VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

W32/Malware!Gemini - F security

https://forum.viry.cz:443/viewtopic.php?t=99890

Stránka 1 z 1

W32/Malware!Gemini - F security

Napsal: 09 dub 2010 19:48
od Gamp.G
Dobrý den velmi prosím o kontrolu.
Avast mi nic nehlásí i když to dám zkontrolovat zvlášť.
Malwarebytes' Anti-Malware taky nic nenašel.
Spybot mi běží furt na pozadí.
F-sekurity on line sem dělal náhodou pro sichr protože nemožu za boha pustit online eset smart test.
Vždy se mi sekne a procesor běží na 100%.
Kontrola se nepohne ani o %.
Furt se mi zdá že běží pomalu Net už sem změnil i poskytovatele a šel z 2,4 na 5,4Gh.

Můžu přiložit fsonlinescanner_report.html

Předem díky.

Tady je log z RSIT:

Logfile of random's system information tool 1.06 (written by random/random)
Run by Stana at 2010-04-09 20:25:55
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 23 GB (30%) free of 76 GB
Total RAM: 2047 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:26:22, on 9.4.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\VIAudioi\SBADeck\ADeck.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ATI Technologies\ATI HydraVision\HydraMD.exe
C:\WINDOWS\PixArt\PAC7311\Monitor.exe
C:\Program Files\Hard Disk Sentinel\HDSentinel.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI HydraVision\HydraDM.exe
C:\Program Files\Cobian Backup 10\Cobian.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\uTorrent\utorrent.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files\Cobian Backup 10\cbInterface.exe
C:\Program Files\Fractalis Software\Display Stix 2.1.1\dstix.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Documents and Settings\All Users\Data aplikací\Skype\Plugins\Plugins\61BEB79ECBDD451F9554700542EE2D92\WinampMood.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\svchost.exe
C:\Aplikace\Na viry\Rsit\RSIT.exe
C:\Aplikace\Na viry\hjt\Stana.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {A5366673-E8CA-11D3-9CD9-0090271D075B} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe 1
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [HydraVisionViewport] C:\Program Files\ATI Technologies\ATI HydraVision\HydraMD.exe
O4 - HKLM\..\Run: [SpybotSnD] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autoclose /waitstart /waitprograms
O4 - HKLM\..\Run: [PAC7311_Monitor] C:\WINDOWS\PixArt\PAC7311\Monitor.exe
O4 - HKLM\..\Run: [Hard Disk Sentinel] "C:\Program Files\Hard Disk Sentinel\HDSentinel.exe" /AUTORUN
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\ATI HydraVision\HydraDM.exe
O4 - HKLM\..\Run: [Cobian Backup 10] "C:\Program Files\Cobian Backup 10\Cobian.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\utorrent.exe"
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup
O4 - HKCU\..\Run: [Display Stix - System tray] C:\Program Files\Fractalis Software\Display Stix 2.1.1\dstix.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Spustit klienta k monitoru &1 - C:\WINDOWS\web\AOpenClient.htm
O8 - Extra context menu item: Spustit klienta k monitoru &2 - C:\WINDOWS\web\AOpenClient.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.sk/buxus/docs/OnlineScanner.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

--
End of file - 7697 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\SmartDefrag.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5366673-E8CA-11D3-9CD9-0090271D075B}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-03-09 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-03-09 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"=C:\WINDOWS\system32\VTTimer.exe [2004-10-22 53248]
"VTTrayp"=C:\WINDOWS\system32\VTtrayp.exe [2005-01-11 143360]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2005-05-03 344064]
"AudioDeck"=C:\Program Files\VIAudioi\SBADeck\ADeck.exe [2005-03-04 512000]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"HydraVisionViewport"=C:\Program Files\ATI Technologies\ATI HydraVision\HydraMD.exe [2003-04-01 364544]
"SpybotSnD"=C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe [2009-01-26 5365592]
"PAC7311_Monitor"=C:\WINDOWS\PixArt\PAC7311\Monitor.exe [2006-11-03 319488]
"Hard Disk Sentinel"=C:\Program Files\Hard Disk Sentinel\HDSentinel.exe [2009-05-27 3291648]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
"ATICCC"=C:\Program Files\ATI Technologies\ATI.ACE\cli.exe [2006-01-02 45056]
"HydraVisionDesktopManager"=C:\Program Files\ATI Technologies\ATI HydraVision\HydraDM.exe [2003-04-01 270336]
"Cobian Backup 10"=C:\Program Files\Cobian Backup 10\Cobian.exe [2010-04-06 421376]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]
"uTorrent"=C:\Program Files\uTorrent\utorrent.exe [2010-03-14 319792]
"ccleaner"=C:\Program Files\CCleaner\CCleaner.exe [2010-02-24 1771320]
"Skype"=C:\Program Files\Skype\\Phone\Skype.exe [2010-03-09 26100520]
"Advanced SystemCare 3"=C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2010-03-29 2343120]
"Display Stix - System tray"=C:\Program Files\Fractalis Software\Display Stix 2.1.1\dstix.exe [2004-01-12 241664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3]
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2010-03-29 2343120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Cobian Backup 9 interface]
C:\Program Files\Cobian Backup 9\cbInterface.exe -service []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LGODDFU]
C:\Program Files\lg_fwupdate\fwupdate.exe [2005-04-12 229376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBJ]
C:\Program Files\Ahead\Nero BackItUp\NBJ.exe [2005-06-02 1957888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-06-25 1414144]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartRAM]
C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe [2009-02-19 202064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VGAUtil]
C:\Program Files\GigaByte\VGA Utility Manager\G-VGA.exe [2004-09-17 552960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"InCDsrv"=2
"CobianBackupAmanita"=2

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-05-03 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"=C:\Program Files\DVDIdle Pro\DVDShell.dll [2004-10-09 49152]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"NoDrives"=
"NoDriveAutoRun"=
"HonorAutoRunSetting"=
"NoResolveSearch"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Electronic Arts\Need For Speed III\nfs3.exe"="C:\Program Files\Electronic Arts\Need For Speed III\nfs3.exe:*:Disabled:Need For Speed III for Win32"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\Program Files\uTorrent\utorrent.exe"="C:\Program Files\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\GigaByte\VGA Utility Manager\G-vga.exe"="C:\Program Files\GigaByte\VGA Utility Manager\G-vga.exe:*:Disabled:Menu"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Metin2_TESTER\metin2client.bin"="C:\Program Files\Metin2_TESTER\metin2client.bin:*:Enabled:metin2client"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{7da1c578-aa09-11de-a0bb-003018c2a8cb}]
shell\AutoRun\command - G:\setup.exe


======File associations======

.scr - open - C:\WINDOWS\NOTEPAD.EXE "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 months======

2010-04-09 17:42:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\F-Secure
2010-04-08 21:40:30 ----D---- C:\Program Files\Cobian Backup 10
2010-04-05 11:13:47 ----D---- C:\Složka pro síť
2010-04-04 12:41:39 ----D---- C:\Documents and Settings\Stana\Data aplikací\Zoner
2010-04-04 12:40:27 ----D---- C:\Program Files\Zoner
2010-03-31 17:20:34 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2010-03-31 17:20:16 ----A---- C:\WINDOWS\system32\javaws.exe
2010-03-31 17:20:16 ----A---- C:\WINDOWS\system32\javaw.exe
2010-03-31 17:20:16 ----A---- C:\WINDOWS\system32\java.exe
2010-03-30 16:42:27 ----D---- C:\Program Files\Common Files\Skype
2010-03-10 14:44:04 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$

======List of files/folders modified in the last 1 months======

2010-04-09 20:26:02 ----D---- C:\WINDOWS\Prefetch
2010-04-09 20:25:58 ----D---- C:\Documents and Settings\Stana\Data aplikací\uTorrent
2010-04-09 20:25:01 ----D---- C:\WINDOWS
2010-04-09 20:17:12 ----D---- C:\Documents and Settings\Stana\Data aplikací\Skype
2010-04-09 20:17:12 ----D---- C:\Documents and Settings\All Users\Data aplikací\Spybot - Search & Destroy
2010-04-09 20:14:41 ----D---- C:\WINDOWS\Temp
2010-04-09 18:53:47 ----D---- C:\Program Files\Hard Disk Sentinel
2010-04-09 16:27:48 ----D---- C:\Documents and Settings\Stana\Data aplikací\skypePM
2010-04-09 11:07:36 ----N---- C:\WINDOWS\SchedLgU.Txt
2010-04-08 21:43:32 ----D---- C:\Program Files\Cobian Backup 9
2010-04-08 21:40:30 ----RD---- C:\Program Files
2010-04-08 14:19:14 ----D---- C:\WINDOWS\system32\CatRoot2
2010-04-08 13:14:39 ----A---- C:\WINDOWS\NeroDigital.ini
2010-04-08 13:03:28 ----D---- C:\MyWorks
2010-04-06 12:55:25 ----A---- C:\WINDOWS\DVDIdlePro.INI
2010-04-04 09:18:54 ----D---- C:\WINDOWS\system32
2010-04-04 08:51:54 ----D---- C:\Program Files\AutoCAD R14
2010-04-02 16:14:42 ----D---- C:\Program Files\Mozilla Firefox
2010-03-31 17:20:34 ----SHD---- C:\WINDOWS\Installer
2010-03-31 17:20:34 ----D---- C:\Program Files\Common Files\Java
2010-03-31 17:13:02 ----D---- C:\Program Files\Java
2010-03-31 07:07:34 ----HD---- C:\WINDOWS\inf
2010-03-31 07:07:27 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-03-31 07:07:23 ----D---- C:\Program Files\Internet Explorer
2010-03-31 07:07:14 ----D---- C:\WINDOWS\ie8updates
2010-03-31 07:06:25 ----HD---- C:\WINDOWS\$hf_mig$
2010-03-30 16:42:27 ----D---- C:\Program Files\Common Files
2010-03-29 09:38:46 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-03-24 21:46:53 ----D---- C:\Program Files\FlashGet
2010-03-15 10:58:42 ----D---- C:\Program Files\uTorrent
2010-03-10 17:44:23 ----D---- C:\WINDOWS\Debug
2010-03-10 14:44:06 ----D---- C:\Program Files\Movie Maker

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-09-15 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 InCDPass;InCDPass; C:\WINDOWS\System32\DRIVERS\InCDPass.sys [2005-07-08 29696]
R1 incdrm;InCD Reader; C:\WINDOWS\system32\drivers\incdrm.sys [2005-07-08 28672]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-09-15 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-09-15 94160]
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-05-03 1540608]
R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2008-09-22 43520]
R3 PAC7311;Trust WB-3400T Webcam; C:\WINDOWS\system32\DRIVERS\PA707UCM.SYS [2007-03-14 449024]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-12-05 10368]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\vinyl97.sys [2005-02-01 176128]
R3 vulfnths;VIA USB Host Controller Lower Filter; C:\WINDOWS\System32\Drivers\vulfnth.sys [2005-01-05 6912]
R3 vulfntrs;VIA USB Roothub Lower Filter; C:\WINDOWS\System32\Drivers\vulfntr.sys [2004-11-23 11264]
R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDfs.sys [2005-07-08 99584]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 cpuz132;cpuz132; \??\C:\DOCUME~1\Stana\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys []
S3 FETND5BV;VIA Rhine-Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2008-09-22 43520]
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 GVCplDrv;GVCplDrv; C:\WINDOWS\system32\drivers\GVCplDrv.sys [2004-05-02 23040]
S3 GVTDrv;GVTDrv; C:\WINDOWS\system32\drivers\GVTDrv.sys [2009-11-24 23524]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NTSIM;NTSIM; \??\C:\WINDOWS\system32\ntsim.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 TempLog;TempLog; \??\C:\Program Files\Hard Disk Sentinel\HDSentinel.sys []
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 viagfx;viagfx; C:\WINDOWS\system32\DRIVERS\vtmini.sys [2005-02-24 172416]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-03 413696]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-03-09 153376]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-05-03 520192]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-06-02 637952]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 InCDsrv;InCD Helper; C:\Program Files\Ahead\InCD\InCDsrv.exe [2005-07-08 871424]

-----------------EOF-----------------

Re: W32/Malware!Gemini - F security

Napsal: 09 dub 2010 21:15
od Rudy
Nic nebezpečného není vidět ani zde. Dejte log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware

Re: W32/Malware!Gemini - F security

Napsal: 09 dub 2010 21:34
od Gamp.G
Dávám hlášení F-secure
a jdu udělat ten combofix.

Hlášení kontroly
Pátek, Duben 9, 2010 17:42:52 - 18:54:02

Název počítače: OEM-4E92AE28D0C
Typ kontroly: Kontrolovat systém na přítomnost malwaru, spywaru a programů rootkit
Cíl: C:\ F:\
Nalezený malware: 11
TrackingCookie.2o7 (spyware)

* Systém (Vyléčeno)

TrackingCookie.Atdmt (spyware)

* Systém (Vyléčeno)

Suspicious:W32/Malware!Gemini (spyware)

* Systém (Vyléčeno)

TrackingCookie.Revsci (spyware)

* Systém (Vyléčeno)

TrackingCookie.Adbrite (spyware)

* Systém (Vyléčeno)

TrackingCookie.Webtrends (spyware)

* Systém (Vyléčeno)

TrackingCookie.Instadia (spyware)

* Systém (Vyléčeno)

Suspicious:W32/Malware!Gemini (virus)

* C:\PROGRAM FILES\HARD DISK SENTINEL\HARDDISKSENTINELUPDATE.EXE (Nevyčištěno)

Suspicious:W32/Malware!Gemini (virus)

* C:\PROGRAM FILES\HARD DISK SENTINEL\HDSCTRL.EXE (Nevyčištěno)

Suspicious:W32/Malware!Gemini (virus)

* C:\DOCUMENTS AND SETTINGS\KATKA\LOCAL SETTINGS\TEMP\SKYPESETUP.EXE (Nevyčištěno)

Suspicious:W32/Malware!Gemini (virus)

* C:\APLIKACE\NA VIRY\ICESWORD\ICESWORD122EN\ICESWORD122EN\ICESWORD.EXE (Nevyčištěno)

Statistika
Kontrolováno:

* Soubory: 38896
* Systém: 3500
* Nekontrolováno: 378

Akce:

* Vyléčeno: 7
* Přejmenováno: 0
* Odstraněno: 0
* Nevyčištěno: 4
* Odesláno: 0

Re: W32/Malware!Gemini - F security

Napsal: 09 dub 2010 22:15
od Gamp.G
Jak to sem mám nacpat když je povolených 60000 znaků?
Já mám 146964.
Je to normální?

Tož tady to je 1 část:

ComboFix 10-04-08.06 - Stana 09.04.2010 22:51:18.3.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2047.1463 [GMT 2:00]
Spuštěný z: c:\documents and settings\Stana\Plocha\ComboFix.exe
AV: avast! antivirus 4.8.1368 [VPS 100409-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\VB6KO.DLL

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-03-09 do 2010-04-09 )))))))))))))))))))))))))))))))
.

2010-04-08 19:40 . 2010-04-08 19:41 -------- d-----w- c:\program files\Cobian Backup 10
2010-04-05 09:13 . 2010-04-05 09:13 -------- d-----w- C:\Složka pro síť
2010-04-04 10:40 . 2010-04-04 10:40 -------- d-----w- c:\program files\Zoner
2010-04-03 11:45 . 2010-04-03 19:13 -------- d-----w- c:\documents and settings\Stana\.jenny
2010-03-30 14:42 . 2010-03-30 14:42 -------- d-----w- c:\program files\Common Files\Skype

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-09 16:53 . 2009-05-28 15:47 -------- d-----w- c:\program files\Hard Disk Sentinel
2010-04-08 19:43 . 2009-09-25 19:30 -------- d-----w- c:\program files\Cobian Backup 9
2010-04-04 06:51 . 2006-03-31 17:46 -------- d-----w- c:\program files\AutoCAD R14
2010-03-31 15:20 . 2006-11-29 18:36 -------- d-----w- c:\program files\Common Files\Java
2010-03-31 15:13 . 2006-11-29 18:38 -------- d-----w- c:\program files\Java
2010-03-29 07:38 . 2004-08-18 12:00 61958 ----a-w- c:\windows\system32\perfc005.dat
2010-03-29 07:38 . 2004-08-18 12:00 379294 ----a-w- c:\windows\system32\perfh005.dat
2010-03-24 19:46 . 2008-10-02 17:22 -------- d-----w- c:\program files\FlashGet
2010-03-15 08:58 . 2008-10-02 18:57 -------- d-----w- c:\program files\uTorrent
2010-03-09 02:28 . 2009-07-14 15:43 411368 ----a-w- c:\windows\system32\deploytk.dll
2010-03-08 16:32 . 2010-03-08 16:32 -------- d-----w- c:\program files\SIW
2010-03-08 15:59 . 2009-05-14 20:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-03-08 15:55 . 2008-11-14 15:24 -------- d-----w- c:\program files\CCleaner
2010-03-08 15:52 . 2004-08-18 12:00 361600 ----a-w- c:\windows\system32\drivers\tcpip.sys
2010-02-25 06:18 . 2004-08-18 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-02-24 20:19 . 2010-02-24 20:19 -------- d-----w- c:\program files\Fractalis Software
2010-02-24 20:19 . 2010-02-24 20:19 720896 ----a-w- c:\windows\iun6002.exe
2010-02-17 19:46 . 2009-07-09 20:13 -------- d-----w- c:\program files\IObit
2010-02-16 20:05 . 2009-11-28 15:24 -------- d-----w- c:\program files\Metin2_TESTER
2010-02-16 20:05 . 2006-02-22 15:52 -------- d-----w- c:\program files\Easy Audio CD Burner
2010-02-12 10:03 . 2010-03-06 14:52 293376 ------w- c:\windows\system32\browserchoice.exe
2004-10-01 14:00 . 2006-02-26 18:48 40960 ----a-w- c:\program files\Uninstall_CDS.exe
.

------- Sigcheck -------

[-] 2010-03-08 . CBEEBEB899E31EF52B962CB31FC8CA5C . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
[7] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[7] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[7] 2008-06-20 . 2A5554FC5B1E04E131230E3CE035C3F9 . 360320 . . [5.1.2600.3394] . . c:\windows\$NtServicePackUninstall$\tcpip.sys
[7] 2008-06-20 . 744E57C99232201AE98C49168B918F48 . 360960 . . [5.1.2600.3394] . . c:\windows\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[7] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\tcpip.sys
[7] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tcpip.sys
[-] 2007-10-30 . 90CAFF4B094573449A0872A0F919B178 . 360064 . . [5.1.2600.3244] . . c:\windows\$NtUninstallKB951748_0$\tcpip.sys
[-] 2007-10-30 . 64798ECFA43D78C7178375FCDD16D8C8 . 360832 . . [5.1.2600.3244] . . c:\windows\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[-] 2006-04-20 . B2220C618B42A2212A59D91EBD6FC4B4 . 360576 . . [5.1.2600.2892] . . c:\windows\$hf_mig$\KB917953\SP2QFE\tcpip.sys
[-] 2006-04-20 . 1DBF125862891817F374F407626967F4 . 359808 . . [5.1.2600.2892] . . c:\windows\$NtUninstallKB941644$\tcpip.sys
[7] 2004-08-18 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB917953$\tcpip.sys
.
((((((((((((((((((((((((((((( SnapShot@2009-05-14_20.17.15 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-04-09 20:39 . 2010-04-09 20:39 16384 c:\windows\Temp\Perflib_Perfdata_5b8.dat
+ 2010-04-09 20:39 . 2010-04-09 20:39 16384 c:\windows\Temp\Perflib_Perfdata_198.dat
+ 2005-05-26 02:16 . 2009-08-06 17:24 44768 c:\windows\system32\wups2.dll
+ 2005-08-25 07:32 . 2009-08-06 17:24 35552 c:\windows\system32\wups.dll
+ 2005-08-25 07:32 . 2009-08-06 17:24 53472 c:\windows\system32\wuauclt.exe
+ 2004-08-18 12:00 . 2009-06-25 08:27 54272 c:\windows\system32\wdigest.dll
+ 2005-08-25 08:33 . 2006-10-27 06:26 69632 c:\windows\system32\vuins32.dll
+ 2007-01-29 08:58 . 2010-01-23 08:11 46080 c:\windows\system32\tzchange.exe
+ 2004-08-18 12:00 . 2009-06-15 10:45 78336 c:\windows\system32\telnet.exe
- 2004-08-18 12:00 . 2008-04-14 03:22 75776 c:\windows\system32\strmfilt.dll
+ 2004-08-18 12:00 . 2009-10-21 05:40 75776 c:\windows\system32\strmfilt.dll
+ 2009-10-07 10:00 . 2009-08-06 17:24 44768 c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.4.7600.226\wups2.dll
+ 2009-10-07 10:00 . 2009-08-06 17:24 35552 c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.4.7600.226\wups.dll
+ 2004-08-18 12:00 . 2009-06-25 08:27 56832 c:\windows\system32\secur32.dll
- 2004-08-18 12:00 . 2009-02-03 19:58 56832 c:\windows\system32\secur32.dll
+ 2009-07-25 12:35 . 2004-09-17 09:37 61440 c:\windows\system32\ReinstallBackups\0019\DriverFiles\vuins32.dll
+ 2009-07-25 12:35 . 2005-03-18 08:39 42496 c:\windows\system32\ReinstallBackups\0019\DriverFiles\fetnd5bv.sys
+ 2009-06-12 18:17 . 2005-02-22 16:33 73728 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\Oemdspif.dll
+ 2009-06-12 18:17 . 2001-11-09 06:01 24064 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\ativcoxx.dll
+ 2009-06-12 18:17 . 2005-02-22 16:22 17408 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\atitvo32.dll
+ 2009-06-12 18:17 . 2005-02-22 16:33 94208 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\atipdlxx.dll
+ 2009-06-12 18:17 . 2005-01-18 13:05 79320 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\atiicdxx.dat
+ 2009-06-12 18:17 . 2005-02-22 16:33 53248 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\ATIDDC.DLL
+ 2009-06-12 18:17 . 2005-02-22 16:33 25088 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\Ati2mdxx.exe
+ 2009-06-12 18:17 . 2005-08-04 03:04 46080 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\ati2evxx.dll
+ 2009-06-12 18:17 . 2005-02-22 16:22 36864 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\ati2erec.dll
+ 2009-06-12 18:17 . 2005-08-04 03:04 39936 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\ati2edxx.dll
+ 2009-11-16 20:17 . 2006-02-21 18:40 77824 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\Oemdspif.dll
+ 2009-11-16 20:17 . 2001-11-09 07:01 24064 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\ativcoxx.dll
+ 2009-11-16 20:17 . 2006-02-21 18:10 17408 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\atitvo32.dll
+ 2009-11-16 20:17 . 2006-02-21 18:38 53248 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\ATIDDC.DLL
+ 2009-11-16 20:17 . 2006-02-21 18:40 26112 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\Ati2mdxx.exe
+ 2009-11-16 20:17 . 2006-02-21 18:40 61440 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\ati2evxx.dll
+ 2009-11-16 20:17 . 2006-02-21 18:09 40960 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\ati2erec.dll
+ 2009-11-16 20:17 . 2006-02-21 18:40 40960 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\ati2edxx.dll
+ 2009-11-16 22:03 . 2006-05-03 16:45 77824 c:\windows\system32\ReinstallBackups\0002\DriverFiles\Oemdspif.dll
- 2006-02-18 21:18 . 2001-11-09 15:01 24064 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ativcoxx.dll
+ 2009-11-16 22:03 . 2001-11-09 07:01 24064 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ativcoxx.dll
- 2006-02-18 21:18 . 2005-05-04 01:57 17408 c:\windows\system32\ReinstallBackups\0002\DriverFiles\atitvo32.dll
+ 2009-11-16 22:03 . 2006-05-03 16:15 17408 c:\windows\system32\ReinstallBackups\0002\DriverFiles\atitvo32.dll
+ 2009-11-16 22:03 . 2006-05-03 16:43 53248 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ATIDDC.DLL
- 2006-02-18 21:18 . 2005-05-04 02:22 53248 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ATIDDC.DLL
+ 2009-11-16 22:03 . 2006-05-03 16:45 26112 c:\windows\system32\ReinstallBackups\0002\DriverFiles\Ati2mdxx.exe
- 2006-02-18 21:18 . 2005-08-04 03:04 46080 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ati2evxx.dll
+ 2009-11-16 22:03 . 2005-08-04 03:04 46080 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ati2evxx.dll
+ 2009-11-16 22:03 . 2006-05-03 16:10 40960 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ati2erec.dll
- 2006-02-18 21:18 . 2005-08-04 03:04 39936 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ati2edxx.dll
+ 2009-11-16 22:03 . 2005-08-04 03:04 39936 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ati2edxx.dll
+ 2009-11-16 22:02 . 2005-08-04 03:04 73728 c:\windows\system32\ReinstallBackups\0001\DriverFiles\Oemdspif.dll
+ 2009-11-16 22:02 . 2001-11-09 07:01 24064 c:\windows\system32\ReinstallBackups\0001\DriverFiles\ativcoxx.dll
+ 2009-11-16 22:02 . 2005-08-04 02:08 17408 c:\windows\system32\ReinstallBackups\0001\DriverFiles\atitvo32.dll
+ 2009-11-16 22:02 . 2005-06-10 20:59 95617 c:\windows\system32\ReinstallBackups\0001\DriverFiles\atiicdxx.dat
+ 2009-11-16 22:02 . 2005-08-04 03:02 53248 c:\windows\system32\ReinstallBackups\0001\DriverFiles\ATIDDC.DLL
+ 2009-11-16 22:02 . 2005-08-04 03:04 25088 c:\windows\system32\ReinstallBackups\0001\DriverFiles\Ati2mdxx.exe
+ 2009-11-16 22:02 . 2005-08-04 03:04 46080 c:\windows\system32\ReinstallBackups\0001\DriverFiles\ati2evxx.dll
+ 2009-11-16 22:02 . 2005-08-04 02:08 40960 c:\windows\system32\ReinstallBackups\0001\DriverFiles\ati2erec.dll
+ 2009-11-16 22:02 . 2005-08-04 03:04 39936 c:\windows\system32\ReinstallBackups\0001\DriverFiles\ati2edxx.dll
- 2004-08-18 12:00 . 2008-04-14 03:21 79872 c:\windows\system32\raschap.dll
+ 2004-08-18 12:00 . 2009-10-12 13:40 79872 c:\windows\system32\raschap.dll
+ 2004-08-18 12:00 . 2010-03-29 07:38 52764 c:\windows\system32\perfc009.dat
- 2004-08-18 12:00 . 2009-04-18 14:22 52764 c:\windows\system32\perfc009.dat
+ 2004-08-18 12:00 . 2009-10-08 13:57 22528 c:\windows\system32\oleaccrc.dll
+ 2005-08-04 03:04 . 2006-05-03 16:45 77824 c:\windows\system32\Oemdspif.dll
+ 2009-01-27 16:48 . 2009-02-09 06:37 91136 c:\windows\system32\nmwcdcls.dll
- 2009-01-27 16:48 . 2009-02-09 05:37 91136 c:\windows\system32\nmwcdcls.dll
+ 2004-08-17 15:49 . 2009-11-27 17:14 17920 c:\windows\system32\msyuv.dll
+ 2004-08-18 12:00 . 2009-11-27 16:09 28672 c:\windows\system32\msvidc32.dll
+ 2004-08-18 12:00 . 2009-11-27 16:09 11264 c:\windows\system32\msrle32.dll
- 2004-08-18 12:00 . 2008-04-14 03:21 11264 c:\windows\system32\msrle32.dll
- 2006-11-07 19:03 . 2009-03-08 02:31 55296 c:\windows\system32\msfeedsbs.dll
+ 2006-11-07 19:03 . 2010-02-25 06:18 55296 c:\windows\system32\msfeedsbs.dll
+ 2004-08-18 12:00 . 2009-09-04 21:05 58880 c:\windows\system32\msasn1.dll
+ 2010-02-13 13:37 . 2010-02-13 13:37 85173 c:\windows\system32\Macromed\Flash\uninstall_plugin.exe
+ 2009-05-26 16:37 . 2009-05-26 16:37 89102 c:\windows\system32\Macromed\Flash\uninstall_activeX.exe
- 2004-08-18 12:00 . 2009-03-08 02:33 25600 c:\windows\system32\jsproxy.dll
+ 2004-08-18 12:00 . 2010-02-25 06:18 25600 c:\windows\system32\jsproxy.dll
+ 2004-08-17 15:49 . 2009-11-27 16:09 48128 c:\windows\system32\iyuv_32.dll
+ 2004-08-18 12:00 . 2009-10-21 05:40 25088 c:\windows\system32\httpapi.dll
+ 2004-08-18 12:00 . 2009-10-15 16:32 81920 c:\windows\system32\fontsub.dll
- 2009-05-06 19:44 . 2008-08-26 08:26 18816 c:\windows\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.sys
+ 2009-06-24 15:14 . 2008-08-26 08:26 18816 c:\windows\system32\DRVSTORE\pccsmcfd_A3B3916E5D8138F59EE218321B27B044D3B18294\pccsmcfd.sys
+ 2009-06-24 15:13 . 2009-02-09 06:37 22016 c:\windows\system32\DRVSTORE\ccdcmbo_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\ccdcmbo.sys
+ 2009-06-24 15:13 . 2009-02-09 06:37 91136 c:\windows\system32\DRVSTORE\ccdcmb_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\nmwcdcls.dll
+ 2009-06-24 15:13 . 2009-02-09 06:37 17664 c:\windows\system32\DRVSTORE\ccdcmb_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\ccdcmb.sys
+ 2009-06-24 15:14 . 2008-08-26 08:26 18816 c:\windows\system32\drivers\pccsmcfd.sys
- 2009-05-06 19:44 . 2008-08-26 08:26 18816 c:\windows\system32\drivers\pccsmcfd.sys
+ 2009-05-14 20:56 . 2010-01-07 15:07 38224 c:\windows\system32\drivers\mbamswissarmy.sys
+ 2009-05-14 20:56 . 2010-01-07 15:07 19160 c:\windows\system32\drivers\mbam.sys
+ 2004-08-18 12:00 . 2009-06-24 11:18 92928 c:\windows\system32\drivers\ksecdd.sys
- 2009-04-17 20:12 . 2009-05-14 06:16 23524 c:\windows\system32\drivers\GVTDrv.sys
+ 2009-11-16 20:45 . 2009-11-24 07:10 23524 c:\windows\system32\drivers\GVTDrv.sys
+ 2005-08-25 08:33 . 2008-09-22 01:41 43520 c:\windows\system32\drivers\fetnd5bv.sys
+ 2005-08-04 02:08 . 2006-05-03 16:10 40960 c:\windows\system32\drivers\ati2erec.dll
- 2005-08-04 02:08 . 2005-08-04 02:08 40960 c:\windows\system32\drivers\ati2erec.dll
+ 2006-02-20 15:44 . 2009-11-24 23:49 48560 c:\windows\system32\drivers\aswTdi.sys
+ 2006-02-20 15:44 . 2009-11-24 23:48 23120 c:\windows\system32\drivers\aswRdr.sys
+ 2006-02-20 15:44 . 2009-09-15 11:56 94160 c:\windows\system32\drivers\aswmon2.sys
+ 2006-02-20 15:44 . 2009-11-24 23:51 93424 c:\windows\system32\drivers\aswmon.sys
+ 2008-04-04 17:23 . 2009-09-15 11:55 20560 c:\windows\system32\drivers\aswFsBlk.sys
- 2008-04-04 17:23 . 2009-02-05 21:07 20560 c:\windows\system32\drivers\aswFsBlk.sys
+ 2006-02-20 15:44 . 2009-11-24 23:47 27408 c:\windows\system32\drivers\aavmker4.sys
+ 2009-06-10 04:14 . 2010-02-25 06:18 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2005-08-25 07:32 . 2009-08-06 17:24 35552 c:\windows\system32\dllcache\wups.dll
+ 2005-08-25 07:32 . 2009-08-06 17:24 53472 c:\windows\system32\dllcache\wuauclt.exe
+ 2009-06-25 08:27 . 2009-06-25 08:27 54272 c:\windows\system32\dllcache\wdigest.dll
+ 2009-06-15 10:45 . 2009-06-15 10:45 78336 c:\windows\system32\dllcache\telnet.exe
+ 2009-10-21 05:40 . 2009-10-21 05:40 75776 c:\windows\system32\dllcache\strmfilt.dll
+ 2009-02-03 19:58 . 2009-06-25 08:27 56832 c:\windows\system32\dllcache\secur32.dll
- 2009-02-03 19:58 . 2009-02-03 19:58 56832 c:\windows\system32\dllcache\secur32.dll
+ 2009-10-12 13:40 . 2009-10-12 13:40 79872 c:\windows\system32\dllcache\raschap.dll
+ 2004-08-18 12:00 . 2009-10-08 13:57 22528 c:\windows\system32\dllcache\oleaccrc.dll
+ 2009-11-27 17:14 . 2009-11-27 17:14 17920 c:\windows\system32\dllcache\msyuv.dll
+ 2004-08-18 12:00 . 2009-11-27 16:09 28672 c:\windows\system32\dllcache\msvidc32.dll
+ 2009-11-27 16:09 . 2009-11-27 16:09 11264 c:\windows\system32\dllcache\msrle32.dll
+ 2007-05-09 12:15 . 2010-02-25 06:18 55296 c:\windows\system32\dllcache\msfeedsbs.dll
- 2007-05-09 12:15 . 2009-03-08 02:31 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2009-09-04 21:05 . 2009-09-04 21:05 58880 c:\windows\system32\dllcache\msasn1.dll
+ 2009-06-24 11:18 . 2009-06-24 11:18 92928 c:\windows\system32\dllcache\ksecdd.sys
+ 2004-08-18 12:00 . 2010-02-25 06:18 25600 c:\windows\system32\dllcache\jsproxy.dll
- 2004-08-18 12:00 . 2009-03-08 02:33 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-11-27 16:09 . 2009-11-27 16:09 48128 c:\windows\system32\dllcache\iyuv_32.dll
+ 2009-05-12 15:38 . 2009-10-02 04:44 92160 c:\windows\system32\dllcache\iecompat.dll
+ 2009-10-21 05:40 . 2009-10-21 05:40 25088 c:\windows\system32\dllcache\httpapi.dll
+ 2009-06-16 14:40 . 2009-10-15 16:32 81920 c:\windows\system32\dllcache\fontsub.dll
+ 2009-12-14 07:10 . 2009-12-14 07:10 33280 c:\windows\system32\dllcache\csrsrv.dll
+ 2004-08-18 12:00 . 2009-08-06 17:24 96480 c:\windows\system32\dllcache\cdm.dll
+ 2009-06-10 14:15 . 2009-11-27 16:09 84992 c:\windows\system32\dllcache\avifil32.dll
+ 2009-07-17 19:04 . 2009-07-17 19:04 58880 c:\windows\system32\dllcache\atl.dll
+ 2004-08-18 12:00 . 2009-12-14 07:10 33280 c:\windows\system32\csrsrv.dll
+ 2004-08-18 12:00 . 2009-08-06 17:24 96480 c:\windows\system32\cdm.dll
+ 2004-08-18 12:00 . 2009-11-27 16:09 84992 c:\windows\system32\avifil32.dll
- 2004-08-18 12:00 . 2008-04-14 03:21 84992 c:\windows\system32\avifil32.dll
- 2006-02-20 15:44 . 2009-02-05 21:04 97480 c:\windows\system32\AVASTSS.scr
+ 2006-02-20 15:44 . 2009-11-24 23:47 97480 c:\windows\system32\AVASTSS.scr
- 2004-08-18 12:00 . 2008-04-14 03:21 58880 c:\windows\system32\atl.dll
+ 2004-08-18 12:00 . 2009-07-17 19:04 58880 c:\windows\system32\atl.dll
- 2001-11-09 15:01 . 2001-11-09 15:01 24064 c:\windows\system32\ativcoxx.dll
+ 2001-11-09 15:01 . 2001-11-09 07:01 24064 c:\windows\system32\ativcoxx.dll
+ 2005-08-04 02:08 . 2006-05-03 16:15 17408 c:\windows\system32\atitvo32.dll
- 2005-08-04 02:08 . 2005-08-04 02:08 17408 c:\windows\system32\atitvo32.dll
+ 2005-08-04 03:02 . 2006-05-03 16:43 53248 c:\windows\system32\ATIDDC.DLL
- 2005-08-04 03:02 . 2005-08-04 03:02 53248 c:\windows\system32\ATIDDC.DLL
+ 2005-08-04 03:04 . 2006-05-03 16:45 26112 c:\windows\system32\Ati2mdxx.exe
+ 2005-08-04 03:04 . 2006-05-03 16:44 61440 c:\windows\system32\ati2evxx.dll
+ 2005-08-04 03:04 . 2006-05-03 16:45 41984 c:\windows\system32\ati2edxx.dll
+ 2009-06-24 17:56 . 2009-06-24 17:56 73728 c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe
+ 2003-04-07 17:05 . 2003-04-07 17:05 23040 c:\windows\Microsoft.NET\Framework\v1.1.4322\MUI\0405\mscorsecr.dll
- 2007-04-13 18:58 . 2007-04-13 18:58 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
+ 2008-05-27 22:49 . 2008-05-27 22:49 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
+ 2008-05-27 22:49 . 2008-05-27 22:49 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorie.dll
- 2007-04-13 18:57 . 2007-04-13 18:57 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorie.dll
+ 2003-04-07 17:31 . 2003-04-07 17:31 61440 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Web.Services.resources.dll
+ 2003-04-07 17:32 . 2003-04-07 17:32 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Web.Mobile.resources.dll
+ 2003-04-07 17:24 . 2003-04-07 17:24 40960 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.ServiceProcess.resources.dll
+ 2003-04-07 17:24 . 2003-04-07 17:24 11776 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
+ 2003-04-07 17:24 . 2003-04-07 17:24 28672 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Runtime.Remoting.resources.dll
+ 2003-04-07 17:26 . 2003-04-07 17:26 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\system.resources.dll
+ 2003-04-07 17:31 . 2003-04-07 17:31 61440 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Messaging.resources.dll
+ 2003-04-07 17:26 . 2003-04-07 17:26 24576 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Management.resources.dll
+ 2003-04-07 17:31 . 2003-04-07 17:31 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.EnterpriseServices.resources.dll
+ 2003-04-07 17:32 . 2003-04-07 17:32 13312 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Drawing.resources.dll
+ 2003-04-07 17:32 . 2003-04-07 17:32 11264 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.DirectoryServices.resources.dll
+ 2003-04-07 17:32 . 2003-04-07 17:32 15872 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Configuration.Install.resources.dll
+ 2003-04-07 17:30 . 2003-04-07 17:30 36864 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\Microsoft.VisualBasic.resources.dll
+ 2003-04-07 17:32 . 2003-04-07 17:32 45056 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\Microsoft.JScript.resources.dll
+ 2003-04-07 17:25 . 2003-04-07 17:25 10752 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\ConfigWizards.resources.dll
+ 2003-04-07 17:25 . 2003-04-07 17:25 40960 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\caspol.resources.dll
+ 2003-04-07 17:04 . 2003-04-07 17:04 40960 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\aspnet_rc.dll
- 2007-04-13 18:57 . 2007-04-13 18:57 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
+ 2008-05-27 22:49 . 2008-05-27 22:49 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
- 2007-04-13 19:30 . 2007-04-13 19:30 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe
+ 2008-05-27 23:30 . 2008-05-27 23:30 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe
+ 2003-04-07 17:06 . 2003-04-07 17:06 98304 c:\windows\Microsoft.NET\Framework\v1.1.4322\1029\cscompui.dll
+ 2003-04-07 17:06 . 2003-04-07 17:06 17920 c:\windows\Microsoft.NET\Framework\v1.1.4322\1029\alinkui.dll
+ 2006-12-24 12:44 . 2006-12-24 12:44 94208 c:\windows\Installer\de364e.msi
+ 2009-07-06 07:29 . 2009-07-06 07:29 15086 c:\windows\Installer\{3D39E775-DDDA-4327-B747-0BDC5F191331}\ARPPRODUCTICON.exe
+ 2009-06-24 15:14 . 2009-06-24 15:14 10134 c:\windows\Installer\{0C973594-7DDF-4BD0-84ED-3517F7622037}\ARPPRODUCTICON.exe
+ 2010-03-31 05:07 . 2009-12-21 19:08 12800 c:\windows\ie8updates\KB980182-IE8\xpshims.dll
+ 2010-03-31 05:07 . 2009-12-21 19:08 55296 c:\windows\ie8updates\KB980182-IE8\msfeedsbs.dll
+ 2010-03-31 05:07 . 2009-12-21 19:08 25600 c:\windows\ie8updates\KB980182-IE8\jsproxy.dll
+ 2010-01-21 19:20 . 2009-10-29 07:43 12800 c:\windows\ie8updates\KB978207-IE8\xpshims.dll
+ 2010-01-21 19:20 . 2009-10-29 07:43 55296 c:\windows\ie8updates\KB978207-IE8\msfeedsbs.dll
+ 2010-01-21 19:20 . 2009-10-29 07:43 25600 c:\windows\ie8updates\KB978207-IE8\jsproxy.dll
+ 2009-12-09 21:30 . 2009-08-29 07:58 12800 c:\windows\ie8updates\KB976325-IE8\xpshims.dll
+ 2009-12-09 21:30 . 2009-08-29 07:58 55296 c:\windows\ie8updates\KB976325-IE8\msfeedsbs.dll
+ 2009-12-09 21:30 . 2009-08-29 07:58 25600 c:\windows\ie8updates\KB976325-IE8\jsproxy.dll
+ 2009-10-15 17:54 . 2009-07-03 16:59 12800 c:\windows\ie8updates\KB974455-IE8\xpshims.dll
+ 2009-10-15 17:54 . 2009-07-03 16:59 55296 c:\windows\ie8updates\KB974455-IE8\msfeedsbs.dll
+ 2009-10-15 17:54 . 2009-07-03 16:59 25600 c:\windows\ie8updates\KB974455-IE8\jsproxy.dll
+ 2009-07-29 20:07 . 2009-04-30 21:16 12800 c:\windows\ie8updates\KB972260-IE8\xpshims.dll
+ 2009-07-29 20:07 . 2009-03-08 02:31 55296 c:\windows\ie8updates\KB972260-IE8\msfeedsbs.dll
+ 2009-07-29 20:07 . 2009-04-30 21:16 25600 c:\windows\ie8updates\KB972260-IE8\jsproxy.dll
+ 2009-06-10 05:32 . 2009-03-08 02:33 12288 c:\windows\ie8updates\KB969897-IE8\xpshims.dll
+ 2009-06-10 05:32 . 2009-03-08 02:33 25600 c:\windows\ie8updates\KB969897-IE8\jsproxy.dll
+ 2009-11-27 17:14 . 2009-11-27 17:14 17920 c:\windows\Driver Cache\i386\msyuv.dll
+ 2009-11-27 16:09 . 2009-11-27 16:09 48128 c:\windows\Driver Cache\i386\iyuv_32.dll
+ 2009-10-15 17:45 . 2009-10-15 17:45 90112 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_e27d791b\System.Drawing.Design.dll
+ 2009-10-15 17:45 . 2009-10-15 17:45 61440 c:\windows\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_729fb13b\CustomMarshalers.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 61440 c:\windows\assembly\GAC\System.Web.Services.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Web.Services.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 77824 c:\windows\assembly\GAC\System.Web.Mobile.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Web.Mobile.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 40960 c:\windows\assembly\GAC\System.ServiceProcess.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 11776 c:\windows\assembly\GAC\System.Runtime.Serialization.Formatters.Soap.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 28672 c:\windows\assembly\GAC\System.Runtime.Remoting.resources\1.0.5000.0_cs_b77a5c561934e089\System.runtime.remoting.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 81920 c:\windows\assembly\GAC\System.resources\1.0.5000.0_cs_b77a5c561934e089\System.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 61440 c:\windows\assembly\GAC\System.Messaging.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Messaging.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 24576 c:\windows\assembly\GAC\system.management.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Management.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 32768 c:\windows\assembly\GAC\System.EnterpriseServices.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.EnterpriseServices.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 13312 c:\windows\assembly\GAC\System.Drawing.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Drawing.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 11264 c:\windows\assembly\GAC\System.DirectoryServices.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.DirectoryServices.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 15872 c:\windows\assembly\GAC\System.Configuration.Install.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Configuration.Install.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 36864 c:\windows\assembly\GAC\Microsoft.VisualBasic.resources\7.0.5000.0_cs_b03f5f7f11d50a3a\Microsoft.VisualBasic.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 45056 c:\windows\assembly\GAC\Microsoft.JScript.resources\7.0.5000.0_cs_b03f5f7f11d50a3a\Microsoft.Jscript.resources.dll
+ 2010-02-24 12:48 . 2009-10-28 15:07 46080 c:\windows\$NtUninstallKB979306$\tzchange.exe
+ 2010-02-24 12:48 . 2010-01-23 10:43 16896 c:\windows\$NtUninstallKB979306$\spuninst\tzchange.dll
+ 2010-02-10 20:30 . 2008-04-14 03:21 32256 c:\windows\$NtUninstallKB978037$\csrsrv.dll
+ 2010-02-10 20:29 . 2004-08-18 12:00 25600 c:\windows\$NtUninstallKB977914$\msvidc32.dll
+ 2010-02-10 20:29 . 2008-04-14 03:21 11264 c:\windows\$NtUninstallKB977914$\msrle32.dll
+ 2010-02-10 20:29 . 2008-04-14 03:21 47104 c:\windows\$NtUninstallKB977914$\iyuv_32.dll
+ 2010-02-10 20:29 . 2009-06-10 14:15 84992 c:\windows\$NtUninstallKB977914$\avifil32.dll
+ 2009-11-25 11:38 . 2009-07-14 11:03 46080 c:\windows\$NtUninstallKB976098-v2$\tzchange.exe
+ 2009-11-25 11:38 . 2009-10-29 02:05 16896 c:\windows\$NtUninstallKB976098-v2$\spuninst\tzchange.dll
+ 2010-02-10 20:29 . 2008-04-14 03:21 16896 c:\windows\$NtUninstallKB975560$\msyuv.dll
+ 2009-10-15 17:45 . 2008-04-14 03:21 57344 c:\windows\$NtUninstallKB974571$\msasn1.dll
+ 2009-12-09 21:30 . 2008-04-14 03:21 79872 c:\windows\$NtUninstallKB974318$\raschap.dll
+ 2009-08-13 14:07 . 2008-04-14 03:21 58880 c:\windows\$NtUninstallKB973507$\atl.dll
+ 2010-01-12 19:48 . 2009-06-16 14:40 81920 c:\windows\$NtUninstallKB972270$\fontsub.dll
+ 2009-08-13 14:08 . 2008-04-14 03:21 84992 c:\windows\$NtUninstallKB971557$\avifil32.dll
+ 2009-11-12 17:59 . 2004-08-18 12:00 18944 c:\windows\$NtUninstallKB971513$\oleaccrc.dll
+ 2009-08-26 13:21 . 2008-04-14 03:22 60416 c:\windows\$NtUninstallKB970653-v3$\tzchange.exe
+ 2009-08-26 13:21 . 2009-07-16 04:18 14336 c:\windows\$NtUninstallKB970653-v3$\spuninst\tzchange.dll
+ 2009-12-09 21:30 . 2008-04-14 03:22 75776 c:\windows\$NtUninstallKB970430$\strmfilt.dll
+ 2009-12-09 21:30 . 2008-04-14 03:21 24576 c:\windows\$NtUninstallKB970430$\httpapi.dll
+ 2009-08-14 21:25 . 2008-04-14 03:22 49152 c:\windows\$NtUninstallKB968389$\wdigest.dll
+ 2009-08-14 21:25 . 2009-02-03 19:58 56832 c:\windows\$NtUninstallKB968389$\secur32.dll
+ 2009-08-14 21:25 . 2008-04-13 18:31 92288 c:\windows\$NtUninstallKB968389$\ksecdd.sys
+ 2009-07-16 16:25 . 2008-04-14 03:21 80896 c:\windows\$NtUninstallKB961371$\fontsub.dll
+ 2009-08-13 14:09 . 2008-04-14 03:22 77824 c:\windows\$NtUninstallKB960859$\telnet.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB978706\update\spcustom.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB978706\spmsg.dll
+ 2010-02-10 20:32 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB978262\update\spcustom.dll
+ 2010-02-10 20:32 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB978262\spmsg.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB978251\update\spcustom.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB978251\spmsg.dll
+ 2010-01-21 19:20 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB978207-IE8\update\spcustom.dll
+ 2010-01-21 19:20 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB978207-IE8\spmsg.dll
+ 2010-01-21 19:18 . 2009-12-21 19:02 12800 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\xpshims.dll
+ 2010-01-21 19:18 . 2009-12-21 19:02 55296 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\msfeedsbs.dll
+ 2010-01-21 19:18 . 2009-12-21 19:02 25600 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\jsproxy.dll
+ 2010-02-10 20:30 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB978037\update\spcustom.dll
+ 2010-02-10 20:30 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB978037\spmsg.dll
+ 2009-12-14 07:11 . 2009-12-14 07:11 33280 c:\windows\$hf_mig$\KB978037\SP3QFE\csrsrv.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB977914\update\spcustom.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB977914\spmsg.dll
+ 2009-11-27 16:29 . 2009-11-27 16:29 28672 c:\windows\$hf_mig$\KB977914\SP3QFE\msvidc32.dll
+ 2009-11-27 16:29 . 2009-11-27 16:29 11264 c:\windows\$hf_mig$\KB977914\SP3QFE\msrle32.dll
+ 2009-11-27 16:29 . 2009-11-27 16:29 48128 c:\windows\$hf_mig$\KB977914\SP3QFE\iyuv_32.dll
+ 2009-11-27 16:29 . 2009-11-27 16:29 84992 c:\windows\$hf_mig$\KB977914\SP3QFE\avifil32.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB977165\update\spcustom.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB977165\spmsg.dll
+ 2009-11-04 20:36 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB976749-IE8\update\spcustom.dll
+ 2009-11-04 20:36 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB976749-IE8\spmsg.dll
+ 2010-02-24 12:49 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB976662-IE8\update\spcustom.dll
+ 2010-02-24 12:49 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB976662-IE8\spmsg.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB976325-IE8\update\spcustom.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB976325-IE8\spmsg.dll
+ 2009-12-09 10:04 . 2009-10-29 07:38 12800 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\xpshims.dll
+ 2009-12-09 10:04 . 2009-10-29 07:38 55296 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\msfeedsbs.dll
+ 2009-12-09 10:04 . 2009-10-29 07:38 25600 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\jsproxy.dll
+ 2010-02-10 20:30 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB975713\update\spcustom.dll
+ 2010-02-10 20:30 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB975713\spmsg.dll
+ 2010-03-10 12:44 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB975561\update\spcustom.dll
+ 2010-03-10 12:44 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB975561\spmsg.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB975560\update\spcustom.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB975560\spmsg.dll
+ 2009-11-27 17:25 . 2009-11-27 17:25 17920 c:\windows\$hf_mig$\KB975560\SP3QFE\msyuv.dll
+ 2009-10-15 17:41 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB975467\update\spcustom.dll
+ 2009-10-15 17:41 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB975467\spmsg.dll
+ 2009-11-12 17:56 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB975364-IE8\update\spcustom.dll
+ 2009-11-12 17:56 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB975364-IE8\spmsg.dll
+ 2009-11-12 17:53 . 2009-10-02 04:43 92160 c:\windows\$hf_mig$\KB975364-IE8\SP3QFE\iecompat.dll
+ 2009-10-15 17:46 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB975025\update\spcustom.dll
+ 2009-10-15 17:46 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB975025\spmsg.dll
+ 2009-10-15 17:45 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB974571\update\spcustom.dll
+ 2009-10-15 17:45 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB974571\spmsg.dll
+ 2009-09-04 21:01 . 2009-09-04 21:01 58880 c:\windows\$hf_mig$\KB974571\SP3QFE\msasn1.dll
+ 2009-10-15 17:54 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB974455-IE8\update\spcustom.dll
+ 2009-10-15 17:54 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB974455-IE8\spmsg.dll
+ 2009-10-15 15:04 . 2009-08-29 07:51 12800 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\xpshims.dll
+ 2009-10-15 15:04 . 2009-08-29 07:51 55296 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\msfeedsbs.dll
+ 2009-10-15 15:04 . 2009-08-29 07:51 25600 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\jsproxy.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB974392\update\spcustom.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB974392\spmsg.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB974318\update\spcustom.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB974318\spmsg.dll
+ 2009-10-12 13:33 . 2009-10-12 13:33 79872 c:\windows\$hf_mig$\KB974318\SP3QFE\raschap.dll
+ 2009-10-15 17:46 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB974112\update\spcustom.dll
+ 2009-10-15 17:46 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB974112\spmsg.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB973904\update\spcustom.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB973904\spmsg.dll
+ 2009-08-13 14:07 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB973869\update\spcustom.dll
+ 2009-08-13 14:07 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB973869\spmsg.dll
+ 2009-08-13 13:59 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB973815\update\spcustom.dll
+ 2009-08-13 13:59 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB973815\spmsg.dll
+ 2009-11-25 11:38 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB973687\update\spcustom.dll
+ 2009-11-25 11:38 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB973687\spmsg.dll
+ 2009-10-15 17:41 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB973525\update\spcustom.dll
+ 2009-10-15 17:41 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB973525\spmsg.dll
+ 2009-08-13 14:07 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB973507\update\spcustom.dll
+ 2009-08-13 14:07 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB973507\spmsg.dll
+ 2009-07-17 19:27 . 2009-07-17 19:27 58880 c:\windows\$hf_mig$\KB973507\SP3QFE\atl.dll
+ 2009-08-13 14:07 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB973354\update\spcustom.dll
+ 2009-08-13 14:07 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB973354\spmsg.dll
+ 2009-07-16 16:30 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB973346\update\spcustom.dll
+ 2009-07-16 16:30 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB973346\spmsg.dll
+ 2010-01-12 19:48 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB972270\update\spcustom.dll
+ 2010-01-12 19:48 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB972270\spmsg.dll
+ 2010-01-12 19:46 . 2009-10-15 16:40 81920 c:\windows\$hf_mig$\KB972270\SP3QFE\fontsub.dll
+ 2009-07-29 20:07 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB972260-IE8\update\spcustom.dll
+ 2009-07-29 20:07 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB972260-IE8\spmsg.dll
+ 2009-07-29 09:26 . 2009-07-03 17:02 12800 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\xpshims.dll
+ 2009-07-29 09:26 . 2009-07-03 17:02 55296 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\msfeedsbs.dll
+ 2009-07-29 09:26 . 2009-07-03 17:02 25600 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\jsproxy.dll
+ 2009-09-09 18:30 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB971961-IE8\update\spcustom.dll
+ 2009-09-09 18:30 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB971961-IE8\spmsg.dll
+ 2009-12-09 21:29 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB971737\update\spcustom.dll
+ 2009-12-09 21:29 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB971737\spmsg.dll
+ 2009-08-13 14:08 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB971657\update\spcustom.dll
+ 2009-08-13 14:08 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB971657\spmsg.dll
+ 2009-07-16 16:30 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB971633\update\spcustom.dll
+ 2009-07-16 16:30 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB971633\spmsg.dll
+ 2009-08-13 14:08 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB971557\update\spcustom.dll
+ 2009-08-13 14:08 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB971557\spmsg.dll
+ 2009-06-10 14:02 . 2009-06-10 14:02 84992 c:\windows\$hf_mig$\KB971557\SP3QFE\avifil32.dll
+ 2009-10-15 17:42 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB971486\update\spcustom.dll
+ 2009-10-15 17:42 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB971486\spmsg.dll
+ 2010-02-10 20:32 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB971468\update\spcustom.dll
+ 2010-02-10 20:32 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB971468\spmsg.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB970430\update\spcustom.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB970430\spmsg.dll
+ 2009-10-21 05:42 . 2009-10-21 05:42 75776 c:\windows\$hf_mig$\KB970430\SP3QFE\strmfilt.dll
+ 2009-10-21 05:42 . 2009-10-21 05:42 25088 c:\windows\$hf_mig$\KB970430\SP3QFE\httpapi.dll
+ 2009-06-10 05:29 . 2007-11-30 12:39 26488 c:\windows\$hf_mig$\KB970238\update\spcustom.dll
+ 2009-06-10 05:29 . 2007-11-30 12:39 18296 c:\windows\$hf_mig$\KB970238\spmsg.dll
+ 2009-11-11 21:00 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB969947\update\spcustom.dll
+ 2009-11-11 21:00 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB969947\spmsg.dll
+ 2009-06-10 05:31 . 2007-11-30 12:39 26488 c:\windows\$hf_mig$\KB969898\update\spcustom.dll
+ 2009-06-10 05:31 . 2007-11-30 12:39 18296 c:\windows\$hf_mig$\KB969898\spmsg.dll
+ 2009-06-10 05:32 . 2007-11-30 12:39 26488 c:\windows\$hf_mig$\KB969897-IE8\update\spcustom.dll
+ 2009-06-10 05:32 . 2007-11-30 12:39 18296 c:\windows\$hf_mig$\KB969897-IE8\spmsg.dll
+ 2009-06-10 04:14 . 2009-04-30 21:19 12800 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\xpshims.dll
+ 2009-06-10 04:14 . 2009-04-30 21:19 25600 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\jsproxy.dll
+ 2009-10-15 17:47 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB969059\update\spcustom.dll
+ 2009-10-15 17:47 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB969059\spmsg.dll
+ 2009-06-10 05:28 . 2008-07-09 07:36 26488 c:\windows\$hf_mig$\KB968537\update\spcustom.dll
+ 2009-06-10 05:28 . 2008-07-09 07:36 18296 c:\windows\$hf_mig$\KB968537\spmsg.dll
+ 2009-08-14 21:25 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB968389\update\spcustom.dll
+ 2009-08-14 21:25 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB968389\spmsg.dll
+ 2009-06-25 08:42 . 2009-06-25 08:42 54272 c:\windows\$hf_mig$\KB968389\SP3QFE\wdigest.dll
+ 2009-06-25 08:42 . 2009-06-25 08:42 56832 c:\windows\$hf_mig$\KB968389\SP3QFE\secur32.dll
+ 2009-06-24 10:28 . 2009-06-24 10:28 92928 c:\windows\$hf_mig$\KB968389\SP3QFE\ksecdd.sys
+ 2009-06-10 05:31 . 2008-07-09 07:36 26488 c:\windows\$hf_mig$\KB961501\update\spcustom.dll
+ 2009-06-10 05:31 . 2008-07-09 07:36 18296 c:\windows\$hf_mig$\KB961501\spmsg.dll
+ 2009-07-16 16:25 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB961371\update\spcustom.dll
+ 2009-07-16 16:25 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB961371\spmsg.dll
+ 2009-06-16 14:44 . 2009-06-16 14:44 81920 c:\windows\$hf_mig$\KB961371\SP3QFE\fontsub.dll
+ 2009-08-13 14:09 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB960859\update\spcustom.dll
+ 2009-08-13 14:09 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB960859\spmsg.dll
+ 2009-06-15 11:14 . 2009-06-15 11:14 81408 c:\windows\$hf_mig$\KB960859\SP3QFE\tlntsess.exe
+ 2009-06-15 11:14 . 2009-06-15 11:14 78336 c:\windows\$hf_mig$\KB960859\SP3QFE\telnet.exe
+ 2009-09-09 18:24 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB956844\update\spcustom.dll
+ 2009-09-09 18:24 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB956844\spmsg.dll
+ 2009-08-13 14:08 . 2008-07-08 12:59 26488 c:\windows\$hf_mig$\KB956744\update\spcustom.dll
+ 2009-08-13 14:08 . 2008-07-08 12:59 18296 c:\windows\$hf_mig$\KB956744\spmsg.dll
+ 2010-01-12 19:48 . 2009-05-26 11:40 26488 c:\windows\$hf_mig$\KB955759\update\spcustom.dll
+ 2010-01-12 19:48 . 2009-05-26 11:40 18296 c:\windows\$hf_mig$\KB955759\spmsg.dll
+ 2001-10-24 12:25 . 2009-11-27 16:09 8704 c:\windows\system32\tsbyuv.dll
+ 2003-04-07 17:05 . 2003-04-07 17:05 4096 c:\windows\system32\mui\0405\mscoreer.dll
+ 2009-06-24 15:13 . 2009-03-19 12:48 8320 c:\windows\system32\DRVSTORE\nmwcdnsuc_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\nmwcdnsuc.sys
+ 2009-06-24 15:13 . 2009-02-09 06:37 7808 c:\windows\system32\DRVSTORE\ccdcmbm_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\usbser_lowerflt.sys
+ 2009-06-24 15:13 . 2009-02-09 06:37 7808 c:\windows\system32\DRVSTORE\ccdcmbcj_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\usbser_lowerfltj.sys
+ 2009-11-27 16:09 . 2009-11-27 16:09 8704 c:\windows\system32\dllcache\tsbyuv.dll
+ 2003-04-07 17:32 . 2003-04-07 17:32 7680 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Security.resources.dll
+ 2003-04-07 17:32 . 2003-04-07 17:32 6144 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Drawing.Design.resources.dll
+ 2003-04-07 17:22 . 2003-04-07 17:22 9728 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\RegCode.resources.dll
+ 2003-04-07 17:25 . 2003-04-07 17:25 9728 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\Regasm.Resources.dll
+ 2003-04-07 17:23 . 2003-04-07 17:23 8192 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\JSC.resources.dll
+ 2003-04-07 17:25 . 2003-04-07 17:25 4608 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\InstallUtil.resources.dll
+ 2009-11-16 22:10 . 2009-11-16 22:10 9158 c:\windows\Installer\{EA9FAF16-0E5C-42C4-9742-9AF8D5F6D69B}\NewShortcut5_6E06A57A67284CFBAA9A5149F9C9ADB3.exe
+ 2009-11-16 22:10 . 2009-11-16 22:10 9158 c:\windows\Installer\{EA9FAF16-0E5C-42C4-9742-9AF8D5F6D69B}\NewShortcut3_6E06A57A67284CFBAA9A5149F9C9ADB3.exe
+ 2009-11-16 22:10 . 2009-11-16 22:10 9158 c:\windows\Installer\{EA9FAF16-0E5C-42C4-9742-9AF8D5F6D69B}\NewShortcut22_6E06A57A67284CFBAA9A5149F9C9ADB3.exe
+ 2009-11-16 22:10 . 2009-11-16 22:10 9158 c:\windows\Installer\{EA9FAF16-0E5C-42C4-9742-9AF8D5F6D69B}\NewShortcut21_6E06A57A67284CFBAA9A5149F9C9ADB3.exe
+ 2009-11-16 22:10 . 2009-11-16 22:10 9158 c:\windows\Installer\{EA9FAF16-0E5C-42C4-9742-9AF8D5F6D69B}\NewShortcut2_6E06A57A67284CFBAA9A5149F9C9ADB3.exe
+ 2009-11-16 22:10 . 2009-11-16 22:10 9158 c:\windows\Installer\{EA9FAF16-0E5C-42C4-9742-9AF8D5F6D69B}\NewShortcut1_6E06A57A67284CFBAA9A5149F9C9ADB3.exe
+ 2009-11-16 22:10 . 2009-11-16 22:10 9158 c:\windows\Installer\{EA9FAF16-0E5C-42C4-9742-9AF8D5F6D69B}\ARPPRODUCTICON.exe
+ 2009-06-24 15:13 . 2009-06-24 15:13 3262 c:\windows\Installer\{52D02A2B-03D2-4E34-A358-DC5D951FD296}\ARPPRODUCTICON.exe
+ 2009-11-27 16:09 . 2009-11-27 16:09 8704 c:\windows\Driver Cache\i386\tsbyuv.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 7680 c:\windows\assembly\GAC\System.Security.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Security.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 6144 c:\windows\assembly\GAC\System.Drawing.Design.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Drawing.design.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 9728 c:\windows\assembly\GAC\Regcode.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\RegCode.resources.dll
+ 2010-02-10 20:29 . 2004-08-18 12:00 8192 c:\windows\$NtUninstallKB977914$\tsbyuv.dll
+ 2009-11-27 16:29 . 2009-11-27 16:29 8704 c:\windows\$hf_mig$\KB977914\SP3QFE\tsbyuv.dll
+ 2005-08-25 07:32 . 2009-08-06 17:24 209632 c:\windows\system32\wuweb.dll
+ 2005-08-25 07:32 . 2009-08-06 17:24 327896 c:\windows\system32\wucltui.dll
+ 2005-08-25 07:32 . 2009-08-06 17:23 575704 c:\windows\system32\wuapi.dll
+ 2004-08-18 12:00 . 2009-04-01 21:02 604160 c:\windows\system32\wmspdmod.dll
+ 2004-08-18 12:00 . 2009-07-13 21:43 286208 c:\windows\system32\wmpdxm.dll
- 2004-08-18 12:00 . 2008-04-14 03:22 132096 c:\windows\system32\wkssvc.dll
+ 2004-08-18 12:00 . 2009-06-10 06:16 132096 c:\windows\system32\wkssvc.dll
+ 2004-08-18 12:00 . 2009-08-25 09:19 354816 c:\windows\system32\winhttp.dll
+ 2009-10-08 13:57 . 2009-10-08 13:57 613376 c:\windows\system32\uiautomationcore.dll
+ 2004-08-18 12:00 . 2009-10-15 16:32 119808 c:\windows\system32\t2embed.dll
- 2004-08-18 12:00 . 2008-10-03 10:04 247326 c:\windows\system32\strmdll.dll
+ 2004-08-18 12:00 . 2009-08-26 08:02 247326 c:\windows\system32\strmdll.dll
+ 2004-08-18 12:00 . 2009-06-25 08:27 147456 c:\windows\system32\schannel.dll
+ 2004-08-18 12:00 . 2009-12-08 09:25 474112 c:\windows\system32\shlwapi.dll
- 2004-08-18 12:00 . 2008-04-14 03:21 474112 c:\windows\system32\shlwapi.dll
+ 2004-08-18 12:00 . 2009-04-15 14:54 585216 c:\windows\system32\rpcrt4.dll
+ 2009-06-12 18:17 . 2005-08-04 02:47 639872 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\ativvaxx.dll
+ 2009-06-12 18:17 . 2005-08-04 02:34 147456 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\atikvmag.dll
+ 2009-06-12 18:17 . 2005-02-22 17:46 299008 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\atiiiexx.dll
+ 2009-06-12 18:17 . 2005-02-22 17:18 212992 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\ATIDEMGR.dll
+ 2009-06-12 18:17 . 2005-02-22 16:36 986624 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\ati2mtag.sys
+ 2009-06-12 18:17 . 2005-08-04 03:02 380928 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\ati2evxx.exe
+ 2009-06-12 18:17 . 2005-08-04 03:10 205312 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\ati2dvag.dll
+ 2009-06-12 18:17 . 2005-08-04 02:02 212992 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\ati2cqag.dll
+ 2009-11-16 20:17 . 2006-02-21 18:24 860480 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\ativvaxx.dll
+ 2009-11-16 20:17 . 2006-02-21 18:41 114688 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\atipdlxx.dll
+ 2009-11-16 20:17 . 2006-02-21 18:11 151552 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\atikvmag.dll
+ 2009-11-16 20:17 . 2006-02-21 18:20 307200 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\atiiiexx.dll
+ 2009-11-16 20:17 . 2006-02-13 11:29 121995 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\atiicdxx.dat
+ 2009-11-16 20:17 . 2006-02-21 17:21 282624 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\ATIDEMGR.dll
+ 2009-11-16 20:17 . 2006-02-21 18:39 405504 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\ati2evxx.exe
+ 2009-11-16 20:17 . 2006-02-21 18:46 256512 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\ati2dvag.dll
+ 2009-11-16 20:17 . 2006-02-21 18:04 258048 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\ati2cqag.dll
+ 2009-11-16 22:03 . 2005-08-04 02:47 639872 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ativvaxx.dll
+ 2009-11-16 22:03 . 2006-05-03 16:45 114688 c:\windows\system32\ReinstallBackups\0002\DriverFiles\atipdlxx.dll
- 2006-02-18 21:18 . 2005-08-04 02:34 147456 c:\windows\system32\ReinstallBackups\0002\DriverFiles\atikvmag.dll
+ 2009-11-16 22:03 . 2005-08-04 02:34 147456 c:\windows\system32\ReinstallBackups\0002\DriverFiles\atikvmag.dll
+ 2009-11-16 22:03 . 2006-05-03 16:12 286720 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ATIDEMGR.dll
+ 2009-11-16 22:03 . 2005-08-04 03:02 380928 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ati2evxx.exe
- 2006-02-18 21:18 . 2005-08-04 03:02 380928 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ati2evxx.exe
+ 2009-11-16 22:03 . 2005-08-04 03:10 205312 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ati2dvag.dll
+ 2009-11-16 22:03 . 2005-08-04 02:02 212992 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ati2cqag.dll
+ 2009-11-16 22:02 . 2005-08-04 02:47 639872 c:\windows\system32\ReinstallBackups\0001\DriverFiles\ativvaxx.dll
+ 2009-11-16 22:02 . 2005-08-04 03:04 106496 c:\windows\system32\ReinstallBackups\0001\DriverFiles\atipdlxx.dll
+ 2009-11-16 22:02 . 2005-08-04 02:34 147456 c:\windows\system32\ReinstallBackups\0001\DriverFiles\atikvmag.dll
+ 2009-11-16 22:02 . 2005-08-04 06:07 307200 c:\windows\system32\ReinstallBackups\0001\DriverFiles\atiiiexx.dll
+ 2009-11-16 22:02 . 2005-08-04 05:27 249856 c:\windows\system32\ReinstallBackups\0001\DriverFiles\ATIDEMGR.dll
+ 2009-11-16 22:02 . 2005-08-04 03:02 380928 c:\windows\system32\ReinstallBackups\0001\DriverFiles\ati2evxx.exe
+ 2009-11-16 22:02 . 2005-08-04 03:10 205312 c:\windows\system32\ReinstallBackups\0001\DriverFiles\ati2dvag.dll
+ 2009-11-16 22:02 . 2005-08-04 02:02 212992 c:\windows\system32\ReinstallBackups\0001\DriverFiles\ati2cqag.dll
+ 2004-08-18 12:00 . 2009-10-12 13:40 150016 c:\windows\system32\rastls.dll
+ 2004-08-18 12:00 . 2010-03-29 07:38 380350 c:\windows\system32\perfh009.dat
- 2004-08-18 12:00 . 2009-04-18 14:22 380350 c:\windows\system32\perfh009.dat
+ 2004-08-18 12:00 . 2009-10-08 13:57 220160 c:\windows\system32\oleacc.dll
+ 2004-08-18 12:00 . 2010-02-25 06:18 206848 c:\windows\system32\occache.dll
+ 2004-08-18 12:00 . 2009-10-13 10:34 271360 c:\windows\system32\oakley.dll
- 2004-08-18 12:00 . 2008-04-14 03:21 271360 c:\windows\system32\oakley.dll
+ 2004-08-18 12:00 . 2009-08-05 09:01 205312 c:\windows\system32\mswebdvd.dll
+ 2004-08-18 12:00 . 2009-09-11 14:19 136192 c:\windows\system32\msv1_0.dll
- 2004-08-18 12:00 . 2009-03-08 02:32 611840 c:\windows\system32\mstime.dll
+ 2004-08-18 12:00 . 2010-02-25 06:18 611840 c:\windows\system32\mstime.dll
- 2005-08-25 07:30 . 2008-04-14 03:22 343552 c:\windows\system32\mspaint.exe
+ 2005-08-25 07:30 . 2009-12-17 07:42 343552 c:\windows\system32\mspaint.exe
- 2006-11-07 19:03 . 2009-03-08 02:32 594432 c:\windows\system32\msfeeds.dll
+ 2006-11-07 19:03 . 2010-02-25 06:18 594432 c:\windows\system32\msfeeds.dll
+ 2010-01-27 01:07 . 2010-01-27 01:07 256280 c:\windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe
+ 2009-02-03 02:07 . 2009-02-03 02:07 240544 c:\windows\system32\Macromed\Flash\FlashUtil10b.exe
+ 2004-08-18 12:00 . 2009-06-25 08:27 729088 c:\windows\system32\lsasrv.dll
+ 2004-08-18 12:00 . 2009-05-07 15:33 346624 c:\windows\system32\localspl.dll
+ 2004-08-18 12:00 . 2009-06-25 08:27 301568 c:\windows\system32\kerberos.dll
+ 2004-08-18 12:00 . 2009-12-09 05:55 726528 c:\windows\system32\jscript.dll
- 2004-08-18 12:00 . 2009-03-08 02:33 726528 c:\windows\system32\jscript.dll
+ 2010-03-31 15:20 . 2010-03-09 02:28 153376 c:\windows\system32\javaws.exe
+ 2010-03-31 15:20 . 2010-03-09 02:28 145184 c:\windows\system32\javaw.exe
+ 2010-03-31 15:20 . 2010-03-09 02:28 145184 c:\windows\system32\java.exe
+ 2004-08-18 12:00 . 2010-02-25 06:18 184320 c:\windows\system32\iepeers.dll
+ 2004-08-18 12:00 . 2010-02-25 06:18 387584 c:\windows\system32\iedkcs32.dll
+ 2004-08-18 12:00 . 2010-02-24 09:53 173056 c:\windows\system32\ie4uinit.exe
- 2004-08-18 12:00 . 2009-03-08 02:32 173056 c:\windows\system32\ie4uinit.exe
+ 2005-08-25 09:22 . 2010-02-25 08:11 192184 c:\windows\system32\FNTCACHE.DAT
+ 2009-06-24 15:14 . 2009-05-11 11:30 547840 c:\windows\system32\DRVSTORE

Re: W32/Malware!Gemini - F security

Napsal: 09 dub 2010 22:18
od Rudy
Snapshot vynechte, nebo rozdělte na více částí.

Re: W32/Malware!Gemini - F security

Napsal: 09 dub 2010 22:20
od Gamp.G
Druhá část:

\pccswpddri_1C34ED6F4888FC93BE68C7A31A24834F522D3CBF\PCCSWpdDriver.dll
+ 2009-06-24 15:13 . 2009-03-19 12:48 136704 c:\windows\system32\DRVSTORE\nmwcdnsu_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\nmwcdnsu.sys
+ 2009-06-24 15:13 . 2009-02-09 06:37 659968 c:\windows\system32\DRVSTORE\ccdcmb_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\nmwcdcocls.dll
+ 2004-08-18 12:00 . 2009-12-31 16:50 353792 c:\windows\system32\drivers\srv.sys
+ 2004-08-18 12:00 . 2009-12-04 18:22 455424 c:\windows\system32\drivers\mrxsmb.sys
+ 2004-08-18 12:00 . 2009-10-20 16:20 265728 c:\windows\system32\drivers\http.sys
+ 2008-04-04 17:23 . 2009-09-15 11:55 114768 c:\windows\system32\drivers\aswSP.sys
- 2008-04-04 17:23 . 2009-02-05 21:07 114768 c:\windows\system32\drivers\aswSP.sys
+ 2005-08-25 07:32 . 2009-08-06 17:24 209632 c:\windows\system32\dllcache\wuweb.dll
+ 2005-08-25 07:32 . 2009-08-06 17:24 327896 c:\windows\system32\dllcache\wucltui.dll
+ 2005-08-25 07:32 . 2009-08-06 17:23 575704 c:\windows\system32\dllcache\wuapi.dll
+ 2004-08-18 12:00 . 2009-04-01 21:02 604160 c:\windows\system32\dllcache\wmspdmod.dll
+ 2004-08-18 12:00 . 2009-07-13 21:43 286208 c:\windows\system32\dllcache\wmpdxm.dll
+ 2009-06-10 06:16 . 2009-06-10 06:16 132096 c:\windows\system32\dllcache\wkssvc.dll
+ 2004-08-18 12:00 . 2010-02-25 06:18 916480 c:\windows\system32\dllcache\wininet.dll
+ 2008-12-16 12:32 . 2009-08-25 09:19 354816 c:\windows\system32\dllcache\winhttp.dll
+ 2009-09-09 18:02 . 2009-06-21 21:48 153088 c:\windows\system32\dllcache\triedit.dll
+ 2009-06-16 14:40 . 2009-10-15 16:32 119808 c:\windows\system32\dllcache\t2embed.dll
- 2004-08-18 12:00 . 2008-10-03 10:04 247326 c:\windows\system32\dllcache\strmdll.dll
+ 2004-08-18 12:00 . 2009-08-26 08:02 247326 c:\windows\system32\dllcache\strmdll.dll
+ 2008-10-16 06:54 . 2009-12-31 16:50 353792 c:\windows\system32\dllcache\srv.sys
+ 2008-12-05 06:57 . 2009-06-25 08:27 147456 c:\windows\system32\dllcache\schannel.dll
+ 2009-01-07 16:20 . 2009-12-08 09:25 474112 c:\windows\system32\dllcache\shlwapi.dll
- 2009-01-07 16:20 . 2009-01-07 16:20 474112 c:\windows\system32\dllcache\shlwapi.dll
+ 2009-04-15 14:54 . 2009-04-15 14:54 585216 c:\windows\system32\dllcache\rpcrt4.dll
+ 2009-10-12 13:40 . 2009-10-12 13:40 150016 c:\windows\system32\dllcache\rastls.dll
+ 2004-08-18 12:00 . 2009-10-08 13:57 220160 c:\windows\system32\dllcache\oleacc.dll
+ 2004-08-18 12:00 . 2010-02-25 06:18 206848 c:\windows\system32\dllcache\occache.dll
+ 2009-10-13 10:34 . 2009-10-13 10:34 271360 c:\windows\system32\dllcache\oakley.dll
+ 2009-08-05 09:01 . 2009-08-05 09:01 205312 c:\windows\system32\dllcache\mswebdvd.dll
+ 2009-06-25 08:27 . 2009-09-11 14:19 136192 c:\windows\system32\dllcache\msv1_0.dll
- 2004-08-18 12:00 . 2009-03-08 02:32 611840 c:\windows\system32\dllcache\mstime.dll
+ 2004-08-18 12:00 . 2010-02-25 06:18 611840 c:\windows\system32\dllcache\mstime.dll
+ 2009-12-17 07:42 . 2009-12-17 07:42 343552 c:\windows\system32\dllcache\mspaint.exe
- 2007-05-09 12:15 . 2009-03-08 02:32 594432 c:\windows\system32\dllcache\msfeeds.dll
+ 2007-05-09 12:15 . 2010-02-25 06:18 594432 c:\windows\system32\dllcache\msfeeds.dll
+ 2008-11-12 15:25 . 2009-12-04 18:22 455424 c:\windows\system32\dllcache\mrxsmb.sys
+ 2009-04-17 14:10 . 2009-06-25 08:27 729088 c:\windows\system32\dllcache\lsasrv.dll
+ 2009-05-07 15:33 . 2009-05-07 15:33 346624 c:\windows\system32\dllcache\localspl.dll
+ 2009-06-25 08:27 . 2009-06-25 08:27 301568 c:\windows\system32\dllcache\kerberos.dll
+ 2008-05-09 10:56 . 2009-12-09 05:55 726528 c:\windows\system32\dllcache\jscript.dll
- 2008-05-09 10:56 . 2009-03-08 02:33 726528 c:\windows\system32\dllcache\jscript.dll
+ 2009-06-10 04:14 . 2010-02-25 06:18 247808 c:\windows\system32\dllcache\ieproxy.dll
+ 2004-08-18 12:00 . 2010-02-25 06:18 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2004-08-18 12:00 . 2010-02-25 06:18 387584 c:\windows\system32\dllcache\iedkcs32.dll
+ 2004-08-18 12:00 . 2010-02-24 09:53 173056 c:\windows\system32\dllcache\ie4uinit.exe
- 2004-08-18 12:00 . 2009-03-08 02:32 173056 c:\windows\system32\dllcache\ie4uinit.exe
+ 2009-10-20 16:20 . 2009-10-20 16:20 265728 c:\windows\system32\dllcache\http.sys
+ 2010-01-12 19:46 . 2009-11-21 16:03 471552 c:\windows\system32\dllcache\aclayers.dll
+ 2006-11-01 21:21 . 2006-11-01 21:21 319456 c:\windows\system32\difxapi.dll
+ 2005-08-04 03:04 . 2006-05-03 16:45 114688 c:\windows\system32\atipdlxx.dll
+ 2005-08-04 02:34 . 2006-05-03 16:15 151552 c:\windows\system32\atikvmag.dll
- 2005-08-04 06:07 . 2005-08-04 06:07 307200 c:\windows\system32\atiiiexx.dll
+ 2005-08-04 06:07 . 2006-05-03 16:54 307200 c:\windows\system32\atiiiexx.dll
+ 2005-06-10 20:59 . 2006-04-28 20:05 127614 c:\windows\system32\atiicdxx.dat
+ 2005-08-04 05:27 . 2006-05-03 16:12 286720 c:\windows\system32\ATIDEMGR.dll
+ 2005-11-09 11:35 . 2006-05-03 10:57 520192 c:\windows\system32\ati2sgag.exe
+ 2005-08-04 03:02 . 2006-05-03 16:43 413696 c:\windows\system32\ati2evxx.exe
+ 2005-11-09 11:31 . 2006-05-03 16:51 258048 c:\windows\system32\ati2dvag.dll
+ 2005-11-09 11:31 . 2006-05-03 16:09 282624 c:\windows\system32\ati2cqag.dll
+ 2008-05-27 22:49 . 2008-05-27 22:49 102400 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll
- 2007-04-13 18:58 . 2007-04-13 18:58 102400 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll
+ 2008-05-27 22:48 . 2008-05-27 22:48 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
- 2007-04-13 18:56 . 2007-04-13 18:56 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
+ 2003-04-07 17:32 . 2003-04-07 17:32 110592 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.xml.resources.dll
+ 2003-04-07 17:23 . 2003-04-07 17:23 180224 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Windows.Forms.resources.dll
+ 2003-04-07 17:31 . 2003-04-07 17:31 122880 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Web.resources.dll
+ 2003-04-07 17:24 . 2003-04-07 17:24 139264 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Design.resources.dll
+ 2003-04-07 17:32 . 2003-04-07 17:32 118784 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\System.Data.resources.dll
+ 2003-04-07 17:05 . 2003-04-07 17:05 122880 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\ShFusRes.dll
+ 2003-04-07 17:04 . 2003-04-07 17:04 159744 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\mscorrc.dll
+ 2003-04-07 17:32 . 2003-04-07 17:32 229376 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\mscorlib.resources.dll
+ 2003-04-07 17:25 . 2003-04-07 17:25 720896 c:\windows\Microsoft.NET\Framework\v1.1.4322\cs\mscorcfg.resources.dll
+ 2008-05-27 23:30 . 2008-05-27 23:30 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
- 2007-04-13 19:30 . 2007-04-13 19:30 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
+ 2003-04-07 17:04 . 2003-04-07 17:04 163840 c:\windows\Microsoft.NET\Framework\v1.1.4322\1029\Vsavb7rtUI.dll
+ 2003-04-07 17:06 . 2003-04-07 17:06 139264 c:\windows\Microsoft.NET\Framework\v1.1.4322\1029\vbc7ui.dll
+ 2009-01-27 16:48 . 2009-01-27 16:48 163840 c:\windows\Installer\f40dec.msi
+ 2010-03-31 15:20 . 2010-03-31 15:20 180224 c:\windows\Installer\eb4b4.msi
+ 2009-07-14 15:41 . 2009-07-14 15:41 598016 c:\windows\Installer\c53aa.msi
+ 2009-06-24 15:14 . 2009-06-24 15:14 549888 c:\windows\Installer\ae2a1.msi
+ 2009-06-24 15:13 . 2009-06-24 15:13 331264 c:\windows\Installer\ae26b.msi
+ 2009-07-06 07:29 . 2009-07-06 07:29 857088 c:\windows\Installer\a9d40.msi
+ 2009-07-25 12:35 . 2009-07-25 12:35 256512 c:\windows\Installer\1b959a.msi
+ 2007-03-05 17:36 . 2007-03-05 17:36 189952 c:\windows\Installer\1a3d1e5.msi
+ 2005-08-25 07:57 . 2005-08-25 07:57 265216 c:\windows\Installer\10fb8c.msi
+ 2010-03-30 14:42 . 2010-03-30 14:42 371272 c:\windows\Installer\{D103C4BA-F905-437A-8049-DB24763BBE36}\SkypeIcon.exe
+ 2010-03-31 05:07 . 2009-12-21 19:08 916480 c:\windows\ie8updates\KB980182-IE8\wininet.dll
+ 2010-03-31 05:07 . 2009-05-26 11:40 391032 c:\windows\ie8updates\KB980182-IE8\spuninst\updspapi.dll
+ 2010-03-31 05:07 . 2009-05-26 11:40 233848 c:\windows\ie8updates\KB980182-IE8\spuninst\spuninst.exe
+ 2010-03-31 05:07 . 2009-12-21 19:08 206848 c:\windows\ie8updates\KB980182-IE8\occache.dll
+ 2010-03-31 05:07 . 2009-03-08 02:32 611840 c:\windows\ie8updates\KB980182-IE8\mstime.dll
+ 2010-03-31 05:07 . 2009-12-21 19:08 594432 c:\windows\ie8updates\KB980182-IE8\msfeeds.dll
+ 2010-03-31 05:07 . 2009-12-21 19:08 246272 c:\windows\ie8updates\KB980182-IE8\ieproxy.dll
+ 2010-03-31 05:07 . 2009-12-21 19:08 184320 c:\windows\ie8updates\KB980182-IE8\iepeers.dll
+ 2010-03-31 05:07 . 2009-12-21 19:08 387584 c:\windows\ie8updates\KB980182-IE8\iedkcs32.dll
+ 2010-03-31 05:07 . 2009-12-21 13:18 173056 c:\windows\ie8updates\KB980182-IE8\ie4uinit.exe
+ 2010-01-21 19:20 . 2009-10-29 07:43 916480 c:\windows\ie8updates\KB978207-IE8\wininet.dll
+ 2010-01-21 19:20 . 2009-05-26 11:40 391032 c:\windows\ie8updates\KB978207-IE8\spuninst\updspapi.dll
+ 2010-01-21 19:20 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB978207-IE8\spuninst\spuninst.exe
+ 2010-01-21 19:20 . 2009-10-29 07:43 206848 c:\windows\ie8updates\KB978207-IE8\occache.dll
+ 2010-01-21 19:20 . 2009-10-29 07:43 594432 c:\windows\ie8updates\KB978207-IE8\msfeeds.dll
+ 2010-01-21 19:20 . 2009-10-29 07:43 246272 c:\windows\ie8updates\KB978207-IE8\ieproxy.dll
+ 2010-01-21 19:20 . 2009-10-29 07:43 184320 c:\windows\ie8updates\KB978207-IE8\iepeers.dll
+ 2010-01-21 19:20 . 2009-10-29 07:43 387584 c:\windows\ie8updates\KB978207-IE8\iedkcs32.dll
+ 2010-01-21 19:20 . 2009-10-28 14:40 173056 c:\windows\ie8updates\KB978207-IE8\ie4uinit.exe
+ 2009-11-04 20:36 . 2008-07-08 12:59 391032 c:\windows\ie8updates\KB976749-IE8\spuninst\updspapi.dll
+ 2009-11-04 20:36 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB976749-IE8\spuninst\spuninst.exe
+ 2010-02-24 12:49 . 2008-07-08 12:59 391032 c:\windows\ie8updates\KB976662-IE8\spuninst\updspapi.dll
+ 2010-02-24 12:49 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB976662-IE8\spuninst\spuninst.exe
+ 2010-02-24 12:49 . 2009-06-22 06:48 726528 c:\windows\ie8updates\KB976662-IE8\jscript.dll
+ 2009-12-09 21:30 . 2009-08-29 07:58 916480 c:\windows\ie8updates\KB976325-IE8\wininet.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 391032 c:\windows\ie8updates\KB976325-IE8\spuninst\updspapi.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 233848 c:\windows\ie8updates\KB976325-IE8\spuninst\spuninst.exe
+ 2009-12-09 21:30 . 2009-08-29 07:58 206848 c:\windows\ie8updates\KB976325-IE8\occache.dll
+ 2009-12-09 21:30 . 2009-08-29 07:58 594432 c:\windows\ie8updates\KB976325-IE8\msfeeds.dll
+ 2009-12-09 21:30 . 2009-08-29 07:58 246272 c:\windows\ie8updates\KB976325-IE8\ieproxy.dll
+ 2009-12-09 21:30 . 2009-08-29 07:58 184320 c:\windows\ie8updates\KB976325-IE8\iepeers.dll
+ 2009-12-09 21:30 . 2009-08-29 07:58 387584 c:\windows\ie8updates\KB976325-IE8\iedkcs32.dll
+ 2009-12-09 21:30 . 2009-08-28 10:35 173056 c:\windows\ie8updates\KB976325-IE8\ie4uinit.exe
+ 2009-11-12 17:56 . 2009-05-26 11:40 391032 c:\windows\ie8updates\KB975364-IE8\spuninst\updspapi.dll
+ 2009-11-12 17:56 . 2009-05-26 11:40 233848 c:\windows\ie8updates\KB975364-IE8\spuninst\spuninst.exe
+ 2009-11-12 17:56 . 2009-04-25 05:30 102400 c:\windows\ie8updates\KB975364-IE8\iecompat.dll
+ 2009-10-15 17:54 . 2009-07-03 16:59 915456 c:\windows\ie8updates\KB974455-IE8\wininet.dll
+ 2009-10-15 17:54 . 2009-05-26 11:40 391032 c:\windows\ie8updates\KB974455-IE8\spuninst\updspapi.dll
+ 2009-10-15 17:54 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB974455-IE8\spuninst\spuninst.exe
+ 2009-10-15 17:54 . 2009-07-03 16:59 206848 c:\windows\ie8updates\KB974455-IE8\occache.dll
+ 2009-10-15 17:54 . 2009-07-03 16:59 594432 c:\windows\ie8updates\KB974455-IE8\msfeeds.dll
+ 2009-10-15 17:54 . 2009-07-03 16:59 246272 c:\windows\ie8updates\KB974455-IE8\ieproxy.dll
+ 2009-10-15 17:54 . 2009-07-03 16:59 184320 c:\windows\ie8updates\KB974455-IE8\iepeers.dll
+ 2009-10-15 17:54 . 2009-07-03 16:59 386048 c:\windows\ie8updates\KB974455-IE8\iedkcs32.dll
+ 2009-10-15 17:54 . 2009-07-03 11:01 173056 c:\windows\ie8updates\KB974455-IE8\ie4uinit.exe
+ 2009-07-29 20:07 . 2009-05-13 05:05 915456 c:\windows\ie8updates\KB972260-IE8\wininet.dll
+ 2009-07-29 20:07 . 2009-05-26 11:40 391032 c:\windows\ie8updates\KB972260-IE8\spuninst\updspapi.dll
+ 2009-07-29 20:07 . 2009-05-26 11:40 233848 c:\windows\ie8updates\KB972260-IE8\spuninst\spuninst.exe
+ 2009-07-29 20:07 . 2009-03-08 02:34 109568 c:\windows\ie8updates\KB972260-IE8\occache.dll
+ 2009-07-29 20:07 . 2009-03-08 02:32 594432 c:\windows\ie8updates\KB972260-IE8\msfeeds.dll
+ 2009-07-29 20:07 . 2009-04-30 21:16 246272 c:\windows\ie8updates\KB972260-IE8\ieproxy.dll
+ 2009-07-29 20:07 . 2009-03-08 02:31 183808 c:\windows\ie8updates\KB972260-IE8\iepeers.dll
+ 2009-07-29 20:07 . 2009-04-30 21:16 385536 c:\windows\ie8updates\KB972260-IE8\iedkcs32.dll
+ 2009-07-29 20:07 . 2009-04-30 11:21 173056 c:\windows\ie8updates\KB972260-IE8\ie4uinit.exe
+ 2009-09-09 18:30 . 2008-07-08 12:59 391032 c:\windows\ie8updates\KB971961-IE8\spuninst\updspapi.dll
+ 2009-09-09 18:30 . 2008-07-08 12:59 233848 c:\windows\ie8updates\KB971961-IE8\spuninst\spuninst.exe
+ 2009-09-09 18:30 . 2009-03-08 02:33 726528 c:\windows\ie8updates\KB971961-IE8\jscript.dll
+ 2009-06-10 05:32 . 2009-03-08 02:34 914944 c:\windows\ie8updates\KB969897-IE8\wininet.dll
+ 2009-06-10 05:32 . 2008-07-09 07:36 391032 c:\windows\ie8updates\KB969897-IE8\spuninst\updspapi.dll
+ 2009-06-10 05:32 . 2007-11-30 12:39 233848 c:\windows\ie8updates\KB969897-IE8\spuninst\spuninst.exe
+ 2009-06-10 05:32 . 2009-03-08 02:33 246784 c:\windows\ie8updates\KB969897-IE8\ieproxy.dll
+ 2009-06-10 05:32 . 2009-03-08 12:09 391536 c:\windows\ie8updates\KB969897-IE8\iedkcs32.dll
+ 2009-06-10 05:32 . 2009-03-08 02:32 173056 c:\windows\ie8updates\KB969897-IE8\ie4uinit.exe
+ 2008-11-12 15:25 . 2009-12-04 18:22 455424 c:\windows\Driver Cache\i386\mrxsmb.sys
+ 2009-10-20 16:20 . 2009-10-20 16:20 265728 c:\windows\Driver Cache\i386\http.sys
+ 2009-10-15 17:47 . 2009-10-15 17:47 835584 c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_2b0c4d58\System.Drawing.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 110592 c:\windows\assembly\GAC\System.XML.resources\1.0.5000.0_cs_b77a5c561934e089\System.xml.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 180224 c:\windows\assembly\GAC\System.Windows.Forms.resources\1.0.5000.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 122880 c:\windows\assembly\GAC\System.Web.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Web.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 139264 c:\windows\assembly\GAC\System.Design.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\System.Design.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 118784 c:\windows\assembly\GAC\System.Data.resources\1.0.5000.0_cs_b77a5c561934e089\System.Data.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 229376 c:\windows\assembly\GAC\mscorlib.resources\1.0.5000.0_cs_b77a5c561934e089\Mscorlib.resources.dll
+ 2009-07-25 12:35 . 2009-07-25 12:35 720896 c:\windows\assembly\GAC\mscorcfg.resources\1.0.5000.0_cs_b03f5f7f11d50a3a\mscorcfg.resources.dll
+ 2004-08-18 12:00 . 2009-11-21 16:03 471552 c:\windows\AppPatch\aclayers.dll
+ 2010-02-24 12:48 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB979306$\spuninst\updspapi.dll
+ 2010-02-24 12:48 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB979306$\spuninst\spuninst.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB978706$\spuninst\updspapi.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB978706$\spuninst\spuninst.exe
+ 2010-02-10 20:29 . 2008-04-14 03:22 343552 c:\windows\$NtUninstallKB978706$\mspaint.exe
+ 2010-02-10 20:32 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB978262$\spuninst\updspapi.dll
+ 2010-02-10 20:32 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB978262$\spuninst\spuninst.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB978251$\spuninst\updspapi.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB978251$\spuninst\spuninst.exe
+ 2010-02-10 20:29 . 2008-10-24 11:21 455296 c:\windows\$NtUninstallKB978251$\mrxsmb.sys
+ 2010-02-10 20:30 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB978037$\spuninst\updspapi.dll
+ 2010-02-10 20:30 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB978037$\spuninst\spuninst.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB977914$\spuninst\updspapi.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB977914$\spuninst\spuninst.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB977165$\spuninst\updspapi.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB977165$\spuninst\spuninst.exe
+ 2009-11-25 11:38 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB976098-v2$\spuninst\updspapi.dll
+ 2009-11-25 11:38 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB976098-v2$\spuninst\spuninst.exe
+ 2010-02-10 20:30 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB975713$\spuninst\updspapi.dll
+ 2010-02-10 20:30 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB975713$\spuninst\spuninst.exe
+ 2010-02-10 20:30 . 2008-04-14 03:21 474112 c:\windows\$NtUninstallKB975713$\shlwapi.dll
+ 2010-03-10 12:44 . 2009-05-26 16:10 391032 c:\windows\$NtUninstallKB975561$\spuninst\updspapi.dll
+ 2010-03-10 12:44 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB975561$\spuninst\spuninst.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB975560$\spuninst\updspapi.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB975560$\spuninst\spuninst.exe
+ 2009-10-15 17:40 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB975467$\spuninst\updspapi.dll
+ 2009-10-15 17:40 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB975467$\spuninst\spuninst.exe
+ 2009-10-15 17:40 . 2009-06-25 08:27 136192 c:\windows\$NtUninstallKB975467$\msv1_0.dll
+ 2009-10-15 17:46 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB975025$\spuninst\updspapi.dll
+ 2009-10-15 17:46 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB975025$\spuninst\spuninst.exe
+ 2009-10-15 17:45 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB974571$\spuninst\updspapi.dll
+ 2009-10-15 17:45 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB974571$\spuninst\spuninst.exe
+ 2009-12-09 21:30 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB974392$\spuninst\updspapi.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB974392$\spuninst\spuninst.exe
+ 2009-12-09 21:30 . 2008-04-14 03:21 271360 c:\windows\$NtUninstallKB974392$\oakley.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB974318$\spuninst\updspapi.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB974318$\spuninst\spuninst.exe
+ 2009-12-09 21:30 . 2008-04-14 03:21 150528 c:\windows\$NtUninstallKB974318$\rastls.dll
+ 2009-10-15 17:46 . 2008-10-03 10:04 247326 c:\windows\$NtUninstallKB974112$\strmdll.dll
+ 2009-10-15 17:46 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB974112$\spuninst\updspapi.dll
+ 2009-10-15 17:46 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB974112$\spuninst\spuninst.exe
+ 2009-12-09 21:30 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB973904$\spuninst\updspapi.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB973904$\spuninst\spuninst.exe
+ 2009-12-09 21:30 . 2004-08-18 12:00 116288 c:\windows\$NtUninstallKB973904$\msconv97.dll
+ 2009-08-13 14:07 . 2008-07-08 12:59 391032 c:\windows\$NtUninstallKB973869$\spuninst\updspapi.dll
+ 2009-08-13 14:07 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB973869$\spuninst\spuninst.exe
+ 2009-08-13 13:59 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB973815$\spuninst\updspapi.dll
+ 2009-08-13 13:59 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB973815$\spuninst\spuninst.exe
+ 2009-08-13 13:59 . 2008-04-14 03:21 204288 c:\windows\$NtUninstallKB973815$\mswebdvd.dll
+ 2009-11-25 11:38 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB973687$\spuninst\updspapi.dll
+ 2009-11-25 11:38 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB973687$\spuninst\spuninst.exe
+ 2009-08-13 14:06 . 2006-10-18 20:47 314880 c:\windows\$NtUninstallKB973540_WM9$\wmpdxm.dll
+ 2009-08-13 14:06 . 2007-07-27 08:41 382840 c:\windows\$NtUninstallKB973540_WM9$\spuninst\updspapi.dll
+ 2009-08-13 14:06 . 2007-07-27 06:17 233848 c:\windows\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe
+ 2009-10-15 17:41 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB973525$\spuninst\updspapi.dll
+ 2009-10-15 17:41 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB973525$\spuninst\spuninst.exe
+ 2009-08-13 14:07 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB973507$\spuninst\updspapi.dll
+ 2009-08-13 14:07 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB973507$\spuninst\spuninst.exe
+ 2009-08-13 14:07 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB973354$\spuninst\updspapi.dll
+ 2009-08-13 14:07 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB973354$\spuninst\spuninst.exe
+ 2009-07-16 16:30 . 2008-07-08 12:59 391032 c:\windows\$NtUninstallKB973346$\spuninst\updspapi.dll
+ 2009-07-16 16:30 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB973346$\spuninst\spuninst.exe
+ 2010-01-12 19:48 . 2009-06-16 14:40 119808 c:\windows\$NtUninstallKB972270$\t2embed.dll
+ 2010-01-12 19:48 . 2008-07-08 12:59 391032 c:\windows\$NtUninstallKB972270$\spuninst\updspapi.dll
+ 2010-01-12 19:48 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB972270$\spuninst\spuninst.exe
+ 2009-12-09 21:29 . 2008-12-16 12:32 354304 c:\windows\$NtUninstallKB971737$\winhttp.dll
+ 2009-12-09 21:29 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB971737$\spuninst\updspapi.dll
+ 2009-12-09 21:29 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB971737$\spuninst\spuninst.exe
+ 2009-08-13 14:08 . 2008-04-14 03:22 132096 c:\windows\$NtUninstallKB971657$\wkssvc.dll
+ 2009-08-13 14:08 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB971657$\spuninst\updspapi.dll
+ 2009-08-13 14:08 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB971657$\spuninst\spuninst.exe
+ 2009-07-16 16:30 . 2008-07-09 07:36 391032 c:\windows\$NtUninstallKB971633$\spuninst\updspapi.dll
+ 2009-07-16 16:30 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB971633$\spuninst\spuninst.exe
+ 2009-08-13 14:08 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB971557$\spuninst\updspapi.dll
+ 2009-08-13 14:08 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB971557$\spuninst\spuninst.exe
+ 2009-11-12 17:59 . 2009-03-23 09:50 391032 c:\windows\$NtUninstallKB971513$\spuninst\updspapi.dll
+ 2009-11-12 17:59 . 2009-03-23 09:50 233848 c:\windows\$NtUninstallKB971513$\spuninst\spuninst.exe
+ 2009-11-12 17:59 . 2004-08-18 12:00 163328 c:\windows\$NtUninstallKB971513$\oleacc.dll
+ 2009-10-15 17:41 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB971486$\spuninst\updspapi.dll
+ 2009-10-15 17:41 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB971486$\spuninst\spuninst.exe
+ 2010-02-10 20:32 . 2008-12-11 10:57 333952 c:\windows\$NtUninstallKB971468$\srv.sys
+ 2010-02-10 20:32 . 2008-07-08 12:59 391032 c:\windows\$NtUninstallKB971468$\spuninst\updspapi.dll
+ 2010-02-10 20:32 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB971468$\spuninst\spuninst.exe
+ 2009-08-26 13:21 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB970653-v3$\spuninst\updspapi.dll
+ 2009-08-26 13:21 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB970653-v3$\spuninst\spuninst.exe
+ 2009-12-09 21:30 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB970430$\spuninst\updspapi.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB970430$\spuninst\spuninst.exe
+ 2009-12-09 21:30 . 2008-04-13 18:53 264832 c:\windows\$NtUninstallKB970430$\http.sys
+ 2009-06-10 05:29 . 2007-11-30 12:39 391032 c:\windows\$NtUninstallKB970238$\spuninst\updspapi.dll
+ 2009-06-10 05:29 . 2007-11-30 12:39 233848 c:\windows\$NtUninstallKB970238$\spuninst\spuninst.exe
+ 2009-06-10 05:29 . 2008-04-14 03:21 584704 c:\windows\$NtUninstallKB970238$\rpcrt4.dll
+ 2009-11-11 21:00 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB969947$\spuninst\updspapi.dll
+ 2009-11-11 21:00 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB969947$\spuninst\spuninst.exe
+ 2009-06-10 05:31 . 2007-11-30 12:39 391032 c:\windows\$NtUninstallKB969898$\spuninst\updspapi.dll
+ 2009-06-10 05:31 . 2007-11-30 12:39 233848 c:\windows\$NtUninstallKB969898$\spuninst\spuninst.exe
+ 2009-10-15 17:47 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB969059$\spuninst\updspapi.dll
+ 2009-10-15 17:47 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB969059$\spuninst\spuninst.exe
+ 2009-09-09 18:30 . 2007-07-27 08:41 382840 c:\windows\$NtUninstallKB968816_WM9$\spuninst\updspapi.dll
+ 2009-09-09 18:30 . 2007-07-27 06:17 233848 c:\windows\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe
+ 2009-06-10 05:28 . 2008-07-09 07:36 391032 c:\windows\$NtUninstallKB968537$\spuninst\updspapi.dll
+ 2009-06-10 05:28 . 2008-07-09 07:36 233848 c:\windows\$NtUninstallKB968537$\spuninst\spuninst.exe
+ 2009-08-14 21:25 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB968389$\spuninst\updspapi.dll
+ 2009-08-14 21:25 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB968389$\spuninst\spuninst.exe
+ 2009-08-14 21:25 . 2008-12-05 06:57 144896 c:\windows\$NtUninstallKB968389$\schannel.dll
+ 2009-08-14 21:25 . 2008-04-14 03:21 132608 c:\windows\$NtUninstallKB968389$\msv1_0.dll
+ 2009-08-14 21:25 . 2009-02-09 10:56 728064 c:\windows\$NtUninstallKB968389$\lsasrv.dll
+ 2009-08-14 21:25 . 2008-04-14 03:21 299520 c:\windows\$NtUninstallKB968389$\kerberos.dll
+ 2009-06-10 05:31 . 2008-07-09 07:36 391032 c:\windows\$NtUninstallKB961501$\spuninst\updspapi.dll
+ 2009-06-10 05:31 . 2008-07-09 07:36 233848 c:\windows\$NtUninstallKB961501$\spuninst\spuninst.exe
+ 2009-06-10 05:31 . 2008-04-14 03:21 344064 c:\windows\$NtUninstallKB961501$\localspl.dll
+ 2009-07-16 16:25 . 2008-04-14 03:22 117760 c:\windows\$NtUninstallKB961371$\t2embed.dll
+ 2009-07-16 16:25 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB961371$\spuninst\updspapi.dll
+ 2009-07-16 16:25 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB961371$\spuninst\spuninst.exe
+ 2009-08-13 14:09 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB960859$\spuninst\updspapi.dll
+ 2009-08-13 14:09 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB960859$\spuninst\spuninst.exe
+ 2009-10-15 17:53 . 2009-05-26 11:40 391032 c:\windows\$NtUninstallKB958869$\spuninst\updspapi.dll
+ 2009-10-15 17:53 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB958869$\spuninst\spuninst.exe
+ 2009-09-09 18:24 . 2008-04-14 03:22 153088 c:\windows\$NtUninstallKB956844$\triedit.dll
+ 2009-09-09 18:24 . 2008-07-08 12:59 391032 c:\windows\$NtUninstallKB956844$\spuninst\updspapi.dll
+ 2009-09-09 18:24 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB956844$\spuninst\spuninst.exe
+ 2009-08-13 14:08 . 2008-07-08 12:59 391032 c:\windows\$NtUninstallKB956744$\spuninst\updspapi.dll
+ 2009-08-13 14:08 . 2008-07-08 12:59 233848 c:\windows\$NtUninstallKB956744$\spuninst\spuninst.exe
+ 2010-01-12 19:48 . 2009-05-26 16:10 391032 c:\windows\$NtUninstallKB955759$\spuninst\updspapi.dll
+ 2010-01-12 19:48 . 2009-05-26 11:40 233848 c:\windows\$NtUninstallKB955759$\spuninst\spuninst.exe
+ 2010-01-12 19:48 . 2008-04-14 03:21 451072 c:\windows\$NtUninstallKB955759$\aclayers.dll
+ 2009-10-15 17:47 . 2006-10-18 20:47 603648 c:\windows\$NtUninstallKB954155_WM9$\wmspdmod.dll
+ 2009-10-15 17:47 . 2007-07-27 08:41 382840 c:\windows\$NtUninstallKB954155_WM9$\spuninst\updspapi.dll
+ 2009-10-15 17:47 . 2007-07-27 06:17 233848 c:\windows\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB978706\update\updspapi.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB978706\update\update.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB978706\spuninst.exe
+ 2009-12-17 07:39 . 2009-12-17 07:39 343552 c:\windows\$hf_mig$\KB978706\SP3QFE\mspaint.exe
+ 2010-02-10 20:32 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB978262\update\updspapi.dll
+ 2010-02-10 20:32 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB978262\update\update.exe
+ 2010-02-10 20:32 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB978262\spuninst.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB978251\update\updspapi.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB978251\update\update.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB978251\spuninst.exe
+ 2010-02-10 20:27 . 2009-12-04 17:25 456832 c:\windows\$hf_mig$\KB978251\SP3QFE\mrxsmb.sys
+ 2010-01-21 19:20 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB978207-IE8\update\updspapi.dll
+ 2010-01-21 19:20 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB978207-IE8\update\update.exe
+ 2010-01-21 19:20 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB978207-IE8\spuninst.exe
+ 2010-01-21 19:18 . 2009-12-21 19:02 916480 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\wininet.dll
+ 2010-01-21 19:18 . 2009-12-21 19:02 206848 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\occache.dll
+ 2010-01-21 19:18 . 2009-12-21 19:02 594432 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\msfeeds.dll
+ 2010-01-21 19:18 . 2009-12-21 19:02 246272 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\ieproxy.dll
+ 2010-01-21 19:18 . 2009-12-21 19:02 184320 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\iepeers.dll
+ 2010-01-21 19:18 . 2009-12-21 19:02 387584 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\iedkcs32.dll
+ 2010-01-21 19:18 . 2009-12-21 13:22 173056 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\ie4uinit.exe
+ 2010-02-10 20:30 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB978037\update\updspapi.dll
+ 2010-02-10 20:30 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB978037\update\update.exe
+ 2010-02-10 20:30 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB978037\spuninst.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB977914\update\updspapi.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB977914\update\update.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB977914\spuninst.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB977165\update\updspapi.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB977165\update\update.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB977165\spuninst.exe
+ 2009-11-04 20:36 . 2008-07-08 12:59 391032 c:\windows\$hf_mig$\KB976749-IE8\update\updspapi.dll
+ 2009-11-04 20:36 . 2008-07-08 12:59 759160 c:\windows\$hf_mig$\KB976749-IE8\update\update.exe
+ 2009-11-04 20:36 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB976749-IE8\spuninst.exe
+ 2010-02-24 12:49 . 2008-07-08 12:59 391032 c:\windows\$hf_mig$\KB976662-IE8\update\updspapi.dll
+ 2010-02-24 12:49 . 2008-07-08 12:59 759160 c:\windows\$hf_mig$\KB976662-IE8\update\update.exe
+ 2010-02-24 12:49 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB976662-IE8\spuninst.exe
+ 2010-02-24 11:03 . 2009-12-09 05:52 726528 c:\windows\$hf_mig$\KB976662-IE8\SP3QFE\jscript.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB976325-IE8\update\updspapi.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB976325-IE8\update\update.exe
+ 2009-12-09 21:30 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB976325-IE8\spuninst.exe
+ 2009-12-09 10:04 . 2009-10-29 07:38 916480 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\wininet.dll
+ 2009-12-09 10:04 . 2009-10-29 07:38 206848 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\occache.dll
+ 2009-12-09 10:04 . 2009-10-29 07:38 594432 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\msfeeds.dll
+ 2009-12-09 10:04 . 2009-10-29 07:38 246272 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\ieproxy.dll
+ 2009-12-09 10:04 . 2009-10-29 07:38 184320 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\iepeers.dll
+ 2009-12-09 10:04 . 2009-10-29 07:37 387584 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\iedkcs32.dll
+ 2009-12-09 10:04 . 2009-10-28 14:09 173056 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\ie4uinit.exe
+ 2010-02-10 20:30 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB975713\update\updspapi.dll
+ 2010-02-10 20:30 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB975713\update\update.exe
+ 2010-02-10 20:30 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB975713\spuninst.exe
+ 2009-12-08 09:03 . 2009-12-08 09:03 474112 c:\windows\$hf_mig$\KB975713\SP3QFE\shlwapi.dll
+ 2010-03-10 12:44 . 2009-05-26 16:10 391032 c:\windows\$hf_mig$\KB975561\update\updspapi.dll
+ 2010-03-10 12:44 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB975561\update\update.exe
+ 2010-03-10 12:44 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB975561\spuninst.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB975560\update\updspapi.dll
+ 2010-02-10 20:29 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB975560\update\update.exe
+ 2010-02-10 20:29 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB975560\spuninst.exe
+ 2009-10-15 17:41 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB975467\update\updspapi.dll
+ 2009-10-15 17:41 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB975467\update\update.exe
+ 2009-10-15 17:41 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB975467\spuninst.exe
+ 2009-09-11 14:15 . 2009-09-11 14:15 136704 c:\windows\$hf_mig$\KB975467\SP3QFE\msv1_0.dll
+ 2009-11-12 17:56 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB975364-IE8\update\updspapi.dll
+ 2009-11-12 17:56 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB975364-IE8\update\update.exe
+ 2009-11-12 17:56 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB975364-IE8\spuninst.exe
+ 2009-10-15 17:46 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB975025\update\updspapi.dll
+ 2009-10-15 17:46 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB975025\update\update.exe
+ 2009-10-15 17:46 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB975025\spuninst.exe
+ 2009-10-15 17:45 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB974571\update\updspapi.dll
+ 2009-10-15 17:45 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB974571\update\update.exe
+ 2009-10-15 17:45 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB974571\spuninst.exe
+ 2009-10-15 17:54 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB974455-IE8\update\updspapi.dll
+ 2009-10-15 17:54 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB974455-IE8\update\update.exe
+ 2009-10-15 17:54 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB974455-IE8\spuninst.exe
+ 2009-10-15 15:04 . 2009-08-29 07:51 916480 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\wininet.dll
+ 2009-10-15 15:04 . 2009-08-29 07:51 206848 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\occache.dll
+ 2009-10-15 15:04 . 2009-08-29 07:51 594432 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\msfeeds.dll
+ 2009-10-15 15:04 . 2009-08-29 07:51 246272 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\ieproxy.dll
+ 2009-10-15 15:04 . 2009-08-29 07:51 184320 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\iepeers.dll
+ 2009-10-15 15:04 . 2009-08-29 07:51 387584 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\iedkcs32.dll
+ 2009-10-15 15:04 . 2009-08-28 10:07 173056 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\ie4uinit.exe
+ 2009-12-09 21:30 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB974392\update\updspapi.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB974392\update\update.exe
+ 2009-12-09 21:30 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB974392\spuninst.exe
+ 2009-10-13 10:39 . 2009-10-13 10:39 271360 c:\windows\$hf_mig$\KB974392\SP3QFE\oakley.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB974318\update\updspapi.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB974318\update\update.exe
+ 2009-12-09 21:30 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB974318\spuninst.exe
+ 2009-10-12 13:33 . 2009-10-12 13:33 150528 c:\windows\$hf_mig$\KB974318\SP3QFE\rastls.dll
+ 2009-10-15 17:46 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB974112\update\updspapi.dll
+ 2009-10-15 17:46 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB974112\update\update.exe
+ 2009-10-15 17:46 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB974112\spuninst.exe
+ 2009-08-26 08:03 . 2009-08-26 08:03 247326 c:\windows\$hf_mig$\KB974112\SP3QFE\strmdll.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB973904\update\updspapi.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB973904\update\update.exe
+ 2009-12-09 21:30 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB973904\spuninst.exe
+ 2009-12-09 09:58 . 2009-07-29 14:00 119648 c:\windows\$hf_mig$\KB973904\SP3QFE\msconv97.dll
+ 2009-08-13 14:07 . 2008-07-08 12:59 391032 c:\windows\$hf_mig$\KB973869\update\updspapi.dll
+ 2009-08-13 14:07 . 2008-07-08 12:59 759160 c:\windows\$hf_mig$\KB973869\update\update.exe
+ 2009-08-13 14:07 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB973869\spuninst.exe
+ 2009-08-13 13:59 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB973815\update\updspapi.dll
+ 2009-08-13 13:59 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB973815\update\update.exe
+ 2009-08-13 13:59 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB973815\spuninst.exe
+ 2009-08-05 08:53 . 2009-08-05 08:53 205312 c:\windows\$hf_mig$\KB973815\SP3QFE\mswebdvd.dll
+ 2009-11-25 11:38 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB973687\update\updspapi.dll
+ 2009-11-25 11:38 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB973687\update\update.exe
+ 2009-11-25 11:38 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB973687\spuninst.exe
+ 2009-10-15 17:41 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB973525\update\updspapi.dll
+ 2009-10-15 17:41 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB973525\update\update.exe
+ 2009-10-15 17:41 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB973525\spuninst.exe
+ 2009-08-13 14:07 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB973507\update\updspapi.dll
+ 2009-08-13 14:07 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB973507\update\update.exe
+ 2009-08-13 14:07 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB973507\spuninst.exe
+ 2009-08-13 14:07 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB973354\update\updspapi.dll
+ 2009-08-13 14:07 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB973354\update\update.exe
+ 2009-08-13 14:07 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB973354\spuninst.exe
+ 2009-07-16 16:30 . 2008-07-08 12:59 391032 c:\windows\$hf_mig$\KB973346\update\updspapi.dll
+ 2009-07-16 16:30 . 2008-07-08 12:59 759160 c:\windows\$hf_mig$\KB973346\update\update.exe
+ 2009-07-16 16:30 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB973346\spuninst.exe
+ 2010-01-12 19:48 . 2008-07-08 12:59 391032 c:\windows\$hf_mig$\KB972270\update\updspapi.dll
+ 2010-01-12 19:48 . 2008-07-08 12:59 759160 c:\windows\$hf_mig$\KB972270\update\update.exe
+ 2010-01-12 19:48 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB972270\spuninst.exe
+ 2010-01-12 19:46 . 2009-10-15 16:40 119808 c:\windows\$hf_mig$\KB972270\SP3QFE\t2embed.dll
+ 2009-07-29 20:07 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB972260-IE8\update\updspapi.dll
+ 2009-07-29 20:07 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB972260-IE8\update\update.exe
+ 2009-07-29 20:07 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB972260-IE8\spuninst.exe
+ 2009-07-29 09:26 . 2009-07-03 17:02 915456 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\wininet.dll
+ 2009-07-29 09:26 . 2009-07-03 17:02 206848 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\occache.dll

Re: W32/Malware!Gemini - F security

Napsal: 09 dub 2010 22:21
od Gamp.G
třetí část

+ 2009-07-29 09:26 . 2009-07-03 17:02 594432 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\msfeeds.dll
+ 2009-07-29 09:26 . 2009-07-03 17:02 246272 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\ieproxy.dll
+ 2009-07-29 09:26 . 2009-07-03 17:02 184320 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\iepeers.dll
+ 2009-07-29 09:26 . 2009-07-03 17:02 386048 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\iedkcs32.dll
+ 2009-07-29 09:26 . 2009-07-03 11:37 173056 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\ie4uinit.exe
+ 2009-09-09 18:30 . 2008-07-08 12:59 391032 c:\windows\$hf_mig$\KB971961-IE8\update\updspapi.dll
+ 2009-09-09 18:30 . 2008-07-08 12:59 759160 c:\windows\$hf_mig$\KB971961-IE8\update\update.exe
+ 2009-09-09 18:30 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB971961-IE8\spuninst.exe
+ 2009-09-09 18:02 . 2009-06-22 06:50 726528 c:\windows\$hf_mig$\KB971961-IE8\SP3QFE\jscript.dll
+ 2009-12-09 21:29 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB971737\update\updspapi.dll
+ 2009-12-09 21:29 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB971737\update\update.exe
+ 2009-12-09 21:29 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB971737\spuninst.exe
+ 2009-08-25 09:31 . 2009-08-25 09:31 354816 c:\windows\$hf_mig$\KB971737\SP3QFE\winhttp.dll
+ 2009-08-13 14:08 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB971657\update\updspapi.dll
+ 2009-08-13 14:08 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB971657\update\update.exe
+ 2009-08-13 14:08 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB971657\spuninst.exe
+ 2009-06-10 06:18 . 2009-06-10 06:18 134144 c:\windows\$hf_mig$\KB971657\SP3QFE\wkssvc.dll
+ 2009-07-16 16:30 . 2008-07-09 07:36 391032 c:\windows\$hf_mig$\KB971633\update\updspapi.dll
+ 2009-07-16 16:30 . 2008-07-09 07:36 759160 c:\windows\$hf_mig$\KB971633\update\update.exe
+ 2009-07-16 16:30 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB971633\spuninst.exe
+ 2009-08-13 14:08 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB971557\update\updspapi.dll
+ 2009-08-13 14:08 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB971557\update\update.exe
+ 2009-08-13 14:08 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB971557\spuninst.exe
+ 2009-10-15 17:42 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB971486\update\updspapi.dll
+ 2009-10-15 17:42 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB971486\update\update.exe
+ 2009-10-15 17:42 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB971486\spuninst.exe
+ 2010-02-10 20:32 . 2008-07-08 12:59 391032 c:\windows\$hf_mig$\KB971468\update\updspapi.dll
+ 2010-02-10 20:32 . 2008-07-08 12:59 759160 c:\windows\$hf_mig$\KB971468\update\update.exe
+ 2010-02-10 20:32 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB971468\spuninst.exe
+ 2010-02-10 20:27 . 2010-01-01 07:58 353792 c:\windows\$hf_mig$\KB971468\SP3QFE\srv.sys
+ 2009-12-09 21:30 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB970430\update\updspapi.dll
+ 2009-12-09 21:30 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB970430\update\update.exe
+ 2009-12-09 21:30 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB970430\spuninst.exe
+ 2009-10-20 15:21 . 2009-10-20 15:21 265728 c:\windows\$hf_mig$\KB970430\SP3QFE\http.sys
+ 2009-06-10 05:29 . 2007-11-30 12:39 391032 c:\windows\$hf_mig$\KB970238\update\updspapi.dll
+ 2009-06-10 05:29 . 2007-11-30 12:39 759160 c:\windows\$hf_mig$\KB970238\update\update.exe
+ 2009-06-10 05:29 . 2007-11-30 12:39 233848 c:\windows\$hf_mig$\KB970238\spuninst.exe
+ 2009-04-15 15:25 . 2009-04-15 15:25 585216 c:\windows\$hf_mig$\KB970238\SP3QFE\rpcrt4.dll
+ 2009-11-11 21:00 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB969947\update\updspapi.dll
+ 2009-11-11 21:00 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB969947\update\update.exe
+ 2009-11-11 21:00 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB969947\spuninst.exe
+ 2009-06-10 05:31 . 2007-11-30 12:39 391032 c:\windows\$hf_mig$\KB969898\update\updspapi.dll
+ 2009-06-10 05:31 . 2007-11-30 12:39 759160 c:\windows\$hf_mig$\KB969898\update\update.exe
+ 2009-06-10 05:31 . 2007-11-30 12:39 233848 c:\windows\$hf_mig$\KB969898\spuninst.exe
+ 2009-06-10 05:32 . 2008-07-09 07:36 391032 c:\windows\$hf_mig$\KB969897-IE8\update\updspapi.dll
+ 2009-06-10 05:32 . 2007-11-30 11:18 759160 c:\windows\$hf_mig$\KB969897-IE8\update\update.exe
+ 2009-06-10 05:32 . 2007-11-30 12:39 233848 c:\windows\$hf_mig$\KB969897-IE8\spuninst.exe
+ 2009-06-10 04:14 . 2009-05-13 05:09 915456 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\wininet.dll
+ 2009-06-10 04:14 . 2009-04-30 21:19 246272 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\ieproxy.dll
+ 2009-06-10 04:13 . 2009-04-30 21:19 385536 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\iedkcs32.dll
+ 2009-06-10 04:14 . 2009-04-30 10:46 173056 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\ie4uinit.exe
+ 2009-10-15 17:47 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB969059\update\updspapi.dll
+ 2009-10-15 17:47 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB969059\update\update.exe
+ 2009-10-15 17:47 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB969059\spuninst.exe
+ 2009-06-10 05:28 . 2008-07-09 07:36 391032 c:\windows\$hf_mig$\KB968537\update\updspapi.dll
+ 2009-06-10 05:28 . 2008-07-09 07:36 759160 c:\windows\$hf_mig$\KB968537\update\update.exe
+ 2009-06-10 05:28 . 2008-07-09 07:36 233848 c:\windows\$hf_mig$\KB968537\spuninst.exe
+ 2009-08-14 21:25 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB968389\update\updspapi.dll
+ 2009-08-14 21:25 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB968389\update\update.exe
+ 2009-08-14 21:25 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB968389\spuninst.exe
+ 2009-06-25 08:42 . 2009-06-25 08:42 147456 c:\windows\$hf_mig$\KB968389\SP3QFE\schannel.dll
+ 2009-06-25 08:42 . 2009-06-25 08:42 136704 c:\windows\$hf_mig$\KB968389\SP3QFE\msv1_0.dll
+ 2009-06-26 09:42 . 2009-06-26 09:42 729088 c:\windows\$hf_mig$\KB968389\SP3QFE\lsasrv.dll
+ 2009-06-25 08:42 . 2009-06-25 08:42 301568 c:\windows\$hf_mig$\KB968389\SP3QFE\kerberos.dll
+ 2009-06-10 05:31 . 2008-07-09 07:36 391032 c:\windows\$hf_mig$\KB961501\update\updspapi.dll
+ 2009-06-10 05:31 . 2008-07-09 07:36 759160 c:\windows\$hf_mig$\KB961501\update\update.exe
+ 2009-06-10 05:31 . 2008-07-09 07:36 233848 c:\windows\$hf_mig$\KB961501\spuninst.exe
+ 2009-05-07 15:16 . 2009-05-07 15:16 347136 c:\windows\$hf_mig$\KB961501\SP3QFE\localspl.dll
+ 2009-07-16 16:25 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB961371\update\updspapi.dll
+ 2009-07-16 16:25 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB961371\update\update.exe
+ 2009-07-16 16:25 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB961371\spuninst.exe
+ 2009-06-16 14:44 . 2009-06-16 14:44 119808 c:\windows\$hf_mig$\KB961371\SP3QFE\t2embed.dll
+ 2009-08-13 14:09 . 2009-05-26 11:40 391032 c:\windows\$hf_mig$\KB960859\update\updspapi.dll
+ 2009-08-13 14:09 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB960859\update\update.exe
+ 2009-08-13 14:09 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB960859\spuninst.exe
+ 2009-09-09 18:24 . 2008-07-08 12:59 391032 c:\windows\$hf_mig$\KB956844\update\updspapi.dll
+ 2009-09-09 18:24 . 2008-07-08 12:59 759160 c:\windows\$hf_mig$\KB956844\update\update.exe
+ 2009-09-09 18:24 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB956844\spuninst.exe
+ 2009-09-09 18:02 . 2009-06-21 21:50 153088 c:\windows\$hf_mig$\KB956844\SP3QFE\triedit.dll
+ 2009-08-13 14:08 . 2008-07-08 12:59 391032 c:\windows\$hf_mig$\KB956744\update\updspapi.dll
+ 2009-08-13 14:08 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB956744\update\update.exe
+ 2009-08-13 14:08 . 2008-07-08 12:59 233848 c:\windows\$hf_mig$\KB956744\spuninst.exe
+ 2010-01-12 19:48 . 2009-05-26 16:10 391032 c:\windows\$hf_mig$\KB955759\update\updspapi.dll
+ 2010-01-12 19:48 . 2009-05-26 11:40 759160 c:\windows\$hf_mig$\KB955759\update\update.exe
+ 2010-01-12 19:48 . 2009-05-26 11:40 233848 c:\windows\$hf_mig$\KB955759\spuninst.exe
+ 2010-01-12 19:46 . 2009-11-21 15:49 471552 c:\windows\$hf_mig$\KB955759\SP3QFE\aclayers.dll
+ 2009-10-15 14:59 . 2009-08-13 13:56 1748992 c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6001.22319_x-ww_f0b4c2df\GdiPlus.dll
+ 2005-08-25 07:32 . 2009-08-06 17:23 1929952 c:\windows\system32\wuaueng.dll
- 2004-08-18 12:00 . 2008-06-18 04:03 2458112 c:\windows\system32\WMVCore.dll
+ 2004-08-18 12:00 . 2009-05-20 02:56 2458112 c:\windows\system32\WMVCore.dll
+ 2004-08-18 12:00 . 2009-08-14 15:15 1850624 c:\windows\system32\win32k.sys
+ 2004-08-18 12:00 . 2004-08-18 12:00 1356800 c:\windows\system32\webfldrs.msi
+ 2004-08-18 12:00 . 2010-02-25 06:18 1209344 c:\windows\system32\urlmon.dll
+ 2009-06-12 18:17 . 2005-02-22 16:55 6713344 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\atioglxx.dll
+ 2009-06-12 18:17 . 2005-08-04 04:46 6684672 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\atioglx1.dll
+ 2009-06-12 18:17 . 2005-08-04 02:54 2365472 c:\windows\system32\ReinstallBackups\0018\DriverFiles\B_25699\ati3duag.dll
+ 2009-11-16 20:17 . 2006-02-21 18:11 5124096 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\atioglxx.dll
+ 2009-11-16 20:17 . 2006-02-21 18:30 2636672 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\ati3duag.dll
+ 2009-11-16 20:17 . 2006-02-21 18:46 1505792 c:\windows\system32\ReinstallBackups\0014\DriverFiles\B_21349\ati2mtag.sys
+ 2009-11-16 22:03 . 2006-05-03 16:18 5033984 c:\windows\system32\ReinstallBackups\0002\DriverFiles\atioglxx.dll
+ 2009-11-16 22:03 . 2006-05-03 16:21 6684672 c:\windows\system32\ReinstallBackups\0002\DriverFiles\atioglx1.dll
+ 2009-11-16 22:03 . 2005-08-04 02:54 2365472 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ati3duag.dll
+ 2009-11-16 22:03 . 2006-05-03 16:50 1540608 c:\windows\system32\ReinstallBackups\0002\DriverFiles\ati2mtag.sys
+ 2009-11-16 22:02 . 2005-08-04 03:28 5005312 c:\windows\system32\ReinstallBackups\0001\DriverFiles\atioglxx.dll
+ 2009-11-16 22:02 . 2005-08-04 04:46 6684672 c:\windows\system32\ReinstallBackups\0001\DriverFiles\atioglx1.dll
+ 2009-11-16 22:02 . 2005-08-04 02:54 2365472 c:\windows\system32\ReinstallBackups\0001\DriverFiles\ati3duag.dll
+ 2009-11-16 22:02 . 2005-08-04 03:10 1273344 c:\windows\system32\ReinstallBackups\0001\DriverFiles\ati2mtag.sys
+ 2004-08-18 12:00 . 2009-07-17 16:17 1437696 c:\windows\system32\query.dll
- 2004-08-18 12:00 . 2008-04-14 03:21 1437696 c:\windows\system32\query.dll
+ 2004-08-18 12:00 . 2009-11-27 17:14 1294336 c:\windows\system32\quartz.dll
+ 2004-08-18 12:00 . 2009-12-09 10:11 2191360 c:\windows\system32\ntoskrnl.exe
+ 2004-08-17 15:45 . 2009-12-09 10:11 2068224 c:\windows\system32\ntkrnlpa.exe
- 2004-08-17 15:45 . 2009-02-10 17:09 2068224 c:\windows\system32\ntkrnlpa.exe
+ 2008-04-14 03:21 . 2009-07-31 09:05 1372672 c:\windows\system32\msxml6.dll
+ 2004-08-18 12:00 . 2009-07-31 04:35 1172480 c:\windows\system32\msxml3.dll
+ 2005-08-25 07:30 . 2009-06-10 07:21 2066432 c:\windows\system32\mstscax.dll
+ 2004-08-18 12:00 . 2010-02-25 06:18 5944832 c:\windows\system32\mshtml.dll
+ 2010-01-27 01:07 . 2010-01-27 01:07 3884312 c:\windows\system32\Macromed\Flash\NPSWF32.dll
+ 2006-10-17 09:57 . 2010-02-25 06:18 1985536 c:\windows\system32\iertutil.dll
+ 2009-06-24 15:14 . 2009-05-11 10:47 1302600 c:\windows\system32\DRVSTORE\pccswpddri_1C34ED6F4888FC93BE68C7A31A24834F522D3CBF\WUDFUpdate_01007.dll
+ 2009-06-24 15:13 . 2009-02-09 06:32 1112288 c:\windows\system32\DRVSTORE\ccdcmb_34CB4225E6E4893AE1D3E4443E91C2B9703B729C\wdfcoinstaller01007.dll
+ 2005-11-09 11:31 . 2006-05-03 16:50 1540608 c:\windows\system32\drivers\ati2mtag.sys
+ 2005-08-25 07:32 . 2009-08-06 17:23 1929952 c:\windows\system32\dllcache\wuaueng.dll
+ 2004-08-18 12:00 . 2009-05-20 02:56 2458112 c:\windows\system32\dllcache\WMVCore.dll
- 2004-08-18 12:00 . 2008-06-18 04:03 2458112 c:\windows\system32\dllcache\WMVCore.dll
+ 2008-10-16 06:52 . 2009-08-14 15:15 1850624 c:\windows\system32\dllcache\win32k.sys
+ 2004-08-18 12:00 . 2010-02-25 06:18 1209344 c:\windows\system32\dllcache\urlmon.dll
+ 2009-07-17 16:17 . 2009-07-17 16:17 1437696 c:\windows\system32\dllcache\query.dll
+ 2008-05-07 05:12 . 2009-11-27 17:14 1294336 c:\windows\system32\dllcache\quartz.dll
+ 2008-10-16 06:52 . 2009-12-09 10:11 2191360 c:\windows\system32\dllcache\ntoskrnl.exe
- 2008-10-16 06:52 . 2009-02-09 11:26 2025984 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2008-10-16 06:52 . 2009-12-09 10:11 2025984 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2008-10-16 06:52 . 2009-12-09 10:11 2068224 c:\windows\system32\dllcache\ntkrnlpa.exe
- 2008-10-16 06:52 . 2009-02-10 17:09 2068224 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2008-10-16 06:52 . 2009-12-09 10:11 2147328 c:\windows\system32\dllcache\ntkrnlmp.exe
- 2008-10-16 06:52 . 2009-02-09 11:26 2147328 c:\windows\system32\dllcache\ntkrnlmp.exe
+ 2008-04-14 03:21 . 2009-07-31 09:05 1372672 c:\windows\system32\dllcache\msxml6.dll
+ 2004-08-18 12:00 . 2009-07-31 04:35 1172480 c:\windows\system32\dllcache\msxml3.dll
+ 2005-08-25 07:30 . 2009-06-10 07:21 2066432 c:\windows\system32\dllcache\mstscax.dll
+ 2009-08-12 17:39 . 2009-07-10 13:28 1315328 c:\windows\system32\dllcache\msoe.dll
+ 2004-08-18 12:00 . 2010-02-25 06:18 5944832 c:\windows\system32\dllcache\mshtml.dll
+ 2010-03-10 08:10 . 2009-10-23 15:28 3558912 c:\windows\system32\dllcache\moviemk.exe
+ 2007-05-09 12:15 . 2010-02-25 06:18 1985536 c:\windows\system32\dllcache\iertutil.dll
+ 2005-11-09 11:31 . 2006-05-03 16:50 1540608 c:\windows\system32\dllcache\ati2mtag.sys
+ 2005-11-09 11:31 . 2006-05-03 16:29 1408000 c:\windows\system32\ativvaxx.dll
+ 2005-08-04 03:28 . 2006-05-03 16:18 5033984 c:\windows\system32\atioglxx.dll
+ 2005-08-04 04:46 . 2006-05-03 16:21 6684672 c:\windows\system32\atioglx1.dll
- 2005-08-04 04:46 . 2005-08-04 04:46 6684672 c:\windows\system32\atioglx1.dll
+ 2005-11-09 11:31 . 2006-05-03 16:35 2693280 c:\windows\system32\ati3duag.dll
+ 2006-02-20 15:44 . 2009-11-24 23:54 1280480 c:\windows\system32\aswBoot.exe
+ 2008-08-27 06:53 . 2004-08-18 12:00 1356800 c:\windows\ServicePackFiles\i386\webfldrs.msi
- 2007-04-13 19:35 . 2007-04-13 19:35 1265664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll
+ 2008-05-27 23:35 . 2008-05-27 23:35 1265664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll
- 2007-04-13 19:35 . 2007-04-13 19:35 1232896 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll
+ 2008-05-27 23:35 . 2008-05-27 23:35 1232896 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll
+ 2008-05-27 22:48 . 2008-05-27 22:48 2514944 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
- 2007-04-13 18:57 . 2007-04-13 18:57 2514944 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
+ 2008-05-27 22:48 . 2008-05-27 22:48 2523136 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
- 2007-04-13 18:57 . 2007-04-13 18:57 2523136 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
+ 2008-05-27 22:43 . 2008-05-27 22:43 2142208 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
- 2007-04-13 18:50 . 2007-04-13 18:50 2142208 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
+ 2005-08-25 08:04 . 2005-08-25 08:04 7152640 c:\windows\Installer\e0f2.msi
+ 2010-03-30 14:42 . 2010-03-30 14:42 1575936 c:\windows\Installer\c7d7a.msi
+ 2006-02-18 21:19 . 2006-02-18 21:19 3443712 c:\windows\Installer\974f5e.msi
+ 2008-02-14 12:45 . 2008-02-14 12:45 4041216 c:\windows\Installer\51ba6.msi
+ 2007-03-09 19:47 . 2007-03-09 19:47 2810880 c:\windows\Installer\22bb40.msi
+ 2007-04-04 20:41 . 2007-04-04 20:41 5864960 c:\windows\Installer\16655aa.msp
+ 2005-08-25 08:38 . 2005-08-25 08:38 2707456 c:\windows\Installer\15402.msi
+ 2006-02-16 18:01 . 2006-02-16 18:01 2384896 c:\windows\Installer\1311574.msi
+ 2010-03-31 05:07 . 2009-12-21 19:08 1208832 c:\windows\ie8updates\KB980182-IE8\urlmon.dll
+ 2010-03-31 05:07 . 2009-12-21 19:08 5942784 c:\windows\ie8updates\KB980182-IE8\mshtml.dll
+ 2010-03-31 05:07 . 2009-12-21 19:08 1985536 c:\windows\ie8updates\KB980182-IE8\iertutil.dll
+ 2010-01-21 19:20 . 2009-10-29 07:43 1208832 c:\windows\ie8updates\KB978207-IE8\urlmon.dll
+ 2010-01-21 19:20 . 2009-10-29 07:43 5940736 c:\windows\ie8updates\KB978207-IE8\mshtml.dll
+ 2010-01-21 19:20 . 2009-10-29 07:43 1985536 c:\windows\ie8updates\KB978207-IE8\iertutil.dll
+ 2009-11-04 20:36 . 2009-08-29 07:58 5940224 c:\windows\ie8updates\KB976749-IE8\mshtml.dll
+ 2009-12-09 21:30 . 2009-08-29 07:58 1208832 c:\windows\ie8updates\KB976325-IE8\urlmon.dll
+ 2009-12-09 21:30 . 2009-10-22 09:18 5939712 c:\windows\ie8updates\KB976325-IE8\mshtml.dll
+ 2009-12-09 21:30 . 2009-08-29 07:58 1985536 c:\windows\ie8updates\KB976325-IE8\iertutil.dll
+ 2009-10-15 17:54 . 2009-07-03 16:59 1208832 c:\windows\ie8updates\KB974455-IE8\urlmon.dll
+ 2009-10-15 17:54 . 2009-07-19 13:16 5937152 c:\windows\ie8updates\KB974455-IE8\mshtml.dll
+ 2009-10-15 17:54 . 2009-07-03 16:59 1985536 c:\windows\ie8updates\KB974455-IE8\iertutil.dll
+ 2009-07-29 20:07 . 2009-04-30 21:16 1207808 c:\windows\ie8updates\KB972260-IE8\urlmon.dll
+ 2009-07-29 20:07 . 2009-05-13 05:05 5936128 c:\windows\ie8updates\KB972260-IE8\mshtml.dll
+ 2009-07-29 20:07 . 2009-04-30 21:16 1985024 c:\windows\ie8updates\KB972260-IE8\iertutil.dll
+ 2009-06-10 05:32 . 2009-03-08 02:34 1206784 c:\windows\ie8updates\KB969897-IE8\urlmon.dll
+ 2009-06-10 05:32 . 2009-03-08 02:41 5937152 c:\windows\ie8updates\KB969897-IE8\mshtml.dll
+ 2009-06-10 05:32 . 2009-03-08 02:32 1985024 c:\windows\ie8updates\KB969897-IE8\iertutil.dll
+ 2008-10-16 06:52 . 2009-12-09 10:11 2191360 c:\windows\Driver Cache\i386\ntoskrnl.exe
+ 2008-10-16 06:52 . 2009-12-09 10:11 2025984 c:\windows\Driver Cache\i386\ntkrpamp.exe
- 2008-10-16 06:52 . 2009-02-09 11:26 2025984 c:\windows\Driver Cache\i386\ntkrpamp.exe
+ 2008-10-16 06:52 . 2009-12-09 10:11 2068224 c:\windows\Driver Cache\i386\ntkrnlpa.exe
- 2008-10-16 06:52 . 2009-02-10 17:09 2068224 c:\windows\Driver Cache\i386\ntkrnlpa.exe
- 2008-10-16 06:52 . 2009-02-09 11:26 2147328 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2008-10-16 06:52 . 2009-12-09 10:11 2147328 c:\windows\Driver Cache\i386\ntkrnlmp.exe
+ 2009-02-02 16:07 . 2009-02-02 16:07 1914440 c:\windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe
+ 2008-02-14 12:45 . 2008-02-14 12:44 9119744 c:\windows\Downloaded Installations\{E03ED1B9-D31F-45DA-9AFE-37FE4F66818C}\Trust WB-3400T Webcam .msi
+ 2009-10-15 17:45 . 2009-10-15 17:45 1966080 c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_17eb821e\System.dll
+ 2009-10-15 17:46 . 2009-10-15 17:46 2088960 c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_5032d50c\System.Xml.dll
+ 2009-10-15 17:46 . 2009-10-15 17:46 3018752 c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_6a12ad07\System.Windows.Forms.dll
+ 2009-10-15 17:46 . 2009-10-15 17:46 1466368 c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_336bed4b\System.Design.dll
+ 2009-10-15 17:47 . 2009-10-15 17:47 3391488 c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_1419d95f\mscorlib.dll
- 2007-07-11 12:56 . 2007-07-11 12:56 1232896 c:\windows\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
+ 2009-10-15 17:44 . 2009-10-15 17:44 1232896 c:\windows\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
- 2007-07-11 12:55 . 2007-07-11 12:55 1265664 c:\windows\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll
+ 2009-10-15 17:44 . 2009-10-15 17:44 1265664 c:\windows\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll
+ 2010-02-10 20:28 . 2009-08-04 20:59 2191360 c:\windows\$NtUninstallKB977165$\ntoskrnl.exe
+ 2010-02-10 20:29 . 2009-08-04 17:29 2025984 c:\windows\$NtUninstallKB977165$\ntkrpamp.exe
+ 2010-02-10 20:29 . 2009-08-04 17:29 2068224 c:\windows\$NtUninstallKB977165$\ntkrnlpa.exe
+ 2010-02-10 20:29 . 2009-08-04 17:29 2147328 c:\windows\$NtUninstallKB977165$\ntkrnlmp.exe
+ 2010-03-10 12:44 . 2008-04-14 03:22 3558912 c:\windows\$NtUninstallKB975561$\moviemk.exe
+ 2010-02-10 20:29 . 2009-06-03 19:11 1293824 c:\windows\$NtUninstallKB975560$\quartz.dll
+ 2009-11-25 11:38 . 2008-09-10 01:16 1307648 c:\windows\$NtUninstallKB973687$\msxml6.dll
+ 2009-11-25 11:38 . 2008-09-04 17:17 1106944 c:\windows\$NtUninstallKB973687$\msxml3.dll
+ 2009-08-13 14:07 . 2008-04-14 03:21 1314816 c:\windows\$NtUninstallKB973354$\msoe.dll
+ 2009-07-16 16:30 . 2008-12-20 22:15 1290752 c:\windows\$NtUninstallKB971633$\quartz.dll
+ 2009-10-15 17:41 . 2009-02-09 11:26 2191232 c:\windows\$NtUninstallKB971486$\ntoskrnl.exe
+ 2009-10-15 17:41 . 2009-02-09 11:26 2025984 c:\windows\$NtUninstallKB971486$\ntkrpamp.exe
+ 2009-10-15 17:41 . 2009-02-10 17:09 2068224 c:\windows\$NtUninstallKB971486$\ntkrnlpa.exe
+ 2009-10-15 17:41 . 2009-02-09 11:26 2147328 c:\windows\$NtUninstallKB971486$\ntkrnlmp.exe
+ 2009-11-11 21:00 . 2009-04-19 19:52 1847168 c:\windows\$NtUninstallKB969947$\win32k.sys
+ 2009-10-15 17:47 . 2008-04-14 03:21 1437696 c:\windows\$NtUninstallKB969059$\query.dll
+ 2009-09-09 18:30 . 2008-06-18 04:03 2458112 c:\windows\$NtUninstallKB968816_WM9$\wmvcore.dll
+ 2009-06-10 05:28 . 2009-02-09 14:07 1846784 c:\windows\$NtUninstallKB968537$\win32k.sys
+ 2009-08-13 14:08 . 2008-04-14 03:21 2061824 c:\windows\$NtUninstallKB956744$\mstscax.dll
+ 2010-01-21 19:18 . 2009-12-21 19:02 1209344 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\urlmon.dll
+ 2010-01-21 19:18 . 2009-12-21 19:02 5945856 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\mshtml.dll
+ 2010-01-21 19:18 . 2009-12-21 19:02 1986048 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\iertutil.dll
+ 2009-12-09 14:33 . 2009-12-09 14:33 2191488 c:\windows\$hf_mig$\KB977165\SP3QFE\ntoskrnl.exe
+ 2010-02-10 20:22 . 2009-12-09 10:03 2025984 c:\windows\$hf_mig$\KB977165\SP3QFE\ntkrpamp.exe
+ 2009-12-09 14:33 . 2009-12-09 14:33 2068352 c:\windows\$hf_mig$\KB977165\SP3QFE\ntkrnlpa.exe
+ 2010-02-10 20:22 . 2009-12-09 10:03 2147328 c:\windows\$hf_mig$\KB977165\SP3QFE\ntkrnlmp.exe
+ 2009-11-04 15:34 . 2009-10-22 09:14 5943296 c:\windows\$hf_mig$\KB976749-IE8\SP3QFE\mshtml.dll
+ 2009-12-09 10:04 . 2009-10-29 07:38 1209344 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\urlmon.dll
+ 2009-12-09 10:04 . 2009-10-29 07:38 5944320 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\mshtml.dll
+ 2009-12-09 10:04 . 2009-10-29 07:38 1986048 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\iertutil.dll
+ 2010-03-10 08:10 . 2009-10-23 14:53 3558912 c:\windows\$hf_mig$\KB975561\SP3QFE\moviemk.exe
+ 2009-11-27 17:25 . 2009-11-27 17:25 1294336 c:\windows\$hf_mig$\KB975560\SP3QFE\quartz.dll
+ 2009-10-15 15:04 . 2009-08-29 07:51 1209344 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\urlmon.dll
+ 2009-10-15 15:04 . 2009-08-29 07:51 5942272 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\mshtml.dll
+ 2009-10-15 15:04 . 2009-08-29 07:51 1986048 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\iertutil.dll
+ 2009-11-25 07:29 . 2009-07-31 04:30 1447424 c:\windows\$hf_mig$\KB973687\SP3QFE\msxml6.dll
+ 2009-11-25 07:29 . 2009-07-31 04:30 1172480 c:\windows\$hf_mig$\KB973687\SP3QFE\msxml3.dll
+ 2009-07-10 16:55 . 2009-07-10 16:55 1315328 c:\windows\$hf_mig$\KB973354\SP3QFE\msoe.dll
+ 2009-07-29 09:26 . 2009-07-03 17:02 1208832 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\urlmon.dll
+ 2009-07-29 09:26 . 2009-07-19 13:08 5938176 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\mshtml.dll
+ 2009-07-29 09:26 . 2009-07-03 17:02 1985536 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\iertutil.dll
+ 2009-06-03 19:12 . 2009-06-03 19:12 1293824 c:\windows\$hf_mig$\KB971633\SP3QFE\quartz.dll
+ 2009-10-15 14:56 . 2009-08-04 17:23 2191488 c:\windows\$hf_mig$\KB971486\SP3QFE\ntoskrnl.exe
+ 2009-10-15 14:56 . 2009-08-04 17:23 2025984 c:\windows\$hf_mig$\KB971486\SP3QFE\ntkrpamp.exe
+ 2009-08-04 20:53 . 2009-08-04 20:53 2068352 c:\windows\$hf_mig$\KB971486\SP3QFE\ntkrnlpa.exe
+ 2009-10-15 14:56 . 2009-08-04 17:23 2147328 c:\windows\$hf_mig$\KB971486\SP3QFE\ntkrnlmp.exe
+ 2009-08-14 16:00 . 2009-08-14 16:00 1859712 c:\windows\$hf_mig$\KB969947\SP3QFE\win32k.sys
+ 2009-06-10 04:14 . 2009-04-30 21:19 1207808 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\urlmon.dll
+ 2009-06-10 04:14 . 2009-05-13 05:09 5936128 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\mshtml.dll
+ 2009-06-10 04:14 . 2009-04-30 21:19 1985024 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\iertutil.dll
+ 2009-07-17 16:02 . 2009-07-17 16:02 1437696 c:\windows\$hf_mig$\KB969059\SP3QFE\query.dll
+ 2009-04-19 19:44 . 2009-04-19 19:44 1847808 c:\windows\$hf_mig$\KB968537\SP3QFE\win32k.sys
+ 2009-08-12 17:40 . 2009-06-09 15:23 2067968 c:\windows\$hf_mig$\KB956744\SP3QFE\lhmstscx.dll
+ 2004-08-18 12:00 . 2009-07-13 21:43 10841088 c:\windows\system32\wmp.dll
+ 2006-10-19 20:13 . 2010-03-02 05:30 31648712 c:\windows\system32\MRT.exe
+ 2006-11-07 19:03 . 2010-02-25 09:48 11070976 c:\windows\system32\ieframe.dll
+ 2004-08-18 12:00 . 2009-07-13 21:43 10841088 c:\windows\system32\dllcache\wmp.dll
+ 2007-05-09 12:15 . 2010-02-25 09:48 11070976 c:\windows\system32\dllcache\ieframe.dll
+ 2009-08-10 19:08 . 2009-08-10 19:08 11315712 c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\M953297\M953297Uninstall.msp
+ 2007-07-11 12:55 . 2007-07-11 12:55 15256576 c:\windows\Installer\eb80d7.msp
+ 2009-08-10 12:09 . 2009-08-10 12:09 17254912 c:\windows\Installer\a60d9b.msp
+ 2009-11-16 22:10 . 2009-11-16 22:10 13135872 c:\windows\Installer\4ed1f3.msi
+ 2007-04-03 19:34 . 2007-04-03 19:34 19210240 c:\windows\Installer\2965e61.msp
+ 2010-03-31 05:07 . 2009-12-21 19:08 11070464 c:\windows\ie8updates\KB980182-IE8\ieframe.dll
+ 2010-01-21 19:20 . 2009-10-29 07:43 11069952 c:\windows\ie8updates\KB978207-IE8\ieframe.dll
+ 2009-12-09 21:30 . 2009-08-29 07:58 11069440 c:\windows\ie8updates\KB976325-IE8\ieframe.dll
+ 2009-10-15 17:54 . 2009-07-19 16:46 11067392 c:\windows\ie8updates\KB974455-IE8\ieframe.dll
+ 2009-07-29 20:07 . 2009-04-30 21:16 11064832 c:\windows\ie8updates\KB972260-IE8\ieframe.dll
+ 2009-06-10 05:32 . 2009-03-08 02:39 11063808 c:\windows\ie8updates\KB969897-IE8\ieframe.dll
+ 2009-08-13 14:06 . 2008-11-11 17:34 10838016 c:\windows\$NtUninstallKB973540_WM9$\wmp.dll
+ 2009-12-22 13:02 . 2009-12-22 13:02 11070976 c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\ieframe.dll
+ 2009-10-29 12:08 . 2009-10-29 12:08 11070464 c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\ieframe.dll
+ 2009-08-29 11:21 . 2009-08-29 11:21 11069952 c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\ieframe.dll
+ 2009-07-29 09:25 . 2009-07-19 13:08 11068416 c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\ieframe.dll
+ 2009-05-01 13:19 . 2009-05-01 13:19 11064832 c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\ieframe.dll

.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
"uTorrent"="c:\program files\uTorrent\utorrent.exe" [2010-03-14 319792]
"ccleaner"="c:\program files\CCleaner\CCleaner.exe" [2010-02-24 1771320]
"Skype"="c:\program files\Skype\\Phone\Skype.exe" [2010-03-09 26100520]
"Advanced SystemCare 3"="c:\program files\IObit\Advanced SystemCare 3\AWC.exe" [2010-03-29 2343120]
"Display Stix - System tray"="c:\program files\Fractalis Software\Display Stix 2.1.1\dstix.exe" [2004-01-12 241664]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"="VTTimer.exe" [2004-10-22 53248]
"VTTrayp"="VTtrayp.exe" [2005-01-10 143360]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-05-03 344064]
"AudioDeck"="c:\program files\VIAudioi\SBADeck\ADeck.exe" [2005-03-04 512000]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000]
"HydraVisionViewport"="c:\program files\ATI Technologies\ATI HydraVision\HydraMD.exe" [2003-04-01 364544]
"SpybotSnD"="c:\program files\Spybot - Search & Destroy\SpybotSD.exe" [2009-01-26 5365592]
"PAC7311_Monitor"="c:\windows\PixArt\PAC7311\Monitor.exe" [2006-11-03 319488]
"Hard Disk Sentinel"="c:\program files\Hard Disk Sentinel\HDSentinel.exe" [2009-05-27 3291648]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 45056]
"HydraVisionDesktopManager"="c:\program files\ATI Technologies\ATI HydraVision\HydraDM.exe" [2003-04-01 270336]
"Cobian Backup 10"="c:\program files\Cobian Backup 10\Cobian.exe" [2010-04-06 421376]


[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"= "c:\program files\DVDIdle Pro\DVDShell.dll" [2004-10-09 49152]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3]
2010-03-29 12:54 2343120 ----a-w- c:\program files\IObit\Advanced SystemCare 3\AWC.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LGODDFU]
2005-04-12 09:11 229376 ----a-w- c:\program files\lg_fwupdate\fwupdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBJ]
2005-06-02 15:03 1957888 ------w- c:\program files\Ahead\Nero BackItUp\NBJ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2009-06-25 13:12 1414144 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
2004-11-02 19:24 32768 ----a-w- c:\program files\CyberLink\PowerDVD\PDVDServ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartRAM]
2009-02-19 13:23 202064 ----a-w- c:\program files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VGAUtil]
2004-09-17 12:32 552960 ----a-w- c:\program files\GigaByte\VGA Utility Manager\G-vga.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"InCDsrv"=2 (0x2)
"CobianBackupAmanita"=2 (0x2)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\Program Files\\Electronic Arts\\Need For Speed III\\nfs3.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\uTorrent\\utorrent.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\GigaByte\\VGA Utility Manager\\G-vga.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Metin2_TESTER\\metin2client.bin"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [4.4.2008 19:23 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [4.4.2008 19:23 20560]
R3 PAC7311;Trust WB-3400T Webcam;c:\windows\system32\drivers\PA707UCM.SYS [14.3.2007 11:57 449024]
S3 GVTDrv;GVTDrv;c:\windows\system32\drivers\GVTDrv.sys [16.11.2009 22:45 23524]
S3 TempLog;TempLog;c:\program files\Hard Disk Sentinel\HDSentinel.sys [28.5.2009 17:47 3897]
.
Obsah adresáře 'Naplánované úlohy'

2010-04-03 c:\windows\Tasks\SmartDefrag.job
- c:\program files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe [2010-02-17 14:30]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: Download All by FlashGet - c:\program files\FlashGet\jc_all.htm
IE: Download using FlashGet - c:\program files\FlashGet\jc_link.htm
IE: Spustit klienta k monitoru &1 - c:\windows\web\AOpenClient.htm
IE: Spustit klienta k monitoru &2 - c:\windows\web\AOpenClient.htm
FF - ProfilePath - c:\documents and settings\Stana\Data aplikací\Mozilla\Firefox\Profiles\5ed95e45.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/

---- NASTAVENÍ FIREFOXU ----
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.xul.error_pages.enabled - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 8191
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.firstrequest - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.
.
------- Asociace souborů -------
.
.scr=AutoCADScript
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

MSConfigStartUp-Cobian Backup 9 interface - c:\program files\Cobian Backup 9\cbInterface.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-09 22:56
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(656)
c:\windows\system32\Ati2evxx.dll
.
Celkový čas: 2010-04-09 22:58:57
ComboFix-quarantined-files.txt 2010-04-09 20:58
ComboFix2.txt 2008-11-14 21:02

Před spuštěním: Volných bajtů: 24 032 792 576
Po spuštění: Volných bajtů: 24 000 614 400

WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect

Current=1 Default=1 Failed=0 LastKnownGood=4 Sets=1,2,3,4
- - End Of File - - 56403952CFD1C60BCF38EA4B7E3E23FD

Re: W32/Malware!Gemini - F security

Napsal: 09 dub 2010 22:22
od Gamp.G
Nebylo mi jasné co mám vynechat tak je to komplet.

Re: W32/Malware!Gemini - F security

Napsal: 09 dub 2010 22:36
od Rudy
1 položka smazána, zbytek logu vypadá čistý. Odinstalujte Harddisk Sentinel. Ty 2 soubory v Documents and settings jsou instalačky Skype a CCleaneru (legitimní). Mohl jste vynechat celý odstavec SnapShot@2009-05-14_20.17.15. F-Secure nepatří mezi příliš spolehlivé antiviry.

Re: W32/Malware!Gemini - F security

Napsal: 09 dub 2010 22:43
od Gamp.G
Velmi děkuji za ochotu a odpověď.

Otázka mimo?

Znáte jiný podobný program kterým mám nahradit ten zavirovaný sentinel?

Prosím?

Dík.

Re: W32/Malware!Gemini - F security

Napsal: 10 dub 2010 10:31
od Rudy
Gamp.G píše:Velmi děkuji za ochotu a odpověď.

Otázka mimo?

Znáte jiný podobný program kterým mám nahradit ten zavirovaný sentinel?

Prosím?

Dík.
Např. SpeedFan: http://www.stahuj.centrum.cz/utility_a_ ... /speedfan/ . Případně si HDD Sentinel někde znovu stáhněte a nainstalujte. Nemáte zač!
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz