Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Hijackers, Keyloggers, and Worms oh my!

Started by Sarous , Apr 30 2012 12:03 AM

Please log in to reply

#61
Sarous

Posted 14 May 2012 - 01:30 PM

Member

Topic Starter
Member
84 posts

OTL logfile created on: 14/05/2012 1:30:12 PM - Run 8
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Users\Cougar\Desktop
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: dd/MM/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 52.00% Memory free
6.00 Gb Paging File | 4.00 Gb Available in Paging File | 75.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 224.20 Gb Total Space | 162.07 Gb Free Space | 72.29% Space Free | Partition Type: NTFS

Computer Name: COUGAR-PC | User Name: Cougar | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/05/03 22:19:40 | 000,932,736 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe
PRC - [2012/05/03 22:19:37 | 001,116,544 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
PRC - [2012/04/30 16:25:24 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Cougar\Desktop\OTL.exe
PRC - [2012/04/30 09:44:38 | 005,106,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgidsagent.exe
PRC - [2012/04/27 21:12:54 | 006,031,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgmfapx.exe
PRC - [2012/04/20 20:18:58 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012/04/19 04:51:54 | 001,254,992 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe
PRC - [2012/04/05 05:12:34 | 002,587,008 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgtray.exe
PRC - [2012/04/04 00:53:56 | 000,035,736 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe
PRC - [2012/03/19 05:18:12 | 000,979,840 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgemcx.exe
PRC - [2012/02/14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe
PRC - [2012/02/14 04:53:14 | 000,758,112 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgrsx.exe
PRC - [2012/02/14 04:52:38 | 000,338,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcsrvx.exe
PRC - [2012/01/03 08:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/12/09 17:43:39 | 000,499,312 | ---- | M] (RealNetworks, Inc.) -- c:\Program Files\real\realplayer\realplay.exe
PRC - [2011/12/09 17:43:34 | 000,296,056 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\real\realplayer\Update\realsched.exe
PRC - [2011/07/28 18:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2009/04/11 01:28:15 | 000,117,248 | ---- | M] () -- \\?\C:\Windows\System32\wbem\WMIADAP.EXE
PRC - [2009/04/11 01:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/03/05 16:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008/11/09 15:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2008/04/15 19:54:42 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/04/15 19:54:40 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2008/04/08 17:14:50 | 006,037,504 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2006/08/23 18:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

========== Modules (SafeList) ==========

MOD - [2012/04/30 16:25:24 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Cougar\Desktop\OTL.exe
MOD - [2010/08/31 10:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV - [2012/05/03 22:19:40 | 000,932,736 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe -- (vToolbarUpdater11.0.2)
SRV - [2012/04/30 09:44:38 | 005,106,744 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012/04/20 20:19:00 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/02/14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2012/01/03 08:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/04/08 10:17:40 | 000,176,848 | ---- | M] (iWin Inc.) [Disabled | Stopped] -- C:\Program Files\iWin Games\iWinTrusted.exe -- (iWinTrusted)
SRV - [2011/02/22 08:33:09 | 000,797,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2010/03/18 17:47:22 | 000,035,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe -- (aspnet_state)
SRV - [2010/03/18 14:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/18 14:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2010/03/18 14:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpActivator)
SRV - [2010/03/18 14:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetPipeActivator)
SRV - [2010/03/18 14:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetMsmqActivator)
SRV - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/11/09 15:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2008/04/15 19:54:42 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®
SRV - [2008/01/20 21:33:00 | 000,272,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2006/08/23 18:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2005/11/14 03:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\SYSPREP\Drivers\ioport.sys -- (IO_Memory)
DRV - [2012/05/04 16:14:34 | 000,477,240 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2012/04/19 04:50:26 | 000,024,896 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\avgidshx.sys -- (AVGIDSHX)
DRV - [2012/03/19 05:17:28 | 000,301,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2012/02/22 05:25:32 | 000,235,216 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2012/01/31 04:46:50 | 000,031,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/12/23 13:32:14 | 000,041,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/12/23 13:32:08 | 000,017,232 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2011/12/23 13:32:06 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avgidsfilterx.sys -- (AVGIDSFilter)
DRV - [2011/12/23 13:32:00 | 000,139,856 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2011/10/13 12:01:26 | 009,037,312 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx)
DRV - [2010/11/09 21:49:50 | 004,323,040 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvuvc.sys -- (LVUVC) Logitech Webcam C160(UVC)
DRV - [2010/11/09 21:48:12 | 000,283,744 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvrs.sys -- (LVRS)
DRV - [2010/06/23 10:21:32 | 000,259,176 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2010/05/07 18:43:30 | 000,025,824 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2009/08/18 23:29:50 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2009/08/18 23:29:49 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009/06/10 06:52:58 | 000,347,648 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTL8187B.sys -- (RTL8187B)
DRV - [2009/04/10 23:42:54 | 000,073,216 | -H-- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2009/03/11 18:17:20 | 000,063,488 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RTSTOR.sys -- (RTSTOR)
DRV - [2008/08/14 11:40:40 | 000,203,312 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2008/07/18 20:52:16 | 000,279,376 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\tos_sps32.sys -- (tos_sps32)
DRV - [2008/04/15 19:53:44 | 000,312,344 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\iaStor.sys -- (iaStor)
DRV - [2008/04/09 20:00:04 | 002,095,512 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008/01/20 21:32:53 | 000,149,560 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2008/01/20 21:32:53 | 000,031,288 | ---- | M] (LSI Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2008/01/20 21:32:52 | 000,386,616 | ---- | M] (LSI Corporation, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasr.sys -- (MegaSR)
DRV - [2008/01/20 21:32:52 | 000,101,432 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2008/01/20 21:32:52 | 000,074,808 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2008/01/20 21:32:52 | 000,040,504 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2008/01/20 21:32:51 | 000,300,600 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2008/01/20 21:32:51 | 000,089,656 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2008/01/20 21:32:50 | 001,122,360 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2008/01/20 21:32:50 | 000,118,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel®
DRV - [2008/01/20 21:32:50 | 000,079,928 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2008/01/20 21:32:49 | 000,235,064 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2008/01/20 21:32:49 | 000,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2008/01/20 21:32:49 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2008/01/20 21:32:49 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2008/01/20 21:32:49 | 000,079,416 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2008/01/20 21:32:48 | 000,342,584 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2008/01/20 21:32:48 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2008/01/20 21:32:47 | 000,102,968 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2008/01/20 21:32:47 | 000,045,112 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2008/01/20 21:32:46 | 000,422,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2008/01/20 21:32:45 | 000,238,648 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2008/01/20 21:32:21 | 000,020,024 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2008/01/20 21:32:21 | 000,019,000 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2008/01/20 21:32:21 | 000,017,464 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2008/01/18 11:22:00 | 000,009,216 | ---- | M] (Inventec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\sysprep\PEDRV.SYS -- (SVRPEDRV)
DRV - [2007/11/09 16:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\TVALZ_O.SYS -- (TVALZ)
DRV - [2007/04/23 12:50:50 | 000,025,896 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | System | Running] -- C:\Windows\System32\drivers\RtlProt.sys -- (RtlProt)
DRV - [2006/11/20 16:11:14 | 000,007,168 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\FwLnk.sys -- (FwLnk)
DRV - [2006/11/09 01:32:00 | 000,219,264 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\kr10i.sys -- (KR10I)
DRV - [2006/11/09 01:31:00 | 000,211,072 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\kr10n.sys -- (KR10N)
DRV - [2006/11/02 04:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006/11/02 04:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006/11/02 04:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006/11/02 04:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006/11/02 04:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006/11/02 04:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006/11/02 04:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006/11/02 04:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006/11/02 04:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006/11/02 04:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006/11/02 04:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006/11/02 03:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006/11/02 03:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006/11/02 03:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006/11/02 03:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006/11/02 03:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006/11/02 03:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006/11/02 02:41:50 | 000,983,552 | ---- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2006/11/02 02:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co...=TSHB&bmod=TSHB

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Google Custom Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "about:blank"
FF - prefs.js..keyword.URL: "http://search.musicf...results.php?q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/04/23 22:29:41 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/04/23 22:29:34 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\ [2012/05/03 22:20:11 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Program Files\AVG\AVG2012\Firefox\DoNotTrack\ [2012/05/03 22:17:26 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\11.0.0.9\ [2012/05/03 22:20:02 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/05/03 23:52:41 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2012/05/03 23:52:59 | 000,000,000 | ---D | M] -- C:\Users\Cougar\AppData\Roaming\mozilla\Extensions
[2012/05/11 12:02:34 | 000,000,000 | ---D | M] -- C:\Users\Cougar\AppData\Roaming\mozilla\Firefox\Profiles\nt02ihvk.default\extensions
[2012/05/03 23:52:41 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2012/04/20 20:19:34 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2012/04/20 20:18:25 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml
[2012/04/20 20:18:25 | 000,002,040 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2012/05/11 12:16:01 | 000,442,053 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 15215 more lines...
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll ()
O2 - BHO: (no name) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {CD292324-974F-4224-D074-CACA427AA030} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {CD292324-974F-4224-D074-CACA427AA030} - No CLSID value found.
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\real\realplayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.0.2\ViProtocol.dll ()
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Users\Cougar\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Cougar\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 16:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/05/13 13:46:35 | 000,000,000 | ---D | C] -- C:\b9e462909e6f9b436127
[2012/05/13 13:45:18 | 000,000,000 | ---D | C] -- C:\9cbea16dd19d6a77565dd0c0f0
[2012/05/12 20:41:49 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Resource Kits
[2012/05/12 16:31:27 | 000,000,000 | ---D | C] -- C:\Users\Cougar\SecurityScans
[2012/05/12 16:30:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Baseline Security Analyzer 2
[2012/05/12 00:17:14 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\GSplit
[2012/05/11 01:07:58 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\QuickScan
[2012/05/10 23:42:27 | 000,206,200 | ---- | C] (Sysinternals) -- C:\Users\Cougar\Desktop\Contig.exe
[2012/05/10 23:24:38 | 000,000,000 | R--D | C] -- C:\Users\Cougar\Desktop\Favorites
[2012/05/07 12:28:28 | 002,473,592 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Users\Cougar\Desktop\Procmon.exe
[2012/05/06 15:16:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2012/05/04 17:07:46 | 000,000,000 | ---D | C] -- C:\Windows\System32\x64
[2012/05/04 17:05:55 | 000,000,000 | ---D | C] -- C:\Intel
[2012/05/04 16:39:06 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\SystemRequirementsLab
[2012/05/04 16:18:29 | 000,000,000 | ---D | C] -- C:\Users\Cougar\{7e015dc6-6631-47f4-b276-bc8c65c2f401}
[2012/05/04 01:54:49 | 000,477,240 | ---- | C] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys
[2012/05/03 23:52:50 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\Mozilla
[2012/05/03 23:52:50 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Local\Mozilla
[2012/05/03 23:52:43 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/05/03 23:52:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/05/03 23:52:40 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012/05/03 23:40:02 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/05/03 23:40:02 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Local\temp
[2012/05/03 23:39:04 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/05/03 22:21:44 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\AVG2012
[2012/05/03 22:20:14 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Local\AVG Secure Search
[2012/05/03 22:19:41 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Secure Search
[2012/05/03 22:19:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVG Secure Search
[2012/05/03 22:19:35 | 000,000,000 | ---D | C] -- C:\Program Files\AVG Secure Search
[2012/05/03 22:16:41 | 000,000,000 | ---D | C] -- C:\$AVG
[2012/05/02 19:35:28 | 000,000,000 | ---D | C] -- C:\Users\Cougar\Documents\C
[2012/04/30 21:48:27 | 000,000,000 | ---D | C] -- C:\!KillBox
[2012/04/30 21:47:48 | 000,093,696 | ---- | C] (Option^Explicit Software [email protected]) -- C:\Users\Cougar\Desktop\KillBox.exe
[2012/04/30 20:53:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Yahoo! Companion
[2012/04/30 20:53:14 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\Yahoo!
[2012/04/30 19:43:01 | 000,061,440 | ---- | C] ( ) -- C:\Users\Cougar\Desktop\VEW.exe
[2012/04/30 19:07:48 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/04/30 18:21:02 | 000,419,488 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/04/30 18:12:59 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2012/04/30 17:57:06 | 002,074,160 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Cougar\Desktop\tdsskiller.exe
[2012/04/30 17:25:45 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dfsc.svs
[2012/04/30 17:02:46 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/04/30 17:02:46 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/04/30 17:02:46 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/04/30 17:02:38 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2012/04/30 16:48:33 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/04/30 16:37:52 | 004,479,797 | R--- | C] (Swearware) -- C:\Users\Cougar\Desktop\ComboFix.exe
[2012/04/30 16:25:05 | 004,731,392 | ---- | C] (AVAST Software) -- C:\Users\Cougar\Desktop\aswMBR.exe
[2012/04/30 16:24:56 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Cougar\Desktop\OTL.exe
[2012/04/29 23:48:00 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Cougar\Desktop\HijackThis.exe
[2012/04/29 22:21:34 | 000,000,000 | ---D | C] -- C:\ProgramData\529C50D8000435DB0020086B570F1C8B
[2012/04/25 03:26:03 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/04/25 03:26:02 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012/04/25 03:26:02 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2012/04/25 03:26:00 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/04/25 03:25:59 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/04/25 03:25:59 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/04/25 03:25:59 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/04/24 16:21:12 | 002,044,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/04/23 20:32:45 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/04/19 04:50:26 | 000,024,896 | ---- | C] (AVG Technologies CZ, s.r.o. ) -- C:\Windows\System32\drivers\avgidshx.sys
[2011/10/13 11:31:48 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/05/14 13:36:04 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/05/14 13:34:39 | 098,133,237 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2012/05/14 13:31:41 | 000,654,054 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/05/14 13:31:41 | 000,123,676 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/05/14 13:27:33 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/05/14 13:24:16 | 000,003,616 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/05/14 13:24:16 | 000,003,616 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/05/14 13:24:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/05/13 12:57:53 | 000,000,942 | ---- | M] () -- C:\Users\Cougar\Desktop\New Text Document.bat
[2012/05/13 11:35:06 | 000,334,736 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/05/12 16:31:05 | 000,000,963 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Baseline Security Analyzer 2.2.lnk
[2012/05/11 12:16:01 | 000,442,053 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2012/05/07 17:55:46 | 000,024,005 | ---- | M] () -- C:\Windows\System32\drivers\AVG\iavichjg.avm
[2012/05/07 14:10:14 | 000,442,053 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts.20120511-121601.backup
[2012/05/07 13:22:12 | 000,419,488 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/05/07 13:22:12 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/05/07 12:29:06 | 002,473,592 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Users\Cougar\Desktop\Procmon.exe
[2012/05/06 15:42:07 | 000,011,054 | ---- | M] () -- C:\Users\Cougar\AppData\Roaming\wklnhst.dat
[2012/05/05 20:27:08 | 000,442,053 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts.20120507-141014.backup
[2012/05/04 17:16:28 | 000,014,640 | ---- | M] () -- C:\Windows\System32\results.xml
[2012/05/04 17:01:38 | 000,001,356 | ---- | M] () -- C:\Users\Cougar\AppData\Local\d3d9caps.dat
[2012/05/04 16:14:34 | 000,477,240 | ---- | M] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys
[2012/05/04 01:45:26 | 000,000,000 | ---- | M] () -- C:\Windows\ToDisc.INI
[2012/05/03 23:52:45 | 000,000,817 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/05/03 23:33:23 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.20120505-202708.backup
[2012/04/30 21:47:52 | 000,093,696 | ---- | M] (Option^Explicit Software [email protected]) -- C:\Users\Cougar\Desktop\KillBox.exe
[2012/04/30 21:20:35 | 004,479,797 | R--- | M] (Swearware) -- C:\Users\Cougar\Desktop\ComboFix.exe
[2012/04/30 20:53:09 | 000,000,937 | ---- | M] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2012/04/30 19:43:03 | 000,061,440 | ---- | M] ( ) -- C:\Users\Cougar\Desktop\VEW.exe
[2012/04/30 19:07:50 | 000,000,877 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/04/30 17:58:41 | 002,074,160 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Cougar\Desktop\tdsskiller.exe
[2012/04/30 17:52:56 | 000,000,818 | ---- | M] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\iWinGames - Shortcut.lnk
[2012/04/30 17:44:58 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.20120503-214633.backup
[2012/04/30 16:30:19 | 004,731,392 | ---- | M] (AVAST Software) -- C:\Users\Cougar\Desktop\aswMBR.exe
[2012/04/30 16:25:24 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Cougar\Desktop\OTL.exe
[2012/04/29 23:48:18 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Cougar\Desktop\HijackThis.exe
[2012/04/29 23:00:17 | 000,000,920 | ---- | M] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk
[2012/04/19 04:50:26 | 000,024,896 | ---- | M] (AVG Technologies CZ, s.r.o. ) -- C:\Windows\System32\drivers\avgidshx.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/05/13 12:56:40 | 000,000,942 | ---- | C] () -- C:\Users\Cougar\Desktop\New Text Document.bat
[2012/05/12 16:31:05 | 000,000,963 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Baseline Security Analyzer 2.2.lnk
[2012/05/10 23:42:33 | 000,492,488 | ---- | C] () -- C:\Users\Cougar\Desktop\PowerDefragmenter.exe
[2012/05/04 01:45:26 | 000,000,000 | ---- | C] () -- C:\Windows\ToDisc.INI
[2012/05/03 23:52:45 | 000,000,817 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/04/30 20:53:09 | 000,000,937 | ---- | C] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2012/04/30 19:07:50 | 000,000,877 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/04/30 17:52:56 | 000,000,818 | ---- | C] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\iWinGames - Shortcut.lnk
[2012/04/30 17:02:46 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/04/30 17:02:46 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/04/30 17:02:46 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/04/30 17:02:46 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/04/30 17:02:46 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/04/29 23:00:17 | 000,000,920 | ---- | C] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk
[2011/10/16 16:23:20 | 000,003,584 | ---- | C] () -- C:\Users\Cougar\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/05/01 03:01:38 | 000,001,356 | ---- | C] () -- C:\Users\Cougar\AppData\Local\d3d9caps.dat
[2010/11/28 16:58:07 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2010/11/09 21:45:30 | 010,871,128 | ---- | C] () -- C:\Windows\System32\LogiDPP.dll
[2010/11/09 21:45:20 | 000,316,248 | ---- | C] () -- C:\Windows\System32\DevManagerCore.dll
[2010/11/09 21:31:42 | 000,026,286 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2010/08/22 00:31:59 | 000,007,164 | ---- | C] () -- C:\Users\Cougar\AppData\Roaming\UserTile.png
[2010/07/04 13:40:26 | 000,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll
[2010/05/07 18:43:30 | 000,025,824 | ---- | C] () -- C:\Windows\System32\drivers\LVPr2Mon.sys
[2009/12/03 10:27:30 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2009/08/20 02:57:06 | 000,011,054 | ---- | C] () -- C:\Users\Cougar\AppData\Roaming\wklnhst.dat
[2009/08/18 23:29:49 | 000,278,984 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys
[2009/08/18 23:29:49 | 000,025,416 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys
[2009/08/18 19:58:32 | 000,000,013 | RHS- | C] () -- C:\Windows\System32\drivers\fbd.sys
[2009/08/18 19:58:29 | 000,000,004 | RHS- | C] () -- C:\Windows\System32\drivers\taishop.sys
[2009/08/03 16:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/07/23 04:47:32 | 000,131,072 | ---- | C] () -- C:\Windows\System32\EnumDevLib.dll
[2008/09/30 14:36:25 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI
[2008/09/30 14:25:14 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll
[2008/09/30 14:25:14 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll
[2008/09/30 14:25:14 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll
[2008/09/30 14:25:14 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll
[2008/09/30 14:25:14 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll
[2008/09/30 14:25:14 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll
[2008/06/12 20:59:22 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1502.dll
[2008/01/15 05:31:00 | 000,000,530 | ---- | C] () -- C:\Windows\System32\tx14_ic.ini
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2006/11/02 02:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/03/09 11:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[1997/06/13 20:56:08 | 000,056,832 | ---- | C] () -- C:\Windows\System32\iyvu9_32.dll

========== Custom Scans ==========

< MD5 for: ACTXPRXY.DLL >
[2008/01/20 21:34:44 | 000,326,656 | ---- | M] (Microsoft Corporation) MD5=8D78BA30DB4AE040A52EDEE725782715 -- C:\Windows\System32\actxprxy.dll
[2008/01/20 21:34:44 | 000,326,656 | ---- | M] (Microsoft Corporation) MD5=8D78BA30DB4AE040A52EDEE725782715 -- C:\Windows\winsxs\x86_microsoft-windows-activexproxy_31bf3856ad364e35_6.0.6001.18000_none_120e336fea4a5696\actxprxy.dll

< MD5 for: ATL.DLL >
[2009/07/17 09:39:28 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=0114F0D73BAC288C684C41E7EDC22255 -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6000.21088_none_a974fcc975e35390\atl.dll
[2009/07/17 09:35:11 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=35979494DABAF115F5FFA960830817DF -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6001.18293_none_aac1f52459f8aeb3\atl.dll
[2009/07/17 09:52:41 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=36C5C3CAB3B467BA68AE345C9B9DADC3 -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6000.16889_none_a8ec88265cc499db\atl.dll
[2009/07/17 08:54:43 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=409F36C8BD06FCE184631EB4142B009A -- C:\Windows\System32\atl.dll
[2009/07/17 08:54:43 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=409F36C8BD06FCE184631EB4142B009A -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6002.18070_none_acbb07ec57117d17\atl.dll
[2009/07/17 09:24:52 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=A6486396826C6CD276489109020DAE3E -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6001.22474_none_ab6233f773052d19\atl.dll
[2008/01/20 21:33:53 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=E3FAD509FEF3D6CFC524AEDAE54B7E16 -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6001.18000_none_ab203fc659b26ce7\atl.dll
[2009/07/17 09:15:48 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=FE997E098FF868B5734E8204FD26A49C -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6002.22179_none_ad4da751702700f0\atl.dll

< MD5 for: BROWSEUI.DLL >
[2009/04/11 01:28:18 | 001,324,032 | ---- | M] (Microsoft Corporation) MD5=4504819D18FAC09B6108D8728467E5B2 -- C:\Windows\System32\browseui.dll
[2009/04/11 01:28:18 | 001,324,032 | ---- | M] (Microsoft Corporation) MD5=4504819D18FAC09B6108D8728467E5B2 -- C:\Windows\winsxs\x86_microsoft-windows-browseui_31bf3856ad364e35_6.0.6002.18005_none_32ce5abee3779868\browseui.dll
[2008/01/20 21:34:44 | 001,324,032 | ---- | M] (Microsoft Corporation) MD5=A3C1B75B0156D5B68B271C6FE0A5FDE7 -- C:\Windows\winsxs\x86_microsoft-windows-browseui_31bf3856ad364e35_6.0.6001.18000_none_30e2e1b2e655cd1c\browseui.dll

< MD5 for: CRYPTDLG.DLL >
[2006/11/02 04:46:03 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=498961DEAAC558A5D85F7596CBCA6DC3 -- C:\Windows\System32\cryptdlg.dll
[2006/11/02 04:46:03 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=498961DEAAC558A5D85F7596CBCA6DC3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptdlg-dll_31bf3856ad364e35_6.0.6000.16386_none_20519b261b2afec6\cryptdlg.dll

< MD5 for: DSSENH.DLL >
[2008/01/20 21:34:08 | 000,155,704 | ---- | M] (Microsoft Corporation) MD5=C8DBFEF835FF54467425C8F3ABCF7046 -- C:\Windows\System32\dssenh.dll
[2008/01/20 21:34:08 | 000,155,704 | ---- | M] (Microsoft Corporation) MD5=C8DBFEF835FF54467425C8F3ABCF7046 -- C:\Windows\winsxs\x86_microsoft-windows-d..ellman_software_csp_31bf3856ad364e35_6.0.6001.18000_none_3bf8bb8384e4ad56\dssenh.dll

< MD5 for: JSCRIPT.DLL >
[2011/04/22 17:50:01 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=10AF1BF5D0168D97BDF347B907288E8B -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20530_none_4350f01c4e2f3f83\jscript.dll
[2011/02/17 01:55:07 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=1789C88F7B034EE48FE0D4AE2EBDCE95 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.23141_none_662843b0262eeb31\jscript.dll
[2011/04/22 18:26:50 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=1DDEFA440B300CFAE8BE46049CE90EF4 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16430_none_42c7535135119fb9\jscript.dll
[2012/02/27 19:54:53 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=241B020AA7F0F03E6EF5E703406B9C6A -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20548_none_434e22804e30262c\jscript.dll
[2012/02/27 20:06:48 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=2978077B7DD5B5E24A0A7C0A75B08A5A -- C:\Windows\System32\jscript.dll
[2012/02/27 20:06:48 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=2978077B7DD5B5E24A0A7C0A75B08A5A -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16443_none_42bf8443351707af\jscript.dll
[2011/07/21 21:45:41 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=2D379DEB57C56205060B08537DF1CF81 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16434_none_42cb5479350e0515\jscript.dll
[2009/06/04 07:28:12 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=2FF61833BE4FDE938D71B2E7B2171844 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6000.21061_none_8143436c134b5473\jscript.dll
[2009/03/08 06:33:14 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=38FFEC2CD31441A6B57D7A0B490D7299 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.18702_none_65cb0af10cefc76a\jscript.dll
[2011/12/13 21:53:38 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=3A1C55C0C951F0FDC413D69F7ADF2278 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16441_none_42bd83af3518d501\jscript.dll
[2011/12/13 21:25:14 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=40EBC2C57B89174788B5F28A82EE6B7F -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20546_none_434c21ec4e31f37e\jscript.dll
[2009/06/04 07:07:01 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=462D705964D0E70DFDADDFCC3F5FAA6D -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6002.18045_none_84a021f2f466921d\jscript.dll
[2009/12/04 02:19:58 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=46E35CDEA68DFCE274BE2B51EB9F0D36 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.18869_none_65912f550d1a1d98\jscript.dll
[2011/11/03 17:34:59 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=4B65B4F93F63AA6DC1042A8AED99D093 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16440_none_42bc83653519bbaa\jscript.dll
[2009/06/04 07:33:30 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=4C7D274A0E5266C5EEDD9DE0DFE9B8D6 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.18266_none_82a50e96f74f910b\jscript.dll
[2008/05/08 16:59:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=65CA19ACB31DDB4B063BC0D731DC311B -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.18068_none_82a70b5ef74dc96b\jscript.dll
[2011/11/03 18:03:44 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=67CB2EEB51CAC741E7A313116D16E228 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20544_none_434a21584e33c0d0\jscript.dll
[2009/06/06 00:01:50 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=680A319B0FD31AC4D7D18A6D843244FE -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.18795_none_656cbc830d360ee8\jscript.dll
[2011/04/21 12:52:33 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=77A00A40A93894DFE90B910040A8D06A -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16421_none_42d3238735089d1f\jscript.dll
[2011/02/17 01:19:43 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=812B78D537E5BA9D8D25A66E20A37C35 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.19046_none_65a3a8570d0cca1a\jscript.dll
[2009/06/04 07:55:42 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=81ECD75F0237AD86995FC988299F5BDB -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6002.22146_none_852abf080d834b3e\jscript.dll
[2008/05/08 00:18:59 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=849FE82F794ADA8E0629FC7CEE2813C6 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.22175_none_8322d76010763921\jscript.dll
[2009/04/11 01:28:20 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=89333008D4204E561AD09DEC3E20760F -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6002.18005_none_84cb61a2f4462259\jscript.dll
[2011/08/31 21:24:47 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=8ABA7DBFC0DAE718245E4569AB0477F6 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16437_none_42ce5557350b511a\jscript.dll
[2009/06/06 07:55:13 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=A363FD6BE90A57F52FC46B71A3E711A2 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.22886_none_66022984264aac18\jscript.dll
[2009/06/04 07:32:35 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=AC0128A385762756C346E42FA5E1697C -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.22443_none_83414c42105faa15\jscript.dll
[2011/07/21 20:45:33 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=DAEBDA7B49754F5BC183DEC7DEB4A65D -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20534_none_4354f1444e2ba4df\jscript.dll
[2009/12/04 11:15:24 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=DD2744391CA7D55270C240A0CDFFBEB2 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.22960_none_6611c986263fd953\jscript.dll
[2011/08/31 20:53:42 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=DE625D6528DABA10EB223A5102761E20 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20537_none_4357f2224e28f0e4\jscript.dll
[2009/06/04 07:40:47 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=F45BC6A78A7A732330949E4DE1EF84A8 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6000.16865_none_80bdcfa6fa29e6c3\jscript.dll
[2008/01/20 21:34:49 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=FFC4ED6E2393316CF218D5454553CB6E -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.18000_none_82dfe896f724570d\jscript.dll

< MD5 for: MSHTML.DLL >
[2011/08/31 21:36:37 | 012,275,200 | ---- | M] (Microsoft Corporation) MD5=04E0CD31A63DFC0D73725A3D1768FB5A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16437_none_d3317f5c60107529\mshtml.dll
[2010/12/18 02:13:16 | 005,962,240 | ---- | M] (Microsoft Corporation) MD5=0DA63A2B1D6D55E6005F4552D22E7BBE -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.23111_none_f6abdd79511bbb6d\mshtml.dll
[2009/12/18 07:23:43 | 003,602,944 | ---- | M] (Microsoft Corporation) MD5=0EE8B3A112C58EB71951DA5C77E7C01A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.21184_none_1193d05d3e5df990\mshtml.dll
[2008/04/24 23:23:07 | 003,591,680 | ---- | M] (Microsoft Corporation) MD5=13A0AA60B35A6A13152A759536C10203 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16681_none_110754e02542e30a\mshtml.dll
[2010/09/08 00:57:52 | 005,957,120 | ---- | M] (Microsoft Corporation) MD5=1704FC902E1B53EF87593D60FD312A55 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18975_none_f5e58a2c382af563\mshtml.dll
[2008/06/26 22:47:31 | 003,594,240 | ---- | M] (Microsoft Corporation) MD5=1D73575D8A0F368CD8FE3212E8928743 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.20868_none_11ad956f3e49f97a\mshtml.dll
[2008/06/26 22:48:28 | 003,578,880 | ---- | M] (Microsoft Corporation) MD5=256E9D588ACB7F104123947297A9302A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22212_none_13c3e1f53b4d66ac\mshtml.dll
[2008/06/26 23:15:24 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=2B59221D1B9D9FB1D202A21AFE8E410A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18099_none_12eac5ea226a5aa4\mshtml.dll
[2008/04/24 23:35:14 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=2C2A85BBAB617EDDD19119F66C05B1C3 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18063_none_130533f222576ec7\mshtml.dll
[2009/12/16 06:42:38 | 003,600,896 | ---- | M] (Microsoft Corporation) MD5=360A4FA3715C63086AE00C108E592E08 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6002.18167_none_14efae9a1f7a1de3\mshtml.dll
[2008/04/24 23:07:54 | 003,593,728 | ---- | M] (Microsoft Corporation) MD5=38EC352C600EB037FE02749F8C170B6B -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.20823_none_11d3d3ad3e2e0b03\mshtml.dll
[2008/02/20 23:43:36 | 003,591,680 | ---- | M] (Microsoft Corporation) MD5=3AE6072A86AD8049DD133DB40F73F0C8 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16643_none_113495242520a5f4\mshtml.dll
[2011/04/22 18:36:19 | 012,269,056 | ---- | M] (Microsoft Corporation) MD5=3F63F95C998F7E1AF409BC74E83D45E5 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16430_none_d32a7d566016c3c8\mshtml.dll
[2010/12/18 01:23:15 | 005,961,216 | ---- | M] (Microsoft Corporation) MD5=42B87D22378C1EF98F3B6F410C2670AA -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.19019_none_f62a42fe37f6e65b\mshtml.dll
[2008/01/20 21:33:25 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=48E05FD07045BB2E5CFC43C970CAF1E7 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18000_none_1343129c22297b1c\mshtml.dll
[2011/12/13 22:30:38 | 012,282,368 | ---- | M] (Microsoft Corporation) MD5=497C9C3DB953A60EC4F43A097E15F75E -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16441_none_d320adb4601df910\mshtml.dll
[2011/04/21 12:52:36 | 012,268,544 | ---- | M] (Microsoft Corporation) MD5=4DEF8126CABAA6CDC12103CD74C6A919 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16421_none_d3364d8c600dc12e\mshtml.dll
[2011/11/03 18:02:45 | 012,279,808 | ---- | M] (Microsoft Corporation) MD5=66C0AEE61D1C5C35BF1B4642A153B114 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16440_none_d31fad6a601edfb9\mshtml.dll
[2011/02/22 02:14:18 | 005,964,800 | ---- | M] (Microsoft Corporation) MD5=6D30A34B029176D86EC04ECE6C0F62B1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.23143_none_f68d6e49513241ee\mshtml.dll
[2009/12/18 07:22:51 | 003,587,584 | ---- | M] (Microsoft Corporation) MD5=6EF8BF95A1CE83ECA056524A02B29E25 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22585_none_137b39113b836dbd\mshtml.dll
[2009/12/18 08:02:57 | 003,585,024 | ---- | M] (Microsoft Corporation) MD5=804BEB97942AFDD90A0418DDB4EF8342 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18385_none_12f19a602265d0cc\mshtml.dll
[2011/04/22 17:59:20 | 012,269,056 | ---- | M] (Microsoft Corporation) MD5=858AD7EC121DBC3D39D4ABFE2E7E789C -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20530_none_d3b41a2179346392\mshtml.dll
[2009/12/18 07:50:17 | 003,599,360 | ---- | M] (Microsoft Corporation) MD5=8A49DC126EEB62C030782A9CBDA3A99E -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16982_none_11085adc2541f3d6\mshtml.dll
[2011/08/31 21:07:19 | 012,275,200 | ---- | M] (Microsoft Corporation) MD5=8C93AED0A332209434B62162D03C38C9 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20537_none_d3bb1c27792e14f3\mshtml.dll
[2008/04/24 23:19:50 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=92A81ADE1E576A53176777260190F3A1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22167_none_1392d1e53b7173ed\mshtml.dll
[2008/02/21 23:50:05 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=977C356E655F357665310C0C95D0DBD4 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22120_none_13b70f8f3b5752c8\mshtml.dll
[2010/11/02 00:58:14 | 005,959,168 | ---- | M] (Microsoft Corporation) MD5=9AC463498C480E9EB3C63DC21E4F29C8 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18999_none_f5d3eb7c383792a1\mshtml.dll
[2008/02/21 23:59:30 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=9C4091CD321D6D8BCF9842F109EE574B -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18023_none_133073a22236ff03\mshtml.dll
[2010/11/02 02:08:01 | 005,960,704 | ---- | M] (Microsoft Corporation) MD5=9FCC1F6457A84902EA7545B568B5AEDB -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.23091_none_f6555c33515c9dce\mshtml.dll
[2011/11/03 18:35:27 | 012,279,808 | ---- | M] (Microsoft Corporation) MD5=A21B983E40578D0E6CFA9864AC4E1219 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20544_none_d3ad4b5d7938e4df\mshtml.dll
[2011/12/13 21:41:17 | 012,282,368 | ---- | M] (Microsoft Corporation) MD5=A29CFD4B9F6F2BBE06C8D64B6D07F1D4 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20546_none_d3af4bf17937178d\mshtml.dll
[2009/04/11 01:28:20 | 003,596,288 | ---- | M] (Microsoft Corporation) MD5=A4D04D404AFC1D30EDA01EE50D27AA51 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6002.18005_none_152e8ba81f4b4668\mshtml.dll
[2011/02/22 01:17:40 | 005,962,240 | ---- | M] (Microsoft Corporation) MD5=AA411AEF2476D251078F9C9F0478C142 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.19048_none_f608d2f0381020d7\mshtml.dll
[2008/06/26 22:54:45 | 003,592,192 | ---- | M] (Microsoft Corporation) MD5=B964D58A6698C8FCA93447ADBDE18820 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16711_none_1153063a250a1c9a\mshtml.dll
[2012/02/27 20:21:47 | 012,281,856 | ---- | M] (Microsoft Corporation) MD5=B9E083B14B1994F1255983F2DF31C7DF -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20548_none_d3b14c8579354a3b\mshtml.dll
[2010/01/02 09:51:38 | 005,945,856 | ---- | M] (Microsoft Corporation) MD5=BE6120F3D7A853039B5437AC9E1986C1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.22973_none_f66d247d514a6558\mshtml.dll
[2009/03/08 06:41:15 | 005,937,152 | ---- | M] (Microsoft Corporation) MD5=D469A0EBA2EF5C6BEE8065B7E3196E5E -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18702_none_f62e34f637f4eb79\mshtml.dll
[2010/01/02 01:33:34 | 005,942,784 | ---- | M] (Microsoft Corporation) MD5=DF4D546A6E1C8D0F4FC10FCC9E422763 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18882_none_f5d7b77c3835c828\mshtml.dll
[2011/07/21 21:54:04 | 012,273,664 | ---- | M] (Microsoft Corporation) MD5=E6D5C7E4AAC0C682169AA5021386EFF3 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16434_none_d32e7e7e60132924\mshtml.dll
[2010/09/08 01:22:01 | 005,958,656 | ---- | M] (Microsoft Corporation) MD5=E993FB26BFAC2887BFE8DDAC4DC9180A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.23067_none_f67bcdb3513ee205\mshtml.dll
[2008/02/21 23:50:17 | 003,593,728 | ---- | M] (Microsoft Corporation) MD5=ED2588D1864319C54E79443130A8004B -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.20777_none_11a1c3533e52feed\mshtml.dll
[2009/12/17 07:00:36 | 003,603,456 | ---- | M] (Microsoft Corporation) MD5=F1F3D1793483B394835DAB3D4C326CDB -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6002.22290_none_1551d99b38b6601f\mshtml.dll
[2011/07/21 20:53:49 | 012,273,664 | ---- | M] (Microsoft Corporation) MD5=F2966190D2C20C585A730F9C0B3C7373 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20534_none_d3b81b497930c8ee\mshtml.dll
[2012/02/27 20:52:25 | 012,281,856 | ---- | M] (Microsoft Corporation) MD5=F82BF2CB075B49E9FAB5FF213C45C020 -- C:\Windows\ERDNT\cache\mshtml.dll
[2012/02/27 20:52:25 | 012,281,856 | ---- | M] (Microsoft Corporation) MD5=F82BF2CB075B49E9FAB5FF213C45C020 -- C:\Windows\System32\mshtml.dll
[2012/02/27 20:52:25 | 012,281,856 | ---- | M] (Microsoft Corporation) MD5=F82BF2CB075B49E9FAB5FF213C45C020 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16443_none_d322ae48601c2bbe\mshtml.dll

< MD5 for: MSXML3.DLL >
[2010/06/11 10:30:23 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=12A4E29C7F0C1B1E89541830FD0E52F1 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18490_none_880cf8e6971f1251\msxml3.dll
[2010/06/11 11:15:06 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=2B338AB80CF27D14CB75D94E294A1AB8 -- C:\Windows\System32\msxml3.dll
[2010/06/11 11:15:06 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=2B338AB80CF27D14CB75D94E294A1AB8 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18269_none_8a1cdf129424f4d8\msxml3.dll
[2010/06/11 11:31:45 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=3DC3074B0A736E086AC66DE6AB0786BA -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22422_none_8acabb6dad2870a4\msxml3.dll
[2009/04/11 01:28:22 | 001,183,232 | ---- | M] (Microsoft Corporation) MD5=5942F272BBEF5A77BF1DCE13BB5FAC8E -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18005_none_8a59b9a693f7ed88\msxml3.dll
[2009/08/11 11:58:29 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=8A728F413C953A2CD9ABA02C0D21A7F0 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22196_none_8a83076fad5da222\msxml3.dll
[2008/09/04 23:48:28 | 001,194,496 | ---- | M] (Microsoft Corporation) MD5=8FC34AF6DA61DF291FB48DACECB8AF83 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16745_none_8661c59c99cb7ce9\msxml3.dll
[2008/01/20 21:34:18 | 001,190,400 | ---- | M] (Microsoft Corporation) MD5=8FCDFB955F5BFD05E45C035A5FD2B7AB -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18000_none_886e409a96d6223c\msxml3.dll
[2009/08/10 07:51:16 | 001,260,032 | ---- | M] (Microsoft Corporation) MD5=91070AD16D21818E4E1A46605479B2C2 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.21103_none_87147d71b2caa7d1\msxml3.dll
[2009/08/11 10:25:41 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=A858B6604E4074233ADB3EB3FAF632E9 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22492_none_8898945fb03ae7a2\msxml3.dll
[2008/09/05 00:08:23 | 001,191,936 | ---- | M] (Microsoft Corporation) MD5=B1ABC3B1953BE70FE78045C401A03B50 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22258_none_88c9d1ffb015159a\msxml3.dll
[2009/08/10 06:00:37 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=B9CA2EA9DCA1A0EEE34FA806BBCF7A40 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18306_none_8874480896d0b1bb\msxml3.dll
[2010/06/11 10:25:07 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=C25D39750D692573AF2153E0E6E03F5D -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22709_none_8900eb63afeb94ff\msxml3.dll
[2008/09/05 00:14:05 | 001,191,936 | ---- | M] (Microsoft Corporation) MD5=C41551DD53FC9B7BE77AC5901E640E16 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18136_none_8853d47896e90b40\msxml3.dll
[2009/08/10 08:05:23 | 001,260,032 | ---- | M] (Microsoft Corporation) MD5=C72DC4848F94A84BDBAE3B1080086316 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16903_none_868b088499acd4c5\msxml3.dll
[2009/08/11 11:44:26 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=E82AAC9B68DD4345821C80B111691F10 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18087_none_8a053ada9436ffbe\msxml3.dll
[2008/09/04 23:47:44 | 001,194,496 | ---- | M] (Microsoft Corporation) MD5=F747633B7D3BCC9950497AA1E8E4BF76 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.20910_none_8706d29fb2d54754\msxml3.dll

< MD5 for: MSXML6.DLL >
[2009/08/10 07:51:17 | 001,409,536 | ---- | M] (Microsoft Corporation) MD5=1A9EF4579A0F253E441EC31CB8D39B05 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.21103_none_87143919b2caf4b4\msxml6.dll
[2009/04/11 01:28:22 | 001,336,320 | ---- | M] (Microsoft Corporation) MD5=376099B0E17AA5B2157FF0C2B66F072A -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6002.18005_none_8a59754e93f83a6b\msxml6.dll
[2009/08/10 08:05:24 | 001,406,464 | ---- | M] (Microsoft Corporation) MD5=473DF61261C234A4A4C577F3631B9327 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.16903_none_868ac42c99ad21a8\msxml6.dll
[2008/09/09 22:26:42 | 001,341,440 | ---- | M] (Microsoft Corporation) MD5=6934268850461EC06BEFEC87CD7CB479 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.20913_none_87098f25b2d2e03c\msxml6.dll
[2009/08/11 11:58:29 | 001,401,856 | ---- | M] (Microsoft Corporation) MD5=9418F45FD9793B047FFB8771CC19AF83 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6002.22196_none_8a82c317ad5def05\msxml6.dll
[2008/09/09 22:25:00 | 001,341,440 | ---- | M] (Microsoft Corporation) MD5=9AC203B127B9FD1789D356DACEDE9A32 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.16747_none_866381d899c9fc7a\msxml6.dll
[2009/08/11 11:44:26 | 001,401,856 | ---- | M] (Microsoft Corporation) MD5=BDAE82BFE54B38792665D20486600177 -- C:\Windows\System32\msxml6.dll
[2009/08/11 11:44:26 | 001,401,856 | ---- | M] (Microsoft Corporation) MD5=BDAE82BFE54B38792665D20486600177 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6002.18087_none_8a04f68294374ca1\msxml6.dll
[2008/09/09 22:27:55 | 001,334,272 | ---- | M] (Microsoft Corporation) MD5=C103FD1C26EAD8D3E37E666E8C7E662B -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.22261_none_88b7bbb5b023cd0d\msxml6.dll
[2009/08/11 10:26:10 | 001,401,344 | ---- | M] (Microsoft Corporation) MD5=CA915D7C7294FA09CBF4C6B7DB060560 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.22492_none_88985007b03b3485\msxml6.dll
[2008/01/20 21:34:18 | 001,332,224 | ---- | M] (Microsoft Corporation) MD5=CB0CBFD13FDAADF55B644C505675173F -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.18000_none_886dfc4296d66f1f\msxml6.dll
[2009/08/10 06:01:00 | 001,399,296 | ---- | M] (Microsoft Corporation) MD5=FAED2BB920F8C729693A517394C87DD0 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.18306_none_887403b096d0fe9e\msxml6.dll
[2008/09/09 22:40:14 | 001,334,272 | ---- | M] (Microsoft Corporation) MD5=FF52AC9A9E29F08D6D8B86DC33522099 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.18138_none_885590b496e78ad1\msxml6.dll

< MD5 for: OLE32.DLL >
[2008/01/20 21:34:47 | 001,315,328 | ---- | M] (Microsoft Corporation) MD5=3B634E4BE373D6D987EBF906B43FAAB3 -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6001.18000_none_ac1da75bf2516084\ole32.dll
[2010/06/28 11:29:14 | 001,315,840 | ---- | M] (Microsoft Corporation) MD5=64A319477AF21806B8A17E8A3A3FF8BC -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6001.22720_none_ac91afb30b7f271a\ole32.dll
[2010/06/28 12:37:08 | 001,316,864 | ---- | M] (Microsoft Corporation) MD5=7C6F74A11FCF5745B36CB8085B7DE3FB -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.22433_none_ae70528d08aae434\ole32.dll
[2010/06/28 12:00:21 | 001,316,864 | ---- | M] (Microsoft Corporation) MD5=9586E7CB2255A8B097A7E4538202585E -- C:\Windows\ERDNT\cache\ole32.dll
[2010/06/28 11:15:53 | 001,315,840 | ---- | M] (Microsoft Corporation) MD5=AA406846DD60E3A4536DBAAB4037B685 -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6001.18498_none_abc461f7f2931b51\ole32.dll
[2009/04/11 01:28:23 | 001,316,864 | ---- | M] (Microsoft Corporation) MD5=C50A0AB19094BC362FBA69E105EBCCFD -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.18005_none_ae092067ef732bd0\ole32.dll
[2010/06/28 12:00:21 | 001,316,864 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\ole32.dll
[2010/06/28 12:00:21 | 001,316,864 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.18277_none_adbf7553efaa1c63\ole32.dll

< MD5 for: OLEAUT32.DLL >
[2008/01/20 21:34:50 | 000,563,200 | ---- | M] (Microsoft Corporation) MD5=03E0777D4D01B22FA7C6CC6E9AD335DF -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6001.18000_none_bd002a8dfb7a3328\oleaut32.dll
[2008/01/20 21:14:09 | 000,559,104 | ---- | M] (Microsoft Corporation) MD5=0C9A043D49A6ED91B8BAE0F66785272F -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6000.20734_none_bb871a171785fb30\oleaut32.dll
[1998/12/23 02:00:00 | 000,598,288 | ---- | M] (Microsoft Corporation) MD5=2B4CBA977231E71FF44A765BDF7CECA6 -- C:\Program Files\Ulead Systems\DVD MovieFactory for TOSHIBA\Ulead DVD MovieFactory 5\OLEAUT32.DLL
[2010/12/20 11:41:25 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=47D00E69EA69332C9A756424D5D87CDC -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.22551_none_bf3b373911e5b933\oleaut32.dll
[2008/01/20 21:14:09 | 000,558,080 | ---- | M] (Microsoft Corporation) MD5=7924BCCE665AC92FC04CD45A46FE3E3D -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6000.16609_none_bb22ee81fe4b8646\oleaut32.dll
[2010/12/20 10:26:38 | 000,563,200 | ---- | M] (Microsoft Corporation) MD5=8DEFDCF8F2C5871CB7C436A6FBD86017 -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6001.22816_none_bd850673149a72fe\oleaut32.dll
[2011/08/29 13:51:07 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=9F793B01FDE3E2888306C97DC7F704A7 -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.22706_none_bf764c1311b8a67f\oleaut32.dll
[2011/08/25 11:14:01 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=B218342214D9BBA0F54EA12BA2E9278C -- C:\Windows\System32\oleaut32.dll
[2011/08/25 11:14:01 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=B218342214D9BBA0F54EA12BA2E9278C -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.18508_none_beeeadf5f8993c3c\oleaut32.dll
[2009/04/11 01:28:23 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=CA85552B1A307CB03FF1A1D2D12CB1C5 -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.18005_none_beeba399f89bfe74\oleaut32.dll
[2010/12/20 11:35:04 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=DE4CD76C254E143F40E62952788D3BE7 -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.18357_none_beb79a43f8c2b44c\oleaut32.dll
[2010/12/20 10:39:14 | 000,563,200 | ---- | M] (Microsoft Corporation) MD5=FA6BD25A5A65A6FF5BE4385098E3BDEF -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6001.18565_none_bcc455f5fba64b44\oleaut32.dll

< MD5 for: QMGR.DLL >
[2008/01/20 21:34:49 | 000,758,272 | ---- | M] (Microsoft Corporation) MD5=02ED7B4DBC2A3232A389106DA7515C3D -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6001.18000_none_2390c4ecf9720b8c\qmgr.dll
[2009/04/11 01:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\Windows\ERDNT\cache\qmgr.dll
[2009/04/11 01:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\Windows\System32\qmgr.dll
[2009/04/11 01:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6002.18005_none_257c3df8f693d6d8\qmgr.dll

< MD5 for: QMGRPRXY.DLL >
[2006/11/02 04:46:12 | 000,020,480 | ---- | M] (Microsoft Corporation) MD5=10F13FFF542FEC4A2C4FA734EEBE56B9 -- C:\Windows\System32\qmgrprxy.dll
[2006/11/02 04:46:12 | 000,020,480 | ---- | M] (Microsoft Corporation) MD5=10F13FFF542FEC4A2C4FA734EEBE56B9 -- C:\Windows\winsxs\x86_microsoft-windows-bits-qmgrproxy_31bf3856ad364e35_6.0.6000.16386_none_f33db9b80636b12a\qmgrprxy.dll

< MD5 for: RSAENH.DLL >
[2008/01/20 21:34:26 | 000,242,744 | ---- | M] (Microsoft Corporation) MD5=5178D99B1CBD1C9D310904417E2C5A11 -- C:\Windows\winsxs\x86_microsoft-windows-rsaenh-dll_31bf3856ad364e35_6.0.6001.18000_none_5fc70fc7b14478d4\rsaenh.dll
[2009/04/11 01:27:47 | 000,241,128 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\rsaenh.dll
[2009/04/11 01:27:47 | 000,241,128 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-rsaenh-dll_31bf3856ad364e35_6.0.6002.18005_none_61b288d3ae664420\rsaenh.dll

< MD5 for: SCRRUN.DLL >
[2008/05/08 00:21:52 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=2029EBAD363A1D349EF87342EDD07217 -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.22175_none_48ab41df19abd38f\scrrun.dll
[2008/01/20 21:33:12 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=242F6DDB36425B8DE18B5FD9F7643767 -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.18000_none_486853160059f17b\scrrun.dll
[2009/04/11 01:28:24 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=3DB1530CDD7AEF2BCFA6FB77D097CDDA -- C:\Windows\System32\scrrun.dll
[2009/04/11 01:28:24 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=3DB1530CDD7AEF2BCFA6FB77D097CDDA -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6002.18005_none_4a53cc21fd7bbcc7\scrrun.dll
[2008/05/08 16:59:32 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=83433ECFB05E44AB1529004CCA561FE9 -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.18068_none_482f75de008363d9\scrrun.dll
[2001/06/26 17:39:42 | 000,151,601 | R--- | M] (Microsoft Corporation) MD5=9B6BFD23386A57C81536B7B4305998D6 -- C:\Windows\Installer\$PatchCache$\Managed\049634E8449A76D44AB581672EB39B0C\9.8.3\scrrun.dll

< MD5 for: SHDOCVW.DLL >
[2011/01/20 11:07:03 | 001,075,712 | ---- | M] (Microsoft Corporation) MD5=167AC31450C0C53A01FA1491E94D7678 -- C:\Windows\System32\shdocvw.dll
[2011/01/20 11:07:03 | 001,075,712 | ---- | M] (Microsoft Corporation) MD5=167AC31450C0C53A01FA1491E94D7678 -- C:\Windows\winsxs\x86_microsoft-windows-shdocvw_31bf3856ad364e35_6.0.6002.18392_none_e8fc1c190953a005\shdocvw.dll
[2009/04/11 01:28:24 | 001,068,032 | ---- | M] (Microsoft Corporation) MD5=2AA4117EE5F4765AD8404DCF9D552C71 -- C:\Windows\winsxs\x86_microsoft-windows-shdocvw_31bf3856ad364e35_6.0.6002.18005_none_e96066910907f91c\shdocvw.dll
[2011/01/20 11:11:04 | 001,075,712 | ---- | M] (Microsoft Corporation) MD5=7C91E76F3021DD5397A3065DCA72952F -- C:\Windows\winsxs\x86_microsoft-windows-shdocvw_31bf3856ad364e35_6.0.6002.22573_none_e99c5aec22601e6b\shdocvw.dll
[2008/01/20 21:33:15 | 001,067,520 | ---- | M] (Microsoft Corporation) MD5=86B89709BDFC7A59D566590CC30CDBB1 -- C:\Windows\winsxs\x86_microsoft-windows-shdocvw_31bf3856ad364e35_6.0.6001.18000_none_e774ed850be62dd0\shdocvw.dll

< MD5 for: SHELL32.DLL >
[2011/01/21 10:04:53 | 011,587,584 | ---- | M] (Microsoft Corporation) MD5=028EF93B746FF370DFE35711A7569647 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22839_none_6c9b67c92b29b17c\shell32.dll
[2011/01/21 10:46:32 | 011,582,464 | ---- | M] (Microsoft Corporation) MD5=048B65EC931A39A5F42016BE04775274 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18588_none_6bdab74c123589c2\shell32.dll
[2011/01/21 11:27:57 | 011,588,096 | ---- | M] (Microsoft Corporation) MD5=221565A0217045A61D179B438BC4AC8A -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.22574_none_6e51988f2874f7b1\shell32.dll
[2009/07/10 07:06:47 | 011,321,856 | ---- | M] (Microsoft Corporation) MD5=276AA16A23029F559BAB104011F97340 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.21081_none_6a76e5db2e332307\shell32.dll
[2009/07/10 06:47:42 | 011,584,512 | ---- | M] (Microsoft Corporation) MD5=32C0C48A029F5EB94A609CE5F2D43BEB -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18063_none_6dd1c3ce0f502e03\shell32.dll
[2008/01/20 21:33:18 | 011,580,416 | ---- | M] (Microsoft Corporation) MD5=33E9CE9110597F1A47BA18B96EAFA6FA -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18000_none_6c292ade11fbedbf\shell32.dll
[2008/04/23 23:40:28 | 011,319,808 | ---- | M] (Microsoft Corporation) MD5=3D58E32AA9A5C7F408D97675C81C9AED -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.20822_none_6ab8eba52e01644f\shell32.dll
[2009/04/11 01:28:24 | 011,584,000 | ---- | M] (Microsoft Corporation) MD5=43466A7FF452883B68F52B963023949C -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18005_none_6e14a3ea0f1db90b\shell32.dll
[2008/11/06 07:59:27 | 011,582,976 | ---- | M] (Microsoft Corporation) MD5=4A21B11997C1F14D8707C8C501CA59A7 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22303_none_6cb5cc532b16d3dc\shell32.dll
[2008/11/06 07:59:14 | 011,320,832 | ---- | M] (Microsoft Corporation) MD5=4F72C8F593AAB1B83FB5D62CBFBB51F9 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.20951_none_6a977d7d2e1a9bf2\shell32.dll
[2008/11/06 08:14:25 | 011,580,928 | ---- | M] (Microsoft Corporation) MD5=5D62692EEB77E32F67A966F1BDEB551B -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18167_none_6bef4f42122643ed\shell32.dll
[2008/04/23 23:58:20 | 011,580,416 | ---- | M] (Microsoft Corporation) MD5=61509AF47F663A6EA941492ED181D60C -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18062_none_6bea4bea122ac813\shell32.dll
[2009/07/10 06:59:03 | 011,584,512 | ---- | M] (Microsoft Corporation) MD5=81A20AC0051ADA6F9FC58FA620BE4A78 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22467_none_6c78efd92b43de05\shell32.dll
[2008/04/23 23:45:45 | 011,581,440 | ---- | M] (Microsoft Corporation) MD5=82A0A2AB2C637C11F28C1E37F76A284E -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22166_none_6c77e9dd2b44cd39\shell32.dll
[2010/07/26 13:04:15 | 011,587,072 | ---- | M] (Microsoft Corporation) MD5=895F23DE1778E6AADE0DEEBCC2E6AC0A -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.22454_none_6e6736812864c2a8\shell32.dll
[2010/07/26 10:51:48 | 011,584,512 | ---- | M] (Microsoft Corporation) MD5=91640C342AD09936D0E4B7EBDDB12091 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18287_none_6dc028ea0f5cc58f\shell32.dll
[2009/07/10 07:17:37 | 011,316,224 | ---- | M] (Microsoft Corporation) MD5=93FDB7E073B00D0BB7DF7182D882539F -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.16883_none_69ef7182151382a9\shell32.dll
[2010/07/26 11:56:52 | 011,586,560 | ---- | M] (Microsoft Corporation) MD5=CDE0D181CF5E5DD7E7C032A15365799C -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22735_none_6c9764bb2b2d4ef9\shell32.dll
[2008/11/06 07:57:06 | 011,315,712 | ---- | M] (Microsoft Corporation) MD5=CF1D75E7B4A7CC6D2A21FE64C9E50A12 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.16774_none_69fb3fd2150a82e8\shell32.dll
[2010/07/26 11:55:26 | 011,581,440 | ---- | M] (Microsoft Corporation) MD5=DD2F953D9DCAAF080F724803A8121CE6 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18505_none_6c2e35ce11f75e35\shell32.dll
[2009/07/10 06:49:50 | 011,584,512 | ---- | M] (Microsoft Corporation) MD5=E19E22CD00EA110B0CE2C13777CEF92C -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.22169_none_6e616255286865d7\shell32.dll
[2009/07/10 07:20:59 | 011,581,440 | ---- | M] (Microsoft Corporation) MD5=EB85D49F3129EBED4993E800521715DD -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18287_none_6bd9b150123678f6\shell32.dll
[2008/04/23 23:51:39 | 011,315,712 | ---- | M] (Microsoft Corporation) MD5=FF37AF2D5DCAFC00BC46AF07B53699B0 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.16680_none_69ec6cd815163c56\shell32.dll
[2011/01/21 11:35:22 | 011,586,048 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\shell32.dll
[2011/01/21 11:35:22 | 011,586,048 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18393_none_6db159bc0f68794b\shell32.dll

< MD5 for: SOFTPUB.DLL >
[2006/11/02 04:46:13 | 000,009,216 | ---- | M] (Microsoft Corporation) MD5=06D2F8867F99BAD116FE3C6347B13EBE -- C:\Windows\System32\softpub.dll
[2006/11/02 04:46:13 | 000,009,216 | ---- | M] (Microsoft Corporation) MD5=06D2F8867F99BAD116FE3C6347B13EBE -- C:\Windows\winsxs\x86_microsoft-windows-softpub-dll_31bf3856ad364e35_6.0.6000.16386_none_e15d4542820233d4\softpub.dll

< MD5 for: URLMON.DLL >
[2009/03/08 06:34:55 | 001,206,784 | ---- | M] (Microsoft Corporation) MD5=05642AE6A7BDAA7541A7451F5A4C6512 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18702_none_97ce3a35ec955bb0\urlmon.dll
[2011/11/03 18:08:05 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=064F6F989238F40B2AA23395E44B259B -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20544_none_754d509d2dd95516\urlmon.dll
[2008/02/22 00:01:33 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=1CC909F70CAE7F858CCF6DD4145D6AA0 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18023_none_b4d078e1d6d76f3a\urlmon.dll
[2008/02/21 23:52:15 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=29CB87A945B10AA959584C3E59D6201D -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22120_none_b55714ceeff7c2ff\urlmon.dll
[2011/08/31 21:28:33 | 001,102,848 | ---- | M] (Microsoft Corporation) MD5=3BF5881CB3D3402ADE70BE9E96E18C67 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16437_none_74d1849c14b0e560\urlmon.dll
[2008/06/26 22:50:29 | 001,166,848 | ---- | M] (Microsoft Corporation) MD5=3ED27AB59FB2DA1C495CCDAA71F825F5 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22212_none_b563e734efedd6e3\urlmon.dll
[2010/09/08 01:24:54 | 001,211,904 | ---- | M] (Microsoft Corporation) MD5=42BBB00FB563E481A8DAD9529CC19677 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.23067_none_981bd2f305df523c\urlmon.dll
[2012/02/27 20:12:01 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=4C162B2A8E175F46DB41B21C77688221 -- C:\Windows\System32\urlmon.dll
[2012/02/27 20:12:01 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=4C162B2A8E175F46DB41B21C77688221 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16443_none_74c2b38814bc9bf5\urlmon.dll
[2009/12/18 08:05:36 | 001,174,528 | ---- | M] (Microsoft Corporation) MD5=4DE2CD3902C0010FA19116F05BD4FF20 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18385_none_b4919f9fd7064103\urlmon.dll
[2002/08/29 08:14:40 | 000,482,816 | R--- | M] (Microsoft Corporation) MD5=54023ABFE163804297F6DC05BADF6668 -- C:\Windows\Installer\$PatchCache$\Managed\049634E8449A76D44AB581672EB39B0C\9.8.3\urlmon.dll
[2010/11/02 01:01:41 | 001,210,880 | ---- | M] (Microsoft Corporation) MD5=581D19B3EFF0A7FEAC6FE7FE7270E3A0 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18999_none_9773f0bbecd802d8\urlmon.dll
[2012/02/27 19:59:00 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=59E5BA0E9F268B2B0EA7C0185150150F -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20548_none_755151c52dd5ba72\urlmon.dll
[2008/04/24 23:35:19 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=5E4F2E3846DB2699D96F1B28E83B94C3 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18063_none_b4a53931d6f7defe\urlmon.dll
[2009/04/11 01:28:25 | 001,167,872 | ---- | M] (Microsoft Corporation) MD5=62F5F76338391A44F4A0E871FFD35A27 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6002.18005_none_b6ce90e7d3ebb69f\urlmon.dll
[2008/06/26 22:49:41 | 001,162,752 | ---- | M] (Microsoft Corporation) MD5=68F5CC104978908671F96EE7FC79D06E -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.20868_none_b34d9aaef2ea69b1\urlmon.dll
[2010/11/02 02:11:49 | 001,211,904 | ---- | M] (Microsoft Corporation) MD5=6AAA7BFA435FD04D56873AA2C7955F41 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.23091_none_97f5617305fd0e05\urlmon.dll
[2008/01/20 21:34:38 | 001,165,824 | ---- | M] (Microsoft Corporation) MD5=6FD4D51AA2DA0314DC77A150EB6D3980 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18000_none_b4e317dbd6c9eb53\urlmon.dll
[2011/02/22 01:21:17 | 001,210,880 | ---- | M] (Microsoft Corporation) MD5=7143942B5072A782874BCA36CEB63A0D -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.19048_none_97a8d82fecb0910e\urlmon.dll
[2011/12/13 21:57:49 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=79F14B5DF9E17E12193337ED4EE1C491 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16441_none_74c0b2f414be6947\urlmon.dll
[2011/11/03 17:40:43 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=814638F572F497D96B17BF254113D9A4 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16440_none_74bfb2aa14bf4ff0\urlmon.dll
[2010/12/18 01:26:50 | 001,210,880 | ---- | M] (Microsoft Corporation) MD5=91F4319C6C0F9CF11412415779CB12C1 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.19019_none_97ca483dec975692\urlmon.dll
[2011/08/31 20:58:19 | 001,102,848 | ---- | M] (Microsoft Corporation) MD5=96C5CBC5539DD05F0A99CC71541EF35D -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20537_none_755b21672dce852a\urlmon.dll
[2009/12/18 07:25:42 | 001,170,944 | ---- | M] (Microsoft Corporation) MD5=984C8CF12DF3C2F723EA76ACCA0CE5CF -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.21184_none_b333d59cf2fe69c7\urlmon.dll
[2008/04/24 23:21:54 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=9EF388245B2E198704A41C44DF4EEC14 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22167_none_b532d724f011e424\urlmon.dll
[2010/12/18 02:17:53 | 001,211,904 | ---- | M] (Microsoft Corporation) MD5=A40252BC6BE95C9B4B5D875B0C25512C -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.23111_none_984be2b905bc2ba4\urlmon.dll
[2011/04/21 12:52:50 | 001,102,336 | ---- | M] (Microsoft Corporation) MD5=AA5F4683A0C3C40D90377AA238A6F1B7 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16421_none_74d652cc14ae3165\urlmon.dll
[2010/01/02 09:56:01 | 001,209,344 | ---- | M] (Microsoft Corporation) MD5=B30EAA9B9B7DBDD8CC5D143472B2F16E -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.22973_none_980d29bd05ead58f\urlmon.dll
[2008/04/24 23:09:51 | 001,162,752 | ---- | M] (Microsoft Corporation) MD5=BE5269680658C57CD9AED2AF337D195E -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.20823_none_b373d8ecf2ce7b3a\urlmon.dll
[2009/12/18 07:24:07 | 001,175,040 | ---- | M] (Microsoft Corporation) MD5=C0CBE22A90ECC439F3872C3E7412C9E4 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22585_none_b51b3e50f023ddf4\urlmon.dll
[2009/12/18 07:52:27 | 001,168,384 | ---- | M] (Microsoft Corporation) MD5=C504C720A5EE8CF112758FEE04D4625B -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16982_none_b2a8601bd9e2640d\urlmon.dll
[2009/12/17 07:04:00 | 001,176,064 | ---- | M] (Microsoft Corporation) MD5=C8241D7839B71D09D5D2C3D7AB4F9F07 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6002.22290_none_b6f1dedaed56d056\urlmon.dll
[2009/12/16 06:44:14 | 001,176,064 | ---- | M] (Microsoft Corporation) MD5=D12B8B3B094DF8A74FC3BCB1DBA578BF -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6002.18167_none_b68fb3d9d41a8e1a\urlmon.dll
[2011/07/21 21:49:01 | 001,102,848 | ---- | M] (Microsoft Corporation) MD5=D217B0DA82FDD942C048749993275AC6 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16434_none_74ce83be14b3995b\urlmon.dll
[2011/12/13 21:29:04 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=D48BB97B11710577FDD025EA39478A18 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20546_none_754f51312dd787c4\urlmon.dll
[2008/06/26 22:54:49 | 001,159,680 | ---- | M] (Microsoft Corporation) MD5=D5A518871C5393B5C1883E74BE75FAF8 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16711_none_b2f30b79d9aa8cd1\urlmon.dll
[2010/01/02 01:38:04 | 001,208,832 | ---- | M] (Microsoft Corporation) MD5=D5B99F82E9AE7EF1ACB28340C5C61B79 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18882_none_9777bcbbecd6385f\urlmon.dll
[2008/02/21 23:52:08 | 001,162,752 | ---- | M] (Microsoft Corporation) MD5=D7C4249EB1CFE999F90A54597DC6CF6F -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.20777_none_b341c892f2f36f24\urlmon.dll
[2010/09/08 01:01:15 | 001,210,880 | ---- | M] (Microsoft Corporation) MD5=DD7ACFC238730C217C5D63BCE12AB8DC -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18975_none_97858f6beccb659a\urlmon.dll
[2011/04/22 18:30:18 | 001,102,336 | ---- | M] (Microsoft Corporation) MD5=DF6DE2F5AFB9FA1CFA02081EF9B3E7E8 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16430_none_74ca829614b733ff\urlmon.dll
[2011/04/22 17:53:19 | 001,102,336 | ---- | M] (Microsoft Corporation) MD5=F23351AAC05A803402C56A531F869B31 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20530_none_75541f612dd4d3c9\urlmon.dll
[2011/07/21 20:48:50 | 001,102,848 | ---- | M] (Microsoft Corporation) MD5=F715C2BCA826CC556C256F66F5B41546 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20534_none_755820892dd13925\urlmon.dll
[2008/02/20 23:43:41 | 001,159,680 | ---- | M] (Microsoft Corporation) MD5=F8E8922A488183128EE605B0612C4C14 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16643_none_b2d49a63d9c1162b\urlmon.dll
[2011/02/22 02:18:22 | 001,212,928 | ---- | M] (Microsoft Corporation) MD5=FB2E03C3996607B0449B27EEBA0020D1 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.23143_none_982d738905d2b225\urlmon.dll
[2008/04/24 23:23:11 | 001,159,680 | ---- | M] (Microsoft Corporation) MD5=FCA38D14AA8877C7AA3C7030D9E40CCC -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16681_none_b2a75a1fd9e35341\urlmon.dll
[2008/06/26 23:15:28 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=FDBF6B298D068F08146C9B2B18D78A5F -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18099_none_b48acb29d70acadb\urlmon.dll

< MD5 for: VBSCRIPT.DLL >
[2011/02/17 01:23:50 | 000,420,864 | ---- | M] (Microsoft Corporation) MD5=330A25AE6D4BCBF4521C1D69D168AA51 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.19046_none_2b1dc30f43cf7656\vbscript.dll
[2009/04/11 01:28:25 | 000,430,080 | ---- | M] (Microsoft Corporation) MD5=34762E419CB79416BE49A8E484525453 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.0.6002.18005_none_4a457c5b2b08ce95\vbscript.dll
[2010/03/05 09:01:02 | 000,420,352 | ---- | M] (Microsoft Corporation) MD5=5A9C91B12C2CBF85F6033FED62CE087A -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.18909_none_2b4c2b7b43ac1f55\vbscript.dll
[2011/04/21 12:52:37 | 000,420,864 | ---- | M] (Microsoft Corporation) MD5=5E7A2CF7719161C5E6C0E47D67AD45AE -- C:\Windows\System32\vbscript.dll
[2011/04/21 12:52:37 | 000,420,864 | ---- | M] (Microsoft Corporation) MD5=5E7A2CF7719161C5E6C0E47D67AD45AE -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.1.8112.16421_none_084d3e3f6bcb495b\vbscript.dll
[2009/03/08 06:33:04 | 000,420,352 | ---- | M] (Microsoft Corporation) MD5=7CC3C8FC1056A229B05926C44D1ADEE4 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.18702_none_2b4525a943b273a6\vbscript.dll
[2002/02/26 16:58:06 | 000,462,906 | R--- | M] (Microsoft Corporation) MD5=85208932FE4CDFC1AD4A14DF82AB1ABD -- C:\Windows\Installer\$PatchCache$\Managed\049634E8449A76D44AB581672EB39B0C\9.8.3\vbscript.dll
[2008/01/20 21:33:37 | 000,430,080 | ---- | M] (Microsoft Corporation) MD5=A50CFEE5140F2704459C22D264A4BDB0 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.0.6001.18000_none_485a034f2de70349\vbscript.dll
[2010/03/05 17:19:52 | 000,420,352 | ---- | M] (Microsoft Corporation) MD5=AE1A9126E184D0734496354B9745AD71 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.23000_none_2bcc9be85cd2112b\vbscript.dll
[2008/05/08 16:59:33 | 000,430,080 | ---- | M] (Microsoft Corporation) MD5=C7EC53FBE59F47DDF3648BCA256D79D2 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.0.6001.18068_none_482126172e1075a7\vbscript.dll
[2008/05/08 00:22:13 | 000,430,080 | ---- | M] (Microsoft Corporation) MD5=DC948E750D1A82F39BD93740ED835257 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.0.6001.22175_none_489cf2184738e55d\vbscript.dll
[2011/02/17 02:00:30 | 000,420,864 | ---- | M] (Microsoft Corporation) MD5=F9397AFBD9152186E15F4B068A3ADB68 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.23141_none_2ba25e685cf1976d\vbscript.dll

< MD5 for: WINTRUST.DLL >
[2009/12/23 07:14:59 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=02FE137C95B46D3966E2B089B26609B8 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6000.21186_none_ee00f81ab6439625\wintrust.dll
[2009/12/23 06:33:29 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=2829C93217B147387F186479A5F6A1E5 -- C:\Windows\System32\wintrust.dll
[2009/12/23 06:33:29 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=2829C93217B147387F186479A5F6A1E5 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6002.18169_none_f15cd657975fba78\wintrust.dll
[2008/01/20 21:34:19 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=2C60B3BE1DE5941555E17F6726148910 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6001.18000_none_efae39c59a10e503\wintrust.dll
[2009/12/23 07:43:08 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=6E012DA20D59C3991751CA6E8C71EB06 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6001.18387_none_ef5ec21d9a4b6d61\wintrust.dll
[2009/12/23 07:12:40 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=A58518348634DA63E942DAA26D4BC344 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6002.22293_none_f1c001a2b09b160b\wintrust.dll
[2009/12/23 07:29:42 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=B702783FC55E3737D19DCDD69D40279E -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6001.22588_none_efe96118b36823a9\wintrust.dll
[2009/12/23 07:45:43 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=C6E246BE0C525762C474F7EC758A70A9 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6000.16984_none_ed7582999d27906b\wintrust.dll

< MD5 for: WUAPI.DLL >
[2009/08/06 21:23:52 | 000,575,704 | ---- | M] (Microsoft Corporation) MD5=009758CC06B7F55B4A4D16A66E243C24 -- C:\Windows\System32\wuapi.dll
[2009/08/06 21:23:52 | 000,575,704 | ---- | M] (Microsoft Corporation) MD5=009758CC06B7F55B4A4D16A66E243C24 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.4.7600.226_none_cf8a5c896f5cdb1e\wuapi.dll
[2008/01/20 21:34:55 | 000,534,016 | ---- | M] (Microsoft Corporation) MD5=1027519E0FDAB595E3D98680662B39A0 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6001.18000_none_8664137a48407b03\wuapi.dll
[2009/04/11 01:28:27 | 000,532,480 | ---- | M] (Microsoft Corporation) MD5=505C5319786CFF7A9D2CB7C8197B1F1D -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6002.18005_none_884f8c864562464f\wuapi.dll
[2006/11/02 04:46:15 | 000,502,784 | ---- | M] (Microsoft Corporation) MD5=578B136083796BDFD1C856FA60FB0BBD -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_6.0.6000.16386_none_92bcd538c06ec160\wuapi.dll
[2008/10/16 16:12:19 | 000,561,688 | ---- | M] (Microsoft Corporation) MD5=CAB93E2AAEEDEEF526F0C4CD56B283E7 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.2.6001.788_none_107673f57a433d77\wuapi.dll

< MD5 for: WUAUENG.DLL >
[2009/04/11 01:28:28 | 001,695,232 | ---- | M] (Microsoft Corporation) MD5=01E1499A7A4FCA7CDE102B60976544C1 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6002.18005_none_a23e523a31a1ed4c\wuaueng.dll
[2009/08/06 21:23:45 | 001,929,952 | ---- | M] (Microsoft Corporation) MD5=6298277B73C77FA99106B271A7525163 -- C:\Windows\System32\wuaueng.dll
[2009/08/06 21:23:45 | 001,929,952 | ---- | M] (Microsoft Corporation) MD5=6298277B73C77FA99106B271A7525163 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.4.7600.226_none_e979223d5b9c821b\wuaueng.dll
[2008/10/16 16:13:38 | 001,809,944 | ---- | M] (Microsoft Corporation) MD5=84A03BFE004B06E93408618976DC9C14 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.2.6001.788_none_2a6539a96682e474\wuaueng.dll
[2006/11/02 04:46:16 | 001,568,256 | ---- | M] (Microsoft Corporation) MD5=9397D21939A25DA1BD0ED8DB5BB3C853 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_6.0.6000.16386_none_acab9aecacae685d\wuaueng.dll
[2008/01/20 21:34:55 | 001,695,232 | ---- | M] (Microsoft Corporation) MD5=D79538B67FA641E986855DEF651E78FE -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6001.18000_none_a052d92e34802200\wuaueng.dll

< MD5 for: WUCLTUX.DLL >
[2006/11/02 04:46:16 | 001,498,624 | ---- | M] (Microsoft Corporation) MD5=0DAB31EBBC89DC86500EFE4EF8B2EAE7 -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_6.0.6000.16386_none_2a58be974cb2ab0e\wucltux.dll
[2008/01/20 21:34:56 | 001,505,280 | ---- | M] (Microsoft Corporation) MD5=233D499EF4136BC2538716FCCEDDAAB1 -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_7.0.6001.18000_none_1dfffcd8d48464b1\wucltux.dll
[2009/08/06 20:45:15 | 002,421,760 | ---- | M] (Microsoft Corporation) MD5=5B56A7A5AE0C118CF6413A6E99170BF8 -- C:\Windows\System32\wucltux.dll
[2009/08/06 20:45:15 | 002,421,760 | ---- | M] (Microsoft Corporation) MD5=5B56A7A5AE0C118CF6413A6E99170BF8 -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_7.4.7600.226_none_672645e7fba0c4cc\wucltux.dll
[2008/10/16 15:56:28 | 001,524,736 | ---- | M] (Microsoft Corporation) MD5=873BD2CF68E70DE7B3B67AF6EB863A5B -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_7.2.6001.788_none_a8125d5406872725\wucltux.dll
[2009/04/11 01:28:28 | 001,505,280 | ---- | M] (Microsoft Corporation) MD5=F7097578CB9BF8A5D58474BC453C3750 -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_7.0.6002.18005_none_1feb75e4d1a62ffd\wucltux.dll

< MD5 for: WUPS.DLL >
[2006/11/02 04:46:16 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=0E71F0397FD91280E1A2FC712A0A7ACC -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_6.0.6000.16386_none_92bcd538c06ec160\wups.dll
[2009/08/06 21:24:09 | 000,035,552 | ---- | M] (Microsoft Corporation) MD5=1D326842006C4BE77ECD848CF89F01AB -- C:\Windows\System32\wups.dll
[2009/08/06 21:24:09 | 000,035,552 | ---- | M] (Microsoft Corporation) MD5=1D326842006C4BE77ECD848CF89F01AB -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.4.7600.226_none_cf8a5c896f5cdb1e\wups.dll
[2008/10/16 16:08:57 | 000,034,328 | ---- | M] (Microsoft Corporation) MD5=9A941BAF38F85B6E3FBEA96AB6E5ADBE -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.2.6001.788_none_107673f57a433d77\wups.dll
[2008/01/20 21:34:55 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=EF1D2DAB860F3380D607EEFBD5EBD4B9 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6001.18000_none_8664137a48407b03\wups.dll
[2008/01/20 21:34:55 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=EF1D2DAB860F3380D607EEFBD5EBD4B9 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6002.18005_none_884f8c864562464f\wups.dll

< MD5 for: WUPS2.DLL >
[2008/10/16 16:09:43 | 000,043,544 | ---- | M] (Microsoft Corporation) MD5=039133C02D61C3CE6C952092054B1148 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.2.6001.788_none_2a6539a96682e474\wups2.dll
[2009/08/06 21:24:08 | 000,044,768 | ---- | M] (Microsoft Corporation) MD5=5BD1234E11B39C63BBA87022AF6D43C2 -- C:\Windows\System32\wups2.dll
[2009/08/06 21:24:08 | 000,044,768 | ---- | M] (Microsoft Corporation) MD5=5BD1234E11B39C63BBA87022AF6D43C2 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.4.7600.226_none_e979223d5b9c821b\wups2.dll
[2008/01/20 21:34:55 | 000,032,768 | ---- | M] (Microsoft Corporation) MD5=8A7BAAF132A05F06E4DB9CAB6312E062 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6001.18000_none_a052d92e34802200\wups2.dll
[2008/01/20 21:34:55 | 000,032,768 | ---- | M] (Microsoft Corporation) MD5=8A7BAAF132A05F06E4DB9CAB6312E062 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6002.18005_none_a23e523a31a1ed4c\wups2.dll
[2006/11/02 04:46:16 | 000,032,256 | ---- | M] (Microsoft Corporation) MD5=9CC828E6D94B944EA78DEA8C3AF4577A -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_6.0.6000.16386_none_acab9aecacae685d\wups2.dll

< MD5 for: WUWEBV.DLL >
[2006/11/02 04:46:16 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=1B2AB378C80F6404687DCB4217BFA17D -- C:\Windows\winsxs\x86_microsoft-windows-w..pdateclient-activex_31bf3856ad364e35_6.0.6000.16386_none_3cc795796625f35c\wuwebv.dll
[2008/10/16 14:08:00 | 000,162,064 | ---- | M] (Microsoft Corporation) MD5=6E9FA3B731AF51BA15B5752013DF4045 -- C:\Windows\winsxs\x86_microsoft-windows-w..pdateclient-activex_31bf3856ad364e35_7.2.6001.788_none_ba8134361ffa6f73\wuwebv.dll
[2009/08/06 20:23:06 | 000,171,608 | ---- | M] (Microsoft Corporation) MD5=BE2DE642AA0D55CB644D87C97A2C01AE -- C:\Windows\System32\wuwebv.dll
[2009/08/06 20:23:06 | 000,171,608 | ---- | M] (Microsoft Corporation) MD5=BE2DE642AA0D55CB644D87C97A2C01AE -- C:\Windows\winsxs\x86_microsoft-windows-w..pdateclient-activex_31bf3856ad364e35_7.4.7600.226_none_79951cca15140d1a\wuwebv.dll
[2008/01/20 21:34:56 | 000,153,088 | ---- | M] (Microsoft Corporation) MD5=E1B21AEE636620B521B3CB41BFAF0602 -- C:\Windows\winsxs\x86_microsoft-windows-w..pdateclient-activex_31bf3856ad364e35_7.0.6001.18000_none_306ed3baedf7acff\wuwebv.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 172 bytes -> C:\ProgramData\TEMP:BF3D0EA3
@Alternate Data Stream - 161 bytes -> C:\ProgramData\TEMP:A5388B43

< End of report >

#62
RKinner

Posted 15 May 2012 - 12:09 AM

Malware Expert

Expert
24,624 posts

Copy the text in the code box by highlighting and Ctrl + c


:OTL
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)

:files
C:\Windows\System32\ole32.dll| C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.22433_none_ae70528d08aae434\ole32.dll /replace
C:\Windows\System32\shell32.dll| C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.22574_none_6e51988f2874f7b1\shell32.dll /replace
     
:Commands
[Reboot]

then Rightclick on OTL and select Run As Administrator to start. Under the Custom Scans/Fixes box at the bottom, paste (ctrl +v) the text. Verify that you got it all and Then click the RUN FIX button (NOT THE QUICK SCAN button!) at the top
Let the program run unhindered, OTL will reboot the PC when it is done. Copy and paste the log into a reply.

Then run the Custom scan again:

Copy the text in the code box:


/md5start
atl.dll
urlmon.dll
mshtml.dll
shdocvw.dll
browseui.dll
jscript.dll
vbscript.dll
scrrun.dll
msxml.dll
msxml3.dll
msxml6.dll
actxprxy.dll
softpub.dll
wintrust.dll
dssenh.dll
rsaenh.dll
gpkcsp.dll
sccbase.dll
slbcsp.dll
cryptdlg.dll
oleaut32.dll
ole32.dll
shell32.dll
initpki.dll
wuapi.dll
wuaueng.dll
wuaueng1.dll
wucltui.dll
wups.dll
wups2.dll
wuweb.dll
qmgr.dll
qmgrprxy.dll
wucltux.dll
muweb.dll
wuwebv.dll
/md5stop

Run OTL (Vista or Win 7 => right click and Run As Administrator) Copy and paste the log into a reply.

#63
Sarous

Posted 15 May 2012 - 12:47 PM

Member

Topic Starter
Member
84 posts

Fix Log
Scan Log

========== OTL ==========
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
C:\Windows\Downloaded Program Files\gp.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
========== FILES ==========
Unable to replace file: C:\Windows\System32\ole32.dll with C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.22433_none_ae70528d08aae434\ole32.dll without a reboot.
Unable to replace file: C:\Windows\System32\shell32.dll with C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.22574_none_6e51988f2874f7b1\shell32.dll without a reboot.
========== COMMANDS ==========

OTL by OldTimer - Version 3.2.17.3 log created on 05152012_130543

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

OTL logfile created on: 15/05/2012 1:09:52 PM - Run 9
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Users\Cougar\Desktop
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: dd/MM/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 62.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 82.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 224.20 Gb Total Space | 161.67 Gb Free Space | 72.11% Space Free | Partition Type: NTFS

Computer Name: COUGAR-PC | User Name: Cougar | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/05/03 22:19:40 | 000,932,736 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe
PRC - [2012/05/03 22:19:37 | 001,116,544 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
PRC - [2012/04/30 16:25:24 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Cougar\Desktop\OTL.exe
PRC - [2012/04/30 09:44:38 | 005,106,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgidsagent.exe
PRC - [2012/04/20 20:19:03 | 000,016,824 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2012/04/20 20:18:58 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012/04/19 04:51:54 | 001,254,992 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe
PRC - [2012/04/05 05:12:34 | 002,587,008 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgtray.exe
PRC - [2012/03/19 05:18:12 | 000,979,840 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgemcx.exe
PRC - [2012/02/14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe
PRC - [2012/02/14 04:53:14 | 000,758,112 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgrsx.exe
PRC - [2012/02/14 04:52:38 | 000,338,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcsrvx.exe
PRC - [2012/01/03 08:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/12/09 17:43:34 | 000,296,056 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\real\realplayer\Update\realsched.exe
PRC - [2011/07/28 18:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2009/04/11 01:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/03/05 16:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008/11/09 15:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2008/04/15 19:54:42 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/04/15 19:54:40 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2008/04/08 17:14:50 | 006,037,504 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2006/08/23 18:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

========== Modules (SafeList) ==========

MOD - [2012/04/30 16:25:24 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Cougar\Desktop\OTL.exe
MOD - [2010/08/31 10:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV - [2012/05/03 22:19:40 | 000,932,736 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe -- (vToolbarUpdater11.0.2)
SRV - [2012/04/30 09:44:38 | 005,106,744 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012/04/20 20:19:00 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/02/14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2012/01/03 08:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/04/08 10:17:40 | 000,176,848 | ---- | M] (iWin Inc.) [Disabled | Stopped] -- C:\Program Files\iWin Games\iWinTrusted.exe -- (iWinTrusted)
SRV - [2011/02/22 08:33:09 | 000,797,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2010/03/18 17:47:22 | 000,035,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe -- (aspnet_state)
SRV - [2010/03/18 14:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/18 14:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2010/03/18 14:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpActivator)
SRV - [2010/03/18 14:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetPipeActivator)
SRV - [2010/03/18 14:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetMsmqActivator)
SRV - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/11/09 15:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2008/04/15 19:54:42 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®
SRV - [2008/01/20 21:33:00 | 000,272,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2006/08/23 18:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2005/11/14 03:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\SYSPREP\Drivers\ioport.sys -- (IO_Memory)
DRV - [2012/05/04 16:14:34 | 000,477,240 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2012/04/19 04:50:26 | 000,024,896 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\avgidshx.sys -- (AVGIDSHX)
DRV - [2012/03/19 05:17:28 | 000,301,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2012/02/22 05:25:32 | 000,235,216 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2012/01/31 04:46:50 | 000,031,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/12/23 13:32:14 | 000,041,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/12/23 13:32:08 | 000,017,232 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2011/12/23 13:32:06 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avgidsfilterx.sys -- (AVGIDSFilter)
DRV - [2011/12/23 13:32:00 | 000,139,856 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2011/10/13 12:01:26 | 009,037,312 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx)
DRV - [2010/11/09 21:49:50 | 004,323,040 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvuvc.sys -- (LVUVC) Logitech Webcam C160(UVC)
DRV - [2010/11/09 21:48:12 | 000,283,744 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvrs.sys -- (LVRS)
DRV - [2010/06/23 10:21:32 | 000,259,176 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2010/05/07 18:43:30 | 000,025,824 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2009/08/18 23:29:50 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2009/08/18 23:29:49 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009/06/10 06:52:58 | 000,347,648 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTL8187B.sys -- (RTL8187B)
DRV - [2009/04/10 23:42:54 | 000,073,216 | -H-- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2009/03/11 18:17:20 | 000,063,488 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RTSTOR.sys -- (RTSTOR)
DRV - [2008/08/14 11:40:40 | 000,203,312 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2008/07/18 20:52:16 | 000,279,376 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\tos_sps32.sys -- (tos_sps32)
DRV - [2008/04/15 19:53:44 | 000,312,344 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\iaStor.sys -- (iaStor)
DRV - [2008/04/09 20:00:04 | 002,095,512 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008/01/20 21:32:53 | 000,149,560 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2008/01/20 21:32:53 | 000,031,288 | ---- | M] (LSI Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2008/01/20 21:32:52 | 000,386,616 | ---- | M] (LSI Corporation, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasr.sys -- (MegaSR)
DRV - [2008/01/20 21:32:52 | 000,101,432 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2008/01/20 21:32:52 | 000,074,808 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2008/01/20 21:32:52 | 000,040,504 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2008/01/20 21:32:51 | 000,300,600 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2008/01/20 21:32:51 | 000,089,656 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2008/01/20 21:32:50 | 001,122,360 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2008/01/20 21:32:50 | 000,118,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel®
DRV - [2008/01/20 21:32:50 | 000,079,928 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2008/01/20 21:32:49 | 000,235,064 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2008/01/20 21:32:49 | 000,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2008/01/20 21:32:49 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2008/01/20 21:32:49 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2008/01/20 21:32:49 | 000,079,416 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2008/01/20 21:32:48 | 000,342,584 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2008/01/20 21:32:48 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2008/01/20 21:32:47 | 000,102,968 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2008/01/20 21:32:47 | 000,045,112 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2008/01/20 21:32:46 | 000,422,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2008/01/20 21:32:45 | 000,238,648 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2008/01/20 21:32:21 | 000,020,024 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2008/01/20 21:32:21 | 000,019,000 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2008/01/20 21:32:21 | 000,017,464 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2008/01/18 11:22:00 | 000,009,216 | ---- | M] (Inventec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\sysprep\PEDRV.SYS -- (SVRPEDRV)
DRV - [2007/11/09 16:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\TVALZ_O.SYS -- (TVALZ)
DRV - [2007/04/23 12:50:50 | 000,025,896 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | System | Running] -- C:\Windows\System32\drivers\RtlProt.sys -- (RtlProt)
DRV - [2006/11/20 16:11:14 | 000,007,168 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\FwLnk.sys -- (FwLnk)
DRV - [2006/11/09 01:32:00 | 000,219,264 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\kr10i.sys -- (KR10I)
DRV - [2006/11/09 01:31:00 | 000,211,072 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\kr10n.sys -- (KR10N)
DRV - [2006/11/02 04:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006/11/02 04:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006/11/02 04:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006/11/02 04:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006/11/02 04:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006/11/02 04:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006/11/02 04:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006/11/02 04:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006/11/02 04:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006/11/02 04:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006/11/02 04:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006/11/02 03:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006/11/02 03:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006/11/02 03:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006/11/02 03:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006/11/02 03:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006/11/02 03:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006/11/02 02:41:50 | 000,983,552 | ---- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2006/11/02 02:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co...=TSHB&bmod=TSHB

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Google Custom Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "about:blank"
FF - prefs.js..keyword.URL: "http://search.musicf...results.php?q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/04/23 22:29:41 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/04/23 22:29:34 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\ [2012/05/03 22:20:11 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Program Files\AVG\AVG2012\Firefox\DoNotTrack\ [2012/05/03 22:17:26 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\11.0.0.9\ [2012/05/03 22:20:02 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/05/03 23:52:41 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2012/05/03 23:52:59 | 000,000,000 | ---D | M] -- C:\Users\Cougar\AppData\Roaming\mozilla\Extensions
[2012/05/11 12:02:34 | 000,000,000 | ---D | M] -- C:\Users\Cougar\AppData\Roaming\mozilla\Firefox\Profiles\nt02ihvk.default\extensions
[2012/05/03 23:52:41 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2012/04/20 20:19:34 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2012/04/20 20:18:25 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml
[2012/04/20 20:18:25 | 000,002,040 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2012/05/11 12:16:01 | 000,442,053 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 15215 more lines...
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll ()
O2 - BHO: (no name) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {CD292324-974F-4224-D074-CACA427AA030} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {CD292324-974F-4224-D074-CACA427AA030} - No CLSID value found.
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\real\realplayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.0.2\ViProtocol.dll ()
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Users\Cougar\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Cougar\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 16:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/05/15 13:05:43 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/05/13 13:46:35 | 000,000,000 | ---D | C] -- C:\b9e462909e6f9b436127
[2012/05/13 13:45:18 | 000,000,000 | ---D | C] -- C:\9cbea16dd19d6a77565dd0c0f0
[2012/05/12 20:41:49 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Resource Kits
[2012/05/12 16:31:27 | 000,000,000 | ---D | C] -- C:\Users\Cougar\SecurityScans
[2012/05/12 16:30:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Baseline Security Analyzer 2
[2012/05/12 00:17:14 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\GSplit
[2012/05/11 01:07:58 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\QuickScan
[2012/05/10 23:42:27 | 000,206,200 | ---- | C] (Sysinternals) -- C:\Users\Cougar\Desktop\Contig.exe
[2012/05/10 23:24:38 | 000,000,000 | R--D | C] -- C:\Users\Cougar\Desktop\Favorites
[2012/05/07 12:28:28 | 002,473,592 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Users\Cougar\Desktop\Procmon.exe
[2012/05/06 15:16:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2012/05/04 17:07:46 | 000,000,000 | ---D | C] -- C:\Windows\System32\x64
[2012/05/04 17:05:55 | 000,000,000 | ---D | C] -- C:\Intel
[2012/05/04 16:39:06 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\SystemRequirementsLab
[2012/05/04 16:18:29 | 000,000,000 | ---D | C] -- C:\Users\Cougar\{7e015dc6-6631-47f4-b276-bc8c65c2f401}
[2012/05/04 01:54:49 | 000,477,240 | ---- | C] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys
[2012/05/03 23:52:50 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\Mozilla
[2012/05/03 23:52:50 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Local\Mozilla
[2012/05/03 23:52:43 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/05/03 23:52:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/05/03 23:52:40 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012/05/03 23:40:02 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/05/03 23:40:02 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Local\temp
[2012/05/03 23:39:04 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/05/03 22:21:44 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\AVG2012
[2012/05/03 22:20:14 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Local\AVG Secure Search
[2012/05/03 22:19:41 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Secure Search
[2012/05/03 22:19:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVG Secure Search
[2012/05/03 22:19:35 | 000,000,000 | ---D | C] -- C:\Program Files\AVG Secure Search
[2012/05/03 22:16:41 | 000,000,000 | ---D | C] -- C:\$AVG
[2012/05/02 19:35:28 | 000,000,000 | ---D | C] -- C:\Users\Cougar\Documents\C
[2012/04/30 21:48:27 | 000,000,000 | ---D | C] -- C:\!KillBox
[2012/04/30 21:47:48 | 000,093,696 | ---- | C] (Option^Explicit Software [email protected]) -- C:\Users\Cougar\Desktop\KillBox.exe
[2012/04/30 20:53:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Yahoo! Companion
[2012/04/30 20:53:14 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\Yahoo!
[2012/04/30 19:43:01 | 000,061,440 | ---- | C] ( ) -- C:\Users\Cougar\Desktop\VEW.exe
[2012/04/30 19:07:48 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/04/30 18:21:02 | 000,419,488 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/04/30 18:12:59 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2012/04/30 17:57:06 | 002,074,160 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Cougar\Desktop\tdsskiller.exe
[2012/04/30 17:25:45 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dfsc.svs
[2012/04/30 17:02:46 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/04/30 17:02:46 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/04/30 17:02:46 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/04/30 17:02:38 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2012/04/30 16:48:33 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/04/30 16:37:52 | 004,479,797 | R--- | C] (Swearware) -- C:\Users\Cougar\Desktop\ComboFix.exe
[2012/04/30 16:25:05 | 004,731,392 | ---- | C] (AVAST Software) -- C:\Users\Cougar\Desktop\aswMBR.exe
[2012/04/30 16:24:56 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Cougar\Desktop\OTL.exe
[2012/04/29 23:48:00 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Cougar\Desktop\HijackThis.exe
[2012/04/29 22:21:34 | 000,000,000 | ---D | C] -- C:\ProgramData\529C50D8000435DB0020086B570F1C8B
[2012/04/25 03:26:03 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/04/25 03:26:02 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012/04/25 03:26:02 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2012/04/25 03:26:00 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/04/25 03:25:59 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/04/25 03:25:59 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/04/25 03:25:59 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/04/24 16:21:12 | 002,044,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/04/23 20:32:45 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/04/19 04:50:26 | 000,024,896 | ---- | C] (AVG Technologies CZ, s.r.o. ) -- C:\Windows\System32\drivers\avgidshx.sys
[2011/10/13 11:31:48 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/05/15 13:13:44 | 000,654,054 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/05/15 13:13:44 | 000,123,676 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/05/15 13:07:51 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/05/15 13:07:19 | 000,003,616 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/05/15 13:07:19 | 000,003,616 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/05/15 13:07:12 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/05/14 22:36:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/05/14 18:52:02 | 098,172,977 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2012/05/13 11:35:06 | 000,334,736 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/05/12 16:31:05 | 000,000,963 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Baseline Security Analyzer 2.2.lnk
[2012/05/11 12:16:01 | 000,442,053 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2012/05/07 17:55:46 | 000,024,005 | ---- | M] () -- C:\Windows\System32\drivers\AVG\iavichjg.avm
[2012/05/07 14:10:14 | 000,442,053 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts.20120511-121601.backup
[2012/05/07 13:22:12 | 000,419,488 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/05/07 13:22:12 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/05/07 12:29:06 | 002,473,592 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Users\Cougar\Desktop\Procmon.exe
[2012/05/06 15:42:07 | 000,011,054 | ---- | M] () -- C:\Users\Cougar\AppData\Roaming\wklnhst.dat
[2012/05/05 20:27:08 | 000,442,053 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts.20120507-141014.backup
[2012/05/04 17:16:28 | 000,014,640 | ---- | M] () -- C:\Windows\System32\results.xml
[2012/05/04 17:01:38 | 000,001,356 | ---- | M] () -- C:\Users\Cougar\AppData\Local\d3d9caps.dat
[2012/05/04 16:14:34 | 000,477,240 | ---- | M] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys
[2012/05/04 01:45:26 | 000,000,000 | ---- | M] () -- C:\Windows\ToDisc.INI
[2012/05/03 23:52:45 | 000,000,817 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/05/03 23:33:23 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.20120505-202708.backup
[2012/04/30 21:47:52 | 000,093,696 | ---- | M] (Option^Explicit Software [email protected]) -- C:\Users\Cougar\Desktop\KillBox.exe
[2012/04/30 21:20:35 | 004,479,797 | R--- | M] (Swearware) -- C:\Users\Cougar\Desktop\ComboFix.exe
[2012/04/30 20:53:09 | 000,000,937 | ---- | M] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2012/04/30 19:43:03 | 000,061,440 | ---- | M] ( ) -- C:\Users\Cougar\Desktop\VEW.exe
[2012/04/30 19:07:50 | 000,000,877 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/04/30 17:58:41 | 002,074,160 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Cougar\Desktop\tdsskiller.exe
[2012/04/30 17:52:56 | 000,000,818 | ---- | M] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\iWinGames - Shortcut.lnk
[2012/04/30 17:44:58 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.20120503-214633.backup
[2012/04/30 16:30:19 | 004,731,392 | ---- | M] (AVAST Software) -- C:\Users\Cougar\Desktop\aswMBR.exe
[2012/04/30 16:25:24 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Cougar\Desktop\OTL.exe
[2012/04/29 23:48:18 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Cougar\Desktop\HijackThis.exe
[2012/04/29 23:00:17 | 000,000,920 | ---- | M] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk
[2012/04/19 04:50:26 | 000,024,896 | ---- | M] (AVG Technologies CZ, s.r.o. ) -- C:\Windows\System32\drivers\avgidshx.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/05/12 16:31:05 | 000,000,963 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Baseline Security Analyzer 2.2.lnk
[2012/05/10 23:42:33 | 000,492,488 | ---- | C] () -- C:\Users\Cougar\Desktop\PowerDefragmenter.exe
[2012/05/04 01:45:26 | 000,000,000 | ---- | C] () -- C:\Windows\ToDisc.INI
[2012/05/03 23:52:45 | 000,000,817 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/04/30 20:53:09 | 000,000,937 | ---- | C] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2012/04/30 19:07:50 | 000,000,877 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/04/30 17:52:56 | 000,000,818 | ---- | C] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\iWinGames - Shortcut.lnk
[2012/04/30 17:02:46 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/04/30 17:02:46 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/04/30 17:02:46 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/04/30 17:02:46 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/04/30 17:02:46 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/04/29 23:00:17 | 000,000,920 | ---- | C] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk
[2011/10/16 16:23:20 | 000,003,584 | ---- | C] () -- C:\Users\Cougar\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/05/01 03:01:38 | 000,001,356 | ---- | C] () -- C:\Users\Cougar\AppData\Local\d3d9caps.dat
[2010/11/28 16:58:07 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2010/11/09 21:45:30 | 010,871,128 | ---- | C] () -- C:\Windows\System32\LogiDPP.dll
[2010/11/09 21:45:20 | 000,316,248 | ---- | C] () -- C:\Windows\System32\DevManagerCore.dll
[2010/11/09 21:31:42 | 000,026,286 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2010/08/22 00:31:59 | 000,007,164 | ---- | C] () -- C:\Users\Cougar\AppData\Roaming\UserTile.png
[2010/07/04 13:40:26 | 000,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll
[2010/05/07 18:43:30 | 000,025,824 | ---- | C] () -- C:\Windows\System32\drivers\LVPr2Mon.sys
[2009/12/03 10:27:30 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2009/08/20 02:57:06 | 000,011,054 | ---- | C] () -- C:\Users\Cougar\AppData\Roaming\wklnhst.dat
[2009/08/18 23:29:49 | 000,278,984 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys
[2009/08/18 23:29:49 | 000,025,416 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys
[2009/08/18 19:58:32 | 000,000,013 | RHS- | C] () -- C:\Windows\System32\drivers\fbd.sys
[2009/08/18 19:58:29 | 000,000,004 | RHS- | C] () -- C:\Windows\System32\drivers\taishop.sys
[2009/08/03 16:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/07/23 04:47:32 | 000,131,072 | ---- | C] () -- C:\Windows\System32\EnumDevLib.dll
[2008/09/30 14:36:25 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI
[2008/09/30 14:25:14 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll
[2008/09/30 14:25:14 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll
[2008/09/30 14:25:14 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll
[2008/09/30 14:25:14 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll
[2008/09/30 14:25:14 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll
[2008/09/30 14:25:14 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll
[2008/06/12 20:59:22 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1502.dll
[2008/01/15 05:31:00 | 000,000,530 | ---- | C] () -- C:\Windows\System32\tx14_ic.ini
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2006/11/02 02:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/03/09 11:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[1997/06/13 20:56:08 | 000,056,832 | ---- | C] () -- C:\Windows\System32\iyvu9_32.dll

========== Custom Scans ==========

< MD5 for: ACTXPRXY.DLL >
[2008/01/20 21:34:44 | 000,326,656 | ---- | M] (Microsoft Corporation) MD5=8D78BA30DB4AE040A52EDEE725782715 -- C:\Windows\System32\actxprxy.dll
[2008/01/20 21:34:44 | 000,326,656 | ---- | M] (Microsoft Corporation) MD5=8D78BA30DB4AE040A52EDEE725782715 -- C:\Windows\winsxs\x86_microsoft-windows-activexproxy_31bf3856ad364e35_6.0.6001.18000_none_120e336fea4a5696\actxprxy.dll

< MD5 for: ATL.DLL >
[2009/07/17 09:39:28 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=0114F0D73BAC288C684C41E7EDC22255 -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6000.21088_none_a974fcc975e35390\atl.dll
[2009/07/17 09:35:11 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=35979494DABAF115F5FFA960830817DF -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6001.18293_none_aac1f52459f8aeb3\atl.dll
[2009/07/17 09:52:41 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=36C5C3CAB3B467BA68AE345C9B9DADC3 -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6000.16889_none_a8ec88265cc499db\atl.dll
[2009/07/17 08:54:43 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=409F36C8BD06FCE184631EB4142B009A -- C:\Windows\System32\atl.dll
[2009/07/17 08:54:43 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=409F36C8BD06FCE184631EB4142B009A -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6002.18070_none_acbb07ec57117d17\atl.dll
[2009/07/17 09:24:52 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=A6486396826C6CD276489109020DAE3E -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6001.22474_none_ab6233f773052d19\atl.dll
[2008/01/20 21:33:53 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=E3FAD509FEF3D6CFC524AEDAE54B7E16 -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6001.18000_none_ab203fc659b26ce7\atl.dll
[2009/07/17 09:15:48 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=FE997E098FF868B5734E8204FD26A49C -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6002.22179_none_ad4da751702700f0\atl.dll

< MD5 for: BROWSEUI.DLL >
[2009/04/11 01:28:18 | 001,324,032 | ---- | M] (Microsoft Corporation) MD5=4504819D18FAC09B6108D8728467E5B2 -- C:\Windows\System32\browseui.dll
[2009/04/11 01:28:18 | 001,324,032 | ---- | M] (Microsoft Corporation) MD5=4504819D18FAC09B6108D8728467E5B2 -- C:\Windows\winsxs\x86_microsoft-windows-browseui_31bf3856ad364e35_6.0.6002.18005_none_32ce5abee3779868\browseui.dll
[2008/01/20 21:34:44 | 001,324,032 | ---- | M] (Microsoft Corporation) MD5=A3C1B75B0156D5B68B271C6FE0A5FDE7 -- C:\Windows\winsxs\x86_microsoft-windows-browseui_31bf3856ad364e35_6.0.6001.18000_none_30e2e1b2e655cd1c\browseui.dll

< MD5 for: CRYPTDLG.DLL >
[2006/11/02 04:46:03 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=498961DEAAC558A5D85F7596CBCA6DC3 -- C:\Windows\System32\cryptdlg.dll
[2006/11/02 04:46:03 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=498961DEAAC558A5D85F7596CBCA6DC3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptdlg-dll_31bf3856ad364e35_6.0.6000.16386_none_20519b261b2afec6\cryptdlg.dll

< MD5 for: DSSENH.DLL >
[2008/01/20 21:34:08 | 000,155,704 | ---- | M] (Microsoft Corporation) MD5=C8DBFEF835FF54467425C8F3ABCF7046 -- C:\Windows\System32\dssenh.dll
[2008/01/20 21:34:08 | 000,155,704 | ---- | M] (Microsoft Corporation) MD5=C8DBFEF835FF54467425C8F3ABCF7046 -- C:\Windows\winsxs\x86_microsoft-windows-d..ellman_software_csp_31bf3856ad364e35_6.0.6001.18000_none_3bf8bb8384e4ad56\dssenh.dll

< MD5 for: JSCRIPT.DLL >
[2011/04/22 17:50:01 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=10AF1BF5D0168D97BDF347B907288E8B -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20530_none_4350f01c4e2f3f83\jscript.dll
[2011/02/17 01:55:07 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=1789C88F7B034EE48FE0D4AE2EBDCE95 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.23141_none_662843b0262eeb31\jscript.dll
[2011/04/22 18:26:50 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=1DDEFA440B300CFAE8BE46049CE90EF4 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16430_none_42c7535135119fb9\jscript.dll
[2012/02/27 19:54:53 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=241B020AA7F0F03E6EF5E703406B9C6A -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20548_none_434e22804e30262c\jscript.dll
[2012/02/27 20:06:48 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=2978077B7DD5B5E24A0A7C0A75B08A5A -- C:\Windows\System32\jscript.dll
[2012/02/27 20:06:48 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=2978077B7DD5B5E24A0A7C0A75B08A5A -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16443_none_42bf8443351707af\jscript.dll
[2011/07/21 21:45:41 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=2D379DEB57C56205060B08537DF1CF81 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16434_none_42cb5479350e0515\jscript.dll
[2009/06/04 07:28:12 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=2FF61833BE4FDE938D71B2E7B2171844 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6000.21061_none_8143436c134b5473\jscript.dll
[2009/03/08 06:33:14 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=38FFEC2CD31441A6B57D7A0B490D7299 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.18702_none_65cb0af10cefc76a\jscript.dll
[2011/12/13 21:53:38 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=3A1C55C0C951F0FDC413D69F7ADF2278 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16441_none_42bd83af3518d501\jscript.dll
[2011/12/13 21:25:14 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=40EBC2C57B89174788B5F28A82EE6B7F -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20546_none_434c21ec4e31f37e\jscript.dll
[2009/06/04 07:07:01 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=462D705964D0E70DFDADDFCC3F5FAA6D -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6002.18045_none_84a021f2f466921d\jscript.dll
[2009/12/04 02:19:58 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=46E35CDEA68DFCE274BE2B51EB9F0D36 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.18869_none_65912f550d1a1d98\jscript.dll
[2011/11/03 17:34:59 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=4B65B4F93F63AA6DC1042A8AED99D093 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16440_none_42bc83653519bbaa\jscript.dll
[2009/06/04 07:33:30 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=4C7D274A0E5266C5EEDD9DE0DFE9B8D6 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.18266_none_82a50e96f74f910b\jscript.dll
[2008/05/08 16:59:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=65CA19ACB31DDB4B063BC0D731DC311B -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.18068_none_82a70b5ef74dc96b\jscript.dll
[2011/11/03 18:03:44 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=67CB2EEB51CAC741E7A313116D16E228 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20544_none_434a21584e33c0d0\jscript.dll
[2009/06/06 00:01:50 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=680A319B0FD31AC4D7D18A6D843244FE -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.18795_none_656cbc830d360ee8\jscript.dll
[2011/04/21 12:52:33 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=77A00A40A93894DFE90B910040A8D06A -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16421_none_42d3238735089d1f\jscript.dll
[2011/02/17 01:19:43 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=812B78D537E5BA9D8D25A66E20A37C35 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.19046_none_65a3a8570d0cca1a\jscript.dll
[2009/06/04 07:55:42 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=81ECD75F0237AD86995FC988299F5BDB -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6002.22146_none_852abf080d834b3e\jscript.dll
[2008/05/08 00:18:59 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=849FE82F794ADA8E0629FC7CEE2813C6 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.22175_none_8322d76010763921\jscript.dll
[2009/04/11 01:28:20 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=89333008D4204E561AD09DEC3E20760F -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6002.18005_none_84cb61a2f4462259\jscript.dll
[2011/08/31 21:24:47 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=8ABA7DBFC0DAE718245E4569AB0477F6 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16437_none_42ce5557350b511a\jscript.dll
[2009/06/06 07:55:13 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=A363FD6BE90A57F52FC46B71A3E711A2 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.22886_none_66022984264aac18\jscript.dll
[2009/06/04 07:32:35 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=AC0128A385762756C346E42FA5E1697C -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.22443_none_83414c42105faa15\jscript.dll
[2011/07/21 20:45:33 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=DAEBDA7B49754F5BC183DEC7DEB4A65D -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20534_none_4354f1444e2ba4df\jscript.dll
[2009/12/04 11:15:24 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=DD2744391CA7D55270C240A0CDFFBEB2 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.22960_none_6611c986263fd953\jscript.dll
[2011/08/31 20:53:42 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=DE625D6528DABA10EB223A5102761E20 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20537_none_4357f2224e28f0e4\jscript.dll
[2009/06/04 07:40:47 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=F45BC6A78A7A732330949E4DE1EF84A8 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6000.16865_none_80bdcfa6fa29e6c3\jscript.dll
[2008/01/20 21:34:49 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=FFC4ED6E2393316CF218D5454553CB6E -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.18000_none_82dfe896f724570d\jscript.dll

< MD5 for: MSHTML.DLL >
[2011/08/31 21:36:37 | 012,275,200 | ---- | M] (Microsoft Corporation) MD5=04E0CD31A63DFC0D73725A3D1768FB5A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16437_none_d3317f5c60107529\mshtml.dll
[2010/12/18 02:13:16 | 005,962,240 | ---- | M] (Microsoft Corporation) MD5=0DA63A2B1D6D55E6005F4552D22E7BBE -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.23111_none_f6abdd79511bbb6d\mshtml.dll
[2009/12/18 07:23:43 | 003,602,944 | ---- | M] (Microsoft Corporation) MD5=0EE8B3A112C58EB71951DA5C77E7C01A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.21184_none_1193d05d3e5df990\mshtml.dll
[2008/04/24 23:23:07 | 003,591,680 | ---- | M] (Microsoft Corporation) MD5=13A0AA60B35A6A13152A759536C10203 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16681_none_110754e02542e30a\mshtml.dll
[2010/09/08 00:57:52 | 005,957,120 | ---- | M] (Microsoft Corporation) MD5=1704FC902E1B53EF87593D60FD312A55 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18975_none_f5e58a2c382af563\mshtml.dll
[2008/06/26 22:47:31 | 003,594,240 | ---- | M] (Microsoft Corporation) MD5=1D73575D8A0F368CD8FE3212E8928743 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.20868_none_11ad956f3e49f97a\mshtml.dll
[2008/06/26 22:48:28 | 003,578,880 | ---- | M] (Microsoft Corporation) MD5=256E9D588ACB7F104123947297A9302A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22212_none_13c3e1f53b4d66ac\mshtml.dll
[2008/06/26 23:15:24 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=2B59221D1B9D9FB1D202A21AFE8E410A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18099_none_12eac5ea226a5aa4\mshtml.dll
[2008/04/24 23:35:14 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=2C2A85BBAB617EDDD19119F66C05B1C3 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18063_none_130533f222576ec7\mshtml.dll
[2009/12/16 06:42:38 | 003,600,896 | ---- | M] (Microsoft Corporation) MD5=360A4FA3715C63086AE00C108E592E08 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6002.18167_none_14efae9a1f7a1de3\mshtml.dll
[2008/04/24 23:07:54 | 003,593,728 | ---- | M] (Microsoft Corporation) MD5=38EC352C600EB037FE02749F8C170B6B -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.20823_none_11d3d3ad3e2e0b03\mshtml.dll
[2008/02/20 23:43:36 | 003,591,680 | ---- | M] (Microsoft Corporation) MD5=3AE6072A86AD8049DD133DB40F73F0C8 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16643_none_113495242520a5f4\mshtml.dll
[2011/04/22 18:36:19 | 012,269,056 | ---- | M] (Microsoft Corporation) MD5=3F63F95C998F7E1AF409BC74E83D45E5 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16430_none_d32a7d566016c3c8\mshtml.dll
[2010/12/18 01:23:15 | 005,961,216 | ---- | M] (Microsoft Corporation) MD5=42B87D22378C1EF98F3B6F410C2670AA -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.19019_none_f62a42fe37f6e65b\mshtml.dll
[2008/01/20 21:33:25 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=48E05FD07045BB2E5CFC43C970CAF1E7 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18000_none_1343129c22297b1c\mshtml.dll
[2011/12/13 22:30:38 | 012,282,368 | ---- | M] (Microsoft Corporation) MD5=497C9C3DB953A60EC4F43A097E15F75E -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16441_none_d320adb4601df910\mshtml.dll
[2011/04/21 12:52:36 | 012,268,544 | ---- | M] (Microsoft Corporation) MD5=4DEF8126CABAA6CDC12103CD74C6A919 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16421_none_d3364d8c600dc12e\mshtml.dll
[2011/11/03 18:02:45 | 012,279,808 | ---- | M] (Microsoft Corporation) MD5=66C0AEE61D1C5C35BF1B4642A153B114 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16440_none_d31fad6a601edfb9\mshtml.dll
[2011/02/22 02:14:18 | 005,964,800 | ---- | M] (Microsoft Corporation) MD5=6D30A34B029176D86EC04ECE6C0F62B1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.23143_none_f68d6e49513241ee\mshtml.dll
[2009/12/18 07:22:51 | 003,587,584 | ---- | M] (Microsoft Corporation) MD5=6EF8BF95A1CE83ECA056524A02B29E25 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22585_none_137b39113b836dbd\mshtml.dll
[2009/12/18 08:02:57 | 003,585,024 | ---- | M] (Microsoft Corporation) MD5=804BEB97942AFDD90A0418DDB4EF8342 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18385_none_12f19a602265d0cc\mshtml.dll
[2011/04/22 17:59:20 | 012,269,056 | ---- | M] (Microsoft Corporation) MD5=858AD7EC121DBC3D39D4ABFE2E7E789C -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20530_none_d3b41a2179346392\mshtml.dll
[2009/12/18 07:50:17 | 003,599,360 | ---- | M] (Microsoft Corporation) MD5=8A49DC126EEB62C030782A9CBDA3A99E -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16982_none_11085adc2541f3d6\mshtml.dll
[2011/08/31 21:07:19 | 012,275,200 | ---- | M] (Microsoft Corporation) MD5=8C93AED0A332209434B62162D03C38C9 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20537_none_d3bb1c27792e14f3\mshtml.dll
[2008/04/24 23:19:50 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=92A81ADE1E576A53176777260190F3A1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22167_none_1392d1e53b7173ed\mshtml.dll
[2008/02/21 23:50:05 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=977C356E655F357665310C0C95D0DBD4 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22120_none_13b70f8f3b5752c8\mshtml.dll
[2010/11/02 00:58:14 | 005,959,168 | ---- | M] (Microsoft Corporation) MD5=9AC463498C480E9EB3C63DC21E4F29C8 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18999_none_f5d3eb7c383792a1\mshtml.dll
[2008/02/21 23:59:30 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=9C4091CD321D6D8BCF9842F109EE574B -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18023_none_133073a22236ff03\mshtml.dll
[2010/11/02 02:08:01 | 005,960,704 | ---- | M] (Microsoft Corporation) MD5=9FCC1F6457A84902EA7545B568B5AEDB -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.23091_none_f6555c33515c9dce\mshtml.dll
[2011/11/03 18:35:27 | 012,279,808 | ---- | M] (Microsoft Corporation) MD5=A21B983E40578D0E6CFA9864AC4E1219 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20544_none_d3ad4b5d7938e4df\mshtml.dll
[2011/12/13 21:41:17 | 012,282,368 | ---- | M] (Microsoft Corporation) MD5=A29CFD4B9F6F2BBE06C8D64B6D07F1D4 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20546_none_d3af4bf17937178d\mshtml.dll
[2009/04/11 01:28:20 | 003,596,288 | ---- | M] (Microsoft Corporation) MD5=A4D04D404AFC1D30EDA01EE50D27AA51 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6002.18005_none_152e8ba81f4b4668\mshtml.dll
[2011/02/22 01:17:40 | 005,962,240 | ---- | M] (Microsoft Corporation) MD5=AA411AEF2476D251078F9C9F0478C142 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.19048_none_f608d2f0381020d7\mshtml.dll
[2008/06/26 22:54:45 | 003,592,192 | ---- | M] (Microsoft Corporation) MD5=B964D58A6698C8FCA93447ADBDE18820 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16711_none_1153063a250a1c9a\mshtml.dll
[2012/02/27 20:21:47 | 012,281,856 | ---- | M] (Microsoft Corporation) MD5=B9E083B14B1994F1255983F2DF31C7DF -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20548_none_d3b14c8579354a3b\mshtml.dll
[2010/01/02 09:51:38 | 005,945,856 | ---- | M] (Microsoft Corporation) MD5=BE6120F3D7A853039B5437AC9E1986C1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.22973_none_f66d247d514a6558\mshtml.dll
[2009/03/08 06:41:15 | 005,937,152 | ---- | M] (Microsoft Corporation) MD5=D469A0EBA2EF5C6BEE8065B7E3196E5E -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18702_none_f62e34f637f4eb79\mshtml.dll
[2010/01/02 01:33:34 | 005,942,784 | ---- | M] (Microsoft Corporation) MD5=DF4D546A6E1C8D0F4FC10FCC9E422763 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18882_none_f5d7b77c3835c828\mshtml.dll
[2011/07/21 21:54:04 | 012,273,664 | ---- | M] (Microsoft Corporation) MD5=E6D5C7E4AAC0C682169AA5021386EFF3 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16434_none_d32e7e7e60132924\mshtml.dll
[2010/09/08 01:22:01 | 005,958,656 | ---- | M] (Microsoft Corporation) MD5=E993FB26BFAC2887BFE8DDAC4DC9180A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.23067_none_f67bcdb3513ee205\mshtml.dll
[2008/02/21 23:50:17 | 003,593,728 | ---- | M] (Microsoft Corporation) MD5=ED2588D1864319C54E79443130A8004B -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.20777_none_11a1c3533e52feed\mshtml.dll
[2009/12/17 07:00:36 | 003,603,456 | ---- | M] (Microsoft Corporation) MD5=F1F3D1793483B394835DAB3D4C326CDB -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6002.22290_none_1551d99b38b6601f\mshtml.dll
[2011/07/21 20:53:49 | 012,273,664 | ---- | M] (Microsoft Corporation) MD5=F2966190D2C20C585A730F9C0B3C7373 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20534_none_d3b81b497930c8ee\mshtml.dll
[2012/02/27 20:52:25 | 012,281,856 | ---- | M] (Microsoft Corporation) MD5=F82BF2CB075B49E9FAB5FF213C45C020 -- C:\Windows\ERDNT\cache\mshtml.dll
[2012/02/27 20:52:25 | 012,281,856 | ---- | M] (Microsoft Corporation) MD5=F82BF2CB075B49E9FAB5FF213C45C020 -- C:\Windows\System32\mshtml.dll
[2012/02/27 20:52:25 | 012,281,856 | ---- | M] (Microsoft Corporation) MD5=F82BF2CB075B49E9FAB5FF213C45C020 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16443_none_d322ae48601c2bbe\mshtml.dll

< MD5 for: MSXML3.DLL >
[2010/06/11 10:30:23 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=12A4E29C7F0C1B1E89541830FD0E52F1 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18490_none_880cf8e6971f1251\msxml3.dll
[2010/06/11 11:15:06 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=2B338AB80CF27D14CB75D94E294A1AB8 -- C:\Windows\System32\msxml3.dll
[2010/06/11 11:15:06 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=2B338AB80CF27D14CB75D94E294A1AB8 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18269_none_8a1cdf129424f4d8\msxml3.dll
[2010/06/11 11:31:45 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=3DC3074B0A736E086AC66DE6AB0786BA -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22422_none_8acabb6dad2870a4\msxml3.dll
[2009/04/11 01:28:22 | 001,183,232 | ---- | M] (Microsoft Corporation) MD5=5942F272BBEF5A77BF1DCE13BB5FAC8E -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18005_none_8a59b9a693f7ed88\msxml3.dll
[2009/08/11 11:58:29 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=8A728F413C953A2CD9ABA02C0D21A7F0 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22196_none_8a83076fad5da222\msxml3.dll
[2008/09/04 23:48:28 | 001,194,496 | ---- | M] (Microsoft Corporation) MD5=8FC34AF6DA61DF291FB48DACECB8AF83 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16745_none_8661c59c99cb7ce9\msxml3.dll
[2008/01/20 21:34:18 | 001,190,400 | ---- | M] (Microsoft Corporation) MD5=8FCDFB955F5BFD05E45C035A5FD2B7AB -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18000_none_886e409a96d6223c\msxml3.dll
[2009/08/10 07:51:16 | 001,260,032 | ---- | M] (Microsoft Corporation) MD5=91070AD16D21818E4E1A46605479B2C2 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.21103_none_87147d71b2caa7d1\msxml3.dll
[2009/08/11 10:25:41 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=A858B6604E4074233ADB3EB3FAF632E9 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22492_none_8898945fb03ae7a2\msxml3.dll
[2008/09/05 00:08:23 | 001,191,936 | ---- | M] (Microsoft Corporation) MD5=B1ABC3B1953BE70FE78045C401A03B50 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22258_none_88c9d1ffb015159a\msxml3.dll
[2009/08/10 06:00:37 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=B9CA2EA9DCA1A0EEE34FA806BBCF7A40 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18306_none_8874480896d0b1bb\msxml3.dll
[2010/06/11 10:25:07 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=C25D39750D692573AF2153E0E6E03F5D -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22709_none_8900eb63afeb94ff\msxml3.dll
[2008/09/05 00:14:05 | 001,191,936 | ---- | M] (Microsoft Corporation) MD5=C41551DD53FC9B7BE77AC5901E640E16 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18136_none_8853d47896e90b40\msxml3.dll
[2009/08/10 08:05:23 | 001,260,032 | ---- | M] (Microsoft Corporation) MD5=C72DC4848F94A84BDBAE3B1080086316 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16903_none_868b088499acd4c5\msxml3.dll
[2009/08/11 11:44:26 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=E82AAC9B68DD4345821C80B111691F10 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18087_none_8a053ada9436ffbe\msxml3.dll
[2008/09/04 23:47:44 | 001,194,496 | ---- | M] (Microsoft Corporation) MD5=F747633B7D3BCC9950497AA1E8E4BF76 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.20910_none_8706d29fb2d54754\msxml3.dll

< MD5 for: MSXML6.DLL >
[2009/08/10 07:51:17 | 001,409,536 | ---- | M] (Microsoft Corporation) MD5=1A9EF4579A0F253E441EC31CB8D39B05 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.21103_none_87143919b2caf4b4\msxml6.dll
[2009/04/11 01:28:22 | 001,336,320 | ---- | M] (Microsoft Corporation) MD5=376099B0E17AA5B2157FF0C2B66F072A -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6002.18005_none_8a59754e93f83a6b\msxml6.dll
[2009/08/10 08:05:24 | 001,406,464 | ---- | M] (Microsoft Corporation) MD5=473DF61261C234A4A4C577F3631B9327 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.16903_none_868ac42c99ad21a8\msxml6.dll
[2008/09/09 22:26:42 | 001,341,440 | ---- | M] (Microsoft Corporation) MD5=6934268850461EC06BEFEC87CD7CB479 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.20913_none_87098f25b2d2e03c\msxml6.dll
[2009/08/11 11:58:29 | 001,401,856 | ---- | M] (Microsoft Corporation) MD5=9418F45FD9793B047FFB8771CC19AF83 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6002.22196_none_8a82c317ad5def05\msxml6.dll
[2008/09/09 22:25:00 | 001,341,440 | ---- | M] (Microsoft Corporation) MD5=9AC203B127B9FD1789D356DACEDE9A32 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.16747_none_866381d899c9fc7a\msxml6.dll
[2009/08/11 11:44:26 | 001,401,856 | ---- | M] (Microsoft Corporation) MD5=BDAE82BFE54B38792665D20486600177 -- C:\Windows\System32\msxml6.dll
[2009/08/11 11:44:26 | 001,401,856 | ---- | M] (Microsoft Corporation) MD5=BDAE82BFE54B38792665D20486600177 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6002.18087_none_8a04f68294374ca1\msxml6.dll
[2008/09/09 22:27:55 | 001,334,272 | ---- | M] (Microsoft Corporation) MD5=C103FD1C26EAD8D3E37E666E8C7E662B -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.22261_none_88b7bbb5b023cd0d\msxml6.dll
[2009/08/11 10:26:10 | 001,401,344 | ---- | M] (Microsoft Corporation) MD5=CA915D7C7294FA09CBF4C6B7DB060560 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.22492_none_88985007b03b3485\msxml6.dll
[2008/01/20 21:34:18 | 001,332,224 | ---- | M] (Microsoft Corporation) MD5=CB0CBFD13FDAADF55B644C505675173F -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.18000_none_886dfc4296d66f1f\msxml6.dll
[2009/08/10 06:01:00 | 001,399,296 | ---- | M] (Microsoft Corporation) MD5=FAED2BB920F8C729693A517394C87DD0 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.18306_none_887403b096d0fe9e\msxml6.dll
[2008/09/09 22:40:14 | 001,334,272 | ---- | M] (Microsoft Corporation) MD5=FF52AC9A9E29F08D6D8B86DC33522099 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.18138_none_885590b496e78ad1\msxml6.dll

< MD5 for: OLE32.DLL >
[2008/01/20 21:34:47 | 001,315,328 | ---- | M] (Microsoft Corporation) MD5=3B634E4BE373D6D987EBF906B43FAAB3 -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6001.18000_none_ac1da75bf2516084\ole32.dll
[2010/06/28 11:29:14 | 001,315,840 | ---- | M] (Microsoft Corporation) MD5=64A319477AF21806B8A17E8A3A3FF8BC -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6001.22720_none_ac91afb30b7f271a\ole32.dll
[2010/06/28 12:37:08 | 001,316,864 | ---- | M] (Microsoft Corporation) MD5=7C6F74A11FCF5745B36CB8085B7DE3FB -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.22433_none_ae70528d08aae434\ole32.dll
[2010/06/28 12:00:21 | 001,316,864 | ---- | M] (Microsoft Corporation) MD5=9586E7CB2255A8B097A7E4538202585E -- C:\Windows\ERDNT\cache\ole32.dll
[2010/06/28 11:15:53 | 001,315,840 | ---- | M] (Microsoft Corporation) MD5=AA406846DD60E3A4536DBAAB4037B685 -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6001.18498_none_abc461f7f2931b51\ole32.dll
[2009/04/11 01:28:23 | 001,316,864 | ---- | M] (Microsoft Corporation) MD5=C50A0AB19094BC362FBA69E105EBCCFD -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.18005_none_ae092067ef732bd0\ole32.dll
[2010/06/28 12:00:21 | 001,316,864 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\ole32.dll
[2010/06/28 12:00:21 | 001,316,864 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.18277_none_adbf7553efaa1c63\ole32.dll

< MD5 for: OLEAUT32.DLL >
[2008/01/20 21:34:50 | 000,563,200 | ---- | M] (Microsoft Corporation) MD5=03E0777D4D01B22FA7C6CC6E9AD335DF -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6001.18000_none_bd002a8dfb7a3328\oleaut32.dll
[2008/01/20 21:14:09 | 000,559,104 | ---- | M] (Microsoft Corporation) MD5=0C9A043D49A6ED91B8BAE0F66785272F -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6000.20734_none_bb871a171785fb30\oleaut32.dll
[1998/12/23 02:00:00 | 000,598,288 | ---- | M] (Microsoft Corporation) MD5=2B4CBA977231E71FF44A765BDF7CECA6 -- C:\Program Files\Ulead Systems\DVD MovieFactory for TOSHIBA\Ulead DVD MovieFactory 5\OLEAUT32.DLL
[2010/12/20 11:41:25 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=47D00E69EA69332C9A756424D5D87CDC -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.22551_none_bf3b373911e5b933\oleaut32.dll
[2008/01/20 21:14:09 | 000,558,080 | ---- | M] (Microsoft Corporation) MD5=7924BCCE665AC92FC04CD45A46FE3E3D -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6000.16609_none_bb22ee81fe4b8646\oleaut32.dll
[2010/12/20 10:26:38 | 000,563,200 | ---- | M] (Microsoft Corporation) MD5=8DEFDCF8F2C5871CB7C436A6FBD86017 -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6001.22816_none_bd850673149a72fe\oleaut32.dll
[2011/08/29 13:51:07 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=9F793B01FDE3E2888306C97DC7F704A7 -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.22706_none_bf764c1311b8a67f\oleaut32.dll
[2011/08/25 11:14:01 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=B218342214D9BBA0F54EA12BA2E9278C -- C:\Windows\System32\oleaut32.dll
[2011/08/25 11:14:01 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=B218342214D9BBA0F54EA12BA2E9278C -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.18508_none_beeeadf5f8993c3c\oleaut32.dll
[2009/04/11 01:28:23 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=CA85552B1A307CB03FF1A1D2D12CB1C5 -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.18005_none_beeba399f89bfe74\oleaut32.dll
[2010/12/20 11:35:04 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=DE4CD76C254E143F40E62952788D3BE7 -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.18357_none_beb79a43f8c2b44c\oleaut32.dll
[2010/12/20 10:39:14 | 000,563,200 | ---- | M] (Microsoft Corporation) MD5=FA6BD25A5A65A6FF5BE4385098E3BDEF -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6001.18565_none_bcc455f5fba64b44\oleaut32.dll

< MD5 for: QMGR.DLL >
[2008/01/20 21:34:49 | 000,758,272 | ---- | M] (Microsoft Corporation) MD5=02ED7B4DBC2A3232A389106DA7515C3D -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6001.18000_none_2390c4ecf9720b8c\qmgr.dll
[2009/04/11 01:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\Windows\ERDNT\cache\qmgr.dll
[2009/04/11 01:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\Windows\System32\qmgr.dll
[2009/04/11 01:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6002.18005_none_257c3df8f693d6d8\qmgr.dll

< MD5 for: QMGRPRXY.DLL >
[2006/11/02 04:46:12 | 000,020,480 | ---- | M] (Microsoft Corporation) MD5=10F13FFF542FEC4A2C4FA734EEBE56B9 -- C:\Windows\System32\qmgrprxy.dll
[2006/11/02 04:46:12 | 000,020,480 | ---- | M] (Microsoft Corporation) MD5=10F13FFF542FEC4A2C4FA734EEBE56B9 -- C:\Windows\winsxs\x86_microsoft-windows-bits-qmgrproxy_31bf3856ad364e35_6.0.6000.16386_none_f33db9b80636b12a\qmgrprxy.dll

< MD5 for: RSAENH.DLL >
[2008/01/20 21:34:26 | 000,242,744 | ---- | M] (Microsoft Corporation) MD5=5178D99B1CBD1C9D310904417E2C5A11 -- C:\Windows\winsxs\x86_microsoft-windows-rsaenh-dll_31bf3856ad364e35_6.0.6001.18000_none_5fc70fc7b14478d4\rsaenh.dll
[2009/04/11 01:27:47 | 000,241,128 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\rsaenh.dll
[2009/04/11 01:27:47 | 000,241,128 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-rsaenh-dll_31bf3856ad364e35_6.0.6002.18005_none_61b288d3ae664420\rsaenh.dll

< MD5 for: SCRRUN.DLL >
[2008/05/08 00:21:52 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=2029EBAD363A1D349EF87342EDD07217 -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.22175_none_48ab41df19abd38f\scrrun.dll
[2008/01/20 21:33:12 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=242F6DDB36425B8DE18B5FD9F7643767 -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.18000_none_486853160059f17b\scrrun.dll
[2009/04/11 01:28:24 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=3DB1530CDD7AEF2BCFA6FB77D097CDDA -- C:\Windows\System32\scrrun.dll
[2009/04/11 01:28:24 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=3DB1530CDD7AEF2BCFA6FB77D097CDDA -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6002.18005_none_4a53cc21fd7bbcc7\scrrun.dll
[2008/05/08 16:59:32 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=83433ECFB05E44AB1529004CCA561FE9 -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.18068_none_482f75de008363d9\scrrun.dll
[2001/06/26 17:39:42 | 000,151,601 | R--- | M] (Microsoft Corporation) MD5=9B6BFD23386A57C81536B7B4305998D6 -- C:\Windows\Installer\$PatchCache$\Managed\049634E8449A76D44AB581672EB39B0C\9.8.3\scrrun.dll

< MD5 for: SHDOCVW.DLL >
[2011/01/20 11:07:03 | 001,075,712 | ---- | M] (Microsoft Corporation) MD5=167AC31450C0C53A01FA1491E94D7678 -- C:\Windows\System32\shdocvw.dll
[2011/01/20 11:07:03 | 001,075,712 | ---- | M] (Microsoft Corporation) MD5=167AC31450C0C53A01FA1491E94D7678 -- C:\Windows\winsxs\x86_microsoft-windows-shdocvw_31bf3856ad364e35_6.0.6002.18392_none_e8fc1c190953a005\shdocvw.dll
[2009/04/11 01:28:24 | 001,068,032 | ---- | M] (Microsoft Corporation) MD5=2AA4117EE5F4765AD8404DCF9D552C71 -- C:\Windows\winsxs\x86_microsoft-windows-shdocvw_31bf3856ad364e35_6.0.6002.18005_none_e96066910907f91c\shdocvw.dll
[2011/01/20 11:11:04 | 001,075,712 | ---- | M] (Microsoft Corporation) MD5=7C91E76F3021DD5397A3065DCA72952F -- C:\Windows\winsxs\x86_microsoft-windows-shdocvw_31bf3856ad364e35_6.0.6002.22573_none_e99c5aec22601e6b\shdocvw.dll
[2008/01/20 21:33:15 | 001,067,520 | ---- | M] (Microsoft Corporation) MD5=86B89709BDFC7A59D566590CC30CDBB1 -- C:\Windows\winsxs\x86_microsoft-windows-shdocvw_31bf3856ad364e35_6.0.6001.18000_none_e774ed850be62dd0\shdocvw.dll

< MD5 for: SHELL32.DLL >
[2011/01/21 10:04:53 | 011,587,584 | ---- | M] (Microsoft Corporation) MD5=028EF93B746FF370DFE35711A7569647 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22839_none_6c9b67c92b29b17c\shell32.dll
[2011/01/21 10:46:32 | 011,582,464 | ---- | M] (Microsoft Corporation) MD5=048B65EC931A39A5F42016BE04775274 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18588_none_6bdab74c123589c2\shell32.dll
[2011/01/21 11:27:57 | 011,588,096 | ---- | M] (Microsoft Corporation) MD5=221565A0217045A61D179B438BC4AC8A -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.22574_none_6e51988f2874f7b1\shell32.dll
[2009/07/10 07:06:47 | 011,321,856 | ---- | M] (Microsoft Corporation) MD5=276AA16A23029F559BAB104011F97340 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.21081_none_6a76e5db2e332307\shell32.dll
[2009/07/10 06:47:42 | 011,584,512 | ---- | M] (Microsoft Corporation) MD5=32C0C48A029F5EB94A609CE5F2D43BEB -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18063_none_6dd1c3ce0f502e03\shell32.dll
[2008/01/20 21:33:18 | 011,580,416 | ---- | M] (Microsoft Corporation) MD5=33E9CE9110597F1A47BA18B96EAFA6FA -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18000_none_6c292ade11fbedbf\shell32.dll
[2008/04/23 23:40:28 | 011,319,808 | ---- | M] (Microsoft Corporation) MD5=3D58E32AA9A5C7F408D97675C81C9AED -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.20822_none_6ab8eba52e01644f\shell32.dll
[2009/04/11 01:28:24 | 011,584,000 | ---- | M] (Microsoft Corporation) MD5=43466A7FF452883B68F52B963023949C -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18005_none_6e14a3ea0f1db90b\shell32.dll
[2008/11/06 07:59:27 | 011,582,976 | ---- | M] (Microsoft Corporation) MD5=4A21B11997C1F14D8707C8C501CA59A7 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22303_none_6cb5cc532b16d3dc\shell32.dll
[2008/11/06 07:59:14 | 011,320,832 | ---- | M] (Microsoft Corporation) MD5=4F72C8F593AAB1B83FB5D62CBFBB51F9 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.20951_none_6a977d7d2e1a9bf2\shell32.dll
[2008/11/06 08:14:25 | 011,580,928 | ---- | M] (Microsoft Corporation) MD5=5D62692EEB77E32F67A966F1BDEB551B -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18167_none_6bef4f42122643ed\shell32.dll
[2008/04/23 23:58:20 | 011,580,416 | ---- | M] (Microsoft Corporation) MD5=61509AF47F663A6EA941492ED181D60C -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18062_none_6bea4bea122ac813\shell32.dll
[2009/07/10 06:59:03 | 011,584,512 | ---- | M] (Microsoft Corporation) MD5=81A20AC0051ADA6F9FC58FA620BE4A78 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22467_none_6c78efd92b43de05\shell32.dll
[2008/04/23 23:45:45 | 011,581,440 | ---- | M] (Microsoft Corporation) MD5=82A0A2AB2C637C11F28C1E37F76A284E -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22166_none_6c77e9dd2b44cd39\shell32.dll
[2010/07/26 13:04:15 | 011,587,072 | ---- | M] (Microsoft Corporation) MD5=895F23DE1778E6AADE0DEEBCC2E6AC0A -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.22454_none_6e6736812864c2a8\shell32.dll
[2010/07/26 10:51:48 | 011,584,512 | ---- | M] (Microsoft Corporation) MD5=91640C342AD09936D0E4B7EBDDB12091 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18287_none_6dc028ea0f5cc58f\shell32.dll
[2009/07/10 07:17:37 | 011,316,224 | ---- | M] (Microsoft Corporation) MD5=93FDB7E073B00D0BB7DF7182D882539F -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.16883_none_69ef7182151382a9\shell32.dll
[2010/07/26 11:56:52 | 011,586,560 | ---- | M] (Microsoft Corporation) MD5=CDE0D181CF5E5DD7E7C032A15365799C -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22735_none_6c9764bb2b2d4ef9\shell32.dll
[2008/11/06 07:57:06 | 011,315,712 | ---- | M] (Microsoft Corporation) MD5=CF1D75E7B4A7CC6D2A21FE64C9E50A12 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.16774_none_69fb3fd2150a82e8\shell32.dll
[2010/07/26 11:55:26 | 011,581,440 | ---- | M] (Microsoft Corporation) MD5=DD2F953D9DCAAF080F724803A8121CE6 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18505_none_6c2e35ce11f75e35\shell32.dll
[2009/07/10 06:49:50 | 011,584,512 | ---- | M] (Microsoft Corporation) MD5=E19E22CD00EA110B0CE2C13777CEF92C -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.22169_none_6e616255286865d7\shell32.dll
[2009/07/10 07:20:59 | 011,581,440 | ---- | M] (Microsoft Corporation) MD5=EB85D49F3129EBED4993E800521715DD -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18287_none_6bd9b150123678f6\shell32.dll
[2008/04/23 23:51:39 | 011,315,712 | ---- | M] (Microsoft Corporation) MD5=FF37AF2D5DCAFC00BC46AF07B53699B0 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.16680_none_69ec6cd815163c56\shell32.dll
[2011/01/21 11:35:22 | 011,586,048 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\shell32.dll
[2011/01/21 11:35:22 | 011,586,048 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18393_none_6db159bc0f68794b\shell32.dll

< MD5 for: SOFTPUB.DLL >
[2006/11/02 04:46:13 | 000,009,216 | ---- | M] (Microsoft Corporation) MD5=06D2F8867F99BAD116FE3C6347B13EBE -- C:\Windows\System32\softpub.dll
[2006/11/02 04:46:13 | 000,009,216 | ---- | M] (Microsoft Corporation) MD5=06D2F8867F99BAD116FE3C6347B13EBE -- C:\Windows\winsxs\x86_microsoft-windows-softpub-dll_31bf3856ad364e35_6.0.6000.16386_none_e15d4542820233d4\softpub.dll

< MD5 for: URLMON.DLL >
[2009/03/08 06:34:55 | 001,206,784 | ---- | M] (Microsoft Corporation) MD5=05642AE6A7BDAA7541A7451F5A4C6512 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18702_none_97ce3a35ec955bb0\urlmon.dll
[2011/11/03 18:08:05 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=064F6F989238F40B2AA23395E44B259B -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20544_none_754d509d2dd95516\urlmon.dll
[2008/02/22 00:01:33 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=1CC909F70CAE7F858CCF6DD4145D6AA0 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18023_none_b4d078e1d6d76f3a\urlmon.dll
[2008/02/21 23:52:15 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=29CB87A945B10AA959584C3E59D6201D -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22120_none_b55714ceeff7c2ff\urlmon.dll
[2011/08/31 21:28:33 | 001,102,848 | ---- | M] (Microsoft Corporation) MD5=3BF5881CB3D3402ADE70BE9E96E18C67 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16437_none_74d1849c14b0e560\urlmon.dll
[2008/06/26 22:50:29 | 001,166,848 | ---- | M] (Microsoft Corporation) MD5=3ED27AB59FB2DA1C495CCDAA71F825F5 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22212_none_b563e734efedd6e3\urlmon.dll
[2010/09/08 01:24:54 | 001,211,904 | ---- | M] (Microsoft Corporation) MD5=42BBB00FB563E481A8DAD9529CC19677 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.23067_none_981bd2f305df523c\urlmon.dll
[2012/02/27 20:12:01 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=4C162B2A8E175F46DB41B21C77688221 -- C:\Windows\System32\urlmon.dll
[2012/02/27 20:12:01 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=4C162B2A8E175F46DB41B21C77688221 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16443_none_74c2b38814bc9bf5\urlmon.dll
[2009/12/18 08:05:36 | 001,174,528 | ---- | M] (Microsoft Corporation) MD5=4DE2CD3902C0010FA19116F05BD4FF20 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18385_none_b4919f9fd7064103\urlmon.dll
[2002/08/29 08:14:40 | 000,482,816 | R--- | M] (Microsoft Corporation) MD5=54023ABFE163804297F6DC05BADF6668 -- C:\Windows\Installer\$PatchCache$\Managed\049634E8449A76D44AB581672EB39B0C\9.8.3\urlmon.dll
[2010/11/02 01:01:41 | 001,210,880 | ---- | M] (Microsoft Corporation) MD5=581D19B3EFF0A7FEAC6FE7FE7270E3A0 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18999_none_9773f0bbecd802d8\urlmon.dll
[2012/02/27 19:59:00 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=59E5BA0E9F268B2B0EA7C0185150150F -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20548_none_755151c52dd5ba72\urlmon.dll
[2008/04/24 23:35:19 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=5E4F2E3846DB2699D96F1B28E83B94C3 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18063_none_b4a53931d6f7defe\urlmon.dll
[2009/04/11 01:28:25 | 001,167,872 | ---- | M] (Microsoft Corporation) MD5=62F5F76338391A44F4A0E871FFD35A27 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6002.18005_none_b6ce90e7d3ebb69f\urlmon.dll
[2008/06/26 22:49:41 | 001,162,752 | ---- | M] (Microsoft Corporation) MD5=68F5CC104978908671F96EE7FC79D06E -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.20868_none_b34d9aaef2ea69b1\urlmon.dll
[2010/11/02 02:11:49 | 001,211,904 | ---- | M] (Microsoft Corporation) MD5=6AAA7BFA435FD04D56873AA2C7955F41 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.23091_none_97f5617305fd0e05\urlmon.dll
[2008/01/20 21:34:38 | 001,165,824 | ---- | M] (Microsoft Corporation) MD5=6FD4D51AA2DA0314DC77A150EB6D3980 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18000_none_b4e317dbd6c9eb53\urlmon.dll
[2011/02/22 01:21:17 | 001,210,880 | ---- | M] (Microsoft Corporation) MD5=7143942B5072A782874BCA36CEB63A0D -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.19048_none_97a8d82fecb0910e\urlmon.dll
[2011/12/13 21:57:49 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=79F14B5DF9E17E12193337ED4EE1C491 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16441_none_74c0b2f414be6947\urlmon.dll
[2011/11/03 17:40:43 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=814638F572F497D96B17BF254113D9A4 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16440_none_74bfb2aa14bf4ff0\urlmon.dll
[2010/12/18 01:26:50 | 001,210,880 | ---- | M] (Microsoft Corporation) MD5=91F4319C6C0F9CF11412415779CB12C1 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.19019_none_97ca483dec975692\urlmon.dll
[2011/08/31 20:58:19 | 001,102,848 | ---- | M] (Microsoft Corporation) MD5=96C5CBC5539DD05F0A99CC71541EF35D -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20537_none_755b21672dce852a\urlmon.dll
[2009/12/18 07:25:42 | 001,170,944 | ---- | M] (Microsoft Corporation) MD5=984C8CF12DF3C2F723EA76ACCA0CE5CF -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.21184_none_b333d59cf2fe69c7\urlmon.dll
[2008/04/24 23:21:54 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=9EF388245B2E198704A41C44DF4EEC14 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22167_none_b532d724f011e424\urlmon.dll
[2010/12/18 02:17:53 | 001,211,904 | ---- | M] (Microsoft Corporation) MD5=A40252BC6BE95C9B4B5D875B0C25512C -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.23111_none_984be2b905bc2ba4\urlmon.dll
[2011/04/21 12:52:50 | 001,102,336 | ---- | M] (Microsoft Corporation) MD5=AA5F4683A0C3C40D90377AA238A6F1B7 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16421_none_74d652cc14ae3165\urlmon.dll
[2010/01/02 09:56:01 | 001,209,344 | ---- | M] (Microsoft Corporation) MD5=B30EAA9B9B7DBDD8CC5D143472B2F16E -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.22973_none_980d29bd05ead58f\urlmon.dll
[2008/04/24 23:09:51 | 001,162,752 | ---- | M] (Microsoft Corporation) MD5=BE5269680658C57CD9AED2AF337D195E -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.20823_none_b373d8ecf2ce7b3a\urlmon.dll
[2009/12/18 07:24:07 | 001,175,040 | ---- | M] (Microsoft Corporation) MD5=C0CBE22A90ECC439F3872C3E7412C9E4 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22585_none_b51b3e50f023ddf4\urlmon.dll
[2009/12/18 07:52:27 | 001,168,384 | ---- | M] (Microsoft Corporation) MD5=C504C720A5EE8CF112758FEE04D4625B -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16982_none_b2a8601bd9e2640d\urlmon.dll
[2009/12/17 07:04:00 | 001,176,064 | ---- | M] (Microsoft Corporation) MD5=C8241D7839B71D09D5D2C3D7AB4F9F07 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6002.22290_none_b6f1dedaed56d056\urlmon.dll
[2009/12/16 06:44:14 | 001,176,064 | ---- | M] (Microsoft Corporation) MD5=D12B8B3B094DF8A74FC3BCB1DBA578BF -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6002.18167_none_b68fb3d9d41a8e1a\urlmon.dll
[2011/07/21 21:49:01 | 001,102,848 | ---- | M] (Microsoft Corporation) MD5=D217B0DA82FDD942C048749993275AC6 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16434_none_74ce83be14b3995b\urlmon.dll
[2011/12/13 21:29:04 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=D48BB97B11710577FDD025EA39478A18 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20546_none_754f51312dd787c4\urlmon.dll
[2008/06/26 22:54:49 | 001,159,680 | ---- | M] (Microsoft Corporation) MD5=D5A518871C5393B5C1883E74BE75FAF8 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16711_none_b2f30b79d9aa8cd1\urlmon.dll
[2010/01/02 01:38:04 | 001,208,832 | ---- | M] (Microsoft Corporation) MD5=D5B99F82E9AE7EF1ACB28340C5C61B79 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18882_none_9777bcbbecd6385f\urlmon.dll
[2008/02/21 23:52:08 | 001,162,752 | ---- | M] (Microsoft Corporation) MD5=D7C4249EB1CFE999F90A54597DC6CF6F -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.20777_none_b341c892f2f36f24\urlmon.dll
[2010/09/08 01:01:15 | 001,210,880 | ---- | M] (Microsoft Corporation) MD5=DD7ACFC238730C217C5D63BCE12AB8DC -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18975_none_97858f6beccb659a\urlmon.dll
[2011/04/22 18:30:18 | 001,102,336 | ---- | M] (Microsoft Corporation) MD5=DF6DE2F5AFB9FA1CFA02081EF9B3E7E8 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16430_none_74ca829614b733ff\urlmon.dll
[2011/04/22 17:53:19 | 001,102,336 | ---- | M] (Microsoft Corporation) MD5=F23351AAC05A803402C56A531F869B31 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20530_none_75541f612dd4d3c9\urlmon.dll
[2011/07/21 20:48:50 | 001,102,848 | ---- | M] (Microsoft Corporation) MD5=F715C2BCA826CC556C256F66F5B41546 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20534_none_755820892dd13925\urlmon.dll
[2008/02/20 23:43:41 | 001,159,680 | ---- | M] (Microsoft Corporation) MD5=F8E8922A488183128EE605B0612C4C14 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16643_none_b2d49a63d9c1162b\urlmon.dll
[2011/02/22 02:18:22 | 001,212,928 | ---- | M] (Microsoft Corporation) MD5=FB2E03C3996607B0449B27EEBA0020D1 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.23143_none_982d738905d2b225\urlmon.dll
[2008/04/24 23:23:11 | 001,159,680 | ---- | M] (Microsoft Corporation) MD5=FCA38D14AA8877C7AA3C7030D9E40CCC -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16681_none_b2a75a1fd9e35341\urlmon.dll
[2008/06/26 23:15:28 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=FDBF6B298D068F08146C9B2B18D78A5F -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18099_none_b48acb29d70acadb\urlmon.dll

< MD5 for: VBSCRIPT.DLL >
[2011/02/17 01:23:50 | 000,420,864 | ---- | M] (Microsoft Corporation) MD5=330A25AE6D4BCBF4521C1D69D168AA51 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.19046_none_2b1dc30f43cf7656\vbscript.dll
[2009/04/11 01:28:25 | 000,430,080 | ---- | M] (Microsoft Corporation) MD5=34762E419CB79416BE49A8E484525453 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.0.6002.18005_none_4a457c5b2b08ce95\vbscript.dll
[2010/03/05 09:01:02 | 000,420,352 | ---- | M] (Microsoft Corporation) MD5=5A9C91B12C2CBF85F6033FED62CE087A -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.18909_none_2b4c2b7b43ac1f55\vbscript.dll
[2011/04/21 12:52:37 | 000,420,864 | ---- | M] (Microsoft Corporation) MD5=5E7A2CF7719161C5E6C0E47D67AD45AE -- C:\Windows\System32\vbscript.dll
[2011/04/21 12:52:37 | 000,420,864 | ---- | M] (Microsoft Corporation) MD5=5E7A2CF7719161C5E6C0E47D67AD45AE -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.1.8112.16421_none_084d3e3f6bcb495b\vbscript.dll
[2009/03/08 06:33:04 | 000,420,352 | ---- | M] (Microsoft Corporation) MD5=7CC3C8FC1056A229B05926C44D1ADEE4 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.18702_none_2b4525a943b273a6\vbscript.dll
[2002/02/26 16:58:06 | 000,462,906 | R--- | M] (Microsoft Corporation) MD5=85208932FE4CDFC1AD4A14DF82AB1ABD -- C:\Windows\Installer\$PatchCache$\Managed\049634E8449A76D44AB581672EB39B0C\9.8.3\vbscript.dll
[2008/01/20 21:33:37 | 000,430,080 | ---- | M] (Microsoft Corporation) MD5=A50CFEE5140F2704459C22D264A4BDB0 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.0.6001.18000_none_485a034f2de70349\vbscript.dll
[2010/03/05 17:19:52 | 000,420,352 | ---- | M] (Microsoft Corporation) MD5=AE1A9126E184D0734496354B9745AD71 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.23000_none_2bcc9be85cd2112b\vbscript.dll
[2008/05/08 16:59:33 | 000,430,080 | ---- | M] (Microsoft Corporation) MD5=C7EC53FBE59F47DDF3648BCA256D79D2 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.0.6001.18068_none_482126172e1075a7\vbscript.dll
[2008/05/08 00:22:13 | 000,430,080 | ---- | M] (Microsoft Corporation) MD5=DC948E750D1A82F39BD93740ED835257 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.0.6001.22175_none_489cf2184738e55d\vbscript.dll
[2011/02/17 02:00:30 | 000,420,864 | ---- | M] (Microsoft Corporation) MD5=F9397AFBD9152186E15F4B068A3ADB68 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.23141_none_2ba25e685cf1976d\vbscript.dll

< MD5 for: WINTRUST.DLL >
[2009/12/23 07:14:59 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=02FE137C95B46D3966E2B089B26609B8 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6000.21186_none_ee00f81ab6439625\wintrust.dll
[2009/12/23 06:33:29 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=2829C93217B147387F186479A5F6A1E5 -- C:\Windows\System32\wintrust.dll
[2009/12/23 06:33:29 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=2829C93217B147387F186479A5F6A1E5 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6002.18169_none_f15cd657975fba78\wintrust.dll
[2008/01/20 21:34:19 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=2C60B3BE1DE5941555E17F6726148910 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6001.18000_none_efae39c59a10e503\wintrust.dll
[2009/12/23 07:43:08 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=6E012DA20D59C3991751CA6E8C71EB06 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6001.18387_none_ef5ec21d9a4b6d61\wintrust.dll
[2009/12/23 07:12:40 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=A58518348634DA63E942DAA26D4BC344 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6002.22293_none_f1c001a2b09b160b\wintrust.dll
[2009/12/23 07:29:42 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=B702783FC55E3737D19DCDD69D40279E -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6001.22588_none_efe96118b36823a9\wintrust.dll
[2009/12/23 07:45:43 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=C6E246BE0C525762C474F7EC758A70A9 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6000.16984_none_ed7582999d27906b\wintrust.dll

< MD5 for: WUAPI.DLL >
[2009/08/06 21:23:52 | 000,575,704 | ---- | M] (Microsoft Corporation) MD5=009758CC06B7F55B4A4D16A66E243C24 -- C:\Windows\System32\wuapi.dll
[2009/08/06 21:23:52 | 000,575,704 | ---- | M] (Microsoft Corporation) MD5=009758CC06B7F55B4A4D16A66E243C24 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.4.7600.226_none_cf8a5c896f5cdb1e\wuapi.dll
[2008/01/20 21:34:55 | 000,534,016 | ---- | M] (Microsoft Corporation) MD5=1027519E0FDAB595E3D98680662B39A0 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6001.18000_none_8664137a48407b03\wuapi.dll
[2009/04/11 01:28:27 | 000,532,480 | ---- | M] (Microsoft Corporation) MD5=505C5319786CFF7A9D2CB7C8197B1F1D -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6002.18005_none_884f8c864562464f\wuapi.dll
[2006/11/02 04:46:15 | 000,502,784 | ---- | M] (Microsoft Corporation) MD5=578B136083796BDFD1C856FA60FB0BBD -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_6.0.6000.16386_none_92bcd538c06ec160\wuapi.dll
[2008/10/16 16:12:19 | 000,561,688 | ---- | M] (Microsoft Corporation) MD5=CAB93E2AAEEDEEF526F0C4CD56B283E7 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.2.6001.788_none_107673f57a433d77\wuapi.dll

< MD5 for: WUAUENG.DLL >
[2009/04/11 01:28:28 | 001,695,232 | ---- | M] (Microsoft Corporation) MD5=01E1499A7A4FCA7CDE102B60976544C1 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6002.18005_none_a23e523a31a1ed4c\wuaueng.dll
[2009/08/06 21:23:45 | 001,929,952 | ---- | M] (Microsoft Corporation) MD5=6298277B73C77FA99106B271A7525163 -- C:\Windows\System32\wuaueng.dll
[2009/08/06 21:23:45 | 001,929,952 | ---- | M] (Microsoft Corporation) MD5=6298277B73C77FA99106B271A7525163 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.4.7600.226_none_e979223d5b9c821b\wuaueng.dll
[2008/10/16 16:13:38 | 001,809,944 | ---- | M] (Microsoft Corporation) MD5=84A03BFE004B06E93408618976DC9C14 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.2.6001.788_none_2a6539a96682e474\wuaueng.dll
[2006/11/02 04:46:16 | 001,568,256 | ---- | M] (Microsoft Corporation) MD5=9397D21939A25DA1BD0ED8DB5BB3C853 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_6.0.6000.16386_none_acab9aecacae685d\wuaueng.dll
[2008/01/20 21:34:55 | 001,695,232 | ---- | M] (Microsoft Corporation) MD5=D79538B67FA641E986855DEF651E78FE -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6001.18000_none_a052d92e34802200\wuaueng.dll

< MD5 for: WUCLTUX.DLL >
[2006/11/02 04:46:16 | 001,498,624 | ---- | M] (Microsoft Corporation) MD5=0DAB31EBBC89DC86500EFE4EF8B2EAE7 -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_6.0.6000.16386_none_2a58be974cb2ab0e\wucltux.dll
[2008/01/20 21:34:56 | 001,505,280 | ---- | M] (Microsoft Corporation) MD5=233D499EF4136BC2538716FCCEDDAAB1 -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_7.0.6001.18000_none_1dfffcd8d48464b1\wucltux.dll
[2009/08/06 20:45:15 | 002,421,760 | ---- | M] (Microsoft Corporation) MD5=5B56A7A5AE0C118CF6413A6E99170BF8 -- C:\Windows\System32\wucltux.dll
[2009/08/06 20:45:15 | 002,421,760 | ---- | M] (Microsoft Corporation) MD5=5B56A7A5AE0C118CF6413A6E99170BF8 -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_7.4.7600.226_none_672645e7fba0c4cc\wucltux.dll
[2008/10/16 15:56:28 | 001,524,736 | ---- | M] (Microsoft Corporation) MD5=873BD2CF68E70DE7B3B67AF6EB863A5B -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_7.2.6001.788_none_a8125d5406872725\wucltux.dll
[2009/04/11 01:28:28 | 001,505,280 | ---- | M] (Microsoft Corporation) MD5=F7097578CB9BF8A5D58474BC453C3750 -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_7.0.6002.18005_none_1feb75e4d1a62ffd\wucltux.dll

< MD5 for: WUPS.DLL >
[2006/11/02 04:46:16 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=0E71F0397FD91280E1A2FC712A0A7ACC -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_6.0.6000.16386_none_92bcd538c06ec160\wups.dll
[2009/08/06 21:24:09 | 000,035,552 | ---- | M] (Microsoft Corporation) MD5=1D326842006C4BE77ECD848CF89F01AB -- C:\Windows\System32\wups.dll
[2009/08/06 21:24:09 | 000,035,552 | ---- | M] (Microsoft Corporation) MD5=1D326842006C4BE77ECD848CF89F01AB -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.4.7600.226_none_cf8a5c896f5cdb1e\wups.dll
[2008/10/16 16:08:57 | 000,034,328 | ---- | M] (Microsoft Corporation) MD5=9A941BAF38F85B6E3FBEA96AB6E5ADBE -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.2.6001.788_none_107673f57a433d77\wups.dll
[2008/01/20 21:34:55 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=EF1D2DAB860F3380D607EEFBD5EBD4B9 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6001.18000_none_8664137a48407b03\wups.dll
[2008/01/20 21:34:55 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=EF1D2DAB860F3380D607EEFBD5EBD4B9 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6002.18005_none_884f8c864562464f\wups.dll

< MD5 for: WUPS2.DLL >
[2008/10/16 16:09:43 | 000,043,544 | ---- | M] (Microsoft Corporation) MD5=039133C02D61C3CE6C952092054B1148 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.2.6001.788_none_2a6539a96682e474\wups2.dll
[2009/08/06 21:24:08 | 000,044,768 | ---- | M] (Microsoft Corporation) MD5=5BD1234E11B39C63BBA87022AF6D43C2 -- C:\Windows\System32\wups2.dll
[2009/08/06 21:24:08 | 000,044,768 | ---- | M] (Microsoft Corporation) MD5=5BD1234E11B39C63BBA87022AF6D43C2 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.4.7600.226_none_e979223d5b9c821b\wups2.dll
[2008/01/20 21:34:55 | 000,032,768 | ---- | M] (Microsoft Corporation) MD5=8A7BAAF132A05F06E4DB9CAB6312E062 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6001.18000_none_a052d92e34802200\wups2.dll
[2008/01/20 21:34:55 | 000,032,768 | ---- | M] (Microsoft Corporation) MD5=8A7BAAF132A05F06E4DB9CAB6312E062 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6002.18005_none_a23e523a31a1ed4c\wups2.dll
[2006/11/02 04:46:16 | 000,032,256 | ---- | M] (Microsoft Corporation) MD5=9CC828E6D94B944EA78DEA8C3AF4577A -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_6.0.6000.16386_none_acab9aecacae685d\wups2.dll

< MD5 for: WUWEBV.DLL >
[2006/11/02 04:46:16 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=1B2AB378C80F6404687DCB4217BFA17D -- C:\Windows\winsxs\x86_microsoft-windows-w..pdateclient-activex_31bf3856ad364e35_6.0.6000.16386_none_3cc795796625f35c\wuwebv.dll
[2008/10/16 14:08:00 | 000,162,064 | ---- | M] (Microsoft Corporation) MD5=6E9FA3B731AF51BA15B5752013DF4045 -- C:\Windows\winsxs\x86_microsoft-windows-w..pdateclient-activex_31bf3856ad364e35_7.2.6001.788_none_ba8134361ffa6f73\wuwebv.dll
[2009/08/06 20:23:06 | 000,171,608 | ---- | M] (Microsoft Corporation) MD5=BE2DE642AA0D55CB644D87C97A2C01AE -- C:\Windows\System32\wuwebv.dll
[2009/08/06 20:23:06 | 000,171,608 | ---- | M] (Microsoft Corporation) MD5=BE2DE642AA0D55CB644D87C97A2C01AE -- C:\Windows\winsxs\x86_microsoft-windows-w..pdateclient-activex_31bf3856ad364e35_7.4.7600.226_none_79951cca15140d1a\wuwebv.dll
[2008/01/20 21:34:56 | 000,153,088 | ---- | M] (Microsoft Corporation) MD5=E1B21AEE636620B521B3CB41BFAF0602 -- C:\Windows\winsxs\x86_microsoft-windows-w..pdateclient-activex_31bf3856ad364e35_7.0.6001.18000_none_306ed3baedf7acff\wuwebv.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 172 bytes -> C:\ProgramData\TEMP:BF3D0EA3
@Alternate Data Stream - 161 bytes -> C:\ProgramData\TEMP:A5388B43

< End of report >

#64
RKinner

Posted 15 May 2012 - 08:48 PM

Malware Expert

Expert
24,624 posts

Please download GrantPerms.zip
http://download.blee.../GrantPerms.zip (I think you probably already have this program.)
and save it to your desktop.
Unzip the file and run GrantPerms.exe by right clicking and Run As Admin.
Copy and paste the following in the edit box:


C:\Windows\System32\shell32.dll
C:\Windows\System32\rsaenh.dll
C:\Windows\System32\ole32.dll
C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.18277_none_adbf7553efaa1c63\ole32.dll
C:\Windows\winsxs\x86_microsoft-windows-rsaenh-dll_31bf3856ad364e35_6.0.6002.18005_none_61b288d3ae664420\rsaenh.dll
C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18393_none_6db159bc0f68794b\shell32.dll

Click Unlock. When it is done click "OK".
Click List Permissions and post the result (Perms.txt) that pops up. A copy of Perms.txt will be saved in the same directory the tool is run.

Then run that same OTL scan we just ran. I want to see if that makes any difference on the 6 files that say "Unable to obtain MD5"

I seem to be coming down with the flu so expect delays. You might do better starting a new topic in the Vista forum
http://www.geekstogo...-and-windows-7/
since I don't think we are dealing with malware any more.

Give them a link back to this topic so they can see what all we have done.

#65
Sarous

Posted 15 May 2012 - 09:41 PM

Member

Topic Starter
Member
84 posts

Thread created & linked as suggested.

logs:
Perms
OTL

GrantPerms by Farbar
Ran by Cougar (administrator) at 2012-05-15 22:04:25

===============================================
\\?\C:\Windows\System32\shell32.dll

Owner: BUILTIN\Administrators

DACL(P)(AI):
BUILTIN\Administrators FULL ALLOW (NI)
NT AUTHORITY\SYSTEM FULL ALLOW (NI)
BUILTIN\Users READ/EXECUTE ALLOW (NI)

\\?\C:\Windows\System32\rsaenh.dll

Owner: BUILTIN\Administrators

DACL(P)(AI):
BUILTIN\Administrators FULL ALLOW (NI)
NT AUTHORITY\SYSTEM FULL ALLOW (NI)
BUILTIN\Users READ/EXECUTE ALLOW (NI)

\\?\C:\Windows\System32\ole32.dll

Owner: BUILTIN\Administrators

DACL(P)(AI):
BUILTIN\Administrators FULL ALLOW (NI)
NT AUTHORITY\SYSTEM FULL ALLOW (NI)
BUILTIN\Users READ/EXECUTE ALLOW (NI)

\\?\C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.18277_none_adbf7553efaa1c63\ole32.dll

Owner: BUILTIN\Administrators

DACL(P)(AI):
BUILTIN\Administrators FULL ALLOW (NI)
NT AUTHORITY\SYSTEM FULL ALLOW (NI)
BUILTIN\Users READ/EXECUTE ALLOW (NI)

\\?\C:\Windows\winsxs\x86_microsoft-windows-rsaenh-dll_31bf3856ad364e35_6.0.6002.18005_none_61b288d3ae664420\rsaenh.dll

Owner: BUILTIN\Administrators

DACL(P)(AI):
BUILTIN\Administrators FULL ALLOW (NI)
NT AUTHORITY\SYSTEM FULL ALLOW (NI)
BUILTIN\Users READ/EXECUTE ALLOW (NI)

\\?\C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18393_none_6db159bc0f68794b\shell32.dll

Owner: BUILTIN\Administrators

DACL(P)(AI):
BUILTIN\Administrators FULL ALLOW (NI)
NT AUTHORITY\SYSTEM FULL ALLOW (NI)
BUILTIN\Users READ/EXECUTE ALLOW (NI)

OTL logfile created on: 15/05/2012 10:05:05 PM - Run 10
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Users\Cougar\Desktop
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: dd/MM/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 60.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 78.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 224.20 Gb Total Space | 160.87 Gb Free Space | 71.75% Space Free | Partition Type: NTFS

Computer Name: COUGAR-PC | User Name: Cougar | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/05/03 22:19:40 | 000,932,736 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe
PRC - [2012/05/03 22:19:37 | 001,116,544 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
PRC - [2012/04/30 16:25:24 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Cougar\Desktop\OTL.exe
PRC - [2012/04/30 09:44:38 | 005,106,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgidsagent.exe
PRC - [2012/04/20 20:18:58 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012/04/19 04:51:54 | 001,254,992 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe
PRC - [2012/04/05 05:12:34 | 002,587,008 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgtray.exe
PRC - [2012/03/19 05:18:12 | 000,979,840 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgemcx.exe
PRC - [2012/02/22 20:49:58 | 006,591,800 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
PRC - [2012/02/14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe
PRC - [2012/02/14 04:53:14 | 000,758,112 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgrsx.exe
PRC - [2012/02/14 04:52:38 | 000,338,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcsrvx.exe
PRC - [2012/01/03 08:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/12/09 17:43:34 | 000,296,056 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\real\realplayer\Update\realsched.exe
PRC - [2011/11/09 13:27:00 | 000,456,948 | ---- | M] () -- C:\Users\Cougar\Desktop\GrantPerms\GrantPerms.exe
PRC - [2011/07/28 18:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2009/04/11 01:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/03/05 16:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
PRC - [2008/11/09 15:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2008/04/15 19:54:42 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008/04/15 19:54:40 | 000,178,712 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2008/04/08 17:14:50 | 006,037,504 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2006/08/23 18:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

========== Modules (SafeList) ==========

MOD - [2012/04/30 16:25:24 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Cougar\Desktop\OTL.exe
MOD - [2010/08/31 10:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll

========== Win32 Services (SafeList) ==========

SRV - [2012/05/03 22:19:40 | 000,932,736 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.0.2\ToolbarUpdater.exe -- (vToolbarUpdater11.0.2)
SRV - [2012/04/30 09:44:38 | 005,106,744 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012/04/20 20:19:00 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/02/14 04:53:38 | 000,193,288 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - [2012/01/03 08:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/04/08 10:17:40 | 000,176,848 | ---- | M] (iWin Inc.) [Disabled | Stopped] -- C:\Program Files\iWin Games\iWinTrusted.exe -- (iWinTrusted)
SRV - [2011/02/22 08:33:09 | 000,797,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2010/03/18 17:47:22 | 000,035,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe -- (aspnet_state)
SRV - [2010/03/18 14:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/18 14:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2010/03/18 14:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpActivator)
SRV - [2010/03/18 14:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetPipeActivator)
SRV - [2010/03/18 14:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetMsmqActivator)
SRV - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/11/09 15:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2008/04/15 19:54:42 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®
SRV - [2008/01/20 21:33:00 | 000,272,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2006/08/23 18:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2005/11/14 03:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\SYSPREP\Drivers\ioport.sys -- (IO_Memory)
DRV - [2012/05/04 16:14:34 | 000,477,240 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2012/04/19 04:50:26 | 000,024,896 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\avgidshx.sys -- (AVGIDSHX)
DRV - [2012/03/19 05:17:28 | 000,301,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2012/02/22 05:25:32 | 000,235,216 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2012/01/31 04:46:50 | 000,031,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/12/23 13:32:14 | 000,041,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/12/23 13:32:08 | 000,017,232 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2011/12/23 13:32:06 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avgidsfilterx.sys -- (AVGIDSFilter)
DRV - [2011/12/23 13:32:00 | 000,139,856 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2011/10/13 12:01:26 | 009,037,312 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx)
DRV - [2010/11/09 21:49:50 | 004,323,040 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvuvc.sys -- (LVUVC) Logitech Webcam C160(UVC)
DRV - [2010/11/09 21:48:12 | 000,283,744 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lvrs.sys -- (LVRS)
DRV - [2010/06/23 10:21:32 | 000,259,176 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2010/05/07 18:43:30 | 000,025,824 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LVPr2Mon.sys -- (LVPr2Mon)
DRV - [2009/08/18 23:29:50 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2009/08/18 23:29:49 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009/06/10 06:52:58 | 000,347,648 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTL8187B.sys -- (RTL8187B)
DRV - [2009/04/10 23:42:54 | 000,073,216 | -H-- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
DRV - [2009/03/11 18:17:20 | 000,063,488 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RTSTOR.sys -- (RTSTOR)
DRV - [2008/08/14 11:40:40 | 000,203,312 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SynTP.sys -- (SynTP)
DRV - [2008/07/18 20:52:16 | 000,279,376 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\tos_sps32.sys -- (tos_sps32)
DRV - [2008/04/15 19:53:44 | 000,312,344 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\iaStor.sys -- (iaStor)
DRV - [2008/04/09 20:00:04 | 002,095,512 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2008/01/20 21:32:53 | 000,149,560 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2008/01/20 21:32:53 | 000,031,288 | ---- | M] (LSI Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2008/01/20 21:32:52 | 000,386,616 | ---- | M] (LSI Corporation, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasr.sys -- (MegaSR)
DRV - [2008/01/20 21:32:52 | 000,101,432 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2008/01/20 21:32:52 | 000,074,808 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2008/01/20 21:32:52 | 000,040,504 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2008/01/20 21:32:51 | 000,300,600 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2008/01/20 21:32:51 | 000,089,656 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2008/01/20 21:32:50 | 001,122,360 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2008/01/20 21:32:50 | 000,118,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel®
DRV - [2008/01/20 21:32:50 | 000,079,928 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2008/01/20 21:32:49 | 000,235,064 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2008/01/20 21:32:49 | 000,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2008/01/20 21:32:49 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2008/01/20 21:32:49 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2008/01/20 21:32:49 | 000,079,416 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2008/01/20 21:32:48 | 000,342,584 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2008/01/20 21:32:48 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2008/01/20 21:32:47 | 000,102,968 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2008/01/20 21:32:47 | 000,045,112 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2008/01/20 21:32:46 | 000,422,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2008/01/20 21:32:45 | 000,238,648 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2008/01/20 21:32:21 | 000,020,024 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2008/01/20 21:32:21 | 000,019,000 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2008/01/20 21:32:21 | 000,017,464 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2008/01/18 11:22:00 | 000,009,216 | ---- | M] (Inventec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\sysprep\PEDRV.SYS -- (SVRPEDRV)
DRV - [2007/11/09 16:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\TVALZ_O.SYS -- (TVALZ)
DRV - [2007/04/23 12:50:50 | 000,025,896 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | System | Running] -- C:\Windows\System32\drivers\RtlProt.sys -- (RtlProt)
DRV - [2006/11/20 16:11:14 | 000,007,168 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\FwLnk.sys -- (FwLnk)
DRV - [2006/11/09 01:32:00 | 000,219,264 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\kr10i.sys -- (KR10I)
DRV - [2006/11/09 01:31:00 | 000,211,072 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\kr10n.sys -- (KR10N)
DRV - [2006/11/02 04:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006/11/02 04:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006/11/02 04:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006/11/02 04:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006/11/02 04:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006/11/02 04:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006/11/02 04:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006/11/02 04:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006/11/02 04:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006/11/02 04:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006/11/02 04:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006/11/02 03:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006/11/02 03:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006/11/02 03:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006/11/02 03:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006/11/02 03:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006/11/02 03:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006/11/02 02:41:50 | 000,983,552 | ---- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2006/11/02 02:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co...=TSHB&bmod=TSHB

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Google Custom Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "about:blank"
FF - prefs.js..keyword.URL: "http://search.musicf...results.php?q="

FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/04/23 22:29:41 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/04/23 22:29:34 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\ [2012/05/15 13:47:15 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Program Files\AVG\AVG2012\Firefox\DoNotTrack\ [2012/05/03 22:17:26 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\11.0.0.9\ [2012/05/03 22:20:02 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/05/03 23:52:41 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2012/05/03 23:52:59 | 000,000,000 | ---D | M] -- C:\Users\Cougar\AppData\Roaming\mozilla\Extensions
[2012/05/11 12:02:34 | 000,000,000 | ---D | M] -- C:\Users\Cougar\AppData\Roaming\mozilla\Firefox\Profiles\nt02ihvk.default\extensions
[2012/05/03 23:52:41 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2012/04/20 20:19:34 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2012/04/20 20:18:25 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml
[2012/04/20 20:18:25 | 000,002,040 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2012/05/11 12:16:01 | 000,442,053 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 15215 more lines...
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll ()
O2 - BHO: (no name) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - No CLSID value found.
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.0.0.9\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {CD292324-974F-4224-D074-CACA427AA030} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {CD292324-974F-4224-D074-CACA427AA030} - No CLSID value found.
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\real\realplayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.0.2\ViProtocol.dll ()
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Users\Cougar\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Cougar\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 16:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG2012\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/05/15 22:03:18 | 000,000,000 | ---D | C] -- C:\Users\Cougar\Desktop\GrantPerms
[2012/05/15 13:05:43 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/05/13 13:46:35 | 000,000,000 | ---D | C] -- C:\b9e462909e6f9b436127
[2012/05/13 13:45:18 | 000,000,000 | ---D | C] -- C:\9cbea16dd19d6a77565dd0c0f0
[2012/05/12 20:41:49 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Resource Kits
[2012/05/12 16:31:27 | 000,000,000 | ---D | C] -- C:\Users\Cougar\SecurityScans
[2012/05/12 16:30:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Baseline Security Analyzer 2
[2012/05/12 00:17:14 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\GSplit
[2012/05/11 01:07:58 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\QuickScan
[2012/05/10 23:42:27 | 000,206,200 | ---- | C] (Sysinternals) -- C:\Users\Cougar\Desktop\Contig.exe
[2012/05/10 23:24:38 | 000,000,000 | R--D | C] -- C:\Users\Cougar\Desktop\Favorites
[2012/05/07 12:28:28 | 002,473,592 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Users\Cougar\Desktop\Procmon.exe
[2012/05/06 15:16:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2012/05/04 17:07:46 | 000,000,000 | ---D | C] -- C:\Windows\System32\x64
[2012/05/04 17:05:55 | 000,000,000 | ---D | C] -- C:\Intel
[2012/05/04 16:39:06 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\SystemRequirementsLab
[2012/05/04 16:18:29 | 000,000,000 | ---D | C] -- C:\Users\Cougar\{7e015dc6-6631-47f4-b276-bc8c65c2f401}
[2012/05/04 01:54:49 | 000,477,240 | ---- | C] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys
[2012/05/03 23:52:50 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\Mozilla
[2012/05/03 23:52:50 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Local\Mozilla
[2012/05/03 23:52:43 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/05/03 23:52:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/05/03 23:52:40 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012/05/03 23:40:02 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/05/03 23:40:02 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Local\temp
[2012/05/03 23:39:04 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/05/03 22:21:44 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\AVG2012
[2012/05/03 22:20:14 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Local\AVG Secure Search
[2012/05/03 22:19:41 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Secure Search
[2012/05/03 22:19:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVG Secure Search
[2012/05/03 22:19:35 | 000,000,000 | ---D | C] -- C:\Program Files\AVG Secure Search
[2012/05/03 22:16:41 | 000,000,000 | -H-D | C] -- C:\$AVG
[2012/05/02 19:35:28 | 000,000,000 | ---D | C] -- C:\Users\Cougar\Documents\C
[2012/04/30 21:48:27 | 000,000,000 | ---D | C] -- C:\!KillBox
[2012/04/30 21:47:48 | 000,093,696 | ---- | C] (Option^Explicit Software [email protected]) -- C:\Users\Cougar\Desktop\KillBox.exe
[2012/04/30 20:53:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Yahoo! Companion
[2012/04/30 20:53:14 | 000,000,000 | ---D | C] -- C:\Users\Cougar\AppData\Roaming\Yahoo!
[2012/04/30 19:43:01 | 000,061,440 | ---- | C] ( ) -- C:\Users\Cougar\Desktop\VEW.exe
[2012/04/30 19:07:48 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/04/30 18:21:02 | 000,419,488 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/04/30 18:12:59 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2012/04/30 17:57:06 | 002,074,160 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Cougar\Desktop\tdsskiller.exe
[2012/04/30 17:25:45 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dfsc.svs
[2012/04/30 17:02:46 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/04/30 17:02:46 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/04/30 17:02:46 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/04/30 17:02:38 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2012/04/30 16:48:33 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/04/30 16:37:52 | 004,479,797 | R--- | C] (Swearware) -- C:\Users\Cougar\Desktop\ComboFix.exe
[2012/04/30 16:25:05 | 004,731,392 | ---- | C] (AVAST Software) -- C:\Users\Cougar\Desktop\aswMBR.exe
[2012/04/30 16:24:56 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Cougar\Desktop\OTL.exe
[2012/04/29 23:48:00 | 000,388,608 | ---- | C] (Trend Micro Inc.) -- C:\Users\Cougar\Desktop\HijackThis.exe
[2012/04/29 22:21:34 | 000,000,000 | ---D | C] -- C:\ProgramData\529C50D8000435DB0020086B570F1C8B
[2012/04/25 03:26:03 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/04/25 03:26:02 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012/04/25 03:26:02 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2012/04/25 03:26:00 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/04/25 03:25:59 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/04/25 03:25:59 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/04/25 03:25:59 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/04/24 16:21:12 | 002,044,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/04/23 20:32:45 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/04/19 04:50:26 | 000,024,896 | ---- | C] (AVG Technologies CZ, s.r.o. ) -- C:\Windows\System32\drivers\avgidshx.sys
[2011/10/13 11:31:48 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/05/15 22:02:46 | 000,450,985 | ---- | M] () -- C:\Users\Cougar\Desktop\GrantPerms.zip
[2012/05/15 22:02:35 | 000,654,054 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/05/15 22:02:35 | 000,123,676 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/05/15 22:01:00 | 098,243,136 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2012/05/15 21:58:27 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/05/15 21:56:35 | 000,003,616 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/05/15 21:56:35 | 000,003,616 | ---- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/05/15 21:56:28 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/05/15 17:36:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/05/13 11:35:06 | 000,334,736 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/05/12 16:31:05 | 000,000,963 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Baseline Security Analyzer 2.2.lnk
[2012/05/11 12:16:01 | 000,442,053 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2012/05/07 17:55:46 | 000,024,005 | ---- | M] () -- C:\Windows\System32\drivers\AVG\iavichjg.avm
[2012/05/07 14:10:14 | 000,442,053 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts.20120511-121601.backup
[2012/05/07 13:22:12 | 000,419,488 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/05/07 13:22:12 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/05/07 12:29:06 | 002,473,592 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Users\Cougar\Desktop\Procmon.exe
[2012/05/06 15:42:07 | 000,011,054 | ---- | M] () -- C:\Users\Cougar\AppData\Roaming\wklnhst.dat
[2012/05/05 20:27:08 | 000,442,053 | R--- | M] () -- C:\Windows\System32\drivers\etc\hosts.20120507-141014.backup
[2012/05/04 17:16:28 | 000,014,640 | ---- | M] () -- C:\Windows\System32\results.xml
[2012/05/04 17:01:38 | 000,001,356 | ---- | M] () -- C:\Users\Cougar\AppData\Local\d3d9caps.dat
[2012/05/04 16:14:34 | 000,477,240 | ---- | M] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys
[2012/05/04 01:45:26 | 000,000,000 | ---- | M] () -- C:\Windows\ToDisc.INI
[2012/05/03 23:52:45 | 000,000,817 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/05/03 23:33:23 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.20120505-202708.backup
[2012/04/30 21:47:52 | 000,093,696 | ---- | M] (Option^Explicit Software [email protected]) -- C:\Users\Cougar\Desktop\KillBox.exe
[2012/04/30 21:20:35 | 004,479,797 | R--- | M] (Swearware) -- C:\Users\Cougar\Desktop\ComboFix.exe
[2012/04/30 20:53:09 | 000,000,937 | ---- | M] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2012/04/30 19:43:03 | 000,061,440 | ---- | M] ( ) -- C:\Users\Cougar\Desktop\VEW.exe
[2012/04/30 19:07:50 | 000,000,877 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/04/30 17:58:41 | 002,074,160 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Cougar\Desktop\tdsskiller.exe
[2012/04/30 17:52:56 | 000,000,818 | ---- | M] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\iWinGames - Shortcut.lnk
[2012/04/30 17:44:58 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.20120503-214633.backup
[2012/04/30 16:30:19 | 004,731,392 | ---- | M] (AVAST Software) -- C:\Users\Cougar\Desktop\aswMBR.exe
[2012/04/30 16:25:24 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Cougar\Desktop\OTL.exe
[2012/04/29 23:48:18 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\Cougar\Desktop\HijackThis.exe
[2012/04/29 23:00:17 | 000,000,920 | ---- | M] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk
[2012/04/19 04:50:26 | 000,024,896 | ---- | M] (AVG Technologies CZ, s.r.o. ) -- C:\Windows\System32\drivers\avgidshx.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/05/15 22:02:40 | 000,450,985 | ---- | C] () -- C:\Users\Cougar\Desktop\GrantPerms.zip
[2012/05/12 16:31:05 | 000,000,963 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Baseline Security Analyzer 2.2.lnk
[2012/05/10 23:42:33 | 000,492,488 | ---- | C] () -- C:\Users\Cougar\Desktop\PowerDefragmenter.exe
[2012/05/04 01:45:26 | 000,000,000 | ---- | C] () -- C:\Windows\ToDisc.INI
[2012/05/03 23:52:45 | 000,000,817 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/04/30 20:53:09 | 000,000,937 | ---- | C] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2012/04/30 19:07:50 | 000,000,877 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/04/30 17:52:56 | 000,000,818 | ---- | C] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\iWinGames - Shortcut.lnk
[2012/04/30 17:02:46 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/04/30 17:02:46 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/04/30 17:02:46 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/04/30 17:02:46 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/04/30 17:02:46 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/04/29 23:00:17 | 000,000,920 | ---- | C] () -- C:\Users\Cougar\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk
[2011/10/16 16:23:20 | 000,003,584 | ---- | C] () -- C:\Users\Cougar\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/05/01 03:01:38 | 000,001,356 | ---- | C] () -- C:\Users\Cougar\AppData\Local\d3d9caps.dat
[2010/11/28 16:58:07 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2010/11/09 21:45:30 | 010,871,128 | ---- | C] () -- C:\Windows\System32\LogiDPP.dll
[2010/11/09 21:45:20 | 000,316,248 | ---- | C] () -- C:\Windows\System32\DevManagerCore.dll
[2010/11/09 21:31:42 | 000,026,286 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2010/08/22 00:31:59 | 000,007,164 | ---- | C] () -- C:\Users\Cougar\AppData\Roaming\UserTile.png
[2010/07/04 13:40:26 | 000,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll
[2010/05/07 18:43:30 | 000,025,824 | ---- | C] () -- C:\Windows\System32\drivers\LVPr2Mon.sys
[2009/12/03 10:27:30 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2009/08/20 02:57:06 | 000,011,054 | ---- | C] () -- C:\Users\Cougar\AppData\Roaming\wklnhst.dat
[2009/08/18 23:29:49 | 000,278,984 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys
[2009/08/18 23:29:49 | 000,025,416 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys
[2009/08/18 19:58:32 | 000,000,013 | RHS- | C] () -- C:\Windows\System32\drivers\fbd.sys
[2009/08/18 19:58:29 | 000,000,004 | RHS- | C] () -- C:\Windows\System32\drivers\taishop.sys
[2009/08/03 16:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/07/23 04:47:32 | 000,131,072 | ---- | C] () -- C:\Windows\System32\EnumDevLib.dll
[2008/09/30 14:36:25 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI
[2008/09/30 14:25:14 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll
[2008/09/30 14:25:14 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll
[2008/09/30 14:25:14 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll
[2008/09/30 14:25:14 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll
[2008/09/30 14:25:14 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll
[2008/09/30 14:25:14 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll
[2008/06/12 20:59:22 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1502.dll
[2008/01/15 05:31:00 | 000,000,530 | ---- | C] () -- C:\Windows\System32\tx14_ic.ini
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2007/07/23 09:03:32 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2007/07/23 09:03:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2006/11/02 02:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/03/09 11:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[1997/06/13 20:56:08 | 000,056,832 | ---- | C] () -- C:\Windows\System32\iyvu9_32.dll

========== Custom Scans ==========

< MD5 for: ACTXPRXY.DLL >
[2008/01/20 21:34:44 | 000,326,656 | ---- | M] (Microsoft Corporation) MD5=8D78BA30DB4AE040A52EDEE725782715 -- C:\Windows\System32\actxprxy.dll
[2008/01/20 21:34:44 | 000,326,656 | ---- | M] (Microsoft Corporation) MD5=8D78BA30DB4AE040A52EDEE725782715 -- C:\Windows\winsxs\x86_microsoft-windows-activexproxy_31bf3856ad364e35_6.0.6001.18000_none_120e336fea4a5696\actxprxy.dll

< MD5 for: ATL.DLL >
[2009/07/17 09:39:28 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=0114F0D73BAC288C684C41E7EDC22255 -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6000.21088_none_a974fcc975e35390\atl.dll
[2009/07/17 09:35:11 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=35979494DABAF115F5FFA960830817DF -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6001.18293_none_aac1f52459f8aeb3\atl.dll
[2009/07/17 09:52:41 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=36C5C3CAB3B467BA68AE345C9B9DADC3 -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6000.16889_none_a8ec88265cc499db\atl.dll
[2009/07/17 08:54:43 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=409F36C8BD06FCE184631EB4142B009A -- C:\Windows\System32\atl.dll
[2009/07/17 08:54:43 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=409F36C8BD06FCE184631EB4142B009A -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6002.18070_none_acbb07ec57117d17\atl.dll
[2009/07/17 09:24:52 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=A6486396826C6CD276489109020DAE3E -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6001.22474_none_ab6233f773052d19\atl.dll
[2008/01/20 21:33:53 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=E3FAD509FEF3D6CFC524AEDAE54B7E16 -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6001.18000_none_ab203fc659b26ce7\atl.dll
[2009/07/17 09:15:48 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=FE997E098FF868B5734E8204FD26A49C -- C:\Windows\winsxs\x86_microsoft-windows-atl_31bf3856ad364e35_6.0.6002.22179_none_ad4da751702700f0\atl.dll

< MD5 for: BROWSEUI.DLL >
[2009/04/11 01:28:18 | 001,324,032 | ---- | M] (Microsoft Corporation) MD5=4504819D18FAC09B6108D8728467E5B2 -- C:\Windows\System32\browseui.dll
[2009/04/11 01:28:18 | 001,324,032 | ---- | M] (Microsoft Corporation) MD5=4504819D18FAC09B6108D8728467E5B2 -- C:\Windows\winsxs\x86_microsoft-windows-browseui_31bf3856ad364e35_6.0.6002.18005_none_32ce5abee3779868\browseui.dll
[2008/01/20 21:34:44 | 001,324,032 | ---- | M] (Microsoft Corporation) MD5=A3C1B75B0156D5B68B271C6FE0A5FDE7 -- C:\Windows\winsxs\x86_microsoft-windows-browseui_31bf3856ad364e35_6.0.6001.18000_none_30e2e1b2e655cd1c\browseui.dll

< MD5 for: CRYPTDLG.DLL >
[2006/11/02 04:46:03 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=498961DEAAC558A5D85F7596CBCA6DC3 -- C:\Windows\System32\cryptdlg.dll
[2006/11/02 04:46:03 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=498961DEAAC558A5D85F7596CBCA6DC3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptdlg-dll_31bf3856ad364e35_6.0.6000.16386_none_20519b261b2afec6\cryptdlg.dll

< MD5 for: DSSENH.DLL >
[2008/01/20 21:34:08 | 000,155,704 | ---- | M] (Microsoft Corporation) MD5=C8DBFEF835FF54467425C8F3ABCF7046 -- C:\Windows\System32\dssenh.dll
[2008/01/20 21:34:08 | 000,155,704 | ---- | M] (Microsoft Corporation) MD5=C8DBFEF835FF54467425C8F3ABCF7046 -- C:\Windows\winsxs\x86_microsoft-windows-d..ellman_software_csp_31bf3856ad364e35_6.0.6001.18000_none_3bf8bb8384e4ad56\dssenh.dll

< MD5 for: JSCRIPT.DLL >
[2011/04/22 17:50:01 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=10AF1BF5D0168D97BDF347B907288E8B -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20530_none_4350f01c4e2f3f83\jscript.dll
[2011/02/17 01:55:07 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=1789C88F7B034EE48FE0D4AE2EBDCE95 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.23141_none_662843b0262eeb31\jscript.dll
[2011/04/22 18:26:50 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=1DDEFA440B300CFAE8BE46049CE90EF4 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16430_none_42c7535135119fb9\jscript.dll
[2012/02/27 19:54:53 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=241B020AA7F0F03E6EF5E703406B9C6A -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20548_none_434e22804e30262c\jscript.dll
[2012/02/27 20:06:48 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=2978077B7DD5B5E24A0A7C0A75B08A5A -- C:\Windows\System32\jscript.dll
[2012/02/27 20:06:48 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=2978077B7DD5B5E24A0A7C0A75B08A5A -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16443_none_42bf8443351707af\jscript.dll
[2011/07/21 21:45:41 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=2D379DEB57C56205060B08537DF1CF81 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16434_none_42cb5479350e0515\jscript.dll
[2009/06/04 07:28:12 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=2FF61833BE4FDE938D71B2E7B2171844 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6000.21061_none_8143436c134b5473\jscript.dll
[2009/03/08 06:33:14 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=38FFEC2CD31441A6B57D7A0B490D7299 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.18702_none_65cb0af10cefc76a\jscript.dll
[2011/12/13 21:53:38 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=3A1C55C0C951F0FDC413D69F7ADF2278 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16441_none_42bd83af3518d501\jscript.dll
[2011/12/13 21:25:14 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=40EBC2C57B89174788B5F28A82EE6B7F -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20546_none_434c21ec4e31f37e\jscript.dll
[2009/06/04 07:07:01 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=462D705964D0E70DFDADDFCC3F5FAA6D -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6002.18045_none_84a021f2f466921d\jscript.dll
[2009/12/04 02:19:58 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=46E35CDEA68DFCE274BE2B51EB9F0D36 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.18869_none_65912f550d1a1d98\jscript.dll
[2011/11/03 17:34:59 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=4B65B4F93F63AA6DC1042A8AED99D093 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16440_none_42bc83653519bbaa\jscript.dll
[2009/06/04 07:33:30 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=4C7D274A0E5266C5EEDD9DE0DFE9B8D6 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.18266_none_82a50e96f74f910b\jscript.dll
[2008/05/08 16:59:28 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=65CA19ACB31DDB4B063BC0D731DC311B -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.18068_none_82a70b5ef74dc96b\jscript.dll
[2011/11/03 18:03:44 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=67CB2EEB51CAC741E7A313116D16E228 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20544_none_434a21584e33c0d0\jscript.dll
[2009/06/06 00:01:50 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=680A319B0FD31AC4D7D18A6D843244FE -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.18795_none_656cbc830d360ee8\jscript.dll
[2011/04/21 12:52:33 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=77A00A40A93894DFE90B910040A8D06A -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16421_none_42d3238735089d1f\jscript.dll
[2011/02/17 01:19:43 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=812B78D537E5BA9D8D25A66E20A37C35 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.19046_none_65a3a8570d0cca1a\jscript.dll
[2009/06/04 07:55:42 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=81ECD75F0237AD86995FC988299F5BDB -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6002.22146_none_852abf080d834b3e\jscript.dll
[2008/05/08 00:18:59 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=849FE82F794ADA8E0629FC7CEE2813C6 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.22175_none_8322d76010763921\jscript.dll
[2009/04/11 01:28:20 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=89333008D4204E561AD09DEC3E20760F -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6002.18005_none_84cb61a2f4462259\jscript.dll
[2011/08/31 21:24:47 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=8ABA7DBFC0DAE718245E4569AB0477F6 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.16437_none_42ce5557350b511a\jscript.dll
[2009/06/06 07:55:13 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=A363FD6BE90A57F52FC46B71A3E711A2 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.22886_none_66022984264aac18\jscript.dll
[2009/06/04 07:32:35 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=AC0128A385762756C346E42FA5E1697C -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.22443_none_83414c42105faa15\jscript.dll
[2011/07/21 20:45:33 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=DAEBDA7B49754F5BC183DEC7DEB4A65D -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20534_none_4354f1444e2ba4df\jscript.dll
[2009/12/04 11:15:24 | 000,726,528 | ---- | M] (Microsoft Corporation) MD5=DD2744391CA7D55270C240A0CDFFBEB2 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_8.0.6001.22960_none_6611c986263fd953\jscript.dll
[2011/08/31 20:53:42 | 000,716,800 | ---- | M] (Microsoft Corporation) MD5=DE625D6528DABA10EB223A5102761E20 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_9.1.8112.20537_none_4357f2224e28f0e4\jscript.dll
[2009/06/04 07:40:47 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=F45BC6A78A7A732330949E4DE1EF84A8 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6000.16865_none_80bdcfa6fa29e6c3\jscript.dll
[2008/01/20 21:34:49 | 000,512,000 | ---- | M] (Microsoft Corporation) MD5=FFC4ED6E2393316CF218D5454553CB6E -- C:\Windows\winsxs\x86_microsoft-windows-scripting-jscript_31bf3856ad364e35_6.0.6001.18000_none_82dfe896f724570d\jscript.dll

< MD5 for: MSHTML.DLL >
[2011/08/31 21:36:37 | 012,275,200 | ---- | M] (Microsoft Corporation) MD5=04E0CD31A63DFC0D73725A3D1768FB5A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16437_none_d3317f5c60107529\mshtml.dll
[2010/12/18 02:13:16 | 005,962,240 | ---- | M] (Microsoft Corporation) MD5=0DA63A2B1D6D55E6005F4552D22E7BBE -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.23111_none_f6abdd79511bbb6d\mshtml.dll
[2009/12/18 07:23:43 | 003,602,944 | ---- | M] (Microsoft Corporation) MD5=0EE8B3A112C58EB71951DA5C77E7C01A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.21184_none_1193d05d3e5df990\mshtml.dll
[2008/04/24 23:23:07 | 003,591,680 | ---- | M] (Microsoft Corporation) MD5=13A0AA60B35A6A13152A759536C10203 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16681_none_110754e02542e30a\mshtml.dll
[2010/09/08 00:57:52 | 005,957,120 | ---- | M] (Microsoft Corporation) MD5=1704FC902E1B53EF87593D60FD312A55 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18975_none_f5e58a2c382af563\mshtml.dll
[2008/06/26 22:47:31 | 003,594,240 | ---- | M] (Microsoft Corporation) MD5=1D73575D8A0F368CD8FE3212E8928743 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.20868_none_11ad956f3e49f97a\mshtml.dll
[2008/06/26 22:48:28 | 003,578,880 | ---- | M] (Microsoft Corporation) MD5=256E9D588ACB7F104123947297A9302A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22212_none_13c3e1f53b4d66ac\mshtml.dll
[2008/06/26 23:15:24 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=2B59221D1B9D9FB1D202A21AFE8E410A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18099_none_12eac5ea226a5aa4\mshtml.dll
[2008/04/24 23:35:14 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=2C2A85BBAB617EDDD19119F66C05B1C3 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18063_none_130533f222576ec7\mshtml.dll
[2009/12/16 06:42:38 | 003,600,896 | ---- | M] (Microsoft Corporation) MD5=360A4FA3715C63086AE00C108E592E08 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6002.18167_none_14efae9a1f7a1de3\mshtml.dll
[2008/04/24 23:07:54 | 003,593,728 | ---- | M] (Microsoft Corporation) MD5=38EC352C600EB037FE02749F8C170B6B -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.20823_none_11d3d3ad3e2e0b03\mshtml.dll
[2008/02/20 23:43:36 | 003,591,680 | ---- | M] (Microsoft Corporation) MD5=3AE6072A86AD8049DD133DB40F73F0C8 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16643_none_113495242520a5f4\mshtml.dll
[2011/04/22 18:36:19 | 012,269,056 | ---- | M] (Microsoft Corporation) MD5=3F63F95C998F7E1AF409BC74E83D45E5 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16430_none_d32a7d566016c3c8\mshtml.dll
[2010/12/18 01:23:15 | 005,961,216 | ---- | M] (Microsoft Corporation) MD5=42B87D22378C1EF98F3B6F410C2670AA -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.19019_none_f62a42fe37f6e65b\mshtml.dll
[2008/01/20 21:33:25 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=48E05FD07045BB2E5CFC43C970CAF1E7 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18000_none_1343129c22297b1c\mshtml.dll
[2011/12/13 22:30:38 | 012,282,368 | ---- | M] (Microsoft Corporation) MD5=497C9C3DB953A60EC4F43A097E15F75E -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16441_none_d320adb4601df910\mshtml.dll
[2011/04/21 12:52:36 | 012,268,544 | ---- | M] (Microsoft Corporation) MD5=4DEF8126CABAA6CDC12103CD74C6A919 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16421_none_d3364d8c600dc12e\mshtml.dll
[2011/11/03 18:02:45 | 012,279,808 | ---- | M] (Microsoft Corporation) MD5=66C0AEE61D1C5C35BF1B4642A153B114 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16440_none_d31fad6a601edfb9\mshtml.dll
[2011/02/22 02:14:18 | 005,964,800 | ---- | M] (Microsoft Corporation) MD5=6D30A34B029176D86EC04ECE6C0F62B1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.23143_none_f68d6e49513241ee\mshtml.dll
[2009/12/18 07:22:51 | 003,587,584 | ---- | M] (Microsoft Corporation) MD5=6EF8BF95A1CE83ECA056524A02B29E25 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22585_none_137b39113b836dbd\mshtml.dll
[2009/12/18 08:02:57 | 003,585,024 | ---- | M] (Microsoft Corporation) MD5=804BEB97942AFDD90A0418DDB4EF8342 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18385_none_12f19a602265d0cc\mshtml.dll
[2011/04/22 17:59:20 | 012,269,056 | ---- | M] (Microsoft Corporation) MD5=858AD7EC121DBC3D39D4ABFE2E7E789C -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20530_none_d3b41a2179346392\mshtml.dll
[2009/12/18 07:50:17 | 003,599,360 | ---- | M] (Microsoft Corporation) MD5=8A49DC126EEB62C030782A9CBDA3A99E -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16982_none_11085adc2541f3d6\mshtml.dll
[2011/08/31 21:07:19 | 012,275,200 | ---- | M] (Microsoft Corporation) MD5=8C93AED0A332209434B62162D03C38C9 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20537_none_d3bb1c27792e14f3\mshtml.dll
[2008/04/24 23:19:50 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=92A81ADE1E576A53176777260190F3A1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22167_none_1392d1e53b7173ed\mshtml.dll
[2008/02/21 23:50:05 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=977C356E655F357665310C0C95D0DBD4 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22120_none_13b70f8f3b5752c8\mshtml.dll
[2010/11/02 00:58:14 | 005,959,168 | ---- | M] (Microsoft Corporation) MD5=9AC463498C480E9EB3C63DC21E4F29C8 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18999_none_f5d3eb7c383792a1\mshtml.dll
[2008/02/21 23:59:30 | 003,578,368 | ---- | M] (Microsoft Corporation) MD5=9C4091CD321D6D8BCF9842F109EE574B -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18023_none_133073a22236ff03\mshtml.dll
[2010/11/02 02:08:01 | 005,960,704 | ---- | M] (Microsoft Corporation) MD5=9FCC1F6457A84902EA7545B568B5AEDB -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.23091_none_f6555c33515c9dce\mshtml.dll
[2011/11/03 18:35:27 | 012,279,808 | ---- | M] (Microsoft Corporation) MD5=A21B983E40578D0E6CFA9864AC4E1219 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20544_none_d3ad4b5d7938e4df\mshtml.dll
[2011/12/13 21:41:17 | 012,282,368 | ---- | M] (Microsoft Corporation) MD5=A29CFD4B9F6F2BBE06C8D64B6D07F1D4 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20546_none_d3af4bf17937178d\mshtml.dll
[2009/04/11 01:28:20 | 003,596,288 | ---- | M] (Microsoft Corporation) MD5=A4D04D404AFC1D30EDA01EE50D27AA51 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6002.18005_none_152e8ba81f4b4668\mshtml.dll
[2011/02/22 01:17:40 | 005,962,240 | ---- | M] (Microsoft Corporation) MD5=AA411AEF2476D251078F9C9F0478C142 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.19048_none_f608d2f0381020d7\mshtml.dll
[2008/06/26 22:54:45 | 003,592,192 | ---- | M] (Microsoft Corporation) MD5=B964D58A6698C8FCA93447ADBDE18820 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16711_none_1153063a250a1c9a\mshtml.dll
[2012/02/27 20:21:47 | 012,281,856 | ---- | M] (Microsoft Corporation) MD5=B9E083B14B1994F1255983F2DF31C7DF -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20548_none_d3b14c8579354a3b\mshtml.dll
[2010/01/02 09:51:38 | 005,945,856 | ---- | M] (Microsoft Corporation) MD5=BE6120F3D7A853039B5437AC9E1986C1 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.22973_none_f66d247d514a6558\mshtml.dll
[2009/03/08 06:41:15 | 005,937,152 | ---- | M] (Microsoft Corporation) MD5=D469A0EBA2EF5C6BEE8065B7E3196E5E -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18702_none_f62e34f637f4eb79\mshtml.dll
[2010/01/02 01:33:34 | 005,942,784 | ---- | M] (Microsoft Corporation) MD5=DF4D546A6E1C8D0F4FC10FCC9E422763 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18882_none_f5d7b77c3835c828\mshtml.dll
[2011/07/21 21:54:04 | 012,273,664 | ---- | M] (Microsoft Corporation) MD5=E6D5C7E4AAC0C682169AA5021386EFF3 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16434_none_d32e7e7e60132924\mshtml.dll
[2010/09/08 01:22:01 | 005,958,656 | ---- | M] (Microsoft Corporation) MD5=E993FB26BFAC2887BFE8DDAC4DC9180A -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.23067_none_f67bcdb3513ee205\mshtml.dll
[2008/02/21 23:50:17 | 003,593,728 | ---- | M] (Microsoft Corporation) MD5=ED2588D1864319C54E79443130A8004B -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.20777_none_11a1c3533e52feed\mshtml.dll
[2009/12/17 07:00:36 | 003,603,456 | ---- | M] (Microsoft Corporation) MD5=F1F3D1793483B394835DAB3D4C326CDB -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6002.22290_none_1551d99b38b6601f\mshtml.dll
[2011/07/21 20:53:49 | 012,273,664 | ---- | M] (Microsoft Corporation) MD5=F2966190D2C20C585A730F9C0B3C7373 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.20534_none_d3b81b497930c8ee\mshtml.dll
[2012/02/27 20:52:25 | 012,281,856 | ---- | M] (Microsoft Corporation) MD5=F82BF2CB075B49E9FAB5FF213C45C020 -- C:\Windows\ERDNT\cache\mshtml.dll
[2012/02/27 20:52:25 | 012,281,856 | ---- | M] (Microsoft Corporation) MD5=F82BF2CB075B49E9FAB5FF213C45C020 -- C:\Windows\System32\mshtml.dll
[2012/02/27 20:52:25 | 012,281,856 | ---- | M] (Microsoft Corporation) MD5=F82BF2CB075B49E9FAB5FF213C45C020 -- C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_9.1.8112.16443_none_d322ae48601c2bbe\mshtml.dll

< MD5 for: MSXML3.DLL >
[2010/06/11 10:30:23 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=12A4E29C7F0C1B1E89541830FD0E52F1 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18490_none_880cf8e6971f1251\msxml3.dll
[2010/06/11 11:15:06 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=2B338AB80CF27D14CB75D94E294A1AB8 -- C:\Windows\System32\msxml3.dll
[2010/06/11 11:15:06 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=2B338AB80CF27D14CB75D94E294A1AB8 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18269_none_8a1cdf129424f4d8\msxml3.dll
[2010/06/11 11:31:45 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=3DC3074B0A736E086AC66DE6AB0786BA -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22422_none_8acabb6dad2870a4\msxml3.dll
[2009/04/11 01:28:22 | 001,183,232 | ---- | M] (Microsoft Corporation) MD5=5942F272BBEF5A77BF1DCE13BB5FAC8E -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18005_none_8a59b9a693f7ed88\msxml3.dll
[2009/08/11 11:58:29 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=8A728F413C953A2CD9ABA02C0D21A7F0 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.22196_none_8a83076fad5da222\msxml3.dll
[2008/09/04 23:48:28 | 001,194,496 | ---- | M] (Microsoft Corporation) MD5=8FC34AF6DA61DF291FB48DACECB8AF83 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16745_none_8661c59c99cb7ce9\msxml3.dll
[2008/01/20 21:34:18 | 001,190,400 | ---- | M] (Microsoft Corporation) MD5=8FCDFB955F5BFD05E45C035A5FD2B7AB -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18000_none_886e409a96d6223c\msxml3.dll
[2009/08/10 07:51:16 | 001,260,032 | ---- | M] (Microsoft Corporation) MD5=91070AD16D21818E4E1A46605479B2C2 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.21103_none_87147d71b2caa7d1\msxml3.dll
[2009/08/11 10:25:41 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=A858B6604E4074233ADB3EB3FAF632E9 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22492_none_8898945fb03ae7a2\msxml3.dll
[2008/09/05 00:08:23 | 001,191,936 | ---- | M] (Microsoft Corporation) MD5=B1ABC3B1953BE70FE78045C401A03B50 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22258_none_88c9d1ffb015159a\msxml3.dll
[2009/08/10 06:00:37 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=B9CA2EA9DCA1A0EEE34FA806BBCF7A40 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18306_none_8874480896d0b1bb\msxml3.dll
[2010/06/11 10:25:07 | 001,257,472 | ---- | M] (Microsoft Corporation) MD5=C25D39750D692573AF2153E0E6E03F5D -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.22709_none_8900eb63afeb94ff\msxml3.dll
[2008/09/05 00:14:05 | 001,191,936 | ---- | M] (Microsoft Corporation) MD5=C41551DD53FC9B7BE77AC5901E640E16 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6001.18136_none_8853d47896e90b40\msxml3.dll
[2009/08/10 08:05:23 | 001,260,032 | ---- | M] (Microsoft Corporation) MD5=C72DC4848F94A84BDBAE3B1080086316 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.16903_none_868b088499acd4c5\msxml3.dll
[2009/08/11 11:44:26 | 001,248,768 | ---- | M] (Microsoft Corporation) MD5=E82AAC9B68DD4345821C80B111691F10 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6002.18087_none_8a053ada9436ffbe\msxml3.dll
[2008/09/04 23:47:44 | 001,194,496 | ---- | M] (Microsoft Corporation) MD5=F747633B7D3BCC9950497AA1E8E4BF76 -- C:\Windows\winsxs\x86_microsoft-windows-msxml30_31bf3856ad364e35_6.0.6000.20910_none_8706d29fb2d54754\msxml3.dll

< MD5 for: MSXML6.DLL >
[2009/08/10 07:51:17 | 001,409,536 | ---- | M] (Microsoft Corporation) MD5=1A9EF4579A0F253E441EC31CB8D39B05 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.21103_none_87143919b2caf4b4\msxml6.dll
[2009/04/11 01:28:22 | 001,336,320 | ---- | M] (Microsoft Corporation) MD5=376099B0E17AA5B2157FF0C2B66F072A -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6002.18005_none_8a59754e93f83a6b\msxml6.dll
[2009/08/10 08:05:24 | 001,406,464 | ---- | M] (Microsoft Corporation) MD5=473DF61261C234A4A4C577F3631B9327 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.16903_none_868ac42c99ad21a8\msxml6.dll
[2008/09/09 22:26:42 | 001,341,440 | ---- | M] (Microsoft Corporation) MD5=6934268850461EC06BEFEC87CD7CB479 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.20913_none_87098f25b2d2e03c\msxml6.dll
[2009/08/11 11:58:29 | 001,401,856 | ---- | M] (Microsoft Corporation) MD5=9418F45FD9793B047FFB8771CC19AF83 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6002.22196_none_8a82c317ad5def05\msxml6.dll
[2008/09/09 22:25:00 | 001,341,440 | ---- | M] (Microsoft Corporation) MD5=9AC203B127B9FD1789D356DACEDE9A32 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6000.16747_none_866381d899c9fc7a\msxml6.dll
[2009/08/11 11:44:26 | 001,401,856 | ---- | M] (Microsoft Corporation) MD5=BDAE82BFE54B38792665D20486600177 -- C:\Windows\System32\msxml6.dll
[2009/08/11 11:44:26 | 001,401,856 | ---- | M] (Microsoft Corporation) MD5=BDAE82BFE54B38792665D20486600177 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6002.18087_none_8a04f68294374ca1\msxml6.dll
[2008/09/09 22:27:55 | 001,334,272 | ---- | M] (Microsoft Corporation) MD5=C103FD1C26EAD8D3E37E666E8C7E662B -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.22261_none_88b7bbb5b023cd0d\msxml6.dll
[2009/08/11 10:26:10 | 001,401,344 | ---- | M] (Microsoft Corporation) MD5=CA915D7C7294FA09CBF4C6B7DB060560 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.22492_none_88985007b03b3485\msxml6.dll
[2008/01/20 21:34:18 | 001,332,224 | ---- | M] (Microsoft Corporation) MD5=CB0CBFD13FDAADF55B644C505675173F -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.18000_none_886dfc4296d66f1f\msxml6.dll
[2009/08/10 06:01:00 | 001,399,296 | ---- | M] (Microsoft Corporation) MD5=FAED2BB920F8C729693A517394C87DD0 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.18306_none_887403b096d0fe9e\msxml6.dll
[2008/09/09 22:40:14 | 001,334,272 | ---- | M] (Microsoft Corporation) MD5=FF52AC9A9E29F08D6D8B86DC33522099 -- C:\Windows\winsxs\x86_microsoft-windows-msxml60_31bf3856ad364e35_6.0.6001.18138_none_885590b496e78ad1\msxml6.dll

< MD5 for: OLE32.DLL >
[2008/01/20 21:34:47 | 001,315,328 | ---- | M] (Microsoft Corporation) MD5=3B634E4BE373D6D987EBF906B43FAAB3 -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6001.18000_none_ac1da75bf2516084\ole32.dll
[2010/06/28 11:29:14 | 001,315,840 | ---- | M] (Microsoft Corporation) MD5=64A319477AF21806B8A17E8A3A3FF8BC -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6001.22720_none_ac91afb30b7f271a\ole32.dll
[2010/06/28 12:37:08 | 001,316,864 | ---- | M] (Microsoft Corporation) MD5=7C6F74A11FCF5745B36CB8085B7DE3FB -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.22433_none_ae70528d08aae434\ole32.dll
[2010/06/28 12:00:21 | 001,316,864 | ---- | M] (Microsoft Corporation) MD5=9586E7CB2255A8B097A7E4538202585E -- C:\Windows\ERDNT\cache\ole32.dll
[2010/06/28 11:15:53 | 001,315,840 | ---- | M] (Microsoft Corporation) MD5=AA406846DD60E3A4536DBAAB4037B685 -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6001.18498_none_abc461f7f2931b51\ole32.dll
[2009/04/11 01:28:23 | 001,316,864 | ---- | M] (Microsoft Corporation) MD5=C50A0AB19094BC362FBA69E105EBCCFD -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.18005_none_ae092067ef732bd0\ole32.dll
[2010/06/28 12:00:21 | 001,316,864 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\ole32.dll
[2010/06/28 12:00:21 | 001,316,864 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-com-base-qfe-ole32_31bf3856ad364e35_6.0.6002.18277_none_adbf7553efaa1c63\ole32.dll

< MD5 for: OLEAUT32.DLL >
[2008/01/20 21:34:50 | 000,563,200 | ---- | M] (Microsoft Corporation) MD5=03E0777D4D01B22FA7C6CC6E9AD335DF -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6001.18000_none_bd002a8dfb7a3328\oleaut32.dll
[2008/01/20 21:14:09 | 000,559,104 | ---- | M] (Microsoft Corporation) MD5=0C9A043D49A6ED91B8BAE0F66785272F -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6000.20734_none_bb871a171785fb30\oleaut32.dll
[1998/12/23 02:00:00 | 000,598,288 | ---- | M] (Microsoft Corporation) MD5=2B4CBA977231E71FF44A765BDF7CECA6 -- C:\Program Files\Ulead Systems\DVD MovieFactory for TOSHIBA\Ulead DVD MovieFactory 5\OLEAUT32.DLL
[2010/12/20 11:41:25 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=47D00E69EA69332C9A756424D5D87CDC -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.22551_none_bf3b373911e5b933\oleaut32.dll
[2008/01/20 21:14:09 | 000,558,080 | ---- | M] (Microsoft Corporation) MD5=7924BCCE665AC92FC04CD45A46FE3E3D -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6000.16609_none_bb22ee81fe4b8646\oleaut32.dll
[2010/12/20 10:26:38 | 000,563,200 | ---- | M] (Microsoft Corporation) MD5=8DEFDCF8F2C5871CB7C436A6FBD86017 -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6001.22816_none_bd850673149a72fe\oleaut32.dll
[2011/08/29 13:51:07 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=9F793B01FDE3E2888306C97DC7F704A7 -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.22706_none_bf764c1311b8a67f\oleaut32.dll
[2011/08/25 11:14:01 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=B218342214D9BBA0F54EA12BA2E9278C -- C:\Windows\System32\oleaut32.dll
[2011/08/25 11:14:01 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=B218342214D9BBA0F54EA12BA2E9278C -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.18508_none_beeeadf5f8993c3c\oleaut32.dll
[2009/04/11 01:28:23 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=CA85552B1A307CB03FF1A1D2D12CB1C5 -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.18005_none_beeba399f89bfe74\oleaut32.dll
[2010/12/20 11:35:04 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=DE4CD76C254E143F40E62952788D3BE7 -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6002.18357_none_beb79a43f8c2b44c\oleaut32.dll
[2010/12/20 10:39:14 | 000,563,200 | ---- | M] (Microsoft Corporation) MD5=FA6BD25A5A65A6FF5BE4385098E3BDEF -- C:\Windows\winsxs\x86_microsoft-windows-ole-automation_31bf3856ad364e35_6.0.6001.18565_none_bcc455f5fba64b44\oleaut32.dll

< MD5 for: QMGR.DLL >
[2008/01/20 21:34:49 | 000,758,272 | ---- | M] (Microsoft Corporation) MD5=02ED7B4DBC2A3232A389106DA7515C3D -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6001.18000_none_2390c4ecf9720b8c\qmgr.dll
[2009/04/11 01:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\Windows\ERDNT\cache\qmgr.dll
[2009/04/11 01:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\Windows\System32\qmgr.dll
[2009/04/11 01:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) MD5=93952506C6D67330367F7E7934B6A02F -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.0.6002.18005_none_257c3df8f693d6d8\qmgr.dll

< MD5 for: QMGRPRXY.DLL >
[2006/11/02 04:46:12 | 000,020,480 | ---- | M] (Microsoft Corporation) MD5=10F13FFF542FEC4A2C4FA734EEBE56B9 -- C:\Windows\System32\qmgrprxy.dll
[2006/11/02 04:46:12 | 000,020,480 | ---- | M] (Microsoft Corporation) MD5=10F13FFF542FEC4A2C4FA734EEBE56B9 -- C:\Windows\winsxs\x86_microsoft-windows-bits-qmgrproxy_31bf3856ad364e35_6.0.6000.16386_none_f33db9b80636b12a\qmgrprxy.dll

< MD5 for: RSAENH.DLL >
[2008/01/20 21:34:26 | 000,242,744 | ---- | M] (Microsoft Corporation) MD5=5178D99B1CBD1C9D310904417E2C5A11 -- C:\Windows\winsxs\x86_microsoft-windows-rsaenh-dll_31bf3856ad364e35_6.0.6001.18000_none_5fc70fc7b14478d4\rsaenh.dll
[2009/04/11 01:27:47 | 000,241,128 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\rsaenh.dll
[2009/04/11 01:27:47 | 000,241,128 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-rsaenh-dll_31bf3856ad364e35_6.0.6002.18005_none_61b288d3ae664420\rsaenh.dll

< MD5 for: SCRRUN.DLL >
[2008/05/08 00:21:52 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=2029EBAD363A1D349EF87342EDD07217 -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.22175_none_48ab41df19abd38f\scrrun.dll
[2008/01/20 21:33:12 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=242F6DDB36425B8DE18B5FD9F7643767 -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.18000_none_486853160059f17b\scrrun.dll
[2009/04/11 01:28:24 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=3DB1530CDD7AEF2BCFA6FB77D097CDDA -- C:\Windows\System32\scrrun.dll
[2009/04/11 01:28:24 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=3DB1530CDD7AEF2BCFA6FB77D097CDDA -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6002.18005_none_4a53cc21fd7bbcc7\scrrun.dll
[2008/05/08 16:59:32 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=83433ECFB05E44AB1529004CCA561FE9 -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.18068_none_482f75de008363d9\scrrun.dll
[2001/06/26 17:39:42 | 000,151,601 | R--- | M] (Microsoft Corporation) MD5=9B6BFD23386A57C81536B7B4305998D6 -- C:\Windows\Installer\$PatchCache$\Managed\049634E8449A76D44AB581672EB39B0C\9.8.3\scrrun.dll

< MD5 for: SHDOCVW.DLL >
[2011/01/20 11:07:03 | 001,075,712 | ---- | M] (Microsoft Corporation) MD5=167AC31450C0C53A01FA1491E94D7678 -- C:\Windows\System32\shdocvw.dll
[2011/01/20 11:07:03 | 001,075,712 | ---- | M] (Microsoft Corporation) MD5=167AC31450C0C53A01FA1491E94D7678 -- C:\Windows\winsxs\x86_microsoft-windows-shdocvw_31bf3856ad364e35_6.0.6002.18392_none_e8fc1c190953a005\shdocvw.dll
[2009/04/11 01:28:24 | 001,068,032 | ---- | M] (Microsoft Corporation) MD5=2AA4117EE5F4765AD8404DCF9D552C71 -- C:\Windows\winsxs\x86_microsoft-windows-shdocvw_31bf3856ad364e35_6.0.6002.18005_none_e96066910907f91c\shdocvw.dll
[2011/01/20 11:11:04 | 001,075,712 | ---- | M] (Microsoft Corporation) MD5=7C91E76F3021DD5397A3065DCA72952F -- C:\Windows\winsxs\x86_microsoft-windows-shdocvw_31bf3856ad364e35_6.0.6002.22573_none_e99c5aec22601e6b\shdocvw.dll
[2008/01/20 21:33:15 | 001,067,520 | ---- | M] (Microsoft Corporation) MD5=86B89709BDFC7A59D566590CC30CDBB1 -- C:\Windows\winsxs\x86_microsoft-windows-shdocvw_31bf3856ad364e35_6.0.6001.18000_none_e774ed850be62dd0\shdocvw.dll

< MD5 for: SHELL32.DLL >
[2011/01/21 10:04:53 | 011,587,584 | ---- | M] (Microsoft Corporation) MD5=028EF93B746FF370DFE35711A7569647 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22839_none_6c9b67c92b29b17c\shell32.dll
[2011/01/21 10:46:32 | 011,582,464 | ---- | M] (Microsoft Corporation) MD5=048B65EC931A39A5F42016BE04775274 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18588_none_6bdab74c123589c2\shell32.dll
[2011/01/21 11:27:57 | 011,588,096 | ---- | M] (Microsoft Corporation) MD5=221565A0217045A61D179B438BC4AC8A -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.22574_none_6e51988f2874f7b1\shell32.dll
[2009/07/10 07:06:47 | 011,321,856 | ---- | M] (Microsoft Corporation) MD5=276AA16A23029F559BAB104011F97340 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.21081_none_6a76e5db2e332307\shell32.dll
[2009/07/10 06:47:42 | 011,584,512 | ---- | M] (Microsoft Corporation) MD5=32C0C48A029F5EB94A609CE5F2D43BEB -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18063_none_6dd1c3ce0f502e03\shell32.dll
[2008/01/20 21:33:18 | 011,580,416 | ---- | M] (Microsoft Corporation) MD5=33E9CE9110597F1A47BA18B96EAFA6FA -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18000_none_6c292ade11fbedbf\shell32.dll
[2008/04/23 23:40:28 | 011,319,808 | ---- | M] (Microsoft Corporation) MD5=3D58E32AA9A5C7F408D97675C81C9AED -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.20822_none_6ab8eba52e01644f\shell32.dll
[2009/04/11 01:28:24 | 011,584,000 | ---- | M] (Microsoft Corporation) MD5=43466A7FF452883B68F52B963023949C -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18005_none_6e14a3ea0f1db90b\shell32.dll
[2008/11/06 07:59:27 | 011,582,976 | ---- | M] (Microsoft Corporation) MD5=4A21B11997C1F14D8707C8C501CA59A7 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22303_none_6cb5cc532b16d3dc\shell32.dll
[2008/11/06 07:59:14 | 011,320,832 | ---- | M] (Microsoft Corporation) MD5=4F72C8F593AAB1B83FB5D62CBFBB51F9 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.20951_none_6a977d7d2e1a9bf2\shell32.dll
[2008/11/06 08:14:25 | 011,580,928 | ---- | M] (Microsoft Corporation) MD5=5D62692EEB77E32F67A966F1BDEB551B -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18167_none_6bef4f42122643ed\shell32.dll
[2008/04/23 23:58:20 | 011,580,416 | ---- | M] (Microsoft Corporation) MD5=61509AF47F663A6EA941492ED181D60C -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18062_none_6bea4bea122ac813\shell32.dll
[2009/07/10 06:59:03 | 011,584,512 | ---- | M] (Microsoft Corporation) MD5=81A20AC0051ADA6F9FC58FA620BE4A78 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22467_none_6c78efd92b43de05\shell32.dll
[2008/04/23 23:45:45 | 011,581,440 | ---- | M] (Microsoft Corporation) MD5=82A0A2AB2C637C11F28C1E37F76A284E -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22166_none_6c77e9dd2b44cd39\shell32.dll
[2010/07/26 13:04:15 | 011,587,072 | ---- | M] (Microsoft Corporation) MD5=895F23DE1778E6AADE0DEEBCC2E6AC0A -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.22454_none_6e6736812864c2a8\shell32.dll
[2010/07/26 10:51:48 | 011,584,512 | ---- | M] (Microsoft Corporation) MD5=91640C342AD09936D0E4B7EBDDB12091 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18287_none_6dc028ea0f5cc58f\shell32.dll
[2009/07/10 07:17:37 | 011,316,224 | ---- | M] (Microsoft Corporation) MD5=93FDB7E073B00D0BB7DF7182D882539F -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.16883_none_69ef7182151382a9\shell32.dll
[2010/07/26 11:56:52 | 011,586,560 | ---- | M] (Microsoft Corporation) MD5=CDE0D181CF5E5DD7E7C032A15365799C -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.22735_none_6c9764bb2b2d4ef9\shell32.dll
[2008/11/06 07:57:06 | 011,315,712 | ---- | M] (Microsoft Corporation) MD5=CF1D75E7B4A7CC6D2A21FE64C9E50A12 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.16774_none_69fb3fd2150a82e8\shell32.dll
[2010/07/26 11:55:26 | 011,581,440 | ---- | M] (Microsoft Corporation) MD5=DD2F953D9DCAAF080F724803A8121CE6 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18505_none_6c2e35ce11f75e35\shell32.dll
[2009/07/10 06:49:50 | 011,584,512 | ---- | M] (Microsoft Corporation) MD5=E19E22CD00EA110B0CE2C13777CEF92C -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.22169_none_6e616255286865d7\shell32.dll
[2009/07/10 07:20:59 | 011,581,440 | ---- | M] (Microsoft Corporation) MD5=EB85D49F3129EBED4993E800521715DD -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6001.18287_none_6bd9b150123678f6\shell32.dll
[2008/04/23 23:51:39 | 011,315,712 | ---- | M] (Microsoft Corporation) MD5=FF37AF2D5DCAFC00BC46AF07B53699B0 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6000.16680_none_69ec6cd815163c56\shell32.dll
[2011/01/21 11:35:22 | 011,586,048 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\shell32.dll
[2011/01/21 11:35:22 | 011,586,048 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\winsxs\x86_microsoft-windows-shell32_31bf3856ad364e35_6.0.6002.18393_none_6db159bc0f68794b\shell32.dll

< MD5 for: SOFTPUB.DLL >
[2006/11/02 04:46:13 | 000,009,216 | ---- | M] (Microsoft Corporation) MD5=06D2F8867F99BAD116FE3C6347B13EBE -- C:\Windows\System32\softpub.dll
[2006/11/02 04:46:13 | 000,009,216 | ---- | M] (Microsoft Corporation) MD5=06D2F8867F99BAD116FE3C6347B13EBE -- C:\Windows\winsxs\x86_microsoft-windows-softpub-dll_31bf3856ad364e35_6.0.6000.16386_none_e15d4542820233d4\softpub.dll

< MD5 for: URLMON.DLL >
[2009/03/08 06:34:55 | 001,206,784 | ---- | M] (Microsoft Corporation) MD5=05642AE6A7BDAA7541A7451F5A4C6512 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18702_none_97ce3a35ec955bb0\urlmon.dll
[2011/11/03 18:08:05 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=064F6F989238F40B2AA23395E44B259B -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20544_none_754d509d2dd95516\urlmon.dll
[2008/02/22 00:01:33 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=1CC909F70CAE7F858CCF6DD4145D6AA0 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18023_none_b4d078e1d6d76f3a\urlmon.dll
[2008/02/21 23:52:15 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=29CB87A945B10AA959584C3E59D6201D -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22120_none_b55714ceeff7c2ff\urlmon.dll
[2011/08/31 21:28:33 | 001,102,848 | ---- | M] (Microsoft Corporation) MD5=3BF5881CB3D3402ADE70BE9E96E18C67 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16437_none_74d1849c14b0e560\urlmon.dll
[2008/06/26 22:50:29 | 001,166,848 | ---- | M] (Microsoft Corporation) MD5=3ED27AB59FB2DA1C495CCDAA71F825F5 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22212_none_b563e734efedd6e3\urlmon.dll
[2010/09/08 01:24:54 | 001,211,904 | ---- | M] (Microsoft Corporation) MD5=42BBB00FB563E481A8DAD9529CC19677 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.23067_none_981bd2f305df523c\urlmon.dll
[2012/02/27 20:12:01 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=4C162B2A8E175F46DB41B21C77688221 -- C:\Windows\System32\urlmon.dll
[2012/02/27 20:12:01 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=4C162B2A8E175F46DB41B21C77688221 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16443_none_74c2b38814bc9bf5\urlmon.dll
[2009/12/18 08:05:36 | 001,174,528 | ---- | M] (Microsoft Corporation) MD5=4DE2CD3902C0010FA19116F05BD4FF20 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18385_none_b4919f9fd7064103\urlmon.dll
[2002/08/29 08:14:40 | 000,482,816 | R--- | M] (Microsoft Corporation) MD5=54023ABFE163804297F6DC05BADF6668 -- C:\Windows\Installer\$PatchCache$\Managed\049634E8449A76D44AB581672EB39B0C\9.8.3\urlmon.dll
[2010/11/02 01:01:41 | 001,210,880 | ---- | M] (Microsoft Corporation) MD5=581D19B3EFF0A7FEAC6FE7FE7270E3A0 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18999_none_9773f0bbecd802d8\urlmon.dll
[2012/02/27 19:59:00 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=59E5BA0E9F268B2B0EA7C0185150150F -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20548_none_755151c52dd5ba72\urlmon.dll
[2008/04/24 23:35:19 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=5E4F2E3846DB2699D96F1B28E83B94C3 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18063_none_b4a53931d6f7defe\urlmon.dll
[2009/04/11 01:28:25 | 001,167,872 | ---- | M] (Microsoft Corporation) MD5=62F5F76338391A44F4A0E871FFD35A27 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6002.18005_none_b6ce90e7d3ebb69f\urlmon.dll
[2008/06/26 22:49:41 | 001,162,752 | ---- | M] (Microsoft Corporation) MD5=68F5CC104978908671F96EE7FC79D06E -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.20868_none_b34d9aaef2ea69b1\urlmon.dll
[2010/11/02 02:11:49 | 001,211,904 | ---- | M] (Microsoft Corporation) MD5=6AAA7BFA435FD04D56873AA2C7955F41 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.23091_none_97f5617305fd0e05\urlmon.dll
[2008/01/20 21:34:38 | 001,165,824 | ---- | M] (Microsoft Corporation) MD5=6FD4D51AA2DA0314DC77A150EB6D3980 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18000_none_b4e317dbd6c9eb53\urlmon.dll
[2011/02/22 01:21:17 | 001,210,880 | ---- | M] (Microsoft Corporation) MD5=7143942B5072A782874BCA36CEB63A0D -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.19048_none_97a8d82fecb0910e\urlmon.dll
[2011/12/13 21:57:49 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=79F14B5DF9E17E12193337ED4EE1C491 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16441_none_74c0b2f414be6947\urlmon.dll
[2011/11/03 17:40:43 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=814638F572F497D96B17BF254113D9A4 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16440_none_74bfb2aa14bf4ff0\urlmon.dll
[2010/12/18 01:26:50 | 001,210,880 | ---- | M] (Microsoft Corporation) MD5=91F4319C6C0F9CF11412415779CB12C1 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.19019_none_97ca483dec975692\urlmon.dll
[2011/08/31 20:58:19 | 001,102,848 | ---- | M] (Microsoft Corporation) MD5=96C5CBC5539DD05F0A99CC71541EF35D -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20537_none_755b21672dce852a\urlmon.dll
[2009/12/18 07:25:42 | 001,170,944 | ---- | M] (Microsoft Corporation) MD5=984C8CF12DF3C2F723EA76ACCA0CE5CF -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.21184_none_b333d59cf2fe69c7\urlmon.dll
[2008/04/24 23:21:54 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=9EF388245B2E198704A41C44DF4EEC14 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22167_none_b532d724f011e424\urlmon.dll
[2010/12/18 02:17:53 | 001,211,904 | ---- | M] (Microsoft Corporation) MD5=A40252BC6BE95C9B4B5D875B0C25512C -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.23111_none_984be2b905bc2ba4\urlmon.dll
[2011/04/21 12:52:50 | 001,102,336 | ---- | M] (Microsoft Corporation) MD5=AA5F4683A0C3C40D90377AA238A6F1B7 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16421_none_74d652cc14ae3165\urlmon.dll
[2010/01/02 09:56:01 | 001,209,344 | ---- | M] (Microsoft Corporation) MD5=B30EAA9B9B7DBDD8CC5D143472B2F16E -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.22973_none_980d29bd05ead58f\urlmon.dll
[2008/04/24 23:09:51 | 001,162,752 | ---- | M] (Microsoft Corporation) MD5=BE5269680658C57CD9AED2AF337D195E -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.20823_none_b373d8ecf2ce7b3a\urlmon.dll
[2009/12/18 07:24:07 | 001,175,040 | ---- | M] (Microsoft Corporation) MD5=C0CBE22A90ECC439F3872C3E7412C9E4 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22585_none_b51b3e50f023ddf4\urlmon.dll
[2009/12/18 07:52:27 | 001,168,384 | ---- | M] (Microsoft Corporation) MD5=C504C720A5EE8CF112758FEE04D4625B -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16982_none_b2a8601bd9e2640d\urlmon.dll
[2009/12/17 07:04:00 | 001,176,064 | ---- | M] (Microsoft Corporation) MD5=C8241D7839B71D09D5D2C3D7AB4F9F07 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6002.22290_none_b6f1dedaed56d056\urlmon.dll
[2009/12/16 06:44:14 | 001,176,064 | ---- | M] (Microsoft Corporation) MD5=D12B8B3B094DF8A74FC3BCB1DBA578BF -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6002.18167_none_b68fb3d9d41a8e1a\urlmon.dll
[2011/07/21 21:49:01 | 001,102,848 | ---- | M] (Microsoft Corporation) MD5=D217B0DA82FDD942C048749993275AC6 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16434_none_74ce83be14b3995b\urlmon.dll
[2011/12/13 21:29:04 | 001,103,360 | ---- | M] (Microsoft Corporation) MD5=D48BB97B11710577FDD025EA39478A18 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20546_none_754f51312dd787c4\urlmon.dll
[2008/06/26 22:54:49 | 001,159,680 | ---- | M] (Microsoft Corporation) MD5=D5A518871C5393B5C1883E74BE75FAF8 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16711_none_b2f30b79d9aa8cd1\urlmon.dll
[2010/01/02 01:38:04 | 001,208,832 | ---- | M] (Microsoft Corporation) MD5=D5B99F82E9AE7EF1ACB28340C5C61B79 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18882_none_9777bcbbecd6385f\urlmon.dll
[2008/02/21 23:52:08 | 001,162,752 | ---- | M] (Microsoft Corporation) MD5=D7C4249EB1CFE999F90A54597DC6CF6F -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.20777_none_b341c892f2f36f24\urlmon.dll
[2010/09/08 01:01:15 | 001,210,880 | ---- | M] (Microsoft Corporation) MD5=DD7ACFC238730C217C5D63BCE12AB8DC -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18975_none_97858f6beccb659a\urlmon.dll
[2011/04/22 18:30:18 | 001,102,336 | ---- | M] (Microsoft Corporation) MD5=DF6DE2F5AFB9FA1CFA02081EF9B3E7E8 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.16430_none_74ca829614b733ff\urlmon.dll
[2011/04/22 17:53:19 | 001,102,336 | ---- | M] (Microsoft Corporation) MD5=F23351AAC05A803402C56A531F869B31 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20530_none_75541f612dd4d3c9\urlmon.dll
[2011/07/21 20:48:50 | 001,102,848 | ---- | M] (Microsoft Corporation) MD5=F715C2BCA826CC556C256F66F5B41546 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.1.8112.20534_none_755820892dd13925\urlmon.dll
[2008/02/20 23:43:41 | 001,159,680 | ---- | M] (Microsoft Corporation) MD5=F8E8922A488183128EE605B0612C4C14 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16643_none_b2d49a63d9c1162b\urlmon.dll
[2011/02/22 02:18:22 | 001,212,928 | ---- | M] (Microsoft Corporation) MD5=FB2E03C3996607B0449B27EEBA0020D1 -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.23143_none_982d738905d2b225\urlmon.dll
[2008/04/24 23:23:11 | 001,159,680 | ---- | M] (Microsoft Corporation) MD5=FCA38D14AA8877C7AA3C7030D9E40CCC -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16681_none_b2a75a1fd9e35341\urlmon.dll
[2008/06/26 23:15:28 | 001,166,336 | ---- | M] (Microsoft Corporation) MD5=FDBF6B298D068F08146C9B2B18D78A5F -- C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18099_none_b48acb29d70acadb\urlmon.dll

< MD5 for: VBSCRIPT.DLL >
[2011/02/17 01:23:50 | 000,420,864 | ---- | M] (Microsoft Corporation) MD5=330A25AE6D4BCBF4521C1D69D168AA51 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.19046_none_2b1dc30f43cf7656\vbscript.dll
[2009/04/11 01:28:25 | 000,430,080 | ---- | M] (Microsoft Corporation) MD5=34762E419CB79416BE49A8E484525453 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.0.6002.18005_none_4a457c5b2b08ce95\vbscript.dll
[2010/03/05 09:01:02 | 000,420,352 | ---- | M] (Microsoft Corporation) MD5=5A9C91B12C2CBF85F6033FED62CE087A -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.18909_none_2b4c2b7b43ac1f55\vbscript.dll
[2011/04/21 12:52:37 | 000,420,864 | ---- | M] (Microsoft Corporation) MD5=5E7A2CF7719161C5E6C0E47D67AD45AE -- C:\Windows\System32\vbscript.dll
[2011/04/21 12:52:37 | 000,420,864 | ---- | M] (Microsoft Corporation) MD5=5E7A2CF7719161C5E6C0E47D67AD45AE -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.1.8112.16421_none_084d3e3f6bcb495b\vbscript.dll
[2009/03/08 06:33:04 | 000,420,352 | ---- | M] (Microsoft Corporation) MD5=7CC3C8FC1056A229B05926C44D1ADEE4 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.18702_none_2b4525a943b273a6\vbscript.dll
[2002/02/26 16:58:06 | 000,462,906 | R--- | M] (Microsoft Corporation) MD5=85208932FE4CDFC1AD4A14DF82AB1ABD -- C:\Windows\Installer\$PatchCache$\Managed\049634E8449A76D44AB581672EB39B0C\9.8.3\vbscript.dll
[2008/01/20 21:33:37 | 000,430,080 | ---- | M] (Microsoft Corporation) MD5=A50CFEE5140F2704459C22D264A4BDB0 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.0.6001.18000_none_485a034f2de70349\vbscript.dll
[2010/03/05 17:19:52 | 000,420,352 | ---- | M] (Microsoft Corporation) MD5=AE1A9126E184D0734496354B9745AD71 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.23000_none_2bcc9be85cd2112b\vbscript.dll
[2008/05/08 16:59:33 | 000,430,080 | ---- | M] (Microsoft Corporation) MD5=C7EC53FBE59F47DDF3648BCA256D79D2 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.0.6001.18068_none_482126172e1075a7\vbscript.dll
[2008/05/08 00:22:13 | 000,430,080 | ---- | M] (Microsoft Corporation) MD5=DC948E750D1A82F39BD93740ED835257 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.0.6001.22175_none_489cf2184738e55d\vbscript.dll
[2011/02/17 02:00:30 | 000,420,864 | ---- | M] (Microsoft Corporation) MD5=F9397AFBD9152186E15F4B068A3ADB68 -- C:\Windows\winsxs\x86_microsoft-windows-scripting-vbscript_31bf3856ad364e35_8.0.6001.23141_none_2ba25e685cf1976d\vbscript.dll

< MD5 for: WINTRUST.DLL >
[2009/12/23 07:14:59 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=02FE137C95B46D3966E2B089B26609B8 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6000.21186_none_ee00f81ab6439625\wintrust.dll
[2009/12/23 06:33:29 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=2829C93217B147387F186479A5F6A1E5 -- C:\Windows\System32\wintrust.dll
[2009/12/23 06:33:29 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=2829C93217B147387F186479A5F6A1E5 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6002.18169_none_f15cd657975fba78\wintrust.dll
[2008/01/20 21:34:19 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=2C60B3BE1DE5941555E17F6726148910 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6001.18000_none_efae39c59a10e503\wintrust.dll
[2009/12/23 07:43:08 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=6E012DA20D59C3991751CA6E8C71EB06 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6001.18387_none_ef5ec21d9a4b6d61\wintrust.dll
[2009/12/23 07:12:40 | 000,172,032 | ---- | M] (Microsoft Corporation) MD5=A58518348634DA63E942DAA26D4BC344 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6002.22293_none_f1c001a2b09b160b\wintrust.dll
[2009/12/23 07:29:42 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=B702783FC55E3737D19DCDD69D40279E -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6001.22588_none_efe96118b36823a9\wintrust.dll
[2009/12/23 07:45:43 | 000,171,520 | ---- | M] (Microsoft Corporation) MD5=C6E246BE0C525762C474F7EC758A70A9 -- C:\Windows\winsxs\x86_microsoft-windows-wintrust-dll_31bf3856ad364e35_6.0.6000.16984_none_ed7582999d27906b\wintrust.dll

< MD5 for: WUAPI.DLL >
[2009/08/06 21:23:52 | 000,575,704 | ---- | M] (Microsoft Corporation) MD5=009758CC06B7F55B4A4D16A66E243C24 -- C:\Windows\System32\wuapi.dll
[2009/08/06 21:23:52 | 000,575,704 | ---- | M] (Microsoft Corporation) MD5=009758CC06B7F55B4A4D16A66E243C24 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.4.7600.226_none_cf8a5c896f5cdb1e\wuapi.dll
[2008/01/20 21:34:55 | 000,534,016 | ---- | M] (Microsoft Corporation) MD5=1027519E0FDAB595E3D98680662B39A0 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6001.18000_none_8664137a48407b03\wuapi.dll
[2009/04/11 01:28:27 | 000,532,480 | ---- | M] (Microsoft Corporation) MD5=505C5319786CFF7A9D2CB7C8197B1F1D -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6002.18005_none_884f8c864562464f\wuapi.dll
[2006/11/02 04:46:15 | 000,502,784 | ---- | M] (Microsoft Corporation) MD5=578B136083796BDFD1C856FA60FB0BBD -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_6.0.6000.16386_none_92bcd538c06ec160\wuapi.dll
[2008/10/16 16:12:19 | 000,561,688 | ---- | M] (Microsoft Corporation) MD5=CAB93E2AAEEDEEF526F0C4CD56B283E7 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.2.6001.788_none_107673f57a433d77\wuapi.dll

< MD5 for: WUAUENG.DLL >
[2009/04/11 01:28:28 | 001,695,232 | ---- | M] (Microsoft Corporation) MD5=01E1499A7A4FCA7CDE102B60976544C1 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6002.18005_none_a23e523a31a1ed4c\wuaueng.dll
[2009/08/06 21:23:45 | 001,929,952 | ---- | M] (Microsoft Corporation) MD5=6298277B73C77FA99106B271A7525163 -- C:\Windows\System32\wuaueng.dll
[2009/08/06 21:23:45 | 001,929,952 | ---- | M] (Microsoft Corporation) MD5=6298277B73C77FA99106B271A7525163 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.4.7600.226_none_e979223d5b9c821b\wuaueng.dll
[2008/10/16 16:13:38 | 001,809,944 | ---- | M] (Microsoft Corporation) MD5=84A03BFE004B06E93408618976DC9C14 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.2.6001.788_none_2a6539a96682e474\wuaueng.dll
[2006/11/02 04:46:16 | 001,568,256 | ---- | M] (Microsoft Corporation) MD5=9397D21939A25DA1BD0ED8DB5BB3C853 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_6.0.6000.16386_none_acab9aecacae685d\wuaueng.dll
[2008/01/20 21:34:55 | 001,695,232 | ---- | M] (Microsoft Corporation) MD5=D79538B67FA641E986855DEF651E78FE -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6001.18000_none_a052d92e34802200\wuaueng.dll

< MD5 for: WUCLTUX.DLL >
[2006/11/02 04:46:16 | 001,498,624 | ---- | M] (Microsoft Corporation) MD5=0DAB31EBBC89DC86500EFE4EF8B2EAE7 -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_6.0.6000.16386_none_2a58be974cb2ab0e\wucltux.dll
[2008/01/20 21:34:56 | 001,505,280 | ---- | M] (Microsoft Corporation) MD5=233D499EF4136BC2538716FCCEDDAAB1 -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_7.0.6001.18000_none_1dfffcd8d48464b1\wucltux.dll
[2009/08/06 20:45:15 | 002,421,760 | ---- | M] (Microsoft Corporation) MD5=5B56A7A5AE0C118CF6413A6E99170BF8 -- C:\Windows\System32\wucltux.dll
[2009/08/06 20:45:15 | 002,421,760 | ---- | M] (Microsoft Corporation) MD5=5B56A7A5AE0C118CF6413A6E99170BF8 -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_7.4.7600.226_none_672645e7fba0c4cc\wucltux.dll
[2008/10/16 15:56:28 | 001,524,736 | ---- | M] (Microsoft Corporation) MD5=873BD2CF68E70DE7B3B67AF6EB863A5B -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_7.2.6001.788_none_a8125d5406872725\wucltux.dll
[2009/04/11 01:28:28 | 001,505,280 | ---- | M] (Microsoft Corporation) MD5=F7097578CB9BF8A5D58474BC453C3750 -- C:\Windows\winsxs\x86_microsoft-windows-windowsupdateclient-ui_31bf3856ad364e35_7.0.6002.18005_none_1feb75e4d1a62ffd\wucltux.dll

< MD5 for: WUPS.DLL >
[2006/11/02 04:46:16 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=0E71F0397FD91280E1A2FC712A0A7ACC -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_6.0.6000.16386_none_92bcd538c06ec160\wups.dll
[2009/08/06 21:24:09 | 000,035,552 | ---- | M] (Microsoft Corporation) MD5=1D326842006C4BE77ECD848CF89F01AB -- C:\Windows\System32\wups.dll
[2009/08/06 21:24:09 | 000,035,552 | ---- | M] (Microsoft Corporation) MD5=1D326842006C4BE77ECD848CF89F01AB -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.4.7600.226_none_cf8a5c896f5cdb1e\wups.dll
[2008/10/16 16:08:57 | 000,034,328 | ---- | M] (Microsoft Corporation) MD5=9A941BAF38F85B6E3FBEA96AB6E5ADBE -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.2.6001.788_none_107673f57a433d77\wups.dll
[2008/01/20 21:34:55 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=EF1D2DAB860F3380D607EEFBD5EBD4B9 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6001.18000_none_8664137a48407b03\wups.dll
[2008/01/20 21:34:55 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=EF1D2DAB860F3380D607EEFBD5EBD4B9 -- C:\Windows\winsxs\x86_microsoft-windows-w..owsupdateclient-aux_31bf3856ad364e35_7.0.6002.18005_none_884f8c864562464f\wups.dll

< MD5 for: WUPS2.DLL >
[2008/10/16 16:09:43 | 000,043,544 | ---- | M] (Microsoft Corporation) MD5=039133C02D61C3CE6C952092054B1148 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.2.6001.788_none_2a6539a96682e474\wups2.dll
[2009/08/06 21:24:08 | 000,044,768 | ---- | M] (Microsoft Corporation) MD5=5BD1234E11B39C63BBA87022AF6D43C2 -- C:\Windows\System32\wups2.dll
[2009/08/06 21:24:08 | 000,044,768 | ---- | M] (Microsoft Corporation) MD5=5BD1234E11B39C63BBA87022AF6D43C2 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.4.7600.226_none_e979223d5b9c821b\wups2.dll
[2008/01/20 21:34:55 | 000,032,768 | ---- | M] (Microsoft Corporation) MD5=8A7BAAF132A05F06E4DB9CAB6312E062 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6001.18000_none_a052d92e34802200\wups2.dll
[2008/01/20 21:34:55 | 000,032,768 | ---- | M] (Microsoft Corporation) MD5=8A7BAAF132A05F06E4DB9CAB6312E062 -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_7.0.6002.18005_none_a23e523a31a1ed4c\wups2.dll
[2006/11/02 04:46:16 | 000,032,256 | ---- | M] (Microsoft Corporation) MD5=9CC828E6D94B944EA78DEA8C3AF4577A -- C:\Windows\winsxs\x86_microsoft-windows-w..wsupdateclient-core_31bf3856ad364e35_6.0.6000.16386_none_acab9aecacae685d\wups2.dll

< MD5 for: WUWEBV.DLL >
[2006/11/02 04:46:16 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=1B2AB378C80F6404687DCB4217BFA17D -- C:\Windows\winsxs\x86_microsoft-windows-w..pdateclient-activex_31bf3856ad364e35_6.0.6000.16386_none_3cc795796625f35c\wuwebv.dll
[2008/10/16 14:08:00 | 000,162,064 | ---- | M] (Microsoft Corporation) MD5=6E9FA3B731AF51BA15B5752013DF4045 -- C:\Windows\winsxs\x86_microsoft-windows-w..pdateclient-activex_31bf3856ad364e35_7.2.6001.788_none_ba8134361ffa6f73\wuwebv.dll
[2009/08/06 20:23:06 | 000,171,608 | ---- | M] (Microsoft Corporation) MD5=BE2DE642AA0D55CB644D87C97A2C01AE -- C:\Windows\System32\wuwebv.dll
[2009/08/06 20:23:06 | 000,171,608 | ---- | M] (Microsoft Corporation) MD5=BE2DE642AA0D55CB644D87C97A2C01AE -- C:\Windows\winsxs\x86_microsoft-windows-w..pdateclient-activex_31bf3856ad364e35_7.4.7600.226_none_79951cca15140d1a\wuwebv.dll
[2008/01/20 21:34:56 | 000,153,088 | ---- | M] (Microsoft Corporation) MD5=E1B21AEE636620B521B3CB41BFAF0602 -- C:\Windows\winsxs\x86_microsoft-windows-w..pdateclient-activex_31bf3856ad364e35_7.0.6001.18000_none_306ed3baedf7acff\wuwebv.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 172 bytes -> C:\ProgramData\TEMP:BF3D0EA3
@Alternate Data Stream - 161 bytes -> C:\ProgramData\TEMP:A5388B43

< End of report >

#66
Sarous

Posted 16 May 2012 - 03:31 PM

Member

Topic Starter
Member
84 posts

After running some stuff in the other thread, reran antiviruses, ESET:

C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\03GWY0S6\teen[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GW1J8PNN\xhamster_r_gd[1].htm HTML/Iframe.B.Gen virus deleted - quarantined

2nd Thread:
http://www.geekstogo...failed-updates/

Edit: Addition:

sigverif
Press Start in the new window. This will check your drivers. If you just get a few when it finishes tell me what they are. If you get a lot just look for those with newish dates (since about the time the problem started.)

pedrv.sys

Edited by Sarous, 16 May 2012 - 06:14 PM.

#67
RKinner

Posted 21 May 2012 - 01:56 PM

Malware Expert

Expert
24,624 posts

Sorry I didn't get back to you sooner. Caught something like pneumonia. Got some antibiotics on Friday and am starting to feel human again.

Looks like they were able to help you a bit over in the other forum. It's been a while since your helper has responded so you might PM him. I would ask him if he can get your sfc to work.

The file that sigverif doesn't like is OK. Obviously you got a clean bill of health on the other file from virustotal.

Ron