715w\dleefax.exe |
"{C0EF46C4-D636-452C-85DE-A886969DD191}" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{C558824C-7C7C-4E08-A2C4-D57F9C06D4AB}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{D0387831-4BFC-4479-B4CF-76DE0C074894}" = dir=in | app=c:\windows\system32\dleecoms.exe |
"{E2ADC1C6-10E1-44ED-A0DD-8029E910A511}" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{E4A0AF65-8873-41EB-95A2-019C146C8D4E}" = protocol=1 | dir=out | [email protected],-28544 |
"{EDEBBC41-AE0C-4F60-B5F7-A2667672766D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{F8A36F49-CF5F-4CF5-9D15-D0D64BC93946}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{FD948D58-8A73-4942-9B1D-71F12E1C3BE8}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgdiagex.exe |
"TCP Query User{A162FBAB-312F-4B4E-9ADA-BE9DC51F5C81}C:\program files (x86)\quicktime\quicktimeplayer.exe" = protocol=6 | dir=in | app=c:\program files (x86)\quicktime\quicktimeplayer.exe |
"TCP Query User{B0236597-7930-47D3-85AC-FA70149D5BA5}C:\program files (x86)\itunes\itunes.exe" = protocol=6 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"UDP Query User{1038BA5D-8B77-4674-9E97-C4C7B01CCA92}C:\program files (x86)\itunes\itunes.exe" = protocol=17 | dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"UDP Query User{3B217DB2-9F1A-4620-8B61-A727BDE80550}C:\program files (x86)\quicktime\quicktimeplayer.exe" = protocol=17 | dir=in | app=c:\program files (x86)\quicktime\quicktimeplayer.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{75104836-CAC7-444E-A39E-3F54151942F5}" = Apple Mobile Device Support
"{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset
"{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}" = Dell Edoc Viewer
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D66F0C3C-24F2-4463-9E2F-4381E5C40A26}" = iTunes
"{E461C0B2-523B-2940-C5DF-D174284CE609}" = ccc-utility64
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Creative OA001" = Integrated Webcam Driver (1.05.02.1227)
"Dell V715w" = Dell V715w
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"SynTPDeinstKey" = Dell Touchpad

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{03CFDC67-5B03-EE5C-4176-F545B0D2F485}" = CCC Help Korean
"{04010300-6D72-4D54-8686-91D884A27B5C}" = Cisco Clean Access Agent
"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center
"{09B71986-2AC5-482d-B6CB-42EA34F4F85B}" = Dell Toolbar
"{0A2AC888-61DC-CD55-5969-8602A7E9716D}" = CCC Help Italian
"{0CF884B6-C6D8-EB7B-D2BF-2877C6F49EBC}" = CCC Help Swedish
"{185CC275-907C-0D83-B0C2-7B065C5108D8}" = CCC Help Chinese Traditional
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java™ 6 Update 22
"{2ED967AD-FBB0-5355-F5F2-E7A03AAD4F71}" = Catalyst Control Center Localization All
"{3018B943-C76C-44B0-B078-790A28CEF67E}" = Microsoft UI Engine
"{30FA0F5C-B1A9-39EB-8148-3D574C0C8332}" = Catalyst Control Center Graphics Previews Common
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{35852FDE-7263-23EA-435F-44E4B61996D0}" = CCC Help Japanese
"{3A07247E-0645-8BCF-8419-FD857790108D}" = Skins
"{445F6C1F-C48F-0CC9-A030-040D3EA42C93}" = Catalyst Control Center Graphics Full New
"{46E08E5F-02B4-E854-CD4F-ED3E4FEBE122}" = CCC Help French
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{5A841BCF-1C5B-E3DA-9475-892CA6576425}" = CCC Help Finnish
"{5B8741B6-4BEA-47D3-DB77-959C7FF35B39}" = Catalyst Control Center Graphics Full Existing
"{5FA16D15-FA5B-7F0F-7CBB-369E1E2937C9}" = CCC Help Spanish
"{61EDBE71-5D3E-4AB7-AD95-E53FEAF68C17}" = Bing Rewards Client Installer
"{61F27C5E-5274-0DB8-67CC-5253C6CF2B93}" = CCC Help Dutch
"{6421F085-1FAA-DE13-D02A-CFB412C522A4}" = Acrobat.com
"{6625CE8F-6E89-561F-D828-1B8535DEEBB6}" = Catalyst Control Center Core Implementation
"{69533745-1E2D-4C98-8B4A-B7643EF9E1A2}" = Catalyst Control Center - Branding
"{6D2CCC4B-007D-EEE7-3E69-578B178A7B91}" = Catalyst Control Center Graphics Previews Vista
"{71E3D92F-2C51-B4E9-F2B6-EAF89C33E580}" = CCC Help Portuguese
"{77F218D6-EAF4-402C-36B1-C3F0EC62598D}" = ccc-core-static
"{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}" = Bing Bar
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{86C527CC-4AF2-903C-7BFF-5975272CC645}" = Catalyst Control Center InstallProxy
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8DDFDDE9-C206-F32E-66AD-D17558D7677E}" = CCC Help German
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{903679E8-44C8-4C07-9600-05C92654FC50}" = QualXServ Service Agreement
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2A4AC67-DC60-A92B-DD50-65BEE8FA8D71}" = CCC Help Russian
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{AC76BA86-7AD7-1033-7B44-A93000000001}" = Adobe Reader 9.3.4
"{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint
"{B9C5005C-56CA-38E4-A093-79F22ECA0427}" = CCC Help Norwegian
"{DC93F14E-D2C9-D6D1-31B6-D31AC2AD3BB0}" = Catalyst Control Center Graphics Light
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{E6E0F53B-B7B8-E052-5C32-76C885536A3E}" = CCC Help Danish
"{F6BB6248-C507-46FE-8A35-1B16F35E0441}" = ITECIR
"{F7FE3C6E-ECB8-0853-584F-BE19BA05B1B8}" = CCC Help Chinese Standard
"{FCC49808-C684-FEFA-3C02-46A04A7C9EBD}" = CCC Help English
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"adawaretb" = Ad-Aware Security Toolbar
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"avast" = avast! Free Antivirus
"BN_DesktopReader" = Barnes & Noble Desktop Reader
"Borders Desktop" = Borders Desktop
"Carbonite Setup Lite" = Carbonite Online Backup Setup
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.60.1.1000
"Monopoly by Parker Brothers" = Monopoly by Parker Brothers
"Monopoly Here & Now Edition" = Monopoly Here & Now Edition
"Veetle TV" = Veetle TV

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 10/02/2012 5:00:49 PM | Computer Name = Chris-PC | Source = WinMgmt | ID = 10
Description =

Error - 10/02/2012 5:46:43 PM | Computer Name = Chris-PC | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.19170, time stamp
0x4eb21c98, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception
code 0xc00000fd, fault offset 0x74d99bb4, process id 0x129c, application start time
0x01cce83d66ae6b8d.

Error - 10/02/2012 6:59:10 PM | Computer Name = Chris-PC | Source = Application Hang | ID = 1002
Description = The program OTM11.exe version 3.1.19.0 stopped interacting with Windows
and was closed. To see if more information about the problem is available, check
the problem history in the Problem Reports and Solutions control panel. Process
ID: 9cc Start Time: 01cce8468c6e84ad Termination Time: 140

Error - 10/02/2012 7:02:35 PM | Computer Name = Chris-PC | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.19170, time stamp
0x4eb21c98, faulting module SkypeIEPlugin.dll_unloaded, version 0.0.0.0, time stamp
0x4a77e4da, exception code 0xc0000005, fault offset 0x05a53f2b, process id 0x14e4,
application start time 0x01cce8480e2e3a2d.

Error - 10/02/2012 7:08:41 PM | Computer Name = Chris-PC | Source = Application Hang | ID = 1002
Description = The program OTM11.exe version 3.1.19.0 stopped interacting with Windows
and was closed. To see if more information about the problem is available, check
the problem history in the Problem Reports and Solutions control panel. Process
ID: c94 Start Time: 01cce848ced9ce1d Termination Time: 0

Error - 10/02/2012 7:21:15 PM | Computer Name = Chris-PC | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 8.0.6001.19170, time stamp
0x4eb21c98, faulting module SkypeIEPlugin.dll_unloaded, version 0.0.0.0, time stamp
0x4a77e4da, exception code 0xc0000005, fault offset 0x08fd3f2b, process id 0x15d4,
application start time 0x01cce84a66008c6d.

Error - 10/02/2012 7:24:12 PM | Computer Name = Chris-PC | Source = WinMgmt | ID = 10
Description =

Error - 10/02/2012 7:52:03 PM | Computer Name = Chris-PC | Source = WinMgmt | ID = 10
Description =

Error - 10/02/2012 7:58:46 PM | Computer Name = Chris-PC | Source = WinMgmt | ID = 10
Description =

Error - 10/02/2012 9:08:20 PM | Computer Name = Chris-PC | Source = WinMgmt | ID = 10
Description =

[ Media Center Events ]
Error - 02/07/2010 6:47:25 AM | Computer Name = Chris-PC | Source = MCUpdate | ID = 0
Description = Failed to wait on MCUpdate mutex with exception: 'The wait completed
due to an abandoned mutex.'.

[ System Events ]
Error - 10/02/2012 7:24:12 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 10/02/2012 7:52:04 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 10/02/2012 7:52:04 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 10/02/2012 7:55:44 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7022
Description =

Error - 10/02/2012 7:58:49 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 10/02/2012 8:02:19 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7022
Description =

Error - 10/02/2012 9:03:11 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7030
Description =

Error - 10/02/2012 9:05:41 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7030
Description =

Error - 10/02/2012 9:08:20 PM | Computer Name = Chris-PC | Source = Service Control Manager | ID = 7026
Description =

Error - 10/02/2012 10:28:51 PM | Computer Name = Chris-PC | Source = bowser | ID = 8003
Description =

< End of report >

#6
RKinner

Posted 11 February 2012 - 10:12 AM

Malware Expert

Expert
24,624 posts

I need the OTL log not the Extras log. Were you able to run aswMBR without the Avast engine?

I do see something I missed last time.

Copy the text in the code box by highlighting and Ctrl + c


:OTL
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 4E D2 8A 00 60 46 12 44 85 6F DC 6D 14 4C 3E 23 [binary data]

   
:Commands
[EMPTYFLASH]
[EMPTYJAVA]
[purity]
[Reboot]

then Rightclick on OTL and select Run As Administrator to start. (Close IE) Under the Custom Scans/Fixes box at the bottom, paste (ctrl +v) the text. Verify that you got it all and Then click the RUN FIX button (NOT THE QUICK SCAN button!) at the top
Let the program run unhindered, OTL will reboot the PC when it is done.

#7
baseballucdoy

Posted 11 February 2012 - 04:20 PM

Member

Topic Starter
Member
11 posts

I ran the scan again (though I wasn't able to get rid of Avast). It froze again, but got a lot farther. It froze at C:/Windows/winsxs/Backup/x86_networking-mpssvc-svc.resources_31bf3856ad36. I did the bottom step as you asked. Let me know what to do next. By the way, I still refuse to go on Google :cool:

. The rest of my PC is running fine though.

#8
RKinner

Posted 11 February 2012 - 04:44 PM

Malware Expert

Expert
24,624 posts

I still need the OTL log from step #4
http://www.geekstogo...ost__p__2119760

#9
baseballucdoy

Posted 11 February 2012 - 08:17 PM

Member

Topic Starter
Member
11 posts

Here you go.

OTL logfile created on: 11/02/2012 9:09:18 PM - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Chris 2\Desktop
64bit-Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19170)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: dd/MM/yyyy

3.99 Gb Total Physical Memory | 2.17 Gb Available Physical Memory | 54.44% Memory free
8.18 Gb Paging File | 6.27 Gb Available in Paging File | 76.65% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 450.71 Gb Total Space | 401.44 Gb Free Space | 89.07% Space Free | Partition Type: NTFS
Drive D: | 15.00 Gb Total Space | 7.72 Gb Free Space | 51.46% Space Free | Partition Type: NTFS
Drive E: | 76.27 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: CHRIS-PC | User Name: Chris 2 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/02/11 21:06:12 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTL.exe656.exe
PRC - [2011/11/28 13:01:24 | 003,744,552 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/11/28 13:01:23 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011/02/25 09:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2009/07/09 14:36:12 | 000,139,944 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\ezprint.exe
PRC - [2009/07/09 14:36:09 | 000,766,632 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleemon.exe
PRC - [2009/05/11 05:43:48 | 001,909,472 | ---- | M] (Cisco Systems, Inc) -- C:\Program Files (x86)\Cisco Systems\Clean Access Agent\CCAAgent.exe

========== Modules (No Company Name) ==========

MOD - [2011/11/01 23:26:32 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/11/01 23:26:12 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2009/07/09 14:36:12 | 000,139,944 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\ezprint.exe
MOD - [2009/07/09 14:36:09 | 000,766,632 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleemon.exe
MOD - [2009/05/29 09:09:48 | 001,159,168 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleedrs.dll
MOD - [2009/05/29 09:08:53 | 000,389,120 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleescw.dll
MOD - [2009/05/27 07:16:50 | 000,192,512 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleedatr.dll
MOD - [2009/05/26 15:18:10 | 000,086,121 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\DLEEcfg.dll
MOD - [2009/04/07 14:25:27 | 000,409,600 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\iptk.dll
MOD - [2009/03/30 07:40:44 | 000,196,608 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epoemdll.dll
MOD - [2009/03/30 07:40:43 | 000,045,056 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epstring.dll
MOD - [2009/03/30 07:40:42 | 002,203,648 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epwizres.dll
MOD - [2009/03/30 07:40:26 | 000,708,608 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epwizard.dll
MOD - [2009/03/30 07:38:36 | 000,159,744 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\customui.dll
MOD - [2009/03/30 07:38:16 | 000,061,440 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epfunct.dll
MOD - [2009/03/30 07:38:11 | 000,114,688 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\eputil.dll
MOD - [2009/03/30 07:37:58 | 000,139,264 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\imagutil.dll
MOD - [2009/03/10 00:43:49 | 000,155,648 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleecaps.dll
MOD - [2009/03/05 12:55:33 | 000,059,904 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleecnv4.dll
MOD - [2009/03/02 09:25:47 | 000,151,552 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleeptp.dll

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/11/28 13:01:23 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2009/07/01 08:07:00 | 001,054,888 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysNative\dleecoms.exe -- (dlee_device)
SRV:64bit: - [2009/06/25 21:48:28 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/03/30 07:25:18 | 000,268,288 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_15f4e438\STacSV64.exe -- (STacSV)
SRV:64bit: - [2009/03/30 07:24:46 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe -- (AESTFilters)
SRV:64bit: - [2008/01/20 21:50:23 | 000,195,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008/01/20 21:46:39 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011/02/28 17:44:14 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/02/25 09:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/07/01 08:06:47 | 000,602,792 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysWow64\dleecoms.exe -- (dlee_device)
SRV - [2009/03/29 23:42:14 | 000,066,368 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/11/28 12:54:06 | 000,591,192 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2011/11/28 12:53:58 | 000,304,472 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2011/11/28 12:52:22 | 000,042,328 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr)
DRV:64bit: - [2011/11/28 12:52:20 | 000,058,712 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2011/11/28 12:52:11 | 000,066,904 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2011/11/28 12:51:53 | 000,024,408 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2011/08/02 17:38:56 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2009/06/25 22:24:30 | 006,036,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (R300)
DRV:64bit: - [2009/06/25 22:24:30 | 006,036,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009/06/04 10:20:48 | 000,113,168 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/04/28 04:53:30 | 000,252,928 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\k57nd60a.sys -- (k57nd60a) Broadcom NetLink ™
DRV:64bit: - [2009/04/11 00:03:32 | 000,111,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\sdbus.sys -- (sdbus)
DRV:64bit: - [2009/03/30 07:25:34 | 000,477,696 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\stwrt64.sys -- (STHDA)
DRV:64bit: - [2009/01/12 23:46:32 | 000,318,656 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Vid.sys -- (OA001Vid)
DRV:64bit: - [2009/01/12 23:46:32 | 000,158,592 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Ufd.sys -- (OA001Ufd)
DRV:64bit: - [2008/12/22 04:26:28 | 004,735,488 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\NETw5v64.sys -- (NETw5v64) Intel®
DRV:64bit: - [2008/11/21 06:04:24 | 000,261,680 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\SynTP.sys -- (SynTP)
DRV:64bit: - [2008/08/25 03:24:28 | 000,059,392 | ---- | M] (ITE Tech. Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\itecir.sys -- (itecir)
DRV:64bit: - [2008/07/29 05:58:16 | 000,057,856 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rixdpx64.sys -- (rismxdp)
DRV:64bit: - [2008/07/29 05:58:14 | 000,062,976 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimmpx64.sys -- (rimmptsk)
DRV:64bit: - [2008/07/29 05:58:12 | 000,055,296 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimspx64.sys -- (rimsptsk)
DRV:64bit: - [2008/01/20 21:46:02 | 000,317,952 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\e1e6032e.sys -- (e1express) Intel®

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 40 85 47 77 B2 BA CB 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)

O1 HOSTS File: ([2012/02/10 20:07:00 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (Dell Toolbar) - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - C:\Program Files\Dell Printable Web\toolband.dll ()
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (Dell Toolbar) - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - C:\Program Files\Dell Printable Web\toolband.dll ()
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:64bit: - HKLM..\Run: [dleemon.exe] C:\Program Files (x86)\Dell V715w\dleemon.exe ()
O4:64bit: - HKLM..\Run: [EzPrint] C:\Program Files (x86)\Dell V715w\ezprint.exe ()
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CarboniteSetupLite] C:\Program Files (x86)\Carbonite\CarbonitePreinstaller.exe (Carbonite, Inc.)
O4 - HKLM..\Run: [Dell V715w] C:\Program Files (x86)\Dell V715w\fm3032.exe ()
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://netaccess.sv...SetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.80.180.200 10.76.51.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8BD5F978-09B4-48DF-A140-D5BC4DD9D9CC}: DhcpNameServer = 10.80.180.200 10.76.51.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BDCF5074-A8B6-457C-81A9-9977FA250CC4}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Chris 2\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Chris 2\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/12/12 19:16:21 | 000,000,000 | ---D | M] - E:\AutoPlay -- [ CDFS ]
O32 - AutoRun File - [2008/12/12 19:27:54 | 000,000,047 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/02/11 21:06:11 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTL.exe656.exe
[2012/02/11 14:14:41 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/02/11 02:24:17 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/02/10 20:26:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2012/02/10 20:26:11 | 000,304,472 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2012/02/10 20:26:11 | 000,024,408 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2012/02/10 20:26:08 | 000,042,328 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2012/02/10 20:26:07 | 000,058,712 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2012/02/10 20:26:06 | 000,591,192 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2012/02/10 20:26:05 | 000,066,904 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2012/02/10 20:25:46 | 000,041,184 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2012/02/10 20:25:45 | 000,199,816 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2012/02/10 20:05:31 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/02/10 19:57:37 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/02/10 19:57:37 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/02/10 19:57:37 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/02/10 19:57:30 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/02/10 18:01:23 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\Documents\tdsskiller[1]
[2012/02/10 17:59:57 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\Desktop\GooredFix Backups
[2012/02/10 17:51:03 | 000,523,264 | ---- | C] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTM11.exe
[2012/02/10 17:45:51 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\Documents\erunt[1]
[2012/02/10 16:18:32 | 000,061,440 | ---- | C] ( ) -- C:\Users\Chris 2\Desktop\VEW222.exe
[2012/02/09 22:28:53 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/02/09 20:27:52 | 004,733,440 | ---- | C] (AVAST Software) -- C:\Users\Chris 2\Desktop\aswMBR2.exe
[2012/02/09 19:47:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/02/09 19:47:14 | 000,023,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/02/08 21:56:18 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2012/02/08 21:53:41 | 004,399,064 | R--- | C] (Swearware) -- C:\Users\Chris 2\Desktop\CombooooFixndnd.exe
[2012/02/08 15:03:28 | 000,055,384 | ---- | C] (Sunbelt Software) -- C:\Windows\SysNative\drivers\SBREDrv.sys
[2012/02/08 14:59:12 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\AppData\Local\adaware
[2012/02/08 14:59:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Ad-Aware Browsing Protection
[2012/02/08 14:59:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Toolbar Cleaner
[2012/02/08 14:58:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\adawaretb
[2012/02/08 14:58:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2008/05/23 04:25:20 | 000,364,544 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeinpa.dll
[2008/05/23 04:25:19 | 000,344,064 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeiesc.dll
[2008/05/23 04:25:18 | 000,651,264 | ---- | C] ( ) -- C:\Windows\SysWow64\dleepmui.dll
[2008/05/23 04:25:15 | 001,056,768 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeserv.dll
[2008/05/23 04:25:15 | 000,851,968 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeusb1.dll
[2008/05/23 04:25:14 | 000,581,632 | ---- | C] ( ) -- C:\Windows\SysWow64\dleelmpm.dll
[2008/05/23 04:25:13 | 000,328,360 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeih.exe
[2008/05/23 04:25:12 | 000,688,128 | ---- | C] ( ) -- C:\Windows\SysWow64\dleehbn3.dll
[2008/05/23 04:25:11 | 000,602,792 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecoms.exe
[2008/05/23 04:25:11 | 000,376,832 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecomm.dll
[2008/05/23 04:25:10 | 000,802,816 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecomc.dll
[2008/05/23 04:25:09 | 000,369,320 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecfg.exe

========== Files - Modified Within 30 Days ==========

[2012/02/11 21:10:51 | 000,000,438 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{22543227-28D1-448C-887D-80EC548A96C2}.job
[2012/02/11 21:09:00 | 000,000,418 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{C9BDE752-56DB-4800-8C20-B82FD7F534A4}.job
[2012/02/11 21:06:12 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTL.exe656.exe
[2012/02/11 20:55:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/02/11 17:10:33 | 000,000,512 | ---- | M] () -- C:\Users\Chris 2\Documents\MBR.dat
[2012/02/11 16:16:25 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/02/11 16:16:25 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/02/11 14:23:14 | 000,703,388 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/02/11 14:23:14 | 000,604,502 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/02/11 14:23:14 | 000,104,170 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/02/11 14:16:20 | 4289,576,960 | -HS- | M] () -- C:\hiberfil.sys
[2012/02/10 20:26:12 | 000,001,787 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2012/02/10 20:26:05 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2012/02/10 20:07:00 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/02/10 18:50:38 | 000,272,560 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/02/10 17:51:03 | 000,523,264 | ---- | M] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTM11.exe
[2012/02/10 16:18:32 | 000,061,440 | ---- | M] ( ) -- C:\Users\Chris 2\Desktop\VEW222.exe
[2012/02/09 22:28:46 | 733,228,612 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/02/09 20:27:52 | 004,733,440 | ---- | M] (AVAST Software) -- C:\Users\Chris 2\Desktop\aswMBR2.exe
[2012/02/09 19:47:15 | 000,000,950 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/02/08 21:53:42 | 004,399,064 | R--- | M] (Swearware) -- C:\Users\Chris 2\Desktop\CombooooFixndnd.exe
[2012/02/08 21:47:12 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/02/08 15:03:27 | 000,055,384 | ---- | M] (Sunbelt Software) -- C:\Windows\SysNative\drivers\SBREDrv.sys
[2012/02/07 23:44:40 | 000,721,764 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/02/07 22:22:28 | 000,000,680 | ---- | M] () -- C:\Users\Chris 2\AppData\Local\d3d9caps.dat

========== Files Created - No Company Name ==========

[2012/02/10 20:26:12 | 000,001,787 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2012/02/10 19:57:37 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/02/10 19:57:37 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/02/10 19:57:37 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/02/10 19:57:37 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/02/10 19:57:37 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/02/09 22:28:46 | 733,228,612 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/02/09 20:20:57 | 000,000,512 | ---- | C] () -- C:\Users\Chris 2\Documents\MBR.dat
[2012/02/09 19:47:15 | 000,000,950 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2011/03/26 20:58:31 | 000,003,584 | ---- | C] () -- C:\Users\Chris 2\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/02/14 17:59:57 | 000,721,764 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/01/23 21:54:35 | 000,000,680 | ---- | C] () -- C:\Users\Chris 2\AppData\Local\d3d9caps.dat
[2010/02/15 18:14:42 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2010/02/15 18:14:11 | 000,107,612 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchema.bin
[2010/02/15 18:13:40 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/04/24 19:04:27 | 000,018,904 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchemaTrivial.bin
[2008/06/03 11:39:26 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008/05/23 20:58:25 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\MSVolumeAMP.dll
[2008/05/23 04:25:21 | 000,385,024 | ---- | C] () -- C:\Windows\SysWow64\DLEEinst.dll
[2008/05/23 04:25:20 | 000,344,064 | ---- | C] () -- C:\Windows\SysWow64\dleecomx.dll
[2008/05/23 04:25:19 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\dleejswr.dll
[2008/05/23 04:25:18 | 000,106,496 | ---- | C] () -- C:\Windows\SysWow64\dleeinsr.dll
[2008/05/23 04:25:18 | 000,036,864 | ---- | C] () -- C:\Windows\SysWow64\dleecur.dll
[2008/05/23 04:25:17 | 000,323,584 | ---- | C] () -- C:\Windows\SysWow64\dleeins.dll
[2008/05/23 04:25:17 | 000,262,144 | ---- | C] () -- C:\Windows\SysWow64\dleeinsb.dll
[2008/05/23 04:25:16 | 000,253,952 | ---- | C] () -- C:\Windows\SysWow64\dleecu.dll
[2008/05/23 04:25:16 | 000,090,112 | ---- | C] () -- C:\Windows\SysWow64\dleecub.dll
[2008/05/23 04:25:03 | 000,086,121 | ---- | C] () -- C:\Windows\SysWow64\DLEEcfg.dll
[2008/05/23 04:22:06 | 000,299,008 | ---- | C] () -- C:\Windows\SysWow64\DLEEsm.dll
[2008/05/23 04:22:06 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\DLEEsmr.dll
[2008/05/23 01:37:50 | 000,000,732 | ---- | C] () -- C:\Users\Chris 2\AppData\Local\d3d9caps64.dat
[2008/05/23 00:16:41 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2008/01/20 21:49:10 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2006/11/02 10:35:48 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 07:37:14 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2006/11/02 07:24:17 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2006/11/02 07:18:17 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2006/11/02 04:47:54 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin

========== Custom Scans ==========

< MD5 for: DXTMSFT.DLL >
[2010/01/25 17:29:18 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=10C2AB2455ED739C498D5038B9B51A7E -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21046_none_96444b2e9db6569e\dxtmsft.dll
[2009/12/18 08:09:10 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=219CA8898BACC69507948D2BB77691EA -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16982_none_f1aa32d33d19fc57\dxtmsft.dll
[2010/01/25 17:11:00 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=29165E3CEA84849F4EB1B6F8356CE89D -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_f27585ac560643ed\dxtmsft.dll
[2010/01/25 17:11:01 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=3540941826C7D9E8860245AC4A7451BB -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_f1de3ff53cf340cd\dxtmsft.dll
[2010/01/25 17:29:19 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=39F9718825BDC05D7BF31A4F32860173 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16851_none_95ab04e384a520d0\dxtmsft.dll
[2010/01/25 17:24:29 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=3D3B4C05B6E5F3C79894FDEC4510C0E0 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_f1f9e36f3cdd9e1c\dxtmsft.dll
[2010/01/25 17:24:28 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=60820DB8D0CFF2FD47155CE9439A6A8F -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_f283585c55fb7128\dxtmsft.dll
[2010/01/25 17:29:18 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=6FA3AF2E33263BB8BA56E7F872859A98 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16851_none_f1c9a0673d029206\dxtmsft.dll
[2009/03/08 06:38:04 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=72FEDB9CB7AD10AD7ACE2867FCABF4C0 -- C:\Windows\SysNative\dxtmsft.dll
[2009/03/08 06:38:04 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=72FEDB9CB7AD10AD7ACE2867FCABF4C0 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_8.0.6001.18702_none_d6d00ced4fccf3fa\dxtmsft.dll
[2010/03/09 11:49:34 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=73432756624987A88A4C60D973140F4B -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.17037_none_95c6807f848fb161\dxtmsft.dll
[2010/03/09 11:59:22 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=75938363EDE81422290F86250E9854B5 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21242_none_f25ee95656175cc6\dxtmsft.dll
[2009/04/24 18:46:58 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=781A21A173EE7F8AABB482904E3D937E -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20996_none_960e63709ddeaf11\dxtmsft.dll
[2010/01/25 17:29:17 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=7954B018D30B01CF9B89825368262867 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21046_none_f262e6b25613c7d4\dxtmsft.dll
[2009/12/18 07:21:18 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=8A9C4E4B38423176AA1A47E388327DF1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21184_none_96170cd09dd890db\dxtmsft.dll
[2009/04/24 18:46:59 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=8B0F7C68C96BBB5866191FC9CBA11A74 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16809_none_95e916cf84755fd3\dxtmsft.dll
[2010/03/09 11:26:33 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=95215DD62DEFEC2548DCE61B2FD8CDED -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21242_none_96404dd29db9eb90\dxtmsft.dll
[2009/12/18 08:11:20 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=9DD29BFDFD5F3B86B10D2CB80B94547A -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21184_none_f235a85456360211\dxtmsft.dll
[2010/01/25 17:24:30 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=9E77C6A77002C4EBB9F53246729700D9 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_95db47eb84802ce6\dxtmsft.dll
[2010/03/09 11:59:45 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=B492FF69D572D22035E4B293EB75A028 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.17037_none_f1e51c033ced2297\dxtmsft.dll
[2008/01/20 21:48:45 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=B68FCC1F8684AB3EC4BE4D0A2537D26D -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6001.18000_none_97c64f0f81a41267\dxtmsft.dll
[2009/04/24 18:46:58 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=BB41EC94D4AAD781917EA4554024F038 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16809_none_f207b2533cd2d109\dxtmsft.dll
[2008/01/20 21:47:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CEAC01AB6AB8BE66985D61BD77610A51 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6001.18000_none_f3e4ea933a01839d\dxtmsft.dll
[2010/01/25 17:11:00 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=CFB829FF0122D2ABF325CB39E98DE07A -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_9656ea289da8d2b7\dxtmsft.dll
[2009/12/18 07:47:39 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=D3E45A54C1927401A8F1BD9D53346BB6 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16982_none_958b974f84bc8b21\dxtmsft.dll
[2010/01/25 17:11:01 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=D795BC191B3E3F333AB76205D4E3497D -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_95bfa4718495cf97\dxtmsft.dll
[2009/04/24 18:46:57 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=DB43297EEA1F5AC1BB26FCD1D2F2B6FE -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20996_none_f22cfef4563c2047\dxtmsft.dll
[2010/01/25 17:24:29 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=FA821220FC5AD0C031556378DE38A668 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_9664bcd89d9dfff2\dxtmsft.dll
[2009/03/08 06:31:42 | 000,348,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\dxtmsft.dll
[2009/03/08 06:31:42 | 000,348,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_8.0.6001.18702_none_7ab17169976f82c4\dxtmsft.dll

< MD5 for: DXTRANS.DLL >
[2010/01/25 17:24:29 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=18869424D7C494EE2DB3A8FF56FB6248 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_9664bcd89d9dfff2\dxtrans.dll
[2010/01/25 17:24:29 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=1C60C7B8DDE1F470AEA86DC9EA30351B -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_f1f9e36f3cdd9e1c\dxtrans.dll
[2009/04/24 18:46:59 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=1D1FA18739919F1ACA9A9646123FA5D1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16809_none_95e916cf84755fd3\dxtrans.dll
[2010/01/25 17:11:01 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=2471FCF6D0A1EB6B243597AAB27A435A -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_f1de3ff53cf340cd\dxtrans.dll
[2009/04/24 18:46:58 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=36F4194F52DE96877675575785D71FFC -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20996_none_960e63709ddeaf11\dxtrans.dll
[2009/12/18 08:09:10 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=4619FBF915FBB26A95F6DD709D70465A -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16982_none_f1aa32d33d19fc57\dxtrans.dll
[2010/01/25 17:11:01 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=47646D338647AF7E961B5F84D2F4A17C -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_95bfa4718495cf97\dxtrans.dll
[2010/01/25 17:11:00 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=4CCA2A25F73DAFDC67B11D8AADB4F24C -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_9656ea289da8d2b7\dxtrans.dll
[2010/01/25 17:11:00 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=59096D239752477296E535DEEBD7B785 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_f27585ac560643ed\dxtrans.dll
[2010/03/09 11:59:22 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=5E9C5BA42434DAD433F1F06012FE391C -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21242_none_f25ee95656175cc6\dxtrans.dll
[2010/01/25 17:29:19 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=60A1A3DBBB4A1A1C13C64C5180ABFE7A -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16851_none_95ab04e384a520d0\dxtrans.dll
[2009/12/18 07:47:39 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=6CB4EA4DAAD697974C3DF945CBCB7D31 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16982_none_958b974f84bc8b21\dxtrans.dll
[2009/12/18 07:21:18 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=8ADA70D318AEC4CD90C91A2EA6A738B3 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21184_none_96170cd09dd890db\dxtrans.dll
[2010/01/25 17:24:28 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=8DB869DD3C65470A94B334A16704228B -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_f283585c55fb7128\dxtrans.dll
[2010/01/25 17:29:17 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=921F05CBDC9232360AE8BF03864F6EF4 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21046_none_f262e6b25613c7d4\dxtrans.dll
[2009/12/18 08:11:20 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=9284383FB1ABF8E6DCCFFAEE5D157440 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21184_none_f235a85456360211\dxtrans.dll
[2010/01/25 17:29:18 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=92E1CF32D214E333BDD9E6D4948441E7 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21046_none_96444b2e9db6569e\dxtrans.dll
[2009/04/24 18:46:58 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=9699D9C6A92D6609711605D988DED065 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16809_none_f207b2533cd2d109\dxtrans.dll
[2010/01/25 17:29:18 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=9DCCA7BF23DE81D4A48B35076766D9B3 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16851_none_f1c9a0673d029206\dxtrans.dll
[2008/01/20 21:47:55 | 000,310,784 | ---- | M] (Microsoft Corporation) MD5=BE57AAC556BCC2882FB7F36232377AC8 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6001.18000_none_f3e4ea933a01839d\dxtrans.dll
[2008/01/20 21:48:45 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=D12FEB0E3EA6063A65A5498ED90FD790 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6001.18000_none_97c64f0f81a41267\dxtrans.dll
[2010/03/09 11:49:34 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=E2CE9A15106F3A4CEAD4FDFB501C371B -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.17037_none_95c6807f848fb161\dxtrans.dll
[2009/03/08 06:37:51 | 000,318,464 | ---- | M] (Microsoft Corporation) MD5=EE15594454DE778F897547EEC4E042DE -- C:\Windows\SysNative\dxtrans.dll
[2009/03/08 06:37:51 | 000,318,464 | ---- | M] (Microsoft Corporation) MD5=EE15594454DE778F897547EEC4E042DE -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_8.0.6001.18702_none_d6d00ced4fccf3fa\dxtrans.dll
[2010/03/09 11:26:33 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=EE7EE3212EEE955B27BBB408C449CED7 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21242_none_96404dd29db9eb90\dxtrans.dll
[2010/01/25 17:24:30 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=EF0595F7969D751ECDD00F2FCF0FF60C -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_95db47eb84802ce6\dxtrans.dll
[2009/04/24 18:46:57 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=F6E306E675945094C8BEC8916EA3FB4D -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20996_none_f22cfef4563c2047\dxtrans.dll
[2010/03/09 11:59:46 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=FCBBFD3E0A53466AFC3AC580F007DA16 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.17037_none_f1e51c033ced2297\dxtrans.dll
[2009/03/08 06:31:37 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\dxtrans.dll
[2009/03/08 06:31:37 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_8.0.6001.18702_none_7ab17169976f82c4\dxtrans.dll

< MD5 for: IEFRAME.DLL >
[2008/01/20 21:48:30 | 007,004,672 | ---- | M] (Microsoft Corporation) MD5=00135B3F82BEB3DEC93D0EFC9525E7BF -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18000_none_c0c10823667c7a7f\ieframe.dll
[2010/12/18 01:22:10 | 011,080,704 | ---- | M] (Microsoft Corporation) MD5=001C55FA3A4BE6AA88AE15BDC47F9FB0 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19019_none_47899d01c3ec7488\ieframe.dll
[2009/12/18 08:01:57 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=006A45E2D2B5C855E6553AA09128BBCE -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18385_none_6450f463ae5b5ef9\ieframe.dll
[2010/11/02 02:37:13 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=01DE30569C6D7B80E2E12402BDA95E0A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23091_none_a3d351ba95af9d31\ieframe.dll
[2010/01/25 17:28:52 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=02EECD62E27F7A7AD54CA09C50E8BFC8 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18248_none_647f330bae383e13\ieframe.dll
[2010/01/25 17:28:51 | 007,004,672 | ---- | M] (Microsoft Corporation) MD5=047F1D2ACC70635D71B9467DB4ABF201 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18248_none_c09dce8f6695af49\ieframe.dll
[2010/06/26 01:48:16 | 011,078,656 | ---- | M] (Microsoft Corporation) MD5=0872F3C773A8D8B6984EE27002ADFB7A -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23040_none_47e9c588dd2a86ef\ieframe.dll
[2009/12/18 07:48:22 | 006,067,200 | ---- | M] (Microsoft Corporation) MD5=096C5E4BD9AC53EEDE744609ADC8C5B7 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16982_none_6267b4dfb1378203\ieframe.dll
[2010/01/25 17:24:25 | 007,067,136 | ---- | M] (Microsoft Corporation) MD5=09C852F7080FBFAC1A0DD88CE8E4EB1A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16916_none_bed600ff695894fe\ieframe.dll
[2010/09/08 01:21:09 | 011,082,240 | ---- | M] (Microsoft Corporation) MD5=0C0AEC386928B7A1485C7C966E10A44D -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23067_none_47db27b6dd347032\ieframe.dll
[2011/09/30 18:20:38 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=0C8752BA4A50FD73A9D4146E5CE4BC2D -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19154_none_a377f9497c6ed3f6\ieframe.dll
[2010/05/04 14:12:26 | 007,006,208 | ---- | M] (Microsoft Corporation) MD5=0F6E1C184A510B48275698F22386B70E -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18470_none_c075604766b532b2\ieframe.dll
[2009/04/24 18:46:37 | 007,006,720 | ---- | M] (Microsoft Corporation) MD5=125323F03C4D3DC2CCA5EC95406EF73C -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22355_none_c1199a907fbe1eff\ieframe.dll
[2011/09/30 18:55:59 | 012,478,976 | ---- | M] (Microsoft Corporation) MD5=18920C2317E51F0494838781591B91CE -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23250_none_a3fd94ec95900e64\ieframe.dll
[2011/05/28 02:05:23 | 011,084,288 | ---- | M] (Microsoft Corporation) MD5=1A3BF4DCAB7EB64B6E7DBB826653D585 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23181_none_47bf8808dd4a0d31\ieframe.dll
[2010/12/18 02:11:33 | 011,082,752 | ---- | M] (Microsoft Corporation) MD5=1FD68562A887EBD554D464AA6F5DE426 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23111_none_480b377cdd11499a\ieframe.dll
[2009/12/18 08:12:00 | 007,072,768 | ---- | M] (Microsoft Corporation) MD5=20A9771D52FAA29AC9AB39E104F8CEAA -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21184_none_bf11c5e482b0f8f3\ieframe.dll
[2010/01/25 17:10:56 | 006,068,736 | ---- | M] (Microsoft Corporation) MD5=2101D2C8E014967A2C3C3A2C09E25399 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21023_none_633307b8ca23c999\ieframe.dll
[2010/01/25 17:23:55 | 007,005,184 | ---- | M] (Microsoft Corporation) MD5=21AB88548BDC3F7E918374D612DF7B7A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18319_none_c0bf4083667c71f4\ieframe.dll
[2010/05/04 13:25:05 | 006,072,832 | ---- | M] (Microsoft Corporation) MD5=23F59613C195309FE3911EB12314117C -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22685_none_64da94fac778f911\ieframe.dll
[2010/05/04 14:38:41 | 007,008,256 | ---- | M] (Microsoft Corporation) MD5=243B7ECF777E03EF75592159D9A5E034 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22398_none_c2d7d3587d022761\ieframe.dll
[2009/04/24 18:46:54 | 007,067,136 | ---- | M] (Microsoft Corporation) MD5=25F2725547E948317651434F7C6D9E67 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16809_none_bee3cfe3694dc7eb\ieframe.dll
[2010/01/25 17:29:12 | 007,071,232 | ---- | M] (Microsoft Corporation) MD5=26E07B8D8C56A712D9C5D812F09016FC -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21046_none_bf3f0442828ebeb6\ieframe.dll
[2011/07/23 06:35:16 | 011,083,776 | ---- | M] (Microsoft Corporation) MD5=26EAB980E73ACF670861E91D0DFE2F44 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23216_none_48103ad4dd0cc574\ieframe.dll
[2009/04/24 18:46:56 | 006,066,688 | ---- | M] (Microsoft Corporation) MD5=27EC1F700136383F3947560BEEB0993A -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16809_none_62c5345fb0f056b5\ieframe.dll
[2010/01/25 17:10:58 | 006,066,176 | ---- | M] (Microsoft Corporation) MD5=2976043E4EC2110C7CCED1A070A88F48 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16830_none_629bc201b110c679\ieframe.dll
[2010/01/25 17:10:40 | 006,070,784 | ---- | M] (Microsoft Corporation) MD5=2CD8EE93FF9AB670F9C7C7DDEE389276 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22389_none_64de9070c77566f8\ieframe.dll
[2009/12/16 06:42:09 | 006,079,488 | ---- | M] (Microsoft Corporation) MD5=2CFFD86F80C5EF359D4913C468ED8BC4 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18167_none_664f089dab6fac10\ieframe.dll
[2009/12/18 07:55:56 | 007,008,768 | ---- | M] (Microsoft Corporation) MD5=304843D4AF7A3B966066518F9F9B9659 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22585_none_c0f92e987fd66d20\ieframe.dll
[2010/01/25 17:24:10 | 006,079,488 | ---- | M] (Microsoft Corporation) MD5=31F2D00E83230909659232FCFF5B12F1 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18100_none_6688e61fab455309\ieframe.dll
[2010/03/09 11:50:34 | 006,067,200 | ---- | M] (Microsoft Corporation) MD5=41E59135D4532EC9743430A5C148DEAA -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.17037_none_62a29e0fb10aa843\ieframe.dll
[2009/04/24 18:46:52 | 007,070,720 | ---- | M] (Microsoft Corporation) MD5=4289146859FA86DD8405CE8F372EF725 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.20996_none_bf091c8482b71729\ieframe.dll
[2010/09/08 02:08:21 | 012,476,416 | ---- | M] (Microsoft Corporation) MD5=44316EC77E4EE42CAC889B5476DC9166 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23067_none_a3f9c33a9591e168\ieframe.dll
[2010/05/04 13:37:46 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=454BD137915CB4A6E26880873D8B2191 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18470_none_6456c4c3ae57c17c\ieframe.dll
[2011/11/03 02:44:04 | 012,478,464 | ---- | M] (Microsoft Corporation) MD5=4715D1A7EE849DDC2CEEE575FA1D8B0F -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23266_none_a3f8c6bc9592c25f\ieframe.dll
[2011/02/22 01:16:39 | 011,080,704 | ---- | M] (Microsoft Corporation) MD5=4F0A36761653F62FEA96DB79FE15485F -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19048_none_47682cf3c405af04\ieframe.dll
[2010/01/25 17:10:55 | 007,070,720 | ---- | M] (Microsoft Corporation) MD5=50C5860569ED5FC00E8069EB69EA58A7 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21023_none_bf51a33c82813acf\ieframe.dll
[2011/09/30 18:41:50 | 011,083,776 | ---- | M] (Microsoft Corporation) MD5=51584B59A2DC807C2F4F6BCAE5A5E150 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23250_none_47def968dd329d2e\ieframe.dll
[2009/04/24 18:46:40 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=51D9683438A5E0852382353D06B0D7EF -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18203_none_64a57149ae1c4f9c\ieframe.dll
[2009/12/16 07:12:22 | 007,007,232 | ---- | M] (Microsoft Corporation) MD5=5373E1624996E4069D5384799DA3EBDC -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18167_none_c26da42163cd1d46\ieframe.dll
[2010/01/25 17:23:53 | 007,008,768 | ---- | M] (Microsoft Corporation) MD5=5458AD42A598CDD76FD63FABD6F5250C -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22508_none_c152aed67f92d99d\ieframe.dll
[2010/01/25 17:10:41 | 007,005,184 | ---- | M] (Microsoft Corporation) MD5=55A8AB375DE8B724ED217F7DAF25EF26 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18226_none_c0b16dd3668744b9\ieframe.dll
[2009/12/17 06:54:44 | 007,008,256 | ---- | M] (Microsoft Corporation) MD5=587745E21DBA0ABBB682079D16E81BD3 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22290_none_c2cfcf227d095f82\ieframe.dll
[2010/01/25 17:24:09 | 007,006,208 | ---- | M] (Microsoft Corporation) MD5=5A35BDE5AD6648618601889E90639876 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18100_none_c2a781a363a2c43f\ieframe.dll
[2011/05/28 01:04:02 | 011,081,728 | ---- | M] (Microsoft Corporation) MD5=5BB1B169530E1D48AB302ED086F5ECF9 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19088_none_473ced43c4261ec8\ieframe.dll
[2010/06/26 01:25:53 | 012,473,344 | ---- | M] (Microsoft Corporation) MD5=5CECF571861BD5220D2840F3936BC6DA -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18943_none_a381eee37c676e45\ieframe.dll
[2010/03/09 11:27:24 | 006,070,784 | ---- | M] (Microsoft Corporation) MD5=5CEEC8AA8397F59E5DC479939EF4B9F4 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21242_none_631c6b62ca34e272\ieframe.dll
[2010/05/04 14:39:08 | 007,006,208 | ---- | M] (Microsoft Corporation) MD5=5DD9BAF2DF6D2349A25125B852F8945C -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18255_none_c276755f63c6cbce\ieframe.dll
[2010/11/02 02:07:02 | 011,082,752 | ---- | M] (Microsoft Corporation) MD5=6044E16C44573794E2B270CB3AB4C16F -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23091_none_47b4b636dd522bfb\ieframe.dll
[2009/12/18 05:15:54 | 006,072,832 | ---- | M] (Microsoft Corporation) MD5=611E0483F2C99B456532472C98BB2106 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22585_none_64da9314c778fbea\ieframe.dll
[2010/05/04 14:10:47 | 006,080,000 | ---- | M] (Microsoft Corporation) MD5=61A7177D77D2BB2E9D70B0CD023CA035 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18255_none_6657d9dbab695a98\ieframe.dll
[2010/12/18 02:49:07 | 012,476,416 | ---- | M] (Microsoft Corporation) MD5=625ED80E39E92F135D080B6A3CAC3AEA -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23111_none_a429d300956ebad0\ieframe.dll
[2010/01/25 17:24:06 | 007,007,744 | ---- | M] (Microsoft Corporation) MD5=6353B0B9478D3912F3EACCCABFBA9EBB -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22212_none_c3284f167cc6b2a8\ieframe.dll
[2009/12/18 08:08:04 | 007,005,696 | ---- | M] (Microsoft Corporation) MD5=6570949C5B88E82D3BE1BDAC5A6581A0 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18385_none_c06f8fe766b8d02f\ieframe.dll
[2010/03/09 12:00:00 | 007,073,792 | ---- | M] (Microsoft Corporation) MD5=67CBAB630FF68DBD3F6F2B43F5091A71 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21242_none_bf3b06e6829253a8\ieframe.dll
[2010/01/25 17:28:50 | 006,071,296 | ---- | M] (Microsoft Corporation) MD5=6849FDB2BA739EF969E3B80A8BAAA73C -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22418_none_65294180c73d8731\ieframe.dll
[2010/11/02 01:23:34 | 012,474,368 | ---- | M] (Microsoft Corporation) MD5=6D5B662C18571849BD7F015414C0E04B -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18999_none_a351e1037c8a9204\ieframe.dll
[2009/03/08 06:39:47 | 011,063,808 | ---- | M] (Microsoft Corporation) MD5=729DA5D23A9AD20A6AA353156A126420 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18702_none_478d8ef9c3ea79a6\ieframe.dll
[2010/01/25 17:24:24 | 006,070,784 | ---- | M] (Microsoft Corporation) MD5=72B085F6F15935E7C9160719FAEEF8C5 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21116_none_6340da68ca18f6d4\ieframe.dll
[2009/12/18 07:22:15 | 006,071,296 | ---- | M] (Microsoft Corporation) MD5=7360F9C397DFC0770938F562599935B3 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21184_none_62f32a60ca5387bd\ieframe.dll
[2010/01/25 17:29:15 | 007,067,136 | ---- | M] (Microsoft Corporation) MD5=7784D98EB73E63D3B6ABFF8ABDCEEFD6 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16851_none_bea5bdf7697d88e8\ieframe.dll
[2011/07/23 06:23:28 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=77D13C5C6BF96A50A7206987ED858983 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19120_none_a39467e57c5a1ac7\ieframe.dll
[2010/01/25 17:10:57 | 007,067,648 | ---- | M] (Microsoft Corporation) MD5=7871F2DD970E9F65349F47F13510EDF3 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16830_none_beba5d85696e37af\ieframe.dll
[2010/09/08 00:56:52 | 011,080,192 | ---- | M] (Microsoft Corporation) MD5=7AEBF0E6158B66CDF0E5859326CA9E82 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18975_none_4744e42fc4208390\ieframe.dll
[2010/06/26 02:04:15 | 012,471,296 | ---- | M] (Microsoft Corporation) MD5=7C0CAC0A7AE41D7F5E87697FCAD4D3D4 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23040_none_a408610c9587f825\ieframe.dll
[2011/02/22 02:50:21 | 012,477,440 | ---- | M] (Microsoft Corporation) MD5=7ED9F1D161314B9CFBD8F3F6BF95CE9C -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23143_none_a40b63d095854151\ieframe.dll
[2010/01/25 17:23:54 | 006,072,832 | ---- | M] (Microsoft Corporation) MD5=805F6270BA991395EA943738E954E0AC -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22508_none_65341352c7356867\ieframe.dll
[2008/01/20 21:49:15 | 006,068,736 | ---- | M] (Microsoft Corporation) MD5=8320A8937995094D00082D7CE97A7AB1 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18000_none_64a26c9fae1f0949\ieframe.dll
[2010/03/11 11:49:51 | 006,081,536 | ---- | M] (Microsoft Corporation) MD5=839E0524B941CDB65A8F99975849ED7A -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22360_none_66d1a548c49397a0\ieframe.dll
[2010/05/04 13:56:14 | 007,008,768 | ---- | M] (Microsoft Corporation) MD5=83AD0E5179FAED65620F52B33FE61FF5 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22685_none_c0f9307e7fd66a47\ieframe.dll
[2011/02/22 02:13:11 | 011,082,752 | ---- | M] (Microsoft Corporation) MD5=855B822C6C390BC30ED36C08518334C4 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23143_none_47ecc84cdd27d01b\ieframe.dll
[2010/01/25 17:29:16 | 006,066,176 | ---- | M] (Microsoft Corporation) MD5=85D2C137B1A1B4F5E8002B8CB1D071B1 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16851_none_62872273b12017b2\ieframe.dll
[2010/03/11 12:07:52 | 007,008,768 | ---- | M] (Microsoft Corporation) MD5=902CFB130C5459569FF2E086CDDF34D7 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22653_none_c1179fae7fbfe3c6\ieframe.dll
[2010/03/11 09:55:17 | 006,072,832 | ---- | M] (Microsoft Corporation) MD5=93E8F3463E8AA9928F89CD9E4658D633 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22653_none_64f9042ac7627290\ieframe.dll
[2010/01/25 17:24:08 | 006,081,024 | ---- | M] (Microsoft Corporation) MD5=9DF8942EC241CA1AD2639C0F31314865 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22212_none_6709b392c4694172\ieframe.dll
[2010/03/09 11:25:23 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=A794BB32A418603406D32AC46D1DDEF3 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18444_none_647b35afae3bd305\ieframe.dll
[2009/12/18 08:09:53 | 007,071,232 | ---- | M] (Microsoft Corporation) MD5=A98F3541B8E29AEFF4E4FC4241BC834A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16982_none_be8650636994f339\ieframe.dll
[2009/12/17 06:59:33 | 006,081,536 | ---- | M] (Microsoft Corporation) MD5=B21CFE3DF053CAE884D1068D40039274 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22290_none_66b1339ec4abee4c\ieframe.dll
[2010/11/02 00:57:10 | 011,080,704 | ---- | M] (Microsoft Corporation) MD5=B49453BBD9D0D2851613D7B443FBF682 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18999_none_4733457fc42d20ce\ieframe.dll
[2011/05/28 01:23:28 | 012,477,440 | ---- | M] (Microsoft Corporation) MD5=B626D5F61BA428DAC1307B82D6715DB6 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19088_none_a35b88c77c838ffe\ieframe.dll
[2010/05/04 00:55:41 | 011,076,096 | ---- | M] (Microsoft Corporation) MD5=B81B1FE1B9038D7D01227D700B1DCD6B -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18928_none_477df4a9c3f543e0\ieframe.dll
[2010/05/04 14:34:20 | 006,081,536 | ---- | M] (Microsoft Corporation) MD5=BA4444695B01E42FD559E0C4524310D6 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22398_none_66b937d4c4a4b62b\ieframe.dll
[2011/05/28 02:39:57 | 012,478,464 | ---- | M] (Microsoft Corporation) MD5=BCC39BC6A89683C3A06E5A0A88DD0B85 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23181_none_a3de238c95a77e67\ieframe.dll
[2009/04/24 18:46:39 | 007,004,160 | ---- | M] (Microsoft Corporation) MD5=BEC47FA803DFBE08E8F740A5EDDCA493 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18203_none_c0c40ccd6679c0d2\ieframe.dll
[2011/11/03 01:49:34 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=C70C65A2E532AB506475A57D5973C753 -- C:\Windows\SysNative\ieframe.dll
[2011/11/03 01:49:34 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=C70C65A2E532AB506475A57D5973C753 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19170_none_a35e58497c82a67c\ieframe.dll
[2010/05/04 01:51:47 | 012,468,736 | ---- | M] (Microsoft Corporation) MD5=CC473A6C4CBB6F1EE614855D889CE2F0 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18928_none_a39c902d7c52b516\ieframe.dll
[2010/05/04 01:30:16 | 011,078,144 | ---- | M] (Microsoft Corporation) MD5=CDCD221996D664E4E2FF618ED446F4A2 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23019_none_481337e6dd0a172b\ieframe.dll
[2010/03/09 11:03:44 | 007,007,232 | ---- | M] (Microsoft Corporation) MD5=CF4E0D73EA56C2FBAE839396026FBC6A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18226_none_c297e56d63ad9152\ieframe.dll
[2010/01/25 17:28:49 | 007,007,744 | ---- | M] (Microsoft Corporation) MD5=D03BA2DA413A906200D3E9DFCB6787A8 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22418_none_c147dd047f9af867\ieframe.dll
[2009/04/11 01:28:19 | 006,079,488 | ---- | M] (Microsoft Corporation) MD5=D0DB6CA4E21BE6809F356C90BBDE8A66 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18005_none_668de5abab40d495\ieframe.dll
[2010/01/25 17:24:27 | 006,067,200 | ---- | M] (Microsoft Corporation) MD5=D80F2A9880B119CC31217FFB6CDDE251 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16916_none_62b7657bb0fb23c8\ieframe.dll
[2011/11/03 02:26:09 | 011,083,776 | ---- | M] (Microsoft Corporation) MD5=DA8D611B2DECB8F3846CD18A459D66D1 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23266_none_47da2b38dd355129\ieframe.dll
[2010/03/09 10:39:49 | 006,080,000 | ---- | M] (Microsoft Corporation) MD5=DC81376E63AE926829541C97F0DD2F16 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18226_none_667949e9ab50201c\ieframe.dll
[2010/01/25 17:10:39 | 007,006,720 | ---- | M] (Microsoft Corporation) MD5=DD8EA3EF4271EC7E122D624B34233F14 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22389_none_c0fd2bf47fd2d82e\ieframe.dll
[2010/09/08 01:36:23 | 012,474,368 | ---- | M] (Microsoft Corporation) MD5=E0E100F03FA2C923BB1975FD1819A0A9 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18975_none_a3637fb37c7df4c6\ieframe.dll
[2010/01/25 17:23:56 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=E2ED81875127B97CE803E139EE609F81 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18319_none_64a0a4ffae1f00be\ieframe.dll
[2010/12/18 01:50:14 | 012,474,368 | ---- | M] (Microsoft Corporation) MD5=E461E6079A16F13CA925BD0DEBC148D8 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19019_none_a3a838857c49e5be\ieframe.dll
[2010/01/25 17:29:13 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=E76D2A320CD510178909B3A65433619E -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21046_none_632068beca314d80\ieframe.dll
[2011/02/22 01:46:18 | 012,474,880 | ---- | M] (Microsoft Corporation) MD5=E91C418111CEDCC8DC4A1848B62C82FF -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19048_none_a386c8777c63203a\ieframe.dll
[2010/03/11 14:02:08 | 007,008,256 | ---- | M] (Microsoft Corporation) MD5=E9DC65CF6574ABAF31BF9EF71A601537 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22360_none_c2f040cc7cf108d6\ieframe.dll
[2010/01/25 17:24:23 | 007,073,280 | ---- | M] (Microsoft Corporation) MD5=EB7A1AFFE93B8A6D1153044DB17AF138 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21116_none_bf5f75ec8276680a\ieframe.dll
[2009/04/24 18:46:53 | 006,068,736 | ---- | M] (Microsoft Corporation) MD5=F038B3611C7482AA0095DAC114BB9649 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.20996_none_62ea8100ca59a5f3\ieframe.dll
[2009/04/11 02:11:15 | 007,005,184 | ---- | M] (Microsoft Corporation) MD5=F1D7AB9D524EF28EC69A147F99ECB8A6 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18005_none_c2ac812f639e45cb\ieframe.dll
[2010/03/09 11:50:34 | 007,005,696 | ---- | M] (Microsoft Corporation) MD5=F6766C229ACD9250966A2041D9D7EE08 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18444_none_c099d1336699443b\ieframe.dll
[2009/03/08 06:44:16 | 012,454,400 | ---- | M] (Microsoft Corporation) MD5=F7CC713935F3055CFE2540244FBA26F0 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18702_none_a3ac2a7d7c47eadc\ieframe.dll
[2011/07/23 07:03:32 | 012,478,464 | ---- | M] (Microsoft Corporation) MD5=F821DD7A553557EBDA4EC945E2EB63FC -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23216_none_a42ed658956a36aa\ieframe.dll
[2010/06/26 01:02:14 | 011,077,120 | ---- | M] (Microsoft Corporation) MD5=F8427C8E999FBCB98575C705A464F854 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18943_none_4763535fc409fd0f\ieframe.dll
[2009/04/24 18:46:38 | 006,070,784 | ---- | M] (Microsoft Corporation) MD5=F8B2EF31C8BBDE60891B5EF7E3D6063E -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22355_none_64faff0cc760adc9\ieframe.dll
[2011/07/23 05:59:34 | 011,081,728 | ---- | M] (Microsoft Corporation) MD5=F8EA880F59679BFCF18BC11831800035 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19120_none_4775cc61c3fca991\ieframe.dll
[2011/09/30 18:01:33 | 011,081,728 | ---- | M] (Microsoft Corporation) MD5=FA2B3C1DCC77AE9ED3574C5ADC84D1E9 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19154_none_47595dc5c41162c0\ieframe.dll
[2010/01/25 17:10:42 | 006,068,736 | ---- | M] (Microsoft Corporation) MD5=FA7925AA92F801F01F4D1084C0D3A6C2 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18226_none_6492d24fae29d383\ieframe.dll
[2010/03/09 12:00:50 | 007,071,232 | ---- | M] (Microsoft Corporation) MD5=FE00A9B7D32FA28887BF13D4E9F8321A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.17037_none_bec1399369681979\ieframe.dll
[2010/05/04 01:55:35 | 012,470,272 | ---- | M] (Microsoft Corporation) MD5=FF75A0E20D8D7B0C117CF89E179C926F -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23019_none_a431d36a95678861\ieframe.dll
[2011/11/03 01:17:07 | 011,081,728 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\ieframe.dll
[2011/11/03 01:17:07 | 011,081,728 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19170_none_473fbcc5c4253546\ieframe.dll

< MD5 for: MSXML3.DLL >
[2009/08/11 11:56:29 | 001,875,968 | ---- | M] (Microsoft Corporation) MD5=05A1B8045E7DC543B454D23215143A0A -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22492_none_e4b72fe3689858d8\msxml3.dll
[2010/06/11 11:08:18 | 001,875,456 | ---- | M] (Microsoft Corporation) MD5=0B32A76E0D5034A3020BBF32A5EC0E63 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18490_none_e42b946a4f7c8387\msxml3.dll
[2010/06/11 10:30:23 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=12A4E29C7F0C1B1E89541830FD0E52F1 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18490_none_880cf8e6971f1251\msxml3.dll
[2010/06/11 10:53:24 | 001,875,968 | ---- | M] (Microsoft Corporation) MD5=130AFCF74D4904DD29BF09CE117C7F1B -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22709_none_e51f86e768490635\msxml3.dll
[2009/04/24 19:08:29 | 001,809,408 | ---- | M] (Microsoft Corporation) MD5=144E16BA9F7AA2C596106DE7A340C4E0 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22258_none_e4e86d83687286d0\msxml3.dll
[2009/04/11 02:11:16 | 001,804,288 | ---- | M] (Microsoft Corporation) MD5=1BB8A40C45A577B6901A4A21EDDE1B27 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18005_none_e678552a4c555ebe\msxml3.dll
[2010/06/11 11:15:06 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=2B338AB80CF27D14CB75D94E294A1AB8 -- C:\Windows\SysWOW64\msxml3.dll
[2010/06/11 11:15:06 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=2B338AB80CF27D14CB75D94E294A1AB8 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18269_none_8a1cdf129424f4d8\msxml3.dll
[2010/06/11 11:31:45 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=3DC3074B0A736E086AC66DE6AB0786BA -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22422_none_8acabb6dad2870a4\msxml3.dll
[2009/08/11 12:06:23 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=484EBDDCC552DF7DF8817C4E7B0A60EA -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18087_none_e623d65e4c9470f4\msxml3.dll
[2010/06/11 11:46:28 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=55B30E7DFB41023ECB804B93FB0574EF -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22422_none_e6e956f16585e1da\msxml3.dll
[2009/08/11 12:07:46 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=5789DF18FFA85B2C52C91680B5563C6D -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22196_none_e6a1a2f365bb1358\msxml3.dll
[2009/04/11 01:28:22 | 001,183,232 | ---- | M] (Microsoft Corporation) MD5=5942F272BBEF5A77BF1DCE13BB5FAC8E -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18005_none_8a59b9a693f7ed88\msxml3.dll
[2008/01/20 21:48:11 | 001,807,360 | ---- | M] (Microsoft Corporation) MD5=7C17F44B45BA576E5DA83AA8FD5FD98D -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18000_none_e48cdc1e4f339372\msxml3.dll
[2009/08/11 11:58:29 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=8A728F413C953A2CD9ABA02C0D21A7F0 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22196_none_8a83076fad5da222\msxml3.dll
[2009/04/24 19:08:31 | 001,194,496 | ---- | M] (Microsoft Corporation) MD5=8FC34AF6DA61DF291FB48DACECB8AF83 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16745_none_8661c59c99cb7ce9\msxml3.dll
[2008/01/20 21:48:59 | 001,190,400 | ---- | M] (Microsoft Corporation) MD5=8FCDFB955F5BFD05E45C035A5FD2B7AB -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18000_none_886e409a96d6223c\msxml3.dll
[2009/08/10 07:51:16 | 001,260,032 | ---- | M] (Microsoft Corporation) MD5=91070AD16D21818E4E1A46605479B2C2 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.21103_none_87147d71b2caa7d1\msxml3.dll
[2010/06/11 11:38:10 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=9F6CDCE3281466C6E6FFA57E8F23BFC1 -- C:\Windows\SysNative\msxml3.dll
[2010/06/11 11:38:10 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=9F6CDCE3281466C6E6FFA57E8F23BFC1 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18269_none_e63b7a964c82660e\msxml3.dll
[2009/08/11 10:25:41 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=A858B6604E4074233ADB3EB3FAF632E9 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22492_none_8898945fb03ae7a2\msxml3.dll
[2009/04/24 19:08:30 | 001,838,080 | ---- | M] (Microsoft Corporation) MD5=A96FB36114F456DA11F413032325F29B -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.20910_none_e3256e236b32b88a\msxml3.dll
[2009/04/24 19:08:29 | 001,191,936 | ---- | M] (Microsoft Corporation) MD5=B1ABC3B1953BE70FE78045C401A03B50 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22258_none_88c9d1ffb015159a\msxml3.dll
[2009/08/10 06:00:37 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=B9CA2EA9DCA1A0EEE34FA806BBCF7A40 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18306_none_8874480896d0b1bb\msxml3.dll
[2010/06/11 10:25:07 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=C25D39750D692573AF2153E0E6E03F5D -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22709_none_8900eb63afeb94ff\msxml3.dll
[2009/04/24 19:08:30 | 001,191,936 | ---- | M] (Microsoft Corporation) MD5=C41551DD53FC9B7BE77AC5901E640E16 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18136_none_8853d47896e90b40\msxml3.dll
[2009/08/10 08:05:23 | 001,260,032 | ---- | M] (Microsoft Corporation) MD5=C72DC4848F94A84BDBAE3B1080086316 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16903_none_868b088499acd4c5\msxml3.dll
[2009/04/24 19:08:31 | 001,837,568 | ---- | M] (Microsoft Corporation) MD5=CE87976751535C81629643EC22DDDD5A -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16745_none_e28061205228ee1f\msxml3.dll
[2009/08/10 08:21:02 | 001,902,592 | ---- | M] (Microsoft Corporation) MD5=D7E0CB9A20C07A5677CE250E279D6693 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.21103_none_e33318f56b281907\msxml3.dll
[2009/08/10 09:09:07 | 001,875,456 | ---- | M] (Microsoft Corporation) MD5=E21EAAA0503922DE65AAC897BF756CC2 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18306_none_e492e38c4f2e22f1\msxml3.dll
[2009/08/11 11:44:26 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=E82AAC9B68DD4345821C80B111691F10 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18087_none_8a053ada9436ffbe\msxml3.dll
[2009/08/10 08:17:13 | 001,902,080 | ---- | M] (Microsoft Corporation) MD5=F27925A124C3F7CA41BB427C57CD450B -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16903_none_e2a9a408520a45fb\msxml3.dll
[2009/04/24 19:08:30 | 001,194,496 | ---- | M] (Microsoft Corporation) MD5=F747633B7D3BCC9950497AA1E8E4BF76 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.20910_none_8706d29fb2d54754\msxml3.dll
[2009/04/24 19:08:29 | 001,809,408 | ---- | M] (Microsoft Corporation) MD5=F87EC09D340A5C088BE2805501B024E4 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18136_none_e4726ffc4f467c76\msxml3.dll

< >

========== Alternate Data Streams ==========

@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:CA0CE093

< End of report >

#10
RKinner

Posted 12 February 2012 - 12:22 AM

Malware Expert

Expert
24,624 posts

Start, All Programs, Accessories, right click on Command Prompt and Run as Administrator, Continue. Type with an Enter after each line:


cd  \windows\logs\cbs

copy  cbs.log  cbs.old

del  cbs.log

sfc  /scannow

findstr  /c:"[SR]"  cbs.log  >  junk.txt

attach the file \windows\logs\cbs\junk.txt to your next reply.

Then let's run the Custom OTL again to see if that helped.

Copy the text in the code box:


/md5start
dxtmsft.dll
dxtrans.dll
ieframe.dll
msxml3.dll
/md5stop
%systemroot%\system32\*.dll /lockedfiles

#11
baseballucdoy

Posted 12 February 2012 - 11:51 AM

Member

Topic Starter
Member
11 posts

2012-02-12 12:26:12, Info CSI 00000006 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:12, Info CSI 00000007 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:13, Info CSI 00000009 [SR] Verify complete
2012-02-12 12:26:13, Info CSI 0000000a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:13, Info CSI 0000000b [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:14, Info CSI 0000000d [SR] Verify complete
2012-02-12 12:26:14, Info CSI 0000000e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:14, Info CSI 0000000f [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:15, Info CSI 00000011 [SR] Verify complete
2012-02-12 12:26:15, Info CSI 00000012 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:15, Info CSI 00000013 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:16, Info CSI 00000015 [SR] Verify complete
2012-02-12 12:26:17, Info CSI 00000016 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:17, Info CSI 00000017 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:18, Info CSI 00000019 [SR] Verify complete
2012-02-12 12:26:18, Info CSI 0000001a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:18, Info CSI 0000001b [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:19, Info CSI 0000001d [SR] Verify complete
2012-02-12 12:26:19, Info CSI 0000001e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:19, Info CSI 0000001f [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:20, Info CSI 00000021 [SR] Verify complete
2012-02-12 12:26:20, Info CSI 00000022 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:20, Info CSI 00000023 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:21, Info CSI 00000025 [SR] Verify complete
2012-02-12 12:26:22, Info CSI 00000026 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:22, Info CSI 00000027 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:22, Info CSI 00000029 [SR] Verify complete
2012-02-12 12:26:23, Info CSI 0000002a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:23, Info CSI 0000002b [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:24, Info CSI 0000002d [SR] Verify complete
2012-02-12 12:26:24, Info CSI 0000002e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:24, Info CSI 0000002f [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:25, Info CSI 00000031 [SR] Verify complete
2012-02-12 12:26:25, Info CSI 00000032 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:25, Info CSI 00000033 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:26, Info CSI 00000035 [SR] Verify complete
2012-02-12 12:26:26, Info CSI 00000036 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:26, Info CSI 00000037 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:27, Info CSI 00000039 [SR] Verify complete
2012-02-12 12:26:27, Info CSI 0000003a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:27, Info CSI 0000003b [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:28, Info CSI 0000003d [SR] Verify complete
2012-02-12 12:26:28, Info CSI 0000003e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:28, Info CSI 0000003f [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:29, Info CSI 00000041 [SR] Verify complete
2012-02-12 12:26:29, Info CSI 00000042 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:29, Info CSI 00000043 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:30, Info CSI 00000045 [SR] Verify complete
2012-02-12 12:26:31, Info CSI 00000046 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:31, Info CSI 00000047 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:32, Info CSI 00000049 [SR] Verify complete
2012-02-12 12:26:32, Info CSI 0000004a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:32, Info CSI 0000004b [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:33, Info CSI 0000004d [SR] Verify complete
2012-02-12 12:26:33, Info CSI 0000004e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:33, Info CSI 0000004f [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:34, Info CSI 00000051 [SR] Verify complete
2012-02-12 12:26:34, Info CSI 00000052 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:34, Info CSI 00000053 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:35, Info CSI 00000055 [SR] Verify complete
2012-02-12 12:26:35, Info CSI 00000056 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:35, Info CSI 00000057 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:37, Info CSI 00000059 [SR] Verify complete
2012-02-12 12:26:37, Info CSI 0000005a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:37, Info CSI 0000005b [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:38, Info CSI 0000005d [SR] Verify complete
2012-02-12 12:26:39, Info CSI 0000005e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:39, Info CSI 0000005f [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:40, Info CSI 00000061 [SR] Verify complete
2012-02-12 12:26:41, Info CSI 00000062 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:41, Info CSI 00000063 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:42, Info CSI 00000065 [SR] Verify complete
2012-02-12 12:26:42, Info CSI 00000066 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:42, Info CSI 00000067 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:43, Info CSI 00000069 [SR] Verify complete
2012-02-12 12:26:43, Info CSI 0000006a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:43, Info CSI 0000006b [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:45, Info CSI 0000006d [SR] Verify complete
2012-02-12 12:26:45, Info CSI 0000006e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:45, Info CSI 0000006f [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:46, Info CSI 00000071 [SR] Verify complete
2012-02-12 12:26:46, Info CSI 00000072 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:46, Info CSI 00000073 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:47, Info CSI 00000075 [SR] Verify complete
2012-02-12 12:26:48, Info CSI 00000076 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:48, Info CSI 00000077 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:50, Info CSI 00000079 [SR] Verify complete
2012-02-12 12:26:50, Info CSI 0000007a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:50, Info CSI 0000007b [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:51, Info CSI 0000007d [SR] Verify complete
2012-02-12 12:26:51, Info CSI 0000007e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:51, Info CSI 0000007f [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:52, Info CSI 00000081 [SR] Verify complete
2012-02-12 12:26:52, Info CSI 00000082 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:52, Info CSI 00000083 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:53, Info CSI 00000085 [SR] Verify complete
2012-02-12 12:26:53, Info CSI 00000086 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:53, Info CSI 00000087 [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:55, Info CSI 00000089 [SR] Verify complete
2012-02-12 12:26:55, Info CSI 0000008a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:55, Info CSI 0000008b [SR] Beginning Verify and Repair transaction
2012-02-12 12:26:59, Info CSI 0000008d [SR] Verify complete
2012-02-12 12:26:59, Info CSI 0000008e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:26:59, Info CSI 0000008f [SR] Beginning Verify and Repair transaction
2012-02-12 12:27:02, Info CSI 00000093 [SR] Verify complete
2012-02-12 12:27:02, Info CSI 00000094 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:27:02, Info CSI 00000095 [SR] Beginning Verify and Repair transaction
2012-02-12 12:27:08, Info CSI 00000098 [SR] Verify complete
2012-02-12 12:27:08, Info CSI 00000099 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:27:08, Info CSI 0000009a [SR] Beginning Verify and Repair transaction
2012-02-12 12:27:12, Info CSI 0000009e [SR] Verify complete
2012-02-12 12:27:12, Info CSI 0000009f [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:27:12, Info CSI 000000a0 [SR] Beginning Verify and Repair transaction
2012-02-12 12:27:15, Info CSI 000000a2 [SR] Verify complete
2012-02-12 12:27:15, Info CSI 000000a3 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:27:15, Info CSI 000000a4 [SR] Beginning Verify and Repair transaction
2012-02-12 12:27:20, Info CSI 000000ae [SR] Verify complete
2012-02-12 12:27:20, Info CSI 000000af [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:27:20, Info CSI 000000b0 [SR] Beginning Verify and Repair transaction
2012-02-12 12:27:26, Info CSI 000000cd [SR] Verify complete
2012-02-12 12:27:26, Info CSI 000000ce [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:27:26, Info CSI 000000cf [SR] Beginning Verify and Repair transaction
2012-02-12 12:27:31, Info CSI 000000d1 [SR] Verify complete
2012-02-12 12:27:31, Info CSI 000000d2 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:27:31, Info CSI 000000d3 [SR] Beginning Verify and Repair transaction
2012-02-12 12:27:34, Info CSI 000000d5 [SR] Verify complete
2012-02-12 12:27:34, Info CSI 000000d6 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:27:34, Info CSI 000000d7 [SR] Beginning Verify and Repair transaction
2012-02-12 12:27:38, Info CSI 000000d9 [SR] Verify complete
2012-02-12 12:27:38, Info CSI 000000da [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:27:38, Info CSI 000000db [SR] Beginning Verify and Repair transaction
2012-02-12 12:27:46, Info CSI 000000dd [SR] Verify complete
2012-02-12 12:27:46, Info CSI 000000de [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:27:46, Info CSI 000000df [SR] Beginning Verify and Repair transaction
2012-02-12 12:27:55, Info CSI 000000f7 [SR] Verify complete
2012-02-12 12:27:55, Info CSI 000000f8 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:27:55, Info CSI 000000f9 [SR] Beginning Verify and Repair transaction
2012-02-12 12:28:05, Info CSI 000000fb [SR] Verify complete
2012-02-12 12:28:05, Info CSI 000000fc [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:28:05, Info CSI 000000fd [SR] Beginning Verify and Repair transaction
2012-02-12 12:28:16, Info CSI 000000ff [SR] Verify complete
2012-02-12 12:28:16, Info CSI 00000100 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:28:16, Info CSI 00000101 [SR] Beginning Verify and Repair transaction
2012-02-12 12:28:26, Info CSI 00000103 [SR] Verify complete
2012-02-12 12:28:26, Info CSI 00000104 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:28:26, Info CSI 00000105 [SR] Beginning Verify and Repair transaction
2012-02-12 12:28:29, Info CSI 00000107 [SR] Verify complete
2012-02-12 12:28:29, Info CSI 00000108 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:28:29, Info CSI 00000109 [SR] Beginning Verify and Repair transaction
2012-02-12 12:28:30, Info CSI 0000010b [SR] Verify complete
2012-02-12 12:28:31, Info CSI 0000010c [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:28:31, Info CSI 0000010d [SR] Beginning Verify and Repair transaction
2012-02-12 12:28:33, Info CSI 0000010f [SR] Verify complete
2012-02-12 12:28:33, Info CSI 00000110 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:28:33, Info CSI 00000111 [SR] Beginning Verify and Repair transaction
2012-02-12 12:28:42, Info CSI 00000124 [SR] Verify complete
2012-02-12 12:28:42, Info CSI 00000125 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:28:42, Info CSI 00000126 [SR] Beginning Verify and Repair transaction
2012-02-12 12:28:44, Info CSI 00000128 [SR] Verify complete
2012-02-12 12:28:44, Info CSI 00000129 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:28:44, Info CSI 0000012a [SR] Beginning Verify and Repair transaction
2012-02-12 12:28:46, Info CSI 0000012c [SR] Verify complete
2012-02-12 12:28:46, Info CSI 0000012d [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:28:46, Info CSI 0000012e [SR] Beginning Verify and Repair transaction
2012-02-12 12:28:49, Info CSI 00000130 [SR] Verify complete
2012-02-12 12:28:49, Info CSI 00000131 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:28:49, Info CSI 00000132 [SR] Beginning Verify and Repair transaction
2012-02-12 12:28:56, Info CSI 00000134 [SR] Verify complete
2012-02-12 12:28:56, Info CSI 00000135 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:28:56, Info CSI 00000136 [SR] Beginning Verify and Repair transaction
2012-02-12 12:29:03, Info CSI 00000139 [SR] Verify complete
2012-02-12 12:29:03, Info CSI 0000013a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:29:03, Info CSI 0000013b [SR] Beginning Verify and Repair transaction
2012-02-12 12:29:06, Info CSI 0000013d [SR] Verify complete
2012-02-12 12:29:06, Info CSI 0000013e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:29:06, Info CSI 0000013f [SR] Beginning Verify and Repair transaction
2012-02-12 12:29:11, Info CSI 00000141 [SR] Verify complete
2012-02-12 12:29:11, Info CSI 00000142 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:29:11, Info CSI 00000143 [SR] Beginning Verify and Repair transaction
2012-02-12 12:29:16, Info CSI 00000145 [SR] Verify complete
2012-02-12 12:29:16, Info CSI 00000146 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:29:16, Info CSI 00000147 [SR] Beginning Verify and Repair transaction
2012-02-12 12:29:21, Info CSI 00000149 [SR] Verify complete
2012-02-12 12:29:22, Info CSI 0000014a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:29:22, Info CSI 0000014b [SR] Beginning Verify and Repair transaction
2012-02-12 12:29:31, Info CSI 00000163 [SR] Verify complete
2012-02-12 12:29:31, Info CSI 00000164 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:29:31, Info CSI 00000165 [SR] Beginning Verify and Repair transaction
2012-02-12 12:29:39, Info CSI 00000167 [SR] Verify complete
2012-02-12 12:29:39, Info CSI 00000168 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:29:39, Info CSI 00000169 [SR] Beginning Verify and Repair transaction
2012-02-12 12:29:55, Info CSI 0000016b [SR] Verify complete
2012-02-12 12:29:56, Info CSI 0000016c [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:29:56, Info CSI 0000016d [SR] Beginning Verify and Repair transaction
2012-02-12 12:30:08, Info CSI 0000016f [SR] Verify complete
2012-02-12 12:30:08, Info CSI 00000170 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:30:08, Info CSI 00000171 [SR] Beginning Verify and Repair transaction
2012-02-12 12:30:15, Info CSI 00000173 [SR] Verify complete
2012-02-12 12:30:15, Info CSI 00000174 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:30:15, Info CSI 00000175 [SR] Beginning Verify and Repair transaction
2012-02-12 12:30:19, Info CSI 00000177 [SR] Cannot repair member file [l:20{10}]"tcpmon.ini" of Microsoft-Windows-Printing-StandardPortMonitor-TCPMonINI, Version = 6.0.6001.18000, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2012-02-12 12:30:20, Info CSI 00000179 [SR] Cannot repair member file [l:20{10}]"tcpmon.ini" of Microsoft-Windows-Printing-StandardPortMonitor-TCPMonINI, Version = 6.0.6001.18000, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2012-02-12 12:30:20, Info CSI 0000017a [SR] This component was referenced by [l:164{82}]"Package_30_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.936330-185_neutral_GDR"
2012-02-12 12:30:20, Info CSI 0000017d [SR] Could not reproject corrupted file [ml:520{260},l:46{23}]"\??\C:\Windows\System32"\[l:20{10}]"tcpmon.ini"; source file in store is also corrupted
2012-02-12 12:30:20, Info CSI 0000017f [SR] Verify complete
2012-02-12 12:30:20, Info CSI 00000180 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:30:20, Info CSI 00000181 [SR] Beginning Verify and Repair transaction
2012-02-12 12:30:25, Info CSI 00000183 [SR] Verify complete
2012-02-12 12:30:25, Info CSI 00000184 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:30:25, Info CSI 00000185 [SR] Beginning Verify and Repair transaction
2012-02-12 12:30:29, Info CSI 00000187 [SR] Verify complete
2012-02-12 12:30:29, Info CSI 00000188 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:30:29, Info CSI 00000189 [SR] Beginning Verify and Repair transaction
2012-02-12 12:30:33, Info CSI 0000018d [SR] Verify complete
2012-02-12 12:30:33, Info CSI 0000018e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:30:33, Info CSI 0000018f [SR] Beginning Verify and Repair transaction
2012-02-12 12:30:43, Info CSI 00000191 [SR] Verify complete
2012-02-12 12:30:43, Info CSI 00000192 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:30:43, Info CSI 00000193 [SR] Beginning Verify and Repair transaction
2012-02-12 12:30:49, Info CSI 00000195 [SR] Verify complete
2012-02-12 12:30:50, Info CSI 00000196 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:30:50, Info CSI 00000197 [SR] Beginning Verify and Repair transaction
2012-02-12 12:30:54, Info CSI 00000199 [SR] Verify complete
2012-02-12 12:30:55, Info CSI 0000019a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:30:55, Info CSI 0000019b [SR] Beginning Verify and Repair transaction
2012-02-12 12:31:05, Info CSI 0000019d [SR] Verify complete
2012-02-12 12:31:06, Info CSI 0000019e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:31:06, Info CSI 0000019f [SR] Beginning Verify and Repair transaction
2012-02-12 12:31:11, Info CSI 000001a1 [SR] Verify complete
2012-02-12 12:31:11, Info CSI 000001a2 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:31:11, Info CSI 000001a3 [SR] Beginning Verify and Repair transaction
2012-02-12 12:31:16, Info CSI 000001a5 [SR] Verify complete
2012-02-12 12:31:16, Info CSI 000001a6 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:31:16, Info CSI 000001a7 [SR] Beginning Verify and Repair transaction
2012-02-12 12:31:24, Info CSI 000001a9 [SR] Verify complete
2012-02-12 12:31:25, Info CSI 000001aa [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:31:25, Info CSI 000001ab [SR] Beginning Verify and Repair transaction
2012-02-12 12:31:35, Info CSI 000001ae [SR] Verify complete
2012-02-12 12:31:35, Info CSI 000001af [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:31:35, Info CSI 000001b0 [SR] Beginning Verify and Repair transaction
2012-02-12 12:31:39, Info CSI 000001b2 [SR] Verify complete
2012-02-12 12:31:40, Info CSI 000001b3 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:31:40, Info CSI 000001b4 [SR] Beginning Verify and Repair transaction
2012-02-12 12:31:44, Info CSI 000001b7 [SR] Verify complete
2012-02-12 12:31:45, Info CSI 000001b8 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:31:45, Info CSI 000001b9 [SR] Beginning Verify and Repair transaction
2012-02-12 12:31:49, Info CSI 000001bb [SR] Verify complete
2012-02-12 12:31:50, Info CSI 000001bc [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:31:50, Info CSI 000001bd [SR] Beginning Verify and Repair transaction
2012-02-12 12:31:55, Info CSI 000001c3 [SR] Verify complete
2012-02-12 12:31:56, Info CSI 000001c4 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:31:56, Info CSI 000001c5 [SR] Beginning Verify and Repair transaction
2012-02-12 12:32:00, Info CSI 000001c7 [SR] Verify complete
2012-02-12 12:32:00, Info CSI 000001c8 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:32:00, Info CSI 000001c9 [SR] Beginning Verify and Repair transaction
2012-02-12 12:32:07, Info CSI 000001cb [SR] Verify complete
2012-02-12 12:32:07, Info CSI 000001cc [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:32:07, Info CSI 000001cd [SR] Beginning Verify and Repair transaction
2012-02-12 12:32:10, Info CSI 000001cf [SR] Verify complete
2012-02-12 12:32:10, Info CSI 000001d0 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:32:10, Info CSI 000001d1 [SR] Beginning Verify and Repair transaction
2012-02-12 12:32:14, Info CSI 000001d3 [SR] Verify complete
2012-02-12 12:32:14, Info CSI 000001d4 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:32:14, Info CSI 000001d5 [SR] Beginning Verify and Repair transaction
2012-02-12 12:32:19, Info CSI 000001d7 [SR] Verify complete
2012-02-12 12:32:19, Info CSI 000001d8 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:32:19, Info CSI 000001d9 [SR] Beginning Verify and Repair transaction
2012-02-12 12:32:25, Info CSI 000001db [SR] Verify complete
2012-02-12 12:32:26, Info CSI 000001dc [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:32:26, Info CSI 000001dd [SR] Beginning Verify and Repair transaction
2012-02-12 12:32:29, Info CSI 000001df [SR] Verify complete
2012-02-12 12:32:29, Info CSI 000001e0 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:32:29, Info CSI 000001e1 [SR] Beginning Verify and Repair transaction
2012-02-12 12:32:40, Info CSI 000001e3 [SR] Verify complete
2012-02-12 12:32:40, Info CSI 000001e4 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:32:40, Info CSI 000001e5 [SR] Beginning Verify and Repair transaction
2012-02-12 12:32:42, Info CSI 000001e7 [SR] Verify complete
2012-02-12 12:32:43, Info CSI 000001e8 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:32:43, Info CSI 000001e9 [SR] Beginning Verify and Repair transaction
2012-02-12 12:32:46, Info CSI 000001eb [SR] Verify complete
2012-02-12 12:32:46, Info CSI 000001ec [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:32:46, Info CSI 000001ed [SR] Beginning Verify and Repair transaction
2012-02-12 12:32:53, Info CSI 000001f8 [SR] Verify complete
2012-02-12 12:32:54, Info CSI 000001f9 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:32:54, Info CSI 000001fa [SR] Beginning Verify and Repair transaction
2012-02-12 12:32:57, Info CSI 000001fc [SR] Verify complete
2012-02-12 12:32:58, Info CSI 000001fd [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:32:58, Info CSI 000001fe [SR] Beginning Verify and Repair transaction
2012-02-12 12:33:01, Info CSI 00000200 [SR] Verify complete
2012-02-12 12:33:02, Info CSI 00000201 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:33:02, Info CSI 00000202 [SR] Beginning Verify and Repair transaction
2012-02-12 12:33:07, Info CSI 00000204 [SR] Verify complete
2012-02-12 12:33:07, Info CSI 00000205 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:33:07, Info CSI 00000206 [SR] Beginning Verify and Repair transaction
2012-02-12 12:33:13, Info CSI 00000209 [SR] Verify complete
2012-02-12 12:33:13, Info CSI 0000020a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:33:13, Info CSI 0000020b [SR] Beginning Verify and Repair transaction
2012-02-12 12:33:15, Info CSI 0000020d [SR] Verify complete
2012-02-12 12:33:15, Info CSI 0000020e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:33:15, Info CSI 0000020f [SR] Beginning Verify and Repair transaction
2012-02-12 12:33:21, Info CSI 00000213 [SR] Verify complete
2012-02-12 12:33:21, Info CSI 00000214 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:33:21, Info CSI 00000215 [SR] Beginning Verify and Repair transaction
2012-02-12 12:33:26, Info CSI 0000021a [SR] Verify complete
2012-02-12 12:33:26, Info CSI 0000021b [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:33:26, Info CSI 0000021c [SR] Beginning Verify and Repair transaction
2012-02-12 12:33:37, Info CSI 00000226 [SR] Verify complete
2012-02-12 12:33:38, Info CSI 00000227 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:33:38, Info CSI 00000228 [SR] Beginning Verify and Repair transaction
2012-02-12 12:33:44, Info CSI 00000234 [SR] Verify complete
2012-02-12 12:33:44, Info CSI 00000235 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:33:44, Info CSI 00000236 [SR] Beginning Verify and Repair transaction
2012-02-12 12:33:48, Info CSI 00000238 [SR] Verify complete
2012-02-12 12:33:48, Info CSI 00000239 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:33:48, Info CSI 0000023a [SR] Beginning Verify and Repair transaction
2012-02-12 12:33:52, Info CSI 0000023e [SR] Verify complete
2012-02-12 12:33:53, Info CSI 0000023f [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:33:53, Info CSI 00000240 [SR] Beginning Verify and Repair transaction
2012-02-12 12:33:56, Info CSI 00000243 [SR] Verify complete
2012-02-12 12:33:56, Info CSI 00000244 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:33:56, Info CSI 00000245 [SR] Beginning Verify and Repair transaction
2012-02-12 12:34:01, Info CSI 0000026a [SR] Verify complete
2012-02-12 12:34:01, Info CSI 0000026b [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:34:01, Info CSI 0000026c [SR] Beginning Verify and Repair transaction
2012-02-12 12:34:05, Info CSI 0000026e [SR] Verify complete
2012-02-12 12:34:05, Info CSI 0000026f [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:34:05, Info CSI 00000270 [SR] Beginning Verify and Repair transaction
2012-02-12 12:34:09, Info CSI 00000272 [SR] Verify complete
2012-02-12 12:34:09, Info CSI 00000273 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:34:09, Info CSI 00000274 [SR] Beginning Verify and Repair transaction
2012-02-12 12:34:13, Info CSI 00000276 [SR] Verify complete
2012-02-12 12:34:13, Info CSI 00000277 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:34:13, Info CSI 00000278 [SR] Beginning Verify and Repair transaction
2012-02-12 12:34:18, Info CSI 00000289 [SR] Verify complete
2012-02-12 12:34:18, Info CSI 0000028a [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:34:18, Info CSI 0000028b [SR] Beginning Verify and Repair transaction
2012-02-12 12:34:28, Info CSI 0000028d [SR] Verify complete
2012-02-12 12:34:28, Info CSI 0000028e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:34:28, Info CSI 0000028f [SR] Beginning Verify and Repair transaction
2012-02-12 12:34:34, Info CSI 0000029d [SR] Verify complete
2012-02-12 12:34:35, Info CSI 0000029e [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:34:35, Info CSI 0000029f [SR] Beginning Verify and Repair transaction
2012-02-12 12:34:36, Info CSI 000002a1 [SR] Verify complete
2012-02-12 12:34:36, Info CSI 000002a2 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:34:36, Info CSI 000002a3 [SR] Beginning Verify and Repair transaction
2012-02-12 12:34:43, Info CSI 000002a7 [SR] Verify complete
2012-02-12 12:34:43, Info CSI 000002a8 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:34:43, Info CSI 000002a9 [SR] Beginning Verify and Repair transaction
2012-02-12 12:34:47, Info CSI 000002ab [SR] Verify complete
2012-02-12 12:34:48, Info CSI 000002ac [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:34:48, Info CSI 000002ad [SR] Beginning Verify and Repair transaction
2012-02-12 12:34:52, Info CSI 000002af [SR] Verify complete
2012-02-12 12:34:53, Info CSI 000002b0 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:34:53, Info CSI 000002b1 [SR] Beginning Verify and Repair transaction
2012-02-12 12:34:56, Info CSI 000002b3 [SR] Verify complete
2012-02-12 12:34:56, Info CSI 000002b4 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:34:56, Info CSI 000002b5 [SR] Beginning Verify and Repair transaction
2012-02-12 12:35:00, Info CSI 000002b9 [SR] Verify complete
2012-02-12 12:35:00, Info CSI 000002ba [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:35:00, Info CSI 000002bb [SR] Beginning Verify and Repair transaction
2012-02-12 12:35:07, Info CSI 000002d5 [SR] Verify complete
2012-02-12 12:35:08, Info CSI 000002d6 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:35:08, Info CSI 000002d7 [SR] Beginning Verify and Repair transaction
2012-02-12 12:35:14, Info CSI 000002d9 [SR] Verify complete
2012-02-12 12:35:14, Info CSI 000002da [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:35:14, Info CSI 000002db [SR] Beginning Verify and Repair transaction
2012-02-12 12:35:31, Info CSI 000002dd [SR] Verify complete
2012-02-12 12:35:31, Info CSI 000002de [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:35:31, Info CSI 000002df [SR] Beginning Verify and Repair transaction
2012-02-12 12:35:37, Info CSI 000002e1 [SR] Verify complete
2012-02-12 12:35:38, Info CSI 000002e2 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:35:38, Info CSI 000002e3 [SR] Beginning Verify and Repair transaction
2012-02-12 12:35:41, Info CSI 000002e5 [SR] Verify complete
2012-02-12 12:35:42, Info CSI 000002e6 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:35:42, Info CSI 000002e7 [SR] Beginning Verify and Repair transaction
2012-02-12 12:35:45, Info CSI 000002ea [SR] Verify complete
2012-02-12 12:35:45, Info CSI 000002eb [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:35:45, Info CSI 000002ec [SR] Beginning Verify and Repair transaction
2012-02-12 12:35:54, Info CSI 000002ee [SR] Verify complete
2012-02-12 12:35:54, Info CSI 000002ef [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:35:54, Info CSI 000002f0 [SR] Beginning Verify and Repair transaction
2012-02-12 12:35:58, Info CSI 000002f2 [SR] Verify complete
2012-02-12 12:35:59, Info CSI 000002f3 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:35:59, Info CSI 000002f4 [SR] Beginning Verify and Repair transaction
2012-02-12 12:36:03, Info CSI 000002f6 [SR] Verify complete
2012-02-12 12:36:03, Info CSI 000002f7 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:36:03, Info CSI 000002f8 [SR] Beginning Verify and Repair transaction
2012-02-12 12:36:07, Info CSI 000002fb [SR] Verify complete
2012-02-12 12:36:07, Info CSI 000002fc [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:36:07, Info CSI 000002fd [SR] Beginning Verify and Repair transaction
2012-02-12 12:36:11, Info CSI 000002ff [SR] Verify complete
2012-02-12 12:36:12, Info CSI 00000300 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:36:12, Info CSI 00000301 [SR] Beginning Verify and Repair transaction
2012-02-12 12:36:17, Info CSI 00000303 [SR] Verify complete
2012-02-12 12:36:17, Info CSI 00000304 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:36:17, Info CSI 00000305 [SR] Beginning Verify and Repair transaction
2012-02-12 12:36:21, Info CSI 0000030a [SR] Verify complete
2012-02-12 12:36:21, Info CSI 0000030b [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:36:21, Info CSI 0000030c [SR] Beginning Verify and Repair transaction
2012-02-12 12:36:27, Info CSI 0000030f [SR] Verify complete
2012-02-12 12:36:28, Info CSI 00000310 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:36:28, Info CSI 00000311 [SR] Beginning Verify and Repair transaction
2012-02-12 12:36:32, Info CSI 00000313 [SR] Verify complete
2012-02-12 12:36:32, Info CSI 00000314 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:36:32, Info CSI 00000315 [SR] Beginning Verify and Repair transaction
2012-02-12 12:36:37, Info CSI 00000317 [SR] Verify complete
2012-02-12 12:36:38, Info CSI 00000318 [SR] Verifying 100 (0x0000000000000064) components
2012-02-12 12:36:38, Info CSI 00000319 [SR] Beginning Verify and Repair transaction
2012-02-12 12:36:43, Info CSI 0000031b [SR] Verify complete
2012-02-12 12:36:43, Info CSI 0000031c [SR] Verifying 82 (0x0000000000000052) components
2012-02-12 12:36:43, Info CSI 0000031d [SR] Beginning Verify and Repair transaction
2012-02-12 12:36:48, Info CSI 0000031f [SR] Verify complete
2012-02-12 12:36:48, Info CSI 00000320 [SR] Repairing 1 components
2012-02-12 12:36:48, Info CSI 00000321 [SR] Beginning Verify and Repair transaction
2012-02-12 12:36:48, Info CSI 00000323 [SR] Cannot repair member file [l:20{10}]"tcpmon.ini" of Microsoft-Windows-Printing-StandardPortMonitor-TCPMonINI, Version = 6.0.6001.18000, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2012-02-12 12:36:48, Info CSI 00000325 [SR] Cannot repair member file [l:20{10}]"tcpmon.ini" of Microsoft-Windows-Printing-StandardPortMonitor-TCPMonINI, Version = 6.0.6001.18000, pA = PROCESSOR_ARCHITECTURE_AMD64 (9), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2012-02-12 12:36:48, Info CSI 00000326 [SR] This component was referenced by [l:164{82}]"Package_30_for_KB936330~31bf3856ad364e35~amd64~~6.0.1.18000.936330-185_neutral_GDR"
2012-02-12 12:36:48, Info CSI 00000329 [SR] Could not reproject corrupted file [ml:520{260},l:46{23}]"\??\C:\Windows\System32"\[l:20{10}]"tcpmon.ini"; source file in store is also corrupted
2012-02-12 12:36:48, Info CSI 0000032b [SR] Repair complete
2012-02-12 12:36:48, Info CSI 0000032c [SR] Committing transaction
2012-02-12 12:36:48, Info CSI 00000330 [SR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction have been successfully repaired

OTL logfile created on: 12/02/2012 12:40:13 PM - Run 3
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Chris 2\Desktop
64bit-Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19170)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: dd/MM/yyyy

3.99 Gb Total Physical Memory | 2.03 Gb Available Physical Memory | 50.93% Memory free
8.18 Gb Paging File | 6.21 Gb Available in Paging File | 75.90% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 450.71 Gb Total Space | 403.54 Gb Free Space | 89.53% Space Free | Partition Type: NTFS
Drive D: | 15.00 Gb Total Space | 7.72 Gb Free Space | 51.46% Space Free | Partition Type: NTFS
Drive E: | 76.27 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: CHRIS-PC | User Name: Chris 2 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/02/11 21:06:12 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTL.exe656.exe
PRC - [2011/11/28 13:01:24 | 003,744,552 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/11/28 13:01:23 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011/02/25 09:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2009/07/09 14:36:12 | 000,139,944 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\ezprint.exe
PRC - [2009/07/09 14:36:09 | 000,766,632 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleemon.exe
PRC - [2009/05/11 05:43:48 | 001,909,472 | ---- | M] (Cisco Systems, Inc) -- C:\Program Files (x86)\Cisco Systems\Clean Access Agent\CCAAgent.exe

========== Modules (No Company Name) ==========

MOD - [2011/11/01 23:26:32 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/11/01 23:26:12 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2009/07/09 14:36:12 | 000,139,944 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\ezprint.exe
MOD - [2009/07/09 14:36:09 | 000,766,632 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleemon.exe
MOD - [2009/05/29 09:09:48 | 001,159,168 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleedrs.dll
MOD - [2009/05/29 09:08:53 | 000,389,120 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleescw.dll
MOD - [2009/05/27 07:16:50 | 000,192,512 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleedatr.dll
MOD - [2009/05/26 15:18:10 | 000,086,121 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\DLEEcfg.dll
MOD - [2009/04/07 14:25:27 | 000,409,600 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\iptk.dll
MOD - [2009/03/30 07:40:44 | 000,196,608 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epoemdll.dll
MOD - [2009/03/30 07:40:43 | 000,045,056 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epstring.dll
MOD - [2009/03/30 07:40:42 | 002,203,648 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epwizres.dll
MOD - [2009/03/30 07:40:26 | 000,708,608 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epwizard.dll
MOD - [2009/03/30 07:38:36 | 000,159,744 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\customui.dll
MOD - [2009/03/30 07:38:16 | 000,061,440 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epfunct.dll
MOD - [2009/03/30 07:38:11 | 000,114,688 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\eputil.dll
MOD - [2009/03/30 07:37:58 | 000,139,264 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\imagutil.dll
MOD - [2009/03/10 00:43:49 | 000,155,648 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleecaps.dll
MOD - [2009/03/05 12:55:33 | 000,059,904 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleecnv4.dll
MOD - [2009/03/02 09:25:47 | 000,151,552 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleeptp.dll

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/11/28 13:01:23 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2009/07/01 08:07:00 | 001,054,888 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysNative\dleecoms.exe -- (dlee_device)
SRV:64bit: - [2009/06/25 21:48:28 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/03/30 07:25:18 | 000,268,288 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_15f4e438\STacSV64.exe -- (STacSV)
SRV:64bit: - [2009/03/30 07:24:46 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe -- (AESTFilters)
SRV:64bit: - [2008/01/20 21:50:23 | 000,195,584 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008/01/20 21:46:39 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011/02/28 17:44:14 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/02/25 09:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/07/01 08:06:47 | 000,602,792 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysWow64\dleecoms.exe -- (dlee_device)
SRV - [2009/03/29 23:42:14 | 000,066,368 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/11/28 12:54:06 | 000,591,192 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2011/11/28 12:53:58 | 000,304,472 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2011/11/28 12:52:22 | 000,042,328 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr)
DRV:64bit: - [2011/11/28 12:52:20 | 000,058,712 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2011/11/28 12:52:11 | 000,066,904 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2011/11/28 12:51:53 | 000,024,408 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2011/08/02 17:38:56 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2009/06/25 22:24:30 | 006,036,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (R300)
DRV:64bit: - [2009/06/25 22:24:30 | 006,036,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009/06/04 10:20:48 | 000,113,168 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/04/28 04:53:30 | 000,252,928 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\k57nd60a.sys -- (k57nd60a) Broadcom NetLink ™
DRV:64bit: - [2009/04/11 00:03:32 | 000,111,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\sdbus.sys -- (sdbus)
DRV:64bit: - [2009/03/30 07:25:34 | 000,477,696 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\stwrt64.sys -- (STHDA)
DRV:64bit: - [2009/01/12 23:46:32 | 000,318,656 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Vid.sys -- (OA001Vid)
DRV:64bit: - [2009/01/12 23:46:32 | 000,158,592 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Ufd.sys -- (OA001Ufd)
DRV:64bit: - [2008/12/22 04:26:28 | 004,735,488 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\NETw5v64.sys -- (NETw5v64) Intel®
DRV:64bit: - [2008/11/21 06:04:24 | 000,261,680 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\SynTP.sys -- (SynTP)
DRV:64bit: - [2008/08/25 03:24:28 | 000,059,392 | ---- | M] (ITE Tech. Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\itecir.sys -- (itecir)
DRV:64bit: - [2008/07/29 05:58:16 | 000,057,856 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rixdpx64.sys -- (rismxdp)
DRV:64bit: - [2008/07/29 05:58:14 | 000,062,976 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimmpx64.sys -- (rimmptsk)
DRV:64bit: - [2008/07/29 05:58:12 | 000,055,296 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimspx64.sys -- (rimsptsk)
DRV:64bit: - [2008/01/20 21:46:02 | 000,317,952 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\e1e6032e.sys -- (e1express) Intel®

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 40 85 47 77 B2 BA CB 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)

O1 HOSTS File: ([2012/02/10 20:07:00 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (Dell Toolbar) - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - C:\Program Files\Dell Printable Web\toolband.dll ()
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (Dell Toolbar) - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - C:\Program Files\Dell Printable Web\toolband.dll ()
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:64bit: - HKLM..\Run: [dleemon.exe] C:\Program Files (x86)\Dell V715w\dleemon.exe ()
O4:64bit: - HKLM..\Run: [EzPrint] C:\Program Files (x86)\Dell V715w\ezprint.exe ()
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CarboniteSetupLite] C:\Program Files (x86)\Carbonite\CarbonitePreinstaller.exe (Carbonite, Inc.)
O4 - HKLM..\Run: [Dell V715w] C:\Program Files (x86)\Dell V715w\fm3032.exe ()
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://netaccess.sv...SetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.80.180.200 10.76.51.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8BD5F978-09B4-48DF-A140-D5BC4DD9D9CC}: DhcpNameServer = 10.80.180.200 10.76.51.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BDCF5074-A8B6-457C-81A9-9977FA250CC4}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Chris 2\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Chris 2\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/12/12 19:16:21 | 000,000,000 | ---D | M] - E:\AutoPlay -- [ CDFS ]
O32 - AutoRun File - [2008/12/12 19:27:54 | 000,000,047 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/02/11 21:06:11 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTL.exe656.exe
[2012/02/11 14:14:41 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/02/11 02:24:17 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/02/10 20:26:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2012/02/10 20:26:11 | 000,304,472 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2012/02/10 20:26:11 | 000,024,408 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2012/02/10 20:26:08 | 000,042,328 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2012/02/10 20:26:07 | 000,058,712 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2012/02/10 20:26:06 | 000,591,192 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2012/02/10 20:26:05 | 000,066,904 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2012/02/10 20:25:46 | 000,041,184 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2012/02/10 20:25:45 | 000,199,816 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2012/02/10 20:05:31 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/02/10 19:57:37 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/02/10 19:57:37 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/02/10 19:57:37 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/02/10 19:57:30 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/02/10 18:01:23 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\Documents\tdsskiller[1]
[2012/02/10 17:59:57 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\Desktop\GooredFix Backups
[2012/02/10 17:51:03 | 000,523,264 | ---- | C] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTM11.exe
[2012/02/10 17:45:51 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\Documents\erunt[1]
[2012/02/10 16:18:32 | 000,061,440 | ---- | C] ( ) -- C:\Users\Chris 2\Desktop\VEW222.exe
[2012/02/09 22:28:53 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/02/09 20:27:52 | 004,733,440 | ---- | C] (AVAST Software) -- C:\Users\Chris 2\Desktop\aswMBR2.exe
[2012/02/09 19:47:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/02/09 19:47:14 | 000,023,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/02/08 21:56:18 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2012/02/08 21:53:41 | 004,399,064 | R--- | C] (Swearware) -- C:\Users\Chris 2\Desktop\CombooooFixndnd.exe
[2012/02/08 15:03:28 | 000,055,384 | ---- | C] (Sunbelt Software) -- C:\Windows\SysNative\drivers\SBREDrv.sys
[2012/02/08 14:59:12 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\AppData\Local\adaware
[2012/02/08 14:59:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Ad-Aware Browsing Protection
[2012/02/08 14:59:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Toolbar Cleaner
[2012/02/08 14:58:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\adawaretb
[2012/02/08 14:58:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2008/05/23 04:25:20 | 000,364,544 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeinpa.dll
[2008/05/23 04:25:19 | 000,344,064 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeiesc.dll
[2008/05/23 04:25:18 | 000,651,264 | ---- | C] ( ) -- C:\Windows\SysWow64\dleepmui.dll
[2008/05/23 04:25:15 | 001,056,768 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeserv.dll
[2008/05/23 04:25:15 | 000,851,968 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeusb1.dll
[2008/05/23 04:25:14 | 000,581,632 | ---- | C] ( ) -- C:\Windows\SysWow64\dleelmpm.dll
[2008/05/23 04:25:13 | 000,328,360 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeih.exe
[2008/05/23 04:25:12 | 000,688,128 | ---- | C] ( ) -- C:\Windows\SysWow64\dleehbn3.dll
[2008/05/23 04:25:11 | 000,602,792 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecoms.exe
[2008/05/23 04:25:11 | 000,376,832 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecomm.dll
[2008/05/23 04:25:10 | 000,802,816 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecomc.dll
[2008/05/23 04:25:09 | 000,369,320 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecfg.exe

========== Files - Modified Within 30 Days ==========

[2012/02/12 12:44:00 | 000,000,418 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{C9BDE752-56DB-4800-8C20-B82FD7F534A4}.job
[2012/02/12 12:06:55 | 000,703,388 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/02/12 12:06:55 | 000,604,502 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/02/12 12:06:55 | 000,104,170 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/02/12 12:02:09 | 000,000,438 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{22543227-28D1-448C-887D-80EC548A96C2}.job
[2012/02/12 12:02:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/02/12 00:55:06 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/02/12 00:55:06 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/02/11 21:06:12 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTL.exe656.exe
[2012/02/11 17:10:33 | 000,000,512 | ---- | M] () -- C:\Users\Chris 2\Documents\MBR.dat
[2012/02/11 14:16:20 | 4289,576,960 | -HS- | M] () -- C:\hiberfil.sys
[2012/02/10 20:26:12 | 000,001,787 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2012/02/10 20:26:05 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2012/02/10 20:07:00 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/02/10 18:50:38 | 000,272,560 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/02/10 17:51:03 | 000,523,264 | ---- | M] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTM11.exe
[2012/02/10 16:18:32 | 000,061,440 | ---- | M] ( ) -- C:\Users\Chris 2\Desktop\VEW222.exe
[2012/02/09 22:28:46 | 733,228,612 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/02/09 20:27:52 | 004,733,440 | ---- | M] (AVAST Software) -- C:\Users\Chris 2\Desktop\aswMBR2.exe
[2012/02/09 19:47:15 | 000,000,950 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/02/08 21:53:42 | 004,399,064 | R--- | M] (Swearware) -- C:\Users\Chris 2\Desktop\CombooooFixndnd.exe
[2012/02/08 21:47:12 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/02/08 15:03:27 | 000,055,384 | ---- | M] (Sunbelt Software) -- C:\Windows\SysNative\drivers\SBREDrv.sys
[2012/02/07 23:44:40 | 000,721,764 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/02/07 22:22:28 | 000,000,680 | ---- | M] () -- C:\Users\Chris 2\AppData\Local\d3d9caps.dat

========== Files Created - No Company Name ==========

[2012/02/10 20:26:12 | 000,001,787 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2012/02/10 19:57:37 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/02/10 19:57:37 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/02/10 19:57:37 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/02/10 19:57:37 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/02/10 19:57:37 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/02/09 22:28:46 | 733,228,612 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/02/09 20:20:57 | 000,000,512 | ---- | C] () -- C:\Users\Chris 2\Documents\MBR.dat
[2012/02/09 19:47:15 | 000,000,950 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2011/03/26 20:58:31 | 000,003,584 | ---- | C] () -- C:\Users\Chris 2\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/02/14 17:59:57 | 000,721,764 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/01/23 21:54:35 | 000,000,680 | ---- | C] () -- C:\Users\Chris 2\AppData\Local\d3d9caps.dat
[2010/02/15 18:14:42 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2010/02/15 18:14:11 | 000,107,612 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchema.bin
[2010/02/15 18:13:40 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/04/24 19:04:27 | 000,018,904 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchemaTrivial.bin
[2008/06/03 11:39:26 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008/05/23 20:58:25 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\MSVolumeAMP.dll
[2008/05/23 04:25:21 | 000,385,024 | ---- | C] () -- C:\Windows\SysWow64\DLEEinst.dll
[2008/05/23 04:25:20 | 000,344,064 | ---- | C] () -- C:\Windows\SysWow64\dleecomx.dll
[2008/05/23 04:25:19 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\dleejswr.dll
[2008/05/23 04:25:18 | 000,106,496 | ---- | C] () -- C:\Windows\SysWow64\dleeinsr.dll
[2008/05/23 04:25:18 | 000,036,864 | ---- | C] () -- C:\Windows\SysWow64\dleecur.dll
[2008/05/23 04:25:17 | 000,323,584 | ---- | C] () -- C:\Windows\SysWow64\dleeins.dll
[2008/05/23 04:25:17 | 000,262,144 | ---- | C] () -- C:\Windows\SysWow64\dleeinsb.dll
[2008/05/23 04:25:16 | 000,253,952 | ---- | C] () -- C:\Windows\SysWow64\dleecu.dll
[2008/05/23 04:25:16 | 000,090,112 | ---- | C] () -- C:\Windows\SysWow64\dleecub.dll
[2008/05/23 04:25:03 | 000,086,121 | ---- | C] () -- C:\Windows\SysWow64\DLEEcfg.dll
[2008/05/23 04:22:06 | 000,299,008 | ---- | C] () -- C:\Windows\SysWow64\DLEEsm.dll
[2008/05/23 04:22:06 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\DLEEsmr.dll
[2008/05/23 01:37:50 | 000,000,732 | ---- | C] () -- C:\Users\Chris 2\AppData\Local\d3d9caps64.dat
[2008/05/23 00:16:41 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2008/01/20 21:49:10 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2006/11/02 10:35:48 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 07:37:14 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2006/11/02 07:24:17 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2006/11/02 07:18:17 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2006/11/02 04:47:54 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin

========== Custom Scans ==========

< MD5 for: DXTMSFT.DLL >
[2010/01/25 17:29:18 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=10C2AB2455ED739C498D5038B9B51A7E -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21046_none_96444b2e9db6569e\dxtmsft.dll
[2009/12/18 08:09:10 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=219CA8898BACC69507948D2BB77691EA -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16982_none_f1aa32d33d19fc57\dxtmsft.dll
[2010/01/25 17:11:00 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=29165E3CEA84849F4EB1B6F8356CE89D -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_f27585ac560643ed\dxtmsft.dll
[2010/01/25 17:11:01 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=3540941826C7D9E8860245AC4A7451BB -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_f1de3ff53cf340cd\dxtmsft.dll
[2010/01/25 17:29:19 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=39F9718825BDC05D7BF31A4F32860173 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16851_none_95ab04e384a520d0\dxtmsft.dll
[2010/01/25 17:24:29 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=3D3B4C05B6E5F3C79894FDEC4510C0E0 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_f1f9e36f3cdd9e1c\dxtmsft.dll
[2010/01/25 17:24:28 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=60820DB8D0CFF2FD47155CE9439A6A8F -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_f283585c55fb7128\dxtmsft.dll
[2010/01/25 17:29:18 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=6FA3AF2E33263BB8BA56E7F872859A98 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16851_none_f1c9a0673d029206\dxtmsft.dll
[2009/03/08 06:38:04 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=72FEDB9CB7AD10AD7ACE2867FCABF4C0 -- C:\Windows\SysNative\dxtmsft.dll
[2009/03/08 06:38:04 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=72FEDB9CB7AD10AD7ACE2867FCABF4C0 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_8.0.6001.18702_none_d6d00ced4fccf3fa\dxtmsft.dll
[2010/03/09 11:49:34 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=73432756624987A88A4C60D973140F4B -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.17037_none_95c6807f848fb161\dxtmsft.dll
[2010/03/09 11:59:22 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=75938363EDE81422290F86250E9854B5 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21242_none_f25ee95656175cc6\dxtmsft.dll
[2009/04/24 18:46:58 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=781A21A173EE7F8AABB482904E3D937E -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20996_none_960e63709ddeaf11\dxtmsft.dll
[2010/01/25 17:29:17 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=7954B018D30B01CF9B89825368262867 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21046_none_f262e6b25613c7d4\dxtmsft.dll
[2009/12/18 07:21:18 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=8A9C4E4B38423176AA1A47E388327DF1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21184_none_96170cd09dd890db\dxtmsft.dll
[2009/04/24 18:46:59 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=8B0F7C68C96BBB5866191FC9CBA11A74 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16809_none_95e916cf84755fd3\dxtmsft.dll
[2010/03/09 11:26:33 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=95215DD62DEFEC2548DCE61B2FD8CDED -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21242_none_96404dd29db9eb90\dxtmsft.dll
[2009/12/18 08:11:20 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=9DD29BFDFD5F3B86B10D2CB80B94547A -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21184_none_f235a85456360211\dxtmsft.dll
[2010/01/25 17:24:30 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=9E77C6A77002C4EBB9F53246729700D9 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_95db47eb84802ce6\dxtmsft.dll
[2010/03/09 11:59:45 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=B492FF69D572D22035E4B293EB75A028 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.17037_none_f1e51c033ced2297\dxtmsft.dll
[2008/01/20 21:48:45 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=B68FCC1F8684AB3EC4BE4D0A2537D26D -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6001.18000_none_97c64f0f81a41267\dxtmsft.dll
[2009/04/24 18:46:58 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=BB41EC94D4AAD781917EA4554024F038 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16809_none_f207b2533cd2d109\dxtmsft.dll
[2008/01/20 21:47:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CEAC01AB6AB8BE66985D61BD77610A51 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6001.18000_none_f3e4ea933a01839d\dxtmsft.dll
[2010/01/25 17:11:00 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=CFB829FF0122D2ABF325CB39E98DE07A -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_9656ea289da8d2b7\dxtmsft.dll
[2009/12/18 07:47:39 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=D3E45A54C1927401A8F1BD9D53346BB6 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16982_none_958b974f84bc8b21\dxtmsft.dll
[2010/01/25 17:11:01 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=D795BC191B3E3F333AB76205D4E3497D -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_95bfa4718495cf97\dxtmsft.dll
[2009/04/24 18:46:57 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=DB43297EEA1F5AC1BB26FCD1D2F2B6FE -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20996_none_f22cfef4563c2047\dxtmsft.dll
[2010/01/25 17:24:29 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=FA821220FC5AD0C031556378DE38A668 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_9664bcd89d9dfff2\dxtmsft.dll
[2009/03/08 06:31:42 | 000,348,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\dxtmsft.dll
[2009/03/08 06:31:42 | 000,348,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_8.0.6001.18702_none_7ab17169976f82c4\dxtmsft.dll

< MD5 for: DXTRANS.DLL >
[2010/01/25 17:24:29 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=18869424D7C494EE2DB3A8FF56FB6248 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_9664bcd89d9dfff2\dxtrans.dll
[2010/01/25 17:24:29 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=1C60C7B8DDE1F470AEA86DC9EA30351B -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_f1f9e36f3cdd9e1c\dxtrans.dll
[2009/04/24 18:46:59 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=1D1FA18739919F1ACA9A9646123FA5D1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16809_none_95e916cf84755fd3\dxtrans.dll
[2010/01/25 17:11:01 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=2471FCF6D0A1EB6B243597AAB27A435A -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_f1de3ff53cf340cd\dxtrans.dll
[2009/04/24 18:46:58 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=36F4194F52DE96877675575785D71FFC -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20996_none_960e63709ddeaf11\dxtrans.dll
[2009/12/18 08:09:10 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=4619FBF915FBB26A95F6DD709D70465A -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16982_none_f1aa32d33d19fc57\dxtrans.dll
[2010/01/25 17:11:01 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=47646D338647AF7E961B5F84D2F4A17C -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_95bfa4718495cf97\dxtrans.dll
[2010/01/25 17:11:00 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=4CCA2A25F73DAFDC67B11D8AADB4F24C -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_9656ea289da8d2b7\dxtrans.dll
[2010/01/25 17:11:00 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=59096D239752477296E535DEEBD7B785 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_f27585ac560643ed\dxtrans.dll
[2010/03/09 11:59:22 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=5E9C5BA42434DAD433F1F06012FE391C -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21242_none_f25ee95656175cc6\dxtrans.dll
[2010/01/25 17:29:19 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=60A1A3DBBB4A1A1C13C64C5180ABFE7A -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16851_none_95ab04e384a520d0\dxtrans.dll
[2009/12/18 07:47:39 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=6CB4EA4DAAD697974C3DF945CBCB7D31 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16982_none_958b974f84bc8b21\dxtrans.dll
[2009/12/18 07:21:18 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=8ADA70D318AEC4CD90C91A2EA6A738B3 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21184_none_96170cd09dd890db\dxtrans.dll
[2010/01/25 17:24:28 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=8DB869DD3C65470A94B334A16704228B -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_f283585c55fb7128\dxtrans.dll
[2010/01/25 17:29:17 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=921F05CBDC9232360AE8BF03864F6EF4 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21046_none_f262e6b25613c7d4\dxtrans.dll
[2009/12/18 08:11:20 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=9284383FB1ABF8E6DCCFFAEE5D157440 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21184_none_f235a85456360211\dxtrans.dll
[2010/01/25 17:29:18 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=92E1CF32D214E333BDD9E6D4948441E7 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21046_none_96444b2e9db6569e\dxtrans.dll
[2009/04/24 18:46:58 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=9699D9C6A92D6609711605D988DED065 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16809_none_f207b2533cd2d109\dxtrans.dll
[2010/01/25 17:29:18 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=9DCCA7BF23DE81D4A48B35076766D9B3 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16851_none_f1c9a0673d029206\dxtrans.dll
[2008/01/20 21:47:55 | 000,310,784 | ---- | M] (Microsoft Corporation) MD5=BE57AAC556BCC2882FB7F36232377AC8 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6001.18000_none_f3e4ea933a01839d\dxtrans.dll
[2008/01/20 21:48:45 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=D12FEB0E3EA6063A65A5498ED90FD790 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6001.18000_none_97c64f0f81a41267\dxtrans.dll
[2010/03/09 11:49:34 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=E2CE9A15106F3A4CEAD4FDFB501C371B -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.17037_none_95c6807f848fb161\dxtrans.dll
[2009/03/08 06:37:51 | 000,318,464 | ---- | M] (Microsoft Corporation) MD5=EE15594454DE778F897547EEC4E042DE -- C:\Windows\SysNative\dxtrans.dll
[2009/03/08 06:37:51 | 000,318,464 | ---- | M] (Microsoft Corporation) MD5=EE15594454DE778F897547EEC4E042DE -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_8.0.6001.18702_none_d6d00ced4fccf3fa\dxtrans.dll
[2010/03/09 11:26:33 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=EE7EE3212EEE955B27BBB408C449CED7 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21242_none_96404dd29db9eb90\dxtrans.dll
[2010/01/25 17:24:30 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=EF0595F7969D751ECDD00F2FCF0FF60C -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_95db47eb84802ce6\dxtrans.dll
[2009/04/24 18:46:57 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=F6E306E675945094C8BEC8916EA3FB4D -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20996_none_f22cfef4563c2047\dxtrans.dll
[2010/03/09 11:59:46 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=FCBBFD3E0A53466AFC3AC580F007DA16 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.17037_none_f1e51c033ced2297\dxtrans.dll
[2009/03/08 06:31:37 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\dxtrans.dll
[2009/03/08 06:31:37 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_8.0.6001.18702_none_7ab17169976f82c4\dxtrans.dll

< MD5 for: IEFRAME.DLL >
[2008/01/20 21:48:30 | 007,004,672 | ---- | M] (Microsoft Corporation) MD5=00135B3F82BEB3DEC93D0EFC9525E7BF -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18000_none_c0c10823667c7a7f\ieframe.dll
[2010/12/18 01:22:10 | 011,080,704 | ---- | M] (Microsoft Corporation) MD5=001C55FA3A4BE6AA88AE15BDC47F9FB0 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19019_none_47899d01c3ec7488\ieframe.dll
[2009/12/18 08:01:57 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=006A45E2D2B5C855E6553AA09128BBCE -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18385_none_6450f463ae5b5ef9\ieframe.dll
[2010/11/02 02:37:13 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=01DE30569C6D7B80E2E12402BDA95E0A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23091_none_a3d351ba95af9d31\ieframe.dll
[2010/01/25 17:28:52 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=02EECD62E27F7A7AD54CA09C50E8BFC8 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18248_none_647f330bae383e13\ieframe.dll
[2010/01/25 17:28:51 | 007,004,672 | ---- | M] (Microsoft Corporation) MD5=047F1D2ACC70635D71B9467DB4ABF201 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18248_none_c09dce8f6695af49\ieframe.dll
[2010/06/26 01:48:16 | 011,078,656 | ---- | M] (Microsoft Corporation) MD5=0872F3C773A8D8B6984EE27002ADFB7A -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23040_none_47e9c588dd2a86ef\ieframe.dll
[2009/12/18 07:48:22 | 006,067,200 | ---- | M] (Microsoft Corporation) MD5=096C5E4BD9AC53EEDE744609ADC8C5B7 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16982_none_6267b4dfb1378203\ieframe.dll
[2010/01/25 17:24:25 | 007,067,136 | ---- | M] (Microsoft Corporation) MD5=09C852F7080FBFAC1A0DD88CE8E4EB1A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16916_none_bed600ff695894fe\ieframe.dll
[2010/09/08 01:21:09 | 011,082,240 | ---- | M] (Microsoft Corporation) MD5=0C0AEC386928B7A1485C7C966E10A44D -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23067_none_47db27b6dd347032\ieframe.dll
[2011/09/30 18:20:38 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=0C8752BA4A50FD73A9D4146E5CE4BC2D -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19154_none_a377f9497c6ed3f6\ieframe.dll
[2010/05/04 14:12:26 | 007,006,208 | ---- | M] (Microsoft Corporation) MD5=0F6E1C184A510B48275698F22386B70E -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18470_none_c075604766b532b2\ieframe.dll
[2009/04/24 18:46:37 | 007,006,720 | ---- | M] (Microsoft Corporation) MD5=125323F03C4D3DC2CCA5EC95406EF73C -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22355_none_c1199a907fbe1eff\ieframe.dll
[2011/09/30 18:55:59 | 012,478,976 | ---- | M] (Microsoft Corporation) MD5=18920C2317E51F0494838781591B91CE -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23250_none_a3fd94ec95900e64\ieframe.dll
[2011/05/28 02:05:23 | 011,084,288 | ---- | M] (Microsoft Corporation) MD5=1A3BF4DCAB7EB64B6E7DBB826653D585 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23181_none_47bf8808dd4a0d31\ieframe.dll
[2010/12/18 02:11:33 | 011,082,752 | ---- | M] (Microsoft Corporation) MD5=1FD68562A887EBD554D464AA6F5DE426 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23111_none_480b377cdd11499a\ieframe.dll
[2009/12/18 08:12:00 | 007,072,768 | ---- | M] (Microsoft Corporation) MD5=20A9771D52FAA29AC9AB39E104F8CEAA -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21184_none_bf11c5e482b0f8f3\ieframe.dll
[2010/01/25 17:10:56 | 006,068,736 | ---- | M] (Microsoft Corporation) MD5=2101D2C8E014967A2C3C3A2C09E25399 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21023_none_633307b8ca23c999\ieframe.dll
[2010/01/25 17:23:55 | 007,005,184 | ---- | M] (Microsoft Corporation) MD5=21AB88548BDC3F7E918374D612DF7B7A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18319_none_c0bf4083667c71f4\ieframe.dll
[2010/05/04 13:25:05 | 006,072,832 | ---- | M] (Microsoft Corporation) MD5=23F59613C195309FE3911EB12314117C -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22685_none_64da94fac778f911\ieframe.dll
[2010/05/04 14:38:41 | 007,008,256 | ---- | M] (Microsoft Corporation) MD5=243B7ECF777E03EF75592159D9A5E034 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22398_none_c2d7d3587d022761\ieframe.dll
[2009/04/24 18:46:54 | 007,067,136 | ---- | M] (Microsoft Corporation) MD5=25F2725547E948317651434F7C6D9E67 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16809_none_bee3cfe3694dc7eb\ieframe.dll
[2010/01/25 17:29:12 | 007,071,232 | ---- | M] (Microsoft Corporation) MD5=26E07B8D8C56A712D9C5D812F09016FC -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21046_none_bf3f0442828ebeb6\ieframe.dll
[2011/07/23 06:35:16 | 011,083,776 | ---- | M] (Microsoft Corporation) MD5=26EAB980E73ACF670861E91D0DFE2F44 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23216_none_48103ad4dd0cc574\ieframe.dll
[2009/04/24 18:46:56 | 006,066,688 | ---- | M] (Microsoft Corporation) MD5=27EC1F700136383F3947560BEEB0993A -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16809_none_62c5345fb0f056b5\ieframe.dll
[2010/01/25 17:10:58 | 006,066,176 | ---- | M] (Microsoft Corporation) MD5=2976043E4EC2110C7CCED1A070A88F48 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16830_none_629bc201b110c679\ieframe.dll
[2010/01/25 17:10:40 | 006,070,784 | ---- | M] (Microsoft Corporation) MD5=2CD8EE93FF9AB670F9C7C7DDEE389276 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22389_none_64de9070c77566f8\ieframe.dll
[2009/12/16 06:42:09 | 006,079,488 | ---- | M] (Microsoft Corporation) MD5=2CFFD86F80C5EF359D4913C468ED8BC4 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18167_none_664f089dab6fac10\ieframe.dll
[2009/12/18 07:55:56 | 007,008,768 | ---- | M] (Microsoft Corporation) MD5=304843D4AF7A3B966066518F9F9B9659 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22585_none_c0f92e987fd66d20\ieframe.dll
[2010/01/25 17:24:10 | 006,079,488 | ---- | M] (Microsoft Corporation) MD5=31F2D00E83230909659232FCFF5B12F1 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18100_none_6688e61fab455309\ieframe.dll
[2010/03/09 11:50:34 | 006,067,200 | ---- | M] (Microsoft Corporation) MD5=41E59135D4532EC9743430A5C148DEAA -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.17037_none_62a29e0fb10aa843\ieframe.dll
[2009/04/24 18:46:52 | 007,070,720 | ---- | M] (Microsoft Corporation) MD5=4289146859FA86DD8405CE8F372EF725 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.20996_none_bf091c8482b71729\ieframe.dll
[2010/09/08 02:08:21 | 012,476,416 | ---- | M] (Microsoft Corporation) MD5=44316EC77E4EE42CAC889B5476DC9166 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23067_none_a3f9c33a9591e168\ieframe.dll
[2010/05/04 13:37:46 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=454BD137915CB4A6E26880873D8B2191 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18470_none_6456c4c3ae57c17c\ieframe.dll
[2011/11/03 02:44:04 | 012,478,464 | ---- | M] (Microsoft Corporation) MD5=4715D1A7EE849DDC2CEEE575FA1D8B0F -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23266_none_a3f8c6bc9592c25f\ieframe.dll
[2011/02/22 01:16:39 | 011,080,704 | ---- | M] (Microsoft Corporation) MD5=4F0A36761653F62FEA96DB79FE15485F -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19048_none_47682cf3c405af04\ieframe.dll
[2010/01/25 17:10:55 | 007,070,720 | ---- | M] (Microsoft Corporation) MD5=50C5860569ED5FC00E8069EB69EA58A7 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21023_none_bf51a33c82813acf\ieframe.dll
[2011/09/30 18:41:50 | 011,083,776 | ---- | M] (Microsoft Corporation) MD5=51584B59A2DC807C2F4F6BCAE5A5E150 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23250_none_47def968dd329d2e\ieframe.dll
[2009/04/24 18:46:40 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=51D9683438A5E0852382353D06B0D7EF -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18203_none_64a57149ae1c4f9c\ieframe.dll
[2009/12/16 07:12:22 | 007,007,232 | ---- | M] (Microsoft Corporation) MD5=5373E1624996E4069D5384799DA3EBDC -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18167_none_c26da42163cd1d46\ieframe.dll
[2010/01/25 17:23:53 | 007,008,768 | ---- | M] (Microsoft Corporation) MD5=5458AD42A598CDD76FD63FABD6F5250C -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22508_none_c152aed67f92d99d\ieframe.dll
[2010/01/25 17:10:41 | 007,005,184 | ---- | M] (Microsoft Corporation) MD5=55A8AB375DE8B724ED217F7DAF25EF26 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18226_none_c0b16dd3668744b9\ieframe.dll
[2009/12/17 06:54:44 | 007,008,256 | ---- | M] (Microsoft Corporation) MD5=587745E21DBA0ABBB682079D16E81BD3 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22290_none_c2cfcf227d095f82\ieframe.dll
[2010/01/25 17:24:09 | 007,006,208 | ---- | M] (Microsoft Corporation) MD5=5A35BDE5AD6648618601889E90639876 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18100_none_c2a781a363a2c43f\ieframe.dll
[2011/05/28 01:04:02 | 011,081,728 | ---- | M] (Microsoft Corporation) MD5=5BB1B169530E1D48AB302ED086F5ECF9 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19088_none_473ced43c4261ec8\ieframe.dll
[2010/06/26 01:25:53 | 012,473,344 | ---- | M] (Microsoft Corporation) MD5=5CECF571861BD5220D2840F3936BC6DA -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18943_none_a381eee37c676e45\ieframe.dll
[2010/03/09 11:27:24 | 006,070,784 | ---- | M] (Microsoft Corporation) MD5=5CEEC8AA8397F59E5DC479939EF4B9F4 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21242_none_631c6b62ca34e272\ieframe.dll
[2010/05/04 14:39:08 | 007,006,208 | ---- | M] (Microsoft Corporation) MD5=5DD9BAF2DF6D2349A25125B852F8945C -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18255_none_c276755f63c6cbce\ieframe.dll
[2010/11/02 02:07:02 | 011,082,752 | ---- | M] (Microsoft Corporation) MD5=6044E16C44573794E2B270CB3AB4C16F -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23091_none_47b4b636dd522bfb\ieframe.dll
[2009/12/18 05:15:54 | 006,072,832 | ---- | M] (Microsoft Corporation) MD5=611E0483F2C99B456532472C98BB2106 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22585_none_64da9314c778fbea\ieframe.dll
[2010/05/04 14:10:47 | 006,080,000 | ---- | M] (Microsoft Corporation) MD5=61A7177D77D2BB2E9D70B0CD023CA035 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18255_none_6657d9dbab695a98\ieframe.dll
[2010/12/18 02:49:07 | 012,476,416 | ---- | M] (Microsoft Corporation) MD5=625ED80E39E92F135D080B6A3CAC3AEA -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23111_none_a429d300956ebad0\ieframe.dll
[2010/01/25 17:24:06 | 007,007,744 | ---- | M] (Microsoft Corporation) MD5=6353B0B9478D3912F3EACCCABFBA9EBB -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22212_none_c3284f167cc6b2a8\ieframe.dll
[2009/12/18 08:08:04 | 007,005,696 | ---- | M] (Microsoft Corporation) MD5=6570949C5B88E82D3BE1BDAC5A6581A0 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18385_none_c06f8fe766b8d02f\ieframe.dll
[2010/03/09 12:00:00 | 007,073,792 | ---- | M] (Microsoft Corporation) MD5=67CBAB630FF68DBD3F6F2B43F5091A71 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21242_none_bf3b06e6829253a8\ieframe.dll
[2010/01/25 17:28:50 | 006,071,296 | ---- | M] (Microsoft Corporation) MD5=6849FDB2BA739EF969E3B80A8BAAA73C -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22418_none_65294180c73d8731\ieframe.dll
[2010/11/02 01:23:34 | 012,474,368 | ---- | M] (Microsoft Corporation) MD5=6D5B662C18571849BD7F015414C0E04B -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18999_none_a351e1037c8a9204\ieframe.dll
[2009/03/08 06:39:47 | 011,063,808 | ---- | M] (Microsoft Corporation) MD5=729DA5D23A9AD20A6AA353156A126420 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18702_none_478d8ef9c3ea79a6\ieframe.dll
[2010/01/25 17:24:24 | 006,070,784 | ---- | M] (Microsoft Corporation) MD5=72B085F6F15935E7C9160719FAEEF8C5 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21116_none_6340da68ca18f6d4\ieframe.dll
[2009/12/18 07:22:15 | 006,071,296 | ---- | M] (Microsoft Corporation) MD5=7360F9C397DFC0770938F562599935B3 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21184_none_62f32a60ca5387bd\ieframe.dll
[2010/01/25 17:29:15 | 007,067,136 | ---- | M] (Microsoft Corporation) MD5=7784D98EB73E63D3B6ABFF8ABDCEEFD6 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16851_none_bea5bdf7697d88e8\ieframe.dll
[2011/07/23 06:23:28 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=77D13C5C6BF96A50A7206987ED858983 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19120_none_a39467e57c5a1ac7\ieframe.dll
[2010/01/25 17:10:57 | 007,067,648 | ---- | M] (Microsoft Corporation) MD5=7871F2DD970E9F65349F47F13510EDF3 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16830_none_beba5d85696e37af\ieframe.dll
[2010/09/08 00:56:52 | 011,080,192 | ---- | M] (Microsoft Corporation) MD5=7AEBF0E6158B66CDF0E5859326CA9E82 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18975_none_4744e42fc4208390\ieframe.dll
[2010/06/26 02:04:15 | 012,471,296 | ---- | M] (Microsoft Corporation) MD5=7C0CAC0A7AE41D7F5E87697FCAD4D3D4 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23040_none_a408610c9587f825\ieframe.dll
[2011/02/22 02:50:21 | 012,477,440 | ---- | M] (Microsoft Corporation) MD5=7ED9F1D161314B9CFBD8F3F6BF95CE9C -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23143_none_a40b63d095854151\ieframe.dll
[2010/01/25 17:23:54 | 006,072,832 | ---- | M] (Microsoft Corporation) MD5=805F6270BA991395EA943738E954E0AC -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22508_none_65341352c7356867\ieframe.dll
[2008/01/20 21:49:15 | 006,068,736 | ---- | M] (Microsoft Corporation) MD5=8320A8937995094D00082D7CE97A7AB1 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18000_none_64a26c9fae1f0949\ieframe.dll
[2010/03/11 11:49:51 | 006,081,536 | ---- | M] (Microsoft Corporation) MD5=839E0524B941CDB65A8F99975849ED7A -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22360_none_66d1a548c49397a0\ieframe.dll
[2010/05/04 13:56:14 | 007,008,768 | ---- | M] (Microsoft Corporation) MD5=83AD0E5179FAED65620F52B33FE61FF5 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22685_none_c0f9307e7fd66a47\ieframe.dll
[2011/02/22 02:13:11 | 011,082,752 | ---- | M] (Microsoft Corporation) MD5=855B822C6C390BC30ED36C08518334C4 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23143_none_47ecc84cdd27d01b\ieframe.dll
[2010/01/25 17:29:16 | 006,066,176 | ---- | M] (Microsoft Corporation) MD5=85D2C137B1A1B4F5E8002B8CB1D071B1 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16851_none_62872273b12017b2\ieframe.dll
[2010/03/11 12:07:52 | 007,008,768 | ---- | M] (Microsoft Corporation) MD5=902CFB130C5459569FF2E086CDDF34D7 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22653_none_c1179fae7fbfe3c6\ieframe.dll
[2010/03/11 09:55:17 | 006,072,832 | ---- | M] (Microsoft Corporation) MD5=93E8F3463E8AA9928F89CD9E4658D633 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22653_none_64f9042ac7627290\ieframe.dll
[2010/01/25 17:24:08 | 006,081,024 | ---- | M] (Microsoft Corporation) MD5=9DF8942EC241CA1AD2639C0F31314865 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22212_none_6709b392c4694172\ieframe.dll
[2010/03/09 11:25:23 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=A794BB32A418603406D32AC46D1DDEF3 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18444_none_647b35afae3bd305\ieframe.dll
[2009/12/18 08:09:53 | 007,071,232 | ---- | M] (Microsoft Corporation) MD5=A98F3541B8E29AEFF4E4FC4241BC834A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16982_none_be8650636994f339\ieframe.dll
[2009/12/17 06:59:33 | 006,081,536 | ---- | M] (Microsoft Corporation) MD5=B21CFE3DF053CAE884D1068D40039274 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22290_none_66b1339ec4abee4c\ieframe.dll
[2010/11/02 00:57:10 | 011,080,704 | ---- | M] (Microsoft Corporation) MD5=B49453BBD9D0D2851613D7B443FBF682 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18999_none_4733457fc42d20ce\ieframe.dll
[2011/05/28 01:23:28 | 012,477,440 | ---- | M] (Microsoft Corporation) MD5=B626D5F61BA428DAC1307B82D6715DB6 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19088_none_a35b88c77c838ffe\ieframe.dll
[2010/05/04 00:55:41 | 011,076,096 | ---- | M] (Microsoft Corporation) MD5=B81B1FE1B9038D7D01227D700B1DCD6B -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18928_none_477df4a9c3f543e0\ieframe.dll
[2010/05/04 14:34:20 | 006,081,536 | ---- | M] (Microsoft Corporation) MD5=BA4444695B01E42FD559E0C4524310D6 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22398_none_66b937d4c4a4b62b\ieframe.dll
[2011/05/28 02:39:57 | 012,478,464 | ---- | M] (Microsoft Corporation) MD5=BCC39BC6A89683C3A06E5A0A88DD0B85 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23181_none_a3de238c95a77e67\ieframe.dll
[2009/04/24 18:46:39 | 007,004,160 | ---- | M] (Microsoft Corporation) MD5=BEC47FA803DFBE08E8F740A5EDDCA493 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18203_none_c0c40ccd6679c0d2\ieframe.dll
[2011/11/03 01:49:34 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=C70C65A2E532AB506475A57D5973C753 -- C:\Windows\SysNative\ieframe.dll
[2011/11/03 01:49:34 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=C70C65A2E532AB506475A57D5973C753 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19170_none_a35e58497c82a67c\ieframe.dll
[2010/05/04 01:51:47 | 012,468,736 | ---- | M] (Microsoft Corporation) MD5=CC473A6C4CBB6F1EE614855D889CE2F0 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18928_none_a39c902d7c52b516\ieframe.dll
[2010/05/04 01:30:16 | 011,078,144 | ---- | M] (Microsoft Corporation) MD5=CDCD221996D664E4E2FF618ED446F4A2 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23019_none_481337e6dd0a172b\ieframe.dll
[2010/03/09 11:03:44 | 007,007,232 | ---- | M] (Microsoft Corporation) MD5=CF4E0D73EA56C2FBAE839396026FBC6A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18226_none_c297e56d63ad9152\ieframe.dll
[2010/01/25 17:28:49 | 007,007,744 | ---- | M] (Microsoft Corporation) MD5=D03BA2DA413A906200D3E9DFCB6787A8 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22418_none_c147dd047f9af867\ieframe.dll
[2009/04/11 01:28:19 | 006,079,488 | ---- | M] (Microsoft Corporation) MD5=D0DB6CA4E21BE6809F356C90BBDE8A66 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18005_none_668de5abab40d495\ieframe.dll
[2010/01/25 17:24:27 | 006,067,200 | ---- | M] (Microsoft Corporation) MD5=D80F2A9880B119CC31217FFB6CDDE251 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16916_none_62b7657bb0fb23c8\ieframe.dll
[2011/11/03 02:26:09 | 011,083,776 | ---- | M] (Microsoft Corporation) MD5=DA8D611B2DECB8F3846CD18A459D66D1 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23266_none_47da2b38dd355129\ieframe.dll
[2010/03/09 10:39:49 | 006,080,000 | ---- | M] (Microsoft Corporation) MD5=DC81376E63AE926829541C97F0DD2F16 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18226_none_667949e9ab50201c\ieframe.dll
[2010/01/25 17:10:39 | 007,006,720 | ---- | M] (Microsoft Corporation) MD5=DD8EA3EF4271EC7E122D624B34233F14 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22389_none_c0fd2bf47fd2d82e\ieframe.dll
[2010/09/08 01:36:23 | 012,474,368 | ---- | M] (Microsoft Corporation) MD5=E0E100F03FA2C923BB1975FD1819A0A9 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18975_none_a3637fb37c7df4c6\ieframe.dll
[2010/01/25 17:23:56 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=E2ED81875127B97CE803E139EE609F81 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18319_none_64a0a4ffae1f00be\ieframe.dll
[2010/12/18 01:50:14 | 012,474,368 | ---- | M] (Microsoft Corporation) MD5=E461E6079A16F13CA925BD0DEBC148D8 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19019_none_a3a838857c49e5be\ieframe.dll
[2010/01/25 17:29:13 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=E76D2A320CD510178909B3A65433619E -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21046_none_632068beca314d80\ieframe.dll
[2011/02/22 01:46:18 | 012,474,880 | ---- | M] (Microsoft Corporation) MD5=E91C418111CEDCC8DC4A1848B62C82FF -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19048_none_a386c8777c63203a\ieframe.dll
[2010/03/11 14:02:08 | 007,008,256 | ---- | M] (Microsoft Corporation) MD5=E9DC65CF6574ABAF31BF9EF71A601537 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22360_none_c2f040cc7cf108d6\ieframe.dll
[2010/01/25 17:24:23 | 007,073,280 | ---- | M] (Microsoft Corporation) MD5=EB7A1AFFE93B8A6D1153044DB17AF138 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21116_none_bf5f75ec8276680a\ieframe.dll
[2009/04/24 18:46:53 | 006,068,736 | ---- | M] (Microsoft Corporation) MD5=F038B3611C7482AA0095DAC114BB9649 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.20996_none_62ea8100ca59a5f3\ieframe.dll
[2009/04/11 02:11:15 | 007,005,184 | ---- | M] (Microsoft Corporation) MD5=F1D7AB9D524EF28EC69A147F99ECB8A6 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18005_none_c2ac812f639e45cb\ieframe.dll
[2010/03/09 11:50:34 | 007,005,696 | ---- | M] (Microsoft Corporation) MD5=F6766C229ACD9250966A2041D9D7EE08 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18444_none_c099d1336699443b\ieframe.dll
[2009/03/08 06:44:16 | 012,454,400 | ---- | M] (Microsoft Corporation) MD5=F7CC713935F3055CFE2540244FBA26F0 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18702_none_a3ac2a7d7c47eadc\ieframe.dll
[2011/07/23 07:03:32 | 012,478,464 | ---- | M] (Microsoft Corporation) MD5=F821DD7A553557EBDA4EC945E2EB63FC -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23216_none_a42ed658956a36aa\ieframe.dll
[2010/06/26 01:02:14 | 011,077,120 | ---- | M] (Microsoft Corporation) MD5=F8427C8E999FBCB98575C705A464F854 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18943_none_4763535fc409fd0f\ieframe.dll
[2009/04/24 18:46:38 | 006,070,784 | ---- | M] (Microsoft Corporation) MD5=F8B2EF31C8BBDE60891B5EF7E3D6063E -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22355_none_64faff0cc760adc9\ieframe.dll
[2011/07/23 05:59:34 | 011,081,728 | ---- | M] (Microsoft Corporation) MD5=F8EA880F59679BFCF18BC11831800035 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19120_none_4775cc61c3fca991\ieframe.dll
[2011/09/30 18:01:33 | 011,081,728 | ---- | M] (Microsoft Corporation) MD5=FA2B3C1DCC77AE9ED3574C5ADC84D1E9 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19154_none_47595dc5c41162c0\ieframe.dll
[2010/01/25 17:10:42 | 006,068,736 | ---- | M] (Microsoft Corporation) MD5=FA7925AA92F801F01F4D1084C0D3A6C2 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18226_none_6492d24fae29d383\ieframe.dll
[2010/03/09 12:00:50 | 007,071,232 | ---- | M] (Microsoft Corporation) MD5=FE00A9B7D32FA28887BF13D4E9F8321A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.17037_none_bec1399369681979\ieframe.dll
[2010/05/04 01:55:35 | 012,470,272 | ---- | M] (Microsoft Corporation) MD5=FF75A0E20D8D7B0C117CF89E179C926F -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23019_none_a431d36a95678861\ieframe.dll
[2011/11/03 01:17:07 | 011,081,728 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\ieframe.dll
[2011/11/03 01:17:07 | 011,081,728 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19170_none_473fbcc5c4253546\ieframe.dll

< MD5 for: MSXML3.DLL >
[2009/08/11 11:56:29 | 001,875,968 | ---- | M] (Microsoft Corporation) MD5=05A1B8045E7DC543B454D23215143A0A -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22492_none_e4b72fe3689858d8\msxml3.dll
[2010/06/11 11:08:18 | 001,875,456 | ---- | M] (Microsoft Corporation) MD5=0B32A76E0D5034A3020BBF32A5EC0E63 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18490_none_e42b946a4f7c8387\msxml3.dll
[2010/06/11 10:30:23 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=12A4E29C7F0C1B1E89541830FD0E52F1 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18490_none_880cf8e6971f1251\msxml3.dll
[2010/06/11 10:53:24 | 001,875,968 | ---- | M] (Microsoft Corporation) MD5=130AFCF74D4904DD29BF09CE117C7F1B -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22709_none_e51f86e768490635\msxml3.dll
[2009/04/24 19:08:29 | 001,809,408 | ---- | M] (Microsoft Corporation) MD5=144E16BA9F7AA2C596106DE7A340C4E0 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22258_none_e4e86d83687286d0\msxml3.dll
[2009/04/11 02:11:16 | 001,804,288 | ---- | M] (Microsoft Corporation) MD5=1BB8A40C45A577B6901A4A21EDDE1B27 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18005_none_e678552a4c555ebe\msxml3.dll
[2010/06/11 11:15:06 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=2B338AB80CF27D14CB75D94E294A1AB8 -- C:\Windows\SysWOW64\msxml3.dll
[2010/06/11 11:15:06 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=2B338AB80CF27D14CB75D94E294A1AB8 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18269_none_8a1cdf129424f4d8\msxml3.dll
[2010/06/11 11:31:45 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=3DC3074B0A736E086AC66DE6AB0786BA -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22422_none_8acabb6dad2870a4\msxml3.dll
[2009/08/11 12:06:23 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=484EBDDCC552DF7DF8817C4E7B0A60EA -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18087_none_e623d65e4c9470f4\msxml3.dll
[2010/06/11 11:46:28 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=55B30E7DFB41023ECB804B93FB0574EF -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22422_none_e6e956f16585e1da\msxml3.dll
[2009/08/11 12:07:46 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=5789DF18FFA85B2C52C91680B5563C6D -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22196_none_e6a1a2f365bb1358\msxml3.dll
[2009/04/11 01:28:22 | 001,183,232 | ---- | M] (Microsoft Corporation) MD5=5942F272BBEF5A77BF1DCE13BB5FAC8E -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18005_none_8a59b9a693f7ed88\msxml3.dll
[2008/01/20 21:48:11 | 001,807,360 | ---- | M] (Microsoft Corporation) MD5=7C17F44B45BA576E5DA83AA8FD5FD98D -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18000_none_e48cdc1e4f339372\msxml3.dll
[2009/08/11 11:58:29 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=8A728F413C953A2CD9ABA02C0D21A7F0 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22196_none_8a83076fad5da222\msxml3.dll
[2009/04/24 19:08:31 | 001,194,496 | ---- | M] (Microsoft Corporation) MD5=8FC34AF6DA61DF291FB48DACECB8AF83 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16745_none_8661c59c99cb7ce9\msxml3.dll
[2008/01/20 21:48:59 | 001,190,400 | ---- | M] (Microsoft Corporation) MD5=8FCDFB955F5BFD05E45C035A5FD2B7AB -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18000_none_886e409a96d6223c\msxml3.dll
[2009/08/10 07:51:16 | 001,260,032 | ---- | M] (Microsoft Corporation) MD5=91070AD16D21818E4E1A46605479B2C2 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.21103_none_87147d71b2caa7d1\msxml3.dll
[2010/06/11 11:38:10 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=9F6CDCE3281466C6E6FFA57E8F23BFC1 -- C:\Windows\SysNative\msxml3.dll
[2010/06/11 11:38:10 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=9F6CDCE3281466C6E6FFA57E8F23BFC1 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18269_none_e63b7a964c82660e\msxml3.dll
[2009/08/11 10:25:41 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=A858B6604E4074233ADB3EB3FAF632E9 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22492_none_8898945fb03ae7a2\msxml3.dll
[2009/04/24 19:08:30 | 001,838,080 | ---- | M] (Microsoft Corporation) MD5=A96FB36114F456DA11F413032325F29B -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.20910_none_e3256e236b32b88a\msxml3.dll
[2009/04/24 19:08:29 | 001,191,936 | ---- | M] (Microsoft Corporation) MD5=B1ABC3B1953BE70FE78045C401A03B50 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22258_none_88c9d1ffb015159a\msxml3.dll
[2009/08/10 06:00:37 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=B9CA2EA9DCA1A0EEE34FA806BBCF7A40 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18306_none_8874480896d0b1bb\msxml3.dll
[2010/06/11 10:25:07 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=C25D39750D692573AF2153E0E6E03F5D -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22709_none_8900eb63afeb94ff\msxml3.dll
[2009/04/24 19:08:30 | 001,191,936 | ---- | M] (Microsoft Corporation) MD5=C41551DD53FC9B7BE77AC5901E640E16 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18136_none_8853d47896e90b40\msxml3.dll
[2009/08/10 08:05:23 | 001,260,032 | ---- | M] (Microsoft Corporation) MD5=C72DC4848F94A84BDBAE3B1080086316 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16903_none_868b088499acd4c5\msxml3.dll
[2009/04/24 19:08:31 | 001,837,568 | ---- | M] (Microsoft Corporation) MD5=CE87976751535C81629643EC22DDDD5A -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16745_none_e28061205228ee1f\msxml3.dll
[2009/08/10 08:21:02 | 001,902,592 | ---- | M] (Microsoft Corporation) MD5=D7E0CB9A20C07A5677CE250E279D6693 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.21103_none_e33318f56b281907\msxml3.dll
[2009/08/10 09:09:07 | 001,875,456 | ---- | M] (Microsoft Corporation) MD5=E21EAAA0503922DE65AAC897BF756CC2 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18306_none_e492e38c4f2e22f1\msxml3.dll
[2009/08/11 11:44:26 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=E82AAC9B68DD4345821C80B111691F10 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18087_none_8a053ada9436ffbe\msxml3.dll
[2009/08/10 08:17:13 | 001,902,080 | ---- | M] (Microsoft Corporation) MD5=F27925A124C3F7CA41BB427C57CD450B -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16903_none_e2a9a408520a45fb\msxml3.dll
[2009/04/24 19:08:30 | 001,194,496 | ---- | M] (Microsoft Corporation) MD5=F747633B7D3BCC9950497AA1E8E4BF76 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.20910_none_8706d29fb2d54754\msxml3.dll
[2009/04/24 19:08:29 | 001,809,408 | ---- | M] (Microsoft Corporation) MD5=F87EC09D340A5C088BE2805501B024E4 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18136_none_e4726ffc4f467c76\msxml3.dll

< %systemroot%\system32\*.dll /lockedfiles >
[2009/03/08 06:31:42 | 000,348,160 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll
[2009/03/08 06:31:37 | 000,216,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll
[2011/11/03 01:17:07 | 011,081,728 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ieframe.dll

< >

========== Alternate Data Streams ==========

@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:CA0CE093

< End of report >

#12
RKinner

Posted 12 February 2012 - 12:14 PM

Malware Expert

Expert
24,624 posts

Can you find and attach C:\Windows\System32\tcpmon.ini ?

Do you have KB971512 installed?

Let's try and install IE9

Go to http://windows.micro...dwide-languages and on the English line, change the Windows Version to Windows Vista-64 bit then hit Download.

Uncheck the Bing and MSN defaults if you see them.

Once it installs, reboot and run the last OTL custom scan again.

#13
baseballucdoy

Posted 12 February 2012 - 05:44 PM

Member

Topic Starter
Member
11 posts

I was able to track down that file in question, but am technologically clueless and wasn't able to attach it for you. Sorry. I do not have KB971515. I was able to install IE9. Here are the results of the latest search:

OTL logfile created on: 12/02/2012 6:35:53 PM - Run 4
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Chris 2\Desktop
64bit-Windows Vista Ultimate Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: dd/MM/yyyy

3.99 Gb Total Physical Memory | 2.33 Gb Available Physical Memory | 58.24% Memory free
8.16 Gb Paging File | 6.39 Gb Available in Paging File | 78.30% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 450.71 Gb Total Space | 403.39 Gb Free Space | 89.50% Space Free | Partition Type: NTFS
Drive D: | 15.00 Gb Total Space | 7.72 Gb Free Space | 51.46% Space Free | Partition Type: NTFS
Drive E: | 76.27 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: CHRIS-PC | User Name: Chris 2 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/02/11 21:06:12 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTL.exe656.exe
PRC - [2011/11/28 13:01:24 | 003,744,552 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011/11/28 13:01:23 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011/02/25 09:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2009/07/09 14:36:12 | 000,139,944 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\ezprint.exe
PRC - [2009/07/09 14:36:09 | 000,766,632 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleemon.exe
PRC - [2009/05/11 05:43:48 | 001,909,472 | ---- | M] (Cisco Systems, Inc) -- C:\Program Files (x86)\Cisco Systems\Clean Access Agent\CCAAgent.exe

========== Modules (No Company Name) ==========

MOD - [2011/11/01 23:26:32 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/11/01 23:26:12 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2009/07/09 14:36:12 | 000,139,944 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\ezprint.exe
MOD - [2009/07/09 14:36:09 | 000,766,632 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleemon.exe
MOD - [2009/05/29 09:09:48 | 001,159,168 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleedrs.dll
MOD - [2009/05/29 09:08:53 | 000,389,120 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleescw.dll
MOD - [2009/05/27 07:16:50 | 000,192,512 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleedatr.dll
MOD - [2009/05/26 15:18:10 | 000,086,121 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\DLEEcfg.dll
MOD - [2009/04/07 14:25:27 | 000,409,600 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\iptk.dll
MOD - [2009/03/30 07:40:44 | 000,196,608 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epoemdll.dll
MOD - [2009/03/30 07:40:43 | 000,045,056 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epstring.dll
MOD - [2009/03/30 07:40:42 | 002,203,648 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epwizres.dll
MOD - [2009/03/30 07:40:26 | 000,708,608 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epwizard.dll
MOD - [2009/03/30 07:38:36 | 000,159,744 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\customui.dll
MOD - [2009/03/30 07:38:16 | 000,061,440 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\epfunct.dll
MOD - [2009/03/30 07:38:11 | 000,114,688 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\eputil.dll
MOD - [2009/03/30 07:37:58 | 000,139,264 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\imagutil.dll
MOD - [2009/03/10 00:43:49 | 000,155,648 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleecaps.dll
MOD - [2009/03/05 12:55:33 | 000,059,904 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleecnv4.dll
MOD - [2009/03/02 09:25:47 | 000,151,552 | ---- | M] () -- C:\Program Files (x86)\Dell V715w\dleeptp.dll

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/11/28 13:01:23 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2009/07/01 08:07:00 | 001,054,888 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysNative\dleecoms.exe -- (dlee_device)
SRV:64bit: - [2009/06/25 21:48:28 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/03/30 07:25:18 | 000,268,288 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_15f4e438\STacSV64.exe -- (STacSV)
SRV:64bit: - [2009/03/30 07:24:46 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe -- (AESTFilters)
SRV:64bit: - [2008/01/20 21:50:23 | 000,195,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008/01/20 21:46:39 | 000,383,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011/02/28 17:44:14 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/02/25 09:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/07/01 08:06:47 | 000,602,792 | ---- | M] ( ) [Auto | Running] -- C:\Windows\SysWow64\dleecoms.exe -- (dlee_device)
SRV - [2009/03/29 23:42:14 | 000,066,368 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/11/28 12:54:06 | 000,591,192 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2011/11/28 12:53:58 | 000,304,472 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2011/11/28 12:52:22 | 000,042,328 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr.sys -- (aswRdr)
DRV:64bit: - [2011/11/28 12:52:20 | 000,058,712 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2011/11/28 12:52:11 | 000,066,904 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2011/11/28 12:51:53 | 000,024,408 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2011/08/02 17:38:56 | 000,051,712 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2009/06/25 22:24:30 | 006,036,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (R300)
DRV:64bit: - [2009/06/25 22:24:30 | 006,036,480 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009/06/04 10:20:48 | 000,113,168 | ---- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2009/05/18 13:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2009/04/28 04:53:30 | 000,252,928 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\k57nd60a.sys -- (k57nd60a) Broadcom NetLink ™
DRV:64bit: - [2009/04/11 00:03:32 | 000,111,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\sdbus.sys -- (sdbus)
DRV:64bit: - [2009/03/30 07:25:34 | 000,477,696 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\stwrt64.sys -- (STHDA)
DRV:64bit: - [2009/01/12 23:46:32 | 000,318,656 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Vid.sys -- (OA001Vid)
DRV:64bit: - [2009/01/12 23:46:32 | 000,158,592 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\OA001Ufd.sys -- (OA001Ufd)
DRV:64bit: - [2008/12/22 04:26:28 | 004,735,488 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\NETw5v64.sys -- (NETw5v64) Intel®
DRV:64bit: - [2008/11/21 06:04:24 | 000,261,680 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\SynTP.sys -- (SynTP)
DRV:64bit: - [2008/08/25 03:24:28 | 000,059,392 | ---- | M] (ITE Tech. Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\DRIVERS\itecir.sys -- (itecir)
DRV:64bit: - [2008/07/29 05:58:16 | 000,057,856 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rixdpx64.sys -- (rismxdp)
DRV:64bit: - [2008/07/29 05:58:14 | 000,062,976 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimmpx64.sys -- (rimmptsk)
DRV:64bit: - [2008/07/29 05:58:12 | 000,055,296 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\DRIVERS\rimspx64.sys -- (rimsptsk)
DRV:64bit: - [2008/01/20 21:46:02 | 000,317,952 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\DRIVERS\e1e6032e.sys -- (e1express) Intel®

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 40 85 47 77 B2 BA CB 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)

O1 HOSTS File: ([2012/02/10 20:07:00 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (Dell Toolbar) - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - C:\Program Files\Dell Printable Web\toolband.dll ()
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - - No CLSID value found.
O3 - HKLM\..\Toolbar: (Dell Toolbar) - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - C:\Program Files\Dell Printable Web\toolband.dll ()
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:64bit: - HKLM..\Run: [dleemon.exe] C:\Program Files (x86)\Dell V715w\dleemon.exe ()
O4:64bit: - HKLM..\Run: [EzPrint] C:\Program Files (x86)\Dell V715w\ezprint.exe ()
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CarboniteSetupLite] C:\Program Files (x86)\Carbonite\CarbonitePreinstaller.exe (Carbonite, Inc.)
O4 - HKLM..\Run: [Dell V715w] C:\Program Files (x86)\Dell V715w\fm3032.exe ()
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://netaccess.sv...SetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.80.180.200 10.76.51.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8BD5F978-09B4-48DF-A140-D5BC4DD9D9CC}: DhcpNameServer = 10.80.180.200 10.76.51.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BDCF5074-A8B6-457C-81A9-9977FA250CC4}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Chris 2\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Chris 2\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/12/12 19:16:21 | 000,000,000 | ---D | M] - E:\AutoPlay -- [ CDFS ]
O32 - AutoRun File - [2008/12/12 19:27:54 | 000,000,047 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/02/12 18:19:05 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2012/02/12 18:19:05 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/02/12 18:19:05 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2012/02/12 18:19:05 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2012/02/12 18:19:05 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/02/12 18:19:05 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/02/12 18:19:05 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2012/02/12 18:19:05 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2012/02/12 18:19:05 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2012/02/12 18:19:05 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2012/02/12 18:19:05 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2012/02/12 18:19:05 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2012/02/12 18:19:05 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2012/02/12 18:19:05 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2012/02/12 18:19:05 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2012/02/12 18:19:05 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/02/12 18:19:05 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2012/02/12 18:19:05 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2012/02/12 18:19:05 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2012/02/12 18:19:05 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2012/02/12 18:19:05 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2012/02/12 18:19:04 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/02/12 18:19:04 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2012/02/12 18:19:04 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2012/02/12 18:19:04 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/02/12 18:19:04 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2012/02/12 18:19:04 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2012/02/12 18:19:04 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2012/02/12 18:19:04 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\advpack.dll
[2012/02/12 18:19:04 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2012/02/12 18:19:04 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2012/02/12 18:19:04 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2012/02/12 18:19:04 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2012/02/12 18:19:03 | 002,309,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/02/12 18:19:03 | 000,818,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/02/12 18:19:03 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll
[2012/02/12 18:19:03 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/02/12 18:19:03 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2012/02/12 18:19:03 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2012/02/12 18:19:03 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll
[2012/02/12 18:19:03 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll
[2012/02/12 18:19:03 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2012/02/12 18:19:03 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\advpack.dll
[2012/02/12 18:19:03 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2012/02/12 18:19:03 | 000,114,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll
[2012/02/12 18:19:03 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2012/02/12 18:19:03 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2012/02/12 18:19:03 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2012/02/12 18:19:03 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2012/02/12 18:19:03 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2012/02/12 18:19:03 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2012/02/12 18:19:03 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2012/02/12 18:19:02 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2012/02/12 18:19:02 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/02/12 18:19:02 | 000,697,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/02/12 18:19:02 | 000,603,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/02/12 18:19:02 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2012/02/12 18:19:02 | 000,452,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2012/02/12 18:19:02 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2012/02/12 18:19:02 | 000,282,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2012/02/12 18:19:02 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/02/12 18:19:02 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/02/12 18:19:02 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2012/02/12 18:19:02 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2012/02/12 18:19:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2012/02/12 18:19:02 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2012/02/12 18:19:02 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/02/12 18:19:02 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2012/02/12 18:19:02 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2012/02/12 18:19:02 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2012/02/12 18:19:02 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2012/02/12 18:19:02 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2012/02/12 18:19:02 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2012/02/12 18:19:02 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2012/02/11 21:06:11 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTL.exe656.exe
[2012/02/11 14:14:41 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/02/11 02:24:17 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/02/10 20:26:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2012/02/10 20:26:11 | 000,304,472 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2012/02/10 20:26:11 | 000,024,408 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2012/02/10 20:26:08 | 000,042,328 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2012/02/10 20:26:07 | 000,058,712 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2012/02/10 20:26:06 | 000,591,192 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2012/02/10 20:26:05 | 000,066,904 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2012/02/10 20:25:46 | 000,041,184 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2012/02/10 20:25:45 | 000,199,816 | ---- | C] (AVAST Software) -- C:\Windows\SysWow64\aswBoot.exe
[2012/02/10 20:05:31 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/02/10 19:57:37 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/02/10 19:57:37 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/02/10 19:57:37 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/02/10 19:57:30 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/02/10 18:01:23 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\Documents\tdsskiller[1]
[2012/02/10 17:59:57 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\Desktop\GooredFix Backups
[2012/02/10 17:51:03 | 000,523,264 | ---- | C] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTM11.exe
[2012/02/10 17:45:51 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\Documents\erunt[1]
[2012/02/10 16:18:32 | 000,061,440 | ---- | C] ( ) -- C:\Users\Chris 2\Desktop\VEW222.exe
[2012/02/09 22:28:53 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/02/09 20:27:52 | 004,733,440 | ---- | C] (AVAST Software) -- C:\Users\Chris 2\Desktop\aswMBR2.exe
[2012/02/09 19:47:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/02/09 19:47:14 | 000,023,152 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/02/08 21:56:18 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2012/02/08 21:53:41 | 004,399,064 | R--- | C] (Swearware) -- C:\Users\Chris 2\Desktop\CombooooFixndnd.exe
[2012/02/08 15:03:28 | 000,055,384 | ---- | C] (Sunbelt Software) -- C:\Windows\SysNative\drivers\SBREDrv.sys
[2012/02/08 14:59:12 | 000,000,000 | ---D | C] -- C:\Users\Chris 2\AppData\Local\adaware
[2012/02/08 14:59:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Ad-Aware Browsing Protection
[2012/02/08 14:59:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Toolbar Cleaner
[2012/02/08 14:58:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\adawaretb
[2012/02/08 14:58:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2008/05/23 04:25:20 | 000,364,544 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeinpa.dll
[2008/05/23 04:25:19 | 000,344,064 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeiesc.dll
[2008/05/23 04:25:18 | 000,651,264 | ---- | C] ( ) -- C:\Windows\SysWow64\dleepmui.dll
[2008/05/23 04:25:15 | 001,056,768 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeserv.dll
[2008/05/23 04:25:15 | 000,851,968 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeusb1.dll
[2008/05/23 04:25:14 | 000,581,632 | ---- | C] ( ) -- C:\Windows\SysWow64\dleelmpm.dll
[2008/05/23 04:25:13 | 000,328,360 | ---- | C] ( ) -- C:\Windows\SysWow64\dleeih.exe
[2008/05/23 04:25:12 | 000,688,128 | ---- | C] ( ) -- C:\Windows\SysWow64\dleehbn3.dll
[2008/05/23 04:25:11 | 000,602,792 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecoms.exe
[2008/05/23 04:25:11 | 000,376,832 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecomm.dll
[2008/05/23 04:25:10 | 000,802,816 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecomc.dll
[2008/05/23 04:25:09 | 000,369,320 | ---- | C] ( ) -- C:\Windows\SysWow64\dleecfg.exe

========== Files - Modified Within 30 Days ==========

[2012/02/12 18:38:59 | 000,000,418 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{C9BDE752-56DB-4800-8C20-B82FD7F534A4}.job
[2012/02/12 18:29:57 | 000,703,388 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/02/12 18:29:57 | 000,604,502 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/02/12 18:29:57 | 000,104,170 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/02/12 18:24:27 | 000,000,975 | ---- | M] () -- C:\Users\Chris 2\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/02/12 18:21:59 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/02/12 18:21:59 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/02/12 18:21:51 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/02/12 18:21:39 | 4289,576,960 | -HS- | M] () -- C:\hiberfil.sys
[2012/02/12 18:19:13 | 000,008,798 | ---- | M] () -- C:\Windows\SysWow64\icrav03.rat
[2012/02/12 18:19:13 | 000,008,798 | ---- | M] () -- C:\Windows\SysNative\icrav03.rat
[2012/02/12 18:19:13 | 000,001,988 | ---- | M] () -- C:\Windows\SysWow64\ticrf.rat
[2012/02/12 18:19:13 | 000,001,988 | ---- | M] () -- C:\Windows\SysNative\ticrf.rat
[2012/02/12 18:19:05 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2012/02/12 18:19:05 | 001,427,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/02/12 18:19:05 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2012/02/12 18:19:05 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2012/02/12 18:19:05 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/02/12 18:19:05 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/02/12 18:19:05 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2012/02/12 18:19:05 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2012/02/12 18:19:05 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2012/02/12 18:19:05 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2012/02/12 18:19:05 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2012/02/12 18:19:05 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2012/02/12 18:19:05 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2012/02/12 18:19:05 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2012/02/12 18:19:05 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2012/02/12 18:19:05 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2012/02/12 18:19:05 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/02/12 18:19:05 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2012/02/12 18:19:05 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2012/02/12 18:19:05 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2012/02/12 18:19:05 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2012/02/12 18:19:05 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2012/02/12 18:19:04 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/02/12 18:19:04 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieaksie.dll
[2012/02/12 18:19:04 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakui.dll
[2012/02/12 18:19:04 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/02/12 18:19:04 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieakeng.dll
[2012/02/12 18:19:04 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2012/02/12 18:19:04 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2012/02/12 18:19:04 | 000,114,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\advpack.dll
[2012/02/12 18:19:04 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2012/02/12 18:19:04 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\admparse.dll
[2012/02/12 18:19:04 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2012/02/12 18:19:04 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2012/02/12 18:19:03 | 002,309,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/02/12 18:19:03 | 000,818,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/02/12 18:19:03 | 000,267,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieaksie.dll
[2012/02/12 18:19:03 | 000,248,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/02/12 18:19:03 | 000,222,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2012/02/12 18:19:03 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2012/02/12 18:19:03 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakui.dll
[2012/02/12 18:19:03 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieakeng.dll
[2012/02/12 18:19:03 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2012/02/12 18:19:03 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\advpack.dll
[2012/02/12 18:19:03 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2012/02/12 18:19:03 | 000,114,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\admparse.dll
[2012/02/12 18:19:03 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2012/02/12 18:19:03 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2012/02/12 18:19:03 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2012/02/12 18:19:03 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2012/02/12 18:19:03 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2012/02/12 18:19:03 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2012/02/12 18:19:03 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2012/02/12 18:19:02 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2012/02/12 18:19:02 | 001,493,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/02/12 18:19:02 | 000,697,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/02/12 18:19:02 | 000,603,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/02/12 18:19:02 | 000,534,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2012/02/12 18:19:02 | 000,452,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2012/02/12 18:19:02 | 000,448,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2012/02/12 18:19:02 | 000,282,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2012/02/12 18:19:02 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/02/12 18:19:02 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/02/12 18:19:02 | 000,165,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2012/02/12 18:19:02 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2012/02/12 18:19:02 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2012/02/12 18:19:02 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2012/02/12 18:19:02 | 000,096,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/02/12 18:19:02 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2012/02/12 18:19:02 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2012/02/12 18:19:02 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2012/02/12 18:19:02 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2012/02/12 18:19:02 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2012/02/12 18:19:02 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2012/02/12 18:19:02 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2012/02/12 18:19:02 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2012/02/12 18:09:41 | 000,000,710 | ---- | M] () -- C:\Users\Chris 2\Desktop\tcpmon.ini - Shortcut.lnk
[2012/02/11 21:06:12 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTL.exe656.exe
[2012/02/11 17:10:33 | 000,000,512 | ---- | M] () -- C:\Users\Chris 2\Documents\MBR.dat
[2012/02/10 20:26:12 | 000,001,787 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2012/02/10 20:26:05 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2012/02/10 20:07:00 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/02/10 18:50:38 | 000,272,560 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/02/10 17:51:03 | 000,523,264 | ---- | M] (OldTimer Tools) -- C:\Users\Chris 2\Desktop\OTM11.exe
[2012/02/10 16:18:32 | 000,061,440 | ---- | M] ( ) -- C:\Users\Chris 2\Desktop\VEW222.exe
[2012/02/09 22:28:46 | 733,228,612 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/02/09 20:27:52 | 004,733,440 | ---- | M] (AVAST Software) -- C:\Users\Chris 2\Desktop\aswMBR2.exe
[2012/02/09 19:47:15 | 000,000,950 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/02/08 21:53:42 | 004,399,064 | R--- | M] (Swearware) -- C:\Users\Chris 2\Desktop\CombooooFixndnd.exe
[2012/02/08 21:47:12 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/02/08 15:03:27 | 000,055,384 | ---- | M] (Sunbelt Software) -- C:\Windows\SysNative\drivers\SBREDrv.sys
[2012/02/07 23:44:40 | 000,721,764 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/02/07 22:22:28 | 000,000,680 | ---- | M] () -- C:\Users\Chris 2\AppData\Local\d3d9caps.dat

========== Files Created - No Company Name ==========

[2012/02/12 18:19:05 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2012/02/12 18:19:02 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2012/02/12 18:09:41 | 000,000,710 | ---- | C] () -- C:\Users\Chris 2\Desktop\tcpmon.ini - Shortcut.lnk
[2012/02/10 20:26:12 | 000,001,787 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2012/02/10 19:57:37 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/02/10 19:57:37 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/02/10 19:57:37 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/02/10 19:57:37 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/02/10 19:57:37 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/02/09 22:28:46 | 733,228,612 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/02/09 20:20:57 | 000,000,512 | ---- | C] () -- C:\Users\Chris 2\Documents\MBR.dat
[2012/02/09 19:47:15 | 000,000,950 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2011/03/26 20:58:31 | 000,003,584 | ---- | C] () -- C:\Users\Chris 2\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/02/14 17:59:57 | 000,721,764 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/01/23 21:54:35 | 000,000,680 | ---- | C] () -- C:\Users\Chris 2\AppData\Local\d3d9caps.dat
[2010/02/15 18:14:42 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2010/02/15 18:14:11 | 000,107,612 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchema.bin
[2010/02/15 18:13:40 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/04/24 19:04:27 | 000,018,904 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchemaTrivial.bin
[2008/06/03 11:39:26 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2008/05/23 20:58:25 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\MSVolumeAMP.dll
[2008/05/23 04:25:21 | 000,385,024 | ---- | C] () -- C:\Windows\SysWow64\DLEEinst.dll
[2008/05/23 04:25:20 | 000,344,064 | ---- | C] () -- C:\Windows\SysWow64\dleecomx.dll
[2008/05/23 04:25:19 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\dleejswr.dll
[2008/05/23 04:25:18 | 000,106,496 | ---- | C] () -- C:\Windows\SysWow64\dleeinsr.dll
[2008/05/23 04:25:18 | 000,036,864 | ---- | C] () -- C:\Windows\SysWow64\dleecur.dll
[2008/05/23 04:25:17 | 000,323,584 | ---- | C] () -- C:\Windows\SysWow64\dleeins.dll
[2008/05/23 04:25:17 | 000,262,144 | ---- | C] () -- C:\Windows\SysWow64\dleeinsb.dll
[2008/05/23 04:25:16 | 000,253,952 | ---- | C] () -- C:\Windows\SysWow64\dleecu.dll
[2008/05/23 04:25:16 | 000,090,112 | ---- | C] () -- C:\Windows\SysWow64\dleecub.dll
[2008/05/23 04:25:03 | 000,086,121 | ---- | C] () -- C:\Windows\SysWow64\DLEEcfg.dll
[2008/05/23 04:22:06 | 000,299,008 | ---- | C] () -- C:\Windows\SysWow64\DLEEsm.dll
[2008/05/23 04:22:06 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\DLEEsmr.dll
[2008/05/23 01:37:50 | 000,000,732 | ---- | C] () -- C:\Users\Chris 2\AppData\Local\d3d9caps64.dat
[2008/05/23 00:16:41 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2008/01/20 21:49:10 | 000,060,124 | ---- | C] () -- C:\Windows\SysWow64\tcpmon.ini
[2006/11/02 10:35:48 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 07:37:14 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2006/11/02 07:24:17 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2006/11/02 07:18:17 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2006/11/02 04:47:54 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin

========== Custom Scans ==========

< MD5 for: DXTMSFT.DLL >
[2009/03/08 06:31:42 | 000,348,160 | ---- | M] (Microsoft Corporation) MD5=057D53F1490598D41D9D4DEE9A92B0B1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_8.0.6001.18702_none_7ab17169976f82c4\dxtmsft.dll
[2010/01/25 17:29:18 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=10C2AB2455ED739C498D5038B9B51A7E -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21046_none_96444b2e9db6569e\dxtmsft.dll
[2009/12/18 08:09:10 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=219CA8898BACC69507948D2BB77691EA -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16982_none_f1aa32d33d19fc57\dxtmsft.dll
[2010/01/25 17:11:00 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=29165E3CEA84849F4EB1B6F8356CE89D -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_f27585ac560643ed\dxtmsft.dll
[2010/01/25 17:11:01 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=3540941826C7D9E8860245AC4A7451BB -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_f1de3ff53cf340cd\dxtmsft.dll
[2010/01/25 17:29:19 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=39F9718825BDC05D7BF31A4F32860173 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16851_none_95ab04e384a520d0\dxtmsft.dll
[2010/01/25 17:24:29 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=3D3B4C05B6E5F3C79894FDEC4510C0E0 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_f1f9e36f3cdd9e1c\dxtmsft.dll
[2010/01/25 17:24:28 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=60820DB8D0CFF2FD47155CE9439A6A8F -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_f283585c55fb7128\dxtmsft.dll
[2010/01/25 17:29:18 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=6FA3AF2E33263BB8BA56E7F872859A98 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16851_none_f1c9a0673d029206\dxtmsft.dll
[2009/03/08 06:38:04 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=72FEDB9CB7AD10AD7ACE2867FCABF4C0 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_8.0.6001.18702_none_d6d00ced4fccf3fa\dxtmsft.dll
[2010/03/09 11:49:34 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=73432756624987A88A4C60D973140F4B -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.17037_none_95c6807f848fb161\dxtmsft.dll
[2010/03/09 11:59:22 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=75938363EDE81422290F86250E9854B5 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21242_none_f25ee95656175cc6\dxtmsft.dll
[2009/04/24 18:46:58 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=781A21A173EE7F8AABB482904E3D937E -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20996_none_960e63709ddeaf11\dxtmsft.dll
[2010/01/25 17:29:17 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=7954B018D30B01CF9B89825368262867 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21046_none_f262e6b25613c7d4\dxtmsft.dll
[2009/12/18 07:21:18 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=8A9C4E4B38423176AA1A47E388327DF1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21184_none_96170cd09dd890db\dxtmsft.dll
[2009/04/24 18:46:59 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=8B0F7C68C96BBB5866191FC9CBA11A74 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16809_none_95e916cf84755fd3\dxtmsft.dll
[2010/03/09 11:26:33 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=95215DD62DEFEC2548DCE61B2FD8CDED -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21242_none_96404dd29db9eb90\dxtmsft.dll
[2009/12/18 08:11:20 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=9DD29BFDFD5F3B86B10D2CB80B94547A -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21184_none_f235a85456360211\dxtmsft.dll
[2010/01/25 17:24:30 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=9E77C6A77002C4EBB9F53246729700D9 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_95db47eb84802ce6\dxtmsft.dll
[2010/03/09 11:59:45 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=B492FF69D572D22035E4B293EB75A028 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.17037_none_f1e51c033ced2297\dxtmsft.dll
[2008/01/20 21:48:45 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=B68FCC1F8684AB3EC4BE4D0A2537D26D -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6001.18000_none_97c64f0f81a41267\dxtmsft.dll
[2009/04/24 18:46:58 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=BB41EC94D4AAD781917EA4554024F038 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16809_none_f207b2533cd2d109\dxtmsft.dll
[2008/01/20 21:47:54 | 000,507,904 | ---- | M] (Microsoft Corporation) MD5=CEAC01AB6AB8BE66985D61BD77610A51 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6001.18000_none_f3e4ea933a01839d\dxtmsft.dll
[2010/01/25 17:11:00 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=CFB829FF0122D2ABF325CB39E98DE07A -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_9656ea289da8d2b7\dxtmsft.dll
[2009/12/18 07:47:39 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=D3E45A54C1927401A8F1BD9D53346BB6 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16982_none_958b974f84bc8b21\dxtmsft.dll
[2012/02/12 18:19:02 | 000,452,608 | ---- | M] (Microsoft Corporation) MD5=D6A99F26E31C9F15D8D8CC42FFE6D16B -- C:\Windows\SysNative\dxtmsft.dll
[2012/02/12 18:19:02 | 000,452,608 | ---- | M] (Microsoft Corporation) MD5=D6A99F26E31C9F15D8D8CC42FFE6D16B -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_9.1.8112.16421_none_b3d8258377e5c9af\dxtmsft.dll
[2010/01/25 17:11:01 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=D795BC191B3E3F333AB76205D4E3497D -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_95bfa4718495cf97\dxtmsft.dll
[2009/04/24 18:46:57 | 000,508,416 | ---- | M] (Microsoft Corporation) MD5=DB43297EEA1F5AC1BB26FCD1D2F2B6FE -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20996_none_f22cfef4563c2047\dxtmsft.dll
[2010/01/25 17:24:29 | 000,347,136 | ---- | M] (Microsoft Corporation) MD5=FA821220FC5AD0C031556378DE38A668 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_9664bcd89d9dfff2\dxtmsft.dll
[2012/02/12 18:19:05 | 000,353,792 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\dxtmsft.dll
[2012/02/12 18:19:05 | 000,353,792 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_9.1.8112.16421_none_57b989ffbf885879\dxtmsft.dll

< MD5 for: DXTRANS.DLL >
[2010/01/25 17:24:29 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=18869424D7C494EE2DB3A8FF56FB6248 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_9664bcd89d9dfff2\dxtrans.dll
[2010/01/25 17:24:29 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=1C60C7B8DDE1F470AEA86DC9EA30351B -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_f1f9e36f3cdd9e1c\dxtrans.dll
[2009/04/24 18:46:59 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=1D1FA18739919F1ACA9A9646123FA5D1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16809_none_95e916cf84755fd3\dxtrans.dll
[2010/01/25 17:11:01 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=2471FCF6D0A1EB6B243597AAB27A435A -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_f1de3ff53cf340cd\dxtrans.dll
[2009/04/24 18:46:58 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=36F4194F52DE96877675575785D71FFC -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20996_none_960e63709ddeaf11\dxtrans.dll
[2009/12/18 08:09:10 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=4619FBF915FBB26A95F6DD709D70465A -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16982_none_f1aa32d33d19fc57\dxtrans.dll
[2010/01/25 17:11:01 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=47646D338647AF7E961B5F84D2F4A17C -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_95bfa4718495cf97\dxtrans.dll
[2010/01/25 17:11:00 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=4CCA2A25F73DAFDC67B11D8AADB4F24C -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_9656ea289da8d2b7\dxtrans.dll
[2010/01/25 17:11:00 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=59096D239752477296E535DEEBD7B785 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_f27585ac560643ed\dxtrans.dll
[2009/03/08 06:31:37 | 000,216,064 | ---- | M] (Microsoft Corporation) MD5=5E1A0476E009A1930A524DFF4CA13982 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_8.0.6001.18702_none_7ab17169976f82c4\dxtrans.dll
[2010/03/09 11:59:22 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=5E9C5BA42434DAD433F1F06012FE391C -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21242_none_f25ee95656175cc6\dxtrans.dll
[2010/01/25 17:29:19 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=60A1A3DBBB4A1A1C13C64C5180ABFE7A -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16851_none_95ab04e384a520d0\dxtrans.dll
[2009/12/18 07:47:39 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=6CB4EA4DAAD697974C3DF945CBCB7D31 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16982_none_958b974f84bc8b21\dxtrans.dll
[2009/12/18 07:21:18 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=8ADA70D318AEC4CD90C91A2EA6A738B3 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21184_none_96170cd09dd890db\dxtrans.dll
[2010/01/25 17:24:28 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=8DB869DD3C65470A94B334A16704228B -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_f283585c55fb7128\dxtrans.dll
[2010/01/25 17:29:17 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=921F05CBDC9232360AE8BF03864F6EF4 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21046_none_f262e6b25613c7d4\dxtrans.dll
[2009/12/18 08:11:20 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=9284383FB1ABF8E6DCCFFAEE5D157440 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21184_none_f235a85456360211\dxtrans.dll
[2010/01/25 17:29:18 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=92E1CF32D214E333BDD9E6D4948441E7 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21046_none_96444b2e9db6569e\dxtrans.dll
[2009/04/24 18:46:58 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=9699D9C6A92D6609711605D988DED065 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16809_none_f207b2533cd2d109\dxtrans.dll
[2010/01/25 17:29:18 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=9DCCA7BF23DE81D4A48B35076766D9B3 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16851_none_f1c9a0673d029206\dxtrans.dll
[2012/02/12 18:19:02 | 000,282,112 | ---- | M] (Microsoft Corporation) MD5=A3287F8EB6182FB060C818524C7D6A63 -- C:\Windows\SysNative\dxtrans.dll
[2012/02/12 18:19:02 | 000,282,112 | ---- | M] (Microsoft Corporation) MD5=A3287F8EB6182FB060C818524C7D6A63 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_9.1.8112.16421_none_b3d8258377e5c9af\dxtrans.dll
[2008/01/20 21:47:55 | 000,310,784 | ---- | M] (Microsoft Corporation) MD5=BE57AAC556BCC2882FB7F36232377AC8 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6001.18000_none_f3e4ea933a01839d\dxtrans.dll
[2008/01/20 21:48:45 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=D12FEB0E3EA6063A65A5498ED90FD790 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6001.18000_none_97c64f0f81a41267\dxtrans.dll
[2010/03/09 11:49:34 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=E2CE9A15106F3A4CEAD4FDFB501C371B -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.17037_none_95c6807f848fb161\dxtrans.dll
[2009/03/08 06:37:51 | 000,318,464 | ---- | M] (Microsoft Corporation) MD5=EE15594454DE778F897547EEC4E042DE -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_8.0.6001.18702_none_d6d00ced4fccf3fa\dxtrans.dll
[2010/03/09 11:26:33 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=EE7EE3212EEE955B27BBB408C449CED7 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21242_none_96404dd29db9eb90\dxtrans.dll
[2010/01/25 17:24:30 | 000,214,528 | ---- | M] (Microsoft Corporation) MD5=EF0595F7969D751ECDD00F2FCF0FF60C -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_95db47eb84802ce6\dxtrans.dll
[2009/04/24 18:46:57 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=F6E306E675945094C8BEC8916EA3FB4D -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20996_none_f22cfef4563c2047\dxtrans.dll
[2010/03/09 11:59:46 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=FCBBFD3E0A53466AFC3AC580F007DA16 -- C:\Windows\winsxs\amd64_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.17037_none_f1e51c033ced2297\dxtrans.dll
[2012/02/12 18:19:05 | 000,223,232 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\dxtrans.dll
[2012/02/12 18:19:05 | 000,223,232 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_9.1.8112.16421_none_57b989ffbf885879\dxtrans.dll

< MD5 for: IEFRAME.DLL >
[2008/01/20 21:48:30 | 007,004,672 | ---- | M] (Microsoft Corporation) MD5=00135B3F82BEB3DEC93D0EFC9525E7BF -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18000_none_c0c10823667c7a7f\ieframe.dll
[2010/12/18 01:22:10 | 011,080,704 | ---- | M] (Microsoft Corporation) MD5=001C55FA3A4BE6AA88AE15BDC47F9FB0 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19019_none_47899d01c3ec7488\ieframe.dll
[2009/12/18 08:01:57 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=006A45E2D2B5C855E6553AA09128BBCE -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18385_none_6450f463ae5b5ef9\ieframe.dll
[2010/11/02 02:37:13 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=01DE30569C6D7B80E2E12402BDA95E0A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23091_none_a3d351ba95af9d31\ieframe.dll
[2010/01/25 17:28:52 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=02EECD62E27F7A7AD54CA09C50E8BFC8 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18248_none_647f330bae383e13\ieframe.dll
[2010/01/25 17:28:51 | 007,004,672 | ---- | M] (Microsoft Corporation) MD5=047F1D2ACC70635D71B9467DB4ABF201 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18248_none_c09dce8f6695af49\ieframe.dll
[2012/02/12 18:19:02 | 010,886,656 | ---- | M] (Microsoft Corporation) MD5=05E06226631B43AE05237B4A4D6386AF -- C:\Windows\SysNative\ieframe.dll
[2012/02/12 18:19:02 | 010,886,656 | ---- | M] (Microsoft Corporation) MD5=05E06226631B43AE05237B4A4D6386AF -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_9.1.8112.16440_none_809da2f1a471df1c\ieframe.dll
[2010/06/26 01:48:16 | 011,078,656 | ---- | M] (Microsoft Corporation) MD5=0872F3C773A8D8B6984EE27002ADFB7A -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23040_none_47e9c588dd2a86ef\ieframe.dll
[2009/12/18 07:48:22 | 006,067,200 | ---- | M] (Microsoft Corporation) MD5=096C5E4BD9AC53EEDE744609ADC8C5B7 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16982_none_6267b4dfb1378203\ieframe.dll
[2010/01/25 17:24:25 | 007,067,136 | ---- | M] (Microsoft Corporation) MD5=09C852F7080FBFAC1A0DD88CE8E4EB1A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16916_none_bed600ff695894fe\ieframe.dll
[2010/09/08 01:21:09 | 011,082,240 | ---- | M] (Microsoft Corporation) MD5=0C0AEC386928B7A1485C7C966E10A44D -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23067_none_47db27b6dd347032\ieframe.dll
[2011/09/30 18:20:38 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=0C8752BA4A50FD73A9D4146E5CE4BC2D -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19154_none_a377f9497c6ed3f6\ieframe.dll
[2010/05/04 14:12:26 | 007,006,208 | ---- | M] (Microsoft Corporation) MD5=0F6E1C184A510B48275698F22386B70E -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18470_none_c075604766b532b2\ieframe.dll
[2009/04/24 18:46:37 | 007,006,720 | ---- | M] (Microsoft Corporation) MD5=125323F03C4D3DC2CCA5EC95406EF73C -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22355_none_c1199a907fbe1eff\ieframe.dll
[2011/09/30 18:55:59 | 012,478,976 | ---- | M] (Microsoft Corporation) MD5=18920C2317E51F0494838781591B91CE -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23250_none_a3fd94ec95900e64\ieframe.dll
[2011/05/28 02:05:23 | 011,084,288 | ---- | M] (Microsoft Corporation) MD5=1A3BF4DCAB7EB64B6E7DBB826653D585 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23181_none_47bf8808dd4a0d31\ieframe.dll
[2010/12/18 02:11:33 | 011,082,752 | ---- | M] (Microsoft Corporation) MD5=1FD68562A887EBD554D464AA6F5DE426 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23111_none_480b377cdd11499a\ieframe.dll
[2009/12/18 08:12:00 | 007,072,768 | ---- | M] (Microsoft Corporation) MD5=20A9771D52FAA29AC9AB39E104F8CEAA -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21184_none_bf11c5e482b0f8f3\ieframe.dll
[2010/01/25 17:10:56 | 006,068,736 | ---- | M] (Microsoft Corporation) MD5=2101D2C8E014967A2C3C3A2C09E25399 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21023_none_633307b8ca23c999\ieframe.dll
[2010/01/25 17:23:55 | 007,005,184 | ---- | M] (Microsoft Corporation) MD5=21AB88548BDC3F7E918374D612DF7B7A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18319_none_c0bf4083667c71f4\ieframe.dll
[2011/11/03 01:17:07 | 011,081,728 | ---- | M] (Microsoft Corporation) MD5=22EA14A2E59C9DD621851B73817B8C0A -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19170_none_473fbcc5c4253546\ieframe.dll
[2010/05/04 13:25:05 | 006,072,832 | ---- | M] (Microsoft Corporation) MD5=23F59613C195309FE3911EB12314117C -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22685_none_64da94fac778f911\ieframe.dll
[2010/05/04 14:38:41 | 007,008,256 | ---- | M] (Microsoft Corporation) MD5=243B7ECF777E03EF75592159D9A5E034 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22398_none_c2d7d3587d022761\ieframe.dll
[2009/04/24 18:46:54 | 007,067,136 | ---- | M] (Microsoft Corporation) MD5=25F2725547E948317651434F7C6D9E67 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16809_none_bee3cfe3694dc7eb\ieframe.dll
[2010/01/25 17:29:12 | 007,071,232 | ---- | M] (Microsoft Corporation) MD5=26E07B8D8C56A712D9C5D812F09016FC -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21046_none_bf3f0442828ebeb6\ieframe.dll
[2011/07/23 06:35:16 | 011,083,776 | ---- | M] (Microsoft Corporation) MD5=26EAB980E73ACF670861E91D0DFE2F44 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23216_none_48103ad4dd0cc574\ieframe.dll
[2009/04/24 18:46:56 | 006,066,688 | ---- | M] (Microsoft Corporation) MD5=27EC1F700136383F3947560BEEB0993A -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16809_none_62c5345fb0f056b5\ieframe.dll
[2010/01/25 17:10:58 | 006,066,176 | ---- | M] (Microsoft Corporation) MD5=2976043E4EC2110C7CCED1A070A88F48 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16830_none_629bc201b110c679\ieframe.dll
[2010/01/25 17:10:40 | 006,070,784 | ---- | M] (Microsoft Corporation) MD5=2CD8EE93FF9AB670F9C7C7DDEE389276 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22389_none_64de9070c77566f8\ieframe.dll
[2009/12/16 06:42:09 | 006,079,488 | ---- | M] (Microsoft Corporation) MD5=2CFFD86F80C5EF359D4913C468ED8BC4 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18167_none_664f089dab6fac10\ieframe.dll
[2009/12/18 07:55:56 | 007,008,768 | ---- | M] (Microsoft Corporation) MD5=304843D4AF7A3B966066518F9F9B9659 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22585_none_c0f92e987fd66d20\ieframe.dll
[2010/01/25 17:24:10 | 006,079,488 | ---- | M] (Microsoft Corporation) MD5=31F2D00E83230909659232FCFF5B12F1 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18100_none_6688e61fab455309\ieframe.dll
[2010/03/09 11:50:34 | 006,067,200 | ---- | M] (Microsoft Corporation) MD5=41E59135D4532EC9743430A5C148DEAA -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.17037_none_62a29e0fb10aa843\ieframe.dll
[2009/04/24 18:46:52 | 007,070,720 | ---- | M] (Microsoft Corporation) MD5=4289146859FA86DD8405CE8F372EF725 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.20996_none_bf091c8482b71729\ieframe.dll
[2010/09/08 02:08:21 | 012,476,416 | ---- | M] (Microsoft Corporation) MD5=44316EC77E4EE42CAC889B5476DC9166 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23067_none_a3f9c33a9591e168\ieframe.dll
[2010/05/04 13:37:46 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=454BD137915CB4A6E26880873D8B2191 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18470_none_6456c4c3ae57c17c\ieframe.dll
[2011/11/03 02:44:04 | 012,478,464 | ---- | M] (Microsoft Corporation) MD5=4715D1A7EE849DDC2CEEE575FA1D8B0F -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23266_none_a3f8c6bc9592c25f\ieframe.dll
[2011/02/22 01:16:39 | 011,080,704 | ---- | M] (Microsoft Corporation) MD5=4F0A36761653F62FEA96DB79FE15485F -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19048_none_47682cf3c405af04\ieframe.dll
[2010/01/25 17:10:55 | 007,070,720 | ---- | M] (Microsoft Corporation) MD5=50C5860569ED5FC00E8069EB69EA58A7 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21023_none_bf51a33c82813acf\ieframe.dll
[2011/09/30 18:41:50 | 011,083,776 | ---- | M] (Microsoft Corporation) MD5=51584B59A2DC807C2F4F6BCAE5A5E150 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23250_none_47def968dd329d2e\ieframe.dll
[2009/04/24 18:46:40 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=51D9683438A5E0852382353D06B0D7EF -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18203_none_64a57149ae1c4f9c\ieframe.dll
[2009/12/16 07:12:22 | 007,007,232 | ---- | M] (Microsoft Corporation) MD5=5373E1624996E4069D5384799DA3EBDC -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18167_none_c26da42163cd1d46\ieframe.dll
[2010/01/25 17:23:53 | 007,008,768 | ---- | M] (Microsoft Corporation) MD5=5458AD42A598CDD76FD63FABD6F5250C -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22508_none_c152aed67f92d99d\ieframe.dll
[2010/01/25 17:10:41 | 007,005,184 | ---- | M] (Microsoft Corporation) MD5=55A8AB375DE8B724ED217F7DAF25EF26 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18226_none_c0b16dd3668744b9\ieframe.dll
[2009/12/17 06:54:44 | 007,008,256 | ---- | M] (Microsoft Corporation) MD5=587745E21DBA0ABBB682079D16E81BD3 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22290_none_c2cfcf227d095f82\ieframe.dll
[2010/01/25 17:24:09 | 007,006,208 | ---- | M] (Microsoft Corporation) MD5=5A35BDE5AD6648618601889E90639876 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18100_none_c2a781a363a2c43f\ieframe.dll
[2011/05/28 01:04:02 | 011,081,728 | ---- | M] (Microsoft Corporation) MD5=5BB1B169530E1D48AB302ED086F5ECF9 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19088_none_473ced43c4261ec8\ieframe.dll
[2010/06/26 01:25:53 | 012,473,344 | ---- | M] (Microsoft Corporation) MD5=5CECF571861BD5220D2840F3936BC6DA -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18943_none_a381eee37c676e45\ieframe.dll
[2010/03/09 11:27:24 | 006,070,784 | ---- | M] (Microsoft Corporation) MD5=5CEEC8AA8397F59E5DC479939EF4B9F4 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21242_none_631c6b62ca34e272\ieframe.dll
[2010/05/04 14:39:08 | 007,006,208 | ---- | M] (Microsoft Corporation) MD5=5DD9BAF2DF6D2349A25125B852F8945C -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18255_none_c276755f63c6cbce\ieframe.dll
[2010/11/02 02:07:02 | 011,082,752 | ---- | M] (Microsoft Corporation) MD5=6044E16C44573794E2B270CB3AB4C16F -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23091_none_47b4b636dd522bfb\ieframe.dll
[2009/12/18 05:15:54 | 006,072,832 | ---- | M] (Microsoft Corporation) MD5=611E0483F2C99B456532472C98BB2106 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22585_none_64da9314c778fbea\ieframe.dll
[2010/05/04 14:10:47 | 006,080,000 | ---- | M] (Microsoft Corporation) MD5=61A7177D77D2BB2E9D70B0CD023CA035 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18255_none_6657d9dbab695a98\ieframe.dll
[2010/12/18 02:49:07 | 012,476,416 | ---- | M] (Microsoft Corporation) MD5=625ED80E39E92F135D080B6A3CAC3AEA -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23111_none_a429d300956ebad0\ieframe.dll
[2010/01/25 17:24:06 | 007,007,744 | ---- | M] (Microsoft Corporation) MD5=6353B0B9478D3912F3EACCCABFBA9EBB -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22212_none_c3284f167cc6b2a8\ieframe.dll
[2009/12/18 08:08:04 | 007,005,696 | ---- | M] (Microsoft Corporation) MD5=6570949C5B88E82D3BE1BDAC5A6581A0 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18385_none_c06f8fe766b8d02f\ieframe.dll
[2010/03/09 12:00:00 | 007,073,792 | ---- | M] (Microsoft Corporation) MD5=67CBAB630FF68DBD3F6F2B43F5091A71 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21242_none_bf3b06e6829253a8\ieframe.dll
[2010/01/25 17:28:50 | 006,071,296 | ---- | M] (Microsoft Corporation) MD5=6849FDB2BA739EF969E3B80A8BAAA73C -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22418_none_65294180c73d8731\ieframe.dll
[2010/11/02 01:23:34 | 012,474,368 | ---- | M] (Microsoft Corporation) MD5=6D5B662C18571849BD7F015414C0E04B -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18999_none_a351e1037c8a9204\ieframe.dll
[2009/03/08 06:39:47 | 011,063,808 | ---- | M] (Microsoft Corporation) MD5=729DA5D23A9AD20A6AA353156A126420 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18702_none_478d8ef9c3ea79a6\ieframe.dll
[2010/01/25 17:24:24 | 006,070,784 | ---- | M] (Microsoft Corporation) MD5=72B085F6F15935E7C9160719FAEEF8C5 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21116_none_6340da68ca18f6d4\ieframe.dll
[2009/12/18 07:22:15 | 006,071,296 | ---- | M] (Microsoft Corporation) MD5=7360F9C397DFC0770938F562599935B3 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21184_none_62f32a60ca5387bd\ieframe.dll
[2010/01/25 17:29:15 | 007,067,136 | ---- | M] (Microsoft Corporation) MD5=7784D98EB73E63D3B6ABFF8ABDCEEFD6 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16851_none_bea5bdf7697d88e8\ieframe.dll
[2011/07/23 06:23:28 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=77D13C5C6BF96A50A7206987ED858983 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19120_none_a39467e57c5a1ac7\ieframe.dll
[2010/01/25 17:10:57 | 007,067,648 | ---- | M] (Microsoft Corporation) MD5=7871F2DD970E9F65349F47F13510EDF3 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16830_none_beba5d85696e37af\ieframe.dll
[2010/09/08 00:56:52 | 011,080,192 | ---- | M] (Microsoft Corporation) MD5=7AEBF0E6158B66CDF0E5859326CA9E82 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18975_none_4744e42fc4208390\ieframe.dll
[2010/06/26 02:04:15 | 012,471,296 | ---- | M] (Microsoft Corporation) MD5=7C0CAC0A7AE41D7F5E87697FCAD4D3D4 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23040_none_a408610c9587f825\ieframe.dll
[2011/02/22 02:50:21 | 012,477,440 | ---- | M] (Microsoft Corporation) MD5=7ED9F1D161314B9CFBD8F3F6BF95CE9C -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23143_none_a40b63d095854151\ieframe.dll
[2010/01/25 17:23:54 | 006,072,832 | ---- | M] (Microsoft Corporation) MD5=805F6270BA991395EA943738E954E0AC -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22508_none_65341352c7356867\ieframe.dll
[2008/01/20 21:49:15 | 006,068,736 | ---- | M] (Microsoft Corporation) MD5=8320A8937995094D00082D7CE97A7AB1 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18000_none_64a26c9fae1f0949\ieframe.dll
[2010/03/11 11:49:51 | 006,081,536 | ---- | M] (Microsoft Corporation) MD5=839E0524B941CDB65A8F99975849ED7A -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22360_none_66d1a548c49397a0\ieframe.dll
[2010/05/04 13:56:14 | 007,008,768 | ---- | M] (Microsoft Corporation) MD5=83AD0E5179FAED65620F52B33FE61FF5 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22685_none_c0f9307e7fd66a47\ieframe.dll
[2011/02/22 02:13:11 | 011,082,752 | ---- | M] (Microsoft Corporation) MD5=855B822C6C390BC30ED36C08518334C4 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23143_none_47ecc84cdd27d01b\ieframe.dll
[2010/01/25 17:29:16 | 006,066,176 | ---- | M] (Microsoft Corporation) MD5=85D2C137B1A1B4F5E8002B8CB1D071B1 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16851_none_62872273b12017b2\ieframe.dll
[2010/03/11 12:07:52 | 007,008,768 | ---- | M] (Microsoft Corporation) MD5=902CFB130C5459569FF2E086CDDF34D7 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22653_none_c1179fae7fbfe3c6\ieframe.dll
[2010/03/11 09:55:17 | 006,072,832 | ---- | M] (Microsoft Corporation) MD5=93E8F3463E8AA9928F89CD9E4658D633 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22653_none_64f9042ac7627290\ieframe.dll
[2010/01/25 17:24:08 | 006,081,024 | ---- | M] (Microsoft Corporation) MD5=9DF8942EC241CA1AD2639C0F31314865 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22212_none_6709b392c4694172\ieframe.dll
[2010/03/09 11:25:23 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=A794BB32A418603406D32AC46D1DDEF3 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18444_none_647b35afae3bd305\ieframe.dll
[2009/12/18 08:09:53 | 007,071,232 | ---- | M] (Microsoft Corporation) MD5=A98F3541B8E29AEFF4E4FC4241BC834A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16982_none_be8650636994f339\ieframe.dll
[2009/12/17 06:59:33 | 006,081,536 | ---- | M] (Microsoft Corporation) MD5=B21CFE3DF053CAE884D1068D40039274 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22290_none_66b1339ec4abee4c\ieframe.dll
[2010/11/02 00:57:10 | 011,080,704 | ---- | M] (Microsoft Corporation) MD5=B49453BBD9D0D2851613D7B443FBF682 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18999_none_4733457fc42d20ce\ieframe.dll
[2011/05/28 01:23:28 | 012,477,440 | ---- | M] (Microsoft Corporation) MD5=B626D5F61BA428DAC1307B82D6715DB6 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19088_none_a35b88c77c838ffe\ieframe.dll
[2010/05/04 00:55:41 | 011,076,096 | ---- | M] (Microsoft Corporation) MD5=B81B1FE1B9038D7D01227D700B1DCD6B -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18928_none_477df4a9c3f543e0\ieframe.dll
[2010/05/04 14:34:20 | 006,081,536 | ---- | M] (Microsoft Corporation) MD5=BA4444695B01E42FD559E0C4524310D6 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22398_none_66b937d4c4a4b62b\ieframe.dll
[2011/05/28 02:39:57 | 012,478,464 | ---- | M] (Microsoft Corporation) MD5=BCC39BC6A89683C3A06E5A0A88DD0B85 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23181_none_a3de238c95a77e67\ieframe.dll
[2009/04/24 18:46:39 | 007,004,160 | ---- | M] (Microsoft Corporation) MD5=BEC47FA803DFBE08E8F740A5EDDCA493 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18203_none_c0c40ccd6679c0d2\ieframe.dll
[2011/11/03 01:49:34 | 012,476,928 | ---- | M] (Microsoft Corporation) MD5=C70C65A2E532AB506475A57D5973C753 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19170_none_a35e58497c82a67c\ieframe.dll
[2010/05/04 01:51:47 | 012,468,736 | ---- | M] (Microsoft Corporation) MD5=CC473A6C4CBB6F1EE614855D889CE2F0 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18928_none_a39c902d7c52b516\ieframe.dll
[2010/05/04 01:30:16 | 011,078,144 | ---- | M] (Microsoft Corporation) MD5=CDCD221996D664E4E2FF618ED446F4A2 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23019_none_481337e6dd0a172b\ieframe.dll
[2010/03/09 11:03:44 | 007,007,232 | ---- | M] (Microsoft Corporation) MD5=CF4E0D73EA56C2FBAE839396026FBC6A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18226_none_c297e56d63ad9152\ieframe.dll
[2010/01/25 17:28:49 | 007,007,744 | ---- | M] (Microsoft Corporation) MD5=D03BA2DA413A906200D3E9DFCB6787A8 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22418_none_c147dd047f9af867\ieframe.dll
[2009/04/11 01:28:19 | 006,079,488 | ---- | M] (Microsoft Corporation) MD5=D0DB6CA4E21BE6809F356C90BBDE8A66 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18005_none_668de5abab40d495\ieframe.dll
[2010/01/25 17:24:27 | 006,067,200 | ---- | M] (Microsoft Corporation) MD5=D80F2A9880B119CC31217FFB6CDDE251 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16916_none_62b7657bb0fb23c8\ieframe.dll
[2011/11/03 02:26:09 | 011,083,776 | ---- | M] (Microsoft Corporation) MD5=DA8D611B2DECB8F3846CD18A459D66D1 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23266_none_47da2b38dd355129\ieframe.dll
[2010/03/09 10:39:49 | 006,080,000 | ---- | M] (Microsoft Corporation) MD5=DC81376E63AE926829541C97F0DD2F16 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18226_none_667949e9ab50201c\ieframe.dll
[2010/01/25 17:10:39 | 007,006,720 | ---- | M] (Microsoft Corporation) MD5=DD8EA3EF4271EC7E122D624B34233F14 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22389_none_c0fd2bf47fd2d82e\ieframe.dll
[2010/09/08 01:36:23 | 012,474,368 | ---- | M] (Microsoft Corporation) MD5=E0E100F03FA2C923BB1975FD1819A0A9 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18975_none_a3637fb37c7df4c6\ieframe.dll
[2010/01/25 17:23:56 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=E2ED81875127B97CE803E139EE609F81 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18319_none_64a0a4ffae1f00be\ieframe.dll
[2010/12/18 01:50:14 | 012,474,368 | ---- | M] (Microsoft Corporation) MD5=E461E6079A16F13CA925BD0DEBC148D8 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19019_none_a3a838857c49e5be\ieframe.dll
[2010/01/25 17:29:13 | 006,069,248 | ---- | M] (Microsoft Corporation) MD5=E76D2A320CD510178909B3A65433619E -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21046_none_632068beca314d80\ieframe.dll
[2011/02/22 01:46:18 | 012,474,880 | ---- | M] (Microsoft Corporation) MD5=E91C418111CEDCC8DC4A1848B62C82FF -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19048_none_a386c8777c63203a\ieframe.dll
[2010/03/11 14:02:08 | 007,008,256 | ---- | M] (Microsoft Corporation) MD5=E9DC65CF6574ABAF31BF9EF71A601537 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.22360_none_c2f040cc7cf108d6\ieframe.dll
[2010/01/25 17:24:23 | 007,073,280 | ---- | M] (Microsoft Corporation) MD5=EB7A1AFFE93B8A6D1153044DB17AF138 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21116_none_bf5f75ec8276680a\ieframe.dll
[2009/04/24 18:46:53 | 006,068,736 | ---- | M] (Microsoft Corporation) MD5=F038B3611C7482AA0095DAC114BB9649 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.20996_none_62ea8100ca59a5f3\ieframe.dll
[2009/04/11 02:11:15 | 007,005,184 | ---- | M] (Microsoft Corporation) MD5=F1D7AB9D524EF28EC69A147F99ECB8A6 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6002.18005_none_c2ac812f639e45cb\ieframe.dll
[2010/03/09 11:50:34 | 007,005,696 | ---- | M] (Microsoft Corporation) MD5=F6766C229ACD9250966A2041D9D7EE08 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18444_none_c099d1336699443b\ieframe.dll
[2009/03/08 06:44:16 | 012,454,400 | ---- | M] (Microsoft Corporation) MD5=F7CC713935F3055CFE2540244FBA26F0 -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18702_none_a3ac2a7d7c47eadc\ieframe.dll
[2011/07/23 07:03:32 | 012,478,464 | ---- | M] (Microsoft Corporation) MD5=F821DD7A553557EBDA4EC945E2EB63FC -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23216_none_a42ed658956a36aa\ieframe.dll
[2010/06/26 01:02:14 | 011,077,120 | ---- | M] (Microsoft Corporation) MD5=F8427C8E999FBCB98575C705A464F854 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18943_none_4763535fc409fd0f\ieframe.dll
[2009/04/24 18:46:38 | 006,070,784 | ---- | M] (Microsoft Corporation) MD5=F8B2EF31C8BBDE60891B5EF7E3D6063E -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22355_none_64faff0cc760adc9\ieframe.dll
[2011/07/23 05:59:34 | 011,081,728 | ---- | M] (Microsoft Corporation) MD5=F8EA880F59679BFCF18BC11831800035 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19120_none_4775cc61c3fca991\ieframe.dll
[2011/09/30 18:01:33 | 011,081,728 | ---- | M] (Microsoft Corporation) MD5=FA2B3C1DCC77AE9ED3574C5ADC84D1E9 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.19154_none_47595dc5c41162c0\ieframe.dll
[2010/01/25 17:10:42 | 006,068,736 | ---- | M] (Microsoft Corporation) MD5=FA7925AA92F801F01F4D1084C0D3A6C2 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18226_none_6492d24fae29d383\ieframe.dll
[2010/03/09 12:00:50 | 007,071,232 | ---- | M] (Microsoft Corporation) MD5=FE00A9B7D32FA28887BF13D4E9F8321A -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.17037_none_bec1399369681979\ieframe.dll
[2010/05/04 01:55:35 | 012,470,272 | ---- | M] (Microsoft Corporation) MD5=FF75A0E20D8D7B0C117CF89E179C926F -- C:\Windows\winsxs\amd64_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.23019_none_a431d36a95678861\ieframe.dll
[2012/02/12 18:19:05 | 009,705,472 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\SysWOW64\ieframe.dll
[2012/02/12 18:19:05 | 009,705,472 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_9.1.8112.16440_none_247f076dec146de6\ieframe.dll

< MD5 for: MSXML3.DLL >
[2009/08/11 11:56:29 | 001,875,968 | ---- | M] (Microsoft Corporation) MD5=05A1B8045E7DC543B454D23215143A0A -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22492_none_e4b72fe3689858d8\msxml3.dll
[2010/06/11 11:08:18 | 001,875,456 | ---- | M] (Microsoft Corporation) MD5=0B32A76E0D5034A3020BBF32A5EC0E63 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18490_none_e42b946a4f7c8387\msxml3.dll
[2010/06/11 10:30:23 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=12A4E29C7F0C1B1E89541830FD0E52F1 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18490_none_880cf8e6971f1251\msxml3.dll
[2010/06/11 10:53:24 | 001,875,968 | ---- | M] (Microsoft Corporation) MD5=130AFCF74D4904DD29BF09CE117C7F1B -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22709_none_e51f86e768490635\msxml3.dll
[2009/04/24 19:08:29 | 001,809,408 | ---- | M] (Microsoft Corporation) MD5=144E16BA9F7AA2C596106DE7A340C4E0 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22258_none_e4e86d83687286d0\msxml3.dll
[2009/04/11 02:11:16 | 001,804,288 | ---- | M] (Microsoft Corporation) MD5=1BB8A40C45A577B6901A4A21EDDE1B27 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18005_none_e678552a4c555ebe\msxml3.dll
[2010/06/11 11:15:06 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=2B338AB80CF27D14CB75D94E294A1AB8 -- C:\Windows\SysWOW64\msxml3.dll
[2010/06/11 11:15:06 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=2B338AB80CF27D14CB75D94E294A1AB8 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18269_none_8a1cdf129424f4d8\msxml3.dll
[2010/06/11 11:31:45 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=3DC3074B0A736E086AC66DE6AB0786BA -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22422_none_8acabb6dad2870a4\msxml3.dll
[2009/08/11 12:06:23 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=484EBDDCC552DF7DF8817C4E7B0A60EA -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18087_none_e623d65e4c9470f4\msxml3.dll
[2010/06/11 11:46:28 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=55B30E7DFB41023ECB804B93FB0574EF -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22422_none_e6e956f16585e1da\msxml3.dll
[2009/08/11 12:07:46 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=5789DF18FFA85B2C52C91680B5563C6D -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22196_none_e6a1a2f365bb1358\msxml3.dll
[2009/04/11 01:28:22 | 001,183,232 | ---- | M] (Microsoft Corporation) MD5=5942F272BBEF5A77BF1DCE13BB5FAC8E -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18005_none_8a59b9a693f7ed88\msxml3.dll
[2008/01/20 21:48:11 | 001,807,360 | ---- | M] (Microsoft Corporation) MD5=7C17F44B45BA576E5DA83AA8FD5FD98D -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18000_none_e48cdc1e4f339372\msxml3.dll
[2009/08/11 11:58:29 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=8A728F413C953A2CD9ABA02C0D21A7F0 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22196_none_8a83076fad5da222\msxml3.dll
[2009/04/24 19:08:31 | 001,194,496 | ---- | M] (Microsoft Corporation) MD5=8FC34AF6DA61DF291FB48DACECB8AF83 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16745_none_8661c59c99cb7ce9\msxml3.dll
[2008/01/20 21:48:59 | 001,190,400 | ---- | M] (Microsoft Corporation) MD5=8FCDFB955F5BFD05E45C035A5FD2B7AB -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18000_none_886e409a96d6223c\msxml3.dll
[2009/08/10 07:51:16 | 001,260,032 | ---- | M] (Microsoft Corporation) MD5=91070AD16D21818E4E1A46605479B2C2 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.21103_none_87147d71b2caa7d1\msxml3.dll
[2010/06/11 11:38:10 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=9F6CDCE3281466C6E6FFA57E8F23BFC1 -- C:\Windows\SysNative\msxml3.dll
[2010/06/11 11:38:10 | 001,869,824 | ---- | M] (Microsoft Corporation) MD5=9F6CDCE3281466C6E6FFA57E8F23BFC1 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18269_none_e63b7a964c82660e\msxml3.dll
[2009/08/11 10:25:41 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=A858B6604E4074233ADB3EB3FAF632E9 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22492_none_8898945fb03ae7a2\msxml3.dll
[2009/04/24 19:08:30 | 001,838,080 | ---- | M] (Microsoft Corporation) MD5=A96FB36114F456DA11F413032325F29B -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.20910_none_e3256e236b32b88a\msxml3.dll
[2009/04/24 19:08:29 | 001,191,936 | ---- | M] (Microsoft Corporation) MD5=B1ABC3B1953BE70FE78045C401A03B50 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22258_none_88c9d1ffb015159a\msxml3.dll
[2009/08/10 06:00:37 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=B9CA2EA9DCA1A0EEE34FA806BBCF7A40 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18306_none_8874480896d0b1bb\msxml3.dll
[2010/06/11 10:25:07 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=C25D39750D692573AF2153E0E6E03F5D -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22709_none_8900eb63afeb94ff\msxml3.dll
[2009/04/24 19:08:30 | 001,191,936 | ---- | M] (Microsoft Corporation) MD5=C41551DD53FC9B7BE77AC5901E640E16 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18136_none_8853d47896e90b40\msxml3.dll
[2009/08/10 08:05:23 | 001,260,032 | ---- | M] (Microsoft Corporation) MD5=C72DC4848F94A84BDBAE3B1080086316 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16903_none_868b088499acd4c5\msxml3.dll
[2009/04/24 19:08:31 | 001,837,568 | ---- | M] (Microsoft Corporation) MD5=CE87976751535C81629643EC22DDDD5A -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16745_none_e28061205228ee1f\msxml3.dll
[2009/08/10 08:21:02 | 001,902,592 | ---- | M] (Microsoft Corporation) MD5=D7E0CB9A20C07A5677CE250E279D6693 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.21103_none_e33318f56b281907\msxml3.dll
[2009/08/10 09:09:07 | 001,875,456 | ---- | M] (Microsoft Corporation) MD5=E21EAAA0503922DE65AAC897BF756CC2 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18306_none_e492e38c4f2e22f1\msxml3.dll
[2009/08/11 11:44:26 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=E82AAC9B68DD4345821C80B111691F10 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18087_none_8a053ada9436ffbe\msxml3.dll
[2009/08/10 08:17:13 | 001,902,080 | ---- | M] (Microsoft Corporation) MD5=F27925A124C3F7CA41BB427C57CD450B -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16903_none_e2a9a408520a45fb\msxml3.dll
[2009/04/24 19:08:30 | 001,194,496 | ---- | M] (Microsoft Corporation) MD5=F747633B7D3BCC9950497AA1E8E4BF76 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.20910_none_8706d29fb2d54754\msxml3.dll
[2009/04/24 19:08:29 | 001,809,408 | ---- | M] (Microsoft Corporation) MD5=F87EC09D340A5C088BE2805501B024E4 -- C:\Windows\winsxs\amd64_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18136_none_e4726ffc4f467c76\msxml3.dll

< %systemroot%\system32\*.dll /lockedfiles >
[2012/02/12 18:19:05 | 000,353,792 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtmsft.dll
[2012/02/12 18:19:05 | 000,223,232 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\dxtrans.dll
[2012/02/12 18:19:05 | 009,705,472 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\ieframe.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:CA0CE093

< End of report >

#14
RKinner

Posted 13 February 2012 - 12:22 AM

Malware Expert

Expert
24,624 posts

Let's see if we can replace the three files that look dirty:

Make sure you have uninstalled Malwarebytes' Anti-Malware before the next step or it will hang.

Copy the text in the code box by highlighting and Ctrl + c


:processes
killallprocesses

:files
C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18226_none_6492d24fae29d383\ieframe.dll|C:\Windows\system32\ieframe.dll /replace   
C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_95db47eb84802ce6\dxtrans.dll|C:\Windows\SysWOW64\dxtrans.dll /replace  
C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_9664bcd89d9dfff2\dxtmsft.dll|C:\Windows\SysWOW64\dxtmsft.dll /replace 


:Commands
[Reboot]

then Rightclick on OTL and select Run As Administrator to start. Under the Custom Scans/Fixes box at the bottom, paste (ctrl +v) the text. Verify that you got it all and Then click the RUN FIX button (NOT THE QUICK SCAN button!) at the top
Let the program run unhindered, OTL will reboot the PC when it is done.

#15
baseballucdoy

Posted 13 February 2012 - 06:39 PM

Member

Topic Starter
Member
11 posts

I uninstalled malwarebytes, and here is the unfortunate result of the fix...

========== PROCESSES ==========
All processes killed
========== FILES ==========
Unable to replace file: C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18226_none_6492d24fae29d383\ieframe.dll with C:\Windows\system32\ieframe.dll without a reboot.
Unable to replace file: C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16916_none_95db47eb84802ce6\dxtrans.dll with C:\Windows\SysWOW64\dxtrans.dll without a reboot.
Unable to replace file: C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21116_none_9664bcd89d9dfff2\dxtmsft.dll with C:\Windows\SysWOW64\dxtmsft.dll without a reboot.
========== COMMANDS ==========

OTL by OldTimer - Version 3.2.31.0 log created on 02132012_193308

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

Not sure what this means. Should I attach these troublesome files? If so, how do I do so? As always, thanks!