Inactive Browser redirect that won't go away

Status
Not open for further replies.
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 04/12/2012 at 01:14 PM

Application Version : 5.0.1146

Core Rules Database Version : 8445
Trace Rules Database Version: 6257

Scan type : Complete Scan
Total Scan Time : 02:06:56

Operating System Information
Windows XP Professional 32-bit, Service Pack 3 (Build 5.01.2600)
Administrator

Memory items scanned : 524
Memory threats detected : 0
Registry items scanned : 34311
Registry threats detected : 0
File items scanned : 44280
File threats detected : 9

Adware.Tracking Cookie
C:\Documents and Settings\Administrator\Cookies\SE6DUD5U.txt [ /adserver.adtechus.com ]
C:\Documents and Settings\Administrator\Cookies\IHJ1A5Q1.txt [ /specificclick.net ]
C:\Documents and Settings\Administrator\Cookies\74FUD91R.txt [ /2o7.net ]
C:\Documents and Settings\Administrator\Cookies\YIZQYILP.txt [ /ads.pubmatic.com ]
C:\Documents and Settings\Administrator\Cookies\O1YMZ0AZ.txt [ /collective-media.net ]
C:\Documents and Settings\Administrator\Cookies\53HWP3U4.txt [ /www.googleadservices.com ]
C:\Documents and Settings\Administrator\Cookies\ZU8EL2D6.txt [ /yieldmanager.net ]
C:\Documents and Settings\Administrator\Cookies\I1ZL77WB.txt [ /ad.yieldmanager.com ]

Adware.ClickSpring/Yazzle
C:\DOCUMENTS AND SETTINGS\ADMINISTRATOR\MY DOCUMENTS\INSTALLS\SUDOKUINSTALL.EXE
 
Also, I went to add or remove programs and none of the ones you suggested to uninstall were there. I then went to C:\Program Files and didn't find program folders for any of them. There were folders in C:\Documents & Settings\Administrator\Application Data though. Should I remove those?
 
I found the entries in DDS and have included them in the Script to run in Combofix. Regarding your question about removing them from your apps:

Please click on Tools> Manage Addons> look in both 'addons currently on system' and 'addons previously on the system' hightlight and delete all entries for or related to:
PlayFirstWeddingDasControl,
PlayFirstDinerDasControl
Bingame
Dash
BigFish.
Hightlight each and remove.
Check the Startup Men> if any processes related to the above are checked, uncheck them..
===========================================
Please run this Custom CFScript:

  • [1]. Close any open browsers.
    [2]. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
    [3]. Open notepad> click on Format> Uncheck 'Word Wrap> and copy/paste the text in the code below into it:
Code: 
File::

DDS::
DPF: {74EF5274-F439-2168-B543-14745B625C72} http://games.bigfish...eb.1.0.0.11.cab
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} http://zone.msn.com/bingame/dash/default/D...sh.1.0.0.94.cab
Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxhkcmd]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxtray]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
Clearjavacache::
Save this as CFScript.txt, in the same location as ComboFix.exe
CFScriptB-4.gif


Referring to the picture above, drag CFScript into ComboFix.exe

When finished, it will produce a log for you at C:\ComboFix.txt . Please paste into to your next reply.
======================================
I would encourage you to remove all of the following from the Scheduled Tasks:
1. c:\windows\Tasks\AdobeAAMUpdater-1.0-CHANGEME-Administrator.job
2. c:\windows\Tasks\AdobeAAMUpdater-1.0-FAMILY-Administrator.job
3. c:\windows\Tasks\AppleSoftwareUpdate.job
4.c:\windows\Tasks\Final Media Player Update Checker.job
------------------------
Opening scheduled tasks to modify or delete them:
Access Scheduled Tasks with Click on Start> All Programs> Accessories> System Tools> Scheduled Tasks.

  • To change the settings for a task: right-click the Task> click Properties> do any of the following:
    1. To change the schedule for the task, click the Schedule tab.
      [o] Highlight the Task
    2. To customize the settings for the task,such as run time,idle time, power management options, click the Settings tab.
    3. To delete a task> right-click the task> click Delete.
    4. To prevent task from running until you run again>
      [o] right-click the task> Properties> On the General tab>
      [o] clear the Enabled check box> Select the check box again when you are ready to run it again.
    ======================================
    Reset Cookies

    For Internet Explorer: Internet Options (through Tools or Control Panel) Privacy tab> Advanced button> CHECK 'override automatic Cookie handling'> CHECK 'accept first party Cookies'> CHECK 'Block third party Cookies'> CHECK 'allow per session Cookies'> Apply> OK.

    For Firefox: Tools> Options> Privacy> Cookies> CHECK ‘accept Cookies from Sites’> UNCHECK 'accept third party Cookies'> Set Keep until 'they expire'. This will allow you to keep Cookies for registered sites and prevent or remove others. (Note: for Firefox v3.5, after Privacy click on 'use custom settings for History.')

    I suggest using the following two add-on for Firefox. They will prevent the Tracking Cookies that come from ads and banners and other sources:
    AdBlock Plus
    Easy List

    For Chrome: Tools> Options> Under The Hood> Privacy Section> CHECK 'Restrict how third party Cookies can be used'> Close.
    (First-party and third-party cookies can be set by the website you're visiting and websites that have items embedded in the website you're visiting. But when you next visit the website, only first-party cookie information is sent to the website. Third-party cookie information isn't sent back to the websites that originally set the third-party cookies.)
    =======================================
    Use the msconfig utility to uncheck the following on the Startup Menu:
    NeroCheck.exe
    hkcmd.exe
    gfxtray.exe
    igfxpers.exe
    smax4pnp.exe
    AdobeARM.exe
    Please let me know if you need help with this.
    ========================================
    How is the system doing now?
 
ComboFix 12-04-10.02 - Administrator 04/15/2012 12:25:36.3.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1015.478 [GMT -4:00]
Running from: c:\documents and settings\Administrator\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Administrator\Desktop\CFScript.txt
AV: AVG Internet Security 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG Internet Security 2012 *Enabled* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
.
((((((((((((((((((((((((( Files Created from 2012-03-15 to 2012-04-15 )))))))))))))))))))))))))))))))
.
.
2012-04-13 11:59 . 2012-04-13 11:59 8782 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\BUTTON.JS
2012-04-13 11:59 . 2012-04-13 11:59 7271 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\CHECKBOX.JS
2012-04-12 21:23 . 2012-04-12 21:24 -------- d-----w- c:\program files\AVG Secure Search
2012-04-12 20:21 . 2012-04-12 20:21 -------- d-----w- c:\program files\WOT
2012-04-12 15:00 . 2012-04-12 15:00 -------- d-----w- c:\documents and settings\Administrator\Application Data\SUPERAntiSpyware.com
2012-04-12 14:59 . 2012-04-12 15:00 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-04-12 14:59 . 2012-04-12 14:59 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2012-04-11 02:11 . 2012-04-11 02:11 -------- d-----w- c:\program files\AVG
2012-04-09 17:27 . 2012-04-09 17:27 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG
2012-04-09 17:23 . 2012-04-09 17:24 -------- d-----w- c:\documents and settings\Administrator\Application Data\AVG
2012-04-04 05:53 . 2012-04-04 05:53 182160 ----a-w- c:\program files\Internet Explorer\plugins\nppdf32.dll
2012-04-02 18:18 . 2012-04-02 19:19 -------- d-----w- c:\program files\TurboTax 2011
2012-03-31 15:39 . 2012-03-31 15:39 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2012-03-29 23:36 . 2012-03-29 23:36 -------- d-----w- c:\program files\iPod
2012-03-29 23:36 . 2012-03-29 23:38 -------- d-----w- c:\program files\iTunes
2012-03-28 21:32 . 2012-03-28 21:32 -------- d-----w- c:\program files\Common Files\Java
2012-03-28 21:31 . 2012-03-28 21:31 73728 ----a-w- c:\windows\system32\javacpl.cpl
2012-03-28 01:25 . 2012-03-28 20:37 -------- d-----w- C:\HijackThis
2012-03-27 20:56 . 2011-12-10 19:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-28 21:31 . 2010-08-27 17:33 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-03-01 11:01 . 2009-04-14 23:27 916992 ----a-w- c:\windows\system32\wininet.dll
2012-03-01 11:01 . 2008-04-14 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-03-01 11:01 . 2008-04-14 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-02-29 14:10 . 2008-04-14 12:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-02-29 14:10 . 2008-04-14 12:00 148480 ----a-w- c:\windows\system32\imagehlp.dll
2012-02-29 12:17 . 2009-04-14 23:27 385024 ----a-w- c:\windows\system32\html.iec
2012-02-22 09:25 . 2012-02-22 09:25 299472 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2012-02-22 09:25 . 2012-02-22 09:25 235216 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2012-02-15 15:01 . 2011-12-25 18:57 4547944 ----a-w- c:\windows\system32\usbaaplrc.dll
2012-02-15 15:01 . 2011-12-25 18:57 43520 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2012-02-03 09:22 . 2009-04-14 23:26 1860096 ----a-w- c:\windows\system32\win32k.sys
2012-01-31 08:46 . 2012-01-31 08:46 31952 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
.
.
((((((((((((((((((((((((((((( SnapShot@2012-04-10_23.41.08 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-04-13 11:59 . 2012-04-13 11:59 16384 c:\windows\Temp\Perflib_Perfdata_814.dat
+ 2008-04-14 12:00 . 2012-04-13 03:07 85706 c:\windows\system32\perfc009.dat
+ 2008-04-14 12:00 . 2012-03-01 11:01 66560 c:\windows\system32\mshtmled.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 66560 c:\windows\system32\mshtmled.dll
+ 2009-03-08 03:31 . 2012-03-01 11:01 55296 c:\windows\system32\msfeedsbs.dll
- 2009-03-08 03:31 . 2011-12-17 19:46 55296 c:\windows\system32\msfeedsbs.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 25600 c:\windows\system32\jsproxy.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 25600 c:\windows\system32\jsproxy.dll
+ 2011-12-23 17:32 . 2011-12-23 17:32 41040 c:\windows\system32\drivers\avgmfx86.sys
+ 2011-12-23 17:32 . 2011-12-23 17:32 17232 c:\windows\system32\drivers\avgidsshimx.sys
+ 2011-12-23 17:32 . 2011-12-23 17:32 24144 c:\windows\system32\drivers\avgidsfilterx.sys
+ 2011-12-23 17:32 . 2011-12-23 17:32 22992 c:\windows\system32\drivers\avgidsehx.sys
+ 2012-01-12 23:52 . 2012-01-12 23:52 30944 c:\windows\system32\drivers\avgfwdx.sys
- 2010-02-14 17:46 . 2011-12-17 19:46 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2010-02-14 17:46 . 2012-03-01 11:01 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 66560 c:\windows\system32\dllcache\mshtmled.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 66560 c:\windows\system32\dllcache\mshtmled.dll
- 2010-02-14 17:46 . 2011-12-17 19:46 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2010-02-14 17:46 . 2012-03-01 11:01 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 43520 c:\windows\system32\dllcache\licmgr10.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 43520 c:\windows\system32\dllcache\licmgr10.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 25600 c:\windows\system32\dllcache\jsproxy.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2012-01-12 23:52 . 2012-01-12 23:52 61280 c:\windows\system32\avgfwdx.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 87408 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsFormsIntegration\v4.0_4.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 87408 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsFormsIntegration\v4.0_4.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 93024 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationTypes\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 93024 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationTypes\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 35688 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationProvider\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 35688 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationProvider\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 17784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Presentation\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Presentation.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 17784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Presentation\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Presentation.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 58240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Input.Manipulations\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Input.Manipulations.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 58240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Input.Manipulations\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Input.Manipulations.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 37240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Channels\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Channels.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 37240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Channels\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Channels.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 12800 c:\windows\ie8updates\KB2675157-IE8\xpshims.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 66560 c:\windows\ie8updates\KB2675157-IE8\mshtmled.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 55296 c:\windows\ie8updates\KB2675157-IE8\msfeedsbs.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 43520 c:\windows\ie8updates\KB2675157-IE8\licmgr10.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 25600 c:\windows\ie8updates\KB2675157-IE8\jsproxy.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 46592 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.DynamicD#\54086073df249c43189bc8eb4c242818\System.Web.DynamicData.Design.ni.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 109568 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.Wrapper.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 109568 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.Wrapper.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 246128 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 246128 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 105984 c:\windows\system32\url.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 105984 c:\windows\system32\url.dll
+ 2008-04-14 12:00 . 2012-04-13 03:07 502386 c:\windows\system32\perfh009.dat
+ 2008-04-14 12:00 . 2012-03-01 11:01 206848 c:\windows\system32\occache.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 206848 c:\windows\system32\occache.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 611840 c:\windows\system32\mstime.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 611840 c:\windows\system32\mstime.dll
+ 2009-03-08 03:32 . 2012-03-01 11:01 602112 c:\windows\system32\msfeeds.dll
- 2009-03-08 03:32 . 2011-12-17 19:46 602112 c:\windows\system32\msfeeds.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 184320 c:\windows\system32\iepeers.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 184320 c:\windows\system32\iepeers.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 387584 c:\windows\system32\iedkcs32.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 387584 c:\windows\system32\iedkcs32.dll
- 2008-04-14 12:00 . 2011-12-16 12:23 174080 c:\windows\system32\ie4uinit.exe
+ 2008-04-14 12:00 . 2012-02-29 12:17 174080 c:\windows\system32\ie4uinit.exe
+ 2011-12-23 17:32 . 2011-12-23 17:32 139856 c:\windows\system32\drivers\avgidsdriverx.sys
- 2008-04-14 12:00 . 2009-12-24 06:59 177664 c:\windows\system32\dllcache\wintrust.dll
+ 2008-04-14 12:00 . 2012-02-29 14:10 177664 c:\windows\system32\dllcache\wintrust.dll
+ 2009-04-14 23:27 . 2012-03-01 11:01 916992 c:\windows\system32\dllcache\wininet.dll
- 2009-04-14 23:27 . 2011-12-17 19:46 916992 c:\windows\system32\dllcache\wininet.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 105984 c:\windows\system32\dllcache\url.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 105984 c:\windows\system32\dllcache\url.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 206848 c:\windows\system32\dllcache\occache.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 206848 c:\windows\system32\dllcache\occache.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 611840 c:\windows\system32\dllcache\mstime.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 611840 c:\windows\system32\dllcache\mstime.dll
+ 2010-02-14 17:46 . 2012-03-01 11:01 602112 c:\windows\system32\dllcache\msfeeds.dll
- 2010-02-14 17:46 . 2011-12-17 19:46 602112 c:\windows\system32\dllcache\msfeeds.dll
+ 2008-04-14 12:00 . 2012-02-29 14:10 148480 c:\windows\system32\dllcache\imagehlp.dll
- 2010-02-14 17:46 . 2011-12-17 19:46 247808 c:\windows\system32\dllcache\ieproxy.dll
+ 2010-02-14 17:46 . 2012-03-01 11:01 247808 c:\windows\system32\dllcache\ieproxy.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 184320 c:\windows\system32\dllcache\iepeers.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2010-06-25 14:54 . 2012-03-01 11:01 743424 c:\windows\system32\dllcache\iedvtool.dll
- 2010-06-25 14:54 . 2011-12-17 19:46 743424 c:\windows\system32\dllcache\iedvtool.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 387584 c:\windows\system32\dllcache\iedkcs32.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2008-04-14 12:00 . 2011-12-16 12:23 174080 c:\windows\system32\dllcache\ie4uinit.exe
+ 2008-04-14 12:00 . 2012-02-29 12:17 174080 c:\windows\system32\dllcache\ie4uinit.exe
 
+ 2012-01-21 21:40 . 2012-01-21 21:40 616216 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.Drawing.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 350592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClientsideProviders\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClientsideProviders.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 350592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClientsideProviders\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClientsideProviders.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 163168 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClient\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClient.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 163168 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClient\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClient.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 138592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Linq.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 138592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Linq.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 699224 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xaml\v4.0_4.0.0.0__b77a5c561934e089\System.Xaml.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 699224 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xaml\v4.0_4.0.0.0__b77a5c561934e089\System.Xaml.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 857960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.Services\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 857960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.Services\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 675672 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Speech\v4.0_4.0.0.0__31bf3856ad364e35\System.Speech.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 675672 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Speech\v4.0_4.0.0.0__31bf3856ad364e35\System.Speech.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 113512 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 113512 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 129912 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Routing\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Routing.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 129912 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Routing\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Routing.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 390008 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Discovery\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Discovery.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 390008 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Discovery\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Discovery.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 505208 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Activities.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 505208 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Activities.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 261472 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 261472 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 122264 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 122264 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 291184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 291184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 349568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Runtime.DurableInstancing.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 349568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Runtime.DurableInstancing.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 231760 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Net\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Net.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 231760 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Net\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Net.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 253280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Messaging\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 253280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Messaging\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 378720 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 378720 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 134528 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Instrumentation\v4.0_4.0.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 134528 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Instrumentation\v4.0_4.0.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 123736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Log\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 123736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Log\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 392552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 392552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 125816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel.Selectors\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 125816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel.Selectors\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 120152 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Dynamic\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Dynamic.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 120152 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Dynamic\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Dynamic.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 616216 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 395120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 395120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 182144 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.Protocols\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 182144 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.Protocols\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 285072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\v4.0_4.0.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 285072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\v4.0_4.0.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 829280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 829280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 747360 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.SqlXml\v4.0_4.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 747360 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.SqlXml\v4.0_4.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 436600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Services.Client\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Services.Client.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 436600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Services.Client\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Services.Client.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 683872 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 683872 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 409448 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 409448 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 210816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.Composition\v4.0_4.0.0.0__b77a5c561934e089\System.ComponentModel.Composition.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 210816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.Composition\v4.0_4.0.0.0__b77a5c561934e089\System.ComponentModel.Composition.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 149848 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn\v4.0_4.0.0.0__b77a5c561934e089\System.AddIn.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 149848 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn\v4.0_4.0.0.0__b77a5c561934e089\System.AddIn.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 122248 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.DurableInstancing.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 122248 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.DurableInstancing.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 525704 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Core.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Core.Presentation.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 525704 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Core.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Core.Presentation.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 112976 c:\windows\Microsoft.NET\assembly\GAC_MSIL\sysglobl\v4.0_4.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 112976 c:\windows\Microsoft.NET\assembly\GAC_MSIL\sysglobl\v4.0_4.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 581464 c:\windows\Microsoft.NET\assembly\GAC_MSIL\ReachFramework\v4.0_4.0.0.0__31bf3856ad364e35\ReachFramework.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 581464 c:\windows\Microsoft.NET\assembly\GAC_MSIL\ReachFramework\v4.0_4.0.0.0__31bf3856ad364e35\ReachFramework.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 832856 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationUI\v4.0_4.0.0.0__31bf3856ad364e35\PresentationUI.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 832856 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationUI\v4.0_4.0.0.0__31bf3856ad364e35\PresentationUI.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 194424 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Royale\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Royale.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 194424 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Royale\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Royale.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 478576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Luna\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 478576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Luna\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 167288 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Classic\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Classic.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 167288 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Classic\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Classic.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 232304 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Aero\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 232304 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Aero\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 661352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 661352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 349576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 349576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 387960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 387960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 746336 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.JScript\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 746336 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.JScript\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 505184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 505184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 269672 c:\windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 269672 c:\windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 334688 c:\windows\Microsoft.NET\assembly\GAC_32\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 334688 c:\windows\Microsoft.NET\assembly\GAC_32\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 109568 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 109568 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 246128 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 246128 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 170368 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 170368 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2012-04-12 20:21 . 2012-04-12 20:21 280064 c:\windows\Installer\709695.msi
+ 2012-02-22 19:53 . 2012-02-22 19:53 779264 c:\windows\Installer\1321635.msp
+ 2012-04-13 03:13 . 2011-12-17 19:46 916992 c:\windows\ie8updates\KB2675157-IE8\wininet.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 105984 c:\windows\ie8updates\KB2675157-IE8\url.dll
+ 2012-04-13 03:13 . 2010-07-05 13:16 382840 c:\windows\ie8updates\KB2675157-IE8\spuninst\updspapi.dll
+ 2012-04-13 03:13 . 2010-07-05 13:15 231288 c:\windows\ie8updates\KB2675157-IE8\spuninst\spuninst.exe
+ 2012-04-13 03:13 . 2011-12-17 19:46 206848 c:\windows\ie8updates\KB2675157-IE8\occache.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 611840 c:\windows\ie8updates\KB2675157-IE8\mstime.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 602112 c:\windows\ie8updates\KB2675157-IE8\msfeeds.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 247808 c:\windows\ie8updates\KB2675157-IE8\ieproxy.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 184320 c:\windows\ie8updates\KB2675157-IE8\iepeers.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 743424 c:\windows\ie8updates\KB2675157-IE8\iedvtool.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 387584 c:\windows\ie8updates\KB2675157-IE8\iedkcs32.dll
+ 2012-04-13 03:13 . 2011-12-16 12:23 174080 c:\windows\ie8updates\KB2675157-IE8\ie4uinit.exe
+ 2012-04-13 14:54 . 2012-04-13 14:54 252416 c:\windows\assembly\NativeImages_v4.0.30319_32\WindowsFormsIntegra#\d3f175cefc439ba7d036a7f8f0ebe0c2\WindowsFormsIntegration.ni.dll
+ 2012-04-13 14:54 . 2012-04-13 14:54 194560 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Form#\cc43f242e4f24639aece610a95406534\System.Windows.Forms.DataVisualization.Design.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 864256 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Extensio#\46de13013e975ac2105f2e4b6faf3b45\System.Web.Extensions.Design.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 334848 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Entity\e810f2696f5cad96f0ae278b520398a2\System.Web.Entity.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 297984 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Entity.D#\9ae239000870d5e9814d3da3027bf598\System.Web.Entity.Design.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 708096 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.DynamicD#\84448e1d3b362675759f78033ba63142\System.Web.DynamicData.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 260608 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.DataVisu#\bdd27a2ab9021222c7d649a41b2a034d\System.Web.DataVisualization.Design.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 221696 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\873202699833a0c3d031c82b556a7296\System.ServiceProcess.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 626176 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Messaging\8bbad53639576996991c10977adab5ca\System.Messaging.ni.dll
+ 2012-04-13 03:10 . 2012-04-13 03:10 226304 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Drawing.Desi#\06f391d52ab00469279819265bd111d2\System.Drawing.Design.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 302592 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\e9176a9edb84a9a3ce80553c0db891fb\Microsoft.VisualBasic.Compatibility.Data.ni.dll
+ 2012-04-13 14:51 . 2012-04-13 14:51 852480 c:\windows\assembly\NativeImages_v4.0.30319_32\AspNetMMCExt\b66c764c2b00cb7c7e5ee8d628fedba4\AspNetMMCExt.ni.dll
- 2009-04-14 23:27 . 2011-12-17 19:46 1212416 c:\windows\system32\urlmon.dll
+ 2009-04-14 23:27 . 2012-03-01 11:01 1212416 c:\windows\system32\urlmon.dll
+ 2009-04-14 23:27 . 2012-03-01 11:01 5978624 c:\windows\system32\mshtml.dll
- 2009-03-08 03:32 . 2011-12-17 19:46 2000384 c:\windows\system32\iertutil.dll
+ 2009-03-08 03:32 . 2012-03-01 11:01 2000384 c:\windows\system32\iertutil.dll
- 2009-04-14 23:27 . 2011-12-17 19:46 1212416 c:\windows\system32\dllcache\urlmon.dll
+ 2009-04-14 23:27 . 2012-03-01 11:01 1212416 c:\windows\system32\dllcache\urlmon.dll
+ 2009-04-14 23:27 . 2012-03-01 11:01 5978624 c:\windows\system32\dllcache\mshtml.dll
+ 2010-02-14 17:46 . 2012-03-01 11:01 2000384 c:\windows\system32\dllcache\iertutil.dll
- 2010-02-14 17:46 . 2011-12-17 19:46 2000384 c:\windows\system32\dllcache\iertutil.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 1303896 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsBase\v4.0_4.0.0.0__31bf3856ad364e35\WindowsBase.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 1303896 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsBase\v4.0_4.0.0.0__31bf3856ad364e35\WindowsBase.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 3511880 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 3511880 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 2207568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 2207568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 5028200 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 5028200 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 1711496 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.DataVisualization\v4.0_4.0.0.0__31bf3856ad364e35\System.Windows.Forms.DataVisualization.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 1711496 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.DataVisualization\v4.0_4.0.0.0__31bf3856ad364e35\System.Windows.Forms.DataVisualization.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 6067048 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel\v4.0_4.0.0.0__b77a5c561934e089\System.ServiceModel.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 6067048 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel\v4.0_4.0.0.0__b77a5c561934e089\System.ServiceModel.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 1026936 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 1026936 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 4464480 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Entity\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Entity.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 4464480 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Entity\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Entity.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 1339736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Core\v4.0_4.0.0.0__b77a5c561934e089\System.Core.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 1339736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Core\v4.0_4.0.0.0__b77a5c561934e089\System.Core.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 1199968 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 1199968 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 1462648 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Presentation.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 1462648 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Presentation.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 6346600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 6346600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 2970968 c:\windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 2970968 c:\windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 3545952 c:\windows\Microsoft.NET\assembly\GAC_32\PresentationCore\v4.0_4.0.0.0__31bf3856ad364e35\PresentationCore.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 3545952 c:\windows\Microsoft.NET\assembly\GAC_32\PresentationCore\v4.0_4.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 5197648 c:\windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 5197648 c:\windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 2989456 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 2989456 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
+ 2012-04-11 02:24 . 2012-04-11 02:24 2208768 c:\windows\Installer\9831d9.msi
+ 2012-04-11 13:25 . 2012-04-11 13:25 5138944 c:\windows\Installer\300dafe.msi
+ 2012-01-22 14:09 . 2012-01-22 14:09 1700352 c:\windows\Installer\132162e.msp
+ 2012-04-13 03:13 . 2011-12-17 19:46 1212416 c:\windows\ie8updates\KB2675157-IE8\urlmon.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 5979136 c:\windows\ie8updates\KB2675157-IE8\mshtml.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 2000384 c:\windows\ie8updates\KB2675157-IE8\iertutil.dll
+ 2012-04-13 03:09 . 2012-04-13 03:09 3798016 c:\windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\64bc66b117a976cc4972e4376290c95d\WindowsBase.ni.dll
+ 2012-04-13 14:54 . 2012-04-13 14:54 1211904 c:\windows\assembly\NativeImages_v4.0.30319_32\System.WorkflowServ#\db66b77c7fd405dd85977c7450fdbb4c\System.WorkflowServices.ni.dll
+ 2012-04-13 14:54 . 2012-04-13 14:54 4475904 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Workflow.Com#\5d37895fcb84fc4c1baeda9cdad7a43b\System.Workflow.ComponentModel.ni.dll
+ 2012-04-13 14:54 . 2012-04-13 14:54 2872320 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Workflow.Act#\8b2b77ea27aa46e8f82bb8101df16a19\System.Workflow.Activities.ni.dll
+ 2012-04-13 14:54 . 2012-04-13 14:54 4586496 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Form#\e8781973fbd0c7a4703e37052f45b783\System.Windows.Forms.DataVisualization.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 2334720 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Mobile\d65fbdd263b35421b44256f250463246\System.Web.Mobile.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 3123200 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Extensio#\70f55c226bc02396fe093a770c954ac8\System.Web.Extensions.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 4574720 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.DataVisu#\7073659b9db193ca851bbcc05c8173c8\System.Web.DataVisualization.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 1050112 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Printing\241c6a208037e498657a9e85e398f5a4\System.Printing.ni.dll
+ 2012-04-13 03:09 . 2012-04-13 03:09 1665024 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\9ac7922025e72297069a82a403cb59fa\System.Drawing.ni.dll
+ 2012-04-13 14:51 . 2012-04-13 14:51 1879040 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Deployment\2a3e6c74bc3763eefe27c55d9cad3fda\System.Deployment.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 3713024 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Activities.P#\8881093f626f25e558129c833b525ff5\System.Activities.Presentation.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 2859008 c:\windows\assembly\NativeImages_v4.0.30319_32\ReachFramework\385f2b705df4c3fbc6654005f1a38943\ReachFramework.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 1631744 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationUI\b895a66fa91475e1958d5a2ad63281ca\PresentationUI.ni.dll
+ 2012-04-13 14:51 . 2012-04-13 14:51 1139200 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\3a77b9d9b14daaf01c0347d2523dd69c\Microsoft.VisualBasic.Compatibility.ni.dll
+ 2012-04-13 14:51 . 2012-04-13 14:51 1836544 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\03bc4ff490bc2c544c5f61842a394883\Microsoft.VisualBasic.ni.dll
+ 2012-04-13 14:51 . 2012-04-13 14:51 2868736 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Build.Tas#\25d27c5881735866f47fb57080989b66\Microsoft.Build.Tasks.v4.0.ni.dll
+ 2010-02-13 23:22 . 2012-04-13 03:02 55154568 c:\windows\system32\MRT.exe
+ 2009-03-08 03:39 . 2012-03-02 10:01 11082752 c:\windows\system32\ieframe.dll
+ 2010-02-14 17:46 . 2012-03-02 10:01 11082752 c:\windows\system32\dllcache\ieframe.dll
+ 2012-04-04 13:32 . 2012-04-04 13:32 16613376 c:\windows\Installer\5a16fc.msp
+ 2012-04-13 03:13 . 2011-12-18 19:46 11082240 c:\windows\ie8updates\KB2675157-IE8\ieframe.dll
+ 2012-04-13 03:10 . 2012-04-13 03:10 13196800 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\67b05b57919dfc3a1521f33198495f5b\System.Windows.Forms.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 12076544 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web\0541e0facc72aeb8f189dd8ab69344bd\System.Web.ni.dll
+ 2012-04-13 03:10 . 2012-04-13 03:10 11002880 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Design\bb766612c7402195f00054b9809ebed9\System.Design.ni.dll
+ 2012-04-13 03:10 . 2012-04-13 03:10 17671168 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\d5be46bcb4eba96a282fb0129b00918d\PresentationFramework.ni.dll
+ 2012-04-13 03:10 . 2012-04-13 03:10 11106816 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\503f6775eb81ff6d97a3e93a70ff8d6e\PresentationCore.ni.dll
.
-- Snapshot reset to current date --
.
(continues in next reply)
 
[FONT=Times New Roman]((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]*Note* empty entries & legit default entries are not shown [/FONT]
[FONT=Times New Roman]REGEDIT4[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}][/FONT]
[FONT=Times New Roman]2012-04-12 21:23 1869152 ----a-w- c:\program files\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar][/FONT]
[FONT=Times New Roman]"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll" [2012-04-12 1869152][/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}][/FONT]
[FONT=Times New Roman][HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1][/FONT]
[FONT=Times New Roman][HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj][/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run][/FONT]
[FONT=Times New Roman]"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480][/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run][/FONT]
[FONT=Times New Roman]"lxdnmon.exe"="c:\program files\Lexmark 2600 Series\lxdnmon.exe" [2008-03-27 660136][/FONT]
[FONT=Times New Roman]"EzPrint"="c:\program files\Lexmark 2600 Series\ezprint.exe" [2008-03-27 107176][/FONT]
[FONT=Times New Roman]"CarboniteSetupLite"="c:\program files\Carbonite\CarbonitePreinstaller.exe" [2009-08-04 318096][/FONT]
[FONT=Times New Roman]"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240][/FONT]
[FONT=Times New Roman]"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2011-11-02 59240][/FONT]
[FONT=Times New Roman]"Monitor"="c:\program files\LeapFrog\LeapFrog Connect\Monitor.exe" [2011-11-12 268640][/FONT]
[FONT=Times New Roman]"vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-04-12 982880][/FONT]
[FONT=Times New Roman]"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696][/FONT]
[FONT=Times New Roman]"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736][/FONT]
[FONT=Times New Roman]"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-02-16 2575712][/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]c:\documents and settings\Administrator\Start Menu\Programs\Startup\[/FONT]
[FONT=Times New Roman]PowerReg Scheduler.exe [2011-4-24 256000][/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks][/FONT]
[FONT=Times New Roman]"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024][/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon][/FONT]
[FONT=Times New Roman]2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter][/FONT]
[FONT=Times New Roman] [BU][/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager][/FONT]
[FONT=Times New Roman]BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders][/FONT]
[FONT=Times New Roman]SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, AhjohquSxuwx.dll[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE][/FONT]
[FONT=Times New Roman]@=""[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys][/FONT]
[FONT=Times New Roman]@="Driver"[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM][/FONT]
[FONT=Times New Roman]2012-01-03 13:10 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds][/FONT]
[FONT=Times New Roman]2006-04-01 12:30 77824 ----a-r- c:\windows\system32\hkcmd.exe[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxhkcmd][/FONT]
[FONT=Times New Roman]2006-04-01 12:30 77824 ----a-r- c:\windows\system32\hkcmd.exe[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxpers][/FONT]
[FONT=Times New Roman]2006-04-01 12:30 114688 ----a-r- c:\windows\system32\igfxpers.exe[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxtray][/FONT]
[FONT=Times New Roman]2006-04-01 12:30 94208 ----a-r- c:\windows\system32\igfxtray.exe[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck][/FONT]
[FONT=Times New Roman]2001-07-09 07:50 155648 ----a-w- c:\windows\system32\NeroCheck.exe[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence][/FONT]
[FONT=Times New Roman]2006-04-01 12:30 114688 ----a-r- c:\windows\system32\igfxpers.exe[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP][/FONT]
[FONT=Times New Roman]2006-04-01 12:30 1404928 -c--a-r-c:\program files\Analog Devices\Core\smax4pnp.exe[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile][/FONT]
[FONT=Times New Roman]"EnableFirewall"= 0 (0x0)[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List][/FONT]
[FONT=Times New Roman]"%windir%\\Network Diagnostic\\xpnetdiag.exe"=[/FONT]
[FONT=Times New Roman]"%windir%\\system32\\sessmgr.exe"=[/FONT]
[FONT=Times New Roman]"c:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"=[/FONT]
[FONT=Times New Roman]"c:\\Program Files\\AVG\\AVG2012\\avgnsx.exe"=[/FONT]
[FONT=Times New Roman]"c:\\Program Files\\AVG\\AVG2012\\avgdiagex.exe"=[/FONT]
[FONT=Times New Roman]"c:\\Program Files\\AVG\\AVG2012\\avgemcx.exe"=[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List][/FONT]
[FONT=Times New Roman]"5353:TCP"= 5353:TCP:Adobe CSI CS4[/FONT]
[FONT=Times New Roman]"3703:TCP"= 3703:TCP:Adobe Version Cue CS4 Server[/FONT]
[FONT=Times New Roman]"3704:TCP"= 3704:TCP:Adobe Version Cue CS4 Server[/FONT]
[FONT=Times New Roman]"51000:TCP"= 51000:TCP:Adobe Version Cue CS4 Server[/FONT]
[FONT=Times New Roman]"51001:TCP"= 51001:TCP:Adobe Version Cue CS4 Server[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings][/FONT]
[FONT=Times New Roman]"AllowInboundEchoRequest"= 1 (0x1)[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\avgidsehx.sys [12/23/2011 1:32 PM 22992][/FONT]
[FONT=Times New Roman]R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [1/31/2012 4:46 AM 31952][/FONT]
[FONT=Times New Roman]R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2/22/2012 5:25 AM 235216][/FONT]
[FONT=Times New Roman]R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2/22/2012 5:25 AM 299472][/FONT]
[FONT=Times New Roman]R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [7/22/2011 12:27 PM 12880][/FONT]
[FONT=Times New Roman]R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [7/12/2011 5:55 PM 67664][/FONT]
[FONT=Times New Roman]R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [8/11/2011 7:38 PM 116608][/FONT]
[FONT=Times New Roman]R2 avgfws;AVG Firewall;c:\program files\AVG\AVG2012\avgfws.exe [2/14/2012 4:53 AM 2316624][/FONT]
[FONT=Times New Roman]R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2/14/2012 4:53 AM 193288][/FONT]
[FONT=Times New Roman]R2 FreeAgentGoNext Service;Seagate Service;c:\program files\Seagate\SeagateManager\Sync\FreeAgentService.exe [12/18/2009 11:25 AM 189736][/FONT]
[FONT=Times New Roman]R2 lxdn_device;lxdn_device;c:\windows\system32\lxdncoms.exe -service --> c:\windows\system32\lxdncoms.exe -service [?][/FONT]
[FONT=Times New Roman]R2 lxdnCATSCustConnectService;lxdnCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdnserv.exe [2/17/2010 7:25 PM 98984][/FONT]
[FONT=Times New Roman]R2 vToolbarUpdater10.2.0;vToolbarUpdater10.2.0;c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe [3/31/2012 11:39 AM 918880][/FONT]
[FONT=Times New Roman]R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [1/12/2012 7:52 PM 30944][/FONT]
[FONT=Times New Roman]R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [12/23/2011 1:32 PM 139856][/FONT]
[FONT=Times New Roman]R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [12/23/2011 1:32 PM 24144][/FONT]
[FONT=Times New Roman]R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [12/23/2011 1:32 PM 17232][/FONT]
[FONT=Times New Roman]S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\avgidsagent.exe [2/14/2012 4:52 AM 5104992][/FONT]
[FONT=Times New Roman]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [3/18/2010 2:16 PM 130384][/FONT]
[FONT=Times New Roman]S3 Adobe Version Cue CS4;Adobe Version Cue CS4;c:\program files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [8/15/2008 6:46 AM 284016][/FONT]
[FONT=Times New Roman]S3 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9;c:\program files\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [9/6/2010 3:19 AM 169408][/FONT]
[FONT=Times New Roman]S3 APL531;Film and Photo Scanner;c:\windows\system32\drivers\OVTX16.sys [5/17/2010 5:26 PM 110080][/FONT]
[FONT=Times New Roman]S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [1/12/2012 7:52 PM 30944][/FONT]
[FONT=Times New Roman]S3 FlyUsb;FLY Fusion;c:\windows\system32\drivers\FlyUsb.sys [2/26/2008 8:33 PM 18560][/FONT]
[FONT=Times New Roman]S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [12/8/2011 5:39 PM 13224][/FONT]
[FONT=Times New Roman]S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [5/17/2011 5:55 PM 155344][/FONT]
[FONT=Times New Roman]S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [3/18/2010 2:16 PM 753504][/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]Contents of the 'Scheduled Tasks' folder[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]2012-04-14 c:\windows\Tasks\User_Feed_Synchronization-{34E372F3-1BB6-4F73-886E-7EDCF05386F1}.job[/FONT]
[FONT=Times New Roman]- c:\windows\system32\msfeedssync.exe [2009-03-08 03:31][/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]------- Supplementary Scan -------[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]uStart Page = hxxp://isearch.avg.com/?cid={182C1EAC-9E15-450D-8A70-71948E85FA0C}&mid=b9b3e46d88f547d181115e8c6cdc877a-466ec35eae5e30de17ce347538481a73b3240a25&lang=en&ds=AVG&pr=fr&d=2012-03-06 19:41&v=10.2.0.3&sap=hp[/FONT]
[FONT=Times New Roman]uInternet Connection Wizard,ShellNext = iexplore[/FONT]
[FONT=Times New Roman]uInternet Settings,ProxyOverride = *.local[/FONT]
[FONT=Times New Roman]TCP: DhcpNameServer = 192.168.2.1[/FONT]
[FONT=Times New Roman]Handler: intu-tt2011 - {B3B5DAD9-E96D-45b4-B636-B6CF2F773DE1} - c:\program files\TurboTax 2011\ic2011pp.dll[/FONT]
[FONT=Times New Roman]Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\10.2.0\ViProtocol.dll[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]- - - - ORPHANS REMOVED - - - -[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]BHO-{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - (no file)[/FONT]
[FONT=Times New Roman]BHO-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)[/FONT]
[FONT=Times New Roman]WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]**************************************************************************[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net[/FONT]
[FONT=Times New Roman]Rootkit scan 2012-04-15 12:33[/FONT]
[FONT=Times New Roman]Windows 5.1.2600 Service Pack 3 NTFS[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]scanning hidden processes ... [/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]scanning hidden autostart entries ... [/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]scanning hidden files ... [/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]scan completed successfully[/FONT]
[FONT=Times New Roman]hidden files: 0[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]**************************************************************************[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]--------------------- LOCKED REGISTRY KEYS ---------------------[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_USERS\S-1-5-21-1614895754-602162358-527237240-500\Software\Microsoft\Internet Explorer\Approved Extensions][/FONT]
[FONT=Times New Roman]@Denied: (2) (Administrator)[/FONT]
[FONT=Times New Roman]"{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}"=hex:51,66,7a,6c,4c,1d,3b,1b,e7,50,c2,[/FONT]
[FONT=Times New Roman] da,8b,51,05,0a,92,c7,ac,7b,09,cc,42,11[/FONT]
[FONT=Times New Roman]"{B939CF93-F2CB-443D-956C-DC523D85C9DB}"=hex:51,66,7a,6c,4c,1d,3b,1b,83,d0,2d,[/FONT]
[FONT=Times New Roman] a1,f8,a9,5b,0c,8e,62,9a,12,3b,c6,8e,c6[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_USERS\S-1-5-21-1614895754-602162358-527237240-500\Software\Microsoft\Internet Explorer\User Preferences][/FONT]
[FONT=Times New Roman]@Denied: (2) (Administrator)[/FONT]
[FONT=Times New Roman]"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,[/FONT]
[FONT=Times New Roman] d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,1e,a4,69,93,4c,e7,fa,45,8b,76,ab,\[/FONT]
[FONT=Times New Roman]"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,[/FONT]
[FONT=Times New Roman] d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,1e,a4,69,93,4c,e7,fa,45,8b,76,ab,\[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman][HKEY_LOCAL_MACHINE\software\Microsoft\Internet Explorer\User Preferences][/FONT]
[FONT=Times New Roman]@Denied: (2) (Administrator)[/FONT]
[FONT=Times New Roman]"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,[/FONT]
[FONT=Times New Roman] d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,1e,a4,69,93,4c,e7,fa,45,8b,76,ab,\[/FONT]
[FONT=Times New Roman]"6256FFB019F8FDFBD36745B06F4540E9AEAF222A25"=hex:01,00,00,00,d0,8c,9d,df,01,15,[/FONT]
[FONT=Times New Roman] d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,1e,a4,69,93,4c,e7,fa,45,8b,76,ab,\[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]--------------------- DLLs Loaded Under Running Processes ---------------------[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]- - - - - - - > 'winlogon.exe'(1188)[/FONT]
[FONT=Times New Roman]c:\program files\SUPERAntiSpyware\SASWINLO.DLL[/FONT]
[FONT=Times New Roman]c:\windows\system32\WININET.dll[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]- - - - - - - > 'explorer.exe'(476)[/FONT]
[FONT=Times New Roman]c:\windows\system32\WININET.dll[/FONT]
[FONT=Times New Roman]c:\windows\system32\ieframe.dll[/FONT]
[FONT=Times New Roman]c:\windows\system32\webcheck.dll[/FONT]
[FONT=Times New Roman]c:\windows\system32\WPDShServiceObj.dll[/FONT]
[FONT=Times New Roman]c:\windows\system32\PortableDeviceTypes.dll[/FONT]
[FONT=Times New Roman]c:\windows\system32\PortableDeviceApi.dll[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]Completion time: 2012-04-15 12:36:15[/FONT]
[FONT=Times New Roman]ComboFix-quarantined-files.txt 2012-04-15 16:36[/FONT]
[FONT=Times New Roman]ComboFix2.txt 2012-04-10 23:43[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]Pre-Run: 52,468,862,976 bytes free[/FONT]
[FONT=Times New Roman]Post-Run: 52,492,398,592 bytes free[/FONT]
[FONT=Times New Roman].[/FONT]
[FONT=Times New Roman]- - End Of File - - E6E4970EB3C4C927A6DE6FB28CC0A494[/FONT]
 
I'm finding that feedback didn't get through for some threads- sorry, didn't know of reply. There was site work over a few days

The rerun of Combofix had AVG. It also appears the after you ran the AppRemover for Combofix earlier, you did not select one of the temporary antivirus programs. So for at least some of the time, there was no AV. Combofix has had multiple quarantined/deleted processes and has no returned a clean log yet.

You may be slowing down because of the extra scans and logs, but the redirect has been resolved. I do highly recommend that you remove the AVG Secure Search and Toolbar There are multiple entries loading for it. If you would like to remove this Toolbar, just run the following: If you don't want to remove the AVG Secxure Search Toolbar, just skip the script. ALL of the entries in it are for that toolbar

Please run this Custom CFScript:

  • [1]. Close any open browsers.
    [2]. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
    [3]. Open notepad> click on Format> Uncheck 'Word Wrap> and copy/paste the text in the code below into it:
Code: 
File::
KillAll::
c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe
Folder::
c:\program files\AVG Secure Search
DDS::
BHO: {02478d38-c3f9-4efb-9b51-7695eca05670} - Yahoo! Toolbar Helper
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll
Registry::
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"=-
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
Clearjavacache::
Driver::
vToolbarUpdater10.2.0
FCopy::
Save this as CFScript.txt, in the same location as ComboFix.exe
CFScriptB-4.gif


Referring to the picture above, drag CFScript into ComboFix.exe

When finished, it will produce a log for you at C:\ComboFix.txt . You do not need to paste in the new log. I would encourage you to put the WOT Site Advisor on the system per my previous link.
====================
One more scan for Eset then we're finished:
To run the Eset Online Virus Scan:
If you use Internet Explorer:
  1. Open the ESETOnlineScan
  2. Skip to #4 to "Continue with the directions"

    If you are using a browser other than Internet Explorer
  3. Open Eset Smart Installer
    [o] Click on the esetsmartinstaller_enu.exelink and save to the desktop.
    [o] Double click on the desktop icon to run.
    [o] After successful installation of the ESET Smart Installer, the ESET Online Scanner will be launched in a new Window
  4. Continue with the directions.
  5. Check 'Yes I accept terms of use.'
  6. Click Start button
  7. Accept any security warnings from your browser.
    esetonlinescannersettings_thumb.jpg
  8. Uncheck 'Remove found threats'
  9. Check 'Scan archives/
  10. Leave remaining settings as is.
  11. Press the Start button.
  12. ESET will then download updates for itself, install itself, and begin scanning your computer. Please wait for the scan to finish.
  13. When the scan completes, press List of found threats
  14. Push Export of text file and save the file to your desktop using a unique name, such as ESETScan. Paste this log in your next reply.
  15. Push the Back button, then Finish
NOTE: If no malware is found then no log will be produced. Let me know if this is the case.
 
Alright, the online scan didn't find anything.
Oh but yesterday AVG's daily scan came up with a corrupted executable file. It was removed so I'm not worried about it, but thought I'd mention it just in case.
 
Telling me AVG found a corrupt executable file which was removed isn't enought information What .exe file was corrupt?

There should also be a new log from Combofix generated after you an the script. Please leave it in your next reply.

Let me know how the system is doing please.
 
[FONT=Times New Roman]The file that came up on the scan a few days ago was C:\WINDOWS\Temp\avg-c1b38576-a51c-4056-a84a-cb7ea09ae26d.tmp[/FONT]
[FONT=Times New Roman]The system is doing well, nothing on the AVG or malware scans, although it's still a bit slow. Here's the log:[/FONT]
[FONT=Times New Roman]ComboFix 12-04-10.02 - Administrator 04/15/2012 12:25:36.3.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1015.478 [GMT -4:00]
Running from: c:\documents and settings\Administrator\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Administrator\Desktop\CFScript.txt
AV: AVG Internet Security 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG Internet Security 2012 *Enabled* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
.
((((((((((((((((((((((((( Files Created from 2012-03-15 to 2012-04-15 )))))))))))))))))))))))))))))))
.
.
2012-04-13 11:59 . 2012-04-13 11:59 8782 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\BUTTON.JS
2012-04-13 11:59 . 2012-04-13 11:59 7271 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\IdentityCRL\production\temp\wlidui_WLIDSVC\CHECKBOX.JS
2012-04-12 21:23 . 2012-04-12 21:24 -------- d-----w- c:\program files\AVG Secure Search
2012-04-12 20:21 . 2012-04-12 20:21 -------- d-----w- c:\program files\WOT
2012-04-12 15:00 . 2012-04-12 15:00 -------- d-----w- c:\documents and settings\Administrator\Application Data\SUPERAntiSpyware.com
2012-04-12 14:59 . 2012-04-12 15:00 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-04-12 14:59 . 2012-04-12 14:59 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2012-04-11 02:11 . 2012-04-11 02:11 -------- d-----w- c:\program files\AVG
2012-04-09 17:27 . 2012-04-09 17:27 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG
2012-04-09 17:23 . 2012-04-09 17:24 -------- d-----w- c:\documents and settings\Administrator\Application Data\AVG
2012-04-04 05:53 . 2012-04-04 05:53 182160 ----a-w- c:\program files\Internet Explorer\plugins\nppdf32.dll
2012-04-02 18:18 . 2012-04-02 19:19 -------- d-----w- c:\program files\TurboTax 2011
2012-03-31 15:39 . 2012-03-31 15:39 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2012-03-29 23:36 . 2012-03-29 23:36 -------- d-----w- c:\program files\iPod
2012-03-29 23:36 . 2012-03-29 23:38 -------- d-----w- c:\program files\iTunes
2012-03-28 21:32 . 2012-03-28 21:32 -------- d-----w- c:\program files\Common Files\Java
2012-03-28 21:31 . 2012-03-28 21:31 73728 ----a-w- c:\windows\system32\javacpl.cpl
2012-03-28 01:25 . 2012-03-28 20:37 -------- d-----w- C:\HijackThis
2012-03-27 20:56 . 2011-12-10 19:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-28 21:31 . 2010-08-27 17:33 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-03-01 11:01 . 2009-04-14 23:27 916992 ----a-w- c:\windows\system32\wininet.dll
2012-03-01 11:01 . 2008-04-14 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-03-01 11:01 . 2008-04-14 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-02-29 14:10 . 2008-04-14 12:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-02-29 14:10 . 2008-04-14 12:00 148480 ----a-w- c:\windows\system32\imagehlp.dll
2012-02-29 12:17 . 2009-04-14 23:27 385024 ----a-w- c:\windows\system32\html.iec
2012-02-22 09:25 . 2012-02-22 09:25 299472 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2012-02-22 09:25 . 2012-02-22 09:25 235216 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2012-02-15 15:01 . 2011-12-25 18:57 4547944 ----a-w- c:\windows\system32\usbaaplrc.dll
2012-02-15 15:01 . 2011-12-25 18:57 43520 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2012-02-03 09:22 . 2009-04-14 23:26 1860096 ----a-w- c:\windows\system32\win32k.sys
2012-01-31 08:46 . 2012-01-31 08:46 31952 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
.
.
((((((((((((((((((((((((((((( SnapShot@2012-04-10_23.41.08 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-04-13 11:59 . 2012-04-13 11:59 16384 c:\windows\Temp\Perflib_Perfdata_814.dat
+ 2008-04-14 12:00 . 2012-04-13 03:07 85706 c:\windows\system32\perfc009.dat
+ 2008-04-14 12:00 . 2012-03-01 11:01 66560 c:\windows\system32\mshtmled.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 66560 c:\windows\system32\mshtmled.dll
+ 2009-03-08 03:31 . 2012-03-01 11:01 55296 c:\windows\system32\msfeedsbs.dll
- 2009-03-08 03:31 . 2011-12-17 19:46 55296 c:\windows\system32\msfeedsbs.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 25600 c:\windows\system32\jsproxy.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 25600 c:\windows\system32\jsproxy.dll
+ 2011-12-23 17:32 . 2011-12-23 17:32 41040 c:\windows\system32\drivers\avgmfx86.sys
+ 2011-12-23 17:32 . 2011-12-23 17:32 17232 c:\windows\system32\drivers\avgidsshimx.sys
+ 2011-12-23 17:32 . 2011-12-23 17:32 24144 c:\windows\system32\drivers\avgidsfilterx.sys
+ 2011-12-23 17:32 . 2011-12-23 17:32 22992 c:\windows\system32\drivers\avgidsehx.sys
+ 2012-01-12 23:52 . 2012-01-12 23:52 30944 c:\windows\system32\drivers\avgfwdx.sys
- 2010-02-14 17:46 . 2011-12-17 19:46 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2010-02-14 17:46 . 2012-03-01 11:01 12800 c:\windows\system32\dllcache\xpshims.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 66560 c:\windows\system32\dllcache\mshtmled.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 66560 c:\windows\system32\dllcache\mshtmled.dll
- 2010-02-14 17:46 . 2011-12-17 19:46 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2010-02-14 17:46 . 2012-03-01 11:01 55296 c:\windows\system32\dllcache\msfeedsbs.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 43520 c:\windows\system32\dllcache\licmgr10.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 43520 c:\windows\system32\dllcache\licmgr10.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 25600 c:\windows\system32\dllcache\jsproxy.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2012-01-12 23:52 . 2012-01-12 23:52 61280 c:\windows\system32\avgfwdx.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 87408 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsFormsIntegration\v4.0_4.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 87408 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsFormsIntegration\v4.0_4.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 93024 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationTypes\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 93024 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationTypes\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 35688 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationProvider\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 35688 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationProvider\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 17784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Presentation\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Presentation.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 17784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Presentation\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Presentation.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 58240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Input.Manipulations\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Input.Manipulations.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 58240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Input.Manipulations\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Input.Manipulations.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 44920 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 37240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Channels\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Channels.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 37240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Channels\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Channels.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 64352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 51032 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Device\v4.0_4.0.0.0__b77a5c561934e089\System.Device.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 50552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 81784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 81800 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 39784 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn.Contract\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 68952 c:\windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 12128 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualC\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 97680 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 17240 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 78168 c:\windows\Microsoft.NET\assembly\GAC_32\ISymWrapper\v4.0_4.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 81248 c:\windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 12800 c:\windows\ie8updates\KB2675157-IE8\xpshims.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 66560 c:\windows\ie8updates\KB2675157-IE8\mshtmled.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 55296 c:\windows\ie8updates\KB2675157-IE8\msfeedsbs.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 43520 c:\windows\ie8updates\KB2675157-IE8\licmgr10.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 25600 c:\windows\ie8updates\KB2675157-IE8\jsproxy.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 46592 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.DynamicD#\54086073df249c43189bc8eb4c242818\System.Web.DynamicData.Design.ni.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 109568 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.Wrapper.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 109568 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.Wrapper.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 246128 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 246128 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_4.0.0.0_x-ww_29b51492\System.EnterpriseServices.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 105984 c:\windows\system32\url.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 105984 c:\windows\system32\url.dll
+ 2008-04-14 12:00 . 2012-04-13 03:07 502386 c:\windows\system32\perfh009.dat
+ 2008-04-14 12:00 . 2012-03-01 11:01 206848 c:\windows\system32\occache.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 206848 c:\windows\system32\occache.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 611840 c:\windows\system32\mstime.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 611840 c:\windows\system32\mstime.dll
+ 2009-03-08 03:32 . 2012-03-01 11:01 602112 c:\windows\system32\msfeeds.dll
- 2009-03-08 03:32 . 2011-12-17 19:46 602112 c:\windows\system32\msfeeds.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 184320 c:\windows\system32\iepeers.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 184320 c:\windows\system32\iepeers.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 387584 c:\windows\system32\iedkcs32.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 387584 c:\windows\system32\iedkcs32.dll
- 2008-04-14 12:00 . 2011-12-16 12:23 174080 c:\windows\system32\ie4uinit.exe
+ 2008-04-14 12:00 . 2012-02-29 12:17 174080 c:\windows\system32\ie4uinit.exe
+ 2011-12-23 17:32 . 2011-12-23 17:32 139856 c:\windows\system32\drivers\avgidsdriverx.sys
- 2008-04-14 12:00 . 2009-12-24 06:59 177664 c:\windows\system32\dllcache\wintrust.dll
+ 2008-04-14 12:00 . 2012-02-29 14:10 177664 c:\windows\system32\dllcache\wintrust.dll
+ 2009-04-14 23:27 . 2012-03-01 11:01 916992 c:\windows\system32\dllcache\wininet.dll
- 2009-04-14 23:27 . 2011-12-17 19:46 916992 c:\windows\system32\dllcache\wininet.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 105984 c:\windows\system32\dllcache\url.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 105984 c:\windows\system32\dllcache\url.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 206848 c:\windows\system32\dllcache\occache.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 206848 c:\windows\system32\dllcache\occache.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 611840 c:\windows\system32\dllcache\mstime.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 611840 c:\windows\system32\dllcache\mstime.dll
+ 2010-02-14 17:46 . 2012-03-01 11:01 602112 c:\windows\system32\dllcache\msfeeds.dll
- 2010-02-14 17:46 . 2011-12-17 19:46 602112 c:\windows\system32\dllcache\msfeeds.dll
+ 2008-04-14 12:00 . 2012-02-29 14:10 148480 c:\windows\system32\dllcache\imagehlp.dll
- 2010-02-14 17:46 . 2011-12-17 19:46 247808 c:\windows\system32\dllcache\ieproxy.dll
+ 2010-02-14 17:46 . 2012-03-01 11:01 247808 c:\windows\system32\dllcache\ieproxy.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 184320 c:\windows\system32\dllcache\iepeers.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 184320 c:\windows\system32\dllcache\iepeers.dll
+ 2010-06-25 14:54 . 2012-03-01 11:01 743424 c:\windows\system32\dllcache\iedvtool.dll
- 2010-06-25 14:54 . 2011-12-17 19:46 743424 c:\windows\system32\dllcache\iedvtool.dll
- 2008-04-14 12:00 . 2011-12-17 19:46 387584 c:\windows\system32\dllcache\iedkcs32.dll
+ 2008-04-14 12:00 . 2012-03-01 11:01 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2008-04-14 12:00 . 2011-12-16 12:23 174080 c:\windows\system32\dllcache\ie4uinit.exe
+ 2008-04-14 12:00 . 2012-02-29 12:17 174080 c:\windows\system32\dllcache\ie4uinit.exe
+ 2012-01-21 21:40 . 2012-01-21 21:40 616216 c:\windows\Microsoft.NET\Framework\v4.0.30319\System.Drawing.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 350592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClientsideProviders\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClientsideProviders.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 350592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClientsideProviders\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClientsideProviders.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 163168 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClient\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClient.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 163168 c:\windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationClient\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationClient.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 138592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Linq.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 138592 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Linq.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 699224 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xaml\v4.0_4.0.0.0__b77a5c561934e089\System.Xaml.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 699224 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xaml\v4.0_4.0.0.0__b77a5c561934e089\System.Xaml.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 857960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.Services\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 857960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.Services\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 675672 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Speech\v4.0_4.0.0.0__31bf3856ad364e35\System.Speech.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 675672 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Speech\v4.0_4.0.0.0__31bf3856ad364e35\System.Speech.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 113512 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 113512 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 129912 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Routing\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Routing.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 129912 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Routing\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Routing.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 390008 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Discovery\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Discovery.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 390008 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Discovery\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Discovery.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 505208 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Activities.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 505208 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Activities.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 261472 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 261472 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 122264 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 122264 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 291184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 291184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 349568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Runtime.DurableInstancing.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 349568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Runtime.DurableInstancing.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 231760 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Net\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Net.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 231760 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Net\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Net.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 253280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Messaging\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 253280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Messaging\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 378720 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 378720 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 134528 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Instrumentation\v4.0_4.0.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 134528 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Instrumentation\v4.0_4.0.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 123736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Log\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 123736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Log\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 392552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 392552 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 125816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel.Selectors\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 125816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.IdentityModel.Selectors\v4.0_4.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 120152 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Dynamic\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Dynamic.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 120152 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Dynamic\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Dynamic.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 616216 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 395120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 395120 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 182144 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.Protocols\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 182144 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.Protocols\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 285072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\v4.0_4.0.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 285072 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\v4.0_4.0.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 829280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 829280 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 747360 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.SqlXml\v4.0_4.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 747360 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.SqlXml\v4.0_4.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 436600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Services.Client\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Services.Client.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 436600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Services.Client\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Services.Client.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 683872 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 683872 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 409448 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 409448 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 210816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.Composition\v4.0_4.0.0.0__b77a5c561934e089\System.ComponentModel.Composition.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 210816 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.Composition\v4.0_4.0.0.0__b77a5c561934e089\System.ComponentModel.Composition.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 149848 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn\v4.0_4.0.0.0__b77a5c561934e089\System.AddIn.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 149848 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.AddIn\v4.0_4.0.0.0__b77a5c561934e089\System.AddIn.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 122248 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.DurableInstancing.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 122248 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.DurableInstancing\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.DurableInstancing.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 525704 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Core.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Core.Presentation.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 525704 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Core.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Core.Presentation.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 112976 c:\windows\Microsoft.NET\assembly\GAC_MSIL\sysglobl\v4.0_4.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 112976 c:\windows\Microsoft.NET\assembly\GAC_MSIL\sysglobl\v4.0_4.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 581464 c:\windows\Microsoft.NET\assembly\GAC_MSIL\ReachFramework\v4.0_4.0.0.0__31bf3856ad364e35\ReachFramework.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 581464 c:\windows\Microsoft.NET\assembly\GAC_MSIL\ReachFramework\v4.0_4.0.0.0__31bf3856ad364e35\ReachFramework.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 832856 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationUI\v4.0_4.0.0.0__31bf3856ad364e35\PresentationUI.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 832856 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationUI\v4.0_4.0.0.0__31bf3856ad364e35\PresentationUI.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 194424 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Royale\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Royale.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 194424 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Royale\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Royale.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 478576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Luna\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 478576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Luna\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 167288 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Classic\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Classic.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 167288 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Classic\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Classic.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 232304 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Aero\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 232304 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework.Aero\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 661352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 661352 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 349576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 349576 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 387960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 387960 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 746336 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.JScript\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 746336 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.JScript\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll

continued in next reply [/FONT]
 
[FONT=Times New Roman]+ 2012-04-13 03:07 . 2012-04-13 03:07 505184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 505184 c:\windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 269672 c:\windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 269672 c:\windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 334688 c:\windows\Microsoft.NET\assembly\GAC_32\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 334688 c:\windows\Microsoft.NET\assembly\GAC_32\System.Printing\v4.0_4.0.0.0__31bf3856ad364e35\System.Printing.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 109568 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 109568 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 246128 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 246128 c:\windows\Microsoft.NET\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 170368 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 170368 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2012-04-12 20:21 . 2012-04-12 20:21 280064 c:\windows\Installer\709695.msi
+ 2012-02-22 19:53 . 2012-02-22 19:53 779264 c:\windows\Installer\1321635.msp
+ 2012-04-13 03:13 . 2011-12-17 19:46 916992 c:\windows\ie8updates\KB2675157-IE8\wininet.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 105984 c:\windows\ie8updates\KB2675157-IE8\url.dll
+ 2012-04-13 03:13 . 2010-07-05 13:16 382840 c:\windows\ie8updates\KB2675157-IE8\spuninst\updspapi.dll
+ 2012-04-13 03:13 . 2010-07-05 13:15 231288 c:\windows\ie8updates\KB2675157-IE8\spuninst\spuninst.exe
+ 2012-04-13 03:13 . 2011-12-17 19:46 206848 c:\windows\ie8updates\KB2675157-IE8\occache.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 611840 c:\windows\ie8updates\KB2675157-IE8\mstime.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 602112 c:\windows\ie8updates\KB2675157-IE8\msfeeds.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 247808 c:\windows\ie8updates\KB2675157-IE8\ieproxy.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 184320 c:\windows\ie8updates\KB2675157-IE8\iepeers.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 743424 c:\windows\ie8updates\KB2675157-IE8\iedvtool.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 387584 c:\windows\ie8updates\KB2675157-IE8\iedkcs32.dll
+ 2012-04-13 03:13 . 2011-12-16 12:23 174080 c:\windows\ie8updates\KB2675157-IE8\ie4uinit.exe
+ 2012-04-13 14:54 . 2012-04-13 14:54 252416 c:\windows\assembly\NativeImages_v4.0.30319_32\WindowsFormsIntegra#\d3f175cefc439ba7d036a7f8f0ebe0c2\WindowsFormsIntegration.ni.dll
+ 2012-04-13 14:54 . 2012-04-13 14:54 194560 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Form#\cc43f242e4f24639aece610a95406534\System.Windows.Forms.DataVisualization.Design.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 864256 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Extensio#\46de13013e975ac2105f2e4b6faf3b45\System.Web.Extensions.Design.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 334848 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Entity\e810f2696f5cad96f0ae278b520398a2\System.Web.Entity.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 297984 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Entity.D#\9ae239000870d5e9814d3da3027bf598\System.Web.Entity.Design.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 708096 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.DynamicD#\84448e1d3b362675759f78033ba63142\System.Web.DynamicData.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 260608 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.DataVisu#\bdd27a2ab9021222c7d649a41b2a034d\System.Web.DataVisualization.Design.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 221696 c:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\873202699833a0c3d031c82b556a7296\System.ServiceProcess.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 626176 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Messaging\8bbad53639576996991c10977adab5ca\System.Messaging.ni.dll
+ 2012-04-13 03:10 . 2012-04-13 03:10 226304 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Drawing.Desi#\06f391d52ab00469279819265bd111d2\System.Drawing.Design.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 302592 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\e9176a9edb84a9a3ce80553c0db891fb\Microsoft.VisualBasic.Compatibility.Data.ni.dll
+ 2012-04-13 14:51 . 2012-04-13 14:51 852480 c:\windows\assembly\NativeImages_v4.0.30319_32\AspNetMMCExt\b66c764c2b00cb7c7e5ee8d628fedba4\AspNetMMCExt.ni.dll
- 2009-04-14 23:27 . 2011-12-17 19:46 1212416 c:\windows\system32\urlmon.dll
+ 2009-04-14 23:27 . 2012-03-01 11:01 1212416 c:\windows\system32\urlmon.dll
+ 2009-04-14 23:27 . 2012-03-01 11:01 5978624 c:\windows\system32\mshtml.dll
- 2009-03-08 03:32 . 2011-12-17 19:46 2000384 c:\windows\system32\iertutil.dll
+ 2009-03-08 03:32 . 2012-03-01 11:01 2000384 c:\windows\system32\iertutil.dll
- 2009-04-14 23:27 . 2011-12-17 19:46 1212416 c:\windows\system32\dllcache\urlmon.dll
+ 2009-04-14 23:27 . 2012-03-01 11:01 1212416 c:\windows\system32\dllcache\urlmon.dll
+ 2009-04-14 23:27 . 2012-03-01 11:01 5978624 c:\windows\system32\dllcache\mshtml.dll
+ 2010-02-14 17:46 . 2012-03-01 11:01 2000384 c:\windows\system32\dllcache\iertutil.dll
- 2010-02-14 17:46 . 2011-12-17 19:46 2000384 c:\windows\system32\dllcache\iertutil.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 1303896 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsBase\v4.0_4.0.0.0__31bf3856ad364e35\WindowsBase.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 1303896 c:\windows\Microsoft.NET\assembly\GAC_MSIL\WindowsBase\v4.0_4.0.0.0__31bf3856ad364e35\WindowsBase.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 3511880 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 3511880 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 2207568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 2207568 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 5028200 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 5028200 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 1711496 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.DataVisualization\v4.0_4.0.0.0__31bf3856ad364e35\System.Windows.Forms.DataVisualization.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 1711496 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms.DataVisualization\v4.0_4.0.0.0__31bf3856ad364e35\System.Windows.Forms.DataVisualization.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 6067048 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel\v4.0_4.0.0.0__b77a5c561934e089\System.ServiceModel.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 6067048 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel\v4.0_4.0.0.0__b77a5c561934e089\System.ServiceModel.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 1026936 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 1026936 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 4464480 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Entity\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Entity.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 4464480 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Entity\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Entity.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 1339736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Core\v4.0_4.0.0.0__b77a5c561934e089\System.Core.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 1339736 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Core\v4.0_4.0.0.0__b77a5c561934e089\System.Core.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 1199968 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 1199968 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 1462648 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Presentation.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 1462648 c:\windows\Microsoft.NET\assembly\GAC_MSIL\System.Activities.Presentation\v4.0_4.0.0.0__31bf3856ad364e35\System.Activities.Presentation.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 6346600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 6346600 c:\windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 2970968 c:\windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 2970968 c:\windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
- 2012-02-15 08:05 . 2012-02-15 08:05 3545952 c:\windows\Microsoft.NET\assembly\GAC_32\PresentationCore\v4.0_4.0.0.0__31bf3856ad364e35\PresentationCore.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 3545952 c:\windows\Microsoft.NET\assembly\GAC_32\PresentationCore\v4.0_4.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 5197648 c:\windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2012-04-13 03:07 . 2012-04-13 03:07 5197648 c:\windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
- 2012-02-15 08:04 . 2012-02-15 08:04 2989456 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
+ 2012-04-13 03:08 . 2012-04-13 03:08 2989456 c:\windows\Microsoft.NET\assembly\GAC_32\Microsoft.VisualBasic.Activities.Compiler\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Activities.Compiler.dll
+ 2012-04-11 02:24 . 2012-04-11 02:24 2208768 c:\windows\Installer\9831d9.msi
+ 2012-04-11 13:25 . 2012-04-11 13:25 5138944 c:\windows\Installer\300dafe.msi
+ 2012-01-22 14:09 . 2012-01-22 14:09 1700352 c:\windows\Installer\132162e.msp
+ 2012-04-13 03:13 . 2011-12-17 19:46 1212416 c:\windows\ie8updates\KB2675157-IE8\urlmon.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 5979136 c:\windows\ie8updates\KB2675157-IE8\mshtml.dll
+ 2012-04-13 03:13 . 2011-12-17 19:46 2000384 c:\windows\ie8updates\KB2675157-IE8\iertutil.dll
+ 2012-04-13 03:09 . 2012-04-13 03:09 3798016 c:\windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\64bc66b117a976cc4972e4376290c95d\WindowsBase.ni.dll
+ 2012-04-13 14:54 . 2012-04-13 14:54 1211904 c:\windows\assembly\NativeImages_v4.0.30319_32\System.WorkflowServ#\db66b77c7fd405dd85977c7450fdbb4c\System.WorkflowServices.ni.dll
+ 2012-04-13 14:54 . 2012-04-13 14:54 4475904 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Workflow.Com#\5d37895fcb84fc4c1baeda9cdad7a43b\System.Workflow.ComponentModel.ni.dll
+ 2012-04-13 14:54 . 2012-04-13 14:54 2872320 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Workflow.Act#\8b2b77ea27aa46e8f82bb8101df16a19\System.Workflow.Activities.ni.dll
+ 2012-04-13 14:54 . 2012-04-13 14:54 4586496 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Form#\e8781973fbd0c7a4703e37052f45b783\System.Windows.Forms.DataVisualization.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 2334720 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Mobile\d65fbdd263b35421b44256f250463246\System.Web.Mobile.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 3123200 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.Extensio#\70f55c226bc02396fe093a770c954ac8\System.Web.Extensions.ni.dll
+ 2012-04-13 14:53 . 2012-04-13 14:53 4574720 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web.DataVisu#\7073659b9db193ca851bbcc05c8173c8\System.Web.DataVisualization.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 1050112 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Printing\241c6a208037e498657a9e85e398f5a4\System.Printing.ni.dll
+ 2012-04-13 03:09 . 2012-04-13 03:09 1665024 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\9ac7922025e72297069a82a403cb59fa\System.Drawing.ni.dll
+ 2012-04-13 14:51 . 2012-04-13 14:51 1879040 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Deployment\2a3e6c74bc3763eefe27c55d9cad3fda\System.Deployment.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 3713024 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Activities.P#\8881093f626f25e558129c833b525ff5\System.Activities.Presentation.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 2859008 c:\windows\assembly\NativeImages_v4.0.30319_32\ReachFramework\385f2b705df4c3fbc6654005f1a38943\ReachFramework.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 1631744 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationUI\b895a66fa91475e1958d5a2ad63281ca\PresentationUI.ni.dll
+ 2012-04-13 14:51 . 2012-04-13 14:51 1139200 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\3a77b9d9b14daaf01c0347d2523dd69c\Microsoft.VisualBasic.Compatibility.ni.dll
+ 2012-04-13 14:51 . 2012-04-13 14:51 1836544 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.VisualBas#\03bc4ff490bc2c544c5f61842a394883\Microsoft.VisualBasic.ni.dll
+ 2012-04-13 14:51 . 2012-04-13 14:51 2868736 c:\windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Build.Tas#\25d27c5881735866f47fb57080989b66\Microsoft.Build.Tasks.v4.0.ni.dll
+ 2010-02-13 23:22 . 2012-04-13 03:02 55154568 c:\windows\system32\MRT.exe
+ 2009-03-08 03:39 . 2012-03-02 10:01 11082752 c:\windows\system32\ieframe.dll
+ 2010-02-14 17:46 . 2012-03-02 10:01 11082752 c:\windows\system32\dllcache\ieframe.dll
+ 2012-04-04 13:32 . 2012-04-04 13:32 16613376 c:\windows\Installer\5a16fc.msp
+ 2012-04-13 03:13 . 2011-12-18 19:46 11082240 c:\windows\ie8updates\KB2675157-IE8\ieframe.dll
+ 2012-04-13 03:10 . 2012-04-13 03:10 13196800 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\67b05b57919dfc3a1521f33198495f5b\System.Windows.Forms.ni.dll
+ 2012-04-13 14:52 . 2012-04-13 14:52 12076544 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Web\0541e0facc72aeb8f189dd8ab69344bd\System.Web.ni.dll
+ 2012-04-13 03:10 . 2012-04-13 03:10 11002880 c:\windows\assembly\NativeImages_v4.0.30319_32\System.Design\bb766612c7402195f00054b9809ebed9\System.Design.ni.dll
+ 2012-04-13 03:10 . 2012-04-13 03:10 17671168 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\d5be46bcb4eba96a282fb0129b00918d\PresentationFramework.ni.dll
+ 2012-04-13 03:10 . 2012-04-13 03:10 11106816 c:\windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\503f6775eb81ff6d97a3e93a70ff8d6e\PresentationCore.ni.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-04-12 21:23 1869152 ----a-w- c:\program files\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\10.2.0.3\AVG Secure Search_toolbar.dll" [2012-04-12 1869152]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
continued in next reply[/FONT]
[FONT=Times New Roman] [/FONT]
[FONT=Times New Roman][HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"lxdnmon.exe"="c:\program files\Lexmark 2600 Series\lxdnmon.exe" [2008-03-27 660136]
"EzPrint"="c:\program files\Lexmark 2600 Series\ezprint.exe" [2008-03-27 107176]
"CarboniteSetupLite"="c:\program files\Carbonite\CarbonitePreinstaller.exe" [2009-08-04 318096]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2011-11-02 59240]
"Monitor"="c:\program files\LeapFrog\LeapFrog Connect\Monitor.exe" [2011-11-12 268640]
"vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-04-12 982880]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-02-16 2575712]
.
c:\documents and settings\Administrator\Start Menu\Programs\Startup\
PowerReg Scheduler.exe [2011-4-24 256000]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
[BU]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, AhjohquSxuwx.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-03 13:10 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
2006-04-01 12:30 77824 ----a-r- c:\windows\system32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxhkcmd]
2006-04-01 12:30 77824 ----a-r- c:\windows\system32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxpers]
2006-04-01 12:30 114688 ----a-r- c:\windows\system32\igfxpers.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igfxtray]
2006-04-01 12:30 94208 ----a-r- c:\windows\system32\igfxtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck]
2001-07-09 07:50 155648 ----a-w- c:\windows\system32\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
2006-04-01 12:30 114688 ----a-r- c:\windows\system32\igfxpers.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
2006-04-01 12:30 1404928 -c--a-r- c:\program files\Analog Devices\Core\smax4pnp.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgemcx.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5353:TCP"= 5353:TCP:Adobe CSI CS4
"3703:TCP"= 3703:TCP:Adobe Version Cue CS4 Server
"3704:TCP"= 3704:TCP:Adobe Version Cue CS4 Server
"51000:TCP"= 51000:TCP:Adobe Version Cue CS4 Server
"51001:TCP"= 51001:TCP:Adobe Version Cue CS4 Server
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\avgidsehx.sys [12/23/2011 1:32 PM 22992]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [1/31/2012 4:46 AM 31952]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2/22/2012 5:25 AM 235216]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2/22/2012 5:25 AM 299472]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [7/22/2011 12:27 PM 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [7/12/2011 5:55 PM 67664]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [8/11/2011 7:38 PM 116608]
R2 avgfws;AVG Firewall;c:\program files\AVG\AVG2012\avgfws.exe [2/14/2012 4:53 AM 2316624]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2/14/2012 4:53 AM 193288]
R2 FreeAgentGoNext Service;Seagate Service;c:\program files\Seagate\SeagateManager\Sync\FreeAgentService.exe [12/18/2009 11:25 AM 189736]
R2 lxdn_device;lxdn_device;c:\windows\system32\lxdncoms.exe -service --> c:\windows\system32\lxdncoms.exe -service [?]
R2 lxdnCATSCustConnectService;lxdnCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdnserv.exe [2/17/2010 7:25 PM 98984]
R2 vToolbarUpdater10.2.0;vToolbarUpdater10.2.0;c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\10.2.0\ToolbarUpdater.exe [3/31/2012 11:39 AM 918880]
R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [1/12/2012 7:52 PM 30944]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [12/23/2011 1:32 PM 139856]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [12/23/2011 1:32 PM 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [12/23/2011 1:32 PM 17232]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\avgidsagent.exe [2/14/2012 4:52 AM 5104992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [3/18/2010 2:16 PM 130384]
S3 Adobe Version Cue CS4;Adobe Version Cue CS4;c:\program files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [8/15/2008 6:46 AM 284016]
S3 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9;c:\program files\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe [9/6/2010 3:19 AM 169408]
S3 APL531;Film and Photo Scanner;c:\windows\system32\drivers\OVTX16.sys [5/17/2010 5:26 PM 110080]
S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [1/12/2012 7:52 PM 30944]
S3 FlyUsb;FLY Fusion;c:\windows\system32\drivers\FlyUsb.sys [2/26/2008 8:33 PM 18560]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [12/8/2011 5:39 PM 13224]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [5/17/2011 5:55 PM 155344]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [3/18/2010 2:16 PM 753504]
.
Contents of the 'Scheduled Tasks' folder
.
2012-04-14 c:\windows\Tasks\User_Feed_Synchronization-{34E372F3-1BB6-4F73-886E-7EDCF05386F1}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 03:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://isearch.avg.com/?cid={182C1EAC-9E15-450D-8A70-71948E85FA0C}&mid=b9b3e46d88f547d181115e8c6cdc877a-466ec35eae5e30de17ce347538481a73b3240a25&lang=en&ds=AVG&pr=fr&d=2012-03-06 19:41&v=10.2.0.3&sap=hp
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
TCP: DhcpNameServer = 192.168.2.1
Handler: intu-tt2011 - {B3B5DAD9-E96D-45b4-B636-B6CF2F773DE1} - c:\program files\TurboTax 2011\ic2011pp.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\10.2.0\ViProtocol.dll
.
- - - - ORPHANS REMOVED - - - -
.
BHO-{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - (no file)
BHO-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [/FONT][FONT=Times New Roman]http://www.gmer.net[/FONT]
[FONT=Times New Roman]Rootkit scan 2012-04-15 12:33
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1614895754-602162358-527237240-500\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (Administrator)
"{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}"=hex:51,66,7a,6c,4c,1d,3b,1b,e7,50,c2,
da,8b,51,05,0a,92,c7,ac,7b,09,cc,42,11
"{B939CF93-F2CB-443D-956C-DC523D85C9DB}"=hex:51,66,7a,6c,4c,1d,3b,1b,83,d0,2d,
a1,f8,a9,5b,0c,8e,62,9a,12,3b,c6,8e,c6
.
[HKEY_USERS\S-1-5-21-1614895754-602162358-527237240-500\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (Administrator)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,1e,a4,69,93,4c,e7,fa,45,8b,76,ab,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,1e,a4,69,93,4c,e7,fa,45,8b,76,ab,\
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (Administrator)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,1e,a4,69,93,4c,e7,fa,45,8b,76,ab,\
"6256FFB019F8FDFBD36745B06F4540E9AEAF222A25"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,1e,a4,69,93,4c,e7,fa,45,8b,76,ab,\
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(1188)
c:\program files\SUPERAntiSpyware\SASWINLO.DLL
c:\windows\system32\WININET.dll
.
- - - - - - - > 'explorer.exe'(476)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Completion time: 2012-04-15 12:36:15
ComboFix-quarantined-files.txt 2012-04-15 16:36
ComboFix2.txt 2012-04-10 23:43
.
Pre-Run: 52,468,862,976 bytes free
Post-Run: 52,492,398,592 bytes free
.
- - End Of File - - E6E4970EB3C4C927A6DE6FB28CC0A494
[/FONT]
[FONT=Arial] [/FONT]
[FONT=Times New Roman] [/FONT]
 
[FONT=Times New Roman]C:\WINDOWS\Temp\avg-c1b38576-a51c-4056-a84a-cb7ea09ae26d.tmp[/FONT]
Click to expand...

This is not an executable file> it's temp file. Big difference.

I don't know that Combofix can be considered a valid scan. I told you about AVG- it needs to be temporarily uninstalled and a temp AV used. AVG is all over the Combofix log.
 
We are not able to disableAVG to run Combofix. That's why we have you delete it temporarily.
Executable files have an .exe file extension. The file from AVG has a .tmp file extension.

Please update and rescan with Eset Online scan. If it is clean, I'll have you remove the cleaning tools and logs they made.
 
Status
Not open for further replies.

Similar threads

B
Solved Multiple instances of iexplorer appearing in task manager taking up large amounts of CPU/Windows 7
2
Replies
36
Views
8K
Broni
Broni
J
Inactive [AVG FP] Trojan Horse PSW.Generic 10.BNPL/10.BNPN detected!
Replies
13
Views
6K
Broni
Broni
T
Solved AVG found trojan horse
2
Replies
27
Views
8K
Broni
Broni

Latest posts

Back