Solved Firefox redirecting from Google search

Tony Lillie · Jun 23, 2012

I've followed the instructions in the UPDATED 5-step Viruses/Spyware/Malware Preliminary Removal Instructions and here is the log from Malware Bytes Anti-Malware:

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.23.02

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Owner :: OWNER-HP [administrator]

6/23/2012 12:52:17 AM
mbam-log-2012-06-23 (00-52-17).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 212098
Time elapsed: 1 minute(s), 59 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Tony Lillie · Jun 23, 2012

Here is the gmer.log:

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-06-23 00:39:30
Windows 6.1.7600
Running: djgl9w52.exe

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\
services\BTHPORT\Parameters\Keys\70f3956328d2
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\70f3956328d2 (not active ControlSet)

---- EOF - GMER 1.0.15 ----

Tony Lillie · Jun 23, 2012

Here is the attach.txt log:

DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 1/14/2011 3:23:41 PM
System Uptime: 6/22/2012 11:26:02 AM (13 hours ago)
.
Motherboard: Hewlett-Packard | | 144E
Processor: AMD Turion(tm) II P540 Dual-Core Processor | Socket S1G4 | 2400/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 448 GiB total, 388.532 GiB free.
D: is FIXED (NTFS) - 18 GiB total, 2.55 GiB free.
E: is CDROM (CDFS)
F: is Removable
G: is Removable
H: is Removable
I: is FIXED (FAT32) - 0 GiB total, 0.087 GiB free.
J: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP263: 6/19/2012 3:59:33 PM - Windows 7 Service Pack 1
RP264: 6/22/2012 11:30:29 AM - Windows Update
RP265: 6/22/2012 11:34:44 AM - Windows Update
.
==== Installed Programs ======================
.
10 Talismans
Acrobat.com
Adobe AIR
Adobe Flash Player 11 Plugin
Adobe Reader 9.5.1 MUI
Adobe Shockwave Player 11.5
Adobe Shockwave Player 11.6
aioscnnr
Alcor Micro USB Card Reader
AMD VISION Engine Control Center
Atheros Driver Installation Program
Banana Bugs (TM)
Bejeweled 2 Deluxe
Bing Bar
Bing Rewards Client Installer
Blackhawk Striker 2
Build-a-lot 2
C4USelfUpdater
Canon Camera Access Library
Canon Camera Support Core Library
Canon Camera Window DC_DV 5 for ZoomBrowser EX
Canon Camera Window DC_DV 6 for ZoomBrowser EX
Canon Camera Window MC 6 for ZoomBrowser EX
Canon RAW Image Task for ZoomBrowser EX
Canon RemoteCapture Task for ZoomBrowser EX
Canon Utilities Digital Photo Professional 2.1
Canon Utilities EOS Utility
Canon Utilities PhotoStitch
Canon Utilities ZoomBrowser EX
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
center
Chuzzle Deluxe
CinemaNow Media Manager
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
CyberLink DVD Suite
D3DX10
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Diner Dash 2 Restaurant Rescue
Dora's Carnival Adventure
DVD Menu Pack for HP MediaSmart Video
Energy Star Digital Logo
Escape Rosecliff Island
essentials
ESU for Microsoft Windows 7
Facebook Messenger 2.1.4520.0
Farmscapes
FATE
Final Drive Nitro
Fishdom
Fishdom - Frosty Splash
Fishdom (TM) 2
Garden Dash
Green Valley - Fun on the Farm
Heroes of Hellas 2 - Olympia
Hewlett-Packard ACLM.NET v1.1.2.0
HP Advisor
HP Customer Experience Enhancements
HP Documentation
HP Games
HP MediaSmart CinemaNow 2.0
HP MediaSmart DVD
HP MediaSmart Music
HP MediaSmart Photo
HP MediaSmart Video
HP MediaSmart Webcam
HP MediaSmart/TouchSmart Netflix
HP Photo Creations
HP Power Manager
HP Quick Launch
HP QuickWeb Installer
HP Setup
HP Software Framework
HP Support Assistant
Hulu Desktop
IDT Audio
Java Auto Updater
Java(TM) 6 Update 29
Jewel Quest 3
Jewel Quest Solitaire 2
Junk Mail filter update
KODAK AiO Software
ksDIP
LabelPrint
LightScribe System Software
Malwarebytes Anti-Malware version 1.61.0.1400
Microsoft .NET Framework 1.1
Microsoft Easy Assist v2
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Home and Student 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook 2010
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Single Image 2010
Microsoft Office Word MUI (English) 2010
Microsoft Outlook 2010
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Web Publishing Wizard 1.52
Microsoft WSE 3.0 Runtime
Movie Theme Pack for HP MediaSmart Video
Mozilla Firefox 13.0.1 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
NETGEAR WG111v3 wireless USB 2.0 adapter
Norton Online Backup
ocr
Penguins!
PhotoNow!
Plan N Plant
Plants vs. Zombies
Poker Superstars III
Polar Bowler
Polar Golfer
Power2Go
PowerDirector
PreReq
PrintMaster Platinum 18
Realtek Ethernet Controller Driver For Windows 7
Recovery Manager
Respondus LockDown Browser
Roxio CinemaNow 2.0
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft Excel 2010 (KB2597166) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553091)
Security Update for Microsoft Office 2010 (KB2553096)
Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2598039) 32-Bit Edition
Security Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit Edition
Security Update for Microsoft SharePoint Workspace 2010 (KB2566445)
Security Update for Microsoft Visio Viewer 2010 (KB2597981) 32-Bit Edition
Skype Click to Call
Skype™ 5.5
Spotify
Spybot - Search & Destroy
swMSM
Times Reader
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update Installer for WildTangent Games App
Virtual Families
Virtual Villagers - The Secret City
VZAccess Manager
WebEx
Webroot SecureAnywhere
Wheel of Fortune 2
Where's Waldo The Fantastic Journey
WildTangent Games App
WildTangent Games App (HP Games)
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Word Web Deluxe
ZTE USB Drivers
Zuma Deluxe
.
==== Event Viewer Messages From Past Week ========
.
6/22/2012 9:39:26 PM, Error: Service Control Manager [7030] - The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
6/22/2012 8:32:26 PM, Error: Service Control Manager [7031] - The WRSVC service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.
6/22/2012 11:57:35 AM, Error: Service Control Manager [7034] - The Canon Camera Access Library 8 service terminated unexpectedly. It has done this 1 time(s).
6/21/2012 3:39:39 PM, Error: Microsoft-Windows-
DistributedCOM [10000] - Unable to start a DCOM Server: {8B1670C8-DC4A-4ED4-974B-81737A23826B}. The error: "740" Happened while starting this command: C:\Program Files (x86)\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe -Embedding
6/20/2012 8:31:47 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk7\DR7.
6/20/2012 8:31:47 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk6\DR6.
6/20/2012 8:31:47 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk5\DR5.
6/19/2012 4:00:30 PM, Error: Service Control Manager [7043] - The Windows Update service did not shut down properly after receiving a preshutdown control.
6/19/2012 3:59:52 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800706be: Windows 7 Service Pack 1 for x64-based Systems (KB976932).
6/19/2012 3:57:36 PM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x800705b3: Synaptics - Input - Synaptics PS/2 Port TouchPad.
6/19/2012 3:05:08 PM, Error: Application Popup [1060] - \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
6/16/2012 8:33:02 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk3\DR3.
.
==== End Of File ===========================

Tony Lillie · Jun 23, 2012

I look forward to receiving some counsel. Thank you!

Tony Lillie · Jun 23, 2012

Trying to be patient, but wondering if I did something wrong that I'm not getting any attention?

I'm getting redirected on EVERY link in google search. I posted the logs requested in the 5 step preliminary instructions. Am I missing something?

Bobbye · Jun 23, 2012

The only thing you're missing is patience! If you can find some of that, it will seem less time until someone picks up this thread that you only started 12 hours ago!
-------------------------------------------------
It might speed things along for you if you remove this:
6/19/2012 3:05:08 PM, Error: Application Popup [1060] - \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

It appears that you may have missed the sticky not to run Combofix by yourself. Perhaps you used a site other than we would have recommended as there should not be a compatibility problem:

Please note: If you have previously run Combofix and it's still on the system, please uninstall it. Then download the current version and do the scan: Uninstall directions, if needed

Click START> then RUN
Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.

--------------------------------------

Download Combofix from HERE or HEREand save to the desktop
- Double click combofix.exe & follow the prompts.
- If prompted for Recovery Console, please allow.
- Once installed, you should see a blue screen prompt that says:
  
  The Recovery Console was successfully installed.
  
  Click to expand...
- Note: If Combofix was downloaded to a flash drive, the Recovery Console will not install- just bypass and go on.[/b]
- Note: No query will be made if the Recovery Console is already on the system.
Close any open browsers.
Before you run the Combofix scan, please disable any security software you have running.
(If you need help with this, please see HERE)
Click on Yes, to continue scanning for malware
If Combofix asks you to update the program, allow
When the scan completes , a report will be generated-it will open a text window. Please paste the C:\ComboFix.txt in next reply..

Re-enable your Antivirus software.
Note 1

o not mouse-click Combofix's window while it is running. That may cause it to stall.
Note 2:If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion", restart the computer.
Note 3:CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficultyand terminates prematurely, the connection can be manually restored by restarting your machine.
------------------------------------------------------------
Please be patient until someone picks up your thread and continues with instructions.

Broni · Jun 23, 2012

Tony...

We're all volunteers here.
We don't provide emergency services.
We do work.
We do sleep.
We do have our private lives.

==============================================

Download Bootkit Remover to your desktop.

Unzip downloaded file to your Desktop.
Double-click on boot_cleaner.exe to run the program (Vista/7 users,right click on boot_cleaner.exe and click Run As Administrator).
It will show a Black screen with some data on it.
Right click on the screen and click Select All.
Press CTRL+C
Open a Notepad and press CTRL+V
Post the output back here.

=============================================

Download aswMBR to your desktop.
Double click the aswMBR.exe to run it.
If you see this question: Would you like to download latest Avast! virus definitions?" say "Yes".
Click the "Scan" button to start scan.
On completion of the scan click "Save log", save it to your desktop and post in your next reply.

NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.

Tony Lillie · Jun 23, 2012

I apologize. I honestly thought I may have done something incorrectly. Thank you for your assistance.

Here is the log per your request.

ComboFix 12-06-23.05 - Owner 06/23/2012 19:44:35.3.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3835.2460 [GMT -5:00]
Running from: c:\users\Owner\Downloads\ComboFix.exe
AV: Webroot SecureAnywhere *Enabled/Updated* {9C0666FC-6C7D-3E97-3C40-0C6B33FC7401}
SP: Webroot SecureAnywhere *Enabled/Updated* {27678718-4A47-3119-06F0-3719487B3EBC}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-05-24 to 2012-06-24 )))))))))))))))))))))))))))))))
.
.
2012-06-24 00:56 . 2012-06-24 00:56 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-06-23 14:45 . 2012-06-23 14:45 -------- d-----w- c:\windows\system32\SPReview
2012-06-23 03:43 . 2012-06-23 03:43 -------- d-----w- c:\users\Owner\AppData\Roaming\Malwarebytes
2012-06-23 03:43 . 2012-06-23 03:43 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-06-23 03:43 . 2012-06-23 03:43 -------- d-----w- c:\programdata\Malwarebytes
2012-06-23 03:43 . 2012-04-04 20:56 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-23 02:40 . 2012-06-24 00:32 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{887BAE6C-759B-4817-A8A9-DA7A4138E136}\offreg.dll
2012-06-22 16:35 . 2012-05-31 04:04 9013136 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{887BAE6C-759B-4817-A8A9-DA7A4138E136}\mpengine.dll
2012-06-22 16:31 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-22 16:31 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-22 16:31 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2012-06-22 16:31 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-06-22 16:31 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2012-06-22 16:31 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-06-22 16:31 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-06-22 16:30 . 2012-06-02 20:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-22 16:30 . 2012-06-02 20:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-06-19 19:48 . 2012-06-19 19:48 -------- d-----w- c:\users\Owner\AppData\Local\AMD
2012-06-19 19:47 . 2012-06-19 19:47 -------- d-----w- c:\programdata\ATI
2012-06-19 19:42 . 2012-06-19 19:42 -------- d-----w- c:\program files (x86)\AMD AVT
2012-06-19 19:42 . 2012-06-19 19:42 -------- d-----w- c:\program files (x86)\AMD APP
2012-06-19 19:42 . 2012-06-19 19:42 -------- d-----w- c:\program files\Common Files\ATI Technologies
2012-06-19 19:42 . 2012-06-19 19:42 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2012-06-19 19:41 . 2012-06-19 19:42 -------- d-----w- c:\programdata\AMD
2012-06-19 19:41 . 2010-02-18 14:18 46136 ----a-w- c:\windows\system32\drivers\amdiox64.sys
2012-06-19 19:41 . 2012-06-19 19:41 -------- d-----w- c:\program files (x86)\ATI Technologies
2012-06-19 19:38 . 2012-06-19 19:42 -------- d-----w- c:\program files\ATI Technologies
2012-06-19 19:29 . 2012-06-19 19:36 -------- d-----w- C:\AMD
2012-06-19 19:10 . 2012-06-23 03:50 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2012-06-19 19:10 . 2012-06-23 03:29 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy
2012-06-15 23:13 . 2012-06-15 23:13 -------- d-----w- c:\users\Owner\AppData\Local\Macromedia
2012-06-14 03:07 . 2012-04-26 05:41 77312 ----a-w- c:\windows\system32\rdpwsx.dll
2012-06-08 16:33 . 2012-06-08 16:33 770384 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr100.dll
2012-06-08 16:33 . 2012-06-08 16:33 421200 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp100.dll
2012-05-30 02:03 . 2012-06-16 02:51 85472 ----a-w- c:\program files (x86)\Mozilla Firefox\components\browsercomps.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-23 14:57 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2012-06-23 14:57 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2012-06-15 23:12 . 2012-03-30 18:15 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-06-15 23:12 . 2011-06-04 01:37 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-06-08 05:03 . 2011-12-29 22:05 148664 ----a-w- c:\windows\SysWow64\WRusr.dll
2012-06-08 05:03 . 2011-12-29 22:05 112656 ----a-w- c:\windows\system32\drivers\WRkrn.sys
2012-06-08 05:03 . 2011-12-29 22:05 101808 ----a-w- c:\windows\system32\WRusr.dll
2012-05-04 20:59 . 2012-03-30 21:31 8744608 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2012-04-06 05:22 . 2012-04-06 05:22 11174400 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-04-06 03:34 . 2012-04-06 03:34 187392 ----a-w- c:\windows\system32\clinfo.exe
2012-04-06 03:34 . 2012-04-06 03:34 74752 ----a-w- c:\windows\system32\OpenVideo64.dll
2012-04-06 03:34 . 2012-04-06 03:34 64512 ----a-w- c:\windows\SysWow64\OpenVideo.dll
2012-04-06 03:33 . 2012-04-06 03:33 63488 ----a-w- c:\windows\system32\OVDecode64.dll
2012-04-06 03:33 . 2012-04-06 03:33 56320 ----a-w- c:\windows\SysWow64\OVDecode.dll
2012-04-06 03:33 . 2012-04-06 03:33 16457216 ----a-w- c:\windows\system32\amdocl64.dll
2012-04-06 03:32 . 2012-04-06 03:32 13007872 ----a-w- c:\windows\SysWow64\amdocl.dll
2012-04-06 03:32 . 2012-04-06 03:32 54784 ----a-w- c:\windows\system32\OpenCL.dll
2012-04-06 03:32 . 2012-04-06 03:32 50176 ----a-w- c:\windows\SysWow64\OpenCL.dll
2012-04-06 02:22 . 2012-04-06 02:22 159744 ----a-w- c:\windows\system32\atiapfxx.exe
2012-04-06 02:21 . 2012-04-06 02:21 909312 ----a-w- c:\windows\SysWow64\aticfx32.dll
2012-04-06 02:20 . 2012-04-06 02:20 1067520 ----a-w- c:\windows\system32\aticfx64.dll
2012-04-06 02:16 . 2012-04-06 02:16 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll
2012-04-06 02:16 . 2012-04-06 02:16 503808 ----a-w- c:\windows\system32\atieclxx.exe
2012-04-06 02:16 . 2012-04-06 02:16 236544 ----a-w- c:\windows\system32\atiesrxx.exe
2012-04-06 02:14 . 2012-04-06 02:14 120320 ----a-w- c:\windows\system32\atitmm64.dll
2012-04-06 02:14 . 2012-04-06 02:14 21504 ----a-w- c:\windows\system32\atimuixx.dll
2012-04-06 02:14 . 2012-04-06 02:14 59392 ----a-w- c:\windows\system32\atiedu64.dll
2012-04-06 02:14 . 2012-04-06 02:14 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2012-04-06 02:13 . 2012-04-06 02:13 6800896 ----a-w- c:\windows\SysWow64\atidxx32.dll
2012-04-06 02:10 . 2012-04-06 02:10 26181632 ----a-w- c:\windows\system32\atio6axx.dll
2012-04-06 02:00 . 2010-06-24 05:32 64000 ----a-w- c:\windows\system32\coinst.dll
2012-04-06 01:54 . 2010-06-24 05:45 7479296 ----a-w- c:\windows\system32\atidxx64.dll
2012-04-06 01:50 . 2012-04-06 01:50 19753984 ----a-w- c:\windows\SysWow64\atioglxx.dll
2012-04-06 01:35 . 2012-04-06 01:35 1120768 ----a-w- c:\windows\system32\atiumd6v.dll
2012-04-06 01:34 . 2012-04-06 01:34 1831424 ----a-w- c:\windows\SysWow64\atiumdmv.dll
2012-04-06 01:34 . 2010-06-24 05:36 4731904 ----a-w- c:\windows\system32\atiumd6a.dll
2012-04-06 01:34 . 2010-06-24 05:36 6203392 ----a-w- c:\windows\SysWow64\atiumdag.dll
2012-04-06 01:30 . 2012-04-06 01:30 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2012-04-06 01:30 . 2012-04-06 01:30 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2012-04-06 01:30 . 2012-04-06 01:30 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2012-04-06 01:30 . 2012-04-06 01:30 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2012-04-06 01:29 . 2012-04-06 01:29 16090624 ----a-w- c:\windows\system32\aticaldd64.dll
2012-04-06 01:25 . 2012-04-06 01:25 13764096 ----a-w- c:\windows\SysWow64\aticaldd.dll
2012-04-06 01:23 . 2010-06-24 05:31 7431680 ----a-w- c:\windows\system32\atiumd64.dll
2012-04-06 01:22 . 2010-06-24 05:31 4795904 ----a-w- c:\windows\SysWow64\atiumdva.dll
2012-04-06 01:11 . 2012-04-06 01:11 514560 ----a-w- c:\windows\system32\atiadlxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 360448 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2012-04-06 01:11 . 2012-04-06 01:11 17408 ----a-w- c:\windows\system32\atig6pxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 14848 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2012-04-06 01:11 . 2012-04-06 01:11 41984 ----a-w- c:\windows\system32\atig6txx.dll
2012-04-06 01:10 . 2012-04-06 01:10 33280 ----a-w- c:\windows\SysWow64\atigktxx.dll
2012-04-06 01:10 . 2012-04-06 01:10 343040 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-04-06 01:09 . 2010-06-24 05:23 54784 ----a-w- c:\windows\system32\atiuxp64.dll
2012-04-06 01:09 . 2012-04-06 01:09 41984 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2012-04-06 01:09 . 2010-06-24 05:23 44544 ----a-w- c:\windows\system32\atiu9p64.dll
2012-04-06 01:09 . 2010-06-24 05:23 32256 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2012-04-06 01:09 . 2012-04-06 01:09 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-04-06 01:06 . 2012-04-06 01:06 54784 ----a-w- c:\windows\system32\atimpc64.dll
2012-04-06 01:06 . 2012-04-06 01:06 54784 ----a-w- c:\windows\system32\amdpcom64.dll
2012-04-06 01:06 . 2012-04-06 01:06 53760 ----a-w- c:\windows\SysWow64\atimpc32.dll
2012-04-06 01:06 . 2012-04-06 01:06 53760 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2012-03-30 11:35 . 2012-05-11 16:15 1918320 ----a-w- c:\windows\system32\drivers\tcpip.sys
.
.
((((((((((((((((((((((((((((( SnapShot_2012-06-23_02.39.53 )))))))))))))))))))))))))))))))))))))))))
.
- 2009-07-14 00:14 . 2009-07-14 01:16 51200 c:\windows\twain_32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 51200 c:\windows\twain_32.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 27648 c:\windows\SysWOW64\wups.dll
- 2009-07-14 00:14 . 2009-07-14 01:16 87552 c:\windows\SysWOW64\wudriver.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 87552 c:\windows\SysWOW64\wudriver.dll
+ 2011-07-02 21:06 . 2010-11-20 12:17 33792 c:\windows\SysWOW64\wuapp.exe
- 2009-07-14 00:14 . 2009-07-14 01:14 33792 c:\windows\SysWOW64\wuapp.exe
+ 2011-07-02 21:07 . 2010-11-20 12:21 40448 c:\windows\SysWOW64\wtsapi32.dll
- 2009-07-13 23:55 . 2009-07-14 01:16 51712 c:\windows\SysWOW64\wsnmp32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 51712 c:\windows\SysWOW64\wsnmp32.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 11264 c:\windows\SysWOW64\wshirda.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 36352 c:\windows\SysWOW64\wshbth.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 21504 c:\windows\SysWOW64\wsdchngr.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 51712 c:\windows\SysWOW64\wscapi.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 47104 c:\windows\SysWOW64\wkscli.dll
- 2009-07-13 23:37 . 2009-07-14 01:16 47104 c:\windows\SysWOW64\wkscli.dll
+ 2011-07-02 21:06 . 2010-11-20 12:17 28672 c:\windows\SysWOW64\WerFaultSecure.exe
- 2009-07-13 23:27 . 2009-07-14 01:14 28672 c:\windows\SysWOW64\WerFaultSecure.exe
+ 2011-07-02 21:07 . 2010-11-20 12:21 89600 c:\windows\SysWOW64\wbem\WmiApRpl.dll
- 2009-07-13 23:31 . 2009-07-14 01:16 89600 c:\windows\SysWOW64\wbem\WmiApRpl.dll
+ 2011-07-02 21:07 . 2010-11-20 12:17 66048 c:\windows\SysWOW64\w32tm.exe
+ 2011-07-02 21:07 . 2010-11-20 12:21 25600 c:\windows\SysWOW64\vpnikeapi.dll
- 2009-07-14 00:03 . 2009-07-14 01:16 56832 c:\windows\SysWOW64\vfwwdm32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 56832 c:\windows\SysWOW64\vfwwdm32.dll
- 2009-07-14 00:02 . 2009-07-14 01:16 31744 c:\windows\SysWOW64\utildll.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 31744 c:\windows\SysWOW64\utildll.dll
+ 2011-07-02 21:08 . 2010-11-20 12:17 26624 c:\windows\SysWOW64\userinit.exe
+ 2011-07-02 21:09 . 2010-11-20 12:21 81920 c:\windows\SysWOW64\userenv.dll
- 2009-07-13 23:40 . 2009-07-14 01:16 78848 c:\windows\SysWOW64\UserAccountControlSettings.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 78848 c:\windows\SysWOW64\UserAccountControlSettings.dll
+ 2011-07-02 21:06 . 2010-11-20 12:17 34304 c:\windows\SysWOW64\unlodctr.exe
+ 2011-07-02 21:07 . 2010-11-20 12:21 59392 c:\windows\SysWOW64\unimdmat.dll
- 2009-07-13 23:55 . 2009-07-14 01:16 59392 c:\windows\SysWOW64\unimdmat.dll
- 2009-07-13 23:15 . 2009-07-14 01:14 47616 c:\windows\SysWOW64\tzutil.exe
+ 2011-07-02 21:07 . 2010-11-20 12:17 47616 c:\windows\SysWOW64\tzutil.exe
+ 2011-07-02 21:07 . 2010-11-20 12:21 65024 c:\windows\SysWOW64\TSpkg.dll
- 2009-07-13 23:34 . 2009-07-14 01:16 65024 c:\windows\SysWOW64\TSpkg.dll
- 2009-07-14 00:02 . 2009-07-14 01:16 36864 c:\windows\SysWOW64\tsgqec.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 36864 c:\windows\SysWOW64\tsgqec.dll
- 2010-07-22 00:01 . 2010-07-22 00:01 12288 c:\windows\SysWOW64\tsbyuv.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 12288 c:\windows\SysWOW64\tsbyuv.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 21504 c:\windows\SysWOW64\TRAPI.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 69632 c:\windows\SysWOW64\tlscsp.dll
- 2009-07-13 23:40 . 2009-07-14 01:16 82944 c:\windows\SysWOW64\thumbcache.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 82944 c:\windows\SysWOW64\thumbcache.dll
+ 2011-07-02 21:09 . 2009-07-14 01:16 61440 c:\windows\SysWOW64\tcpmonui.dll
+ 2011-07-02 21:07 . 2010-11-20 12:17 51200 c:\windows\SysWOW64\takeown.exe
+ 2011-07-02 21:06 . 2010-11-20 12:21 14848 c:\windows\SysWOW64\syssetup.dll
- 2012-01-13 20:54 . 2011-11-17 05:35 96768 c:\windows\SysWOW64\sspicli.dll
+ 2012-01-13 20:54 . 2011-11-17 05:28 96768 c:\windows\SysWOW64\sspicli.dll
- 2009-07-13 23:37 . 2009-07-14 01:16 90112 c:\windows\SysWOW64\srvcli.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 90112 c:\windows\SysWOW64\srvcli.dll
- 2009-07-13 23:17 . 2009-07-14 01:16 19968 c:\windows\SysWOW64\spopk.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 19968 c:\windows\SysWOW64\spopk.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 61952 c:\windows\SysWOW64\spbcd.dll
- 2009-07-13 23:17 . 2009-07-14 01:16 61952 c:\windows\SysWOW64\spbcd.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 14336 c:\windows\SysWOW64\slwga.dll
- 2011-02-09 15:35 . 2010-12-21 05:38 14336 c:\windows\SysWOW64\slwga.dll
- 2009-07-13 23:14 . 2009-07-14 01:16 19456 c:\windows\SysWOW64\sisbkup.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 19456 c:\windows\SysWOW64\sisbkup.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 10752 c:\windows\SysWOW64\shunimpl.dll
- 2009-07-13 23:39 . 2009-07-14 01:16 35840 c:\windows\SysWOW64\shimgvw.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 35840 c:\windows\SysWOW64\shimgvw.dll
- 2009-07-13 23:40 . 2009-07-14 01:16 20992 c:\windows\SysWOW64\shgina.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 20992 c:\windows\SysWOW64\shgina.dll
+ 2011-08-10 18:31 . 2011-07-16 04:25 25600 c:\windows\SysWOW64\setup16.exe
- 2011-08-10 18:31 . 2011-07-16 04:31 25600 c:\windows\SysWOW64\setup16.exe
+ 2011-07-02 21:09 . 2010-11-20 12:20 67584 c:\windows\SysWOW64\Setup\pbkmigr.dll
- 2012-01-13 20:54 . 2011-11-17 05:39 22016 c:\windows\SysWOW64\secur32.dll
+ 2012-01-13 20:54 . 2011-11-17 05:34 22016 c:\windows\SysWOW64\secur32.dll
- 2010-07-22 00:04 . 2010-07-22 00:04 85504 c:\windows\SysWOW64\secproc_ssp_isv.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 85504 c:\windows\SysWOW64\secproc_ssp_isv.dll
- 2010-07-22 00:04 . 2010-07-22 00:04 85504 c:\windows\SysWOW64\secproc_ssp.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 85504 c:\windows\SysWOW64\secproc_ssp.dll
+ 2011-06-29 00:07 . 2011-05-04 04:28 86528 c:\windows\SysWOW64\SearchFilterHost.exe
- 2011-06-29 00:07 . 2011-05-04 04:52 86528 c:\windows\SysWOW64\SearchFilterHost.exe
- 2009-07-13 23:37 . 2009-07-14 01:16 17408 c:\windows\SysWOW64\schedcli.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 17408 c:\windows\SysWOW64\schedcli.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 51200 c:\windows\SysWOW64\samcli.dll
+ 2011-07-02 21:07 . 2010-11-20 12:17 50688 c:\windows\SysWOW64\runonce.exe
- 2009-07-13 23:41 . 2009-07-14 01:14 50688 c:\windows\SysWOW64\runonce.exe
- 2011-01-15 04:08 . 2010-06-19 06:23 37376 c:\windows\SysWOW64\rtutils.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 37376 c:\windows\SysWOW64\rtutils.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 46080 c:\windows\SysWOW64\RpcRtRemote.dll
+ 2011-07-02 21:08 . 2010-11-20 12:17 98816 c:\windows\SysWOW64\Robocopy.exe
+ 2011-07-02 21:06 . 2010-11-20 12:21 71168 c:\windows\SysWOW64\resutils.dll
- 2009-07-13 23:21 . 2009-07-14 01:16 71168 c:\windows\SysWOW64\resutils.dll
+ 2011-07-02 21:06 . 2010-11-20 12:17 37888 c:\windows\SysWOW64\relog.exe
+ 2011-07-02 21:08 . 2010-11-20 12:21 72192 c:\windows\SysWOW64\regapi.dll
+ 2011-07-02 21:06 . 2010-11-20 12:17 22016 c:\windows\SysWOW64\ReAgentc.exe
- 2009-07-14 00:01 . 2009-07-14 01:16 21504 c:\windows\SysWOW64\rdprefdrvapi.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 21504 c:\windows\SysWOW64\rdprefdrvapi.dll
- 2009-07-14 00:02 . 2009-07-14 01:16 52224 c:\windows\SysWOW64\rdpd3d.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 52224 c:\windows\SysWOW64\rdpd3d.dll
- 2009-07-13 23:54 . 2009-07-14 01:16 69632 c:\windows\SysWOW64\rastapi.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 69632 c:\windows\SysWOW64\rastapi.dll
- 2009-07-13 23:52 . 2009-07-14 01:16 80896 c:\windows\SysWOW64\QUTIL.DLL
+ 2011-07-02 21:07 . 2010-11-20 12:21 80896 c:\windows\SysWOW64\QUTIL.DLL
+ 2011-07-02 21:07 . 2010-11-20 12:20 99328 c:\windows\SysWOW64\QSVRMGMT.DLL
- 2009-07-13 23:52 . 2009-07-14 01:16 99328 c:\windows\SysWOW64\QSVRMGMT.DLL
- 2009-07-13 23:52 . 2009-07-14 01:16 71680 c:\windows\SysWOW64\QCLIPROV.DLL
+ 2011-07-02 21:07 . 2010-11-20 12:20 71680 c:\windows\SysWOW64\QCLIPROV.DLL
+ 2011-07-02 21:08 . 2010-11-20 12:17 28672 c:\windows\SysWOW64\proquota.exe
- 2011-04-26 23:57 . 2011-02-18 05:33 31232 c:\windows\SysWOW64\prevhost.exe
+ 2011-04-26 23:57 . 2011-02-18 05:39 31232 c:\windows\SysWOW64\prevhost.exe
- 2011-01-15 03:55 . 2009-11-25 18:47 99176 c:\windows\SysWOW64\PresentationHostProxy.dll
+ 2011-07-02 21:10 . 2010-11-05 01:53 99176 c:\windows\SysWOW64\PresentationHostProxy.dll
+ 2011-07-02 21:06 . 2010-11-20 12:05 35328 c:\windows\SysWOW64\pifmgr.dll
+ 2011-07-02 21:06 . 2010-11-20 12:20 17408 c:\windows\SysWOW64\perfts.dll
- 2009-07-14 00:02 . 2009-07-14 01:16 17408 c:\windows\SysWOW64\perfts.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 46592 c:\windows\SysWOW64\pdhui.dll
+ 2012-01-11 22:08 . 2011-11-19 14:01 67072 c:\windows\SysWOW64\packager.dll
- 2012-01-11 22:08 . 2011-11-19 14:06 67072 c:\windows\SysWOW64\packager.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 77824 c:\windows\SysWOW64\olethk32.dll
- 2009-07-13 23:43 . 2009-07-14 01:16 90112 c:\windows\SysWOW64\olepro32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 90112 c:\windows\SysWOW64\olepro32.dll
- 2011-08-10 18:31 . 2011-06-15 09:04 86016 c:\windows\SysWOW64\odbccu32.dll
+ 2011-08-10 18:31 . 2011-06-15 08:55 86016 c:\windows\SysWOW64\odbccu32.dll
+ 2011-08-10 18:31 . 2011-06-15 08:55 81920 c:\windows\SysWOW64\odbccr32.dll
- 2011-08-10 18:31 . 2011-06-15 09:04 81920 c:\windows\SysWOW64\odbccr32.dll
- 2009-07-14 00:12 . 2009-07-14 01:16 40960 c:\windows\SysWOW64\odbcconf.dll
+ 2011-07-02 21:06 . 2010-11-20 12:20 40960 c:\windows\SysWOW64\odbcconf.dll
- 2011-08-10 18:31 . 2011-07-16 04:36 14336 c:\windows\SysWOW64\ntvdm64.dll
+ 2011-08-10 18:31 . 2011-07-16 04:29 14336 c:\windows\SysWOW64\ntvdm64.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 69120 c:\windows\SysWOW64\ntlanman.dll
- 2009-07-13 23:31 . 2009-07-14 01:16 69120 c:\windows\SysWOW64\ntlanman.dll
+ 2011-07-02 21:07 . 2010-11-20 12:17 98304 c:\windows\SysWOW64\nslookup.exe

Tony Lillie · Jun 23, 2012

Here is the continuing ComboFix log. It's HUGE so may require several more posts.

+ 2011-07-02 21:06 . 2010-11-20 12:06 69120 c:\windows\SysWOW64\nlsbres.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 52224 c:\windows\SysWOW64\nlaapi.dll
+ 2011-07-02 21:06 . 2010-11-20 12:20 22528 c:\windows\SysWOW64\netutils.dll
+ 2011-07-02 21:06 . 2010-11-20 12:17 25600 c:\windows\SysWOW64\netiougc.exe
+ 2011-07-02 21:09 . 2010-11-05 01:58 49488 c:\windows\SysWOW64\netfxperf.dll
+ 2011-07-02 21:06 . 2010-11-20 12:17 24064 c:\windows\SysWOW64\netbtugc.exe
- 2009-07-13 23:53 . 2009-07-14 01:14 24064 c:\windows\SysWOW64\netbtugc.exe
+ 2011-07-02 21:06 . 2010-11-20 12:20 56832 c:\windows\SysWOW64\netapi32.dll
- 2009-07-13 23:37 . 2009-07-14 01:16 56832 c:\windows\SysWOW64\netapi32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 60928 c:\windows\SysWOW64\ncryptui.dll
- 2009-07-13 23:32 . 2009-07-14 01:16 60928 c:\windows\SysWOW64\ncryptui.dll
+ 2011-07-02 21:08 . 2010-11-20 12:20 78848 c:\windows\SysWOW64\nci.dll
+ 2011-07-02 21:06 . 2010-11-20 12:20 68096 c:\windows\SysWOW64\napdsnap.dll
- 2009-07-13 23:53 . 2009-07-14 01:22 46080 c:\windows\SysWOW64\NAPCRYPT.DLL
+ 2011-07-02 21:07 . 2010-11-20 12:36 46080 c:\windows\SysWOW64\NAPCRYPT.DLL
- 2009-07-13 23:13 . 2009-07-14 01:14 70656 c:\windows\SysWOW64\MuiUnattend.exe
+ 2011-07-02 21:07 . 2010-11-20 12:17 70656 c:\windows\SysWOW64\MuiUnattend.exe
- 2009-07-13 23:25 . 2009-07-14 01:15 13312 c:\windows\SysWOW64\muifontsetup.dll
+ 2011-07-02 21:06 . 2010-11-20 12:19 13312 c:\windows\SysWOW64\muifontsetup.dll
+ 2011-07-02 21:07 . 2010-11-05 01:58 11600 c:\windows\SysWOW64\MUI\0409\mscorees.dll
- 2011-01-15 03:55 . 2009-11-25 18:47 11600 c:\windows\SysWOW64\MUI\0409\mscorees.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 22528 c:\windows\SysWOW64\msyuv.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 31744 c:\windows\SysWOW64\msvidc32.dll
- 2010-07-22 00:01 . 2010-07-22 00:01 31744 c:\windows\SysWOW64\msvidc32.dll
+ 2011-06-29 00:07 . 2011-05-04 04:32 59392 c:\windows\SysWOW64\msscntrs.dll
- 2011-06-29 00:07 . 2011-05-04 04:52 59392 c:\windows\SysWOW64\msscntrs.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 13312 c:\windows\SysWOW64\msrle32.dll
- 2010-07-22 00:01 . 2010-07-22 00:01 13312 c:\windows\SysWOW64\msrle32.dll
- 2009-07-13 23:31 . 2009-07-14 01:14 73216 c:\windows\SysWOW64\msiexec.exe
+ 2011-07-02 21:07 . 2010-11-20 12:17 73216 c:\windows\SysWOW64\msiexec.exe
+ 2011-07-02 21:06 . 2010-11-20 12:19 30720 c:\windows\SysWOW64\msdmo.dll
+ 2011-07-02 21:08 . 2010-11-05 01:58 80720 c:\windows\SysWOW64\mscories.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 80720 c:\windows\SysWOW64\mscories.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 34304 c:\windows\SysWOW64\msasn1.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 42496 c:\windows\SysWOW64\mimefilt.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 90112 c:\windows\SysWOW64\migwiz\replacementmanifests\microsoft-windows-shmig\shmig.dll
- 2009-07-13 23:42 . 2009-07-14 01:16 90112 c:\windows\SysWOW64\migwiz\replacementmanifests\microsoft-windows-shmig\shmig.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 90112 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-shmig-DL\shmig.dll
- 2009-07-13 23:42 . 2009-07-14 01:16 90112 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-shmig-DL\shmig.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 67584 c:\windows\SysWOW64\migration\WSMT\rras\replacementmanifests\Microsoft-Windows-RasApi-MigPlugin\pbkmigr-Mig.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 90112 c:\windows\SysWOW64\migration\shmig.dll
- 2009-07-13 23:41 . 2009-07-14 01:16 90112 c:\windows\SysWOW64\migration\shmig.dll
- 2009-07-14 00:03 . 2009-07-14 01:15 36352 c:\windows\SysWOW64\mciqtz32.dll
+ 2011-07-02 21:06 . 2010-11-20 12:19 36352 c:\windows\SysWOW64\mciqtz32.dll
- 2010-07-22 00:01 . 2010-07-22 00:01 84480 c:\windows\SysWOW64\mciavi32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 84480 c:\windows\SysWOW64\mciavi32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 76800 c:\windows\SysWOW64\mapistub.dll
- 2009-07-14 00:12 . 2009-07-14 01:15 76800 c:\windows\SysWOW64\mapistub.dll
- 2009-07-14 00:12 . 2009-07-14 01:15 76800 c:\windows\SysWOW64\mapi32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 76800 c:\windows\SysWOW64\mapi32.dll
+ 2011-07-02 21:06 . 2010-11-20 12:19 41984 c:\windows\SysWOW64\luainstall.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 21504 c:\windows\SysWOW64\lsmproxy.dll
+ 2011-07-02 21:07 . 2010-11-20 12:17 82944 c:\windows\SysWOW64\logman.exe
+ 2011-07-02 21:07 . 2010-11-20 12:17 95232 c:\windows\SysWOW64\logagent.exe
- 2009-07-14 00:08 . 2009-07-14 01:14 95232 c:\windows\SysWOW64\logagent.exe
- 2010-07-22 00:01 . 2010-07-22 00:01 50176 c:\windows\SysWOW64\iyuv_32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 50176 c:\windows\SysWOW64\iyuv_32.dll
- 2009-07-13 23:40 . 2009-07-14 01:14 86528 c:\windows\SysWOW64\isoburn.exe
+ 2011-07-02 21:07 . 2010-11-20 12:17 86528 c:\windows\SysWOW64\isoburn.exe
+ 2011-07-02 21:07 . 2010-11-20 12:19 28672 c:\windows\SysWOW64\iscsium.dll
- 2009-07-13 23:46 . 2009-07-14 01:15 28672 c:\windows\SysWOW64\iscsium.dll
+ 2011-07-02 21:06 . 2010-11-20 12:19 52736 c:\windows\SysWOW64\inetmib1.dll
+ 2011-07-02 21:07 . 2010-11-20 12:17 90112 c:\windows\SysWOW64\IME\IMESC5\IMSCPROP.exe
- 2009-07-13 23:26 . 2009-07-14 01:14 90112 c:\windows\SysWOW64\IME\IMESC5\IMSCPROP.exe
- 2011-01-15 04:08 . 2010-07-29 06:30 82944 c:\windows\SysWOW64\iccvid.dll
+ 2011-07-02 21:06 . 2010-11-20 12:19 82944 c:\windows\SysWOW64\iccvid.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 78848 c:\windows\SysWOW64\iasacct.dll
- 2009-07-13 23:12 . 2009-07-14 01:15 34816 c:\windows\SysWOW64\httpapi.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 34816 c:\windows\SysWOW64\httpapi.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 66560 c:\windows\SysWOW64\hbaapi.dll
+ 2011-07-02 21:07 . 2010-11-20 12:17 42496 c:\windows\SysWOW64\ftp.exe
- 2009-07-13 23:55 . 2009-07-14 01:14 42496 c:\windows\SysWOW64\ftp.exe
- 2011-04-26 23:57 . 2011-03-11 05:37 74240 c:\windows\SysWOW64\fsutil.exe
+ 2011-04-26 23:57 . 2011-03-11 05:31 74240 c:\windows\SysWOW64\fsutil.exe
+ 2011-07-02 21:07 . 2010-11-20 12:19 98304 c:\windows\SysWOW64\fphc.dll
+ 2011-02-09 15:35 . 2010-09-30 06:47 70656 c:\windows\SysWOW64\fontsub.dll
- 2010-07-21 23:59 . 2010-07-21 23:59 70656 c:\windows\SysWOW64\fontsub.dll
- 2009-07-13 23:25 . 2009-07-14 01:15 93696 c:\windows\SysWOW64\fms.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 93696 c:\windows\SysWOW64\fms.dll
+ 2011-07-02 21:06 . 2010-11-20 12:17 62976 c:\windows\SysWOW64\findstr.exe
+ 2011-07-02 21:07 . 2010-11-20 12:19 59904 c:\windows\SysWOW64\fdeploy.dll
+ 2011-07-02 21:06 . 2010-11-20 12:19 69632 c:\windows\SysWOW64\en\AuthFWWizFwk.Resources.dll
- 2009-07-14 05:35 . 2009-07-14 02:11 69632 c:\windows\SysWOW64\en\AuthFWWizFwk.Resources.dll
+ 2011-07-02 21:06 . 2010-11-20 12:18 22528 c:\windows\SysWOW64\elsTrans.dll
- 2009-07-13 23:56 . 2009-07-14 01:15 94208 c:\windows\SysWOW64\eappgnui.dll
+ 2011-07-02 21:06 . 2010-11-20 12:18 94208 c:\windows\SysWOW64\eappgnui.dll
+ 2011-07-02 21:06 . 2010-11-20 12:18 30208 c:\windows\SysWOW64\dsauth.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 82432 c:\windows\SysWOW64\dot3cfg.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 91136 c:\windows\SysWOW64\dot3api.dll
- 2011-04-15 00:29 . 2011-03-03 05:27 28672 c:\windows\SysWOW64\dnscacheugc.exe
+ 2011-04-15 00:29 . 2011-03-03 05:36 28672 c:\windows\SysWOW64\dnscacheugc.exe
+ 2011-07-02 21:07 . 2010-11-20 12:19 89600 c:\windows\SysWOW64\Dism\LogProvider.dll
- 2009-07-13 23:18 . 2009-07-14 01:15 89600 c:\windows\SysWOW64\Dism\LogProvider.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 49152 c:\windows\SysWOW64\Dism\FolderProvider.dll
- 2009-07-13 23:18 . 2009-07-14 01:15 49152 c:\windows\SysWOW64\Dism\FolderProvider.dll
+ 2011-07-02 21:07 . 2010-11-20 12:17 82944 c:\windows\SysWOW64\Dism\DismHost.exe
- 2009-07-13 23:18 . 2009-07-14 01:14 82944 c:\windows\SysWOW64\Dism\DismHost.exe
+ 2011-07-02 21:07 . 2010-11-20 12:18 50688 c:\windows\SysWOW64\Dism\DismCorePS.dll
+ 2011-06-29 00:07 . 2011-05-24 10:40 44544 c:\windows\SysWOW64\devrtl.dll
- 2011-06-29 00:07 . 2011-05-24 10:34 44544 c:\windows\SysWOW64\devrtl.dll
+ 2011-06-29 00:07 . 2011-05-24 10:40 64512 c:\windows\SysWOW64\devobj.dll
- 2011-06-29 00:07 . 2011-05-24 10:34 64512 c:\windows\SysWOW64\devobj.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 80384 c:\windows\SysWOW64\davclnt.dll
- 2011-02-09 15:35 . 2010-12-21 05:34 80384 c:\windows\SysWOW64\davclnt.dll
+ 2011-07-02 21:06 . 2010-11-20 12:18 23040 c:\windows\SysWOW64\cscdll.dll
- 2009-07-13 23:14 . 2009-07-14 01:15 23040 c:\windows\SysWOW64\cscdll.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 34816 c:\windows\SysWOW64\cscapi.dll
- 2009-07-13 23:14 . 2009-07-14 01:15 34816 c:\windows\SysWOW64\cscapi.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 17408 c:\windows\SysWOW64\credssp.dll
- 2009-07-14 04:54 . 2012-06-22 16:26 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2012-06-24 00:37 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-07-02 21:07 . 2010-11-20 12:17 84992 c:\windows\SysWOW64\cmstp.exe
- 2009-07-13 23:54 . 2009-07-14 01:14 84992 c:\windows\SysWOW64\cmstp.exe
- 2009-07-13 23:36 . 2009-07-14 01:15 65024 c:\windows\SysWOW64\CertPolEng.dll
+ 2011-07-02 21:06 . 2010-11-20 12:18 65024 c:\windows\SysWOW64\CertPolEng.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 66560 c:\windows\SysWOW64\cca.dll
- 2009-07-14 00:05 . 2009-07-14 01:15 66560 c:\windows\SysWOW64\cca.dll
+ 2011-07-02 21:06 . 2010-11-20 12:18 73216 c:\windows\SysWOW64\cabinet.dll
+ 2011-07-02 21:06 . 2010-11-20 12:18 11264 c:\windows\SysWOW64\C_ISCII.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:18 10752 c:\windows\SysWOW64\browseui.dll
+ 2011-07-02 21:06 . 2010-11-20 12:18 41984 c:\windows\SysWOW64\browcli.dll
+ 2011-07-02 21:06 . 2010-11-20 12:18 19456 c:\windows\SysWOW64\bitsperf.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 28160 c:\windows\SysWOW64\AzSqlExt.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 91648 c:\windows\SysWOW64\avifil32.dll
- 2010-07-22 00:01 . 2010-07-22 00:01 91648 c:\windows\SysWOW64\avifil32.dll
- 2011-04-15 00:30 . 2011-02-19 05:32 34304 c:\windows\SysWOW64\atmlib.dll
+ 2011-04-15 00:30 . 2011-02-19 06:30 34304 c:\windows\SysWOW64\atmlib.dll
- 2011-01-15 04:07 . 2010-03-05 07:42 67584 c:\windows\SysWOW64\asycfilt.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 67584 c:\windows\SysWOW64\asycfilt.dll
- 2009-07-14 00:03 . 2009-07-14 01:14 70656 c:\windows\SysWOW64\amstream.dll
+ 2011-07-02 21:06 . 2010-11-20 12:18 70656 c:\windows\SysWOW64\amstream.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 45568 c:\windows\SysWOW64\acppage.dll
- 2009-07-13 23:26 . 2009-07-14 01:14 45568 c:\windows\SysWOW64\acppage.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 48640 c:\windows\system32\wwanprotdim.dll
- 2009-07-14 00:12 . 2009-07-14 01:41 48640 c:\windows\system32\wwanprotdim.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 78848 c:\windows\system32\WUDFSvc.dll
- 2009-07-14 00:06 . 2009-07-14 01:41 44544 c:\windows\system32\WUDFCoinstaller.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 44544 c:\windows\system32\WUDFCoinstaller.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 67072 c:\windows\system32\wsnmp32.dll
- 2009-07-14 00:10 . 2009-07-14 01:41 67072 c:\windows\system32\wsnmp32.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 13824 c:\windows\system32\wshirda.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 47104 c:\windows\system32\wshbth.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 26112 c:\windows\system32\wsdchngr.dll
- 2011-02-09 15:35 . 2010-12-21 06:16 97280 c:\windows\system32\wscsvc.dll
+ 2009-07-13 23:48 . 2009-07-14 01:41 97280 c:\windows\system32\wscsvc.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 63488 c:\windows\system32\wscapi.dll
- 2011-08-10 18:31 . 2011-07-16 05:26 13312 c:\windows\system32\wow64cpu.dll
+ 2011-08-10 18:31 . 2011-07-16 05:41 13312 c:\windows\system32\wow64cpu.dll
- 2009-07-13 23:53 . 2009-07-14 01:41 71680 c:\windows\system32\wkscli.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 71680 c:\windows\system32\wkscli.dll
- 2009-07-13 23:40 . 2009-07-14 01:39 26112 c:\windows\system32\WerFaultSecure.exe
+ 2011-07-02 21:07 . 2010-11-20 13:25 26112 c:\windows\system32\WerFaultSecure.exe
+ 2011-07-02 21:06 . 2010-11-20 13:27 36352 c:\windows\system32\wdiasqmmodule.dll
+ 2010-07-21 23:20 . 2012-06-24 00:38 60972 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-06-24 00:38 36992 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
- 2009-07-14 00:25 . 2009-07-14 01:41 61952 c:\windows\system32\WavDest.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 61952 c:\windows\system32\WavDest.dll
- 2009-07-13 23:36 . 2009-07-14 01:41 61952 c:\windows\system32\vss_ps.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 61952 c:\windows\system32\vss_ps.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 38912 c:\windows\system32\vpnikeapi.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 68096 c:\windows\system32\vfwwdm32.dll
- 2009-07-14 00:18 . 2009-07-14 01:41 68096 c:\windows\system32\vfwwdm32.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 57168 c:\windows\system32\vcomp100.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 57168 c:\windows\system32\vcomp100.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 30720 c:\windows\system32\userinit.exe
+ 2011-07-02 21:07 . 2010-11-20 13:27 84480 c:\windows\system32\UserAccountControlSettings.dll
- 2009-07-14 00:10 . 2009-07-14 01:41 73216 c:\windows\system32\unimdmat.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 73216 c:\windows\system32\unimdmat.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 59904 c:\windows\system32\umb.dll
- 2009-07-13 23:35 . 2009-07-14 01:41 59904 c:\windows\system32\umb.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 58368 c:\windows\system32\tzutil.exe
+ 2011-07-02 21:10 . 2010-11-20 13:27 12288 c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 40960 c:\windows\system32\TsUsbGDCoInstaller.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 86016 c:\windows\system32\TSpkg.dll
- 2009-07-13 23:50 . 2009-07-14 01:41 86016 c:\windows\system32\TSpkg.dll
- 2009-07-14 00:17 . 2009-07-14 01:41 44032 c:\windows\system32\tsgqec.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 44032 c:\windows\system32\tsgqec.dll
- 2010-07-22 00:01 . 2010-07-22 00:01 14848 c:\windows\system32\tsbyuv.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 14848 c:\windows\system32\tsbyuv.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 21504 c:\windows\system32\TRAPI.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 73728 c:\windows\system32\tlscsp.dll
- 2009-07-14 00:16 . 2009-07-14 01:41 73728 c:\windows\system32\tlscsp.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 69120 c:\windows\system32\taskhost.exe
- 2009-07-13 23:31 . 2009-07-14 01:39 69120 c:\windows\system32\taskhost.exe
+ 2011-07-02 21:07 . 2010-11-20 13:25 63488 c:\windows\system32\takeown.exe
+ 2011-07-02 21:08 . 2010-11-20 13:27 92672 c:\windows\system32\TabSvc.dll
- 2009-07-14 00:03 . 2009-07-14 01:39 78848 c:\windows\system32\tabcal.exe
+ 2011-07-02 21:07 . 2010-11-20 13:25 78848 c:\windows\system32\tabcal.exe
+ 2011-07-02 21:07 . 2010-11-20 13:27 17408 c:\windows\system32\syssetup.dll
+ 2012-01-13 20:54 . 2011-11-17 06:35 29184 c:\windows\system32\sspisrv.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 13312 c:\windows\system32\sscore.dll
- 2009-07-13 23:53 . 2009-07-14 01:41 13312 c:\windows\system32\sscore.dll
- 2009-07-13 23:29 . 2009-07-14 01:41 18944 c:\windows\system32\spopk.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 18944 c:\windows\system32\spopk.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 39424 c:\windows\system32\spool\prtprocs\x64\winprint.dll
- 2009-07-14 00:39 . 2009-07-14 01:41 39424 c:\windows\system32\spool\prtprocs\x64\winprint.dll
- 2009-07-13 23:29 . 2009-07-14 01:41 78848 c:\windows\system32\spbcd.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 78848 c:\windows\system32\spbcd.dll
- 2011-02-09 15:35 . 2010-12-21 06:15 15360 c:\windows\system32\slwga.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 15360 c:\windows\system32\slwga.dll
- 2009-07-13 23:23 . 2009-07-14 01:41 24064 c:\windows\system32\sisbkup.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 24064 c:\windows\system32\sisbkup.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 11264 c:\windows\system32\shunimpl.dll
- 2009-07-13 23:55 . 2009-07-14 01:41 37376 c:\windows\system32\shimgvw.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 37376 c:\windows\system32\shimgvw.dll
- 2009-07-13 23:55 . 2009-07-14 01:41 28160 c:\windows\system32\shgina.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 28160 c:\windows\system32\shgina.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 88576 c:\windows\system32\setupcl.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 57856 c:\windows\system32\Setup\pbkmigr.dll
+ 2011-04-15 00:29 . 2010-11-20 13:27 63488 c:\windows\system32\setbcdlocale.dll
- 2012-01-13 20:54 . 2011-11-17 07:11 28160 c:\windows\system32\secur32.dll
+ 2012-01-13 20:54 . 2011-11-17 06:35 28160 c:\windows\system32\secur32.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 30720 c:\windows\system32\seclogon.dll
- 2009-07-13 23:53 . 2009-07-14 01:41 30720 c:\windows\system32\seclogon.dll
- 2009-07-13 23:53 . 2009-07-14 01:41 24064 c:\windows\system32\schedcli.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 24064 c:\windows\system32\schedcli.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 67584 c:\windows\system32\samcli.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 56832 c:\windows\system32\runonce.exe
- 2009-07-13 23:57 . 2009-07-14 01:39 56832 c:\windows\system32\runonce.exe
- 2011-01-15 04:08 . 2010-06-19 06:53 52224 c:\windows\system32\rtutils.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 52224 c:\windows\system32\rtutils.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 65536 c:\windows\system32\RpcRtRemote.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 10752 c:\windows\system32\riched32.dll
- 2009-07-13 23:22 . 2009-07-14 01:39 51712 c:\windows\system32\repair-bde.exe
+ 2011-07-02 21:06 . 2010-11-20 13:25 51712 c:\windows\system32\repair-bde.exe
+ 2011-07-02 21:07 . 2010-11-20 13:25 43008 c:\windows\system32\relog.exe
+ 2011-07-02 21:08 . 2010-11-20 13:27 95232 c:\windows\system32\regapi.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 23040 c:\windows\system32\rdprefdrvapi.dll
- 2009-07-14 00:16 . 2009-07-14 01:41 23040 c:\windows\system32\rdprefdrvapi.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 68096 c:\windows\system32\rdpd3d.dll
- 2009-07-14 00:17 . 2009-07-14 01:41 68096 c:\windows\system32\rdpd3d.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 10240 c:\windows\system32\rdpcfgex.dll
- 2009-07-14 00:17 . 2009-07-14 01:41 10240 c:\windows\system32\rdpcfgex.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 79872 c:\windows\system32\QCLIPROV.DLL
- 2009-07-14 00:07 . 2009-07-14 01:41 79872 c:\windows\system32\QCLIPROV.DLL
+ 2011-07-02 21:08 . 2010-11-20 13:25 31744 c:\windows\system32\proquota.exe
+ 2012-06-14 03:07 . 2010-11-20 13:27 33792 c:\windows\system32\profprov.dll
- 2009-07-14 00:39 . 2009-07-14 01:41 48128 c:\windows\system32\PrintIsolationProxy.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 48128 c:\windows\system32\PrintIsolationProxy.dll
+ 2011-04-26 23:57 . 2011-02-18 10:51 31232 c:\windows\system32\prevhost.exe
- 2011-04-26 23:57 . 2011-02-18 06:33 31232 c:\windows\system32\prevhost.exe
+ 2011-07-02 21:07 . 2010-11-20 13:25 62976 c:\windows\system32\PnPUnattend.exe
+ 2011-07-02 21:06 . 2010-11-20 13:12 35328 c:\windows\system32\pifmgr.dll
+ 2012-01-11 22:08 . 2011-11-19 14:58 77312 c:\windows\system32\packager.dll
- 2012-01-11 22:08 . 2011-11-19 15:07 77312 c:\windows\system32\packager.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 57856 c:\windows\system32\oobe\spprgrss.dll
- 2009-07-13 23:57 . 2009-07-14 01:39 71168 c:\windows\system32\oobe\msoobe.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 71168 c:\windows\system32\oobe\msoobe.exe
- 2009-07-14 00:28 . 2009-07-14 01:41 53248 c:\windows\system32\odbcconf.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 53248 c:\windows\system32\odbcconf.dll
- 2011-08-10 18:31 . 2011-07-16 05:24 16384 c:\windows\system32\ntvdm64.dll
+ 2011-08-10 18:31 . 2011-07-16 05:39 16384 c:\windows\system32\ntvdm64.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 15360 c:\windows\system32\nrpsrv.dll
+ 2011-07-02 21:06 . 2010-11-20 13:13 69120 c:\windows\system32\nlsbres.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 70656 c:\windows\system32\nlaapi.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 29184 c:\windows\system32\netutils.dll
+ 2011-07-02 21:10 . 2010-11-05 01:57 48976 c:\windows\system32\netfxperf.dll
- 2009-07-13 23:53 . 2009-07-14 01:41 72704 c:\windows\system32\netapi32.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 72704 c:\windows\system32\netapi32.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 66048 c:\windows\system32\ncryptui.dll
- 2009-07-13 23:49 . 2009-07-14 01:41 66048 c:\windows\system32\ncryptui.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 90112 c:\windows\system32\nci.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 72192 c:\windows\system32\napdsnap.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 50176 c:\windows\system32\NAPCRYPT.DLL
- 2009-07-14 00:09 . 2009-07-14 01:51 50176 c:\windows\system32\NAPCRYPT.DLL
+ 2011-07-02 21:07 . 2010-11-20 13:25 51712 c:\windows\system32\MultiDigiMon.exe
- 2009-07-14 00:03 . 2009-07-14 01:39 51712 c:\windows\system32\MultiDigiMon.exe
+ 2011-07-02 21:07 . 2010-11-20 13:27 16896 c:\windows\system32\muifontsetup.dll
+ 2011-07-02 21:07 . 2010-11-05 01:57 11600 c:\windows\system32\MUI\0409\mscorees.dll
- 2011-01-15 03:55 . 2009-11-25 18:47 11600 c:\windows\system32\MUI\0409\mscorees.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 25600 c:\windows\system32\msyuv.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 38912 c:\windows\system32\msvidc32.dll
- 2010-07-22 00:01 . 2010-07-22 00:01 38912 c:\windows\system32\msvidc32.dll
+ 2011-06-29 00:07 . 2011-05-04 05:22 75264 c:\windows\system32\msscntrs.dll
- 2011-06-29 00:07 . 2011-05-04 05:28 75264 c:\windows\system32\msscntrs.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 16384 c:\windows\system32\msrle32.dll
- 2010-07-22 00:01 . 2010-07-22 00:01 16384 c:\windows\system32\msrle32.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 35840 c:\windows\system32\msdmo.dll
- 2010-07-22 00:01 . 2010-07-22 00:01 46592 c:\windows\system32\msasn1.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 46592 c:\windows\system32\msasn1.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 41472 c:\windows\system32\mimefilt.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 57856 c:\windows\system32\migration\WSMT\rras\replacementmanifests\Microsoft-Windows-RasApi-MigPlugin\pbkmigr-Mig.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 91472 c:\windows\system32\mfcm100u.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 91472 c:\windows\system32\mfcm100u.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 91472 c:\windows\system32\mfcm100.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 91472 c:\windows\system32\mfcm100.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 60752 c:\windows\system32\mfc100rus.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 60752 c:\windows\system32\mfc100rus.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 43344 c:\windows\system32\mfc100kor.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 43344 c:\windows\system32\mfc100kor.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 43856 c:\windows\system32\mfc100jpn.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 43856 c:\windows\system32\mfc100jpn.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 62288 c:\windows\system32\mfc100ita.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 62288 c:\windows\system32\mfc100ita.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 64336 c:\windows\system32\mfc100fra.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 64336 c:\windows\system32\mfc100fra.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 63824 c:\windows\system32\mfc100esn.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 63824 c:\windows\system32\mfc100esn.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 55120 c:\windows\system32\mfc100enu.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 55120 c:\windows\system32\mfc100enu.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 64336 c:\windows\system32\mfc100deu.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 64336 c:\windows\system32\mfc100deu.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 36176 c:\windows\system32\mfc100cht.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 36176 c:\windows\system32\mfc100cht.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 36176 c:\windows\system32\mfc100chs.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 36176 c:\windows\system32\mfc100chs.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 84992 c:\windows\system32\Mcx2Svc.dll
- 2009-07-14 00:18 . 2009-07-14 01:41 41472 c:\windows\system32\mciqtz32.dll
+ 2011-07-02 21:06 . 2010-11-20 13:26 41472 c:\windows\system32\mciqtz32.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 91648 c:\windows\system32\mapistub.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 91648 c:\windows\system32\mapi32.dll
- 2009-07-13 23:22 . 2009-07-14 01:39 79872 c:\windows\system32\manage-bde.exe
+ 2011-07-02 21:06 . 2010-11-20 13:24 79872 c:\windows\system32\manage-bde.exe
+ 2011-07-02 21:06 . 2010-11-20 13:26 48640 c:\windows\system32\luainstall.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 50176 c:\windows\system32\lsmproxy.dll
+ 2012-01-13 20:54 . 2011-11-17 06:33 31232 c:\windows\system32\lsass.exe
- 2012-01-13 20:54 . 2011-11-17 07:05 31232 c:\windows\system32\lsass.exe
- 2009-07-13 23:52 . 2009-07-14 01:39 27648 c:\windows\system32\LogonUI.exe
+ 2011-07-02 21:06 . 2010-11-20 13:24 27648 c:\windows\system32\LogonUI.exe
- 2009-07-14 00:07 . 2009-07-14 01:41 90624 c:\windows\system32\KMSVC.DLL
+ 2011-07-02 21:07 . 2010-11-20 13:26 90624 c:\windows\system32\KMSVC.DLL
- 2011-04-15 00:29 . 2011-02-05 12:41 20352 c:\windows\system32\kdusb.dll
+ 2011-04-15 00:29 . 2011-02-05 17:10 20352 c:\windows\system32\kdusb.dll
+ 2011-04-15 00:29 . 2011-02-05 17:10 17792 c:\windows\system32\kdcom.dll
- 2011-04-15 00:29 . 2011-02-05 12:41 17792 c:\windows\system32\kdcom.dll
+ 2011-04-15 00:29 . 2011-02-05 17:10 19328 c:\windows\system32\kd1394.dll
- 2011-04-15 00:29 . 2011-02-05 12:41 19328 c:\windows\system32\kd1394.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 54272 c:\windows\system32\iyuv_32.dll
- 2010-07-22 00:01 . 2010-07-22 00:01 54272 c:\windows\system32\iyuv_32.dll
+ 2011-07-02 21:07 . 2010-11-20 13:24 91648 c:\windows\system32\isoburn.exe
+ 2011-07-02 21:07 . 2010-11-20 13:26 37376 c:\windows\system32\iscsium.dll
+ 2011-07-02 21:06 . 2010-11-20 13:26 65536 c:\windows\system32\inetmib1.dll
+ 2012-04-12 04:39 . 2012-03-01 06:33 81408 c:\windows\system32\imagehlp.dll
- 2009-07-13 23:21 . 2009-07-14 01:41 45056 c:\windows\system32\httpapi.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 45056 c:\windows\system32\httpapi.dll
- 2009-07-13 23:55 . 2009-07-14 01:41 27136 c:\windows\system32\HotStartUserAgent.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 27136 c:\windows\system32\HotStartUserAgent.dll
- 2009-07-14 00:01 . 2009-07-14 01:40 78848 c:\windows\system32\hbaapi.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 78848 c:\windows\system32\hbaapi.dll
+ 2011-07-02 21:06 . 2010-11-20 13:24 18432 c:\windows\system32\FXSUNATD.exe
+ 2011-07-02 21:06 . 2010-11-20 13:26 41984 c:\windows\system32\FXSMON.dll
- 2009-07-14 00:10 . 2009-07-14 01:39 48128 c:\windows\system32\ftp.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 48128 c:\windows\system32\ftp.exe
- 2011-04-26 23:57 . 2011-03-11 06:15 96768 c:\windows\system32\fsutil.exe
+ 2011-04-26 23:57 . 2011-03-11 06:30 96768 c:\windows\system32\fsutil.exe
+ 2011-07-02 21:06 . 2010-11-20 13:24 17920 c:\windows\system32\fixmapi.exe
+ 2011-07-02 21:06 . 2010-11-20 13:24 71168 c:\windows\system32\findstr.exe
+ 2011-07-02 21:07 . 2010-11-20 13:26 74240 c:\windows\system32\fdProxy.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 72192 c:\windows\system32\fdeploy.dll
+ 2011-07-02 21:06 . 2010-11-20 13:26 25600 c:\windows\system32\elsTrans.dll
+ 2011-07-02 21:06 . 2010-11-20 13:26 36864 c:\windows\system32\dsauth.dll
- 2009-07-14 05:30 . 2012-06-19 20:56 86016 c:\windows\system32\DriverStore\infpub.dat
+ 2009-07-14 05:30 . 2012-06-23 15:55 86016 c:\windows\system32\DriverStore\infpub.dat
+ 2011-07-02 21:06 . 2010-11-20 13:27 83968 c:\windows\system32\DriverStore\FileRepository\wpdcomp.inf_amd64_neutral_11bbf54c8508434e\Wpdcomp.dll
+ 2011-07-02 21:08 . 2010-11-20 10:43 41984 c:\windows\system32\DriverStore\FileRepository\winusb.inf_amd64_neutral_6cb50ae9f480775b\winusb.sys
+ 2011-04-26 23:57 . 2011-03-11 04:37 91648 c:\windows\system32\DriverStore\FileRepository\usbstor.inf_amd64_neutral_26b33263a639795d\USBSTOR.SYS
+ 2011-07-02 21:08 . 2010-11-20 10:44 91648 c:\windows\system32\DriverStore\FileRepository\usbstor.inf_amd64_neutral_0725c2806a159a9d\USBSTOR.SYS
+ 2009-07-14 00:06 . 2009-07-14 00:06 30720 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_f935002f367d5bb0\usbuhci.sys
+ 2009-07-14 00:06 . 2009-07-14 00:06 25600 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_f935002f367d5bb0\usbohci.sys
+ 2011-07-02 21:08 . 2010-11-20 10:43 52224 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_f935002f367d5bb0\usbehci.sys
+ 2011-05-12 13:39 . 2011-03-25 03:29 30720 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_189259810882aaea\usbuhci.sys
+ 2011-05-12 13:39 . 2011-03-25 03:29 25600 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_189259810882aaea\usbohci.sys
+ 2011-05-12 13:39 . 2011-03-25 03:29 52736 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_189259810882aaea\usbehci.sys
+ 2011-07-02 21:07 . 2010-11-20 10:44 98816 c:\windows\system32\DriverStore\FileRepository\usb.inf_amd64_neutral_269d7150439b3372\usbccgp.sys
+ 2011-05-12 13:39 . 2011-03-25 03:29 98816 c:\windows\system32\DriverStore\FileRepository\usb.inf_amd64_neutral_153b489118ee37b8\usbccgp.sys
+ 2011-07-02 21:07 . 2010-11-20 10:44 48640 c:\windows\system32\DriverStore\FileRepository\umbus.inf_amd64_neutral_2d4257afa2e35253\umbus.sys
+ 2011-07-02 21:10 . 2010-11-20 11:07 31232 c:\windows\system32\DriverStore\FileRepository\tsgenericusbdriver.inf_amd64_neutral_24c807694f614911\TsUsbGD.sys
+ 2011-07-02 21:08 . 2010-11-20 10:43 41984 c:\windows\system32\DriverStore\FileRepository\transfercable.inf_amd64_neutral_82f4c743c8996d67\amd64\winusb.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 14336 c:\windows\system32\DriverStore\FileRepository\sffdisk.inf_amd64_neutral_d2425e60845d17d3\sffp_sd.sys
+ 2009-07-14 00:01 . 2009-07-14 00:01 13824 c:\windows\system32\DriverStore\FileRepository\sffdisk.inf_amd64_neutral_d2425e60845d17d3\sffp_mmc.sys
+ 2009-07-14 00:01 . 2009-07-14 00:01 14336 c:\windows\system32\DriverStore\FileRepository\sffdisk.inf_amd64_neutral_d2425e60845d17d3\sffdisk.sys
+ 2011-07-02 21:06 . 2010-11-20 13:27 22016 c:\windows\system32\DriverStore\FileRepository\ntprint.inf_amd64_neutral_4616c3de1949be6d\Amd64\PJLMON.DLL
+ 2009-07-13 23:19 . 2009-07-14 01:45 17488 c:\windows\system32\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\viaide.sys
+ 2009-07-13 23:19 . 2009-07-14 01:45 48720 c:\windows\system32\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\pciidex.sys
+ 2009-07-13 23:19 . 2009-07-14 01:45 12352 c:\windows\system32\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\pciide.sys
+ 2011-07-02 21:08 . 2010-11-20 13:33 31104 c:\windows\system32\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\msahci.sys
+ 2009-07-13 23:19 . 2009-07-14 01:48 16960 c:\windows\system32\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\intelide.sys
+ 2009-07-13 23:19 . 2009-07-14 01:52 17488 c:\windows\system32\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\cmdide.sys
+ 2009-07-13 23:19 . 2009-07-14 01:52 24128 c:\windows\system32\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
+ 2009-07-13 23:19 . 2009-07-14 01:52 15440 c:\windows\system32\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\amdide.sys
+ 2009-07-13 23:19 . 2009-07-14 01:52 15440 c:\windows\system32\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\aliide.sys
+ 2009-07-14 00:10 . 2009-07-14 00:10 24064 c:\windows\system32\DriverStore\FileRepository\modemcsa.inf_amd64_neutral_b64a610f1f09f267\MODEMCSA.sys
+ 2011-07-02 21:07 . 2010-11-20 10:43 32768 c:\windows\system32\DriverStore\FileRepository\mdmcpq.inf_amd64_neutral_fbc4a14a6a13d0c8\usbser.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 12800 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\spctramc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 15360 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\sonymc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 12288 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\snyaitmc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 12800 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\seaddsmc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 11264 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\qntmmc.sys

Tony Lillie · Jun 23, 2012

More ComboFix log:

+ 2011-07-02 21:06 . 2010-11-20 10:34 13824 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\qlstrmc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 15360 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\powerfil.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 12800 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\pnrmc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 14848 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\plasmc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 12800 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\nsmmc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 11264 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\m4mc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 13824 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\libxprmc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 12800 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\jvcmc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 17920 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\hpmc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 15360 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\examc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 12288 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\elmsmc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 13312 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\ddsmc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 12288 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\breecemc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 12800 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\atlmc.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 12800 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\adicvls.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 13824 c:\windows\system32\DriverStore\FileRepository\mchgr.inf_amd64_neutral_407146dba80d1566\adicsc.sys
+ 2011-07-02 21:09 . 2010-11-20 13:34 71552 c:\windows\system32\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\volmgr.sys
+ 2009-07-14 00:01 . 2009-07-14 01:45 36432 c:\windows\system32\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\vdrvroot.sys
+ 2009-07-13 23:38 . 2009-07-14 01:45 64592 c:\windows\system32\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\ULIAGPKX.SYS
+ 2011-07-02 21:08 . 2010-11-20 13:33 63360 c:\windows\system32\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\termdd.sys
+ 2009-07-14 00:00 . 2009-07-14 01:45 12496 c:\windows\system32\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\swenum.sys
+ 2009-07-14 00:18 . 2009-07-14 01:45 24144 c:\windows\system32\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\streamci.dll
+ 2009-07-13 23:31 . 2009-07-14 01:48 32320 c:\windows\system32\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\mssmbios.sys
+ 2009-07-13 23:19 . 2009-07-14 01:48 15424 c:\windows\system32\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\msisadrv.sys
+ 2009-07-13 23:31 . 2009-07-14 01:48 20544 c:\windows\system32\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\isapnp.sys
+ 2009-07-13 23:38 . 2009-07-14 01:52 61008 c:\windows\system32\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
+ 2011-07-02 21:06 . 2010-11-20 10:33 33280 c:\windows\system32\DriverStore\FileRepository\keyboard.inf_amd64_neutral_0684fdc43059f486\kbdhid.sys
+ 2009-07-13 23:19 . 2009-07-14 01:48 50768 c:\windows\system32\DriverStore\FileRepository\keyboard.inf_amd64_neutral_0684fdc43059f486\kbdclass.sys
+ 2009-07-14 00:01 . 2009-07-14 01:28 16384 c:\windows\system32\DriverStore\FileRepository\iscsi.inf_amd64_neutral_2ef24e9270d8b2a9\iscsilog.dll
+ 2011-07-02 21:06 . 2010-11-20 10:04 78848 c:\windows\system32\DriverStore\FileRepository\ipmidrv.inf_amd64_neutral_1cb648411f252d13\IPMIDrv.sys
+ 2011-07-02 21:06 . 2010-11-20 10:43 30208 c:\windows\system32\DriverStore\FileRepository\input.inf_amd64_neutral_8693053514b10ee9\hidusb.sys
+ 2009-07-14 00:06 . 2009-07-14 00:06 32896 c:\windows\system32\DriverStore\FileRepository\input.inf_amd64_neutral_8693053514b10ee9\hidparse.sys
+ 2011-07-02 21:08 . 2010-11-20 10:43 76800 c:\windows\system32\DriverStore\FileRepository\input.inf_amd64_neutral_8693053514b10ee9\hidclass.sys
+ 2011-07-02 21:09 . 2010-11-20 13:33 78720 c:\windows\system32\DriverStore\FileRepository\hpsamd.inf_amd64_neutral_84ae149ecc9f8033\HpSAMD.sys
+ 2011-07-02 21:06 . 2010-11-20 10:32 19968 c:\windows\system32\DriverStore\FileRepository\dot4prt.inf_amd64_neutral_e7d3f62d0d4411db\Dot4Prt.sys
+ 2011-07-02 21:06 . 2010-11-20 10:33 38912 c:\windows\system32\DriverStore\FileRepository\compositebus.inf_amd64_neutral_b9280780a8000d4b\CompositeBus.sys
+ 2011-07-02 21:08 . 2010-11-20 10:44 80384 c:\windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_e54666f6a3e5af91\BTHUSB.SYS
+ 2009-07-14 00:06 . 2009-07-14 00:06 41984 c:\windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_e54666f6a3e5af91\bthenum.sys
+ 2011-07-12 21:37 . 2011-04-28 03:54 80384 c:\windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_ca26c6da62d71ca8\BTHUSB.SYS
+ 2009-07-14 00:06 . 2009-07-14 00:06 41984 c:\windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_ca26c6da62d71ca8\bthenum.sys
+ 2009-07-13 21:59 . 2009-07-14 01:40 50688 c:\windows\system32\DriverStore\FileRepository\atiilhag.inf_amd64_neutral_0a660e899f5038a2\amdpcom64.dll
+ 2009-07-13 21:59 . 2009-07-14 01:40 50688 c:\windows\system32\DriverStore\FileRepository\atiilhag.inf_amd64_neutral_0a660e899f5038a2\amdpcom32.dll
+ 2011-07-02 21:08 . 2010-11-20 13:32 27008 c:\windows\system32\DriverStore\FileRepository\amdsata.inf_amd64_neutral_67db50590108ebd9\amdxata.sys
+ 2011-04-26 23:57 . 2011-03-11 06:41 27008 c:\windows\system32\DriverStore\FileRepository\amdsata.inf_amd64_neutral_5c3d0d1e97e99e10\amdxata.sys
+ 2011-07-02 21:06 . 2010-11-20 09:30 12800 c:\windows\system32\DriverStore\FileRepository\acpipmi.inf_amd64_neutral_256ad642985694b3\acpipmi.sys
+ 2009-07-13 23:31 . 2009-07-13 23:31 14336 c:\windows\system32\DriverStore\FileRepository\acpi.inf_amd64_neutral_aed2e7a487803437\wmiacpi.sys
+ 2009-07-14 00:06 . 2009-07-14 00:06 72832 c:\windows\system32\DriverStore\FileRepository\1394.inf_amd64_neutral_0b11366838152a76\ohci1394.sys
+ 2009-07-14 00:06 . 2009-07-14 00:06 68096 c:\windows\system32\DriverStore\FileRepository\1394.inf_amd64_neutral_0b11366838152a76\1394bus.sys
+ 2011-07-02 21:08 . 2010-11-20 10:43 41984 c:\windows\system32\drivers\winusb.sys
- 2009-07-14 00:10 . 2009-07-14 00:10 88576 c:\windows\system32\drivers\wanarp.sys
+ 2011-07-02 21:08 . 2010-11-20 10:52 88576 c:\windows\system32\drivers\wanarp.sys
+ 2011-07-02 21:09 . 2010-11-20 13:34 71552 c:\windows\system32\drivers\volmgr.sys
- 2011-05-12 13:39 . 2011-03-29 03:32 30720 c:\windows\system32\drivers\usbuhci.sys
+ 2011-05-12 13:39 . 2011-03-25 03:29 30720 c:\windows\system32\drivers\usbuhci.sys
+ 2011-04-26 23:57 . 2011-03-11 04:37 91648 c:\windows\system32\drivers\USBSTOR.SYS
- 2009-07-14 00:35 . 2009-07-14 00:35 31744 c:\windows\system32\drivers\usbrpm.sys
+ 2011-07-02 21:06 . 2010-11-20 11:37 31744 c:\windows\system32\drivers\usbrpm.sys
+ 2011-05-12 13:39 . 2011-03-25 03:29 25600 c:\windows\system32\drivers\usbohci.sys
- 2011-05-12 13:39 . 2011-03-29 03:32 25600 c:\windows\system32\drivers\usbohci.sys
+ 2011-05-12 13:39 . 2011-03-25 03:29 52736 c:\windows\system32\drivers\usbehci.sys
+ 2011-05-12 13:39 . 2011-03-25 03:29 98816 c:\windows\system32\drivers\usbccgp.sys
+ 2011-07-02 21:06 . 2010-11-20 10:44 32896 c:\windows\system32\drivers\USBCAMD2.sys
- 2009-07-14 00:06 . 2009-07-14 00:06 32896 c:\windows\system32\drivers\USBCAMD2.sys
+ 2011-07-02 21:07 . 2010-11-20 10:44 48640 c:\windows\system32\drivers\umbus.sys
- 2009-07-14 00:06 . 2009-07-14 00:06 48640 c:\windows\system32\drivers\umbus.sys
+ 2011-07-02 21:10 . 2010-11-20 11:07 59392 c:\windows\system32\drivers\TsUsbFlt.sys
+ 2011-07-02 21:08 . 2010-11-20 11:04 39424 c:\windows\system32\drivers\tssecsrv.sys
+ 2011-07-02 21:08 . 2010-11-20 13:33 63360 c:\windows\system32\drivers\termdd.sys
+ 2012-03-13 22:09 . 2012-02-17 04:57 23552 c:\windows\system32\drivers\tdtcp.sys
- 2012-03-13 22:09 . 2012-02-15 04:46 23552 c:\windows\system32\drivers\tdtcp.sys
+ 2011-07-02 21:06 . 2010-11-20 09:22 26624 c:\windows\system32\drivers\tdi.sys
- 2009-07-13 23:21 . 2009-07-13 23:21 26624 c:\windows\system32\drivers\tdi.sys
+ 2011-07-02 21:07 . 2010-11-20 10:51 45056 c:\windows\system32\drivers\tcpipreg.sys
+ 2011-07-02 21:06 . 2010-11-20 10:34 14336 c:\windows\system32\drivers\sffp_sd.sys
- 2010-07-22 00:02 . 2010-07-22 00:02 14336 c:\windows\system32\drivers\sffp_sd.sys
- 2009-07-13 23:50 . 2009-07-13 23:50 29696 c:\windows\system32\drivers\scfilter.sys
+ 2011-07-02 21:06 . 2010-11-20 10:09 29696 c:\windows\system32\drivers\scfilter.sys
+ 2012-05-11 16:15 . 2012-03-17 07:58 75120 c:\windows\system32\drivers\partmgr.sys
- 2009-07-14 00:10 . 2009-07-14 00:10 57856 c:\windows\system32\drivers\ndproxy.sys
+ 2011-07-02 21:07 . 2010-11-20 10:52 57856 c:\windows\system32\drivers\ndproxy.sys
+ 2011-07-02 21:07 . 2010-11-20 10:50 56832 c:\windows\system32\drivers\ndisuio.sys
+ 2011-07-02 21:08 . 2010-11-20 13:33 31104 c:\windows\system32\drivers\msahci.sys
+ 2011-07-02 21:08 . 2010-11-20 13:33 94592 c:\windows\system32\drivers\mountmgr.sys
+ 2012-01-13 20:54 . 2011-11-17 06:49 95600 c:\windows\system32\drivers\ksecdd.sys
- 2009-07-14 00:00 . 2009-07-14 00:00 33280 c:\windows\system32\drivers\kbdhid.sys
+ 2011-07-02 21:06 . 2010-11-20 10:33 33280 c:\windows\system32\drivers\kbdhid.sys
- 2009-07-13 23:47 . 2009-07-13 23:47 78848 c:\windows\system32\drivers\IPMIDrv.sys
+ 2011-07-02 21:06 . 2010-11-20 10:04 78848 c:\windows\system32\drivers\IPMIDrv.sys
+ 2011-07-02 21:08 . 2010-11-20 10:52 82944 c:\windows\system32\drivers\ipfltdrv.sys
- 2009-07-14 00:10 . 2009-07-14 00:10 82944 c:\windows\system32\drivers\ipfltdrv.sys
+ 2011-07-02 21:08 . 2010-11-20 13:33 14720 c:\windows\system32\drivers\hwpolicy.sys
+ 2011-07-02 21:09 . 2010-11-20 13:33 78720 c:\windows\system32\drivers\HpSAMD.sys
- 2009-07-14 00:06 . 2009-07-14 00:06 30208 c:\windows\system32\drivers\hidusb.sys
+ 2011-07-02 21:06 . 2010-11-20 10:43 30208 c:\windows\system32\drivers\hidusb.sys
+ 2011-07-02 21:08 . 2010-11-20 10:43 76800 c:\windows\system32\drivers\hidclass.sys
+ 2012-04-12 04:39 . 2012-03-01 06:46 23408 c:\windows\system32\drivers\fs_rec.sys
+ 2011-05-24 22:23 . 2011-04-22 22:15 27520 c:\windows\system32\drivers\Diskdump.sys
- 2009-07-14 00:00 . 2009-07-14 00:00 38912 c:\windows\system32\drivers\CompositeBus.sys
+ 2011-07-02 21:06 . 2010-11-20 10:33 38912 c:\windows\system32\drivers\CompositeBus.sys
- 2011-07-12 21:37 . 2011-04-28 03:58 80384 c:\windows\system32\drivers\BTHUSB.SYS
+ 2011-07-12 21:37 . 2011-04-28 03:54 80384 c:\windows\system32\drivers\BTHUSB.SYS
+ 2011-04-15 00:29 . 2011-02-23 04:55 90624 c:\windows\system32\drivers\bowser.sys
- 2011-04-15 00:29 . 2011-02-23 05:15 90624 c:\windows\system32\drivers\bowser.sys
+ 2011-07-02 21:06 . 2010-11-20 10:14 61440 c:\windows\system32\drivers\appid.sys
- 2009-07-13 23:52 . 2009-07-13 23:52 61440 c:\windows\system32\drivers\appid.sys
+ 2011-04-26 23:57 . 2011-03-11 06:41 27008 c:\windows\system32\drivers\amdxata.sys
- 2011-04-26 23:57 . 2011-03-11 06:22 27008 c:\windows\system32\drivers\amdxata.sys
+ 2011-07-02 21:06 . 2010-11-20 09:30 12800 c:\windows\system32\drivers\acpipmi.sys
+ 2011-07-02 21:08 . 2010-11-20 13:26 69120 c:\windows\system32\dot3cfg.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 84992 c:\windows\system32\dot3api.dll
+ 2011-04-15 00:29 . 2011-03-03 06:21 30208 c:\windows\system32\dnscacheugc.exe
- 2011-04-15 00:29 . 2011-03-03 06:14 30208 c:\windows\system32\dnscacheugc.exe
- 2009-07-13 23:53 . 2009-07-14 01:39 61440 c:\windows\system32\djoin.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 61440 c:\windows\system32\djoin.exe
+ 2011-12-15 21:00 . 2011-10-26 05:21 43520 c:\windows\system32\csrsrv.dll
- 2011-12-15 21:00 . 2011-10-26 05:19 43520 c:\windows\system32\csrsrv.dll
+ 2011-07-02 21:06 . 2010-11-20 13:25 30208 c:\windows\system32\cscdll.dll
- 2009-07-13 23:23 . 2009-07-14 01:40 30208 c:\windows\system32\cscdll.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 46080 c:\windows\system32\cscapi.dll
- 2009-07-13 23:24 . 2009-07-14 01:40 46080 c:\windows\system32\cscapi.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 22016 c:\windows\system32\credssp.dll
+ 2011-01-14 23:20 . 2012-06-23 15:48 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-01-14 23:20 . 2012-06-17 01:26 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2011-01-14 23:20 . 2012-06-23 15:48 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2011-01-14 23:20 . 2012-06-17 01:26 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2012-06-17 01:26 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2012-06-23 15:48 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 00:10 . 2009-07-14 01:39 92160 c:\windows\system32\cmstp.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 92160 c:\windows\system32\cmstp.exe
+ 2011-07-02 21:06 . 2010-11-20 13:24 36864 c:\windows\system32\choice.exe
+ 2011-07-02 21:07 . 2010-11-20 13:25 80384 c:\windows\system32\certprop.dll
- 2009-07-13 23:50 . 2009-07-14 01:40 80384 c:\windows\system32\certprop.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 71680 c:\windows\system32\CertPolEng.dll
- 2009-07-13 23:52 . 2009-07-14 01:40 71680 c:\windows\system32\CertPolEng.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 95232 c:\windows\system32\cca.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 94720 c:\windows\system32\cabinet.dll
+ 2011-07-02 21:06 . 2010-11-20 13:25 13312 c:\windows\system32\C_ISCII.DLL
- 2009-07-13 23:57 . 2009-07-14 01:40 14848 c:\windows\system32\BWUnpairElevated.dll
+ 2011-07-02 21:06 . 2010-11-20 13:25 14848 c:\windows\system32\BWUnpairElevated.dll
+ 2011-07-02 21:06 . 2010-11-20 13:25 14336 c:\windows\system32\browseui.dll
+ 2011-07-02 21:06 . 2010-11-20 13:25 58880 c:\windows\system32\browcli.dll
+ 2011-07-02 21:06 . 2010-11-20 12:54 52736 c:\windows\system32\BlbEvents.dll
+ 2011-07-02 21:06 . 2010-11-20 13:25 24576 c:\windows\system32\bitsperf.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 31744 c:\windows\system32\AzSqlExt.dll
- 2009-07-13 23:50 . 2009-07-14 01:40 31744 c:\windows\system32\AzSqlExt.dll
- 2011-04-15 00:30 . 2011-02-19 06:36 46080 c:\windows\system32\atmlib.dll
+ 2011-04-15 00:30 . 2011-02-19 12:03 46080 c:\windows\system32\atmlib.dll
- 2011-01-15 04:07 . 2010-03-05 07:52 84992 c:\windows\system32\asycfilt.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 84992 c:\windows\system32\asycfilt.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 70656 c:\windows\system32\appinfo.dll
- 2009-07-14 00:18 . 2009-07-14 01:40 89088 c:\windows\system32\amstream.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 89088 c:\windows\system32\amstream.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 53248 c:\windows\system32\acppage.dll
- 2009-07-13 23:40 . 2009-07-14 01:40 53248 c:\windows\system32\acppage.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 67072 c:\windows\splwow64.exe
- 2011-08-24 15:34 . 2011-07-09 05:16 49664 c:\windows\servicing\GC64\tzupd.exe
+ 2011-08-24 15:34 . 2011-07-09 05:29 49664 c:\windows\servicing\GC64\tzupd.exe
+ 2009-07-14 04:46 . 2012-06-23 16:08 91720 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
+ 2011-07-02 21:08 . 2010-11-05 01:53 83792 c:\windows\Microsoft.NET\Framework64\v3.5\MSBuild.exe
+ 2011-07-02 21:07 . 2010-11-05 01:53 91976 c:\windows\Microsoft.NET\Framework64\v3.5\EdmGen.exe
- 2009-07-13 20:54 . 2009-06-10 20:31 91976 c:\windows\Microsoft.NET\Framework64\v3.5\EdmGen.exe
+ 2011-07-02 21:08 . 2010-11-05 01:53 71512 c:\windows\Microsoft.NET\Framework64\v3.5\DataSvcUtil.exe
+ 2011-07-02 21:08 . 2010-11-05 01:53 38736 c:\windows\Microsoft.NET\Framework64\v3.5\AddInUtil.exe
+ 2011-07-02 21:07 . 2010-11-05 01:53 38744 c:\windows\Microsoft.NET\Framework64\v3.5\AddInProcess32.exe
- 2009-07-13 20:54 . 2009-06-10 20:31 38744 c:\windows\Microsoft.NET\Framework64\v3.5\AddInProcess32.exe
+ 2011-07-02 21:08 . 2010-11-05 01:53 38744 c:\windows\Microsoft.NET\Framework64\v3.5\AddInProcess.exe
+ 2011-07-02 21:08 . 2010-11-05 01:53 22368 c:\windows\Microsoft.NET\Framework64\v3.0\WPF\XamlViewer\XamlViewer_v0300.exe
+ 2011-07-02 21:08 . 2010-11-05 01:53 42856 c:\windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
+ 2011-07-02 21:08 . 2010-11-05 01:53 84808 c:\windows\Microsoft.NET\Framework64\v3.0\WPF\PenIMC.dll
+ 2011-07-02 21:07 . 2010-11-05 01:52 32768 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll
- 2009-07-14 01:01 . 2009-06-10 20:30 32768 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll
+ 2011-07-02 21:06 . 2010-11-05 01:52 73728 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.ServiceModel.Install.dll
- 2009-07-14 01:01 . 2009-06-10 20:30 73728 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.ServiceModel.Install.dll
+ 2011-07-02 21:06 . 2010-11-05 01:52 94208 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMdiagnostics.dll
- 2009-07-14 01:01 . 2009-06-10 20:30 94208 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMdiagnostics.dll
+ 2011-07-02 21:08 . 2010-11-05 01:57 42328 c:\windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 81920 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Configuration.Install.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 81920 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Configuration.Install.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 28672 c:\windows\Microsoft.NET\Framework64\v2.0.50727\RegSvcs.exe
- 2009-07-13 20:37 . 2009-06-10 20:40 28672 c:\windows\Microsoft.NET\Framework64\v2.0.50727\RegSvcs.exe
+ 2011-07-02 21:06 . 2010-11-05 01:56 49152 c:\windows\Microsoft.NET\Framework64\v2.0.50727\RegAsm.exe
- 2009-07-13 20:37 . 2009-06-10 20:40 49152 c:\windows\Microsoft.NET\Framework64\v2.0.50727\RegAsm.exe
+ 2011-07-02 21:07 . 2010-11-05 01:56 36688 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorie.dll
- 2009-07-13 20:37 . 2009-06-10 20:39 36688 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorie.dll
- 2009-07-13 20:37 . 2009-06-10 20:39 65536 c:\windows\Microsoft.NET\Framework64\v2.0.50727\MSBuild.exe
+ 2011-07-02 21:06 . 2010-11-05 01:56 65536 c:\windows\Microsoft.NET\Framework64\v2.0.50727\MSBuild.exe
- 2009-07-13 20:37 . 2009-06-10 20:39 77824 c:\windows\Microsoft.NET\Framework64\v2.0.50727\Microsoft.Build.Utilities.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 77824 c:\windows\Microsoft.NET\Framework64\v2.0.50727\Microsoft.Build.Utilities.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 36864 c:\windows\Microsoft.NET\Framework64\v2.0.50727\Microsoft.Build.Framework.dll
- 2009-07-13 20:37 . 2009-06-10 20:39 36864 c:\windows\Microsoft.NET\Framework64\v2.0.50727\Microsoft.Build.Framework.dll
- 2009-07-13 20:37 . 2009-06-10 20:39 89600 c:\windows\Microsoft.NET\Framework64\v2.0.50727\ISymWrapper.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 89600 c:\windows\Microsoft.NET\Framework64\v2.0.50727\ISymWrapper.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 24576 c:\windows\Microsoft.NET\Framework64\v2.0.50727\InstallUtil.exe
- 2009-07-13 20:37 . 2009-06-10 20:39 24576 c:\windows\Microsoft.NET\Framework64\v2.0.50727\InstallUtil.exe
+ 2011-07-02 21:08 . 2010-11-05 01:56 38216 c:\windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
- 2009-07-13 20:37 . 2009-06-10 20:39 38216 c:\windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
+ 2011-07-02 21:06 . 2010-11-05 01:56 80896 c:\windows\Microsoft.NET\Framework64\v2.0.50727\CustomMarshalers.dll
- 2009-07-13 20:37 . 2009-06-10 20:39 80896 c:\windows\Microsoft.NET\Framework64\v2.0.50727\CustomMarshalers.dll
+ 2011-07-02 21:08 . 2010-11-05 01:56 94040 c:\windows\Microsoft.NET\Framework64\v2.0.50727\CORPerfMonExt.dll

Tony Lillie · Jun 23, 2012

And More ComboFix

- 2009-07-13 20:37 . 2009-06-10 20:39 94040 c:\windows\Microsoft.NET\Framework64\v2.0.50727\CORPerfMonExt.dll
+ 2011-07-02 21:08 . 2010-11-05 01:56 42320 c:\windows\Microsoft.NET\Framework64\v2.0.50727\aspnet_wp.exe
+ 2011-07-02 21:07 . 2010-11-05 01:56 37720 c:\windows\Microsoft.NET\Framework64\v2.0.50727\Aspnet_perf.dll
- 2009-07-13 20:37 . 2009-06-10 20:39 37720 c:\windows\Microsoft.NET\Framework64\v2.0.50727\Aspnet_perf.dll
+ 2011-07-02 21:08 . 2010-11-05 01:56 68944 c:\windows\Microsoft.NET\Framework64\v2.0.50727\AppLaunch.exe
+ 2011-07-02 21:07 . 2010-11-05 01:53 91976 c:\windows\Microsoft.NET\Framework\v3.5\EdmGen.exe
- 2009-07-13 21:10 . 2009-06-10 21:14 91976 c:\windows\Microsoft.NET\Framework\v3.5\EdmGen.exe
+ 2011-07-02 21:08 . 2010-11-05 01:53 71512 c:\windows\Microsoft.NET\Framework\v3.5\DataSvcUtil.exe
+ 2011-07-02 21:08 . 2010-11-05 01:53 38736 c:\windows\Microsoft.NET\Framework\v3.5\AddInUtil.exe
- 2009-07-13 21:10 . 2009-06-10 21:14 38744 c:\windows\Microsoft.NET\Framework\v3.5\AddInProcess32.exe
+ 2011-07-02 21:07 . 2010-11-05 01:53 38744 c:\windows\Microsoft.NET\Framework\v3.5\AddInProcess32.exe
- 2009-07-13 21:10 . 2009-06-10 21:14 38744 c:\windows\Microsoft.NET\Framework\v3.5\AddInProcess.exe
+ 2011-07-02 21:08 . 2010-11-05 01:53 38744 c:\windows\Microsoft.NET\Framework\v3.5\AddInProcess.exe
- 2009-07-14 00:35 . 2009-06-10 21:14 67912 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PenIMC.dll
+ 2011-07-02 21:08 . 2010-11-05 01:53 67912 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PenIMC.dll
- 2009-07-14 00:36 . 2009-06-10 21:14 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll
+ 2011-07-02 21:07 . 2010-11-05 01:52 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll
- 2009-07-14 00:36 . 2009-06-10 21:14 73728 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.Install.dll
+ 2011-07-02 21:06 . 2010-11-05 01:52 73728 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.Install.dll
+ 2011-07-02 21:08 . 2010-11-05 01:58 32088 c:\windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Configuration.Install.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Configuration.Install.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
- 2009-07-13 20:46 . 2009-06-10 21:23 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
+ 2011-07-02 21:06 . 2010-11-05 01:58 53248 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
- 2009-07-13 20:46 . 2009-06-10 21:23 53248 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
+ 2011-07-02 21:08 . 2010-11-05 01:58 97608 c:\windows\Microsoft.NET\Framework\v2.0.50727\ngen.exe
- 2009-07-13 20:46 . 2009-06-10 21:23 97608 c:\windows\Microsoft.NET\Framework\v2.0.50727\ngen.exe
- 2009-07-13 20:46 . 2009-06-10 21:23 90960 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorld.dll
+ 2011-07-02 21:07 . 2010-11-05 01:57 90960 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorld.dll
+ 2011-07-02 21:07 . 2010-11-05 01:57 43344 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorie.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 43344 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorie.dll
+ 2011-07-02 21:08 . 2010-11-05 01:57 80208 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbc.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe
+ 2011-07-02 21:06 . 2010-11-05 01:57 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe
- 2009-07-13 20:46 . 2009-06-10 21:23 95056 c:\windows\Microsoft.NET\Framework\v2.0.50727\MmcAspExt.dll
+ 2011-07-02 21:07 . 2010-11-05 01:57 95056 c:\windows\Microsoft.NET\Framework\v2.0.50727\MmcAspExt.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Utilities.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Utilities.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Framework.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Framework.dll
- 2009-07-13 20:46 . 2009-06-10 21:22 72192 c:\windows\Microsoft.NET\Framework\v2.0.50727\ISymWrapper.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 72192 c:\windows\Microsoft.NET\Framework\v2.0.50727\ISymWrapper.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
- 2009-07-13 20:46 . 2009-06-10 21:22 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
+ 2011-07-02 21:08 . 2010-11-05 01:57 32072 c:\windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
+ 2011-07-02 21:06 . 2010-11-05 01:57 69120 c:\windows\Microsoft.NET\Framework\v2.0.50727\CustomMarshalers.dll
- 2009-07-13 20:46 . 2009-06-10 21:22 69120 c:\windows\Microsoft.NET\Framework\v2.0.50727\CustomMarshalers.dll
+ 2011-07-02 21:08 . 2010-11-05 01:57 86872 c:\windows\Microsoft.NET\Framework\v2.0.50727\CORPerfMonExt.dll
+ 2011-07-02 21:08 . 2010-11-05 01:57 30544 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
+ 2011-07-02 21:07 . 2010-11-05 01:57 30552 c:\windows\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
- 2009-07-13 20:46 . 2009-06-10 21:22 30552 c:\windows\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
+ 2011-07-02 21:08 . 2010-11-05 01:57 55632 c:\windows\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
- 2009-07-13 20:46 . 2009-06-10 21:22 55632 c:\windows\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
- 2009-07-13 20:46 . 2009-06-10 21:22 95560 c:\windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
+ 2011-07-02 21:08 . 2010-11-05 01:57 95560 c:\windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
+ 2011-07-02 21:08 . 2010-11-05 01:58 93520 c:\windows\Microsoft.NET\Framework\v1.0.3705\mscormmc.dll
+ 2011-07-02 21:09 . 2010-11-05 01:57 86864 c:\windows\Microsoft.NET\Framework\NETFXSBS10.exe
- 2009-07-14 00:24 . 2009-07-14 01:41 88576 c:\windows\ehome\NetBridge.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 88576 c:\windows\ehome\NetBridge.dll
- 2009-07-14 00:25 . 2009-07-14 01:51 56320 c:\windows\ehome\Microsoft.MediaCenter.Mheg.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 56320 c:\windows\ehome\Microsoft.MediaCenter.Mheg.dll
+ 2011-07-02 21:06 . 2010-11-20 13:03 42496 c:\windows\ehome\markup.dll
- 2009-07-14 00:24 . 2009-07-14 01:28 42496 c:\windows\ehome\markup.dll
- 2009-07-13 22:35 . 2009-07-14 01:20 94208 c:\windows\ehome\ehCIR.dll
+ 2011-07-02 21:06 . 2010-11-20 12:32 94208 c:\windows\ehome\ehCIR.dll
+ 2011-07-02 21:06 . 2010-11-20 12:57 67072 c:\windows\diagnostics\system\WindowsMediaPlayerConfiguration\DiagPackage.dll
+ 2011-07-02 21:06 . 2010-11-20 13:39 19968 c:\windows\diagnostics\system\HomeGroup\Microsoft-Windows-HomeGroupDiagnostic.NetListMgr.Interop.dll
- 2009-07-13 21:14 . 2009-07-14 01:46 19968 c:\windows\diagnostics\system\HomeGroup\Microsoft-Windows-HomeGroupDiagnostic.NetListMgr.Interop.dll
+ 2011-07-02 21:07 . 2010-11-20 13:24 71168 c:\windows\bfsvc.exe
- 2009-07-13 23:23 . 2009-07-14 01:38 71168 c:\windows\bfsvc.exe
+ 2012-06-23 16:09 . 2012-06-23 16:09 60416 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Pres#\93ee0d8b03d20f6b2d9875add13e23e8\System.Windows.Presentation.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 54784 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.DynamicD#\98acb62493655ab4e5cad815e8df664d\System.Web.DynamicData.Design.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 90624 c:\windows\assembly\NativeImages_v2.0.50727_64\stdole\70f1aed4a280583cbd09e0f5d9bbc1f5\stdole.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 72192 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFontCac#\0246845f487e5f33d3564eff578665a3\PresentationFontCache.ni.exe
+ 2012-06-23 15:34 . 2012-06-23 15:34 61952 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationCFFRast#\c0ad9f95f88a6678d9ab2a648f0f2eae\PresentationCFFRasterizer.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 33792 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.WSMan.Run#\4582b654b68ad17b90714875bd8c3fa2\Microsoft.WSMan.Runtime.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 43520 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\e97b40597db13e8a8151b30b9c59007e\Microsoft.Windows.Diagnosis.Commands.GetDiagInput.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 59904 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\dcc11202188c9fa2ba06359a04d4b43a\Microsoft.Windows.Diagnosis.SDHost.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 70144 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\a5daafd496ae30928b7ac626037af53c\Microsoft.Windows.Diagnosis.SDEngine.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 36864 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\a178c0607d3809c8334a450b9b839b43\Microsoft.Windows.Diagnosis.Commands.WriteDiagProgress.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 40448 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\1dd37db07c93d0d49379838760970302\Microsoft.Windows.Diagnosis.Commands.UpdateDiagRootcause.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 45056 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\03ab7eafba7f39a47e9e50e59551395a\Microsoft.Windows.Diagnosis.Commands.UpdateDiagReport.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 45056 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\e6d7c16069b54ab5e0dba436a9eb0e01\Microsoft.VisualStudio.Tools.Applications.Contract.v10.0.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 86016 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\d5a8069f7b83142864053c90838e7a96\Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 87040 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\bd1950e68286b869edc77261e0821c93\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v9.0.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 93696 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\bbe7b2d338397b14dbab217c610b0629\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v10.0.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 59904 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\a58534126a42a5dbdef4573bac06c734\Microsoft.VisualStudio.Tools.Office.Word.AddInAdapter.v9.0.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 84992 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\7ce846d8bc8059eb9c87504b39aba1e3\Microsoft.VisualStudio.Tools.Applications.HostAdapter.v10.0.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 71680 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\6e100177db1ef25970ca4a9eba03c352\Microsoft.VisualStudio.Tools.Applications.Contract.v9.0.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 43520 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\1f503665f8bdfc656829e4f233fe00cc\Microsoft.VisualStudio.Tools.Office.Contract.v10.0.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 59904 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\06216e3a9e4ca262bc1e9a3818ced7fe\Microsoft.VisualStudio.Tools.Office.Excel.AddInAdapter.v9.0.ni.dll
+ 2012-06-23 15:25 . 2012-06-23 15:25 32256 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualC\692d1ed105277febf1550c93d00cd202\Microsoft.VisualC.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 65536 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\5b9c2eae674609a3d84010c9906e0bf8\Microsoft.MediaCenter.iTv.Hosting.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 40960 c:\windows\assembly\NativeImages_v2.0.50727_64\LoadMxf\d09b54cd68bc772b3be3832926e940d4\LoadMxf.ni.exe
+ 2012-06-23 15:32 . 2012-06-23 15:32 49664 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiUPnP\8b58e86c1211cac8bb344ec05015055b\ehiUPnP.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 93184 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiTVMSMusic\32c163c5b3420fb95f4bc8b5a365a6bd\ehiTVMSMusic.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 28672 c:\windows\assembly\NativeImages_v2.0.50727_64\dfsvc\9bc0d921859b039d6e9f642148333949\dfsvc.ni.exe
+ 2012-06-23 15:32 . 2012-06-23 15:32 78848 c:\windows\assembly\NativeImages_v2.0.50727_64\Accessibility\b03641c39929ad202f0c3a9a64b93d86\Accessibility.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 61440 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLiveWriter\891f785e5137c08d54f5eb7ca4030e9d\WindowsLiveWriter.ni.exe
+ 2012-06-23 15:51 . 2012-06-23 15:51 81408 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\a5ee5448c2212b2fdeb54af14433fa7a\WindowsLive.Writer.Passport.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\ab8ac659d9525c6a0cd22c6f3734862f\UIAutomationProvider.ni.dll
+ 2012-06-23 15:54 . 2012-06-23 15:54 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\fee2bbfe0b8f5988a3ab7a9db85c7a30\System.Windows.Presentation.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\19ec2acb1a563ecfce8396babd4a3b25\System.Web.DynamicData.Design.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\221fa10bd3cb407e43b7476af5039090\System.ComponentModel.DataAnnotations.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\78ce3fd89c50ab2d8d0ffc42ad838644\System.AddIn.Contract.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 44032 c:\windows\assembly\NativeImages_v2.0.50727_32\stdole\2c6d60b55bbab22515c512080d4b3bae\stdole.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 76288 c:\windows\assembly\NativeImages_v2.0.50727_32\ShellLib\aff4903ed845618b7ace67adb368544d\ShellLib.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\b3ade8d5c0d4bb5d4940bcafd3453642\PresentationFontCache.ni.exe
+ 2012-06-23 15:29 . 2012-06-23 15:29 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\3e357e76593a8cc5346dc0431f4cdaa9\PresentationCFFRasterizer.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 79872 c:\windows\assembly\NativeImages_v2.0.50727_32\napcrypt\09b65f9c3f78e6ef3e259af945e937b9\napcrypt.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 17920 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.WSMan.Run#\86550fdda6994a9c192d7a0b9b59ee5b\Microsoft.WSMan.Runtime.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 27136 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Windows.D#\ee8ed3c8e7f0281a9e29c7cdf050b69d\Microsoft.Windows.Diagnosis.Commands.UpdateDiagReport.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 21504 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Windows.D#\e7904d77bcee77868d534546ed2a61b6\Microsoft.Windows.Diagnosis.SDEngine.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 32256 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Windows.D#\de64901e4cd2074f5c70733ab5d7787a\Microsoft.Windows.Diagnosis.SDHost.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 25088 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Windows.D#\b5e6aa065d13e30c27219186f8e02689\Microsoft.Windows.Diagnosis.Commands.GetDiagInput.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 23040 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Windows.D#\aa3fa7748881ce0969396eba0be3c6c3\Microsoft.Windows.Diagnosis.Commands.UpdateDiagRootcause.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 86528 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Windows.D#\90cd177df2fc13d88c401b6b53a121b8\Microsoft.Windows.Diagnosis.TroubleshootingPack.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 19968 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Windows.D#\0a5d39e601d2512b483a56408c3cec05\Microsoft.Windows.Diagnosis.Commands.WriteDiagProgress.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\a415a146afc72f13f691f69a11ab5609\Microsoft.Vsa.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 28160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\fd1cf4e736d6b312eac977974d613d35\Microsoft.VisualStudio.Tools.Applications.Contract.v10.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 43008 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\fc36797f7054935a6033077612905a0f\Microsoft.VisualStudio.Tools.Office.Excel.AddInAdapter.v9.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\f1a7ac664667f2d6bcd6c388b230c22b\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v9.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 66560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\c57ad67f3f9376f201236b8743f41043\Microsoft.VisualStudio.Tools.Applications.AddInAdapter.v10.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 51712 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\99b47ff04b25e114b6dd8dc8e0ae9f5c\Microsoft.VisualStudio.Tools.Applications.Runtime.v10.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 58368 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\4779a2f67e42e7a66cd4d9e054d66de6\Microsoft.VisualStudio.Tools.Applications.HostAdapter.v10.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 42496 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\367516b7878af19f5c84c67f2cd277ae\Microsoft.VisualStudio.Tools.Office.Word.AddInAdapter.v9.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 86016 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\31b42d9c9cfba95cf8d82c7536284d42\Microsoft.VisualStudio.Tools.Office.Outlook.HostAdapter.v10.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 28160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\147e0380bb1defe89cef3287b2e165f7\Microsoft.VisualStudio.Tools.Office.Contract.v10.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 35328 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\03cad6bd8b37d21b28dcb4f955be2158\Microsoft.VisualStudio.Tools.Applications.Contract.v9.0.ni.dll
+ 2012-06-23 15:27 . 2012-06-23 15:27 15872 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualC\4bfa36696bef033cf7e33b1a092c8a0f\Microsoft.VisualC.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\84b83e7639310b35b5ce150df62a2843\Microsoft.Build.Framework.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\4c0fa9d495ac562afcb136f3e9a87cb9\Microsoft.Build.Framework.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 78336 c:\windows\assembly\NativeImages_v2.0.50727_32\Kodak.Statistics\8e04f4f7b7a854f7c93f7ec1815d12f7\Kodak.Statistics.ni.exe
+ 2012-06-23 15:50 . 2012-06-23 15:50 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\Interop.WIA\832f7f7e8dd9eca6ef88672608ba0e39\Interop.WIA.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 98304 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.DeviceSettin#\461a6b9b8e4a45f5607b8be9fa8a1ee0\Inkjet.DeviceSettings.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 80896 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Configuration\34fe90ec82a78dd166f227e223c9b242\Inkjet.Configuration.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 52736 c:\windows\assembly\NativeImages_v2.0.50727_32\HRIntp.Interop\4b85f8c69dfd56ea31b9640182349568\HRIntp.Interop.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 68608 c:\windows\assembly\NativeImages_v2.0.50727_32\Helper\4dcf88ac7cc3d6ed69111aed3dc1149c\Helper.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 60416 c:\windows\assembly\NativeImages_v2.0.50727_32\ehiUserXp\f09ce1eab0d18a4bbd53ab2a67a5c909\ehiUserXp.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\2c3e7fda8de40e45e7f5e004094dc7c9\dfsvc.ni.exe
+ 2012-06-23 15:29 . 2012-06-23 15:29 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\9859a6e0562f64eacfb8ad76f260a2d6\Accessibility.ni.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 61440 c:\windows\assembly\GAC_MSIL\System.Web.Routing\3.5.0.0__31bf3856ad364e35\System.Web.Routing.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 61440 c:\windows\assembly\GAC_MSIL\System.Web.Routing\3.5.0.0__31bf3856ad364e35\System.Web.Routing.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 32768 c:\windows\assembly\GAC_MSIL\System.Web.DynamicData.Design\3.5.0.0__31bf3856ad364e35\System.Web.DynamicData.Design.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 32768 c:\windows\assembly\GAC_MSIL\System.Web.DynamicData.Design\3.5.0.0__31bf3856ad364e35\System.Web.DynamicData.Design.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 77824 c:\windows\assembly\GAC_MSIL\System.Web.Abstractions\3.5.0.0__31bf3856ad364e35\System.Web.Abstractions.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 77824 c:\windows\assembly\GAC_MSIL\System.Web.Abstractions\3.5.0.0__31bf3856ad364e35\System.Web.Abstractions.dll
- 2009-07-14 00:36 . 2009-06-10 21:14 32768 c:\windows\assembly\GAC_MSIL\System.ServiceModel.WasHosting\3.0.0.0__b77a5c561934e089\System.ServiceModel.WasHosting.dll
+ 2011-07-02 21:07 . 2010-11-05 01:52 32768 c:\windows\assembly\GAC_MSIL\System.ServiceModel.WasHosting\3.0.0.0__b77a5c561934e089\System.ServiceModel.WasHosting.dll
- 2009-07-14 00:36 . 2009-06-10 21:14 73728 c:\windows\assembly\GAC_MSIL\System.ServiceModel.Install\3.0.0.0__b77a5c561934e089\System.ServiceModel.Install.dll
+ 2011-07-02 21:06 . 2010-11-05 01:52 73728 c:\windows\assembly\GAC_MSIL\System.ServiceModel.Install\3.0.0.0__b77a5c561934e089\System.ServiceModel.Install.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 53248 c:\windows\assembly\GAC_MSIL\System.Data.DataSetExtensions\3.5.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 53248 c:\windows\assembly\GAC_MSIL\System.Data.DataSetExtensions\3.5.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 57344 c:\windows\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\3.5.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 57344 c:\windows\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\3.5.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 45056 c:\windows\assembly\GAC_MSIL\System.AddIn.Contract\2.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 45056 c:\windows\assembly\GAC_MSIL\System.AddIn.Contract\2.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
- 2009-07-14 05:35 . 2009-07-14 02:13 36864 c:\windows\assembly\GAC_MSIL\MMCEx.Resources\3.0.0.0_en_31bf3856ad364e35\MMCEx.Resources.dll
+ 2011-07-02 21:06 . 2010-11-20 12:19 36864 c:\windows\assembly\GAC_MSIL\MMCEx.Resources\3.0.0.0_en_31bf3856ad364e35\MMCEx.Resources.dll
+ 2011-07-02 21:06 . 2010-11-20 13:44 77824 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Security\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Security.dll
- 2009-07-13 21:37 . 2009-07-14 01:47 77824 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Security\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Security.dll
- 2009-07-14 05:35 . 2009-07-14 02:33 40960 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.ConsoleHost.Resources\1.0.0.0_en_31bf3856ad364e35\Microsoft.PowerShell.ConsoleHost.Resources.dll
+ 2011-07-02 21:06 . 2010-11-20 13:16 40960 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.ConsoleHost.Resources\1.0.0.0_en_31bf3856ad364e35\Microsoft.PowerShell.ConsoleHost.Resources.dll
- 2009-07-14 05:35 . 2009-07-14 02:33 36864 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Management.Resources\1.0.0.0_en_31bf3856ad364e35\Microsoft.PowerShell.Commands.Management.Resources.dll
+ 2011-07-02 21:06 . 2010-11-20 13:16 36864 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Management.Resources\1.0.0.0_en_31bf3856ad364e35\Microsoft.PowerShell.Commands.Management.Resources.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 94208 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.v3.5.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 94208 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.v3.5.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2011-07-02 21:06 . 2010-11-20 12:32 94208 c:\windows\assembly\GAC_MSIL\ehCIR\6.1.0.0__31bf3856ad364e35\ehCIR.dll
- 2009-07-13 22:35 . 2009-07-14 01:20 94208 c:\windows\assembly\GAC_MSIL\ehCIR\6.1.0.0__31bf3856ad364e35\ehCIR.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 50176 c:\windows\assembly\GAC_64\napcrypt\6.1.0.0__31bf3856ad364e35\NAPCRYPT.DLL
- 2009-07-14 00:09 . 2009-07-14 01:51 50176 c:\windows\assembly\GAC_64\napcrypt\6.1.0.0__31bf3856ad364e35\NAPCRYPT.DLL
+ 2011-07-02 21:08 . 2010-11-05 01:53 83792 c:\windows\assembly\GAC_64\MSBuild\3.5.0.0__b03f5f7f11d50a3a\MSBuild.exe
+ 2011-07-02 21:07 . 2010-11-20 13:44 56320 c:\windows\assembly\GAC_64\Microsoft.MediaCenter.Mheg\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.Mheg.dll
- 2009-07-14 00:25 . 2009-07-14 01:51 56320 c:\windows\assembly\GAC_64\Microsoft.MediaCenter.Mheg\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.Mheg.dll
+ 2011-07-02 21:06 . 2010-11-20 13:39 19968 c:\windows\assembly\GAC_64\Microsoft-Windows-HomeGroupDiagnostic.NetListMgr.Interop\6.1.0.0__31bf3856ad364e35\Microsoft-Windows-HomeGroupDiagnostic.NetListMgr.Interop.dll
- 2009-07-13 21:14 . 2009-07-14 01:46 19968 c:\windows\assembly\GAC_64\Microsoft-Windows-HomeGroupDiagnostic.NetListMgr.Interop\6.1.0.0__31bf3856ad364e35\Microsoft-Windows-HomeGroupDiagnostic.NetListMgr.Interop.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 89600 c:\windows\assembly\GAC_64\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2009-07-13 20:37 . 2009-06-10 20:39 89600 c:\windows\assembly\GAC_64\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 80896 c:\windows\assembly\GAC_64\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2009-07-13 20:37 . 2009-06-10 20:39 80896 c:\windows\assembly\GAC_64\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-07-02 21:07 . 2010-11-20 12:36 46080 c:\windows\assembly\GAC_32\napcrypt\6.1.0.0__31bf3856ad364e35\NAPCRYPT.DLL
- 2009-07-13 23:53 . 2009-07-14 01:22 46080 c:\windows\assembly\GAC_32\napcrypt\6.1.0.0__31bf3856ad364e35\NAPCRYPT.DLL
- 2009-07-13 20:46 . 2009-06-10 21:22 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2009-07-13 20:46 . 2009-06-10 21:22 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
+ 2011-08-10 18:31 . 2011-07-16 04:26 44032 c:\windows\AppPatch\acwow64.dll
- 2011-08-10 18:31 . 2011-07-16 04:32 44032 c:\windows\AppPatch\acwow64.dll
+ 2011-08-10 18:31 . 2011-07-16 04:24 5120 c:\windows\SysWOW64\wow32.dll
- 2011-08-10 18:31 . 2011-07-16 04:30 5120 c:\windows\SysWOW64\wow32.dll
+ 2012-04-12 04:39 . 2012-03-01 05:29 5120 c:\windows\SysWOW64\wmi.dll
- 2012-04-12 04:39 . 2012-03-01 05:40 5120 c:\windows\SysWOW64\wmi.dll
+ 2011-08-10 18:31 . 2011-07-16 02:21 2048 c:\windows\SysWOW64\user.exe
- 2011-08-10 18:31 . 2011-07-16 02:26 2048 c:\windows\SysWOW64\user.exe
+ 2011-12-15 20:57 . 2011-11-05 04:26 2048 c:\windows\SysWOW64\tzres.dll
- 2011-12-15 20:57 . 2011-11-05 04:30 2048 c:\windows\SysWOW64\tzres.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 9728 c:\windows\SysWOW64\sscore.dll
- 2011-01-15 04:11 . 2010-08-27 05:46 9728 c:\windows\SysWOW64\sscore.dll
+ 2011-07-02 21:06 . 2010-11-20 12:20 8192 c:\windows\SysWOW64\spwmp.dll
- 2009-07-14 00:08 . 2009-07-14 01:16 8192 c:\windows\SysWOW64\spwmp.dll
+ 2011-07-02 21:06 . 2010-11-20 12:07 7680 c:\windows\SysWOW64\spwizres.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 8704 c:\windows\SysWOW64\riched32.dll
+ 2011-07-02 21:06 . 2010-11-20 12:08 6656 c:\windows\SysWOW64\KBDUS.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 6656 c:\windows\SysWOW64\KBDUGHR1.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 6656 c:\windows\SysWOW64\KBDTURME.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7680 c:\windows\SysWOW64\KBDTUQ.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7680 c:\windows\SysWOW64\KBDTUF.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 6656 c:\windows\SysWOW64\KBDTAJIK.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7680 c:\windows\SysWOW64\KBDSG.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7168 c:\windows\SysWOW64\KBDSF.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7168 c:\windows\SysWOW64\KBDPO.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7168 c:\windows\SysWOW64\KBDNEPR.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 6656 c:\windows\SysWOW64\KBDMON.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 6656 c:\windows\SysWOW64\KBDMAORI.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 6656 c:\windows\SysWOW64\KBDLT1.DLL

Tony Lillie · Jun 23, 2012

More ComboFix:

+ 2011-07-02 21:06 . 2010-11-20 12:08 7680 c:\windows\SysWOW64\kbdlk41a.dll
+ 2011-07-02 21:06 . 2010-11-20 12:08 6656 c:\windows\SysWOW64\KBDINTEL.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7168 c:\windows\SysWOW64\KBDINTAM.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7168 c:\windows\SysWOW64\KBDINORI.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7168 c:\windows\SysWOW64\KBDINMAR.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7168 c:\windows\SysWOW64\KBDINKAN.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7168 c:\windows\SysWOW64\KBDINHIN.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7168 c:\windows\SysWOW64\KBDINBEN.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7680 c:\windows\SysWOW64\KBDGR1.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7680 c:\windows\SysWOW64\KBDGKL.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 6656 c:\windows\SysWOW64\KBDGEO.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 7680 c:\windows\SysWOW64\KBDCZ1.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 6656 c:\windows\SysWOW64\KBDBULG.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 6656 c:\windows\SysWOW64\KBDBLR.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 6656 c:\windows\SysWOW64\KBDBASH.DLL
+ 2011-08-10 18:31 . 2011-07-16 02:21 7680 c:\windows\SysWOW64\instnm.exe
- 2011-08-10 18:31 . 2011-07-16 02:26 7680 c:\windows\SysWOW64\instnm.exe
- 2009-07-14 00:09 . 2009-07-14 01:16 4096 c:\windows\SysWOW64\dxmasf.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 4096 c:\windows\SysWOW64\dxmasf.dll
+ 2011-07-02 21:06 . 2010-11-20 11:57 2560 c:\windows\SysWOW64\dpnaddr.dll
- 2011-08-10 18:31 . 2011-07-16 02:21 6144 c:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 02:17 6144 c:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 02:21 3584 c:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 02:17 3584 c:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 02:21 3072 c:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 02:17 3072 c:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 02:21 4608 c:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 02:17 4608 c:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 4096 c:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 4096 c:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 4096 c:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 4096 c:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3072 c:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3072 c:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3072 c:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3072 c:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3072 c:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3072 c:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 4608 c:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 4608 c:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3584 c:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3584 c:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3584 c:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3584 c:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 4096 c:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 4096 c:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3584 c:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3584 c:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 4096 c:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 4096 c:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 4096 c:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 4096 c:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3584 c:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3584 c:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3072 c:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3072 c:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3584 c:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3584 c:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3584 c:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3584 c:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3072 c:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3072 c:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 5120 c:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 5120 c:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3072 c:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3072 c:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3072 c:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3072 c:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3072 c:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3072 c:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3072 c:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3072 c:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3072 c:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3072 c:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 04:15 3072 c:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 04:19 3072 c:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
- 2012-04-12 04:39 . 2012-03-01 06:35 5120 c:\windows\system32\wmi.dll
+ 2012-04-12 04:39 . 2012-03-01 06:28 5120 c:\windows\system32\wmi.dll
+ 2011-01-14 21:25 . 2012-06-24 00:38 7904 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-959162889-2114385041-1396956070-1000_UserData.bin
- 2011-12-15 20:57 . 2011-11-05 05:17 2048 c:\windows\system32\tzres.dll
+ 2011-12-15 20:57 . 2011-11-05 05:32 2048 c:\windows\system32\tzres.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 8192 c:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
+ 2011-07-02 21:06 . 2010-11-20 13:27 9728 c:\windows\system32\spwmp.dll
- 2009-07-14 00:23 . 2009-07-14 01:41 9728 c:\windows\system32\spwmp.dll
+ 2011-07-02 21:06 . 2010-11-20 13:14 7680 c:\windows\system32\spwizres.dll
+ 2012-06-14 03:07 . 2012-04-26 05:34 9216 c:\windows\system32\rdrmemptylst.exe
- 2012-06-14 03:07 . 2012-04-26 05:28 9216 c:\windows\system32\rdrmemptylst.exe
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDUS.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDUGHR1.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDTURME.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 8192 c:\windows\system32\KBDTUQ.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 8192 c:\windows\system32\KBDTUF.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDTAJIK.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 8192 c:\windows\system32\KBDSG.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7680 c:\windows\system32\KBDSF.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7680 c:\windows\system32\KBDPO.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7680 c:\windows\system32\KBDNEPR.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDMON.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDMAORI.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDLT1.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 8192 c:\windows\system32\kbdlk41a.dll
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDINTEL.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7680 c:\windows\system32\KBDINTAM.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDINORI.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDINMAR.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDINKAN.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDINHIN.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7680 c:\windows\system32\KBDINBEN.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7680 c:\windows\system32\KBDGR1.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 8192 c:\windows\system32\KBDGKL.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 6656 c:\windows\system32\KBDGEO.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 8192 c:\windows\system32\KBDCZ1.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDBULG.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDBLR.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:02 7168 c:\windows\system32\KBDBASH.DLL
- 2009-07-14 00:23 . 2009-07-14 01:41 5120 c:\windows\system32\dxmasf.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 5120 c:\windows\system32\dxmasf.dll
+ 2009-07-14 00:06 . 2009-07-14 00:06 7936 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_f935002f367d5bb0\usbd.sys
+ 2011-05-12 13:39 . 2011-03-25 03:28 7936 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_189259810882aaea\usbd.sys
+ 2009-07-14 00:06 . 2009-07-14 01:40 9728 c:\windows\system32\DriverStore\FileRepository\usbcir.inf_amd64_neutral_379fb0c62496be6e\CIRCoInst.dll
+ 2009-07-13 23:31 . 2009-07-13 23:31 9728 c:\windows\system32\DriverStore\FileRepository\acpi.inf_amd64_neutral_aed2e7a487803437\errdev.sys
+ 2011-05-12 13:39 . 2011-03-25 03:28 7936 c:\windows\system32\drivers\usbd.sys
- 2011-05-12 13:39 . 2011-03-29 03:32 7936 c:\windows\system32\drivers\usbd.sys
+ 2011-07-02 21:06 . 2010-11-20 12:58 3072 c:\windows\system32\dpnaddr.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 6144 c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 6144 c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3072 c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3072 c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3072 c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3072 c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
+ 2011-07-02 21:06 . 2010-11-20 12:51 3072 c:\windows\system32\api-ms-win-core-ums-l1-1-0.dll
- 2009-07-13 23:21 . 2009-07-14 01:24 3072 c:\windows\system32\api-ms-win-core-ums-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 4608 c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 4608 c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 4096 c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 4096 c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 4096 c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 4096 c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3072 c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3072 c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3584 c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3584 c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3072 c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3072 c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 4608 c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 4608 c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3584 c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3584 c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3584 c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3584 c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3584 c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3584 c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3584 c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3584 c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 4096 c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 4096 c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 4096 c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 4096 c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3584 c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3584 c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3072 c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3072 c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3072 c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3072 c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3584 c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3584 c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3072 c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3072 c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 5120 c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 5120 c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3072 c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3072 c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3072 c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3072 c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3072 c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3072 c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3072 c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3072 c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3072 c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3072 c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
+ 2011-08-10 18:31 . 2011-07-16 05:21 3072 c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
- 2011-08-10 18:31 . 2011-07-16 05:04 3072 c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
- 2012-06-22 16:26 . 2012-06-22 16:26 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-06-23 15:43 . 2012-06-24 00:36 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-06-23 15:43 . 2012-06-24 00:36 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2012-06-22 16:26 . 2012-06-22 16:26 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-07-02 21:06 . 2010-11-20 12:19 4096 c:\windows\assembly\GAC_MSIL\MMCFxCommon.Resources\3.0.0.0_en_31bf3856ad364e35\MMCFxCommon.Resources.dll
- 2009-07-14 05:35 . 2009-07-14 02:13 4096 c:\windows\assembly\GAC_MSIL\MMCFxCommon.Resources\3.0.0.0_en_31bf3856ad364e35\MMCFxCommon.Resources.dll
- 2009-07-14 05:35 . 2009-07-14 02:33 4096 c:\windows\assembly\GAC_MSIL\Microsoft.Windows.Diagnosis.SDHost.Resources\1.0.0.0_en_31bf3856ad364e35\Microsoft.Windows.Diagnosis.SDHost.resources.dll
+ 2011-07-02 21:06 . 2010-11-20 13:16 4096 c:\windows\assembly\GAC_MSIL\Microsoft.Windows.Diagnosis.SDHost.Resources\1.0.0.0_en_31bf3856ad364e35\Microsoft.Windows.Diagnosis.SDHost.resources.dll
+ 2011-07-02 21:06 . 2010-11-20 13:16 7168 c:\windows\assembly\GAC_MSIL\Microsoft.BackgroundIntelligentTransfer.Management.Resources\1.0.0.0_en_31bf3856ad364e35\Microsoft.BackgroundIntelligentTransfer.Management.resources.dll
- 2009-07-14 05:35 . 2009-07-14 02:32 7168 c:\windows\assembly\GAC_MSIL\Microsoft.BackgroundIntelligentTransfer.Management.Resources\1.0.0.0_en_31bf3856ad364e35\Microsoft.BackgroundIntelligentTransfer.Management.resources.dll
- 2009-07-14 05:35 . 2009-07-14 02:12 8192 c:\windows\assembly\GAC_MSIL\EventViewer.Resources\6.1.0.0_en_31bf3856ad364e35\EventViewer.resources.dll
+ 2011-07-02 21:06 . 2010-11-20 12:19 8192 c:\windows\assembly\GAC_MSIL\EventViewer.Resources\6.1.0.0_en_31bf3856ad364e35\EventViewer.resources.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 327680 c:\windows\SysWOW64\zipfldr.dll
- 2009-07-13 23:40 . 2009-07-14 01:16 327680 c:\windows\SysWOW64\zipfldr.dll
- 2011-01-15 04:05 . 2010-11-02 04:41 135168 c:\windows\SysWOW64\XpsRasterService.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 135168 c:\windows\SysWOW64\XpsRasterService.dll
+ 2011-04-26 23:58 . 2011-03-12 11:23 870912 c:\windows\SysWOW64\XpsPrint.dll
+ 2011-04-15 00:30 . 2011-02-24 05:38 288256 c:\windows\SysWOW64\XpsGdiConverter.dll
- 2011-04-15 00:30 . 2011-02-24 05:32 288256 c:\windows\SysWOW64\XpsGdiConverter.dll
+ 2011-08-10 18:32 . 2011-06-16 04:33 180224 c:\windows\SysWOW64\xmllite.dll
- 2011-08-10 18:32 . 2011-06-16 04:35 180224 c:\windows\SysWOW64\xmllite.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 444928 c:\windows\SysWOW64\wvc.dll
- 2009-07-13 23:19 . 2009-07-14 01:16 444928 c:\windows\SysWOW64\wvc.dll
- 2009-07-14 00:14 . 2009-07-14 01:16 164352 c:\windows\SysWOW64\wuwebv.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 164352 c:\windows\SysWOW64\wuwebv.dll
- 2009-07-13 23:22 . 2009-07-14 01:14 314880 c:\windows\SysWOW64\wusa.exe
+ 2011-07-02 21:07 . 2010-11-20 12:17 314880 c:\windows\SysWOW64\wusa.exe
- 2009-07-14 00:14 . 2009-07-14 01:16 560128 c:\windows\SysWOW64\wuapi.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 560128 c:\windows\SysWOW64\wuapi.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 458752 c:\windows\SysWOW64\WSDApi.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 206848 c:\windows\SysWOW64\ws2_32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 198144 c:\windows\SysWOW64\wpdwcn.dll
- 2009-07-14 00:07 . 2009-07-14 01:16 198144 c:\windows\SysWOW64\wpdwcn.dll
- 2009-07-14 00:06 . 2009-07-14 01:16 350720 c:\windows\SysWOW64\WPDSp.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 350720 c:\windows\SysWOW64\WPDSp.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 105984 c:\windows\SysWOW64\WPDShServiceObj.dll
- 2009-07-14 00:07 . 2009-07-14 01:16 105984 c:\windows\SysWOW64\WPDShServiceObj.dll
- 2009-07-14 00:09 . 2009-07-14 01:16 541184 c:\windows\SysWOW64\WMVSDECD.DLL
+ 2011-07-02 21:07 . 2010-11-20 12:21 541184 c:\windows\SysWOW64\WMVSDECD.DLL
- 2009-07-14 00:08 . 2009-07-14 01:16 739328 c:\windows\SysWOW64\WMSPDMOD.DLL
+ 2011-07-02 21:07 . 2010-11-20 12:21 739328 c:\windows\SysWOW64\WMSPDMOD.DLL
+ 2011-07-02 21:07 . 2010-11-20 12:21 182272 c:\windows\SysWOW64\wmpsrcwp.dll
- 2009-07-14 00:08 . 2009-07-14 01:16 182272 c:\windows\SysWOW64\wmpsrcwp.dll
- 2009-07-14 00:09 . 2009-07-14 01:16 105472 c:\windows\SysWOW64\wmpshell.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 105472 c:\windows\SysWOW64\wmpshell.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 144384 c:\windows\SysWOW64\wmpps.dll
- 2011-01-15 04:17 . 2010-08-21 05:36 738816 c:\windows\SysWOW64\wmpmde.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 738816 c:\windows\SysWOW64\wmpmde.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 318464 c:\windows\SysWOW64\WMPhoto.dll
- 2009-07-14 00:07 . 2009-07-14 01:16 318464 c:\windows\SysWOW64\WMPhoto.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 352256 c:\windows\SysWOW64\wmpeffects.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 299520 c:\windows\SysWOW64\wmpdxm.dll
- 2009-07-14 00:09 . 2009-07-14 01:16 299520 c:\windows\SysWOW64\wmpdxm.dll
- 2009-07-14 00:06 . 2009-07-14 01:16 616960 c:\windows\SysWOW64\wmdrmsdk.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 616960 c:\windows\SysWOW64\wmdrmsdk.dll
- 2009-07-14 00:05 . 2009-07-14 01:16 436736 c:\windows\SysWOW64\wmdrmnet.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 436736 c:\windows\SysWOW64\wmdrmnet.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 507392 c:\windows\SysWOW64\wmdrmdev.dll
- 2009-07-14 00:06 . 2009-07-14 01:16 507392 c:\windows\SysWOW64\wmdrmdev.dll
- 2009-07-14 00:08 . 2009-07-14 01:16 902656 c:\windows\SysWOW64\WMADMOD.DLL
+ 2011-07-02 21:07 . 2010-11-20 12:21 902656 c:\windows\SysWOW64\WMADMOD.DLL
+ 2011-07-02 21:09 . 2010-11-20 12:21 269824 c:\windows\SysWOW64\Wldap32.dll
- 2009-07-13 23:52 . 2009-07-14 01:16 410112 c:\windows\SysWOW64\wlanui.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 410112 c:\windows\SysWOW64\wlanui.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 428032 c:\windows\SysWOW64\wlanmsm.dll
- 2009-07-13 23:51 . 2009-07-14 01:16 428032 c:\windows\SysWOW64\wlanmsm.dll
- 2009-07-13 23:51 . 2009-07-14 01:16 411648 c:\windows\SysWOW64\wlangpui.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 411648 c:\windows\SysWOW64\wlangpui.dll
+ 2012-04-12 04:39 . 2012-03-01 05:37 172544 c:\windows\SysWOW64\wintrust.dll

Tony Lillie · Jun 23, 2012

More ComboFix:

- 2012-04-12 04:39 . 2012-03-01 05:49 172544 c:\windows\SysWOW64\wintrust.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 156672 c:\windows\SysWOW64\winsta.dll
+ 2011-07-02 21:08 . 2010-11-20 12:16 320000 c:\windows\SysWOW64\winspool.drv
+ 2011-07-02 21:08 . 2010-11-20 12:21 134656 c:\windows\SysWOW64\WinSCard.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 335872 c:\windows\SysWOW64\WinSATAPI.dll
- 2009-07-13 23:22 . 2009-07-14 01:16 335872 c:\windows\SysWOW64\WinSATAPI.dll
- 2009-07-14 00:03 . 2009-07-14 01:16 194048 c:\windows\SysWOW64\winmm.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 194048 c:\windows\SysWOW64\winmm.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 351232 c:\windows\SysWOW64\winhttp.dll
- 2009-07-13 23:32 . 2009-07-14 01:23 154624 c:\windows\SysWOW64\WindowsPowerShell\v1.0\pspluginwkr.dll
+ 2011-07-02 21:07 . 2010-11-20 12:36 154624 c:\windows\SysWOW64\WindowsPowerShell\v1.0\pspluginwkr.dll
+ 2011-07-02 21:07 . 2010-11-20 12:32 104448 c:\windows\SysWOW64\WindowsPowerShell\v1.0\Modules\BitsTransfer\Microsoft.BackgroundIntelligentTransfer.Management.Interop.dll
- 2009-07-13 23:29 . 2009-07-14 01:20 104448 c:\windows\SysWOW64\WindowsPowerShell\v1.0\Modules\BitsTransfer\Microsoft.BackgroundIntelligentTransfer.Management.Interop.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 492032 c:\windows\SysWOW64\win32spl.dll
- 2009-07-13 23:18 . 2009-07-14 01:14 327680 c:\windows\SysWOW64\wimserv.exe
+ 2011-07-02 21:07 . 2010-11-20 12:17 327680 c:\windows\SysWOW64\wimserv.exe
+ 2011-07-02 21:07 . 2010-11-20 12:21 406528 c:\windows\SysWOW64\wimgapi.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 109568 c:\windows\SysWOW64\wiavideo.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 416768 c:\windows\SysWOW64\wiadefui.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 381440 c:\windows\SysWOW64\wer.dll
- 2009-07-13 23:46 . 2009-07-14 01:16 782336 c:\windows\SysWOW64\webservices.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 782336 c:\windows\SysWOW64\webservices.dll
+ 2012-01-13 20:54 . 2011-11-17 05:35 314880 c:\windows\SysWOW64\webio.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 204800 c:\windows\SysWOW64\WebClnt.dll
- 2011-02-09 15:35 . 2010-12-21 05:38 204800 c:\windows\SysWOW64\WebClnt.dll
+ 2011-07-02 21:05 . 2010-11-20 12:21 189952 c:\windows\SysWOW64\wdscore.dll
- 2009-07-13 23:17 . 2009-07-14 01:16 189952 c:\windows\SysWOW64\wdscore.dll
- 2009-07-14 00:03 . 2009-07-14 01:14 172032 c:\windows\SysWOW64\wdmaud.drv
+ 2011-07-02 21:07 . 2010-11-20 12:16 172032 c:\windows\SysWOW64\wdmaud.drv
- 2011-02-23 03:44 . 2010-09-14 06:07 276992 c:\windows\SysWOW64\wcncsvc.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 276992 c:\windows\SysWOW64\wcncsvc.dll
+ 2011-07-02 21:05 . 2010-11-20 12:21 363008 c:\windows\SysWOW64\wbemcomn.dll
+ 2011-07-02 21:09 . 2010-11-20 12:17 257536 c:\windows\SysWOW64\wbem\WmiPrvSE.exe
+ 2011-07-02 21:08 . 2010-11-20 12:21 131072 c:\windows\SysWOW64\wbem\WmiDcPrv.dll
- 2009-07-13 23:30 . 2009-07-14 01:16 131072 c:\windows\SysWOW64\wbem\WmiDcPrv.dll
- 2009-07-13 23:30 . 2009-07-14 01:16 135680 c:\windows\SysWOW64\wbem\viewprov.dll
+ 2011-07-02 21:06 . 2010-11-20 12:21 135680 c:\windows\SysWOW64\wbem\viewprov.dll
+ 2011-07-02 21:05 . 2010-11-20 12:19 606208 c:\windows\SysWOW64\wbem\fastprox.dll
- 2009-07-14 00:19 . 2009-07-14 01:16 222208 c:\windows\SysWOW64\wavemsp.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 222208 c:\windows\SysWOW64\wavemsp.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 160256 c:\windows\SysWOW64\vdsbas.dll
- 2009-07-13 23:23 . 2009-07-14 01:16 160256 c:\windows\SysWOW64\vdsbas.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 933376 c:\windows\SysWOW64\Vault.dll
- 2009-07-13 23:37 . 2009-07-14 01:16 933376 c:\windows\SysWOW64\Vault.dll
- 2009-07-13 23:55 . 2009-07-14 01:16 638976 c:\windows\SysWOW64\VAN.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 638976 c:\windows\SysWOW64\VAN.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 118784 c:\windows\SysWOW64\uxlib.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 626176 c:\windows\SysWOW64\usp10.dll
- 2009-07-13 23:40 . 2009-07-14 01:16 600064 c:\windows\SysWOW64\usercpl.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 600064 c:\windows\SysWOW64\usercpl.dll
+ 2011-07-02 21:09 . 2010-11-20 12:08 833024 c:\windows\SysWOW64\user32.dll
- 2009-07-13 23:24 . 2009-07-14 01:11 833024 c:\windows\SysWOW64\user32.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 206848 c:\windows\SysWOW64\upnp.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 346624 c:\windows\SysWOW64\untfs.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 146432 c:\windows\SysWOW64\twext.dll
- 2009-07-13 23:39 . 2009-07-14 01:16 146432 c:\windows\SysWOW64\twext.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 597504 c:\windows\SysWOW64\TSWorkspace.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 270848 c:\windows\SysWOW64\tsmf.dll
- 2009-07-14 00:20 . 2009-07-14 01:16 352768 c:\windows\SysWOW64\termmgr.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 352768 c:\windows\SysWOW64\termmgr.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 181760 c:\windows\SysWOW64\tcpipcfg.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 505856 c:\windows\SysWOW64\taskschd.dll
- 2009-07-13 23:20 . 2009-07-14 01:14 227328 c:\windows\SysWOW64\taskmgr.exe
+ 2011-07-02 21:08 . 2010-11-20 12:17 227328 c:\windows\SysWOW64\taskmgr.exe
- 2011-01-15 04:03 . 2010-11-02 04:34 192000 c:\windows\SysWOW64\taskeng.exe
+ 2011-07-02 21:09 . 2010-11-20 12:17 192000 c:\windows\SysWOW64\taskeng.exe
+ 2011-07-02 21:09 . 2010-11-20 12:21 305152 c:\windows\SysWOW64\taskcomp.dll
- 2011-01-15 04:03 . 2010-11-02 04:40 305152 c:\windows\SysWOW64\taskcomp.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 242176 c:\windows\SysWOW64\tapisrv.dll
- 2011-01-15 04:18 . 2010-08-26 04:39 109056 c:\windows\SysWOW64\t2embed.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 109056 c:\windows\SysWOW64\t2embed.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 410624 c:\windows\SysWOW64\systemcpl.dll
- 2009-07-13 23:40 . 2009-07-14 01:16 410624 c:\windows\SysWOW64\systemcpl.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 159232 c:\windows\SysWOW64\syncui.dll
- 2009-07-13 23:16 . 2009-07-14 01:16 380416 c:\windows\SysWOW64\sxs.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 380416 c:\windows\SysWOW64\sxs.dll
- 2009-07-13 23:40 . 2009-07-14 01:16 755200 c:\windows\SysWOW64\sud.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 755200 c:\windows\SysWOW64\sud.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 363520 c:\windows\SysWOW64\StructuredQuery.dll
- 2011-01-15 04:11 . 2010-05-05 06:46 363520 c:\windows\SysWOW64\StructuredQuery.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 228352 c:\windows\SysWOW64\stobject.dll
+ 2011-07-02 21:07 . 2010-11-20 12:16 293888 c:\windows\SysWOW64\ssText3d.scr
- 2009-07-13 23:41 . 2009-07-14 01:14 293888 c:\windows\SysWOW64\ssText3d.scr
+ 2011-07-02 21:08 . 2010-11-20 12:21 301568 c:\windows\SysWOW64\srchadmin.dll
- 2009-07-13 23:41 . 2009-07-14 01:16 301568 c:\windows\SysWOW64\srchadmin.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 189952 c:\windows\SysWOW64\sqmapi.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 778240 c:\windows\SysWOW64\sqlsrv32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 309760 c:\windows\SysWOW64\sqlcese30.dll
- 2009-07-14 00:07 . 2009-07-14 01:16 309760 c:\windows\SysWOW64\sqlcese30.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 352768 c:\windows\SysWOW64\spwizeng.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 100864 c:\windows\SysWOW64\sppinst.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 193536 c:\windows\SysWOW64\sppcomapi.dll
+ 2011-07-02 21:06 . 2010-11-20 12:20 121344 c:\windows\SysWOW64\sppc.dll
- 2009-07-14 00:41 . 2009-07-14 01:16 121344 c:\windows\SysWOW64\sppc.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 172544 c:\windows\SysWOW64\spp.dll
- 2009-07-14 00:04 . 2009-07-14 01:16 220160 c:\windows\SysWOW64\SndVolSSO.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 220160 c:\windows\SysWOW64\SndVolSSO.dll
+ 2011-07-02 21:07 . 2010-11-20 12:17 314368 c:\windows\SysWOW64\SndVol.exe
- 2009-07-14 00:04 . 2009-07-14 01:14 314368 c:\windows\SysWOW64\SndVol.exe
- 2009-07-13 23:33 . 2009-07-14 01:16 152064 c:\windows\SysWOW64\SmartcardCredentialProvider.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 152064 c:\windows\SysWOW64\SmartcardCredentialProvider.dll
- 2009-07-13 23:40 . 2009-07-14 01:16 428544 c:\windows\SysWOW64\shwebsvc.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 428544 c:\windows\SysWOW64\shwebsvc.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 328192 c:\windows\SysWOW64\shsvcs.dll
- 2009-07-13 23:39 . 2009-07-14 01:16 328192 c:\windows\SysWOW64\shsvcs.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 111104 c:\windows\SysWOW64\shsetup.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 350208 c:\windows\SysWOW64\shlwapi.dll
- 2009-07-13 23:39 . 2009-07-14 01:16 350208 c:\windows\SysWOW64\shlwapi.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 179712 c:\windows\SysWOW64\shdocvw.dll
- 2009-07-13 23:39 . 2009-07-14 01:16 179712 c:\windows\SysWOW64\shdocvw.dll
- 2009-07-13 23:39 . 2009-07-14 01:16 108032 c:\windows\SysWOW64\shacct.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 108032 c:\windows\SysWOW64\shacct.dll
+ 2011-07-02 21:07 . 2010-11-20 12:17 113152 c:\windows\SysWOW64\setupugc.exe
+ 2011-07-02 21:07 . 2010-11-20 12:21 115712 c:\windows\SysWOW64\setupcln.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 172544 c:\windows\SysWOW64\Setup\RasMigPlugin.dll
+ 2011-07-02 21:07 . 2010-11-20 12:17 270336 c:\windows\SysWOW64\sethc.exe
- 2009-07-14 00:13 . 2009-07-14 01:14 270336 c:\windows\SysWOW64\sethc.exe
+ 2011-07-02 21:09 . 2010-11-20 12:21 113664 c:\windows\SysWOW64\SessEnv.dll
+ 2011-07-02 21:10 . 2010-11-20 12:21 423936 c:\windows\SysWOW64\secproc_isv.dll
+ 2011-07-02 21:10 . 2010-11-20 12:20 428032 c:\windows\SysWOW64\secproc.dll
- 2011-06-29 00:07 . 2011-05-04 04:52 164352 c:\windows\SysWOW64\SearchProtocolHost.exe
+ 2011-06-29 00:07 . 2011-05-04 04:28 164352 c:\windows\SysWOW64\SearchProtocolHost.exe
+ 2011-06-29 00:07 . 2011-05-04 04:28 427520 c:\windows\SysWOW64\SearchIndexer.exe
+ 2011-07-02 21:09 . 2010-11-20 12:21 646144 c:\windows\SysWOW64\SearchFolder.dll
+ 2011-07-02 21:08 . 2010-11-20 12:17 179712 c:\windows\SysWOW64\schtasks.exe
- 2011-01-15 04:03 . 2010-11-02 04:34 179712 c:\windows\SysWOW64\schtasks.exe
+ 2012-01-13 20:54 . 2011-11-17 05:34 224768 c:\windows\SysWOW64\schannel.dll
- 2012-01-13 20:54 . 2011-11-17 05:39 224768 c:\windows\SysWOW64\schannel.dll
- 2009-07-13 23:33 . 2009-07-14 01:16 307712 c:\windows\SysWOW64\scesrv.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 307712 c:\windows\SysWOW64\scesrv.dll
- 2009-07-13 23:33 . 2009-07-14 01:16 175616 c:\windows\SysWOW64\scecli.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 175616 c:\windows\SysWOW64\scecli.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 246272 c:\windows\SysWOW64\scansetting.dll
+ 2011-03-08 21:28 . 2010-12-23 05:54 850944 c:\windows\SysWOW64\sbe.dll
+ 2011-07-02 21:07 . 2010-11-20 12:08 663040 c:\windows\SysWOW64\rpcrt4.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 139264 c:\windows\SysWOW64\rpchttp.dll
+ 2011-07-02 21:06 . 2010-11-20 12:17 278016 c:\windows\SysWOW64\RMActivate_ssp_isv.exe
- 2010-07-22 00:04 . 2010-07-22 00:04 280064 c:\windows\SysWOW64\RMActivate_ssp.exe
+ 2011-07-02 21:06 . 2010-11-20 12:17 280064 c:\windows\SysWOW64\RMActivate_ssp.exe
+ 2011-07-02 21:10 . 2010-11-20 12:17 327168 c:\windows\SysWOW64\RMActivate_isv.exe
+ 2011-07-02 21:10 . 2010-11-20 12:17 322048 c:\windows\SysWOW64\RMActivate.exe
+ 2011-07-02 21:07 . 2010-11-20 12:21 473600 c:\windows\SysWOW64\riched20.dll
- 2009-07-13 23:26 . 2009-07-14 01:16 473600 c:\windows\SysWOW64\riched20.dll
- 2009-07-13 23:41 . 2009-07-14 01:14 220672 c:\windows\SysWOW64\Ribbons.scr
+ 2011-07-02 21:07 . 2010-11-20 12:16 220672 c:\windows\SysWOW64\Ribbons.scr
- 2009-07-14 00:02 . 2009-07-14 01:16 146944 c:\windows\SysWOW64\remotepg.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 146944 c:\windows\SysWOW64\remotepg.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 247808 c:\windows\SysWOW64\ReAgent.dll
- 2009-07-13 23:20 . 2009-07-14 01:16 247808 c:\windows\SysWOW64\ReAgent.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 186368 c:\windows\SysWOW64\rdpencom.dll
- 2009-07-14 00:01 . 2009-07-14 01:16 186368 c:\windows\SysWOW64\rdpencom.dll
+ 2012-03-13 22:09 . 2012-02-17 05:34 826880 c:\windows\SysWOW64\rdpcore.dll
- 2009-07-13 23:54 . 2009-07-14 01:16 372224 c:\windows\SysWOW64\rastls.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 372224 c:\windows\SysWOW64\rastls.dll
- 2009-07-13 23:54 . 2009-07-14 01:16 176640 c:\windows\SysWOW64\rasppp.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 176640 c:\windows\SysWOW64\rasppp.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 318976 c:\windows\SysWOW64\raschap.dll
- 2009-07-13 23:52 . 2009-07-14 01:16 167936 c:\windows\SysWOW64\QSHVHOST.DLL
+ 2011-07-02 21:08 . 2010-11-20 12:20 167936 c:\windows\SysWOW64\QSHVHOST.DLL
- 2009-07-14 00:03 . 2009-07-14 01:16 509440 c:\windows\SysWOW64\qedit.dll
+ 2011-07-02 21:08 . 2010-11-20 12:20 509440 c:\windows\SysWOW64\qedit.dll
- 2012-01-11 22:08 . 2011-10-26 04:28 514560 c:\windows\SysWOW64\qdvd.dll
+ 2012-01-11 22:08 . 2011-10-26 04:32 514560 c:\windows\SysWOW64\qdvd.dll
- 2009-07-14 00:03 . 2009-07-14 01:16 283136 c:\windows\SysWOW64\qdv.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 283136 c:\windows\SysWOW64\qdv.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 190976 c:\windows\SysWOW64\qcap.dll
- 2009-07-14 00:03 . 2009-07-14 01:16 190976 c:\windows\SysWOW64\qcap.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 206848 c:\windows\SysWOW64\qasf.dll
- 2009-07-14 00:09 . 2009-07-14 01:16 206848 c:\windows\SysWOW64\qasf.dll
+ 2011-07-02 21:08 . 2010-11-20 12:20 171520 c:\windows\SysWOW64\QAGENT.DLL
+ 2011-07-02 21:08 . 2010-11-20 12:20 324608 c:\windows\SysWOW64\puiobj.dll
+ 2011-10-13 21:04 . 2011-08-17 04:24 465408 c:\windows\SysWOW64\psisdecd.dll
- 2011-10-13 21:04 . 2011-08-17 04:26 465408 c:\windows\SysWOW64\psisdecd.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 165376 c:\windows\SysWOW64\provsvc.dll
- 2009-07-13 23:39 . 2009-07-14 01:16 165376 c:\windows\SysWOW64\provsvc.dll
- 2009-07-13 23:40 . 2009-07-14 01:16 988160 c:\windows\SysWOW64\propsys.dll
+ 2011-07-02 21:09 . 2010-11-20 12:20 988160 c:\windows\SysWOW64\propsys.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 120320 c:\windows\SysWOW64\prntvpt.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 395264 c:\windows\SysWOW64\prnfldr.dll
- 2009-07-14 00:19 . 2009-07-14 01:16 395264 c:\windows\SysWOW64\prnfldr.dll
+ 2011-07-02 21:08 . 2010-11-20 12:20 116736 c:\windows\SysWOW64\prncache.dll
+ 2011-07-02 21:08 . 2010-11-20 12:20 932352 c:\windows\SysWOW64\printui.dll
- 2011-01-15 03:55 . 2009-11-25 18:47 295264 c:\windows\SysWOW64\PresentationHost.exe
+ 2011-07-02 21:10 . 2010-11-05 01:53 295264 c:\windows\SysWOW64\PresentationHost.exe
+ 2011-07-02 21:08 . 2010-11-20 12:20 441856 c:\windows\SysWOW64\powercpl.dll
- 2009-07-13 23:41 . 2009-07-14 01:16 441856 c:\windows\SysWOW64\powercpl.dll
- 2009-07-14 00:07 . 2009-07-14 01:16 183296 c:\windows\SysWOW64\PortableDeviceSyncProvider.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 183296 c:\windows\SysWOW64\PortableDeviceSyncProvider.dll
- 2009-07-14 00:07 . 2009-07-14 01:16 427520 c:\windows\SysWOW64\PortableDeviceStatus.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 427520 c:\windows\SysWOW64\PortableDeviceStatus.dll
+ 2011-07-02 21:09 . 2010-11-20 12:20 547840 c:\windows\SysWOW64\PortableDeviceApi.dll
+ 2011-07-02 21:05 . 2010-11-20 12:17 209920 c:\windows\SysWOW64\PkgMgr.exe
- 2009-07-13 23:22 . 2009-07-14 01:14 209920 c:\windows\SysWOW64\PkgMgr.exe
- 2009-07-14 00:10 . 2009-07-14 01:16 295424 c:\windows\SysWOW64\photowiz.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 295424 c:\windows\SysWOW64\photowiz.dll
+ 2011-07-02 21:08 . 2010-11-20 12:16 413696 c:\windows\SysWOW64\PhotoScreensaver.scr
- 2009-07-14 00:11 . 2009-07-14 01:14 413696 c:\windows\SysWOW64\PhotoScreensaver.scr
- 2009-07-13 23:20 . 2009-07-14 01:14 157184 c:\windows\SysWOW64\perfmon.exe
+ 2011-07-02 21:07 . 2010-11-20 12:17 157184 c:\windows\SysWOW64\perfmon.exe
- 2009-07-13 23:40 . 2009-07-14 01:16 600576 c:\windows\SysWOW64\PerfCenterCPL.dll
+ 2011-07-02 21:08 . 2010-11-20 12:20 600576 c:\windows\SysWOW64\PerfCenterCPL.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 236544 c:\windows\SysWOW64\pdh.dll
- 2009-07-13 23:19 . 2009-07-14 01:16 236544 c:\windows\SysWOW64\pdh.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 859648 c:\windows\SysWOW64\OobeFldr.dll
- 2009-07-13 23:39 . 2009-07-14 01:16 859648 c:\windows\SysWOW64\OobeFldr.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 268288 c:\windows\SysWOW64\oobe\cmisetup.dll
- 2009-07-13 23:16 . 2009-07-14 01:16 268288 c:\windows\SysWOW64\oobe\cmisetup.dll
- 2009-07-13 23:37 . 2009-07-14 01:16 218112 c:\windows\SysWOW64\OnLineIDCpl.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 218112 c:\windows\SysWOW64\OnLineIDCpl.dll
+ 2011-07-02 21:08 . 2010-11-20 12:20 199168 c:\windows\SysWOW64\onex.dll
- 2009-07-13 23:51 . 2009-07-14 01:16 199168 c:\windows\SysWOW64\onex.dll
+ 2011-10-13 21:04 . 2011-08-27 04:26 571904 c:\windows\SysWOW64\oleaut32.dll
- 2011-10-13 21:04 . 2011-08-27 04:43 571904 c:\windows\SysWOW64\oleaut32.dll
+ 2011-10-13 21:04 . 2011-08-27 04:26 233472 c:\windows\SysWOW64\oleacc.dll
- 2011-10-13 21:04 . 2011-08-27 04:43 233472 c:\windows\SysWOW64\oleacc.dll
+ 2011-08-10 18:31 . 2011-06-15 08:55 163840 c:\windows\SysWOW64\odbctrac.dll
- 2011-08-10 18:31 . 2011-06-15 09:04 163840 c:\windows\SysWOW64\odbctrac.dll
- 2011-08-10 18:31 . 2011-06-15 09:04 319488 c:\windows\SysWOW64\odbcjt32.dll
+ 2011-08-10 18:31 . 2011-06-15 08:55 319488 c:\windows\SysWOW64\odbcjt32.dll
- 2011-08-10 18:31 . 2011-06-15 09:04 122880 c:\windows\SysWOW64\odbccp32.dll
+ 2011-08-10 18:31 . 2011-06-15 08:55 122880 c:\windows\SysWOW64\odbccp32.dll
- 2011-01-15 04:05 . 2010-10-16 04:34 573440 c:\windows\SysWOW64\odbc32.dll
+ 2011-07-02 21:09 . 2010-11-20 12:20 573440 c:\windows\SysWOW64\odbc32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:17 197632 c:\windows\SysWOW64\ocsetup.exe
- 2009-07-13 23:22 . 2009-07-14 01:14 197632 c:\windows\SysWOW64\ocsetup.exe
+ 2011-07-02 21:07 . 2010-11-20 12:20 174592 c:\windows\SysWOW64\ocsetapi.dll
- 2009-07-13 23:22 . 2009-07-14 01:16 174592 c:\windows\SysWOW64\ocsetapi.dll
- 2012-02-16 01:06 . 2012-01-04 09:03 442880 c:\windows\SysWOW64\ntshrui.dll
+ 2012-02-16 01:06 . 2012-01-04 08:58 442880 c:\windows\SysWOW64\ntshrui.dll
- 2009-07-14 00:18 . 2009-07-14 01:16 297472 c:\windows\SysWOW64\ntprint.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 297472 c:\windows\SysWOW64\ntprint.dll
- 2009-07-13 23:53 . 2009-07-14 01:16 656384 c:\windows\SysWOW64\nshwfp.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 656384 c:\windows\SysWOW64\nshwfp.dll
- 2009-07-13 23:52 . 2009-07-14 01:16 346112 c:\windows\SysWOW64\nshipsec.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 346112 c:\windows\SysWOW64\nshipsec.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 175616 c:\windows\SysWOW64\netplwiz.dll
- 2009-07-13 23:39 . 2009-07-14 01:16 175616 c:\windows\SysWOW64\netplwiz.dll
+ 2011-07-02 21:09 . 2010-11-20 12:20 563712 c:\windows\SysWOW64\netlogon.dll
- 2009-07-13 23:38 . 2009-07-14 01:16 563712 c:\windows\SysWOW64\netlogon.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 161792 c:\windows\SysWOW64\netjoin.dll
- 2009-07-13 23:37 . 2009-07-14 01:16 161792 c:\windows\SysWOW64\netjoin.dll
+ 2011-07-02 21:08 . 2010-11-20 12:20 166400 c:\windows\SysWOW64\netiohlp.dll
+ 2011-07-02 21:08 . 2010-11-20 12:20 117248 c:\windows\SysWOW64\netid.dll
+ 2011-07-02 21:08 . 2010-11-20 12:20 225792 c:\windows\SysWOW64\netdiagfx.dll
- 2009-07-13 23:52 . 2009-07-14 01:16 225792 c:\windows\SysWOW64\netdiagfx.dll
+ 2011-07-02 21:09 . 2010-11-20 12:20 406528 c:\windows\SysWOW64\netcfgx.dll
+ 2011-07-02 21:08 . 2010-11-20 12:17 142336 c:\windows\SysWOW64\net1.exe
+ 2011-07-02 21:09 . 2010-11-20 12:20 152064 c:\windows\SysWOW64\ncsi.dll
- 2009-07-13 23:52 . 2009-07-14 01:16 152064 c:\windows\SysWOW64\ncsi.dll
- 2009-07-14 00:14 . 2009-07-14 01:16 801280 c:\windows\SysWOW64\NaturalLanguage6.dll
+ 2011-07-02 21:09 . 2010-11-20 12:20 801280 c:\windows\SysWOW64\NaturalLanguage6.dll
- 2009-07-13 23:53 . 2009-07-14 01:22 107008 c:\windows\SysWOW64\NAPHLPR.DLL
+ 2011-07-02 21:07 . 2010-11-20 12:36 107008 c:\windows\SysWOW64\NAPHLPR.DLL
+ 2011-07-02 21:07 . 2010-11-20 12:16 221184 c:\windows\SysWOW64\Mystify.scr
- 2009-07-13 23:41 . 2009-07-14 01:14 221184 c:\windows\SysWOW64\Mystify.scr
- 2009-07-13 23:39 . 2009-07-14 01:16 136192 c:\windows\SysWOW64\mydocs.dll
+ 2011-07-02 21:06 . 2010-11-20 12:20 136192 c:\windows\SysWOW64\mydocs.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 320512 c:\windows\SysWOW64\mtxclu.dll
- 2009-07-13 23:44 . 2009-07-14 01:15 320512 c:\windows\SysWOW64\mtxclu.dll
- 2009-07-13 23:12 . 2009-07-14 01:15 232448 c:\windows\SysWOW64\mswsock.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 232448 c:\windows\SysWOW64\mswsock.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 120320 c:\windows\SysWOW64\msvfw32.dll
- 2009-07-14 00:03 . 2009-07-14 01:15 120320 c:\windows\SysWOW64\msvfw32.dll
+ 2012-02-16 01:06 . 2011-12-16 07:52 690688 c:\windows\SysWOW64\msvcrt.dll
- 2012-02-16 01:06 . 2011-12-16 07:59 690688 c:\windows\SysWOW64\msvcrt.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 257024 c:\windows\SysWOW64\msv1_0.dll
- 2010-07-22 00:01 . 2010-07-22 00:01 257024 c:\windows\SysWOW64\msv1_0.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 167936 c:\windows\SysWOW64\msutb.dll
- 2009-07-13 23:26 . 2009-07-14 01:15 167936 c:\windows\SysWOW64\msutb.dll
- 2009-07-13 23:30 . 2009-07-14 01:15 209920 c:\windows\SysWOW64\mstask.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 209920 c:\windows\SysWOW64\mstask.dll
+ 2011-06-29 00:07 . 2011-05-04 04:32 666624 c:\windows\SysWOW64\mssvp.dll
- 2011-06-29 00:07 . 2011-05-04 04:52 666624 c:\windows\SysWOW64\mssvp.dll
+ 2011-06-29 00:07 . 2011-05-04 04:32 197120 c:\windows\SysWOW64\mssphtb.dll
- 2011-06-29 00:07 . 2011-05-04 04:52 197120 c:\windows\SysWOW64\mssphtb.dll
+ 2011-06-29 00:07 . 2011-05-04 04:32 337408 c:\windows\SysWOW64\mssph.dll
- 2011-06-29 00:07 . 2011-05-04 04:52 337408 c:\windows\SysWOW64\mssph.dll
- 2009-07-14 00:05 . 2009-07-14 01:15 504320 c:\windows\SysWOW64\msscp.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 504320 c:\windows\SysWOW64\msscp.dll
- 2009-07-14 00:12 . 2009-07-14 01:15 176128 c:\windows\SysWOW64\msorcl32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 176128 c:\windows\SysWOW64\msorcl32.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 265216 c:\windows\SysWOW64\msnetobj.dll
- 2009-07-14 00:05 . 2009-07-14 01:15 265216 c:\windows\SysWOW64\msnetobj.dll
- 2009-07-14 00:08 . 2009-07-14 01:15 830464 c:\windows\SysWOW64\MSMPEG2ENC.DLL
+ 2011-07-02 21:08 . 2010-11-20 12:19 830464 c:\windows\SysWOW64\MSMPEG2ENC.DLL
+ 2011-07-02 21:08 . 2010-11-20 12:17 303104 c:\windows\SysWOW64\msinfo32.exe
- 2009-07-13 23:20 . 2009-07-14 01:14 303104 c:\windows\SysWOW64\msinfo32.exe
+ 2011-07-02 21:08 . 2010-11-20 12:19 337408 c:\windows\SysWOW64\msihnd.dll
- 2009-07-13 23:31 . 2009-07-14 01:15 337408 c:\windows\SysWOW64\msihnd.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 301568 c:\windows\SysWOW64\msieftp.dll
- 2009-07-13 23:40 . 2009-07-14 01:15 301568 c:\windows\SysWOW64\msieftp.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 592384 c:\windows\SysWOW64\msftedit.dll
- 2009-07-13 23:27 . 2009-07-14 01:15 592384 c:\windows\SysWOW64\msftedit.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 341504 c:\windows\SysWOW64\msdrm.dll
+ 2011-07-02 21:08 . 2010-11-05 01:58 155472 c:\windows\SysWOW64\mscorier.dll
- 2011-01-15 03:55 . 2009-11-25 18:47 297808 c:\windows\SysWOW64\mscoree.dll
+ 2011-07-02 21:10 . 2010-11-05 01:58 297808 c:\windows\SysWOW64\mscoree.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 481792 c:\windows\SysWOW64\mscms.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 226304 c:\windows\SysWOW64\MSAC3ENC.DLL
- 2009-07-14 00:08 . 2009-07-14 01:15 226304 c:\windows\SysWOW64\MSAC3ENC.DLL
+ 2011-07-02 21:08 . 2010-11-20 12:19 268800 c:\windows\SysWOW64\mprddm.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 158720 c:\windows\SysWOW64\mprapi.dll
- 2009-07-13 23:54 . 2009-07-14 01:15 158720 c:\windows\SysWOW64\mprapi.dll
+ 2011-07-02 21:06 . 2010-11-20 12:17 101376 c:\windows\SysWOW64\mobsync.exe
- 2009-07-13 23:39 . 2009-07-14 01:14 101376 c:\windows\SysWOW64\mobsync.exe
- 2009-07-14 00:03 . 2009-07-14 01:15 213504 c:\windows\SysWOW64\MMDevAPI.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 213504 c:\windows\SysWOW64\MMDevAPI.dll
- 2009-07-13 23:14 . 2009-07-14 01:16 109568 c:\windows\SysWOW64\migwiz\replacementmanifests\Microsoft-Windows-OfflineFiles-Core\CscMig.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 109568 c:\windows\SysWOW64\migwiz\replacementmanifests\Microsoft-Windows-OfflineFiles-Core\CscMig.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 283136 c:\windows\SysWOW64\migwiz\replacementmanifests\microsoft-windows-iis-rm\iismig.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 892928 c:\windows\SysWOW64\migwiz\migstore.dll
+ 2011-07-02 21:08 . 2010-11-20 12:22 156432 c:\windows\SysWOW64\migwiz\MigSetup.exe
+ 2011-07-02 21:07 . 2010-11-20 12:21 112128 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-Sxs\SxsMigPlugin.dll
- 2009-07-13 23:15 . 2009-07-14 01:16 112128 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-Sxs\SxsMigPlugin.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 172544 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-RasServer-MigPlugin\RasMigPlugin.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 553472 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-MediaPlayer\MediaPlayer-DLMigPlugin.dll
- 2009-07-14 00:09 . 2009-07-14 01:16 553472 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-MediaPlayer\MediaPlayer-DLMigPlugin.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 402944 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-MediaPlayer-DRM-DL\drmmgrtn.dll
- 2009-07-14 00:06 . 2009-07-14 01:16 402944 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-MediaPlayer-DRM-DL\drmmgrtn.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 283136 c:\windows\SysWOW64\migwiz\dlmanifests\Microsoft-Windows-IIS-DL\iismig.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 172544 c:\windows\SysWOW64\migration\WSMT\rras\replacementmanifests\Microsoft-Windows-RasServer-MigPlugin\RasMigPlugin-Mig.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 172544 c:\windows\SysWOW64\migration\WSMT\rras\dlmanifests\Microsoft-Windows-RasServer-MigPlugin\RasMigPlugin-DL-Mig.dll
- 2009-07-13 23:15 . 2009-07-14 01:16 112128 c:\windows\SysWOW64\migration\SxsMigPlugin.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 112128 c:\windows\SysWOW64\migration\SxsMigPlugin.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 553472 c:\windows\SysWOW64\migration\MediaPlayer-DLMigPlugin.dll
- 2009-07-14 00:09 . 2009-07-14 01:16 553472 c:\windows\SysWOW64\migration\MediaPlayer-DLMigPlugin.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 101888 c:\windows\SysWOW64\migisol.dll
- 2009-07-13 23:16 . 2009-07-14 01:15 101888 c:\windows\SysWOW64\migisol.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 196608 c:\windows\SysWOW64\mfreadwrite.dll
- 2011-01-15 04:05 . 2010-05-23 10:11 196608 c:\windows\SysWOW64\mfreadwrite.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 176128 c:\windows\SysWOW64\MFPlay.dll
- 2009-07-14 00:03 . 2009-07-14 01:15 176128 c:\windows\SysWOW64\MFPlay.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 296448 c:\windows\SysWOW64\mfds.dll
- 2011-01-15 04:18 . 2010-08-31 04:32 954288 c:\windows\SysWOW64\mfc40u.dll
+ 2011-07-02 21:10 . 2010-11-20 12:19 954288 c:\windows\SysWOW64\mfc40u.dll
+ 2011-07-02 21:10 . 2010-11-20 12:19 954752 c:\windows\SysWOW64\mfc40.dll
- 2011-01-15 04:18 . 2010-08-31 04:32 954752 c:\windows\SysWOW64\mfc40.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 266752 c:\windows\SysWOW64\MediaMetadataHandler.dll
- 2009-07-14 00:09 . 2009-07-14 01:15 266752 c:\windows\SysWOW64\MediaMetadataHandler.dll
+ 2011-07-02 21:07 . 2010-11-05 02:11 312168 c:\windows\SysWOW64\MCEWMDRMNDBootstrap.dll
+ 2011-07-02 21:09 . 2010-11-20 12:17 220672 c:\windows\SysWOW64\mcbuilder.exe
- 2010-07-21 23:59 . 2010-07-21 23:59 220672 c:\windows\SysWOW64\mcbuilder.exe
- 2009-07-13 23:37 . 2009-07-14 01:15 127488 c:\windows\SysWOW64\logoncli.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 127488 c:\windows\SysWOW64\logoncli.dll

Tony Lillie · Jun 23, 2012

More Combofix:

- 2009-07-13 23:29 . 2009-07-14 01:15 429056 c:\windows\SysWOW64\localsec.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 429056 c:\windows\SysWOW64\localsec.dll
- 2011-08-10 18:31 . 2011-07-16 04:30 272384 c:\windows\SysWOW64\KernelBase.dll
+ 2011-08-10 18:31 . 2011-07-16 04:24 272384 c:\windows\SysWOW64\KernelBase.dll
+ 2011-02-09 15:35 . 2010-12-17 07:07 542208 c:\windows\SysWOW64\kerberos.dll
- 2009-07-14 00:08 . 2009-07-14 01:15 219648 c:\windows\SysWOW64\iTVData.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 219648 c:\windows\SysWOW64\iTVData.dll
+ 2011-07-02 21:06 . 2010-11-20 12:19 158720 c:\windows\SysWOW64\itircl.dll
+ 2011-07-02 21:06 . 2010-11-20 12:17 144896 c:\windows\SysWOW64\iscsicli.exe
- 2009-07-13 23:46 . 2009-07-14 01:14 144896 c:\windows\SysWOW64\iscsicli.exe
+ 2011-07-02 21:08 . 2010-11-20 12:19 400896 c:\windows\SysWOW64\ipsmsnap.dll
- 2009-07-13 23:53 . 2009-07-14 01:15 400896 c:\windows\SysWOW64\ipsmsnap.dll
- 2009-07-13 23:54 . 2009-07-14 01:15 271360 c:\windows\SysWOW64\iprtrmgr.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 271360 c:\windows\SysWOW64\iprtrmgr.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 103936 c:\windows\SysWOW64\IPHLPAPI.DLL
- 2009-07-13 23:12 . 2009-07-14 01:15 103936 c:\windows\SysWOW64\IPHLPAPI.DLL
+ 2011-07-02 21:07 . 2010-11-20 12:19 202240 c:\windows\SysWOW64\input.dll
- 2009-07-13 23:26 . 2009-07-14 01:15 202240 c:\windows\SysWOW64\input.dll
+ 2011-06-15 20:31 . 2011-05-03 04:30 741376 c:\windows\SysWOW64\inetcomm.dll
- 2009-07-13 23:25 . 2009-07-14 01:11 119808 c:\windows\SysWOW64\imm32.dll
+ 2011-07-02 21:06 . 2010-11-20 12:08 119808 c:\windows\SysWOW64\imm32.dll
+ 2011-07-02 21:06 . 2010-11-20 12:19 374272 c:\windows\SysWOW64\IME\shared\IMETIP.DLL
- 2009-07-13 23:26 . 2009-07-14 01:15 374272 c:\windows\SysWOW64\IME\shared\IMETIP.DLL
- 2009-07-13 23:26 . 2009-07-14 01:14 269824 c:\windows\SysWOW64\IME\shared\IMEPADSV.EXE
+ 2011-07-02 21:07 . 2010-11-20 12:17 269824 c:\windows\SysWOW64\IME\shared\IMEPADSV.EXE
+ 2011-07-02 21:07 . 2010-11-20 12:17 286208 c:\windows\SysWOW64\IME\shared\IMCCPHR.exe
- 2009-07-13 23:26 . 2009-07-14 01:14 286208 c:\windows\SysWOW64\IME\shared\IMCCPHR.exe
- 2009-07-13 23:26 . 2009-07-14 01:14 362496 c:\windows\SysWOW64\IME\IMETC10\IMTCPROP.exe
+ 2011-07-02 21:07 . 2010-11-20 12:17 362496 c:\windows\SysWOW64\IME\IMETC10\IMTCPROP.exe
+ 2011-07-02 21:09 . 2010-11-20 12:19 545792 c:\windows\SysWOW64\IME\IMETC10\IMTCCORE.DLL
- 2009-07-13 23:26 . 2009-07-14 01:15 545792 c:\windows\SysWOW64\IME\IMETC10\IMTCCORE.DLL
+ 2011-07-02 21:07 . 2010-11-20 12:19 172032 c:\windows\SysWOW64\IME\IMETC10\IMTCCFG.DLL
- 2009-07-13 23:27 . 2009-07-14 01:15 655872 c:\windows\SysWOW64\IME\IMESC5\ImSCCore.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 655872 c:\windows\SysWOW64\IME\IMESC5\ImSCCore.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 126976 c:\windows\SysWOW64\IME\IMESC5\ImSCCfg.DLL
- 2009-07-13 23:26 . 2009-07-14 01:15 126976 c:\windows\SysWOW64\IME\IMESC5\ImSCCfg.DLL
- 2009-07-13 23:26 . 2009-07-14 01:14 105984 c:\windows\SysWOW64\IME\IMEJP10\imjpuexc.exe
+ 2011-07-02 21:07 . 2010-11-20 12:17 105984 c:\windows\SysWOW64\IME\IMEJP10\imjpuexc.exe
+ 2011-07-02 21:07 . 2010-11-20 12:17 346112 c:\windows\SysWOW64\IME\IMEJP10\IMJPDCT.EXE
- 2009-07-13 23:26 . 2009-07-14 01:14 346112 c:\windows\SysWOW64\IME\IMEJP10\IMJPDCT.EXE
+ 2011-09-15 01:02 . 2011-07-27 04:27 361472 c:\windows\SysWOW64\IME\IMEJP10\IMJPAPI.DLL
- 2011-09-15 01:02 . 2011-07-27 04:30 361472 c:\windows\SysWOW64\IME\IMEJP10\IMJPAPI.DLL
- 2009-07-13 23:46 . 2009-07-14 01:15 732160 c:\windows\SysWOW64\imapi2fs.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 732160 c:\windows\SysWOW64\imapi2fs.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 392192 c:\windows\SysWOW64\imapi2.dll
+ 2012-04-12 04:39 . 2012-03-01 05:33 159232 c:\windows\SysWOW64\imagehlp.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 148992 c:\windows\SysWOW64\ifsutil.dll
- 2009-07-13 23:15 . 2009-07-14 01:15 148992 c:\windows\SysWOW64\ifsutil.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 122880 c:\windows\SysWOW64\iasrecst.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 172032 c:\windows\SysWOW64\iasrad.dll
- 2009-07-13 23:53 . 2009-07-14 01:15 172032 c:\windows\SysWOW64\iasrad.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 312832 c:\windows\SysWOW64\hgcpl.dll
+ 2011-07-02 21:08 . 2010-11-20 12:08 311296 c:\windows\SysWOW64\gdi32.dll
- 2009-07-13 23:54 . 2009-07-14 01:15 216576 c:\windows\SysWOW64\FWPUCLNT.DLL
+ 2011-07-02 21:08 . 2010-11-20 12:19 216576 c:\windows\SysWOW64\FWPUCLNT.DLL
- 2009-07-13 23:31 . 2009-07-14 01:15 206336 c:\windows\SysWOW64\framedynos.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 206336 c:\windows\SysWOW64\framedynos.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 202752 c:\windows\SysWOW64\framedyn.dll
- 2009-07-13 23:41 . 2009-07-14 01:15 828928 c:\windows\SysWOW64\fontext.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 828928 c:\windows\SysWOW64\fontext.dll
- 2009-07-13 23:53 . 2009-07-14 01:15 856576 c:\windows\SysWOW64\FirewallControlPanel.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 856576 c:\windows\SysWOW64\FirewallControlPanel.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 124416 c:\windows\SysWOW64\fde.dll
- 2009-07-13 23:27 . 2009-07-14 01:15 320512 c:\windows\SysWOW64\Faultrep.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 320512 c:\windows\SysWOW64\Faultrep.dll
- 2009-07-14 00:04 . 2009-07-14 01:15 488448 c:\windows\SysWOW64\evr.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 488448 c:\windows\SysWOW64\evr.dll
- 2009-07-13 23:41 . 2009-07-14 01:14 288256 c:\windows\SysWOW64\eudcedit.exe
+ 2011-07-02 21:08 . 2010-11-20 12:17 288256 c:\windows\SysWOW64\eudcedit.exe
+ 2011-12-15 20:57 . 2011-10-15 05:38 534528 c:\windows\SysWOW64\EncDec.dll
- 2011-12-15 20:57 . 2011-10-15 05:48 534528 c:\windows\SysWOW64\EncDec.dll
- 2009-07-13 23:45 . 2009-07-14 01:15 128512 c:\windows\SysWOW64\EhStorAPI.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 128512 c:\windows\SysWOW64\EhStorAPI.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 205312 c:\windows\SysWOW64\efscore.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 222208 c:\windows\SysWOW64\eapphost.dll
- 2009-07-13 23:56 . 2009-07-14 01:15 222208 c:\windows\SysWOW64\eapphost.dll
- 2009-07-13 23:56 . 2009-07-14 01:15 242176 c:\windows\SysWOW64\eapp3hst.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 242176 c:\windows\SysWOW64\eapp3hst.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 630784 c:\windows\SysWOW64\DXPTaskRingtone.dll
- 2009-07-14 00:07 . 2009-07-14 01:15 630784 c:\windows\SysWOW64\DXPTaskRingtone.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 508416 c:\windows\SysWOW64\dxgi.dll
- 2009-07-13 23:29 . 2009-07-14 01:15 210432 c:\windows\SysWOW64\dxdiagn.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 210432 c:\windows\SysWOW64\dxdiagn.dll
- 2009-07-13 23:39 . 2009-07-14 01:15 685056 c:\windows\SysWOW64\dsuiext.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 685056 c:\windows\SysWOW64\dsuiext.dll
- 2009-07-13 23:41 . 2009-07-14 01:15 196608 c:\windows\SysWOW64\dskquoui.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 196608 c:\windows\SysWOW64\dskquoui.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 252928 c:\windows\SysWOW64\DShowRdpFilter.dll
+ 2011-07-02 21:05 . 2010-11-20 12:18 323072 c:\windows\SysWOW64\drvstore.dll
- 2011-06-29 00:07 . 2011-05-24 10:32 252928 c:\windows\SysWOW64\drvinst.exe
+ 2011-06-29 00:07 . 2011-05-24 10:37 252928 c:\windows\SysWOW64\drvinst.exe
+ 2011-07-02 21:07 . 2010-11-20 12:18 402944 c:\windows\SysWOW64\drmmgrtn.dll
- 2009-07-14 00:06 . 2009-07-14 01:15 402944 c:\windows\SysWOW64\drmmgrtn.dll
+ 2011-07-02 21:05 . 2010-11-20 12:18 257024 c:\windows\SysWOW64\dpx.dll
- 2009-07-13 23:52 . 2009-07-14 01:15 333824 c:\windows\SysWOW64\dot3ui.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 333824 c:\windows\SysWOW64\dot3ui.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 115200 c:\windows\SysWOW64\dot3msm.dll
- 2009-07-13 23:52 . 2009-07-14 01:15 115200 c:\windows\SysWOW64\dot3msm.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 109056 c:\windows\SysWOW64\dnscmmc.dll
+ 2011-04-15 00:29 . 2011-03-03 05:38 270336 c:\windows\SysWOW64\dnsapi.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 345600 c:\windows\SysWOW64\Dism\WimProvider.dll
- 2009-07-13 23:18 . 2009-07-14 01:16 345600 c:\windows\SysWOW64\Dism\WimProvider.dll
- 2009-07-13 23:18 . 2009-07-14 01:16 242688 c:\windows\SysWOW64\Dism\UnattendProvider.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 242688 c:\windows\SysWOW64\Dism\UnattendProvider.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 347648 c:\windows\SysWOW64\Dism\TransmogProvider.dll
- 2009-07-13 23:18 . 2009-07-14 01:16 220160 c:\windows\SysWOW64\Dism\SmiProvider.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 220160 c:\windows\SysWOW64\Dism\SmiProvider.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 102912 c:\windows\SysWOW64\Dism\OSProvider.dll
- 2009-07-13 23:18 . 2009-07-14 01:15 159744 c:\windows\SysWOW64\Dism\MsiProvider.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 159744 c:\windows\SysWOW64\Dism\MsiProvider.dll
- 2009-07-13 23:18 . 2009-07-14 01:15 250880 c:\windows\SysWOW64\Dism\IntlProvider.dll
+ 2011-07-02 21:07 . 2010-11-20 12:19 250880 c:\windows\SysWOW64\Dism\IntlProvider.dll
- 2009-07-13 23:18 . 2009-07-14 01:15 318464 c:\windows\SysWOW64\Dism\DmiProvider.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 318464 c:\windows\SysWOW64\Dism\DmiProvider.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 141312 c:\windows\SysWOW64\Dism\DismProv.dll
- 2009-07-13 23:18 . 2009-07-14 01:15 141312 c:\windows\SysWOW64\Dism\DismProv.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 230912 c:\windows\SysWOW64\Dism\DismCore.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 141312 c:\windows\SysWOW64\Dism\CompatProvider.dll
- 2009-07-13 23:18 . 2009-07-14 01:15 141312 c:\windows\SysWOW64\Dism\CompatProvider.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 541184 c:\windows\SysWOW64\Dism\CbsProvider.dll
- 2009-07-13 23:24 . 2009-07-14 01:14 276480 c:\windows\SysWOW64\diskraid.exe
+ 2011-07-02 21:07 . 2010-11-20 12:17 276480 c:\windows\SysWOW64\diskraid.exe
+ 2011-07-02 21:06 . 2010-11-20 12:17 133632 c:\windows\SysWOW64\diskpart.exe
- 2009-07-13 23:24 . 2009-07-14 01:14 133632 c:\windows\SysWOW64\diskpart.exe
+ 2011-07-02 21:09 . 2010-11-20 12:18 254464 c:\windows\SysWOW64\dhcpcore.dll
+ 2011-07-02 21:07 . 2010-11-20 12:17 586752 c:\windows\SysWOW64\dfrgui.exe
- 2009-07-13 23:23 . 2009-07-14 01:14 586752 c:\windows\SysWOW64\dfrgui.exe
+ 2011-07-02 21:07 . 2010-11-20 12:18 211456 c:\windows\SysWOW64\DevicePairingFolder.dll
- 2009-07-13 23:42 . 2009-07-14 01:15 211456 c:\windows\SysWOW64\DevicePairingFolder.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 484864 c:\windows\SysWOW64\DeviceCenter.dll
- 2009-07-13 23:42 . 2009-07-14 01:15 484864 c:\windows\SysWOW64\DeviceCenter.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 220672 c:\windows\SysWOW64\defaultlocationcpl.dll
- 2009-07-13 23:45 . 2009-07-14 01:15 220672 c:\windows\SysWOW64\defaultlocationcpl.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 854016 c:\windows\SysWOW64\dbghelp.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 522752 c:\windows\SysWOW64\d3d11.dll
- 2009-07-13 23:27 . 2009-07-14 01:15 522752 c:\windows\SysWOW64\d3d11.dll
- 2009-07-13 23:28 . 2009-07-14 01:15 489984 c:\windows\SysWOW64\d3d10level9.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 489984 c:\windows\SysWOW64\d3d10level9.dll
+ 2011-06-15 20:31 . 2010-11-20 12:18 219136 c:\windows\SysWOW64\d3d10_1core.dll
- 2012-05-11 16:16 . 2012-03-03 05:40 161792 c:\windows\SysWOW64\d3d10_1.dll
+ 2011-06-15 20:31 . 2011-01-17 05:47 161792 c:\windows\SysWOW64\d3d10_1.dll
+ 2011-03-08 21:28 . 2011-02-19 06:30 739840 c:\windows\SysWOW64\d2d1.dll
- 2012-05-11 16:16 . 2012-03-03 05:40 739840 c:\windows\SysWOW64\d2d1.dll
+ 2012-06-14 03:07 . 2012-04-24 04:36 140288 c:\windows\SysWOW64\cryptsvc.dll
- 2012-06-14 03:07 . 2012-04-24 04:47 103936 c:\windows\SysWOW64\cryptnet.dll
+ 2012-06-14 03:07 . 2012-04-24 04:36 103936 c:\windows\SysWOW64\cryptnet.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 168960 c:\windows\SysWOW64\credui.dll
- 2011-03-08 21:28 . 2010-12-23 05:28 642048 c:\windows\SysWOW64\CPFilters.dll
+ 2011-03-08 21:28 . 2010-12-23 05:54 642048 c:\windows\SysWOW64\CPFilters.dll
+ 2011-01-15 04:28 . 2012-06-24 00:36 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2011-01-15 04:28 . 2012-06-22 16:26 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2009-07-14 04:54 . 2012-06-22 16:26 163840 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2012-06-24 00:37 163840 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2012-06-24 00:37 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2012-06-22 16:26 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2011-07-02 21:09 . 2010-11-20 12:18 485888 c:\windows\SysWOW64\comdlg32.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 530432 c:\windows\SysWOW64\comctl32.dll
- 2011-01-15 04:17 . 2010-08-21 05:33 530432 c:\windows\SysWOW64\comctl32.dll
+ 2011-07-02 21:09 . 2010-11-20 12:17 302592 c:\windows\SysWOW64\cmd.exe
- 2009-07-13 23:22 . 2009-07-14 01:15 230912 c:\windows\SysWOW64\clusapi.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 230912 c:\windows\SysWOW64\clusapi.dll
+ 2011-06-29 00:07 . 2011-05-24 10:39 145920 c:\windows\SysWOW64\cfgmgr32.dll
- 2011-06-29 00:07 . 2011-05-24 10:34 145920 c:\windows\SysWOW64\cfgmgr32.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 342016 c:\windows\SysWOW64\certcli.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 805376 c:\windows\SysWOW64\cdosys.dll
- 2009-07-14 00:12 . 2009-07-14 01:15 805376 c:\windows\SysWOW64\cdosys.dll
+ 2011-07-02 21:09 . 2010-11-20 12:16 776192 c:\windows\SysWOW64\calc.exe
- 2009-07-13 23:41 . 2009-07-14 01:14 776192 c:\windows\SysWOW64\calc.exe
+ 2011-07-02 21:08 . 2010-11-20 12:18 132608 c:\windows\SysWOW64\cabview.dll
- 2010-07-22 00:05 . 2010-07-22 00:05 132608 c:\windows\SysWOW64\cabview.dll
- 2009-07-13 23:41 . 2009-07-14 01:14 878592 c:\windows\SysWOW64\Bubbles.scr
+ 2011-07-02 21:07 . 2010-11-20 12:16 878592 c:\windows\SysWOW64\Bubbles.scr
+ 2011-07-02 21:07 . 2010-11-20 12:18 743424 c:\windows\SysWOW64\blackbox.dll
- 2009-07-14 00:05 . 2009-07-14 01:15 743424 c:\windows\SysWOW64\blackbox.dll
- 2009-07-13 23:30 . 2009-07-14 01:14 186368 c:\windows\SysWOW64\bitsadmin.exe
+ 2011-07-02 21:07 . 2010-11-20 12:16 186368 c:\windows\SysWOW64\bitsadmin.exe
+ 2011-07-02 21:08 . 2010-11-20 12:18 740864 c:\windows\SysWOW64\batmeter.dll
+ 2011-07-02 21:09 . 2010-11-20 12:23 144768 c:\windows\SysWOW64\basecsp.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 314368 c:\windows\SysWOW64\azroleui.dll
- 2009-07-13 23:29 . 2009-07-14 01:14 314368 c:\windows\SysWOW64\azroleui.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 762880 c:\windows\SysWOW64\azroles.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 665600 c:\windows\SysWOW64\AuxiliaryDisplayCpl.dll
- 2009-07-13 23:45 . 2009-07-14 01:14 665600 c:\windows\SysWOW64\AuxiliaryDisplayCpl.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 146944 c:\windows\SysWOW64\autoplay.dll
- 2009-07-13 23:40 . 2009-07-14 01:14 146944 c:\windows\SysWOW64\autoplay.dll
+ 2011-07-02 21:08 . 2010-11-20 12:16 658944 c:\windows\SysWOW64\autofmt.exe
+ 2011-07-02 21:08 . 2010-11-20 12:16 679424 c:\windows\SysWOW64\autoconv.exe
+ 2011-07-02 21:08 . 2010-11-20 12:16 668160 c:\windows\SysWOW64\autochk.exe
- 2010-07-22 00:01 . 2010-07-22 00:01 668160 c:\windows\SysWOW64\autochk.exe
+ 2011-07-02 21:08 . 2010-11-20 12:18 195584 c:\windows\SysWOW64\AudioSes.dll
- 2009-07-14 00:03 . 2009-07-14 01:14 195584 c:\windows\SysWOW64\AudioSes.dll
- 2009-07-14 00:07 . 2009-07-14 01:14 243712 c:\windows\SysWOW64\audiodev.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 243712 c:\windows\SysWOW64\audiodev.dll
+ 2011-04-15 00:30 . 2011-02-19 04:34 294912 c:\windows\SysWOW64\atmfd.dll
- 2011-04-15 00:30 . 2011-02-19 03:37 294912 c:\windows\SysWOW64\atmfd.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 295936 c:\windows\SysWOW64\apphelp.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 640512 c:\windows\SysWOW64\advapi32.dll
+ 2011-07-02 21:05 . 2010-11-20 12:18 120320 c:\windows\SysWOW64\AdvancedInstallers\cmiadapter.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 186880 c:\windows\SysWOW64\adsldp.dll
- 2009-07-13 23:38 . 2009-07-14 01:14 186880 c:\windows\SysWOW64\adsldp.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 309760 c:\windows\SysWOW64\actxprxy.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 202752 c:\windows\SysWOW64\activeds.dll
- 2009-07-13 23:38 . 2009-07-14 01:14 202752 c:\windows\SysWOW64\activeds.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 537600 c:\windows\SysWOW64\ActionCenterCPL.dll
- 2009-07-13 23:41 . 2009-07-14 01:14 537600 c:\windows\SysWOW64\ActionCenterCPL.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 744448 c:\windows\SysWOW64\ActionCenter.dll
- 2009-07-13 23:40 . 2009-07-14 01:14 744448 c:\windows\SysWOW64\ActionCenter.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 131584 c:\windows\SysWOW64\aaclient.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 366080 c:\windows\system32\zipfldr.dll
- 2009-07-13 23:56 . 2009-07-14 01:41 366080 c:\windows\system32\zipfldr.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 229888 c:\windows\system32\XpsRasterService.dll
- 2011-01-15 04:05 . 2010-11-02 05:18 229888 c:\windows\system32\XpsRasterService.dll
- 2011-04-15 00:30 . 2011-02-24 06:30 476160 c:\windows\system32\XpsGdiConverter.dll
+ 2011-04-15 00:30 . 2011-02-24 06:15 476160 c:\windows\system32\XpsGdiConverter.dll
- 2011-08-10 18:32 . 2011-06-16 05:31 199680 c:\windows\system32\xmllite.dll
+ 2011-08-10 18:32 . 2011-06-16 05:49 199680 c:\windows\system32\xmllite.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 222720 c:\windows\system32\wwanconn.dll
- 2009-07-14 00:12 . 2009-07-14 01:41 222720 c:\windows\system32\wwanconn.dll
- 2009-07-13 23:31 . 2009-07-14 01:41 594432 c:\windows\system32\wvc.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 594432 c:\windows\system32\wvc.dll
- 2009-07-13 23:35 . 2009-07-14 01:39 307200 c:\windows\system32\wusa.exe
+ 2011-07-02 21:09 . 2010-11-20 13:25 307200 c:\windows\system32\wusa.exe
- 2009-07-14 00:05 . 2009-07-14 01:41 681472 c:\windows\system32\WUDFx.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 681472 c:\windows\system32\WUDFx.dll
- 2009-07-14 00:05 . 2009-07-14 01:41 182784 c:\windows\system32\WUDFPlatform.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 182784 c:\windows\system32\WUDFPlatform.dll
- 2009-07-14 00:05 . 2009-07-14 01:39 226816 c:\windows\system32\WUDFHost.exe
+ 2011-07-02 21:07 . 2010-11-20 13:25 226816 c:\windows\system32\WUDFHost.exe
+ 2011-07-02 21:07 . 2010-11-20 13:25 293888 c:\windows\system32\wsqmcons.exe
- 2009-07-13 23:40 . 2009-07-14 01:39 293888 c:\windows\system32\wsqmcons.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 577536 c:\windows\system32\WSDApi.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 297984 c:\windows\system32\ws2_32.dll
- 2009-07-14 00:22 . 2009-07-14 01:41 215040 c:\windows\system32\wpdwcn.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 215040 c:\windows\system32\wpdwcn.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 431104 c:\windows\system32\WPDSp.dll
- 2009-07-14 00:21 . 2009-07-14 01:41 431104 c:\windows\system32\WPDSp.dll
- 2009-07-14 00:22 . 2009-07-14 01:41 115200 c:\windows\system32\WPDShServiceObj.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 115200 c:\windows\system32\WPDShServiceObj.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 117248 c:\windows\system32\wpdbusenum.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 611840 c:\windows\system32\wpd_ci.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 812032 c:\windows\system32\wpccpl.dll
+ 2011-08-10 18:31 . 2011-07-16 05:41 362496 c:\windows\system32\wow64win.dll
- 2011-08-10 18:31 . 2011-07-16 05:26 362496 c:\windows\system32\wow64win.dll
+ 2011-08-10 18:31 . 2011-07-16 05:41 243200 c:\windows\system32\wow64.dll
- 2011-08-10 18:31 . 2011-07-16 05:26 243200 c:\windows\system32\wow64.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 666112 c:\windows\system32\WMVSDECD.DLL
- 2009-07-14 00:23 . 2009-07-14 01:41 666112 c:\windows\system32\WMVSDECD.DLL
+ 2011-07-02 21:07 . 2010-11-20 13:27 978944 c:\windows\system32\WMSPDMOD.DLL
- 2009-07-14 00:23 . 2009-07-14 01:41 978944 c:\windows\system32\WMSPDMOD.DLL
+ 2011-07-02 21:08 . 2010-11-20 13:27 223232 c:\windows\system32\wmpsrcwp.dll
- 2009-07-14 00:23 . 2009-07-14 01:41 223232 c:\windows\system32\wmpsrcwp.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 132608 c:\windows\system32\wmpshell.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 481280 c:\windows\system32\wmpps.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 392192 c:\windows\system32\WMPhoto.dll
- 2009-07-14 00:22 . 2009-07-14 01:41 392192 c:\windows\system32\WMPhoto.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 605696 c:\windows\system32\wmpeffects.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 358400 c:\windows\system32\wmpdxm.dll
- 2009-07-14 00:24 . 2009-07-14 01:41 358400 c:\windows\system32\wmpdxm.dll
- 2011-01-15 04:03 . 2010-11-02 05:18 524288 c:\windows\system32\wmicmiplugin.dll
+ 2011-07-02 21:01 . 2010-11-20 13:27 524288 c:\windows\system32\wmicmiplugin.dll
- 2009-07-14 00:21 . 2009-07-14 01:41 781312 c:\windows\system32\wmdrmsdk.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 781312 c:\windows\system32\wmdrmsdk.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 527872 c:\windows\system32\wmdrmnet.dll
- 2009-07-14 00:21 . 2009-07-14 01:41 527872 c:\windows\system32\wmdrmnet.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 636416 c:\windows\system32\wmdrmdev.dll
- 2009-07-14 00:21 . 2009-07-14 01:41 636416 c:\windows\system32\wmdrmdev.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 312832 c:\windows\system32\Wldap32.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 414208 c:\windows\system32\wlanui.dll
- 2009-07-14 00:07 . 2009-07-14 01:41 414208 c:\windows\system32\wlanui.dll
- 2009-07-14 00:07 . 2009-07-14 01:41 414720 c:\windows\system32\wlanmsm.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 414720 c:\windows\system32\wlanmsm.dll
- 2009-07-14 00:07 . 2009-07-14 01:41 475136 c:\windows\system32\wlangpui.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 475136 c:\windows\system32\wlangpui.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 118784 c:\windows\system32\wkssvc.dll
- 2009-07-13 23:53 . 2009-07-14 01:41 118784 c:\windows\system32\wkssvc.dll
- 2009-07-14 00:16 . 2009-07-14 00:16 248832 c:\windows\system32\wksprt.exe
+ 2011-07-02 21:08 . 2010-11-20 11:04 248832 c:\windows\system32\wksprt.exe
+ 2011-07-02 21:09 . 2010-11-20 13:25 405504 c:\windows\system32\wisptis.exe
- 2009-07-14 00:02 . 2009-07-14 01:39 405504 c:\windows\system32\wisptis.exe
+ 2012-04-12 04:39 . 2012-03-01 06:38 220672 c:\windows\system32\wintrust.dll
- 2012-04-12 04:39 . 2012-03-01 06:45 220672 c:\windows\system32\wintrust.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 235008 c:\windows\system32\winsta.dll
- 2011-08-10 18:31 . 2011-07-16 05:26 214528 c:\windows\system32\winsrv.dll
+ 2011-08-10 18:31 . 2011-06-24 05:34 214528 c:\windows\system32\winsrv.dll
+ 2011-07-02 21:09 . 2010-11-20 13:24 442368 c:\windows\system32\winspool.drv
+ 2011-07-02 21:07 . 2010-11-20 13:27 217600 c:\windows\system32\WinSCard.dll
- 2009-07-13 23:50 . 2009-07-14 01:41 217600 c:\windows\system32\WinSCard.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 501248 c:\windows\system32\WinSATAPI.dll
+ 2011-04-15 00:29 . 2011-02-05 17:06 518672 c:\windows\system32\winresume.exe
+ 2011-07-02 21:09 . 2010-11-20 13:25 390656 c:\windows\system32\winlogon.exe
+ 2011-04-15 00:29 . 2011-02-05 17:06 605552 c:\windows\system32\winload.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 444416 c:\windows\system32\winhttp.dll
- 2009-07-13 23:49 . 2009-07-14 01:52 174592 c:\windows\system32\WindowsPowerShell\v1.0\pspluginwkr.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 174592 c:\windows\system32\WindowsPowerShell\v1.0\pspluginwkr.dll
- 2009-07-13 23:46 . 2009-07-14 01:50 109056 c:\windows\system32\WindowsPowerShell\v1.0\Modules\BitsTransfer\Microsoft.BackgroundIntelligentTransfer.Management.Interop.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 109056 c:\windows\system32\WindowsPowerShell\v1.0\Modules\BitsTransfer\Microsoft.BackgroundIntelligentTransfer.Management.Interop.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 294912 c:\windows\system32\WindowsAnytimeUpgradeResults.exe
- 2009-07-13 23:56 . 2009-07-14 01:39 294912 c:\windows\system32\WindowsAnytimeUpgradeResults.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 751104 c:\windows\system32\win32spl.dll
- 2009-07-14 00:35 . 2009-07-14 01:41 124928 c:\windows\system32\wiavideo.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 124928 c:\windows\system32\wiavideo.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 580096 c:\windows\system32\wiaservc.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 462336 c:\windows\system32\wiadefui.dll
+ 2011-04-15 00:29 . 2010-11-20 13:25 974336 c:\windows\system32\WFS.exe
- 2009-07-14 00:36 . 2009-07-14 01:39 974336 c:\windows\system32\WFS.exe
- 2012-01-13 20:54 . 2011-11-17 07:12 395776 c:\windows\system32\webio.dll
+ 2012-01-13 20:54 . 2011-11-17 06:35 395776 c:\windows\system32\webio.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 258560 c:\windows\system32\WebClnt.dll
- 2009-07-14 00:18 . 2009-07-14 01:38 217088 c:\windows\system32\wdmaud.drv
+ 2011-07-02 21:08 . 2010-11-20 13:24 217088 c:\windows\system32\wdmaud.drv
+ 2011-01-15 02:37 . 2012-06-23 02:55 402492 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2011-07-02 21:09 . 2010-11-20 13:27 367104 c:\windows\system32\wcncsvc.dll
- 2011-02-23 03:44 . 2010-09-14 06:45 367104 c:\windows\system32\wcncsvc.dll
+ 2011-07-02 21:01 . 2010-11-20 13:27 529408 c:\windows\system32\wbemcomn.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 372736 c:\windows\system32\wbem\WmiPrvSE.exe
+ 2011-07-02 21:10 . 2010-11-20 13:27 754176 c:\windows\system32\wbem\WmiPrvSD.dll
- 2009-07-13 23:47 . 2009-07-14 01:41 228864 c:\windows\system32\wbem\wmiprov.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 228864 c:\windows\system32\wbem\wmiprov.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 191488 c:\windows\system32\wbem\WmiDcPrv.dll
- 2009-07-13 23:47 . 2009-07-14 01:41 191488 c:\windows\system32\wbem\WmiDcPrv.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 137728 c:\windows\system32\wbem\WmiApRpl.dll
- 2009-07-13 23:47 . 2009-07-14 01:41 185856 c:\windows\system32\wbem\viewprov.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 185856 c:\windows\system32\wbem\viewprov.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 265728 c:\windows\system32\wbem\ntevt.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 399360 c:\windows\system32\wbem\msiprov.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 159232 c:\windows\system32\wbem\dsprov.dll
- 2009-07-14 00:41 . 2009-07-14 01:41 255488 c:\windows\system32\wavemsp.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 255488 c:\windows\system32\wavemsp.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 263168 c:\windows\system32\vpnike.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 185856 c:\windows\system32\vdsutil.dll
- 2009-07-13 23:36 . 2009-07-14 01:41 185856 c:\windows\system32\vdsutil.dll
- 2009-07-13 23:36 . 2009-07-14 01:41 190976 c:\windows\system32\vdsbas.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 190976 c:\windows\system32\vdsbas.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 533504 c:\windows\system32\vds.exe
- 2009-07-14 00:11 . 2009-07-14 01:41 691200 c:\windows\system32\VAN.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 691200 c:\windows\system32\VAN.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 154624 c:\windows\system32\uxlib.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 800256 c:\windows\system32\usp10.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 109056 c:\windows\system32\userenv.dll
- 2009-07-13 23:56 . 2009-07-14 01:41 625664 c:\windows\system32\usercpl.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 625664 c:\windows\system32\usercpl.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 264192 c:\windows\system32\upnp.dll
- 2011-02-09 15:35 . 2010-12-21 06:15 264192 c:\windows\system32\upnp.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 403968 c:\windows\system32\untfs.dll
+ 2011-06-29 00:07 . 2011-05-24 11:42 404480 c:\windows\system32\umpnpmgr.dll
- 2009-07-13 23:55 . 2009-07-14 01:41 172544 c:\windows\system32\twext.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 172544 c:\windows\system32\twext.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 750080 c:\windows\system32\TSWorkspace.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 299520 c:\windows\system32\tsmf.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 112640 c:\windows\system32\thumbcache.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 680960 c:\windows\system32\termsrv.dll
- 2009-07-14 00:41 . 2009-07-14 01:41 421888 c:\windows\system32\termmgr.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 421888 c:\windows\system32\termmgr.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 253440 c:\windows\system32\tcpipcfg.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 257024 c:\windows\system32\taskmgr.exe
- 2009-07-13 23:31 . 2009-07-14 01:39 257024 c:\windows\system32\taskmgr.exe
+ 2011-07-02 21:09 . 2010-11-20 13:25 464384 c:\windows\system32\taskeng.exe
- 2011-01-15 04:03 . 2010-11-02 05:10 464384 c:\windows\system32\taskeng.exe
- 2011-01-15 04:03 . 2010-11-02 05:17 473600 c:\windows\system32\taskcomp.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 473600 c:\windows\system32\taskcomp.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 243712 c:\windows\system32\taskbarcpl.dll
- 2009-07-13 23:56 . 2009-07-14 01:41 243712 c:\windows\system32\taskbarcpl.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 316928 c:\windows\system32\tapisrv.dll
- 2011-01-15 04:18 . 2010-08-26 05:27 148992 c:\windows\system32\t2embed.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 148992 c:\windows\system32\t2embed.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 419840 c:\windows\system32\systemcpl.dll
- 2009-07-13 23:56 . 2009-07-14 01:41 419840 c:\windows\system32\systemcpl.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 207360 c:\windows\system32\sysclass.dll
- 2009-07-13 23:27 . 2009-07-14 01:41 207360 c:\windows\system32\sysclass.dll
- 2009-07-13 23:55 . 2009-07-14 01:41 200192 c:\windows\system32\syncui.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 200192 c:\windows\system32\syncui.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 582656 c:\windows\system32\sxs.dll
- 2009-07-13 23:56 . 2009-07-14 01:41 769536 c:\windows\system32\sud.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 769536 c:\windows\system32\sud.dll
- 2011-01-15 04:11 . 2010-05-05 07:37 483840 c:\windows\system32\StructuredQuery.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 483840 c:\windows\system32\StructuredQuery.dll

Tony Lillie · Jun 23, 2012

More Combofix:

+ 2011-07-02 21:09 . 2010-11-20 13:27 257024 c:\windows\system32\stobject.dll
+ 2011-07-02 21:07 . 2010-11-20 13:24 333824 c:\windows\system32\ssText3d.scr
- 2009-07-13 23:57 . 2009-07-14 01:38 333824 c:\windows\system32\ssText3d.scr
+ 2012-01-13 20:54 . 2011-11-17 06:35 136192 c:\windows\system32\sspicli.dll
- 2012-01-13 20:54 . 2011-11-17 07:11 136192 c:\windows\system32\sspicli.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 236032 c:\windows\system32\srvsvc.dll
- 2011-01-15 04:11 . 2010-08-27 06:14 236032 c:\windows\system32\srvsvc.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 128000 c:\windows\system32\srvcli.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 270848 c:\windows\system32\srrstr.dll
- 2009-07-13 23:36 . 2009-07-14 01:41 270848 c:\windows\system32\srrstr.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 503296 c:\windows\system32\srcore.dll
- 2009-07-13 23:36 . 2009-07-14 01:41 503296 c:\windows\system32\srcore.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 340992 c:\windows\system32\srchadmin.dll
- 2009-07-13 23:56 . 2009-07-14 01:41 340992 c:\windows\system32\srchadmin.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 244736 c:\windows\system32\sqmapi.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 933888 c:\windows\system32\sqlsrv32.dll
- 2009-07-14 00:29 . 2009-07-14 01:41 933888 c:\windows\system32\sqlsrv32.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 446976 c:\windows\system32\sqlcese30.dll
- 2009-07-14 00:22 . 2009-07-14 01:41 446976 c:\windows\system32\sqlcese30.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 263168 c:\windows\system32\spwizui.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 445952 c:\windows\system32\spwizeng.dll
+ 2012-06-23 14:45 . 2012-06-23 14:44 263168 c:\windows\system32\SPReview\spwizui.dll
+ 2012-06-23 14:45 . 2012-06-23 14:44 301568 c:\windows\system32\SPReview\spreview.exe
+ 2012-06-23 14:45 . 2012-06-23 14:44 238592 c:\windows\system32\SPReview\sperror.dll
+ 2011-07-02 21:10 . 2010-11-20 13:25 301568 c:\windows\system32\spreview.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 418816 c:\windows\system32\sppwinob.dll
- 2009-07-13 23:51 . 2009-07-14 01:41 418816 c:\windows\system32\sppwinob.dll
- 2009-07-13 23:27 . 2009-07-14 01:41 102400 c:\windows\system32\sppnp.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 102400 c:\windows\system32\sppnp.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 232448 c:\windows\system32\sppcomapi.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 145920 c:\windows\system32\sppc.dll
- 2009-07-14 01:04 . 2009-07-14 01:41 145920 c:\windows\system32\sppc.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 244224 c:\windows\system32\spp.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 559104 c:\windows\system32\spoolsv.exe
+ 2011-07-02 21:07 . 2010-11-20 13:27 221184 c:\windows\system32\spool\tools\Microsoft XPS Document Writer\mxdwdui.dll
+ 2009-07-14 01:18 . 2010-11-20 13:09 762368 c:\windows\system32\spool\drivers\x64\3\UNIRES.DLL
- 2009-07-14 01:18 . 2009-07-14 01:30 762368 c:\windows\system32\spool\drivers\x64\3\unires.dll
- 2009-07-14 01:18 . 2009-07-14 01:41 884224 c:\windows\system32\spool\drivers\x64\3\unidrvui.dll
+ 2009-07-14 01:18 . 2010-11-20 13:27 884224 c:\windows\system32\spool\drivers\x64\3\unidrvui.dll
+ 2009-07-14 00:39 . 2010-11-20 13:27 479232 c:\windows\system32\spool\drivers\x64\3\UNIDRV.DLL
- 2009-07-14 00:39 . 2009-07-14 01:41 479232 c:\windows\system32\spool\drivers\x64\3\unidrv.dll
+ 2009-07-14 01:19 . 2010-11-20 13:27 221184 c:\windows\system32\spool\drivers\x64\3\mxdwdui.dll
+ 2009-07-14 00:40 . 2010-11-20 13:27 715776 c:\windows\system32\spool\drivers\x64\3\mxdwdrv.dll
- 2009-07-14 00:36 . 2009-07-14 01:40 156672 c:\windows\system32\spool\drivers\x64\3\FXSWZRD.DLL
+ 2009-07-14 00:36 . 2010-11-20 13:26 156672 c:\windows\system32\spool\drivers\x64\3\FXSWZRD.DLL
+ 2009-07-14 00:36 . 2010-11-20 13:26 160256 c:\windows\system32\spool\drivers\x64\3\FXSUI.DLL
- 2009-07-14 00:36 . 2009-07-14 01:40 160256 c:\windows\system32\spool\drivers\x64\3\FXSUI.DLL
+ 2009-07-14 00:35 . 2010-11-20 13:26 434688 c:\windows\system32\spool\drivers\x64\3\FXSTIFF.DLL
+ 2009-07-14 00:36 . 2010-11-20 13:26 380416 c:\windows\system32\spool\drivers\x64\3\FXSDRV.DLL
- 2009-07-14 00:35 . 2009-07-14 01:40 623104 c:\windows\system32\spool\drivers\x64\3\FXSAPI.DLL
+ 2009-07-14 00:35 . 2010-11-20 13:26 623104 c:\windows\system32\spool\drivers\x64\3\FXSAPI.DLL
+ 2011-07-02 21:10 . 2010-11-20 13:25 598016 c:\windows\system32\spinstall.exe
+ 2011-07-02 21:07 . 2010-11-20 13:27 418304 c:\windows\system32\Speech\SpeechUX\speechuxcpl.dll
- 2009-07-14 00:34 . 2009-07-14 01:41 418304 c:\windows\system32\Speech\SpeechUX\speechuxcpl.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 225280 c:\windows\system32\SndVolSSO.dll
- 2009-07-14 00:19 . 2009-07-14 01:41 225280 c:\windows\system32\SndVolSSO.dll
- 2009-07-14 00:19 . 2009-07-14 01:39 273920 c:\windows\system32\SndVol.exe
+ 2011-07-02 21:08 . 2010-11-20 13:25 273920 c:\windows\system32\SndVol.exe
+ 2011-07-02 21:01 . 2010-11-20 13:27 933376 c:\windows\system32\SmiEngine.dll
- 2009-07-13 23:35 . 2009-07-14 01:41 933376 c:\windows\system32\SmiEngine.dll
- 2009-07-13 23:50 . 2009-07-14 01:41 189952 c:\windows\system32\SmartcardCredentialProvider.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 189952 c:\windows\system32\SmartcardCredentialProvider.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 349696 c:\windows\system32\slui.exe
- 2009-07-13 23:52 . 2009-07-14 01:39 349696 c:\windows\system32\slui.exe
+ 2011-07-02 21:07 . 2010-11-20 13:27 451072 c:\windows\system32\shwebsvc.dll
- 2009-07-13 23:55 . 2009-07-14 01:41 451072 c:\windows\system32\shwebsvc.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 370688 c:\windows\system32\shsvcs.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 130048 c:\windows\system32\shsetup.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 448512 c:\windows\system32\shlwapi.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 196608 c:\windows\system32\shdocvw.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 357888 c:\windows\system32\sharemediacpl.dll
- 2009-07-14 00:23 . 2009-07-14 01:41 357888 c:\windows\system32\sharemediacpl.dll
- 2009-07-13 23:55 . 2009-07-14 01:41 135168 c:\windows\system32\shacct.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 135168 c:\windows\system32\shacct.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 217088 c:\windows\system32\Setup\RasMigPlugin.dll
- 2009-07-14 00:33 . 2009-07-14 01:39 279040 c:\windows\system32\sethc.exe
+ 2011-07-02 21:07 . 2010-11-20 13:25 279040 c:\windows\system32\sethc.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 121856 c:\windows\system32\SessEnv.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 121856 c:\windows\system32\secproc_ssp_isv.dll
- 2010-07-22 00:04 . 2010-07-22 00:04 121856 c:\windows\system32\secproc_ssp_isv.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 121856 c:\windows\system32\secproc_ssp.dll
- 2010-07-22 00:04 . 2010-07-22 00:04 121856 c:\windows\system32\secproc_ssp.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 485888 c:\windows\system32\secproc_isv.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 488448 c:\windows\system32\secproc.dll
+ 2011-06-29 00:07 . 2011-05-04 05:19 249856 c:\windows\system32\SearchProtocolHost.exe
- 2011-06-29 00:07 . 2011-05-04 05:24 249856 c:\windows\system32\SearchProtocolHost.exe
+ 2011-06-29 00:07 . 2011-05-04 05:19 591872 c:\windows\system32\SearchIndexer.exe
+ 2011-07-02 21:10 . 2010-11-20 13:27 867840 c:\windows\system32\SearchFolder.dll
+ 2011-06-29 00:07 . 2011-05-04 05:19 113664 c:\windows\system32\SearchFilterHost.exe
- 2011-06-29 00:07 . 2011-05-04 05:24 113664 c:\windows\system32\SearchFilterHost.exe
- 2009-07-13 23:36 . 2009-07-14 01:41 170496 c:\windows\system32\sdrsvc.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 170496 c:\windows\system32\sdrsvc.dll
- 2009-07-13 23:36 . 2009-07-14 01:41 762368 c:\windows\system32\sdcpl.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 762368 c:\windows\system32\sdcpl.dll
- 2011-01-15 04:03 . 2010-11-02 05:10 285696 c:\windows\system32\schtasks.exe
+ 2011-07-02 21:09 . 2010-11-20 13:25 285696 c:\windows\system32\schtasks.exe
+ 2012-01-13 20:54 . 2011-11-17 06:35 340992 c:\windows\system32\schannel.dll
- 2012-01-13 20:54 . 2011-11-17 07:10 340992 c:\windows\system32\schannel.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 406016 c:\windows\system32\scesrv.dll
- 2009-07-13 23:49 . 2009-07-14 01:41 406016 c:\windows\system32\scesrv.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 232960 c:\windows\system32\scecli.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 146944 c:\windows\system32\scavengeui.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 303616 c:\windows\system32\scansetting.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 758784 c:\windows\system32\samsrv.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 296960 c:\windows\system32\rstrui.exe
- 2009-07-13 23:36 . 2009-07-14 01:39 296960 c:\windows\system32\rstrui.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 512000 c:\windows\system32\rpcss.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 187904 c:\windows\system32\rpchttp.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 128000 c:\windows\system32\Robocopy.exe
+ 2011-07-02 21:06 . 2010-11-20 13:25 305152 c:\windows\system32\RMActivate_ssp_isv.exe
- 2010-07-22 00:04 . 2010-07-22 00:04 305152 c:\windows\system32\RMActivate_ssp_isv.exe
+ 2011-07-02 21:06 . 2010-11-20 13:25 306688 c:\windows\system32\RMActivate_ssp.exe
- 2010-07-22 00:04 . 2010-07-22 00:04 306688 c:\windows\system32\RMActivate_ssp.exe
+ 2011-07-02 21:10 . 2010-11-20 13:25 362496 c:\windows\system32\RMActivate_isv.exe
+ 2011-07-02 21:10 . 2010-11-20 13:25 359424 c:\windows\system32\RMActivate.exe
+ 2011-07-02 21:08 . 2010-11-20 13:27 633344 c:\windows\system32\riched20.dll
- 2009-07-13 23:57 . 2009-07-14 01:38 241664 c:\windows\system32\Ribbons.scr
+ 2011-07-02 21:07 . 2010-11-20 13:24 241664 c:\windows\system32\Ribbons.scr
+ 2011-07-02 21:07 . 2010-11-20 13:27 153088 c:\windows\system32\remotepg.dll
- 2009-07-14 00:17 . 2009-07-14 01:41 153088 c:\windows\system32\remotepg.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 146944 c:\windows\system32\recovery.dll
- 2009-07-13 23:37 . 2009-07-14 01:41 146944 c:\windows\system32\recovery.dll
- 2009-07-13 23:36 . 2009-07-14 01:39 238080 c:\windows\system32\recdisc.exe
+ 2011-07-02 21:07 . 2010-11-20 13:25 238080 c:\windows\system32\recdisc.exe
- 2009-07-13 23:32 . 2009-07-14 01:41 313856 c:\windows\system32\ReAgent.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 313856 c:\windows\system32\ReAgent.dll
- 2009-07-14 00:16 . 2009-07-14 01:41 222208 c:\windows\system32\rdpencom.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 222208 c:\windows\system32\rdpencom.dll
+ 2011-07-02 21:06 . 2010-11-20 13:13 147456 c:\windows\system32\RDPENCDD.dll
- 2009-07-14 00:16 . 2009-07-14 01:32 147456 c:\windows\system32\RDPENCDD.dll
+ 2011-07-02 21:10 . 2010-11-20 11:05 274944 c:\windows\system32\rdpdd.dll
- 2012-06-14 03:07 . 2012-04-26 05:34 149504 c:\windows\system32\rdpcorekmts.dll
+ 2012-06-14 03:07 . 2012-04-26 05:41 149504 c:\windows\system32\rdpcorekmts.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 424448 c:\windows\system32\rastls.dll
- 2009-07-14 00:10 . 2009-07-14 01:41 211456 c:\windows\system32\rasppp.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 211456 c:\windows\system32\rasppp.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 344064 c:\windows\system32\rasmans.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 337920 c:\windows\system32\raschap.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 107520 c:\windows\system32\QUTIL.DLL
- 2009-07-14 00:07 . 2009-07-14 01:41 107520 c:\windows\system32\QUTIL.DLL
+ 2011-07-02 21:07 . 2010-11-20 13:27 124416 c:\windows\system32\QSVRMGMT.DLL
- 2009-07-14 00:07 . 2009-07-14 01:41 124416 c:\windows\system32\QSVRMGMT.DLL
- 2009-07-14 00:07 . 2009-07-14 01:41 223232 c:\windows\system32\QSHVHOST.DLL
+ 2011-07-02 21:09 . 2010-11-20 13:27 223232 c:\windows\system32\QSHVHOST.DLL
+ 2011-07-02 21:09 . 2010-11-20 13:27 849920 c:\windows\system32\qmgr.dll
- 2009-07-14 00:18 . 2009-07-14 01:41 624128 c:\windows\system32\qedit.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 624128 c:\windows\system32\qedit.dll
+ 2012-01-11 22:08 . 2011-10-26 05:25 366592 c:\windows\system32\qdvd.dll
- 2012-01-11 22:08 . 2011-10-26 05:22 366592 c:\windows\system32\qdvd.dll
- 2009-07-14 00:18 . 2009-07-14 01:41 250880 c:\windows\system32\qdv.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 250880 c:\windows\system32\qdv.dll
- 2009-07-14 00:18 . 2009-07-14 01:41 181248 c:\windows\system32\qcap.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 181248 c:\windows\system32\qcap.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 254464 c:\windows\system32\qasf.dll
- 2009-07-14 00:23 . 2009-07-14 01:41 254464 c:\windows\system32\qasf.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 476160 c:\windows\system32\QAGENTRT.DLL
+ 2011-07-02 21:09 . 2010-11-20 13:27 266240 c:\windows\system32\QAGENT.DLL
+ 2011-07-02 21:08 . 2010-11-20 13:27 429568 c:\windows\system32\puiobj.dll
- 2011-10-13 21:04 . 2011-08-17 05:32 613888 c:\windows\system32\psisdecd.dll
+ 2011-10-13 21:04 . 2011-08-17 05:26 613888 c:\windows\system32\psisdecd.dll
- 2009-07-13 23:55 . 2009-07-14 01:41 187904 c:\windows\system32\provsvc.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 187904 c:\windows\system32\provsvc.dll
+ 2012-06-14 03:07 . 2012-05-01 05:40 209920 c:\windows\system32\profsvc.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 156160 c:\windows\system32\prntvpt.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 416256 c:\windows\system32\prnfldr.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 183808 c:\windows\system32\prncache.dll
+ 2011-07-02 21:10 . 2010-11-05 01:53 109928 c:\windows\system32\PresentationHostProxy.dll
+ 2011-07-02 21:10 . 2010-11-05 01:53 320352 c:\windows\system32\PresentationHost.exe
- 2011-01-15 03:55 . 2009-11-25 18:47 320352 c:\windows\system32\PresentationHost.exe
+ 2011-07-02 21:08 . 2010-11-20 13:27 486400 c:\windows\system32\powercpl.dll
- 2009-07-13 23:56 . 2009-07-14 01:41 486400 c:\windows\system32\powercpl.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 224256 c:\windows\system32\PortableDeviceSyncProvider.dll
- 2009-07-14 00:22 . 2009-07-14 01:41 224256 c:\windows\system32\PortableDeviceSyncProvider.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 435712 c:\windows\system32\PortableDeviceStatus.dll
- 2009-07-14 00:21 . 2009-07-14 01:41 435712 c:\windows\system32\PortableDeviceStatus.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 758272 c:\windows\system32\PortableDeviceApi.dll
- 2009-07-13 23:35 . 2009-07-14 01:39 199168 c:\windows\system32\PkgMgr.exe
+ 2011-07-02 21:01 . 2010-11-20 13:25 199168 c:\windows\system32\PkgMgr.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 409600 c:\windows\system32\photowiz.dll
- 2009-07-14 00:27 . 2009-07-14 01:38 477696 c:\windows\system32\PhotoScreensaver.scr
+ 2011-07-02 21:09 . 2010-11-20 13:24 477696 c:\windows\system32\PhotoScreensaver.scr
- 2009-07-13 23:31 . 2009-07-14 01:39 172544 c:\windows\system32\perfmon.exe
+ 2011-07-02 21:07 . 2010-11-20 13:25 172544 c:\windows\system32\perfmon.exe
+ 2009-07-14 02:36 . 2012-06-23 15:49 633180 c:\windows\system32\perfh009.dat
- 2009-07-14 02:36 . 2012-06-23 01:33 633180 c:\windows\system32\perfh009.dat
- 2009-07-13 23:56 . 2009-07-14 01:41 658432 c:\windows\system32\PerfCenterCPL.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 658432 c:\windows\system32\PerfCenterCPL.dll
+ 2009-07-14 02:36 . 2012-06-23 15:49 110782 c:\windows\system32\perfc009.dat
- 2009-07-14 02:36 . 2012-06-23 01:33 110782 c:\windows\system32\perfc009.dat
+ 2011-07-02 21:08 . 2010-11-20 13:27 300032 c:\windows\system32\pdh.dll
- 2009-07-13 23:31 . 2009-07-14 01:41 300032 c:\windows\system32\pdh.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 898560 c:\windows\system32\OobeFldr.dll
- 2009-07-13 23:55 . 2009-07-14 01:41 898560 c:\windows\system32\OobeFldr.dll
- 2009-07-13 23:29 . 2009-07-14 01:39 109568 c:\windows\system32\oobe\windeploy.exe
+ 2011-07-02 21:07 . 2010-11-20 13:25 109568 c:\windows\system32\oobe\windeploy.exe
- 2009-07-13 23:29 . 2009-07-14 01:41 577536 c:\windows\system32\oobe\win32ui.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 577536 c:\windows\system32\oobe\win32ui.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 266240 c:\windows\system32\oobe\Setup.exe
- 2009-07-14 01:00 . 2009-07-14 01:39 266240 c:\windows\system32\oobe\Setup.exe
+ 2011-07-02 21:08 . 2010-11-20 13:27 334336 c:\windows\system32\oobe\cmisetup.dll
- 2009-07-13 23:27 . 2009-07-14 01:41 334336 c:\windows\system32\oobe\cmisetup.dll
- 2009-07-13 23:52 . 2009-07-14 01:41 221696 c:\windows\system32\OnLineIDCpl.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 221696 c:\windows\system32\OnLineIDCpl.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 235520 c:\windows\system32\onex.dll
+ 2011-10-13 21:04 . 2011-08-27 05:37 861696 c:\windows\system32\oleaut32.dll
- 2011-10-13 21:04 . 2011-08-27 05:40 331776 c:\windows\system32\oleacc.dll
+ 2011-10-13 21:04 . 2011-08-27 05:37 331776 c:\windows\system32\oleacc.dll
- 2011-08-10 18:31 . 2011-06-15 09:58 212992 c:\windows\system32\odbctrac.dll
+ 2011-08-10 18:31 . 2011-06-15 10:02 212992 c:\windows\system32\odbctrac.dll
+ 2011-08-10 18:32 . 2011-06-15 10:02 106496 c:\windows\system32\odbccu32.dll
- 2011-08-10 18:32 . 2011-06-15 09:58 106496 c:\windows\system32\odbccu32.dll
+ 2011-08-10 18:32 . 2011-06-15 10:02 106496 c:\windows\system32\odbccr32.dll
- 2011-08-10 18:32 . 2011-06-15 09:58 106496 c:\windows\system32\odbccr32.dll
- 2011-08-10 18:31 . 2011-06-15 09:58 163840 c:\windows\system32\odbccp32.dll
+ 2011-08-10 18:31 . 2011-06-15 10:02 163840 c:\windows\system32\odbccp32.dll
- 2011-01-15 04:05 . 2010-10-16 05:17 720896 c:\windows\system32\odbc32.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 720896 c:\windows\system32\odbc32.dll
- 2009-07-13 23:35 . 2009-07-14 01:39 186368 c:\windows\system32\ocsetup.exe
+ 2011-07-02 21:09 . 2010-11-20 13:25 186368 c:\windows\system32\ocsetup.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 161792 c:\windows\system32\ocsetapi.dll
- 2012-02-16 01:06 . 2012-01-04 09:58 509952 c:\windows\system32\ntshrui.dll
+ 2012-02-16 01:06 . 2012-01-04 10:44 509952 c:\windows\system32\ntshrui.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 344576 c:\windows\system32\ntprint.dll
- 2009-07-14 00:39 . 2009-07-14 01:41 344576 c:\windows\system32\ntprint.dll
- 2009-07-13 23:48 . 2009-07-14 01:41 129536 c:\windows\system32\ntlanman.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 129536 c:\windows\system32\ntlanman.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 109568 c:\windows\system32\nslookup.exe
- 2009-07-14 00:08 . 2009-07-14 01:41 455168 c:\windows\system32\nshipsec.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 455168 c:\windows\system32\nshipsec.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 395776 c:\windows\system32\nltest.exe
- 2009-07-13 23:53 . 2009-07-14 01:39 395776 c:\windows\system32\nltest.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 303616 c:\windows\system32\nlasvc.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 193024 c:\windows\system32\netplwiz.dll
- 2009-07-13 23:55 . 2009-07-14 01:41 193024 c:\windows\system32\netplwiz.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 695808 c:\windows\system32\netlogon.dll
- 2009-07-13 23:53 . 2009-07-14 01:41 188928 c:\windows\system32\netjoin.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 188928 c:\windows\system32\netjoin.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 215552 c:\windows\system32\netiohlp.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 165376 c:\windows\system32\netid.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 324096 c:\windows\system32\netdiagfx.dll
- 2009-07-14 00:08 . 2009-07-14 01:41 324096 c:\windows\system32\netdiagfx.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 519680 c:\windows\system32\netcfgx.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 152064 c:\windows\system32\net1.exe
- 2009-07-13 23:53 . 2009-07-14 01:39 152064 c:\windows\system32\net1.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 210944 c:\windows\system32\ncsi.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 133632 c:\windows\system32\NAPHLPR.DLL
- 2009-07-14 00:09 . 2009-07-14 01:50 133632 c:\windows\system32\NAPHLPR.DLL
- 2009-07-13 23:57 . 2009-07-14 01:38 242688 c:\windows\system32\Mystify.scr
+ 2011-07-02 21:07 . 2010-11-20 13:24 242688 c:\windows\system32\Mystify.scr
- 2009-07-13 23:55 . 2009-07-14 01:41 143360 c:\windows\system32\mydocs.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 143360 c:\windows\system32\mydocs.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 372736 c:\windows\system32\mtxclu.dll
- 2009-07-13 23:59 . 2009-07-14 01:41 372736 c:\windows\system32\mtxclu.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 326144 c:\windows\system32\mswsock.dll
+ 2012-02-16 01:06 . 2011-12-16 08:46 634880 c:\windows\system32\msvcrt.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 827728 c:\windows\system32\msvcr100.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 827728 c:\windows\system32\msvcr100.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 608080 c:\windows\system32\msvcp100.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 312320 c:\windows\system32\msv1_0.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 238080 c:\windows\system32\mstask.dll
- 2009-07-13 23:46 . 2009-07-14 01:41 238080 c:\windows\system32\mstask.dll
+ 2011-06-29 00:07 . 2011-05-04 05:22 778752 c:\windows\system32\mssvp.dll
+ 2011-06-29 00:07 . 2011-05-04 05:22 288256 c:\windows\system32\mssphtb.dll
- 2011-06-29 00:07 . 2011-05-04 05:28 288256 c:\windows\system32\mssphtb.dll
+ 2011-06-29 00:07 . 2011-05-04 05:22 491520 c:\windows\system32\mssph.dll
- 2011-06-29 00:07 . 2011-05-04 05:28 491520 c:\windows\system32\mssph.dll
- 2009-07-14 00:20 . 2009-07-14 01:41 641024 c:\windows\system32\msscp.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 641024 c:\windows\system32\msscp.dll
- 2009-07-14 00:21 . 2009-07-14 01:41 571904 c:\windows\system32\mspbda.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 571904 c:\windows\system32\mspbda.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 325632 c:\windows\system32\msnetobj.dll
- 2009-07-14 00:20 . 2009-07-14 01:41 325632 c:\windows\system32\msnetobj.dll
+ 2011-07-02 21:09 . 2010-11-20 13:24 378880 c:\windows\system32\msinfo32.exe
- 2009-07-13 23:31 . 2009-07-14 01:39 378880 c:\windows\system32\msinfo32.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 128000 c:\windows\system32\msiexec.exe
- 2009-07-13 23:55 . 2009-07-14 01:41 335360 c:\windows\system32\msieftp.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 335360 c:\windows\system32\msieftp.dll
- 2009-07-13 23:39 . 2009-07-14 01:41 799744 c:\windows\system32\msftedit.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 799744 c:\windows\system32\msftedit.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 457216 c:\windows\system32\msdrm.dll
- 2011-01-15 04:02 . 2010-08-04 07:07 552960 c:\windows\system32\msdri.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 552960 c:\windows\system32\msdri.dll
+ 2011-07-02 21:08 . 2010-11-05 01:57 154960 c:\windows\system32\mscorier.dll
- 2011-01-15 03:55 . 2009-11-25 18:47 444752 c:\windows\system32\mscoree.dll
+ 2011-07-02 21:10 . 2010-11-05 01:57 444752 c:\windows\system32\mscoree.dll
- 2009-07-13 23:31 . 2009-07-14 01:39 300032 c:\windows\system32\msconfig.exe
+ 2011-07-02 21:08 . 2010-11-20 13:24 300032 c:\windows\system32\msconfig.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 625664 c:\windows\system32\mscms.dll
- 2009-07-13 23:39 . 2009-07-14 01:41 625664 c:\windows\system32\mscms.dll
- 2009-07-14 00:23 . 2009-07-14 01:41 268288 c:\windows\system32\MSAC3ENC.DLL
+ 2011-07-02 21:08 . 2010-11-20 13:27 268288 c:\windows\system32\MSAC3ENC.DLL
+ 2011-07-02 21:10 . 2010-11-20 13:26 828416 c:\windows\system32\MPSSVC.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 211456 c:\windows\system32\mprddm.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 221184 c:\windows\system32\mprapi.dll
+ 2011-07-02 21:06 . 2010-11-20 13:24 102400 c:\windows\system32\mobsync.exe
- 2009-07-13 23:55 . 2009-07-14 01:39 102400 c:\windows\system32\mobsync.exe
+ 2011-07-02 21:07 . 2010-11-20 13:27 103424 c:\windows\system32\migwiz\replacementmanifests\microsoft-windows-shmig\shmig.dll
- 2009-07-13 23:57 . 2009-07-14 01:41 103424 c:\windows\system32\migwiz\replacementmanifests\microsoft-windows-shmig\shmig.dll
- 2009-07-13 23:24 . 2009-07-14 01:41 137216 c:\windows\system32\migwiz\replacementmanifests\Microsoft-Windows-OfflineFiles-Core\CscMig.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 137216 c:\windows\system32\migwiz\replacementmanifests\Microsoft-Windows-OfflineFiles-Core\CscMig.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 333312 c:\windows\system32\migwiz\replacementmanifests\microsoft-windows-iis-rm\iismig.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 121344 c:\windows\system32\migwiz\dlmanifests\Microsoft-Windows-Sxs\SxsMigPlugin.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 103424 c:\windows\system32\migwiz\dlmanifests\Microsoft-Windows-shmig-DL\shmig.dll
- 2009-07-13 23:57 . 2009-07-14 01:41 103424 c:\windows\system32\migwiz\dlmanifests\Microsoft-Windows-shmig-DL\shmig.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 217088 c:\windows\system32\migwiz\dlmanifests\Microsoft-Windows-RasServer-MigPlugin\RasMigPlugin.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 495104 c:\windows\system32\migwiz\dlmanifests\Microsoft-Windows-MediaPlayer-DRM-DL\drmmgrtn.dll
- 2009-07-14 00:21 . 2009-07-14 01:41 495104 c:\windows\system32\migwiz\dlmanifests\Microsoft-Windows-MediaPlayer-DRM-DL\drmmgrtn.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 333312 c:\windows\system32\migwiz\dlmanifests\Microsoft-Windows-IIS-DL\iismig.dll
- 2009-07-13 23:29 . 2009-07-14 01:41 644096 c:\windows\system32\migwiz\csiagent.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 644096 c:\windows\system32\migwiz\csiagent.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 217088 c:\windows\system32\migration\WSMT\rras\replacementmanifests\Microsoft-Windows-RasServer-MigPlugin\RasMigPlugin-Mig.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 217088 c:\windows\system32\migration\WSMT\rras\dlmanifests\Microsoft-Windows-RasServer-MigPlugin\RasMigPlugin-DL-Mig.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 121344 c:\windows\system32\migration\SxsMigPlugin.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 103424 c:\windows\system32\migration\shmig.dll
- 2009-07-13 23:57 . 2009-07-14 01:41 103424 c:\windows\system32\migration\shmig.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 111104 c:\windows\system32\migration\PowerMigPlugin.dll
- 2009-07-13 23:27 . 2009-07-14 01:41 111104 c:\windows\system32\migration\PowerMigPlugin.dll
- 2011-01-15 04:05 . 2010-05-23 08:35 257024 c:\windows\system32\mfreadwrite.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 257024 c:\windows\system32\mfreadwrite.dll
- 2011-01-15 04:05 . 2010-05-23 08:35 206848 c:\windows\system32\mfps.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 206848 c:\windows\system32\mfps.dll
- 2009-07-14 00:19 . 2009-07-14 01:41 240640 c:\windows\system32\MFPlay.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 240640 c:\windows\system32\MFPlay.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 381440 c:\windows\system32\mfds.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 345600 c:\windows\system32\MediaMetadataHandler.dll
- 2009-07-14 00:23 . 2009-07-14 01:41 345600 c:\windows\system32\MediaMetadataHandler.dll
- 2009-07-13 23:32 . 2009-07-14 01:39 146944 c:\windows\system32\MdSched.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 146944 c:\windows\system32\MdSched.exe
+ 2011-07-02 21:10 . 2010-11-20 13:33 299392 c:\windows\system32\mcupdate_GenuineIntel.dll
+ 2011-07-02 21:08 . 2010-11-05 02:11 433512 c:\windows\system32\MCEWMDRMNDBootstrap.dll
- 2010-07-21 23:59 . 2010-07-21 23:59 272896 c:\windows\system32\mcbuilder.exe
+ 2011-07-02 21:09 . 2010-11-20 13:24 272896 c:\windows\system32\mcbuilder.exe
+ 2011-07-02 21:08 . 2010-11-20 13:24 957440 c:\windows\system32\mblctr.exe
+ 2011-07-02 21:09 . 2010-11-20 13:24 343040 c:\windows\system32\lsm.exe
+ 2011-07-02 21:09 . 2010-11-20 13:24 653312 c:\windows\system32\lpksetup.exe
+ 2011-07-02 21:08 . 2010-11-20 13:26 186880 c:\windows\system32\logoncli.dll
+ 2011-07-02 21:07 . 2010-11-20 13:24 104448 c:\windows\system32\logman.exe
+ 2011-07-02 21:09 . 2010-11-20 13:26 955904 c:\windows\system32\localspl.dll
- 2009-07-13 23:46 . 2009-07-14 01:41 551936 c:\windows\system32\localsec.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 551936 c:\windows\system32\localsec.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 232448 c:\windows\system32\ListSvc.dll
+ 2011-08-10 18:31 . 2011-07-16 05:37 421888 c:\windows\system32\KernelBase.dll
+ 2011-02-09 15:35 . 2010-12-17 11:40 715776 c:\windows\system32\kerberos.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 282624 c:\windows\system32\iTVData.dll
- 2009-07-14 00:22 . 2009-07-14 01:41 282624 c:\windows\system32\iTVData.dll
+ 2011-07-02 21:06 . 2010-11-20 13:26 194048 c:\windows\system32\itircl.dll
- 2009-07-14 00:01 . 2009-07-14 01:39 152064 c:\windows\system32\iscsicli.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 152064 c:\windows\system32\iscsicli.exe
+ 2011-07-02 21:09 . 2010-11-20 13:26 584192 c:\windows\system32\ipsmsnap.dll
- 2009-07-14 00:09 . 2009-07-14 01:41 584192 c:\windows\system32\ipsmsnap.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 501248 c:\windows\system32\IPSECSVC.DLL
- 2009-07-14 00:10 . 2009-07-14 01:41 281088 c:\windows\system32\iprtrmgr.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 281088 c:\windows\system32\iprtrmgr.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 569344 c:\windows\system32\iphlpsvc.dll
- 2009-07-13 23:21 . 2009-07-14 01:41 145920 c:\windows\system32\IPHLPAPI.DLL
+ 2011-07-02 21:09 . 2010-11-20 13:26 145920 c:\windows\system32\IPHLPAPI.DLL
+ 2011-07-02 21:09 . 2010-11-20 13:26 166912 c:\windows\system32\inetpp.dll
+ 2011-06-15 20:31 . 2011-05-03 05:29 976896 c:\windows\system32\inetcomm.dll

Tony Lillie · Jun 23, 2012

More Combofix:

- 2011-06-15 20:31 . 2011-05-03 05:21 976896 c:\windows\system32\inetcomm.dll
- 2009-07-13 23:39 . 2009-07-14 01:41 665600 c:\windows\system32\IME\shared\IMETIP.DLL
+ 2011-07-02 21:07 . 2010-11-20 13:26 665600 c:\windows\system32\IME\shared\IMETIP.DLL
- 2009-07-13 23:39 . 2009-07-14 01:39 301568 c:\windows\system32\IME\shared\IMEPADSV.EXE
+ 2011-07-02 21:07 . 2010-11-20 13:24 301568 c:\windows\system32\IME\shared\IMEPADSV.EXE
+ 2011-07-02 21:07 . 2010-11-20 13:24 307712 c:\windows\system32\IME\shared\IMCCPHR.exe
- 2009-07-13 23:39 . 2009-07-14 01:39 307712 c:\windows\system32\IME\shared\IMCCPHR.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 378368 c:\windows\system32\IME\IMETC10\IMTCPROP.exe
- 2009-07-13 23:39 . 2009-07-14 01:39 378368 c:\windows\system32\IME\IMETC10\IMTCPROP.exe
+ 2011-07-02 21:09 . 2010-11-20 13:26 698880 c:\windows\system32\IME\IMETC10\IMTCCORE.DLL
- 2009-07-13 23:40 . 2009-07-14 01:41 698880 c:\windows\system32\IME\IMETC10\IMTCCORE.DLL
+ 2011-07-02 21:08 . 2010-11-20 13:26 211456 c:\windows\system32\IME\IMETC10\IMTCCFG.DLL
- 2009-07-13 23:39 . 2009-07-14 01:41 211456 c:\windows\system32\IME\IMETC10\IMTCCFG.DLL
- 2009-07-13 23:39 . 2009-07-14 01:39 111616 c:\windows\system32\IME\IMESC5\IMSCPROP.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 111616 c:\windows\system32\IME\IMESC5\IMSCPROP.exe
+ 2011-07-02 21:07 . 2010-11-20 13:26 888832 c:\windows\system32\IME\IMESC5\ImSCCore.dll
- 2009-07-13 23:40 . 2009-07-14 01:41 888832 c:\windows\system32\IME\IMESC5\ImSCCore.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 165888 c:\windows\system32\IME\IMESC5\ImSCCfg.DLL
- 2009-07-13 23:39 . 2009-07-14 01:41 165888 c:\windows\system32\IME\IMESC5\ImSCCfg.DLL
+ 2011-07-02 21:08 . 2010-11-20 13:24 141312 c:\windows\system32\IME\IMEJP10\imjpuexc.exe
- 2009-07-13 23:40 . 2009-07-14 01:39 141312 c:\windows\system32\IME\IMEJP10\imjpuexc.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 406528 c:\windows\system32\IME\IMEJP10\IMJPDCT.EXE
- 2009-07-13 23:40 . 2009-07-14 01:39 406528 c:\windows\system32\IME\IMEJP10\IMJPDCT.EXE
+ 2011-09-15 01:02 . 2011-07-27 05:33 546304 c:\windows\system32\IME\IMEJP10\IMJPAPI.DLL
- 2011-09-15 01:02 . 2011-07-27 05:31 546304 c:\windows\system32\IME\IMEJP10\IMJPAPI.DLL
+ 2011-07-02 21:09 . 2010-11-20 13:26 503296 c:\windows\system32\imapi2.dll
+ 2011-07-02 21:10 . 2010-11-20 13:26 853504 c:\windows\system32\IKEEXT.DLL
- 2009-07-13 23:25 . 2009-07-14 01:41 180736 c:\windows\system32\ifsutil.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 180736 c:\windows\system32\ifsutil.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 198656 c:\windows\system32\iasrecst.dll
- 2009-07-14 00:09 . 2009-07-14 01:41 217088 c:\windows\system32\iasrad.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 217088 c:\windows\system32\iasrad.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 100864 c:\windows\system32\iasacct.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 235008 c:\windows\system32\hgprint.dll
- 2009-07-13 23:57 . 2009-07-14 01:41 332288 c:\windows\system32\hgcpl.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 332288 c:\windows\system32\hgcpl.dll
+ 2011-07-02 21:09 . 2010-11-20 13:33 263040 c:\windows\system32\hal.dll
+ 2011-07-02 21:10 . 2010-11-20 13:26 777728 c:\windows\system32\gpsvc.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 403968 c:\windows\system32\gdi32.dll
+ 2011-07-02 21:06 . 2010-11-20 13:26 434688 c:\windows\system32\FXSTIFF.dll
+ 2011-07-02 21:09 . 2010-11-20 13:24 689152 c:\windows\system32\FXSSVC.exe
- 2009-07-14 00:36 . 2009-07-14 01:39 689152 c:\windows\system32\FXSSVC.exe
+ 2011-04-15 00:29 . 2011-02-12 11:34 267776 c:\windows\system32\FXSCOVER.exe
- 2011-04-15 00:29 . 2011-02-12 06:14 267776 c:\windows\system32\FXSCOVER.exe
- 2009-07-14 00:35 . 2009-07-14 01:40 623104 c:\windows\system32\FXSAPI.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 623104 c:\windows\system32\FXSAPI.dll
+ 2011-07-02 21:09 . 2010-11-20 13:29 345600 c:\windows\system32\fveapi.dll
- 2009-07-14 00:06 . 2009-07-14 01:39 229376 c:\windows\system32\fsquirt.exe
+ 2011-07-12 21:37 . 2010-11-20 13:24 229376 c:\windows\system32\fsquirt.exe
+ 2011-07-02 21:09 . 2010-11-20 13:26 295936 c:\windows\system32\framedynos.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 279040 c:\windows\system32\framedyn.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 121344 c:\windows\system32\fphc.dll
+ 2011-02-09 15:35 . 2010-09-30 10:41 100864 c:\windows\system32\fontsub.dll
- 2010-07-21 23:59 . 2010-07-21 23:59 100864 c:\windows\system32\fontsub.dll
- 2009-07-13 23:57 . 2009-07-14 01:40 861184 c:\windows\system32\fontext.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 861184 c:\windows\system32\fontext.dll
+ 2009-07-14 04:45 . 2012-06-23 15:43 928480 c:\windows\system32\FNTCACHE.DAT
- 2009-07-14 04:45 . 2012-06-14 15:03 928480 c:\windows\system32\FNTCACHE.DAT
+ 2011-07-02 21:08 . 2010-11-20 13:26 116224 c:\windows\system32\fms.dll
- 2009-07-13 23:38 . 2009-07-14 01:40 116224 c:\windows\system32\fms.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 934912 c:\windows\system32\FirewallControlPanel.dll
- 2009-07-14 00:08 . 2009-07-14 01:40 934912 c:\windows\system32\FirewallControlPanel.dll
- 2009-07-13 23:55 . 2009-07-14 01:40 171520 c:\windows\system32\fde.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 171520 c:\windows\system32\fde.dll
- 2009-07-13 23:40 . 2009-07-14 01:40 355328 c:\windows\system32\Faultrep.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 355328 c:\windows\system32\Faultrep.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 630272 c:\windows\system32\evr.dll
- 2009-07-14 00:19 . 2009-07-14 01:40 630272 c:\windows\system32\evr.dll
+ 2011-07-02 21:08 . 2010-11-20 13:24 359936 c:\windows\system32\eudcedit.exe
- 2009-07-13 23:56 . 2009-07-14 01:39 359936 c:\windows\system32\eudcedit.exe
- 2011-12-15 20:57 . 2011-10-15 06:25 723456 c:\windows\system32\EncDec.dll
+ 2011-12-15 20:57 . 2011-10-15 06:31 723456 c:\windows\system32\EncDec.dll
- 2009-07-14 00:00 . 2009-07-14 01:40 144896 c:\windows\system32\EhStorAPI.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 144896 c:\windows\system32\EhStorAPI.dll
- 2009-07-13 23:50 . 2009-07-14 01:40 304128 c:\windows\system32\efscore.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 304128 c:\windows\system32\efscore.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 303616 c:\windows\system32\eapphost.dll
- 2009-07-14 00:12 . 2009-07-14 01:40 303616 c:\windows\system32\eapphost.dll
- 2009-07-14 00:12 . 2009-07-14 01:40 103936 c:\windows\system32\eappgnui.dll
+ 2011-07-02 21:06 . 2010-11-20 13:26 103936 c:\windows\system32\eappgnui.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 348160 c:\windows\system32\eapp3hst.dll
- 2009-07-14 00:12 . 2009-07-14 01:40 348160 c:\windows\system32\eapp3hst.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 675328 c:\windows\system32\DXPTaskRingtone.dll
- 2009-07-14 00:22 . 2009-07-14 01:40 675328 c:\windows\system32\DXPTaskRingtone.dll
- 2009-07-14 00:21 . 2009-07-14 01:40 459776 c:\windows\system32\DXP.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 459776 c:\windows\system32\DXP.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 658944 c:\windows\system32\dxgi.dll
- 2009-07-13 23:42 . 2009-07-14 01:40 279552 c:\windows\system32\dxdiagn.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 279552 c:\windows\system32\dxdiagn.dll
- 2009-07-13 23:37 . 2009-07-14 01:40 128512 c:\windows\system32\dwmredir.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 128512 c:\windows\system32\dwmredir.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 701440 c:\windows\system32\dsuiext.dll
- 2009-07-13 23:55 . 2009-07-14 01:40 701440 c:\windows\system32\dsuiext.dll
- 2009-07-13 23:56 . 2009-07-14 01:40 239616 c:\windows\system32\dskquoui.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 239616 c:\windows\system32\dskquoui.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 281600 c:\windows\system32\DShowRdpFilter.dll
+ 2011-07-02 21:00 . 2010-11-20 13:26 422912 c:\windows\system32\drvstore.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 495104 c:\windows\system32\drmmgrtn.dll
- 2009-07-14 00:21 . 2009-07-14 01:40 495104 c:\windows\system32\drmmgrtn.dll
+ 2009-07-14 05:30 . 2012-06-23 15:55 143360 c:\windows\system32\DriverStore\infstrng.dat
- 2009-07-14 05:30 . 2012-06-19 20:56 143360 c:\windows\system32\DriverStore\infstrng.dat
+ 2009-07-14 05:30 . 2012-06-23 15:24 143360 c:\windows\system32\DriverStore\infstor.dat
- 2009-07-14 05:30 . 2012-06-19 20:56 143360 c:\windows\system32\DriverStore\infstor.dat
+ 2011-07-02 21:07 . 2010-11-20 13:27 116224 c:\windows\system32\DriverStore\FileRepository\wudfusbcciddriver.inf_amd64_neutral_adc3e4acb1046b4b\WUDFUsbccidDriver.dll
+ 2011-07-02 21:07 . 2010-11-20 10:43 109696 c:\windows\system32\DriverStore\FileRepository\wdma_usb.inf_amd64_neutral_7bb325bca8ea1218\USBAUDIO.sys
+ 2011-07-02 21:09 . 2010-11-20 13:34 295808 c:\windows\system32\DriverStore\FileRepository\volume.inf_amd64_neutral_df8bea40ac96ca21\volsnap.sys
+ 2011-07-02 21:09 . 2010-11-20 13:34 215936 c:\windows\system32\DriverStore\FileRepository\vhdmp.inf_amd64_neutral_c3910bbf4fbccf97\vhdmp.sys
+ 2011-07-02 21:08 . 2010-11-20 10:44 184960 c:\windows\system32\DriverStore\FileRepository\usbvideo.inf_amd64_neutral_836a6716cd56c692\usbvideo.sys
+ 2011-07-02 21:08 . 2010-11-20 10:44 325120 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_f935002f367d5bb0\usbport.sys
+ 2011-07-02 21:07 . 2010-11-20 10:44 343040 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_f935002f367d5bb0\usbhub.sys
+ 2011-05-12 13:39 . 2011-03-25 03:29 325120 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_189259810882aaea\usbport.sys
+ 2011-05-12 13:39 . 2011-03-25 03:29 343040 c:\windows\system32\DriverStore\FileRepository\usbport.inf_amd64_neutral_189259810882aaea\usbhub.sys
+ 2009-07-14 00:06 . 2009-07-14 00:06 100352 c:\windows\system32\DriverStore\FileRepository\usbcir.inf_amd64_neutral_379fb0c62496be6e\usbcir.sys
+ 2011-07-02 21:07 . 2010-11-20 10:44 343040 c:\windows\system32\DriverStore\FileRepository\usb.inf_amd64_neutral_269d7150439b3372\usbhub.sys
+ 2011-05-12 13:39 . 2011-03-25 03:29 343040 c:\windows\system32\DriverStore\FileRepository\usb.inf_amd64_neutral_153b489118ee37b8\usbhub.sys
+ 2011-07-02 21:09 . 2010-11-20 13:27 156672 c:\windows\system32\DriverStore\FileRepository\tsprint.inf_amd64_neutral_c48d421ad2c1e3e3\amd64\tsprint.dll
+ 2011-07-02 21:07 . 2010-11-20 09:37 109056 c:\windows\system32\DriverStore\FileRepository\sdbus.inf_amd64_neutral_735aa3b5ee832f62\sdbus.sys
+ 2011-07-02 21:08 . 2010-11-20 13:33 103808 c:\windows\system32\DriverStore\FileRepository\sbp2.inf_amd64_neutral_332943647e950ada\sbp2port.sys
+ 2011-07-02 21:07 . 2010-11-20 13:26 156672 c:\windows\system32\DriverStore\FileRepository\prnms002.inf_amd64_neutral_d834e48846616289\Amd64\FXSWZRD.DLL
+ 2011-07-02 21:07 . 2010-11-20 13:26 160256 c:\windows\system32\DriverStore\FileRepository\prnms002.inf_amd64_neutral_d834e48846616289\Amd64\FXSUI.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:26 434688 c:\windows\system32\DriverStore\FileRepository\prnms002.inf_amd64_neutral_d834e48846616289\Amd64\FXSTIFF.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:26 380416 c:\windows\system32\DriverStore\FileRepository\prnms002.inf_amd64_neutral_d834e48846616289\Amd64\FXSDRV.DLL
+ 2011-07-02 21:07 . 2010-11-20 13:26 623104 c:\windows\system32\DriverStore\FileRepository\prnms002.inf_amd64_neutral_d834e48846616289\Amd64\FXSAPI.DLL
+ 2011-07-02 21:07 . 2010-11-20 13:27 221184 c:\windows\system32\DriverStore\FileRepository\prnms001.inf_amd64_neutral_9fe8503f82ce60fa\mxdwdui.dll
+ 2011-07-02 21:09 . 2010-11-20 13:33 166272 c:\windows\system32\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
+ 2011-07-02 21:09 . 2010-11-20 13:33 148352 c:\windows\system32\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvraid.sys
+ 2011-04-26 23:57 . 2011-03-11 06:41 166272 c:\windows\system32\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
+ 2011-04-26 23:57 . 2011-03-11 06:41 148352 c:\windows\system32\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvraid.sys
+ 2011-07-02 21:07 . 2010-11-20 13:09 762368 c:\windows\system32\DriverStore\FileRepository\ntprint.inf_amd64_neutral_4616c3de1949be6d\Amd64\UNIRES.DLL
+ 2011-07-02 21:08 . 2010-11-20 13:27 884224 c:\windows\system32\DriverStore\FileRepository\ntprint.inf_amd64_neutral_4616c3de1949be6d\Amd64\UNIDRVUI.DLL
+ 2011-07-02 21:08 . 2010-11-20 13:27 479232 c:\windows\system32\DriverStore\FileRepository\ntprint.inf_amd64_neutral_4616c3de1949be6d\Amd64\UNIDRV.DLL
+ 2011-07-02 21:08 . 2010-11-20 13:27 630272 c:\windows\system32\DriverStore\FileRepository\ntprint.inf_amd64_neutral_4616c3de1949be6d\Amd64\PSCRIPT5.DLL
+ 2011-07-02 21:08 . 2010-11-20 13:27 847872 c:\windows\system32\DriverStore\FileRepository\ntprint.inf_amd64_neutral_4616c3de1949be6d\Amd64\PS5UI.DLL
+ 2009-07-14 01:19 . 2009-07-14 01:19 207872 c:\windows\system32\DriverStore\FileRepository\ntprint.inf_amd64_neutral_4616c3de1949be6d\Amd64\PCLXL.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:09 292352 c:\windows\system32\DriverStore\FileRepository\ntprint.inf_amd64_neutral_4616c3de1949be6d\Amd64\PCL4RES.DLL
+ 2011-07-02 21:07 . 2010-11-20 13:27 715776 c:\windows\system32\DriverStore\FileRepository\ntprint.inf_amd64_neutral_4616c3de1949be6d\Amd64\MXDWDRV.DLL
+ 2011-07-02 21:08 . 2010-11-20 13:32 155520 c:\windows\system32\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\ataport.sys
+ 2011-07-02 21:09 . 2010-11-20 13:33 140672 c:\windows\system32\DriverStore\FileRepository\msdsm.inf_amd64_neutral_be2b348981b2ef17\msdsm.sys
+ 2011-07-02 21:07 . 2010-11-20 13:33 155008 c:\windows\system32\DriverStore\FileRepository\mpio.inf_amd64_neutral_0c74c0f95001b61c\mpio.sys
+ 2011-07-02 21:07 . 2010-11-20 13:25 218112 c:\windows\system32\DriverStore\FileRepository\modemcsa.inf_amd64_neutral_b64a610f1f09f267\csamsp.dll
+ 2011-07-02 21:09 . 2010-11-20 13:33 184704 c:\windows\system32\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\pci.sys
+ 2009-07-13 23:38 . 2009-07-14 01:48 122960 c:\windows\system32\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\NV_AGP.SYS
+ 2009-07-13 23:19 . 2009-07-13 23:19 105472 c:\windows\system32\DriverStore\FileRepository\keyboard.inf_amd64_neutral_0684fdc43059f486\i8042prt.sys
+ 2011-07-02 21:10 . 2010-11-20 13:33 273792 c:\windows\system32\DriverStore\FileRepository\iscsi.inf_amd64_neutral_2ef24e9270d8b2a9\msiscsi.sys
+ 2011-07-02 21:08 . 2010-11-20 13:33 410496 c:\windows\system32\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
+ 2011-04-26 23:57 . 2011-03-11 06:41 410496 c:\windows\system32\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys
+ 2011-07-02 21:06 . 2010-11-20 10:44 350208 c:\windows\system32\DriverStore\FileRepository\hdaudio.inf_amd64_neutral_ce7bc199c85ae0a0\HdAudio.sys
+ 2011-07-02 21:06 . 2010-11-20 10:43 122368 c:\windows\system32\DriverStore\FileRepository\hdaudbus.inf_amd64_neutral_4b99fffee061ff26\hdaudbus.sys
+ 2011-07-02 21:06 . 2010-11-20 09:19 147456 c:\windows\system32\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
+ 2011-07-02 21:07 . 2010-11-20 13:24 229376 c:\windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_e54666f6a3e5af91\fsquirt.exe
+ 2011-07-02 21:08 . 2010-11-20 10:44 552448 c:\windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_e54666f6a3e5af91\bthport.sys
+ 2011-07-12 21:37 . 2010-11-20 13:24 229376 c:\windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_ca26c6da62d71ca8\fsquirt.exe
+ 2011-07-12 21:37 . 2011-04-28 03:55 552960 c:\windows\system32\DriverStore\FileRepository\bth.inf_amd64_neutral_ca26c6da62d71ca8\bthport.sys
+ 2011-07-02 21:09 . 2010-11-20 13:32 107904 c:\windows\system32\DriverStore\FileRepository\amdsata.inf_amd64_neutral_67db50590108ebd9\amdsata.sys
+ 2011-04-26 23:57 . 2011-03-11 06:41 107904 c:\windows\system32\DriverStore\FileRepository\amdsata.inf_amd64_neutral_5c3d0d1e97e99e10\amdsata.sys
+ 2011-07-02 21:08 . 2010-11-20 13:32 334208 c:\windows\system32\DriverStore\FileRepository\acpi.inf_amd64_neutral_aed2e7a487803437\acpi.sys
+ 2011-07-02 21:09 . 2010-11-20 10:44 229888 c:\windows\system32\DriverStore\FileRepository\1394.inf_amd64_neutral_0b11366838152a76\1394ohci.sys
- 2009-07-14 05:31 . 2011-07-13 17:02 399360 c:\windows\system32\DriverStore\drvindex.dat
+ 2009-07-14 05:31 . 2012-06-23 15:17 399360 c:\windows\system32\DriverStore\drvindex.dat
- 2009-07-14 00:06 . 2009-07-14 00:06 172544 c:\windows\system32\drivers\WUDFRd.sys
+ 2011-07-02 21:06 . 2010-11-20 10:43 172544 c:\windows\system32\drivers\WUDFRd.sys
+ 2011-07-02 21:06 . 2010-11-20 10:42 112128 c:\windows\system32\drivers\WUDFPf.sys
- 2009-07-14 00:05 . 2009-07-14 00:05 112128 c:\windows\system32\drivers\WUDFPf.sys
+ 2011-07-02 21:09 . 2010-11-20 13:34 295808 c:\windows\system32\drivers\volsnap.sys
+ 2011-07-02 21:08 . 2010-11-20 13:34 363392 c:\windows\system32\drivers\volmgrx.sys
+ 2011-07-02 21:09 . 2010-11-20 13:34 215936 c:\windows\system32\drivers\vhdmp.sys
+ 2011-07-02 21:08 . 2010-11-20 10:44 184960 c:\windows\system32\drivers\usbvideo.sys
+ 2011-05-12 13:39 . 2011-03-25 03:29 325120 c:\windows\system32\drivers\usbport.sys
+ 2011-05-12 13:39 . 2011-03-25 03:29 343040 c:\windows\system32\drivers\usbhub.sys
- 2011-05-12 13:39 . 2011-03-29 03:32 343040 c:\windows\system32\drivers\usbhub.sys
+ 2011-07-02 21:09 . 2010-11-20 09:26 328192 c:\windows\system32\drivers\udfs.sys
+ 2011-07-02 21:06 . 2010-11-20 10:51 125440 c:\windows\system32\drivers\tunnel.sys
- 2009-07-14 00:09 . 2009-07-14 00:09 125440 c:\windows\system32\drivers\tunnel.sys
+ 2011-07-02 21:09 . 2010-11-20 09:21 119296 c:\windows\system32\drivers\tdx.sys
+ 2011-04-26 23:57 . 2011-03-11 06:41 189824 c:\windows\system32\drivers\storport.sys
+ 2011-06-15 20:31 . 2011-04-29 03:05 168448 c:\windows\system32\drivers\srvnet.sys
+ 2011-06-15 20:31 . 2011-04-29 03:05 410112 c:\windows\system32\drivers\srv2.sys
+ 2011-06-15 20:31 . 2011-04-29 03:06 467456 c:\windows\system32\drivers\srv.sys
+ 2011-07-02 21:07 . 2010-11-20 09:37 109056 c:\windows\system32\drivers\sdbus.sys
- 2009-07-13 23:31 . 2009-07-13 23:31 109056 c:\windows\system32\drivers\sdbus.sys
+ 2011-07-02 21:08 . 2010-11-20 13:33 171392 c:\windows\system32\drivers\scsiport.sys
+ 2011-07-02 21:08 . 2010-11-20 13:33 103808 c:\windows\system32\drivers\sbp2port.sys
+ 2011-07-02 21:07 . 2010-11-20 10:49 146432 c:\windows\system32\drivers\rmcast.sys
+ 2011-07-02 21:08 . 2010-11-20 13:33 213888 c:\windows\system32\drivers\rdyboost.sys
+ 2012-06-14 03:07 . 2012-04-28 03:55 210944 c:\windows\system32\drivers\rdpwd.sys
- 2009-07-13 23:24 . 2009-07-13 23:24 309248 c:\windows\system32\drivers\rdbss.sys
+ 2011-07-02 21:09 . 2010-11-20 09:27 309248 c:\windows\system32\drivers\rdbss.sys
+ 2011-07-02 21:08 . 2010-11-20 10:52 111104 c:\windows\system32\drivers\raspptp.sys
+ 2011-07-02 21:09 . 2010-11-20 10:52 129536 c:\windows\system32\drivers\rasl2tp.sys
+ 2011-07-02 21:09 . 2010-11-20 13:33 184704 c:\windows\system32\drivers\pci.sys
- 2009-07-14 00:09 . 2009-07-14 00:09 131584 c:\windows\system32\drivers\pacer.sys
+ 2011-07-02 21:07 . 2010-11-20 10:52 131584 c:\windows\system32\drivers\pacer.sys
+ 2011-04-26 23:57 . 2011-03-11 06:41 166272 c:\windows\system32\drivers\nvstor.sys
- 2011-04-26 23:57 . 2011-03-11 06:23 166272 c:\windows\system32\drivers\nvstor.sys
- 2011-04-26 23:57 . 2011-03-11 06:23 148352 c:\windows\system32\drivers\nvraid.sys
+ 2011-04-26 23:57 . 2011-03-11 06:41 148352 c:\windows\system32\drivers\nvraid.sys
+ 2011-07-02 21:09 . 2010-11-20 13:33 376192 c:\windows\system32\drivers\netio.sys
+ 2011-07-02 21:09 . 2010-11-20 09:23 261632 c:\windows\system32\drivers\netbt.sys
- 2009-07-14 00:10 . 2009-07-14 00:10 164352 c:\windows\system32\drivers\ndiswan.sys
+ 2011-07-02 21:08 . 2010-11-20 10:52 164352 c:\windows\system32\drivers\ndiswan.sys
+ 2011-07-02 21:10 . 2010-11-20 13:33 951680 c:\windows\system32\drivers\ndis.sys
+ 2011-07-02 21:09 . 2010-11-20 13:33 366976 c:\windows\system32\drivers\msrpc.sys
+ 2011-07-02 21:10 . 2010-11-20 13:33 273792 c:\windows\system32\drivers\msiscsi.sys
+ 2011-07-02 21:09 . 2010-11-20 13:33 140672 c:\windows\system32\drivers\msdsm.sys
+ 2011-06-15 20:32 . 2011-04-27 02:39 128000 c:\windows\system32\drivers\mrxsmb20.sys
+ 2011-08-10 18:31 . 2011-07-09 02:46 288768 c:\windows\system32\drivers\mrxsmb10.sys
+ 2011-06-15 20:32 . 2011-04-27 02:40 158208 c:\windows\system32\drivers\mrxsmb.sys
- 2009-07-13 23:23 . 2009-07-13 23:23 140800 c:\windows\system32\drivers\mrxdav.sys
+ 2011-07-02 21:09 . 2010-11-20 09:26 140800 c:\windows\system32\drivers\mrxdav.sys
+ 2011-07-02 21:07 . 2010-11-20 13:33 155008 c:\windows\system32\drivers\mpio.sys
- 2012-01-13 20:54 . 2011-11-17 07:17 152432 c:\windows\system32\drivers\ksecpkg.sys
+ 2012-01-13 20:54 . 2011-11-17 06:49 152432 c:\windows\system32\drivers\ksecpkg.sys
- 2011-01-15 04:11 . 2010-03-04 04:32 243712 c:\windows\system32\drivers\ks.sys
+ 2011-07-02 21:08 . 2010-11-20 10:33 243712 c:\windows\system32\drivers\ks.sys
+ 2011-04-26 23:57 . 2011-03-11 06:41 410496 c:\windows\system32\drivers\iaStorV.sys
- 2011-04-26 23:57 . 2011-03-11 06:23 410496 c:\windows\system32\drivers\iaStorV.sys
+ 2011-07-02 21:10 . 2010-11-20 09:25 753664 c:\windows\system32\drivers\http.sys
+ 2011-07-02 21:06 . 2010-11-20 10:44 350208 c:\windows\system32\drivers\HdAudio.sys
- 2009-07-14 00:07 . 2009-07-14 00:07 350208 c:\windows\system32\drivers\HdAudio.sys
+ 2011-07-02 21:06 . 2010-11-20 10:43 122368 c:\windows\system32\drivers\hdaudbus.sys
- 2009-07-14 00:06 . 2009-07-14 00:06 122368 c:\windows\system32\drivers\hdaudbus.sys
+ 2011-06-15 20:32 . 2010-11-20 13:33 288640 c:\windows\system32\drivers\FWPKCLNT.SYS
+ 2011-07-02 21:09 . 2010-11-20 13:28 223248 c:\windows\system32\drivers\fvevol.sys
+ 2011-07-02 21:09 . 2010-11-20 13:33 289664 c:\windows\system32\drivers\fltMgr.sys
+ 2011-07-02 21:07 . 2010-11-20 09:49 258048 c:\windows\system32\drivers\dxgmms1.sys
- 2011-02-09 15:35 . 2011-01-26 06:53 982912 c:\windows\system32\drivers\dxgkrnl.sys
+ 2011-07-02 21:09 . 2010-11-20 13:33 982912 c:\windows\system32\drivers\dxgkrnl.sys
- 2011-06-15 20:32 . 2011-04-27 02:57 102400 c:\windows\system32\drivers\dfsc.sys
+ 2011-07-02 21:06 . 2010-11-20 09:26 102400 c:\windows\system32\drivers\dfsc.sys
+ 2012-01-13 20:54 . 2011-11-17 06:44 459232 c:\windows\system32\drivers\cng.sys
+ 2011-07-02 21:08 . 2010-11-20 13:32 179072 c:\windows\system32\drivers\Classpnp.sys
+ 2011-07-02 21:06 . 2010-11-20 09:19 147456 c:\windows\system32\drivers\cdrom.sys
- 2009-07-13 23:19 . 2009-07-13 23:19 147456 c:\windows\system32\drivers\cdrom.sys
+ 2011-07-12 21:37 . 2011-04-28 03:55 552960 c:\windows\system32\drivers\bthport.sys
+ 2011-07-02 21:08 . 2010-11-20 13:32 155520 c:\windows\system32\drivers\ataport.sys
- 2011-04-26 23:57 . 2011-03-11 06:22 107904 c:\windows\system32\drivers\amdsata.sys
+ 2011-04-26 23:57 . 2011-03-11 06:41 107904 c:\windows\system32\drivers\amdsata.sys
+ 2012-02-16 01:06 . 2011-12-28 03:59 498688 c:\windows\system32\drivers\afd.sys
+ 2011-07-02 21:08 . 2010-11-20 13:32 334208 c:\windows\system32\drivers\acpi.sys
+ 2011-07-02 21:09 . 2010-11-20 10:44 229888 c:\windows\system32\drivers\1394ohci.sys
+ 2011-07-02 21:00 . 2010-11-20 13:26 399872 c:\windows\system32\dpx.dll
- 2009-07-13 23:31 . 2009-07-14 01:40 162816 c:\windows\system32\dps.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 162816 c:\windows\system32\dps.dll
- 2009-07-14 00:07 . 2009-07-14 01:40 313344 c:\windows\system32\dot3ui.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 313344 c:\windows\system32\dot3ui.dll
- 2009-07-14 00:07 . 2009-07-14 01:40 252416 c:\windows\system32\dot3svc.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 252416 c:\windows\system32\dot3svc.dll
+ 2011-07-02 21:06 . 2010-11-20 13:26 103936 c:\windows\system32\dot3msm.dll
- 2009-07-14 00:07 . 2009-07-14 01:40 103936 c:\windows\system32\dot3msm.dll
+ 2011-04-15 00:29 . 2011-03-03 06:24 183296 c:\windows\system32\dnsrslvr.dll
- 2009-07-14 00:12 . 2009-07-14 01:40 118272 c:\windows\system32\dnscmmc.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 118272 c:\windows\system32\dnscmmc.dll
+ 2011-04-15 00:29 . 2011-03-03 06:24 357888 c:\windows\system32\dnsapi.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 444416 c:\windows\system32\Dism\TransmogProvider.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 313344 c:\windows\system32\Dism\IntlProvider.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 111616 c:\windows\system32\Dism\DismCorePS.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 289792 c:\windows\system32\Dism\DismCore.dll
+ 2011-07-02 21:10 . 2010-11-20 13:25 762368 c:\windows\system32\Dism\CbsProvider.dll
+ 2011-07-02 21:07 . 2010-11-20 13:24 363520 c:\windows\system32\diskraid.exe
- 2009-07-13 23:37 . 2009-07-14 01:39 363520 c:\windows\system32\diskraid.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 166400 c:\windows\system32\diskpart.exe
- 2009-07-13 23:37 . 2009-07-14 01:39 166400 c:\windows\system32\diskpart.exe
+ 2011-07-02 21:09 . 2010-11-20 13:26 317952 c:\windows\system32\dhcpcore.dll
+ 2011-07-02 21:07 . 2010-11-20 13:24 606208 c:\windows\system32\dfrgui.exe
- 2009-07-13 23:36 . 2009-07-14 01:39 606208 c:\windows\system32\dfrgui.exe
+ 2011-07-02 21:07 . 2010-11-20 13:26 225280 c:\windows\system32\DevicePairingFolder.dll
- 2009-07-13 23:57 . 2009-07-14 01:40 225280 c:\windows\system32\DevicePairingFolder.dll
- 2009-07-13 23:58 . 2009-07-14 01:40 508928 c:\windows\system32\DeviceCenter.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 508928 c:\windows\system32\DeviceCenter.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 233984 c:\windows\system32\defaultlocationcpl.dll
- 2009-07-14 00:00 . 2009-07-14 01:40 233984 c:\windows\system32\defaultlocationcpl.dll
- 2011-02-09 15:35 . 2010-12-21 06:10 100864 c:\windows\system32\davclnt.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 100864 c:\windows\system32\davclnt.dll
- 2009-07-13 23:42 . 2009-07-14 01:40 787968 c:\windows\system32\d3d11.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 787968 c:\windows\system32\d3d11.dll
- 2009-07-13 23:42 . 2009-07-14 01:40 573952 c:\windows\system32\d3d10level9.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 573952 c:\windows\system32\d3d10level9.dll
+ 2011-06-15 20:31 . 2010-11-20 13:26 321024 c:\windows\system32\d3d10_1core.dll
+ 2011-06-15 20:31 . 2011-01-17 11:09 197120 c:\windows\system32\d3d10_1.dll
- 2012-05-11 16:16 . 2012-03-03 06:29 197120 c:\windows\system32\d3d10_1.dll
- 2012-05-11 16:16 . 2012-03-03 06:29 902656 c:\windows\system32\d2d1.dll
+ 2011-03-08 21:28 . 2011-02-19 12:04 902656 c:\windows\system32\d2d1.dll
+ 2012-06-14 03:07 . 2012-04-24 05:37 184320 c:\windows\system32\cryptsvc.dll
- 2012-06-14 03:07 . 2012-04-24 05:59 140288 c:\windows\system32\cryptnet.dll
+ 2012-06-14 03:07 . 2012-04-24 05:37 140288 c:\windows\system32\cryptnet.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 197120 c:\windows\system32\credui.dll
+ 2011-03-08 21:28 . 2010-12-23 10:42 961024 c:\windows\system32\CPFilters.dll
- 2011-03-08 21:28 . 2010-12-23 06:07 961024 c:\windows\system32\CPFilters.dll
+ 2011-07-02 21:08 . 2010-11-20 13:32 112000 c:\windows\system32\consent.exe
- 2011-01-15 04:03 . 2010-10-16 05:23 112000 c:\windows\system32\consent.exe
+ 2011-08-10 18:31 . 2011-06-24 05:25 338432 c:\windows\system32\conhost.exe
- 2011-08-10 18:31 . 2011-07-16 05:17 338432 c:\windows\system32\conhost.exe
- 2009-07-14 05:12 . 2012-02-16 18:03 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-07-14 05:12 . 2012-06-23 14:52 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2011-07-02 21:09 . 2010-11-20 13:25 594432 c:\windows\system32\comdlg32.dll
- 2011-01-15 04:17 . 2010-08-21 06:31 633856 c:\windows\system32\comctl32.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 633856 c:\windows\system32\comctl32.dll
+ 2011-07-02 21:09 . 2010-11-20 13:24 345088 c:\windows\system32\cmd.exe
+ 2011-07-02 21:08 . 2010-11-20 13:25 314368 c:\windows\system32\clusapi.dll
- 2009-07-13 23:34 . 2009-07-14 01:40 314368 c:\windows\system32\clusapi.dll
+ 2011-07-02 21:09 . 2010-11-20 13:28 780008 c:\windows\system32\ci.dll
+ 2011-06-29 00:07 . 2010-11-20 13:25 207872 c:\windows\system32\cfgmgr32.dll
- 2009-07-13 23:50 . 2009-07-14 01:40 460800 c:\windows\system32\certcli.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 460800 c:\windows\system32\certcli.dll
+ 2011-07-02 21:09 . 2010-11-20 12:55 144384 c:\windows\system32\cdd.dll
- 2011-02-09 15:35 . 2011-01-26 06:31 144384 c:\windows\system32\cdd.dll
- 2010-07-22 00:05 . 2010-07-22 00:05 139264 c:\windows\system32\cabview.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 139264 c:\windows\system32\cabview.dll
+ 2011-07-02 21:07 . 2010-11-20 13:24 899584 c:\windows\system32\Bubbles.scr
- 2009-07-13 23:57 . 2009-07-14 01:38 899584 c:\windows\system32\Bubbles.scr
+ 2011-07-02 21:07 . 2010-11-20 13:25 136192 c:\windows\system32\browser.dll
- 2009-07-13 23:53 . 2009-07-14 01:40 136192 c:\windows\system32\browser.dll
+ 2011-04-15 00:29 . 2011-02-05 17:06 518672 c:\windows\system32\Boot\winresume.exe
+ 2011-04-15 00:29 . 2011-02-05 17:06 605552 c:\windows\system32\Boot\winload.exe
+ 2011-07-02 21:07 . 2010-11-20 13:25 840192 c:\windows\system32\blackbox.dll
- 2009-07-14 00:20 . 2009-07-14 01:40 840192 c:\windows\system32\blackbox.dll
- 2009-07-13 23:46 . 2009-07-14 01:38 232448 c:\windows\system32\bitsadmin.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 232448 c:\windows\system32\bitsadmin.exe
- 2009-07-13 23:53 . 2009-07-14 01:40 504320 c:\windows\system32\biocpl.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 504320 c:\windows\system32\biocpl.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 705024 c:\windows\system32\BFE.DLL
+ 2011-07-02 21:09 . 2010-11-20 13:28 298104 c:\windows\system32\bcryptprimitives.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 168448 c:\windows\system32\bcdsrv.dll
+ 2011-07-02 21:07 . 2010-11-20 13:24 346112 c:\windows\system32\bcdedit.exe
- 2009-07-13 23:23 . 2009-07-14 01:38 175616 c:\windows\system32\bcdboot.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 175616 c:\windows\system32\bcdboot.exe
+ 2011-07-02 21:08 . 2010-11-20 13:25 749568 c:\windows\system32\batmeter.dll
+ 2011-07-02 21:08 . 2010-11-20 13:28 166784 c:\windows\system32\basecsp.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 472064 c:\windows\system32\azroleui.dll
- 2009-07-13 23:46 . 2009-07-14 01:40 472064 c:\windows\system32\azroleui.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 897536 c:\windows\system32\azroles.dll
- 2009-07-13 23:50 . 2009-07-14 01:40 114688 c:\windows\system32\AxInstSv.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 114688 c:\windows\system32\AxInstSv.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 135680 c:\windows\system32\AuxiliaryDisplayServices.dll
- 2009-07-14 00:00 . 2009-07-14 01:40 135680 c:\windows\system32\AuxiliaryDisplayServices.dll
- 2009-07-14 00:00 . 2009-07-14 01:40 726528 c:\windows\system32\AuxiliaryDisplayCpl.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 726528 c:\windows\system32\AuxiliaryDisplayCpl.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 155136 c:\windows\system32\autoplay.dll
- 2009-07-13 23:56 . 2009-07-14 01:40 155136 c:\windows\system32\autoplay.dll
- 2009-07-13 23:25 . 2009-07-14 01:38 763904 c:\windows\system32\autofmt.exe
+ 2011-07-02 21:08 . 2010-11-20 13:24 763904 c:\windows\system32\autofmt.exe
- 2009-07-13 23:25 . 2009-07-14 01:38 793088 c:\windows\system32\autoconv.exe
+ 2011-07-02 21:08 . 2010-11-20 13:24 793088 c:\windows\system32\autoconv.exe
+ 2011-07-02 21:08 . 2010-11-20 13:24 777728 c:\windows\system32\autochk.exe
+ 2011-07-02 21:09 . 2010-11-20 13:25 679424 c:\windows\system32\audiosrv.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 296448 c:\windows\system32\AudioSes.dll
- 2009-07-14 00:18 . 2009-07-14 01:40 296448 c:\windows\system32\AudioSes.dll
- 2009-07-14 00:18 . 2009-07-14 01:38 126464 c:\windows\system32\audiodg.exe
+ 2011-07-02 21:08 . 2010-11-20 13:24 126464 c:\windows\system32\audiodg.exe
+ 2011-04-15 00:30 . 2011-02-19 09:00 367616 c:\windows\system32\atmfd.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 158536 c:\windows\system32\atl100.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 158536 c:\windows\system32\atl100.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 342016 c:\windows\system32\apphelp.dll
+ 2011-07-02 21:09 . 2010-11-20 13:24 122880 c:\windows\system32\aitagent.exe
+ 2011-07-02 21:09 . 2010-11-20 13:25 412160 c:\windows\system32\aepdu.dll
+ 2011-07-02 21:09 . 2010-11-20 12:51 424448 c:\windows\system32\aeinv.dll
- 2009-07-13 23:32 . 2009-07-14 01:24 424448 c:\windows\system32\aeinv.dll
+ 2011-07-02 21:00 . 2010-11-20 13:25 125952 c:\windows\system32\AdvancedInstallers\cmiadapter.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 958464 c:\windows\system32\actxprxy.dll
- 2009-07-13 23:35 . 2009-07-14 01:40 213504 c:\windows\system32\ActionQueue.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 213504 c:\windows\system32\ActionQueue.dll
- 2009-07-13 23:56 . 2009-07-14 01:40 549888 c:\windows\system32\ActionCenterCPL.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 549888 c:\windows\system32\ActionCenterCPL.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 780800 c:\windows\system32\ActionCenter.dll
- 2009-07-13 23:56 . 2009-07-14 01:40 780800 c:\windows\system32\ActionCenter.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 158720 c:\windows\system32\aaclient.dll
- 2009-07-13 23:35 . 2009-07-14 01:39 194048 c:\windows\servicing\TrustedInstaller.exe
+ 2011-07-02 21:09 . 2010-11-20 13:25 194048 c:\windows\servicing\TrustedInstaller.exe
+ 2009-07-14 05:01 . 2012-06-23 15:41 672720 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-13 20:54 . 2009-06-10 20:31 729088 c:\windows\Microsoft.NET\Framework64\v3.5\Microsoft.Build.Tasks.v3.5.dll
+ 2011-07-02 21:09 . 2010-11-05 01:53 729088 c:\windows\Microsoft.NET\Framework64\v3.5\Microsoft.Build.Tasks.v3.5.dll
+ 2011-07-02 21:09 . 2010-11-05 01:53 171368 c:\windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationHostDLL.dll
- 2009-07-14 01:01 . 2009-06-10 20:30 149328 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\WsatConfig.exe
+ 2011-07-02 21:08 . 2010-11-05 01:52 149328 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\WsatConfig.exe
+ 2011-07-02 21:06 . 2010-11-05 01:52 847872 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
- 2009-07-14 01:01 . 2009-06-10 20:30 847872 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
+ 2011-07-02 21:09 . 2010-11-05 01:52 271712 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMConfigInstaller.exe
+ 2011-07-02 21:08 . 2010-11-05 01:52 153440 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelReg.exe
+ 2011-07-02 21:07 . 2010-11-05 01:52 163840 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\Microsoft.Transactions.Bridge.Dtc.dll
- 2009-07-14 01:01 . 2009-06-10 20:30 163840 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\Microsoft.Transactions.Bridge.Dtc.dll
+ 2011-07-02 21:08 . 2010-11-05 01:52 856400 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
- 2009-07-14 01:01 . 2009-06-10 20:30 165720 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ComSvcConfig.exe
+ 2011-07-02 21:08 . 2010-11-05 01:52 165720 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ComSvcConfig.exe
+ 2011-07-02 21:09 . 2010-11-05 01:57 745296 c:\windows\Microsoft.NET\Framework64\v2.0.50727\webengine.dll
+ 2011-07-02 21:08 . 2010-11-05 01:57 839680 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Web.Services.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 839680 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Web.Services.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 835584 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Web.Mobile.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 835584 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Web.Mobile.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 114688 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.ServiceProcess.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 114688 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.ServiceProcess.dll
+ 2011-07-02 21:08 . 2010-11-05 01:57 258048 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Security.dll
- 2011-01-15 04:07 . 2010-03-03 23:26 258048 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Security.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 303104 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Remoting.dll
+ 2011-07-02 21:07 . 2010-11-05 01:57 303104 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Remoting.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 258048 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Messaging.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 258048 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Messaging.dll
+ 2011-07-02 21:09 . 2010-11-05 01:57 385024 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Management.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 133120 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.EnterpriseServices.Wrapper.dll
+ 2011-07-02 21:07 . 2010-11-05 01:57 133120 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.EnterpriseServices.Wrapper.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 245760 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.EnterpriseServices.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 245760 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.EnterpriseServices.dll
+ 2011-07-02 21:07 . 2010-11-05 01:57 626688 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Drawing.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 401408 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.DirectoryServices.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 401408 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.DirectoryServices.dll
+ 2011-07-02 21:07 . 2010-11-05 01:56 970752 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Deployment.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 970752 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Deployment.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 745472 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Data.SqlXml.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 745472 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Data.SqlXml.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 502272 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Data.OracleClient.dll
+ 2011-07-02 21:08 . 2010-11-05 01:56 502272 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Data.OracleClient.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 425984 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.configuration.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 425984 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.configuration.dll
+ 2011-07-02 21:08 . 2010-11-05 01:56 485192 c:\windows\Microsoft.NET\Framework64\v2.0.50727\SOS.dll
+ 2011-07-02 21:08 . 2010-11-05 01:56 113488 c:\windows\Microsoft.NET\Framework64\v2.0.50727\shfusion.dll
+ 2011-07-02 21:08 . 2010-11-05 01:56 159560 c:\windows\Microsoft.NET\Framework64\v2.0.50727\ngen.exe
+ 2011-07-02 21:08 . 2010-11-05 01:56 494416 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvc.dll
+ 2011-07-02 21:09 . 2010-11-05 01:56 165712 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
- 2009-07-13 20:37 . 2009-06-10 20:39 165712 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
- 2009-07-13 20:37 . 2009-06-10 20:39 113488 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorld.dll
+ 2011-07-02 21:08 . 2010-11-05 01:56 113488 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorld.dll
+ 2011-07-02 21:09 . 2010-11-05 01:56 576848 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscordbi.dll
+ 2011-07-02 21:08 . 2010-11-05 01:56 112464 c:\windows\Microsoft.NET\Framework64\v2.0.50727\MmcAspExt.dll

Tony Lillie · Jun 23, 2012

More ComboFix:

- 2009-07-13 20:37 . 2009-06-10 20:39 610304 c:\windows\Microsoft.NET\Framework64\v2.0.50727\Microsoft.VisualBasic.dll
+ 2011-07-02 21:09 . 2010-11-05 01:56 610304 c:\windows\Microsoft.NET\Framework64\v2.0.50727\Microsoft.VisualBasic.dll
- 2009-07-13 20:37 . 2009-06-10 20:39 655360 c:\windows\Microsoft.NET\Framework64\v2.0.50727\Microsoft.Build.Tasks.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 655360 c:\windows\Microsoft.NET\Framework64\v2.0.50727\Microsoft.Build.Tasks.dll
- 2009-07-13 20:37 . 2009-06-10 20:39 348160 c:\windows\Microsoft.NET\Framework64\v2.0.50727\Microsoft.Build.Engine.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 348160 c:\windows\Microsoft.NET\Framework64\v2.0.50727\Microsoft.Build.Engine.dll
+ 2011-07-02 21:07 . 2010-11-05 01:56 328008 c:\windows\Microsoft.NET\Framework64\v2.0.50727\ilasm.exe
- 2009-07-13 20:37 . 2009-06-10 20:39 328008 c:\windows\Microsoft.NET\Framework64\v2.0.50727\ilasm.exe
+ 2011-07-02 21:08 . 2010-11-05 01:56 797016 c:\windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll
- 2009-07-13 20:37 . 2009-06-10 20:39 102400 c:\windows\Microsoft.NET\Framework64\v2.0.50727\CasPol.exe
+ 2011-07-02 21:06 . 2010-11-05 01:56 102400 c:\windows\Microsoft.NET\Framework64\v2.0.50727\CasPol.exe
+ 2011-07-02 21:08 . 2010-11-05 01:56 126280 c:\windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll
+ 2011-07-02 21:09 . 2010-11-05 01:53 802816 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft.Build.Tasks.v3.5.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 802816 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft.Build.Tasks.v3.5.dll
+ 2011-07-02 21:09 . 2010-11-05 01:53 130408 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationHostDLL.dll
- 2009-07-14 00:36 . 2009-06-10 21:14 149328 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\WsatConfig.exe
+ 2011-07-02 21:08 . 2010-11-05 01:52 149328 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\WsatConfig.exe
+ 2011-07-02 21:06 . 2010-11-05 01:52 970752 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
- 2009-07-14 00:36 . 2009-06-10 21:14 970752 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
+ 2011-07-02 21:08 . 2010-11-05 01:52 128848 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
- 2009-07-14 00:36 . 2009-06-10 21:14 128848 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
+ 2011-07-02 21:06 . 2010-11-05 01:52 110592 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMdiagnostics.dll
- 2009-07-14 00:36 . 2009-06-10 21:14 110592 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMdiagnostics.dll
- 2009-07-14 00:36 . 2009-06-10 21:14 178016 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMConfigInstaller.exe
+ 2011-07-02 21:08 . 2010-11-05 01:52 178016 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMConfigInstaller.exe
- 2009-07-14 00:36 . 2009-06-10 21:14 153440 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelReg.exe
+ 2011-07-02 21:08 . 2010-11-05 01:52 153440 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelReg.exe
- 2009-07-14 00:36 . 2009-06-10 21:14 163840 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\Microsoft.Transactions.Bridge.Dtc.dll
+ 2011-07-02 21:07 . 2010-11-05 01:52 163840 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\Microsoft.Transactions.Bridge.Dtc.dll
+ 2011-07-02 21:08 . 2010-11-05 01:52 878416 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
- 2009-07-14 00:36 . 2009-06-10 21:14 878416 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
+ 2011-07-02 21:08 . 2010-11-05 01:52 165720 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ComSvcConfig.exe
+ 2011-07-02 21:08 . 2010-11-05 01:58 436048 c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 839680 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Services.dll
+ 2011-07-02 21:08 . 2010-11-05 01:58 839680 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Services.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 835584 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Mobile.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 835584 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Mobile.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 114688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.ServiceProcess.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 114688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.ServiceProcess.dll
+ 2011-07-02 21:08 . 2010-11-05 01:58 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
- 2011-01-15 04:07 . 2010-03-03 23:27 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 303104 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Remoting.dll
+ 2011-07-02 21:07 . 2010-11-05 01:58 303104 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Remoting.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Messaging.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Messaging.dll
+ 2011-07-02 21:09 . 2010-11-05 01:58 385024 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Management.dll
+ 2011-07-02 21:07 . 2010-11-20 04:12 113664 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Wrapper.dll
- 2009-07-13 20:46 . 2009-07-13 20:46 113664 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Wrapper.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
+ 2011-07-02 21:07 . 2010-11-05 01:58 626688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 401408 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 401408 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.dll
+ 2011-07-02 21:07 . 2010-11-05 01:58 970752 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Deployment.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 970752 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Deployment.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 745472 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.SqlXml.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 745472 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.SqlXml.dll
+ 2011-07-02 21:08 . 2010-11-05 01:58 486400 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.OracleClient.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 486400 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.OracleClient.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 425984 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.configuration.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 425984 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.configuration.dll
+ 2011-07-02 21:07 . 2010-11-05 01:58 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2011-07-02 21:08 . 2010-11-05 01:58 115536 c:\windows\Microsoft.NET\Framework\v2.0.50727\shfusion.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 115536 c:\windows\Microsoft.NET\Framework\v2.0.50727\shfusion.dll
+ 2011-07-02 21:08 . 2010-11-05 01:57 229712 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvc.dll
+ 2011-07-02 21:08 . 2010-11-05 01:57 110928 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 110928 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
+ 2011-07-02 21:08 . 2010-11-05 01:57 363856 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 304976 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbi.dll
+ 2011-07-02 21:09 . 2010-11-05 01:57 304976 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbi.dll
+ 2011-07-02 21:09 . 2010-11-05 01:57 995672 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2011-07-02 21:09 . 2010-11-05 01:57 610304 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 610304 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 655360 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Tasks.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 655360 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Tasks.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 348160 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Engine.dll
- 2009-07-13 20:46 . 2009-06-10 21:22 348160 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Engine.dll
- 2009-07-13 20:46 . 2009-06-10 21:22 227656 c:\windows\Microsoft.NET\Framework\v2.0.50727\ilasm.exe
+ 2011-07-02 21:08 . 2010-11-05 01:57 227656 c:\windows\Microsoft.NET\Framework\v2.0.50727\ilasm.exe
- 2009-07-13 20:46 . 2009-06-10 21:22 572760 c:\windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
+ 2011-07-02 21:08 . 2010-11-05 01:57 572760 c:\windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
- 2009-07-13 20:46 . 2009-06-10 21:22 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
+ 2011-07-02 21:07 . 2010-11-20 13:27 190976 c:\windows\ehome\wtv2dvrms.dll
- 2009-07-14 00:25 . 2009-07-14 01:41 190976 c:\windows\ehome\wtv2dvrms.dll
- 2009-07-14 00:09 . 2009-07-14 01:20 134656 c:\windows\ehome\wow\mcstoredb.dll
+ 2011-07-02 21:07 . 2010-11-20 12:32 134656 c:\windows\ehome\wow\mcstoredb.dll
- 2009-07-14 00:10 . 2009-07-14 01:15 801280 c:\windows\ehome\wow\ehui.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 801280 c:\windows\ehome\wow\ehui.dll
- 2009-07-14 00:06 . 2009-07-14 01:25 238080 c:\windows\ehome\wow\BDATunePIA.dll
+ 2011-07-02 21:07 . 2010-11-20 12:32 238080 c:\windows\ehome\wow\BDATunePIA.dll
- 2012-01-11 22:08 . 2011-10-29 05:24 465920 c:\windows\ehome\mstvcapn.dll
+ 2012-01-11 22:08 . 2011-10-29 05:23 465920 c:\windows\ehome\mstvcapn.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 327168 c:\windows\ehome\Microsoft.MediaCenter.TV.Tuners.Interop.dll
- 2009-07-14 00:24 . 2009-07-14 01:52 327168 c:\windows\ehome\Microsoft.MediaCenter.TV.Tuners.Interop.dll
+ 2011-07-02 21:06 . 2010-11-20 12:35 241664 c:\windows\ehome\Microsoft.MediaCenter.Sports.dll
- 2009-07-13 22:36 . 2009-07-14 01:24 241664 c:\windows\ehome\Microsoft.MediaCenter.Sports.dll
- 2011-01-15 04:02 . 2010-08-04 07:14 114688 c:\windows\ehome\Microsoft.MediaCenter.Playback.dll
+ 2011-07-02 21:08 . 2010-11-20 13:44 114688 c:\windows\ehome\Microsoft.MediaCenter.Playback.dll
- 2009-07-14 00:24 . 2009-07-14 01:51 147968 c:\windows\ehome\Microsoft.MediaCenter.iTV.Media.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 147968 c:\windows\ehome\Microsoft.MediaCenter.iTV.Media.dll
- 2011-10-13 21:04 . 2011-08-17 05:35 315392 c:\windows\ehome\Microsoft.MediaCenter.Interop.dll
+ 2011-10-13 21:04 . 2011-08-17 05:28 315392 c:\windows\ehome\Microsoft.MediaCenter.Interop.dll
+ 2011-07-02 21:06 . 2010-11-20 12:35 385024 c:\windows\ehome\Microsoft.MediaCenter.dll
- 2009-07-13 22:36 . 2009-07-14 01:22 385024 c:\windows\ehome\Microsoft.MediaCenter.dll
- 2009-07-14 00:24 . 2009-07-14 01:50 133120 c:\windows\ehome\Mcx2Dvcs.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 133120 c:\windows\ehome\Mcx2Dvcs.dll
+ 2011-07-02 21:08 . 2010-11-20 13:44 198656 c:\windows\ehome\mcupdate.exe
- 2011-01-15 04:02 . 2010-08-04 07:14 198656 c:\windows\ehome\mcupdate.exe
- 2009-07-14 00:24 . 2009-07-14 01:48 139264 c:\windows\ehome\mcstoredb.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 139264 c:\windows\ehome\mcstoredb.dll
+ 2011-07-02 21:10 . 2010-11-20 12:32 638976 c:\windows\ehome\mcstore.dll
- 2011-01-15 04:02 . 2010-08-04 06:28 638976 c:\windows\ehome\mcstore.dll
- 2009-07-14 00:25 . 2009-07-14 01:49 207872 c:\windows\ehome\mcplayerinterop.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 207872 c:\windows\ehome\mcplayerinterop.dll
+ 2011-07-02 21:10 . 2010-11-20 13:26 962048 c:\windows\ehome\mcplayer.dll
- 2011-01-15 04:02 . 2010-08-04 07:14 741376 c:\windows\ehome\mcepg.dll
+ 2011-07-02 21:10 . 2010-11-20 13:44 741376 c:\windows\ehome\mcepg.dll
+ 2011-07-02 21:07 . 2010-11-20 13:24 288256 c:\windows\ehome\ehvid.exe
- 2009-07-14 00:24 . 2009-07-14 01:39 288256 c:\windows\ehome\ehvid.exe
- 2009-07-14 00:25 . 2009-07-14 01:39 163328 c:\windows\ehome\ehtray.exe
+ 2011-07-02 21:07 . 2010-11-20 13:24 163328 c:\windows\ehome\ehtray.exe
+ 2011-07-02 21:08 . 2010-11-20 13:26 394752 c:\windows\ehome\ehskb.dll
- 2009-07-14 00:25 . 2009-07-14 01:40 394752 c:\windows\ehome\ehskb.dll
+ 2011-07-02 21:09 . 2010-11-20 13:24 696832 c:\windows\ehome\ehrecvr.exe
- 2009-07-13 22:35 . 2009-07-14 01:21 196608 c:\windows\ehome\ehRecObj.dll
+ 2011-07-02 21:06 . 2010-11-20 12:32 196608 c:\windows\ehome\ehRecObj.dll
- 2011-01-15 04:02 . 2010-08-04 07:05 295936 c:\windows\ehome\ehprivjob.exe
+ 2011-07-02 21:09 . 2010-11-20 13:24 295936 c:\windows\ehome\ehprivjob.exe
- 2011-01-15 04:02 . 2010-08-04 07:07 150528 c:\windows\ehome\ehPresenter.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 150528 c:\windows\ehome\ehPresenter.dll
+ 2011-07-02 21:06 . 2010-11-20 12:32 172032 c:\windows\ehome\ehiProxy.dll
- 2009-07-13 22:35 . 2009-07-14 01:20 172032 c:\windows\ehome\ehiProxy.dll
- 2011-01-15 04:02 . 2010-08-04 07:07 758784 c:\windows\ehome\ehglid.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 758784 c:\windows\ehome\ehglid.dll
+ 2011-07-02 21:06 . 2010-11-20 12:32 143360 c:\windows\ehome\ehexthost.exe
- 2009-07-13 22:36 . 2009-07-14 01:20 143360 c:\windows\ehome\ehexthost.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 303104 c:\windows\ehome\cbva.dll
- 2009-07-14 01:05 . 2009-07-14 01:41 303104 c:\windows\ehome\cbva.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 408576 c:\windows\ehome\BmlDataCarousel.dll
- 2009-07-14 00:25 . 2009-07-14 01:40 408576 c:\windows\ehome\BmlDataCarousel.dll
- 2009-07-14 00:21 . 2009-07-14 01:54 249344 c:\windows\ehome\BDATunePIA.dll
+ 2011-07-02 21:07 . 2010-11-20 13:39 249344 c:\windows\ehome\BDATunePIA.dll
+ 2011-07-02 21:08 . 2010-11-20 12:30 485760 c:\windows\Boot\PCAT\memtest.exe
+ 2012-06-23 15:36 . 2012-06-23 15:36 468992 c:\windows\assembly\NativeImages_v2.0.50727_64\WsatConfig\36ca2928b2191011831ab673861c6ac6\WsatConfig.ni.exe
+ 2012-06-23 16:10 . 2012-06-23 16:10 329216 c:\windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\0cb1830849e0ce11c8985339523d5b63\WindowsFormsIntegration.ni.dll
+ 2012-06-23 15:34 . 2012-06-23 15:34 253952 c:\windows\assembly\NativeImages_v2.0.50727_64\UIAutomationTypes\69e6acc80dfb71c3ebeac12584ea008c\UIAutomationTypes.ni.dll
+ 2012-06-23 15:34 . 2012-06-23 15:34 120832 c:\windows\assembly\NativeImages_v2.0.50727_64\UIAutomationProvider\0445defa66af3e3548dd3052e8752079\UIAutomationProvider.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 653312 c:\windows\assembly\NativeImages_v2.0.50727_64\UIAutomationClient\60fa801c6b0c236ddeb6e93364ec5705\UIAutomationClient.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 304128 c:\windows\assembly\NativeImages_v2.0.50727_64\TaskScheduler\a3883e7fc1bd0fbc54761b26c2bc5483\TaskScheduler.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 529920 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Xml.Linq\164d9beb2bf9b6160593f915a2d9aa6d\System.Xml.Linq.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 187392 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Routing\b9977dd97ed7006f1d7968495c594bc5\System.Web.Routing.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 261120 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.RegularE#\fc4fb8a45f4e2115c1290af5ffe5ace0\System.Web.RegularExpressions.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 449024 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Entity\d3aaf07a1d6356d9edf7c3c9f4b7dd0d\System.Web.Entity.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 398848 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Entity.D#\86fd874752b7cca432941e9f482c3590\System.Web.Entity.Design.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 753664 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.DynamicD#\bef47cfaf8928e35b99d8deb0eeb6b08\System.Web.DynamicData.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 204800 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Abstract#\e66285eb011e4864314f3e4e4d6d8e40\System.Web.Abstractions.ni.dll
+ 2012-06-23 15:31 . 2012-06-23 15:31 921600 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Transactions\051655963f24f9ade08486084c570086\System.Transactions.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 295424 c:\windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\df4cc33bfe326b259eeef086451a2528\System.ServiceProcess.ni.dll
+ 2012-06-23 15:26 . 2012-06-23 15:26 928768 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Security\821d4406efa3556465e6244fae26b536\System.Security.ni.dll
+ 2012-06-23 15:31 . 2012-06-23 15:31 396288 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\8ad0e1382ab6565741bbb64b965f2748\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 916480 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Net\d567624f1206028ff852c689416d6b58\System.Net.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 783360 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Messaging\ee9a323861b378713f17421b0d98adb5\System.Messaging.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 534016 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Management.I#\8b62ac3a8cfd55c530052c79253d25c8\System.Management.Instrumentation.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 569856 c:\windows\assembly\NativeImages_v2.0.50727_64\System.IO.Log\85b543fd18ce71c8bc95c49abf8ceb66\System.IO.Log.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 294400 c:\windows\assembly\NativeImages_v2.0.50727_64\System.IdentityMode#\559a3dee015d005c199f3867b10f5bbc\System.IdentityModel.Selectors.ni.dll
+ 2012-06-23 15:31 . 2012-06-23 15:31 446464 c:\windows\assembly\NativeImages_v2.0.50727_64\System.EnterpriseSe#\a6155c70b3df6c860303ffee7b560ade\System.EnterpriseServices.Wrapper.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 288768 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Drawing.Desi#\aa8854bd55fca246dd3226a671092bfa\System.Drawing.Design.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 649728 c:\windows\assembly\NativeImages_v2.0.50727_64\System.DirectorySer#\e883ac4543d94e67abd1c33191633865\System.DirectoryServices.Protocols.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 629760 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.Service#\1e96bc85441d7719ea6f7e63c4c3e287\System.Data.Services.Design.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 194560 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.DataSet#\56ccdabce54219b23bc4b6477d98b45c\System.Data.DataSetExtensions.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 192000 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Configuratio#\fcf35536476614410e0b0bd0e412199e\System.Configuration.Install.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 132096 c:\windows\assembly\NativeImages_v2.0.50727_64\System.ComponentMod#\560cb6a2e8f4877877b11de7c1f07d42\System.ComponentModel.DataAnnotations.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 889344 c:\windows\assembly\NativeImages_v2.0.50727_64\System.AddIn\ed852e32514b415cfb4ac81aef9ac0fd\System.AddIn.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 156672 c:\windows\assembly\NativeImages_v2.0.50727_64\System.AddIn.Contra#\eadb7dd5fe85da92b491154484bc40e3\System.AddIn.Contract.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 297984 c:\windows\assembly\NativeImages_v2.0.50727_64\sysglobl\857fbc76bdd79711e5228e5b075ade49\sysglobl.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 525824 c:\windows\assembly\NativeImages_v2.0.50727_64\SMSvcHost\04d794428d635f6a82ac57dd3d6f3628\SMSvcHost.ni.exe
+ 2012-06-23 15:35 . 2012-06-23 15:35 349184 c:\windows\assembly\NativeImages_v2.0.50727_64\SMDiagnostics\4b5adb098f8ce2890826195454a777b2\SMDiagnostics.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 317440 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\c462be068987b2b4fac3a700f265fc77\PresentationFramework.Royale.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 620544 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\495f263cbca8e7d0462ee309a634e115\PresentationFramework.Luna.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 463360 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\4260e87dc94e25052b34ea78873dfedb\PresentationFramework.Aero.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 282624 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\1badf57680aebab32f17bc080876b61d\PresentationFramework.Classic.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 855040 c:\windows\assembly\NativeImages_v2.0.50727_64\napsnap\46a2e8958905ea98cb6e91b38449c58a\napsnap.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 162816 c:\windows\assembly\NativeImages_v2.0.50727_64\napinit\a64d6cb9f99621449821066eca9291e9\napinit.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 175104 c:\windows\assembly\NativeImages_v2.0.50727_64\naphlpr\03d99e593bc94e308005a972667d7ca9\naphlpr.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 127488 c:\windows\assembly\NativeImages_v2.0.50727_64\napcrypt\d95f343677c556b67e99818cc02f4214\napcrypt.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 184320 c:\windows\assembly\NativeImages_v2.0.50727_64\MSBuild\1a154709cdfe214029ea88c51ab2b579\MSBuild.ni.exe
+ 2012-06-23 15:36 . 2012-06-23 15:36 417792 c:\windows\assembly\NativeImages_v2.0.50727_64\MMCFxCommon\98b1fc37038b59eb1fcb89ce6284190e\MMCFxCommon.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 681984 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.WSMan.Man#\8cd73e65058ef6f77f36b62a74ec3344\Microsoft.WSMan.Management.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 122368 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Windows.D#\5efdf2ce3570caddc09eeae943f71cee\Microsoft.Windows.Diagnosis.TroubleshootingPack.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 105984 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Vsa\bb235aa98e8e876f0f641c4d486f9151\Microsoft.Vsa.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 311296 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\fe566583949ea5866187764f7fcf1537\Microsoft.VisualStudio.Tools.Office.Word.HostAdapter.v10.0.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 305664 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\dbe51d156773fefd09c7a52feeb8ff79\Microsoft.VisualStudio.Tools.Office.AddInAdapter.v9.0.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 499200 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\daa561280ac1119d9c2694442212aaea\Microsoft.VisualStudio.Tools.Applications.ServerDocument.v9.0.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 226304 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\d67f3850760979cd607ec8f5259fb9a9\Microsoft.VisualStudio.Tools.Office.ContainerControl.v10.0.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 215040 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\c363d624c7b36e3dda8219948283e8f9\Microsoft.VisualStudio.Tools.Office.HostAdapter.v10.0.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 270336 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\c1d9b683ccecc0e15e57880d6e002781\Microsoft.VisualStudio.Tools.Office.Excel.HostAdapter.v10.0.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 773120 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\b5d54bbd6c92e64e7c9a04862f0bd184\Microsoft.VisualStudio.Tools.Office.Runtime.v10.0.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 225280 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\b22777deb45f6aeebf6bc7753dd76eea\Microsoft.VisualStudio.Tools.Office.Word.AddInProxy.v9.0.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 956416 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\afcd585a869a8fe93f7113457fdafe46\Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 446464 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\ad7d01564f0056d2476f6ae5d257356b\Microsoft.VisualStudio.Tools.Office.AppInfoDocument.v9.0.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 495616 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\8c3f8ef1875a4181a5c0699093b75d4f\Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 390656 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\6348aa5d2bd39c221a41286e95c18b97\Microsoft.VisualStudio.Tools.Applications.Hosting.v9.0.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 202752 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\369a81b278211f8d96a305e918172713\Microsoft.VisualStudio.Tools.Applications.Runtime.v9.0.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 124928 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\2e812414b27f48009f197b9e3bbb845c\Microsoft.VisualStudio.Tools.Office.Outlook.HostAdapter.v10.0.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 232448 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\19c2b79f666960d7a242a04c5d76f114\Microsoft.VisualStudio.Tools.Office.Excel.AddInProxy.v9.0.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 209920 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\077a55be734d6ef6e2de59fa7325dac5\Microsoft.VisualStudio.Tools.Office.Contract.v9.0.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 584192 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Transacti#\22b5364c10d315a7f0a1fbd23f671c5a\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 416768 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\ec50af274bf7a15fb59ac1f0d353b7ea\Microsoft.PowerShell.Commands.Diagnostics.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 999936 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\dcf1d740ffae84572215588047a59861\Microsoft.PowerShell.GraphicalHost.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 237056 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\b5a6a5ce3cd3d4dd2b151315c612aeff\Microsoft.PowerShell.Security.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 713216 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\b023321bc53c20c10ccbbd8f78c82c82\Microsoft.PowerShell.ConsoleHost.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 253952 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Office.To#\82425dbc07ec64ab599534080b6fbc08\Microsoft.Office.Tools.v9.0.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 244224 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Office.To#\6337d25ea4dd40045a047cb662ee4394\Microsoft.Office.Tools.Outlook.v9.0.ni.dll
+ 2012-06-23 15:33 . 2012-06-23 15:33 164864 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\f1f58d6720098d7c1d51faf7f326d72d\Microsoft.MediaCenter.Mheg.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 152576 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\ef44c6dfcb60c7b8bc8c26847048d6e5\Microsoft.MediaCenter.ITVVM.ni.dll
+ 2012-06-23 15:33 . 2012-06-23 15:33 965632 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\dc34242bf840d340e94d2657c7c33371\Microsoft.MediaCenter.Sports.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 370176 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\ce17670e5d6d33a85e64766e340a2176\Microsoft.MediaCenter.Playback.ni.dll
+ 2012-06-23 15:33 . 2012-06-23 15:33 312320 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\a9f43923aab0d83b93cbf10ac1dfd0b5\Microsoft.MediaCenter.iTv.ni.dll
+ 2012-06-23 15:33 . 2012-06-23 15:33 219648 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\4e9468fdc6937145e65c6434787e2fa5\Microsoft.MediaCenter.iTv.Media.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 522240 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\1e99a9d1dc792d81f86b5de451cf9f3d\Microsoft.MediaCenter.Interop.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 798720 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Managemen#\e72886c96b63be364c0205b6c4ff4413\Microsoft.ManagementConsole.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 244736 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Uti#\97d05b893a063bbb5b56c7b3d20c5245\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 198656 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Uti#\8ce46e3ffce2d37b9c50762a641c57ee\Microsoft.Build.Utilities.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 121344 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Fra#\a71fda14114136e528b310f41dce7915\Microsoft.Build.Framework.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 142336 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Fra#\89815091ad8cb6d7b4c48d84ff1021e0\Microsoft.Build.Framework.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 294912 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Con#\8d64f031cf429f4ce79642e8be267d2d\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 107520 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft-Windows-H#\a46df77acafec60e31859608625e6354\Microsoft-Windows-HomeGroupDiagnostic.NetListMgr.Interop.ni.dll
+ 2012-06-23 15:33 . 2012-06-23 15:33 380928 c:\windows\assembly\NativeImages_v2.0.50727_64\Mcx2Dvcs\53fddfded025faba07fdd8b69fef6bd6\Mcx2Dvcs.ni.dll
+ 2012-06-23 15:33 . 2012-06-23 15:33 547328 c:\windows\assembly\NativeImages_v2.0.50727_64\mcupdate\f30beba36940b5a2b55a32ea7f42d694\mcupdate.ni.exe
+ 2012-06-23 15:32 . 2012-06-23 15:32 533504 c:\windows\assembly\NativeImages_v2.0.50727_64\mcstoredb\e049a1a3948a031aed69690fc102ea6c\mcstoredb.ni.dll
+ 2012-06-23 15:33 . 2012-06-23 15:33 549376 c:\windows\assembly\NativeImages_v2.0.50727_64\mcplayerinterop\f7a93626b76fe66f217c19426cc5b02a\mcplayerinterop.ni.dll
+ 2012-06-23 15:33 . 2012-06-23 15:33 696320 c:\windows\assembly\NativeImages_v2.0.50727_64\mcGlidHostObj\18aae97d7e56a28acf9d642ad23ab413\mcGlidHostObj.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 156672 c:\windows\assembly\NativeImages_v2.0.50727_64\MCESidebarCtrl\f04b0488328a68d57953149b31a85065\MCESidebarCtrl.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 659456 c:\windows\assembly\NativeImages_v2.0.50727_64\EventViewer\21464de9aa1dce17c1f42044129a986e\EventViewer.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 969216 c:\windows\assembly\NativeImages_v2.0.50727_64\ehRecObj\dd75e74b3a7686f661129df07fdeadf1\ehRecObj.ni.dll
+ 2012-06-23 15:33 . 2012-06-23 15:33 661504 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiWUapi\b253aa4b8000e29b2fb725e4f7b8bc7c\ehiWUapi.ni.dll
+ 2012-06-23 15:33 . 2012-06-23 15:33 933888 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiwmp\9f570489c98c93a79f0fd793586afdc6\ehiwmp.ni.dll
+ 2012-06-23 15:26 . 2012-06-23 15:26 145408 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiUserXp\a6dc826bf08c95bd5fe459a02bbfd33c\ehiUserXp.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 196096 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiiTv\4a7ec1155d9e9e4b40889b171d16a577\ehiiTv.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 397824 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiExtens\d122f8c71cdd586e76d9617f80a0297f\ehiExtens.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 110080 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiBmlDataCarousel\99c61751c71078d92ff372495bc38fc3\ehiBmlDataCarousel.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 126976 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiActivScp\ee22f412f6314443add3ca412afd6569\ehiActivScp.ni.dll
+ 2012-06-23 15:26 . 2012-06-23 15:26 389120 c:\windows\assembly\NativeImages_v2.0.50727_64\ehExtHost\ad37b6e3a1cb1081592f1c5797ae9dad\ehExtHost.ni.exe
+ 2012-06-23 15:26 . 2012-06-23 15:26 313856 c:\windows\assembly\NativeImages_v2.0.50727_64\ehCIR\b648e07269decc9d5a2d8aeba1d48cbb\ehCIR.ni.dll
+ 2012-06-23 16:06 . 2012-06-23 16:06 348672 c:\windows\assembly\NativeImages_v2.0.50727_64\CustomMarshalers\e41fccd68a6543f2528f6f6118f5f7e2\CustomMarshalers.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 640000 c:\windows\assembly\NativeImages_v2.0.50727_64\ComSvcConfig\d632b7434f821829827657e23ac98589\ComSvcConfig.ni.exe
+ 2012-06-23 15:26 . 2012-06-23 15:26 971264 c:\windows\assembly\NativeImages_v2.0.50727_64\BDATunePIA\13385391832b7c36af9306baeb570e57\BDATunePIA.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 321024 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\96a8bdafba9f9d3e33cd974bfaa67e58\WsatConfig.ni.exe
+ 2012-06-23 15:51 . 2012-06-23 15:51 634368 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLiveLocal.Wr#\f7f147bb9617c86346dc7fad03858759\WindowsLiveLocal.WriterPlugin.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 101376 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\fbfde8133e7a853e6fa6980758617251\WindowsLive.Writer.Api.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 780800 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\f4aff2065ccb0935072dacc6a32d83a4\WindowsLive.Writer.Controls.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 326144 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\df8b81c0ebef85fb9b16ac0d153312e2\WindowsLive.Writer.SpellChecker.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 156672 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\cd6ecb6190e2653dea1d9ca36e1ae564\WindowsLive.Writer.HtmlParser.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 665600 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\b9ab95f3fa6403bd02e217bc401adc18\WindowsLive.Writer.Interop.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 871424 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\9da68e0412e75b2f599a0c1918e48962\WindowsLive.Writer.BlogClient.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 328192 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\8e1cbd449761673fbc8c88fc7fe11dd9\WindowsLive.Writer.Mshtml.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 891392 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\869661a947a2b2d41f2d5dc9b13ced14\WindowsLive.Writer.HtmlEditor.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 119296 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\73c1f13238dccacc560422933e6fd466\WindowsLive.Writer.FileDestinations.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 313856 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\6b87763370d46617ad42b7b14d9a48a5\WindowsLive.Writer.Interop.SHDocVw.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 374272 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\5c6cfb489687133d0a8fa43c0232f916\WindowsLive.Writer.Interop.Mshtml.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 174080 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\53a6bfef11e6111742de4c37284e3a28\WindowsLive.Writer.BrowserControl.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 122368 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\5289043ea0fa1638c3d42c2ac0edf5b7\WindowsLive.Writer.Extensibility.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 146432 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\120dbdf4ddf7e5980897e42c44afc43c\WindowsLive.Writer.Instrumentation.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 223232 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Client\e793010f06b2383d3e99ece5012c5677\WindowsLive.Client.ni.dll
+ 2012-06-23 15:54 . 2012-06-23 15:54 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\30b1d86571495ea86b9a19b13498aad3\WindowsFormsIntegration.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 308224 c:\windows\assembly\NativeImages_v2.0.50727_32\Windows7.DesktopInt#\c09fcc2af9230289ad30fe639deb3677\Windows7.DesktopIntegration.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 643584 c:\windows\assembly\NativeImages_v2.0.50727_32\VistaBridgeLibrary\726ee3a5d31ab04325fdf66eed27e800\VistaBridgeLibrary.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 185344 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\6820836e29efa97200d3fcfb4d0f170b\UIAutomationTypes.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 452096 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\eca4310274a7a6ce651b33cd4278610c\UIAutomationClient.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 245248 c:\windows\assembly\NativeImages_v2.0.50727_32\TaskScheduler\99797e9500ed7bfa6b06063e7f017313\TaskScheduler.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 401408 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\70aac9dff3bdde548962557151c1ff49\System.Xml.Linq.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\165d0873203da280298bfcfa50567a0b\System.Web.Routing.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\c72ccbd1fef598dd897fdf0d2e49195b\System.Web.RegularExpressions.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 860160 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\0b5071ee1d40266575a7ac53b9b299d4\System.Web.Extensions.Design.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 328192 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\9a3ab1594cf5cd52f0794b0a93a14b57\System.Web.Entity.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 301568 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\a63e76cc86c8958f0f3e9741c0d89f14\System.Web.Entity.Design.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\a16dd65d2bfab6a019ac8a05337a5c24\System.Web.DynamicData.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\3112fe15b1994ff59b169cf7ce997e71\System.Web.Abstractions.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\ad18f93fc713db2c4b29b25116c13bd8\System.Transactions.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\20008c75bb41e2febf84d4d4aea5b4e8\System.ServiceProcess.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 680448 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\d9a485330ec2708456134e4a9712a4ab\System.Security.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 310784 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\0728af1479c3388cadf85ccfc2b12582\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 771584 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\5cae93d923c8378370758489e5535820\System.Runtime.Remoting.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 624128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\964a515210f3bad01949e9ae4f83c7b2\System.Net.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 593408 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Messaging\9c17882ea083259c36cfd691f7c0835b\System.Messaging.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 330240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\17e443d6c643b83137beb310adee3c48\System.Management.Instrumentation.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\19837bdc62b7667aba81364142e3565a\System.IO.Log.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\5490e4be56d6b1a80586439ac8b09b77\System.IdentityModel.Selectors.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\887ef2648686aad19feff405eddbffd2\System.EnterpriseServices.Wrapper.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 628224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\887ef2648686aad19feff405eddbffd2\System.EnterpriseServices.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\fac6392e83ef7e777b78933e057c9546\System.Drawing.Design.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\ced847eb933ffee8e1a2e738205916ce\System.DirectoryServices.Protocols.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 888320 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\bcad898b90aee666da2f81b0a87a91ee\System.DirectoryServices.AccountManagement.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 462336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\5d0f494f1be2367fb0a634956f719965\System.Data.Services.Design.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 763392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\32088676b4c08d192aae910cac1dade4\System.Data.Entity.Design.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\eae18653a1b39fe484b49963d43480ce\System.Data.DataSetExtensions.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bc09ad2d49d8535371845cd7532f9271\System.Configuration.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\f02737c83305687a68c088927a6c5a98\System.Configuration.Install.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 633344 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\29c55874e34f9d5cd3ea739262f48adc\System.AddIn.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 232448 c:\windows\assembly\NativeImages_v2.0.50727_32\sysglobl\8abe9d895b3e9efe741b9162cb9206fc\sysglobl.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\1bc1ee3c3aa45d28dcf4657bceb2fcb4\SMSvcHost.ni.exe

Tony Lillie · Jun 23, 2012

More ComboFix:

+ 2012-06-23 15:30 . 2012-06-23 15:30 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\8218dc4808b77f3585fb048c61597af1\SMDiagnostics.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\299d0b38053fd7cbd84bac2178c3703b\PresentationFramework.Aero.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 226816 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\2897c35bf2bc4ef171004bfc2909aaf3\PresentationFramework.Classic.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\17ab5131ab854c98847ad70236435924\PresentationFramework.Royale.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\0e5bae8f265fbbbf53e8ca79d159cd6d\PresentationFramework.Luna.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 170496 c:\windows\assembly\NativeImages_v2.0.50727_32\PhotobucketNet\bfe739b232c5ee53c46d2891066473f2\PhotobucketNet.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 723456 c:\windows\assembly\NativeImages_v2.0.50727_32\napsnap\f64692e58aa1a7116024bf3c3cbd1352\napsnap.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 117760 c:\windows\assembly\NativeImages_v2.0.50727_32\napinit\6a657f2f518f97b282702fce20033459\napinit.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 114176 c:\windows\assembly\NativeImages_v2.0.50727_32\naphlpr\3905ee11acabb6d202a69b8bfa3c91a0\naphlpr.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\af28543d9b3e7d9f110448ecce53cd72\MSBuild.ni.exe
+ 2012-06-23 15:37 . 2012-06-23 15:37 287232 c:\windows\assembly\NativeImages_v2.0.50727_32\MMCFxCommon\18e41c018ceff36c2512d12f570f0be7\MMCFxCommon.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 531968 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.WSMan.Man#\ee28a075665b6bc23b6dae56903d431d\Microsoft.WSMan.Management.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 650752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\fdcd7d9230a1e1049a86779ba14f88c1\Microsoft.VisualStudio.Tools.Applications.ServerDocument.v10.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 133120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\ee73646032cbb022d16771203727e3b2\Microsoft.VisualStudio.Tools.Applications.Runtime.v9.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 196608 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\cf169f95cb1f00f75dcee0ce7b4cd42a\Microsoft.VisualStudio.Tools.Office.Word.HostAdapter.v10.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 285184 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\bf3e8ba642eaf9a5371982f211550c52\Microsoft.VisualStudio.Tools.Applications.Hosting.v9.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 337408 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\b8e029b1434d965380b363483e376df0\Microsoft.VisualStudio.Tools.Applications.ServerDocument.v9.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 215040 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\8c6bac317f75b51647ea3a8da141b143\Microsoft.VisualStudio.Tools.Office.AddInAdapter.v9.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 134144 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\808c8ecb40202a57a35a5f83facc3f6b\Microsoft.VisualStudio.Tools.Office.HostAdapter.v10.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 161280 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\5c8b40c69a2293c8f499b38b25c41117\Microsoft.VisualStudio.Tools.Office.Word.AddInProxy.v9.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 363008 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\51538a376be989e6349355e00c47741d\Microsoft.VisualStudio.Tools.Applications.Hosting.v10.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 303104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\43ac81bed18b52d77a8011ada80939b5\Microsoft.VisualStudio.Tools.Office.AppInfoDocument.v9.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 617472 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\3a9ea6b5d60ef1ce209b72388ffdf514\Microsoft.VisualStudio.Tools.Office.Runtime.v10.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 145920 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\319ab5fb21ce36292e0c1c9e07010a3c\Microsoft.VisualStudio.Tools.Office.ContainerControl.v10.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 179200 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\20f7f2e8d4bce3e514e960c0ecc6c724\Microsoft.VisualStudio.Tools.Office.Excel.HostAdapter.v10.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 161792 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\181356b1bbb85fe2401c4dfad1a45133\Microsoft.VisualStudio.Tools.Office.Excel.AddInProxy.v9.0.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 112128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\0cb958acb9cd4cacb46ebc0396e30aa3\Microsoft.VisualStudio.Tools.Office.Contract.v9.0.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\4a235e617ad0a4c3aecd3982f0e3c48a\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 729088 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\e998eeb1548ffd53b39dcde50d196ab7\Microsoft.PowerShell.GraphicalHost.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 515584 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\b1c511d8fad78ad3c5213b2b4fb02b8b\Microsoft.PowerShell.ConsoleHost.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 786432 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\8df695fb80187f65208d87229e81e8a2\Microsoft.PowerShell.Commands.Management.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 167424 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\8ce205027e30804d1b2deaffa0582735\Microsoft.PowerShell.Security.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 291328 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\4f68cd04686e5dc5a55070d112d44bdf\Microsoft.PowerShell.Commands.Diagnostics.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 152064 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.To#\e1f8e4d08d4b7f811b7dbbacd324027b\Microsoft.Office.Tools.v9.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 167424 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.To#\60214b09b490be856c4ee2b3398d71bd\Microsoft.Office.Tools.Outlook.v9.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 816128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.To#\5766ec3721d18a48bec1ca1f60331e2d\Microsoft.Office.Tools.Common.v9.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 854528 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.To#\135228e87b2c27d26b516ac0fc0ce667\Microsoft.Office.Tools.Word.v9.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 268800 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.Bu#\047c9c4a6b9dcd9d1985b95e0f4f1daa\Microsoft.Office.BusinessApplications.Diagnostics.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 561664 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Managemen#\630257a0b042768c2e3104a36559c1a9\Microsoft.ManagementConsole.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 343552 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.BusinessD#\42c8856d883c21388965cd6c8a8b54a1\Microsoft.BusinessData.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\dfb5532e4cf07b7324280988a3e1cca4\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\30f8865f88bb953486fd20650b54177c\Microsoft.Build.Utilities.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\14afe54e24cf09fe6c371fc47cfabf0e\Microsoft.Build.Engine.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\942c10614a6f8c8a22d1f74e217a11d6\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 364032 c:\windows\assembly\NativeImages_v2.0.50727_32\mcstoredb\c359669d601990310a6b30ab5992ffa8\mcstoredb.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 155648 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Windows\3ece2ade809d70c9ba1968ac4c223338\Inkjet.Windows.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 283648 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Utilities\43ed3b4a46882fdfed3fd9d713a70c67\Inkjet.Utilities.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 284672 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Utilities\1965af3d05294fd4642f567b219e1354\Inkjet.Utilities.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 138240 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Tray\c920b11766ee037e9670f78ea4973325\Inkjet.Tray.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 977920 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Tools\086cda74bd9474b54793929642b7cd9c\Inkjet.Tools.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 180736 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Statistics\2cce639cf793746c3e99da6e0110164c\Inkjet.Statistics.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 378368 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Scanning\1e9b303e9167c42f0d22c4ef08f38639\Inkjet.Scanning.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 570880 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Scan\3b29e81fd4cc8155c89656e125674205\Inkjet.Scan.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 344576 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Printing\a52152ea913b75f67594867f48019be3\Inkjet.Printing.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 298496 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Picasa\b9cc905f406d35a5132a05b5d4c9dd6c\Inkjet.Picasa.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 210944 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.PhotoBucket\b3713be859309ba13c9da1e5ff1ed6cb\Inkjet.PhotoBucket.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 237056 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Localization\9ad8dfe13ab7238607396c70548f3ad4\Inkjet.Localization.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 522240 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.KodakGallery\05e6ffd702071f6145f3672a70b27699\Inkjet.KodakGallery.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 759808 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.IO\a3b57a101c650d88baaf1ca3b4f29011\Inkjet.IO.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 824832 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Hardware\6d7347b95827efec3bbac17d4c8507b5\Inkjet.Hardware.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 163328 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Flickr\7f47da88ae7f39b729bfa579557ef910\Inkjet.Flickr.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 162816 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Facebook\877f5cf4e62649b3158b161b1dcb8e5b\Inkjet.Facebook.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 168448 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.EasyShare\54861e981bcd5d75835007ab29169eb3\Inkjet.EasyShare.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 105984 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Diagnostics\da0bb7dce1659e1681d320198d78036e\Inkjet.Diagnostics.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Browse\a29065db4902a2451c51e3630848a5b4\Inkjet.Browse.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 169984 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Automation\7e8d495f7ceeca3f36d9da8b1862e9ee\Inkjet.Automation.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 102912 c:\windows\assembly\NativeImages_v2.0.50727_32\Google.GData.Photos\586dde3fdf52f8d143ee9b063f3ef065\Google.GData.Photos.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 216576 c:\windows\assembly\NativeImages_v2.0.50727_32\Google.GData.Extens#\9ec58c0ace7e72786da6b8ac013dd03e\Google.GData.Extensions.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 551424 c:\windows\assembly\NativeImages_v2.0.50727_32\Google.GData.Client\b525c89753036444fa94bf1c3b1799c1\Google.GData.Client.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 372736 c:\windows\assembly\NativeImages_v2.0.50727_32\FlickrNet\eb376bf2d4f1b42c309e3b09867b0b6f\FlickrNet.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 238080 c:\windows\assembly\NativeImages_v2.0.50727_32\Facebook\54fa07eca2a25250d9ef61ca18e769df\Facebook.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 553472 c:\windows\assembly\NativeImages_v2.0.50727_32\EventViewer\654c5baca16d72756296ab1d927ea4a8\EventViewer.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 693248 c:\windows\assembly\NativeImages_v2.0.50727_32\ehRecObj\6e35ba22c9762646d5294dd919175c69\ehRecObj.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 875520 c:\windows\assembly\NativeImages_v2.0.50727_32\ehiVidCtl\88e20c69254157d91b96eadc9444815d\ehiVidCtl.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 442880 c:\windows\assembly\NativeImages_v2.0.50727_32\ehiProxy\5cd902459c588bb0ac608d4cbc8b5e4c\ehiProxy.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 161280 c:\windows\assembly\NativeImages_v2.0.50727_32\ehiExtens\7b6de29c99674df526ccf9d4937828fe\ehiExtens.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 254464 c:\windows\assembly\NativeImages_v2.0.50727_32\ehExtHost32\c899de3549784161aa66610d5735e4f0\ehExtHost32.ni.exe
+ 2012-06-23 15:51 . 2012-06-23 15:51 435200 c:\windows\assembly\NativeImages_v2.0.50727_32\EastmanKodakCompany#\134633cfcdd771ad82c008bbfce17167\EastmanKodakCompany.EasyShare.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\bf7e7494e75e32979c7824a07570a8a9\CustomMarshalers.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\5f1a06c0108b2c81cde1dc491d74043d\ComSvcConfig.ni.exe
+ 2012-06-23 15:27 . 2012-06-23 15:27 621568 c:\windows\assembly\NativeImages_v2.0.50727_32\BDATunePIA\2823d3be9334fea94dce8001b247589b\BDATunePIA.ni.dll
- 2009-07-14 00:36 . 2009-06-10 21:14 149328 c:\windows\assembly\GAC_MSIL\WsatConfig\3.0.0.0__b03f5f7f11d50a3a\WsatConfig.exe
+ 2011-07-02 21:08 . 2010-11-05 01:52 149328 c:\windows\assembly\GAC_MSIL\WsatConfig\3.0.0.0__b03f5f7f11d50a3a\WsatConfig.exe
+ 2011-07-02 21:06 . 2010-11-20 12:36 167936 c:\windows\assembly\GAC_MSIL\TaskScheduler\6.1.0.0__31bf3856ad364e35\TaskScheduler.dll
- 2009-07-13 21:46 . 2009-07-14 01:20 167936 c:\windows\assembly\GAC_MSIL\TaskScheduler\6.1.0.0__31bf3856ad364e35\TaskScheduler.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 139264 c:\windows\assembly\GAC_MSIL\System.Xml.Linq\3.5.0.0__b77a5c561934e089\System.Xml.Linq.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 139264 c:\windows\assembly\GAC_MSIL\System.Xml.Linq\3.5.0.0__b77a5c561934e089\System.Xml.Linq.dll
- 2009-07-13 21:09 . 2009-06-10 21:14 507904 c:\windows\assembly\GAC_MSIL\System.WorkflowServices\3.5.0.0__31bf3856ad364e35\System.WorkflowServices.dll
+ 2011-07-02 21:09 . 2010-11-05 01:52 507904 c:\windows\assembly\GAC_MSIL\System.WorkflowServices\3.5.0.0__31bf3856ad364e35\System.WorkflowServices.dll
- 2009-07-14 00:36 . 2009-06-10 21:15 540672 c:\windows\assembly\GAC_MSIL\System.Workflow.Runtime\3.0.0.0__31bf3856ad364e35\System.Workflow.Runtime.dll
+ 2011-07-02 21:10 . 2010-11-05 01:53 540672 c:\windows\assembly\GAC_MSIL\System.Workflow.Runtime\3.0.0.0__31bf3856ad364e35\System.Workflow.Runtime.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2011-07-02 21:08 . 2010-11-05 01:58 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 335872 c:\windows\assembly\GAC_MSIL\System.Web.Extensions.Design\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.Design.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 335872 c:\windows\assembly\GAC_MSIL\System.Web.Extensions.Design\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.Design.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 139264 c:\windows\assembly\GAC_MSIL\System.Web.Entity\3.5.0.0__b77a5c561934e089\System.Web.Entity.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 139264 c:\windows\assembly\GAC_MSIL\System.Web.Entity\3.5.0.0__b77a5c561934e089\System.Web.Entity.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 131072 c:\windows\assembly\GAC_MSIL\System.Web.Entity.Design\3.5.0.0__b77a5c561934e089\System.Web.Entity.Design.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 131072 c:\windows\assembly\GAC_MSIL\System.Web.Entity.Design\3.5.0.0__b77a5c561934e089\System.Web.Entity.Design.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 229376 c:\windows\assembly\GAC_MSIL\System.Web.DynamicData\3.5.0.0__31bf3856ad364e35\System.Web.DynamicData.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 229376 c:\windows\assembly\GAC_MSIL\System.Web.DynamicData\3.5.0.0__31bf3856ad364e35\System.Web.DynamicData.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2011-07-02 21:09 . 2010-11-05 01:52 569344 c:\windows\assembly\GAC_MSIL\System.ServiceModel.Web\3.5.0.0__31bf3856ad364e35\System.ServiceModel.Web.dll
- 2009-07-13 21:09 . 2009-06-10 21:14 569344 c:\windows\assembly\GAC_MSIL\System.ServiceModel.Web\3.5.0.0__31bf3856ad364e35\System.ServiceModel.Web.dll
+ 2011-07-02 21:08 . 2010-11-05 01:58 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2011-01-15 04:07 . 2010-03-03 23:27 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
- 2009-07-14 00:36 . 2009-06-10 21:13 970752 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
+ 2011-07-02 21:06 . 2010-11-05 01:52 970752 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2011-07-02 21:07 . 2010-11-05 01:58 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 237568 c:\windows\assembly\GAC_MSIL\System.Net\3.5.0.0__b03f5f7f11d50a3a\System.Net.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 237568 c:\windows\assembly\GAC_MSIL\System.Net\3.5.0.0__b03f5f7f11d50a3a\System.Net.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2011-07-02 21:09 . 2010-11-05 01:58 385024 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 143360 c:\windows\assembly\GAC_MSIL\System.Management.Instrumentation\3.5.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 143360 c:\windows\assembly\GAC_MSIL\System.Management.Instrumentation\3.5.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
+ 2011-07-02 21:10 . 2010-11-05 01:52 442368 c:\windows\assembly\GAC_MSIL\System.IdentityModel\3.0.0.0__b77a5c561934e089\System.IdentityModel.dll
+ 2011-07-02 21:06 . 2010-11-05 01:52 126976 c:\windows\assembly\GAC_MSIL\System.IdentityModel.Selectors\3.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
- 2009-07-14 00:36 . 2009-06-10 21:13 126976 c:\windows\assembly\GAC_MSIL\System.IdentityModel.Selectors\3.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
+ 2011-07-02 21:07 . 2010-11-05 01:58 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2011-07-02 21:09 . 2010-11-05 01:53 290816 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\3.5.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 290816 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\3.5.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2011-07-02 21:07 . 2010-11-05 01:58 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2011-07-02 21:10 . 2010-11-05 01:53 692224 c:\windows\assembly\GAC_MSIL\System.Data.Services\3.5.0.0__b77a5c561934e089\System.Data.Services.dll
+ 2011-07-02 21:10 . 2010-11-05 01:53 163840 c:\windows\assembly\GAC_MSIL\System.Data.Services.Design\3.5.0.0__b77a5c561934e089\System.Data.Services.Design.dll
+ 2011-07-02 21:10 . 2010-11-05 01:53 462848 c:\windows\assembly\GAC_MSIL\System.Data.Services.Client\3.5.0.0__b77a5c561934e089\System.Data.Services.Client.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 684032 c:\windows\assembly\GAC_MSIL\System.Data.Linq\3.5.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 684032 c:\windows\assembly\GAC_MSIL\System.Data.Linq\3.5.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 229376 c:\windows\assembly\GAC_MSIL\System.Data.Entity.Design\3.5.0.0__b77a5c561934e089\System.Data.Entity.Design.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 229376 c:\windows\assembly\GAC_MSIL\System.Data.Entity.Design\3.5.0.0__b77a5c561934e089\System.Data.Entity.Design.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 667648 c:\windows\assembly\GAC_MSIL\System.Core\3.5.0.0__b77a5c561934e089\System.Core.dll
+ 2011-07-02 21:10 . 2010-11-05 01:53 667648 c:\windows\assembly\GAC_MSIL\System.Core\3.5.0.0__b77a5c561934e089\System.Core.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
- 2012-05-11 16:16 . 2012-04-06 00:49 163840 c:\windows\assembly\GAC_MSIL\System.AddIn\3.5.0.0__b77a5c561934e089\System.AddIn.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 163840 c:\windows\assembly\GAC_MSIL\System.AddIn\3.5.0.0__b77a5c561934e089\System.AddIn.dll
+ 2011-07-02 21:08 . 2010-11-05 01:52 128848 c:\windows\assembly\GAC_MSIL\SMSvcHost\3.0.0.0__b03f5f7f11d50a3a\SMSvcHost.exe
- 2009-07-14 00:36 . 2009-06-10 21:14 128848 c:\windows\assembly\GAC_MSIL\SMSvcHost\3.0.0.0__b03f5f7f11d50a3a\SMSvcHost.exe
- 2009-07-14 00:36 . 2009-06-10 21:14 110592 c:\windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMdiagnostics.dll
+ 2011-07-02 21:06 . 2010-11-05 01:52 110592 c:\windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMdiagnostics.dll
- 2012-05-11 16:16 . 2012-04-06 00:49 532480 c:\windows\assembly\GAC_MSIL\ReachFramework\3.0.0.0__31bf3856ad364e35\ReachFramework.dll
+ 2011-07-02 21:10 . 2010-11-05 01:53 532480 c:\windows\assembly\GAC_MSIL\ReachFramework\3.0.0.0__31bf3856ad364e35\ReachFramework.dll
- 2009-07-14 00:35 . 2009-06-10 21:14 397312 c:\windows\assembly\GAC_MSIL\PresentationFramework.Luna\3.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 397312 c:\windows\assembly\GAC_MSIL\PresentationFramework.Luna\3.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
+ 2011-07-02 21:07 . 2010-11-05 01:53 598016 c:\windows\assembly\GAC_MSIL\PresentationBuildTasks\3.0.0.0__31bf3856ad364e35\PresentationBuildTasks.dll
- 2009-07-14 00:35 . 2009-06-10 21:14 598016 c:\windows\assembly\GAC_MSIL\PresentationBuildTasks\3.0.0.0__31bf3856ad364e35\PresentationBuildTasks.dll
- 2009-07-13 21:36 . 2009-07-14 01:50 286720 c:\windows\assembly\GAC_MSIL\Microsoft.WSMan.Management\1.0.0.0__31bf3856ad364e35\Microsoft.WSMan.Management.dll
+ 2011-07-02 21:06 . 2010-11-20 13:44 286720 c:\windows\assembly\GAC_MSIL\Microsoft.WSMan.Management\1.0.0.0__31bf3856ad364e35\Microsoft.WSMan.Management.dll
+ 2011-07-02 21:09 . 2010-11-05 01:57 610304 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 610304 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
- 2009-07-13 21:38 . 2009-07-14 01:47 991232 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Editor\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Editor.dll
+ 2011-07-02 21:09 . 2010-11-20 13:44 991232 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Editor\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Editor.dll
+ 2011-07-02 21:06 . 2010-11-20 13:44 667648 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Utility\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Utility.dll
- 2009-07-13 21:37 . 2009-07-14 01:47 667648 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Utility\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Utility.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 290816 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Management\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Management.dll
- 2009-07-13 21:37 . 2009-07-14 01:46 290816 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Management\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Management.dll
- 2009-07-13 21:14 . 2009-07-14 01:49 102400 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Diagnostics\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Diagnostics.dll
+ 2011-07-02 21:06 . 2010-11-20 13:44 102400 c:\windows\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Diagnostics\1.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Diagnostics.dll
- 2009-07-13 22:36 . 2009-07-14 01:22 385024 c:\windows\assembly\GAC_MSIL\Microsoft.MediaCenter\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.dll
+ 2011-07-02 21:06 . 2010-11-20 12:35 385024 c:\windows\assembly\GAC_MSIL\Microsoft.MediaCenter\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.dll
- 2009-07-13 22:36 . 2009-07-14 01:24 241664 c:\windows\assembly\GAC_MSIL\Microsoft.MediaCenter.Sports\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.Sports.dll
+ 2011-07-02 21:06 . 2010-11-20 12:35 241664 c:\windows\assembly\GAC_MSIL\Microsoft.MediaCenter.Sports\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.Sports.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 802816 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.v3.5.dll
+ 2011-07-02 21:09 . 2010-11-05 01:53 802816 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.v3.5.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 733184 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 733184 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
- 2009-07-13 20:46 . 2009-06-10 21:22 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2011-07-02 21:10 . 2010-11-20 12:32 638976 c:\windows\assembly\GAC_MSIL\mcstore\6.1.0.0__31bf3856ad364e35\mcstore.dll
- 2011-01-15 04:02 . 2010-08-04 06:28 638976 c:\windows\assembly\GAC_MSIL\mcstore\6.1.0.0__31bf3856ad364e35\mcstore.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 207872 c:\windows\assembly\GAC_MSIL\mcplayerinterop\6.1.0.0__31bf3856ad364e35\mcplayerinterop.dll
- 2009-07-14 00:25 . 2009-07-14 01:49 207872 c:\windows\assembly\GAC_MSIL\mcplayerinterop\6.1.0.0__31bf3856ad364e35\mcplayerinterop.dll
+ 2011-07-02 21:10 . 2010-11-20 13:44 741376 c:\windows\assembly\GAC_MSIL\mcepg\6.1.0.0__31bf3856ad364e35\mcepg.dll
- 2011-01-15 04:02 . 2010-08-04 07:14 741376 c:\windows\assembly\GAC_MSIL\mcepg\6.1.0.0__31bf3856ad364e35\mcepg.dll
+ 2011-07-02 21:06 . 2010-11-20 12:32 368640 c:\windows\assembly\GAC_MSIL\EventViewer\6.1.0.0__31bf3856ad364e35\EventViewer.dll
- 2009-07-13 21:46 . 2009-07-14 01:21 368640 c:\windows\assembly\GAC_MSIL\EventViewer\6.1.0.0__31bf3856ad364e35\EventViewer.dll
- 2009-07-13 22:35 . 2009-07-14 01:21 196608 c:\windows\assembly\GAC_MSIL\ehRecObj\6.1.0.0__31bf3856ad364e35\ehRecObj.dll
+ 2011-07-02 21:06 . 2010-11-20 12:32 196608 c:\windows\assembly\GAC_MSIL\ehRecObj\6.1.0.0__31bf3856ad364e35\ehRecObj.dll
- 2009-07-13 22:35 . 2009-07-14 01:20 172032 c:\windows\assembly\GAC_MSIL\ehiProxy\6.1.0.0__31bf3856ad364e35\ehiProxy.dll
+ 2011-07-02 21:06 . 2010-11-20 12:32 172032 c:\windows\assembly\GAC_MSIL\ehiProxy\6.1.0.0__31bf3856ad364e35\ehiProxy.dll
+ 2011-07-02 21:06 . 2010-11-20 12:32 143360 c:\windows\assembly\GAC_MSIL\ehexthost\6.1.0.0__31bf3856ad364e35\ehexthost.exe
- 2009-07-13 22:36 . 2009-07-14 01:20 143360 c:\windows\assembly\GAC_MSIL\ehexthost\6.1.0.0__31bf3856ad364e35\ehexthost.exe
+ 2011-07-02 21:08 . 2010-11-05 01:52 165720 c:\windows\assembly\GAC_MSIL\ComSvcConfig\3.0.0.0__b03f5f7f11d50a3a\ComSvcConfig.exe
+ 2011-07-02 21:09 . 2010-11-05 01:52 358912 c:\windows\assembly\GAC_64\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2011-07-02 21:07 . 2010-11-05 01:57 133120 c:\windows\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 133120 c:\windows\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2011-07-02 21:06 . 2010-11-05 01:57 245760 c:\windows\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 245760 c:\windows\assembly\GAC_64\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-07-02 21:08 . 2010-11-05 01:56 502272 c:\windows\assembly\GAC_64\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 502272 c:\windows\assembly\GAC_64\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 133632 c:\windows\assembly\GAC_64\naphlpr\6.1.0.0__31bf3856ad364e35\NAPHLPR.DLL
- 2009-07-14 00:09 . 2009-07-14 01:50 133632 c:\windows\assembly\GAC_64\naphlpr\6.1.0.0__31bf3856ad364e35\NAPHLPR.DLL
- 2009-07-14 01:01 . 2009-06-10 20:30 163840 c:\windows\assembly\GAC_64\Microsoft.Transactions.Bridge.Dtc\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2011-07-02 21:07 . 2010-11-05 01:52 163840 c:\windows\assembly\GAC_64\Microsoft.Transactions.Bridge.Dtc\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
- 2009-07-14 00:24 . 2009-07-14 01:52 327168 c:\windows\assembly\GAC_64\Microsoft.MediaCenter.TV.Tuners.Interop\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.TV.Tuners.Interop.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 327168 c:\windows\assembly\GAC_64\Microsoft.MediaCenter.TV.Tuners.Interop\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.TV.Tuners.Interop.dll
- 2011-01-15 04:02 . 2010-08-04 07:14 114688 c:\windows\assembly\GAC_64\Microsoft.MediaCenter.Playback\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.Playback.dll
+ 2011-07-02 21:08 . 2010-11-20 13:44 114688 c:\windows\assembly\GAC_64\Microsoft.MediaCenter.Playback\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.Playback.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 147968 c:\windows\assembly\GAC_64\Microsoft.MediaCenter.iTV.Media\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.iTV.Media.dll
- 2009-07-14 00:24 . 2009-07-14 01:51 147968 c:\windows\assembly\GAC_64\Microsoft.MediaCenter.iTV.Media\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.iTV.Media.dll
+ 2011-10-13 21:04 . 2011-08-17 05:28 315392 c:\windows\assembly\GAC_64\Microsoft.MediaCenter.Interop\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.Interop.dll
- 2011-10-13 21:04 . 2011-08-17 05:35 315392 c:\windows\assembly\GAC_64\Microsoft.MediaCenter.Interop\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.Interop.dll
- 2009-07-14 00:24 . 2009-07-14 01:50 133120 c:\windows\assembly\GAC_64\Mcx2Dvcs\6.1.0.0__31bf3856ad364e35\Mcx2Dvcs.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 133120 c:\windows\assembly\GAC_64\Mcx2Dvcs\6.1.0.0__31bf3856ad364e35\Mcx2Dvcs.dll
- 2011-01-15 04:02 . 2010-08-04 07:14 198656 c:\windows\assembly\GAC_64\mcupdate\6.1.0.0__31bf3856ad364e35\mcupdate.exe
+ 2011-07-02 21:08 . 2010-11-20 13:44 198656 c:\windows\assembly\GAC_64\mcupdate\6.1.0.0__31bf3856ad364e35\mcupdate.exe
- 2009-07-14 00:24 . 2009-07-14 01:48 139264 c:\windows\assembly\GAC_64\mcstoredb\6.1.0.0__31bf3856ad364e35\mcstoredb.dll
+ 2011-07-02 21:07 . 2010-11-20 13:44 139264 c:\windows\assembly\GAC_64\mcstoredb\6.1.0.0__31bf3856ad364e35\mcstoredb.dll
+ 2011-07-02 21:07 . 2010-11-20 13:39 249344 c:\windows\assembly\GAC_64\BDATunePIA\6.1.0.0__31bf3856ad364e35\BDATunePIA.dll
- 2009-07-14 00:21 . 2009-07-14 01:54 249344 c:\windows\assembly\GAC_64\BDATunePIA\6.1.0.0__31bf3856ad364e35\BDATunePIA.dll
+ 2011-07-02 21:09 . 2010-11-05 01:53 372736 c:\windows\assembly\GAC_32\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2011-07-02 21:07 . 2010-11-20 04:12 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2009-07-13 20:46 . 2009-07-13 20:46 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2011-07-02 21:08 . 2010-11-05 01:58 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2011-07-02 21:07 . 2010-11-20 12:36 107008 c:\windows\assembly\GAC_32\naphlpr\6.1.0.0__31bf3856ad364e35\NAPHLPR.DLL
- 2009-07-13 23:53 . 2009-07-14 01:22 107008 c:\windows\assembly\GAC_32\naphlpr\6.1.0.0__31bf3856ad364e35\NAPHLPR.DLL
+ 2011-07-02 21:07 . 2010-11-05 01:52 163840 c:\windows\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
- 2009-07-14 00:36 . 2009-06-10 21:14 163840 c:\windows\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
- 2009-07-14 00:09 . 2009-07-14 01:20 134656 c:\windows\assembly\GAC_32\mcstoredb\6.1.0.0__31bf3856ad364e35\mcstoredb.dll
+ 2011-07-02 21:07 . 2010-11-20 12:32 134656 c:\windows\assembly\GAC_32\mcstoredb\6.1.0.0__31bf3856ad364e35\mcstoredb.dll
+ 2011-07-02 21:07 . 2010-11-20 12:32 238080 c:\windows\assembly\GAC_32\BDATunePIA\6.1.0.0__31bf3856ad364e35\BDATunePIA.dll
- 2009-07-14 00:06 . 2009-07-14 01:25 238080 c:\windows\assembly\GAC_32\BDATunePIA\6.1.0.0__31bf3856ad364e35\BDATunePIA.dll
- 2011-04-26 23:57 . 2011-03-04 06:17 135168 c:\windows\AppPatch\AppPatch64\AcXtrnal.dll
+ 2011-04-26 23:57 . 2011-03-04 06:19 135168 c:\windows\AppPatch\AppPatch64\AcXtrnal.dll
+ 2011-04-26 23:57 . 2011-03-04 06:19 350208 c:\windows\AppPatch\AppPatch64\AcLayers.dll
+ 2011-04-26 23:58 . 2010-11-20 12:18 562176 c:\windows\AppPatch\AcLayers.dll
- 2009-07-14 00:22 . 2009-07-14 01:16 1712640 c:\windows\SysWOW64\xpsservices.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 1712640 c:\windows\SysWOW64\xpsservices.dll
- 2009-07-13 23:31 . 2009-07-14 01:16 1175040 c:\windows\SysWOW64\WsmSvc.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 1175040 c:\windows\SysWOW64\WsmSvc.dll
- 2009-07-14 00:07 . 2009-07-14 01:16 2311168 c:\windows\SysWOW64\wpdshext.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 2311168 c:\windows\SysWOW64\wpdshext.dll
- 2011-01-15 04:05 . 2010-05-23 10:15 1619456 c:\windows\SysWOW64\WMVDECOD.DLL
+ 2011-07-02 21:09 . 2010-11-20 12:21 1619456 c:\windows\SysWOW64\WMVDECOD.DLL
+ 2011-07-02 21:08 . 2010-11-20 12:20 2504192 c:\windows\SysWOW64\WMVCORE.DLL
- 2009-07-14 00:41 . 2009-07-14 01:16 2504192 c:\windows\SysWOW64\WMVCORE.DLL
+ 2011-07-02 21:08 . 2010-11-20 12:21 1624064 c:\windows\SysWOW64\WMPEncEn.dll
- 2009-07-14 00:09 . 2009-07-14 01:16 1624064 c:\windows\SysWOW64\WMPEncEn.dll
- 2009-07-14 00:09 . 2009-07-14 01:16 1003008 c:\windows\SysWOW64\WMNetMgr.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 1003008 c:\windows\SysWOW64\WMNetMgr.dll
- 2009-07-13 23:56 . 2009-07-14 01:16 1326592 c:\windows\SysWOW64\wlanpref.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 1326592 c:\windows\SysWOW64\wlanpref.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 1010688 c:\windows\SysWOW64\WindowsCodecs.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 1227776 c:\windows\SysWOW64\wdc.dll
- 2009-07-13 23:20 . 2009-07-14 01:16 1227776 c:\windows\SysWOW64\wdc.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 1128448 c:\windows\SysWOW64\vssapi.dll
+ 2011-07-02 21:06 . 2010-11-20 12:07 1164800 c:\windows\SysWOW64\UIRibbonRes.dll
- 2009-07-13 23:29 . 2009-07-14 01:10 1164800 c:\windows\SysWOW64\UIRibbonRes.dll
- 2009-07-13 23:43 . 2009-07-14 01:16 2983424 c:\windows\SysWOW64\UIRibbon.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 2983424 c:\windows\SysWOW64\UIRibbon.dll
+ 2011-06-29 00:07 . 2011-05-04 04:34 1549312 c:\windows\SysWOW64\tquery.dll
- 2009-07-13 23:39 . 2009-07-14 01:16 2755072 c:\windows\SysWOW64\themeui.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 2755072 c:\windows\SysWOW64\themeui.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 2157568 c:\windows\SysWOW64\themecpl.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 2146304 c:\windows\SysWOW64\SyncCenter.dll
- 2009-07-13 23:40 . 2009-07-14 01:16 2146304 c:\windows\SysWOW64\SyncCenter.dll
+ 2011-07-02 21:07 . 2010-11-20 12:21 1202176 c:\windows\SysWOW64\Speech\Common\sapi.dll
- 2009-07-14 00:14 . 2009-07-14 01:16 1202176 c:\windows\SysWOW64\Speech\Common\sapi.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 1667584 c:\windows\SysWOW64\setupapi.dll
+ 2011-07-02 21:08 . 2010-11-20 12:21 2202624 c:\windows\SysWOW64\SensorsCpl.dll
- 2009-07-13 23:45 . 2009-07-14 01:16 2202624 c:\windows\SysWOW64\SensorsCpl.dll
+ 2011-07-02 21:10 . 2010-11-20 12:21 1115136 c:\windows\SysWOW64\RacEngn.dll
+ 2011-07-02 21:09 . 2010-11-20 12:21 1363456 c:\windows\SysWOW64\Query.dll
- 2009-07-14 00:12 . 2009-07-14 01:16 1363456 c:\windows\SysWOW64\Query.dll
+ 2012-01-11 22:08 . 2011-10-26 04:32 1328128 c:\windows\SysWOW64\quartz.dll
+ 2011-07-02 21:08 . 2010-11-20 12:20 1750528 c:\windows\SysWOW64\pnidui.dll
- 2009-07-13 23:52 . 2009-07-14 01:16 1750528 c:\windows\SysWOW64\pnidui.dll
+ 2011-07-02 21:08 . 2010-11-20 12:20 1508864 c:\windows\SysWOW64\pla.dll
- 2009-07-13 23:20 . 2009-07-14 01:16 1508864 c:\windows\SysWOW64\pla.dll
- 2009-07-14 00:21 . 2009-07-14 01:16 1160192 c:\windows\SysWOW64\OpcServices.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 1160192 c:\windows\SysWOW64\OpcServices.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 1111552 c:\windows\SysWOW64\onexui.dll
- 2009-07-13 23:51 . 2009-07-14 01:16 1111552 c:\windows\SysWOW64\onexui.dll
+ 2011-07-02 21:09 . 2010-11-20 12:20 1414144 c:\windows\SysWOW64\ole32.dll
+ 2012-06-14 03:07 . 2012-05-04 10:03 3913072 c:\windows\SysWOW64\ntoskrnl.exe
+ 2012-06-14 03:07 . 2012-05-04 10:03 3968368 c:\windows\SysWOW64\ntkrnlpa.exe
+ 2012-01-11 22:08 . 2011-11-17 05:38 1292080 c:\windows\SysWOW64\ntdll.dll
- 2009-07-13 23:53 . 2009-07-14 01:16 2130944 c:\windows\SysWOW64\networkmap.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 2130944 c:\windows\SysWOW64\networkmap.dll
- 2009-07-13 23:53 . 2009-07-14 01:16 1661440 c:\windows\SysWOW64\networkexplorer.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 1661440 c:\windows\SysWOW64\networkexplorer.dll
- 2009-07-13 23:53 . 2009-07-14 01:16 2494464 c:\windows\SysWOW64\netshell.dll

Tony Lillie · Jun 23, 2012

More ComboFix:

+ 2011-07-02 21:09 . 2010-11-20 12:20 2494464 c:\windows\SysWOW64\netshell.dll
- 2009-07-13 23:56 . 2009-07-14 01:16 1644032 c:\windows\SysWOW64\netcenter.dll
+ 2011-07-02 21:07 . 2010-11-20 12:20 1644032 c:\windows\SysWOW64\netcenter.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 1390080 c:\windows\SysWOW64\msxml6.dll
- 2011-02-09 15:35 . 2010-12-21 05:36 1236992 c:\windows\SysWOW64\msxml3.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 1236992 c:\windows\SysWOW64\msxml3.dll
- 2009-07-14 00:08 . 2009-07-14 01:15 2291712 c:\windows\SysWOW64\MSVidCtl.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 2291712 c:\windows\SysWOW64\MSVidCtl.dll
+ 2011-07-02 21:10 . 2010-11-20 12:19 3215872 c:\windows\SysWOW64\mstscax.dll
+ 2011-07-02 21:09 . 2010-11-20 12:17 1049600 c:\windows\SysWOW64\mstsc.exe
+ 2011-06-29 00:07 . 2011-05-04 04:32 1401344 c:\windows\SysWOW64\mssrch.dll
- 2012-06-14 03:07 . 2012-04-07 11:34 2342400 c:\windows\SysWOW64\msi.dll
+ 2012-06-14 03:07 . 2012-04-07 11:26 2342400 c:\windows\SysWOW64\msi.dll
- 2009-07-13 23:31 . 2009-07-14 01:15 2151936 c:\windows\SysWOW64\mmcndmgr.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 2151936 c:\windows\SysWOW64\mmcndmgr.dll
- 2009-07-13 23:18 . 2009-07-14 01:15 8826880 c:\windows\SysWOW64\migwiz\wet.dll
+ 2011-07-02 21:08 . 2010-11-20 12:19 8826880 c:\windows\SysWOW64\migwiz\wet.dll
+ 2011-07-02 21:10 . 2010-11-20 12:19 5766144 c:\windows\SysWOW64\migwiz\migcore.dll
- 2011-04-15 00:30 . 2011-03-11 05:40 1164288 c:\windows\SysWOW64\mfc42u.dll
+ 2011-04-15 00:30 . 2011-03-11 05:33 1164288 c:\windows\SysWOW64\mfc42u.dll
- 2011-04-15 00:30 . 2011-03-11 05:40 1137664 c:\windows\SysWOW64\mfc42.dll
+ 2011-04-15 00:30 . 2011-03-11 05:33 1137664 c:\windows\SysWOW64\mfc42.dll
+ 2011-07-02 21:10 . 2010-11-20 12:19 3207680 c:\windows\SysWOW64\mf.dll
+ 2011-08-10 18:31 . 2011-07-16 04:24 1114112 c:\windows\SysWOW64\kernel32.dll
- 2009-07-13 23:26 . 2009-07-14 01:15 1013760 c:\windows\SysWOW64\IME\IMEJP10\IMJPTIP.DLL
+ 2011-07-02 21:07 . 2010-11-20 12:19 1013760 c:\windows\SysWOW64\IME\IMEJP10\IMJPTIP.DLL
+ 2011-07-02 21:08 . 2010-11-20 12:19 2576384 c:\windows\SysWOW64\gameux.dll
- 2009-07-13 23:41 . 2009-07-14 01:15 2576384 c:\windows\SysWOW64\gameux.dll
+ 2011-07-02 21:09 . 2010-11-20 12:19 1493504 c:\windows\SysWOW64\ExplorerFrame.dll
+ 2011-04-26 23:58 . 2011-02-25 05:30 2616320 c:\windows\SysWOW64\explorer.exe
+ 2011-04-26 23:57 . 2011-03-11 05:33 1699328 c:\windows\SysWOW64\esent.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 1400320 c:\windows\SysWOW64\DxpTaskSync.dll
- 2009-07-14 00:07 . 2009-07-14 01:15 1400320 c:\windows\SysWOW64\DxpTaskSync.dll
+ 2012-05-11 16:16 . 2012-03-03 05:31 1077248 c:\windows\SysWOW64\DWrite.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 1371136 c:\windows\SysWOW64\dwmcore.dll
- 2009-07-13 23:40 . 2009-07-14 01:15 1040384 c:\windows\SysWOW64\Display.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 1040384 c:\windows\SysWOW64\Display.dll
+ 2011-07-02 21:10 . 2010-11-05 01:58 1130824 c:\windows\SysWOW64\dfshim.dll
- 2011-01-15 03:55 . 2009-11-25 18:47 1130824 c:\windows\SysWOW64\dfshim.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 2522624 c:\windows\SysWOW64\dbgeng.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 1828352 c:\windows\SysWOW64\d3d9.dll
+ 2011-07-02 21:10 . 2010-11-20 12:18 1171456 c:\windows\SysWOW64\d3d10warp.dll
- 2009-07-13 23:33 . 2009-07-14 01:15 1003520 c:\windows\SysWOW64\cryptui.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 1003520 c:\windows\SysWOW64\cryptui.dll
+ 2012-06-14 03:07 . 2012-04-24 04:36 1158656 c:\windows\SysWOW64\crypt32.dll
- 2009-07-13 23:29 . 2009-07-14 01:15 1555456 c:\windows\SysWOW64\certmgr.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 1555456 c:\windows\SysWOW64\certmgr.dll
+ 2011-07-02 21:10 . 2010-11-20 12:18 1334272 c:\windows\SysWOW64\CertEnroll.dll
+ 2011-07-02 21:09 . 2010-11-20 12:18 1792000 c:\windows\SysWOW64\authui.dll
- 2009-07-13 23:42 . 2009-07-14 01:14 1792000 c:\windows\SysWOW64\authui.dll
+ 2011-07-02 21:10 . 2010-11-20 12:32 5066752 c:\windows\SysWOW64\AuthFWSnapin.dll
+ 2011-07-02 21:05 . 2010-11-20 12:18 2041344 c:\windows\SysWOW64\AdvancedInstallers\cmiv2.dll
- 2009-07-13 23:17 . 2009-07-14 01:15 2041344 c:\windows\SysWOW64\AdvancedInstallers\cmiv2.dll
+ 2011-07-02 21:07 . 2010-11-20 12:18 3727872 c:\windows\SysWOW64\accessibilitycpl.dll
- 2009-07-14 00:45 . 2009-07-14 01:41 3008000 c:\windows\system32\xpsservices.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 3008000 c:\windows\system32\xpsservices.dll
+ 2011-04-26 23:58 . 2011-03-12 12:08 1465344 c:\windows\system32\XpsPrint.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 2018304 c:\windows\system32\WsmSvc.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 2543616 c:\windows\system32\wpdshext.dll
- 2011-01-15 04:05 . 2010-05-23 08:37 1888256 c:\windows\system32\WMVDECOD.DLL
+ 2011-07-02 21:10 . 2010-11-20 13:27 1888256 c:\windows\system32\WMVDECOD.DLL
+ 2011-07-02 21:10 . 2010-11-20 13:27 3027968 c:\windows\system32\WMVCORE.DLL
+ 2011-07-02 21:09 . 2010-11-20 13:27 1024512 c:\windows\system32\wmpmde.dll
- 2011-01-15 04:17 . 2010-08-21 06:38 1024512 c:\windows\system32\wmpmde.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 2072576 c:\windows\system32\WMPEncEn.dll
- 2009-07-14 00:25 . 2009-07-14 01:41 2072576 c:\windows\system32\WMPEncEn.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1243136 c:\windows\system32\WMNetMgr.dll
- 2009-07-14 00:24 . 2009-07-14 01:41 1243136 c:\windows\system32\WMNetMgr.dll
- 2009-07-14 00:23 . 2009-07-14 01:41 1232896 c:\windows\system32\WMADMOD.DLL
+ 2011-07-02 21:07 . 2010-11-20 13:27 1232896 c:\windows\system32\WMADMOD.DLL
- 2009-07-14 00:11 . 2009-07-14 01:41 1441280 c:\windows\system32\wlanpref.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1441280 c:\windows\system32\wlanpref.dll
- 2009-07-13 23:37 . 2009-07-14 01:39 3957760 c:\windows\system32\WinSAT.exe
+ 2011-07-02 21:10 . 2010-11-20 13:25 3957760 c:\windows\system32\WinSAT.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 1190400 c:\windows\system32\WindowsCodecs.dll
+ 2012-06-14 03:07 . 2012-05-15 01:32 3146752 c:\windows\system32\win32k.sys
- 2009-07-13 23:49 . 2009-07-14 01:41 1646080 c:\windows\system32\wevtsvc.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 1646080 c:\windows\system32\wevtsvc.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1281024 c:\windows\system32\werconcpl.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1158656 c:\windows\system32\webservices.dll
- 2009-07-13 23:32 . 2009-07-14 01:41 1363968 c:\windows\system32\wdc.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 1363968 c:\windows\system32\wdc.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 1504256 c:\windows\system32\wbengine.exe
+ 2011-07-02 21:01 . 2010-11-20 13:27 1225216 c:\windows\system32\wbem\wbemcore.dll
+ 2011-07-02 21:10 . 2010-11-20 13:25 2058240 c:\windows\system32\wbem\cimwin32.dll
+ 2011-07-02 21:10 . 2010-11-20 13:25 1600512 c:\windows\system32\VSSVC.exe
+ 2011-07-02 21:10 . 2010-11-20 13:27 1753088 c:\windows\system32\vssapi.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1098240 c:\windows\system32\Vault.dll
- 2009-07-13 23:53 . 2009-07-14 01:41 1098240 c:\windows\system32\Vault.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1008128 c:\windows\system32\user32.dll
- 2009-07-13 23:43 . 2009-07-14 01:33 1164800 c:\windows\system32\UIRibbonRes.dll
+ 2011-07-02 21:06 . 2010-11-20 13:15 1164800 c:\windows\system32\UIRibbonRes.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 3860992 c:\windows\system32\UIRibbon.dll
+ 2011-06-29 00:07 . 2011-05-04 05:25 2315776 c:\windows\system32\tquery.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 2851840 c:\windows\system32\themeui.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 2193920 c:\windows\system32\themecpl.dll
- 2009-07-13 23:56 . 2009-07-14 01:41 2193920 c:\windows\system32\themecpl.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 1197056 c:\windows\system32\taskschd.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 1743360 c:\windows\system32\sysmain.dll
- 2009-07-13 23:55 . 2009-07-14 01:41 2262528 c:\windows\system32\SyncCenter.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 2262528 c:\windows\system32\SyncCenter.dll
- 2009-07-14 01:05 . 2009-07-14 01:39 3524608 c:\windows\system32\sppsvc.exe
+ 2011-07-02 21:08 . 2010-11-20 13:25 3524608 c:\windows\system32\sppsvc.exe
+ 2011-07-02 21:09 . 2010-11-20 13:27 1082880 c:\windows\system32\sppobjs.dll
- 2009-07-13 23:52 . 2009-07-14 01:41 1082880 c:\windows\system32\sppobjs.dll
+ 2009-07-14 00:42 . 2010-11-20 13:27 1576448 c:\windows\system32\spool\drivers\x64\3\XPSSVCS.DLL
- 2009-07-14 00:42 . 2009-07-14 01:41 1576448 c:\windows\system32\spool\drivers\x64\3\XpsSvcs.dll
+ 2009-07-14 01:19 . 2010-11-20 13:08 6566400 c:\windows\system32\spool\drivers\x64\3\FXSRES.DLL
+ 2011-07-02 21:09 . 2010-11-20 13:27 1126912 c:\windows\system32\Speech\SpeechUX\SpeechUX.dll
- 2009-07-14 00:35 . 2009-07-14 01:41 1126912 c:\windows\system32\Speech\SpeechUX\SpeechUX.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1435648 c:\windows\system32\Speech\Common\sapi.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1900544 c:\windows\system32\setupapi.dll
- 2009-07-14 00:00 . 2009-07-14 01:41 2250752 c:\windows\system32\SensorsCpl.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 2250752 c:\windows\system32\SensorsCpl.dll
- 2009-07-13 23:37 . 2009-07-14 01:41 1120768 c:\windows\system32\sdengin2.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 1120768 c:\windows\system32\sdengin2.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 1264640 c:\windows\system32\sdclt.exe
- 2009-07-13 23:37 . 2009-07-14 01:39 1264640 c:\windows\system32\sdclt.exe
+ 2011-07-02 21:10 . 2010-11-20 13:27 1110016 c:\windows\system32\schedsvc.dll
- 2011-03-08 21:28 . 2010-12-23 06:07 1118720 c:\windows\system32\sbe.dll
+ 2011-03-08 21:28 . 2010-12-23 10:42 1118720 c:\windows\system32\sbe.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 1219584 c:\windows\system32\rpcrt4.dll
+ 2012-03-13 22:09 . 2012-02-17 06:38 1031680 c:\windows\system32\rdpcore.dll
- 2012-03-13 22:09 . 2012-02-15 06:27 1031680 c:\windows\system32\rdpcore.dll
- 2009-07-13 23:37 . 2009-07-14 01:41 1556992 c:\windows\system32\RacEngn.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 1556992 c:\windows\system32\RacEngn.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 2055680 c:\windows\system32\Query.dll
- 2009-07-14 00:29 . 2009-07-14 01:41 2055680 c:\windows\system32\Query.dll
+ 2012-01-11 22:08 . 2011-10-26 05:25 1572864 c:\windows\system32\quartz.dll
- 2012-01-11 22:08 . 2011-10-26 05:22 1572864 c:\windows\system32\quartz.dll
- 2009-07-13 23:56 . 2009-07-14 01:41 1212416 c:\windows\system32\propsys.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1212416 c:\windows\system32\propsys.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1050624 c:\windows\system32\printui.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1808384 c:\windows\system32\pnidui.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1389056 c:\windows\system32\pla.dll
- 2009-07-14 00:43 . 2009-07-14 01:41 1911808 c:\windows\system32\OpcServices.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 1911808 c:\windows\system32\OpcServices.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 2199040 c:\windows\system32\oobe\winsetup.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1161728 c:\windows\system32\oobe\msoobeui.dll
+ 2011-07-02 21:06 . 2010-11-20 13:27 1080320 c:\windows\system32\onexui.dll
- 2009-07-14 00:07 . 2009-07-14 01:41 1080320 c:\windows\system32\onexui.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 2086912 c:\windows\system32\ole32.dll
+ 2012-06-14 03:07 . 2012-05-04 11:06 5559664 c:\windows\system32\ntoskrnl.exe
+ 2012-01-11 22:08 . 2011-11-17 06:41 1731920 c:\windows\system32\ntdll.dll
- 2009-07-14 00:08 . 2009-07-14 01:41 2146816 c:\windows\system32\networkmap.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 2146816 c:\windows\system32\networkmap.dll
- 2009-07-14 00:08 . 2009-07-14 01:41 1672704 c:\windows\system32\networkexplorer.dll
+ 2011-07-02 21:07 . 2010-11-20 13:27 1672704 c:\windows\system32\networkexplorer.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 2652160 c:\windows\system32\netshell.dll
- 2009-07-14 00:12 . 2009-07-14 01:41 1689600 c:\windows\system32\netcenter.dll
+ 2011-07-02 21:08 . 2010-11-20 13:27 1689600 c:\windows\system32\netcenter.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 1326080 c:\windows\system32\NaturalLanguage6.dll
- 2010-07-22 00:03 . 2010-07-22 00:03 1077248 c:\windows\system32\Narrator.exe
+ 2011-07-02 21:08 . 2010-11-20 13:44 1077248 c:\windows\system32\Narrator.exe
+ 2011-07-02 21:10 . 2010-11-20 13:27 2004480 c:\windows\system32\msxml6.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 1881088 c:\windows\system32\msxml3.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 3650560 c:\windows\system32\MSVidCtl.dll
+ 2011-07-02 21:10 . 2010-11-20 13:27 3715584 c:\windows\system32\mstscax.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 1116672 c:\windows\system32\mstsc.exe
+ 2011-06-29 00:07 . 2011-05-04 05:22 2223616 c:\windows\system32\mssrch.dll
- 2009-07-14 00:23 . 2009-07-14 01:41 1160192 c:\windows\system32\MSMPEG2ENC.DLL
+ 2011-07-02 21:08 . 2010-11-20 13:27 1160192 c:\windows\system32\MSMPEG2ENC.DLL
+ 2012-06-14 03:07 . 2012-04-07 12:31 3216384 c:\windows\system32\msi.dll
- 2009-07-14 00:00 . 2009-07-14 01:41 1509888 c:\windows\system32\msdtctm.dll
+ 2011-07-02 21:09 . 2010-11-20 13:27 1509888 c:\windows\system32\msdtctm.dll
- 2009-07-13 23:48 . 2009-07-14 01:41 3205120 c:\windows\system32\mmcndmgr.dll
+ 2011-07-02 21:10 . 2010-11-20 13:26 3205120 c:\windows\system32\mmcndmgr.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 1205760 c:\windows\system32\migwiz\migstore.dll
+ 2011-07-02 21:10 . 2010-11-20 13:26 8032768 c:\windows\system32\migwiz\migcore.dll
+ 2011-04-15 00:30 . 2011-03-11 06:34 1359872 c:\windows\system32\mfc42u.dll
- 2011-04-15 00:30 . 2011-03-11 06:19 1359872 c:\windows\system32\mfc42u.dll
+ 2011-04-15 00:30 . 2011-03-11 06:34 1395712 c:\windows\system32\mfc42.dll
- 2011-04-15 00:30 . 2011-03-11 06:19 1395712 c:\windows\system32\mfc42.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 5523280 c:\windows\system32\mfc100u.dll
+ 2011-01-07 20:02 . 2011-01-07 20:02 5493576 c:\windows\system32\mfc100.dll
- 2010-03-18 14:36 . 2010-03-18 14:36 5493576 c:\windows\system32\mfc100.dll
+ 2011-07-02 21:10 . 2010-11-20 13:26 4120064 c:\windows\system32\mf.dll
- 2009-07-14 00:19 . 2009-07-14 01:41 1009152 c:\windows\system32\mcmde.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 1009152 c:\windows\system32\mcmde.dll
+ 2012-01-13 20:54 . 2011-11-17 06:35 1447936 c:\windows\system32\lsasrv.dll
+ 2011-08-10 18:31 . 2011-07-16 05:37 1162752 c:\windows\system32\kernel32.dll
- 2009-07-13 23:40 . 2009-07-14 01:41 1242112 c:\windows\system32\IME\IMEJP10\IMJPTIP.DLL
+ 2011-07-02 21:07 . 2010-11-20 13:26 1242112 c:\windows\system32\IME\IMEJP10\IMJPTIP.DLL
+ 2011-07-02 21:09 . 2010-11-20 13:26 1244160 c:\windows\system32\imapi2fs.dll
- 2009-07-14 00:01 . 2009-07-14 01:41 1244160 c:\windows\system32\imapi2fs.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 2746880 c:\windows\system32\gameux.dll
+ 2011-03-08 21:28 . 2011-02-19 12:05 1139200 c:\windows\system32\FntCache.dll
+ 2011-07-02 21:10 . 2010-11-20 13:26 1866240 c:\windows\system32\ExplorerFrame.dll
+ 2011-04-26 23:57 . 2011-03-11 06:33 2565632 c:\windows\system32\esent.dll
- 2009-07-14 00:22 . 2009-07-14 01:40 1457664 c:\windows\system32\DxpTaskSync.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 1457664 c:\windows\system32\DxpTaskSync.dll
+ 2012-05-11 16:16 . 2012-03-03 06:35 1544704 c:\windows\system32\DWrite.dll
+ 2011-07-02 21:10 . 2010-11-20 13:26 1632256 c:\windows\system32\dwmcore.dll
+ 2011-07-02 21:07 . 2010-11-20 13:08 6566400 c:\windows\system32\DriverStore\FileRepository\prnms002.inf_amd64_neutral_d834e48846616289\Amd64\FXSRES.DLL
+ 2011-07-02 21:07 . 2010-11-20 13:27 1576448 c:\windows\system32\DriverStore\FileRepository\ntprint.inf_amd64_neutral_4616c3de1949be6d\Amd64\XPSSVCS.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:09 1058304 c:\windows\system32\DriverStore\FileRepository\ntprint.inf_amd64_neutral_4616c3de1949be6d\Amd64\PCL5URES.DLL
+ 2011-07-02 21:06 . 2010-11-20 13:09 1057792 c:\windows\system32\DriverStore\FileRepository\ntprint.inf_amd64_neutral_4616c3de1949be6d\Amd64\PCL5ERES.DLL
+ 2009-07-13 21:59 . 2009-07-14 01:40 4772352 c:\windows\system32\DriverStore\FileRepository\atiilhag.inf_amd64_neutral_0a660e899f5038a2\atiumdva.dll
+ 2009-07-13 21:59 . 2009-07-14 01:40 4030976 c:\windows\system32\DriverStore\FileRepository\atiilhag.inf_amd64_neutral_0a660e899f5038a2\atiumdag.dll
+ 2009-07-13 21:59 . 2009-07-14 01:40 4763136 c:\windows\system32\DriverStore\FileRepository\atiilhag.inf_amd64_neutral_0a660e899f5038a2\atiumd6a.dll
+ 2009-06-10 20:36 . 2009-07-14 01:40 5492736 c:\windows\system32\DriverStore\FileRepository\atiilhag.inf_amd64_neutral_0a660e899f5038a2\atiumd64.dll
+ 2009-07-13 21:59 . 2009-07-13 21:59 5020672 c:\windows\system32\DriverStore\FileRepository\atiilhag.inf_amd64_neutral_0a660e899f5038a2\atikmdag.sys
+ 2009-07-13 21:59 . 2009-07-14 01:40 3115008 c:\windows\system32\DriverStore\FileRepository\atiilhag.inf_amd64_neutral_0a660e899f5038a2\atidxx64.dll
+ 2009-07-13 21:59 . 2009-07-14 01:40 2342400 c:\windows\system32\DriverStore\FileRepository\atiilhag.inf_amd64_neutral_0a660e899f5038a2\atidxx32.dll
+ 2011-04-26 23:57 . 2011-03-11 06:41 1659776 c:\windows\system32\drivers\ntfs.sys
- 2009-07-13 23:56 . 2009-07-14 01:40 1066496 c:\windows\system32\Display.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 1066496 c:\windows\system32\Display.dll
+ 2011-07-02 21:10 . 2010-11-20 13:26 1340416 c:\windows\system32\diagperf.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 1202176 c:\windows\system32\DiagCpl.dll
- 2009-07-13 23:31 . 2009-07-14 01:40 1202176 c:\windows\system32\DiagCpl.dll
- 2011-01-15 03:55 . 2009-11-25 18:47 1942856 c:\windows\system32\dfshim.dll
+ 2011-07-02 21:10 . 2010-11-05 01:57 1942856 c:\windows\system32\dfshim.dll
- 2009-07-14 00:13 . 2009-07-14 01:40 1087488 c:\windows\system32\dbghelp.dll
+ 2011-07-02 21:07 . 2010-11-20 13:26 1087488 c:\windows\system32\dbghelp.dll
+ 2011-07-02 21:10 . 2010-11-20 13:26 3391488 c:\windows\system32\dbgeng.dll
+ 2011-07-02 21:10 . 2010-11-20 13:26 2067456 c:\windows\system32\d3d9.dll
+ 2011-07-02 21:10 . 2010-11-20 13:26 1838080 c:\windows\system32\d3d10warp.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 1065984 c:\windows\system32\cryptui.dll
- 2009-07-13 23:49 . 2009-07-14 01:40 1065984 c:\windows\system32\cryptui.dll
+ 2012-06-14 03:07 . 2012-04-24 05:37 1462272 c:\windows\system32\crypt32.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 1796096 c:\windows\system32\certmgr.dll
- 2010-07-22 00:00 . 2010-07-22 00:00 1975296 c:\windows\system32\CertEnroll.dll
+ 2011-07-02 21:10 . 2010-11-20 13:25 1975296 c:\windows\system32\CertEnroll.dll
- 2009-07-14 00:29 . 2009-07-14 01:40 1133568 c:\windows\system32\cdosys.dll
+ 2011-07-02 21:07 . 2010-11-20 13:25 1133568 c:\windows\system32\cdosys.dll
+ 2011-07-02 21:08 . 2010-11-20 13:32 2217856 c:\windows\system32\bootres.dll
+ 2011-07-02 21:09 . 2010-11-20 13:25 1927680 c:\windows\system32\authui.dll
+ 2011-07-02 21:10 . 2010-11-20 13:39 5066752 c:\windows\system32\AuthFWSnapin.dll
- 2009-07-14 00:34 . 2009-07-14 01:40 3745792 c:\windows\system32\accessibilitycpl.dll
+ 2011-07-02 21:08 . 2010-11-20 13:25 3745792 c:\windows\system32\accessibilitycpl.dll
+ 2009-07-14 04:45 . 2012-06-23 15:47 7100862 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2010-10-20 00:20 . 2012-06-23 15:39 2775792 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2011-07-02 21:09 . 2010-11-05 01:53 2361160 c:\windows\Microsoft.NET\Framework64\v3.5\vbc.exe
+ 2011-07-02 21:09 . 2010-11-05 01:53 2287432 c:\windows\Microsoft.NET\Framework64\v3.5\csc.exe
- 2009-07-13 20:54 . 2009-06-10 20:31 2287432 c:\windows\Microsoft.NET\Framework64\v3.5\csc.exe
+ 2011-07-02 21:09 . 2010-11-05 01:53 2255192 c:\windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
+ 2011-07-02 21:10 . 2010-11-05 01:52 5328896 c:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.ServiceModel.dll
+ 2011-07-02 21:09 . 2010-11-05 01:57 1800520 c:\windows\Microsoft.NET\Framework64\v2.0.50727\vbc.exe
+ 2011-07-02 21:10 . 2010-11-05 01:57 2048000 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.XML.dll
- 2009-07-13 20:37 . 2009-06-10 20:40 2048000 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.XML.dll
- 2012-05-11 16:16 . 2012-03-21 22:28 5025792 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Windows.Forms.dll
+ 2011-07-02 21:10 . 2010-11-05 01:57 5025792 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Windows.Forms.dll
+ 2011-07-02 21:10 . 2010-11-05 01:57 5259264 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Web.dll
- 2012-01-11 00:06 . 2011-12-26 19:08 5259264 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Web.dll
+ 2011-07-02 21:10 . 2010-11-05 01:57 3190784 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.dll
+ 2011-07-02 21:06 . 2010-11-05 01:56 4927488 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Design.dll
- 2012-06-14 03:07 . 2012-03-21 22:28 4927488 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Design.dll
+ 2011-07-02 21:10 . 2010-11-05 01:56 3095552 c:\windows\Microsoft.NET\Framework64\v2.0.50727\System.Data.dll
+ 2011-07-02 21:10 . 2010-11-05 01:56 9992528 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
+ 2011-07-02 21:10 . 2010-11-05 01:56 4567040 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorlib.dll
- 2012-05-11 16:16 . 2012-01-04 02:48 4567040 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorlib.dll
+ 2011-07-02 21:09 . 2010-11-05 01:56 1576272 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
+ 2011-07-02 21:10 . 2010-11-05 01:56 1755480 c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscordacwks.dll
+ 2011-07-02 21:09 . 2010-11-05 01:56 1983304 c:\windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll
+ 2011-07-02 21:08 . 2010-11-05 01:53 1717576 c:\windows\Microsoft.NET\Framework\v3.5\vbc.exe
+ 2011-07-02 21:08 . 2010-11-05 01:53 1545032 c:\windows\Microsoft.NET\Framework\v3.5\csc.exe
+ 2011-07-02 21:08 . 2010-11-05 01:53 1736536 c:\windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
+ 2011-07-02 21:10 . 2010-11-05 01:52 5988352 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.dll
+ 2011-07-02 21:09 . 2010-11-05 01:58 1340752 c:\windows\Microsoft.NET\Framework\v2.0.50727\VsaVb7rt.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 1169224 c:\windows\Microsoft.NET\Framework\v2.0.50727\vbc.exe
+ 2011-07-02 21:09 . 2010-11-05 01:58 1169224 c:\windows\Microsoft.NET\Framework\v2.0.50727\vbc.exe
+ 2011-07-02 21:10 . 2010-11-05 01:58 2048000 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.XML.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 2048000 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.XML.dll
- 2012-05-11 16:16 . 2012-03-21 22:29 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2011-07-02 21:10 . 2010-11-05 01:58 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2011-07-02 21:10 . 2010-11-05 01:58 5251072 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
- 2012-01-11 00:06 . 2011-12-26 19:13 5251072 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2011-07-02 21:10 . 2010-11-05 01:58 3190784 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
- 2012-06-14 03:07 . 2012-03-21 22:29 4927488 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Design.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 4927488 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Design.dll
+ 2011-07-02 21:10 . 2010-11-05 01:58 2927616 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.dll
+ 2011-07-02 21:10 . 2010-11-05 01:57 5923152 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
- 2012-05-11 16:16 . 2012-01-04 02:51 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2011-07-02 21:10 . 2010-11-05 01:57 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2011-07-02 21:09 . 2010-11-05 01:57 1160008 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
+ 2011-01-08 01:05 . 2011-01-08 01:05 4583936 c:\windows\Installer\d630e.msp
+ 2011-04-26 23:58 . 2011-02-25 06:19 2871808 c:\windows\explorer.exe
+ 2011-07-02 21:08 . 2010-11-20 12:18 1551872 c:\windows\ehome\wow\ehuihlp.dll
- 2011-01-15 04:02 . 2010-08-04 06:16 1551872 c:\windows\ehome\wow\ehuihlp.dll
+ 2011-07-02 21:06 . 2010-11-20 12:35 2596864 c:\windows\ehome\Microsoft.MediaCenter.UI.dll
- 2009-07-13 22:35 . 2009-07-14 01:26 2596864 c:\windows\ehome\Microsoft.MediaCenter.UI.dll
- 2009-07-13 22:35 . 2009-07-14 01:23 1572864 c:\windows\ehome\Microsoft.MediaCenter.Shell.dll
+ 2011-07-02 21:06 . 2010-11-20 12:35 1572864 c:\windows\ehome\Microsoft.MediaCenter.Shell.dll
+ 2011-07-02 21:10 . 2010-11-20 13:26 2613248 c:\windows\ehome\Mcx2Filter.dll
- 2011-01-15 04:02 . 2010-08-04 07:07 1668608 c:\windows\ehome\ehuihlp.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 1668608 c:\windows\ehome\ehuihlp.dll
- 2009-07-14 00:26 . 2009-07-14 01:40 1195520 c:\windows\ehome\ehui.dll
+ 2011-07-02 21:09 . 2010-11-20 13:26 1195520 c:\windows\ehome\ehui.dll

Tony Lillie · Jun 23, 2012

More ComboFix:

+ 2011-07-02 21:10 . 2010-11-20 12:32 6307840 c:\windows\ehome\ehshell.dll
- 2011-01-15 04:02 . 2010-08-04 06:28 6307840 c:\windows\ehome\ehshell.dll
- 2009-07-13 23:20 . 2009-07-13 23:20 1474560 c:\windows\Boot\DVD\EFI\en-US\efisys.bin
+ 2011-07-02 21:09 . 2010-11-20 09:19 1474560 c:\windows\Boot\DVD\EFI\en-US\efisys.bin
+ 2012-06-23 15:34 . 2012-06-23 15:34 4962816 c:\windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\40864f42b00635e6fa6ce8da88d9ab83\WindowsBase.ni.dll
+ 2012-06-23 16:10 . 2012-06-23 16:10 1459712 c:\windows\assembly\NativeImages_v2.0.50727_64\UIAutomationClients#\1820fd86357ea33153927f127e6c5d3f\UIAutomationClientsideProviders.ni.dll
+ 2012-06-23 15:26 . 2012-06-23 15:26 6948864 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Xml\ee795155543768ea67eecddc686a1e9e\System.Xml.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 1818112 c:\windows\assembly\NativeImages_v2.0.50727_64\System.WorkflowServ#\7f1f91903e297c234f177743d94c318e\System.WorkflowServices.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 2711040 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Workflow.Run#\462293b97f4b8f084192a7fbae47269f\System.Workflow.Runtime.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 5957632 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Workflow.Com#\20e46d1d15a9eaee80b1d16dafef4017\System.Workflow.ComponentModel.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 3895296 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Workflow.Act#\a53a2767e448aef90b345af1339d4c9a\System.Workflow.Activities.ni.dll
+ 2012-06-23 15:31 . 2012-06-23 15:31 2292224 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Services\2f157d250a738f7a6074e0f29b298998\System.Web.Services.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 3336704 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Mobile\5ea81699d36a1938a0ff618380506f11\System.Web.Mobile.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 3042304 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Extensio#\e2d043bbce0d8d303dadd068037c3ffb\System.Web.Extensions.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 1155072 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web.Extensio#\47da05ff5ddd7d25ab9df88e6d79bb39\System.Web.Extensions.Design.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 2727936 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Speech\0dc049d2993f3d0e2651581533093e17\System.Speech.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 2312704 c:\windows\assembly\NativeImages_v2.0.50727_64\System.ServiceModel#\bde9665f643d6e82b36b401d38f07fc8\System.ServiceModel.Web.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 3073536 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\52bdf474b237d949c5b2b407ebec8f1e\System.Runtime.Serialization.ni.dll
+ 2012-06-23 15:31 . 2012-06-23 15:31 1022976 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\0fde44651bdf14a3988b955dd94aa318\System.Runtime.Remoting.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 1463808 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Printing\8a2376658a24628765d359a0fafb3339\System.Printing.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 1472000 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Management\c44929bde355680c886f8a52f5e22b81\System.Management.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 1444352 c:\windows\assembly\NativeImages_v2.0.50727_64\System.IdentityModel\9b1d7533105a793af14b7b51cd5443af\System.IdentityModel.ni.dll
+ 2012-06-23 15:31 . 2012-06-23 15:31 1081344 c:\windows\assembly\NativeImages_v2.0.50727_64\System.EnterpriseSe#\a6155c70b3df6c860303ffee7b560ade\System.EnterpriseServices.ni.dll
+ 2012-06-23 15:26 . 2012-06-23 15:26 2311168 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\5910828a337dbe848dc90c7ae0a7dee2\System.Drawing.ni.dll
+ 2012-06-23 15:31 . 2012-06-23 15:31 1640448 c:\windows\assembly\NativeImages_v2.0.50727_64\System.DirectorySer#\c1cdea55f62c9e8b9b9c1ae4c23b1c1f\System.DirectoryServices.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 1230848 c:\windows\assembly\NativeImages_v2.0.50727_64\System.DirectorySer#\6ed2b26c49820b85b9f78ac7abceefa9\System.DirectoryServices.AccountManagement.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 2444288 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Deployment\413d36d1d35aabadf1c9d6f0a56cfab8\System.Deployment.ni.dll
+ 2012-06-23 15:31 . 2012-06-23 15:31 8681472 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data\accc3a5269658c8c47fe3e402ac4ac1c\System.Data.ni.dll
+ 2012-06-23 15:26 . 2012-06-23 15:26 3463680 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.SqlXml\7111bf18edb7bf9d986782131f797acb\System.Data.SqlXml.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 2805760 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.Services\0765c6422b48cd504d2fba3765c78c79\System.Data.Services.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 1868288 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.Service#\5d81c3e6fa9f3f78cd8d06d8cf2caff0\System.Data.Services.Client.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 1506816 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.OracleC#\89eae0aa2c0c6d4678ccffdc84fcc410\System.Data.OracleClient.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 3480576 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.Linq\b357f35e860204c5b74e1388f97db058\System.Data.Linq.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 1080320 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.Entity.#\8f1dcb9771b151969c5afdae76376d5c\System.Data.Entity.Design.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 3315200 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Core\83e2f6909980da7347e7806d8c26670e\System.Core.ni.dll
+ 2012-06-23 15:26 . 2012-06-23 15:26 1308160 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\091b931d0f6408001747dbbbb05dbe66\System.Configuration.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 3116032 c:\windows\assembly\NativeImages_v2.0.50727_64\ReachFramework\34177215bbd2e05eb6d59d40a0a98f96\ReachFramework.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 2109952 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationUI\d7c71f43e6d6e92221717345e6156044\PresentationUI.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 1884160 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationBuildTa#\08ccd030c85c817c0a889196955a49a4\PresentationBuildTasks.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 3601920 c:\windows\assembly\NativeImages_v2.0.50727_64\Narrator\4cc02fad33053737088d4c18267ca0a0\Narrator.ni.exe
+ 2012-06-23 16:08 . 2012-06-23 16:08 2327552 c:\windows\assembly\NativeImages_v2.0.50727_64\MMCEx\b46af15d2e2ae2782f384bfc4a4c2c03\MMCEx.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 7970304 c:\windows\assembly\NativeImages_v2.0.50727_64\MIGUIControls\5d7e85e3ad81826e2e1d7131284c63fe\MIGUIControls.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 1877504 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualStu#\585e8f83eff436c8156f071e8f2bdaa0\Microsoft.VisualStudio.Tools.Applications.Adapter.v9.0.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 2131968 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.VisualBas#\684eae3bcd28cb6d1e6997e6497056e2\Microsoft.VisualBasic.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 1598976 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Transacti#\a04be0cabc675da23c6cdd970b50e3c5\Microsoft.Transactions.Bridge.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 2176512 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\cdf48153115fc0bb466f37b7dcad9ac5\Microsoft.PowerShell.Commands.Utility.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 5350912 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\997418025a2c73d8088b0f59264a6f2b\Microsoft.PowerShell.Editor.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 1131008 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\9206dc8156588e608d405729c833edc5\Microsoft.PowerShell.Commands.Management.ni.dll
+ 2012-06-23 16:08 . 2012-06-23 16:08 2105344 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.PowerShel#\7a9c26f21641112fcacd6f087b42133a\Microsoft.PowerShell.GPowerShell.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 1093632 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Office.To#\dd4deeafd891c39e6eb4a2daaafa9124\Microsoft.Office.Tools.Common.v9.0.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 1875456 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Office.To#\dc8ba97b4a8deefeb1efac60e1bdb693\Microsoft.Office.Tools.Excel.v9.0.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 1186304 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Office.To#\11940d5133d63001fa4499c315655e15\Microsoft.Office.Tools.Word.v9.0.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 1508864 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\b883b83d1f72f1fcaf4acdef3c9c381f\Microsoft.MediaCenter.Bml.ni.dll
+ 2012-06-23 15:26 . 2012-06-23 15:26 1516544 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\9ae837dc03e8519b40fe2c35c8752146\Microsoft.MediaCenter.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 1142784 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\91d1761a767975dc100e4e05e48cc9a3\Microsoft.MediaCenter.Shell.ni.dll
+ 2012-06-23 15:26 . 2012-06-23 15:26 8979456 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\618ab8996b43e841efdcfb273393fc02\Microsoft.MediaCenter.UI.ni.dll
+ 2012-06-23 15:33 . 2012-06-23 15:33 1170432 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.MediaCent#\140714964f3afbcea38cb33d548c5d3c\Microsoft.MediaCenter.TV.Tuners.Interop.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 3213312 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.JScript\71e40c479d779f2bf55bb925834e3cd3\Microsoft.JScript.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 2365952 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Ink\3d4632e11d04d8db85c98485b1622bae\Microsoft.Ink.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 2218496 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Tas#\ca72594c581d8024d629f931f0e312d7\Microsoft.Build.Tasks.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 2682880 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Tas#\3cf3740de20740208d614d330aa4416c\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 2544640 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Eng#\8c4abd55a6b822e3efbbc649c5c01a3e\Microsoft.Build.Engine.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 1137152 c:\windows\assembly\NativeImages_v2.0.50727_64\Microsoft.Build.Eng#\2e1dbe90bc10ba70f147a249adfc7f64\Microsoft.Build.Engine.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 2801664 c:\windows\assembly\NativeImages_v2.0.50727_64\mcstore\67c2902f53638a9056174f6130a8bde7\mcstore.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 4088320 c:\windows\assembly\NativeImages_v2.0.50727_64\mcepg\13b4ad00d1167ff3ed7d2a8e4994f1ff\mcepg.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 2184192 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiVidCtl\11d57f5c033326954c0bc4f0b2680812\ehiVidCtl.ni.dll
+ 2012-06-23 15:26 . 2012-06-23 15:26 1201664 c:\windows\assembly\NativeImages_v2.0.50727_64\ehiProxy\50691bdee045a2df00f00ac461844c5f\ehiProxy.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 7026176 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\cb64811fcbe857e8a1404e31d6a9d3a0\WindowsLive.Writer.PostEditor.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 1285632 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\bc807477855c7d43363bc71744243d78\WindowsLive.Writer.ApplicationFramework.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 2193408 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\b2e79705cd5b7c890e55c99ea975490b\WindowsLive.Writer.CoreServices.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 1346560 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsLive.Writer.#\02ba0d9339e0899e1bc10dc539a7e62e\WindowsLive.Writer.Localization.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 3347968 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf293040f3a93afa1ea782487acae816\WindowsBase.ni.dll
+ 2012-06-23 15:54 . 2012-06-23 15:54 1047552 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\56780b4bd164787631d4317d0556c3c0\UIAutomationClientsideProviders.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 3611136 c:\windows\assembly\NativeImages_v2.0.50727_32\twaingui\9db9a006e3baf699546ff1e2fabbb7bd\twaingui.ni.exe
+ 2012-06-23 15:27 . 2012-06-23 15:27 7963136 c:\windows\assembly\NativeImages_v2.0.50727_32\System\9e0a3b9b9f457233a335d7fba8f95419\System.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 5453312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\461d3b6b3f43e6fbe6c897d5936e17e4\System.Xml.ni.dll
+ 2012-06-23 15:54 . 2012-06-23 15:54 1358336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\f0f10d0591d11a36ee2aa8ee2fbdb2bf\System.WorkflowServices.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 1917952 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\2101dbd9fa083a2ed0cc112636260070\System.Workflow.Runtime.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 4515840 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\e1a68d2a01e132ebc60a5565a771902b\System.Workflow.ComponentModel.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 2995200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\b2a2c534c407bbe46e8536445d0ada50\System.Workflow.Activities.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\02d5be8209f0eac6f7725f8d83b87df6\System.Web.Services.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 2209792 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\9abec9ee3dab00d67b395d1994a60776\System.Web.Mobile.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 2403328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\70823ac0d6e6631a11d443bf38987cc9\System.Web.Extensions.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 1917952 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\6935e1dad6ec5de21658f8d38999099a\System.Speech.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 1707008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\4782a5d2bc7d86895faf404a3470aacb\System.ServiceModel.Web.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 2347008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\4a984a9ad59d14063bc6ae64a0c8f62a\System.Runtime.Serialization.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 1044480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\aac5817d96d0ddcffebc1c45000e9008\System.Printing.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 1051136 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\6f3b99ed0b791ff4d8aa52f2f0cd0bcf\System.Management.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 8872960 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.A#\4436815b432c313255af322f4ec3560d\System.Management.Automation.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 1083392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\b4c60dd01be760ee0452df2c040de8fc\System.IdentityModel.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\dbfe8642a8ed7b2b103ad28e0c96418a\System.Drawing.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 1117184 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\45ec12795950a7d54691591c615a9e3c\System.DirectoryServices.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 1806848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\be74d258a0daa0e11197e1dcb1b3b0b9\System.Deployment.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 6611456 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\1e85062785e286cd9eae9c26d2c61f73\System.Data.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 2508288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\4308c2310ca6f08c6e0068172e5b709f\System.Data.SqlXml.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 2029568 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\c335a6ef5339fa917518475c286c8ca4\System.Data.Services.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 1378816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\a933cd1241698e4d13d80c8cb31d7055\System.Data.Services.Client.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.OracleC#\907f5045e26c39e1ae48024201b6334d\System.Data.OracleClient.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 2516992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\748de10ea72fad908022d9507c7304fc\System.Data.Linq.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 9921536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\a5947a9c77b884b9e06c54f38ff3c4d7\System.Data.Entity.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 2297856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\fbc05b5b05dc6366b02b8e2f77d080f1\System.Core.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 2157056 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\7073e12b4c349a6ad94522e465e4f4ed\ReachFramework.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 1658368 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\6f4c8aeb8f066adf5cafedbec0cac415\PresentationUI.ni.dll
+ 2012-06-23 15:53 . 2012-06-23 15:53 1451520 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\c0a8f3f379d7a62a032783cc4e04a4dd\PresentationBuildTasks.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 1762304 c:\windows\assembly\NativeImages_v2.0.50727_32\Newtonsoft.Json.Net#\e04259cfa511964223c905bfcb0df87a\Newtonsoft.Json.Net20.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 2438144 c:\windows\assembly\NativeImages_v2.0.50727_32\NetworkPrinterDisco#\afcc94dd60db6e875349c4801b65a91c\NetworkPrinterDiscovery.ni.exe
+ 2012-06-23 15:52 . 2012-06-23 15:52 2623488 c:\windows\assembly\NativeImages_v2.0.50727_32\Narrator\0bae62c3fc6c327ed24989263988173d\Narrator.ni.exe
+ 2012-06-23 15:52 . 2012-06-23 15:52 1545216 c:\windows\assembly\NativeImages_v2.0.50727_32\MMCEx\6d4bacfd54e8f79763945bee5a50711d\MMCEx.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 6438912 c:\windows\assembly\NativeImages_v2.0.50727_32\MIGUIControls\569e273efda8306ec7e22143d5285476\MIGUIControls.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 1300992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualStu#\787526c375f27d452cde50fea4f7986b\Microsoft.VisualStudio.Tools.Applications.Adapter.v9.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 1670144 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\08d608378aa405adc844f3cf36974b8c\Microsoft.VisualBasic.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\af058f98427f47670e70468a36d84ee4\Microsoft.Transactions.Bridge.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 3724288 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\6cc1334749f85cce651642f0a8260892\Microsoft.PowerShell.Editor.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 1681920 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\3008a05e2928e2c1d856cc34e0422c17\Microsoft.PowerShell.Commands.Utility.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 1704960 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.PowerShel#\2ba6bf6e9258afde91ab81fad2d37469\Microsoft.PowerShell.GPowerShell.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 1354752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.To#\d7be05162f8d0fba8f4447db13f6695b\Microsoft.Office.Tools.Excel.v9.0.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 1564672 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.Bu#\f82e140a59b049d9c2651d72d198f4ae\Microsoft.Office.BusinessApplications.Runtime.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 3238400 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.Bu#\a6b15ac427fd03a82b7557c269e528ff\Microsoft.Office.BusinessData.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 4752384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.Bu#\43bf8a67fcb2a1d406f93c3ae09b5ced\Microsoft.Office.BusinessApplications.SyncServices.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 2091520 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Office.Bu#\185e40f64b7b89741dce92710abc4f6b\Microsoft.Office.BusinessApplications.RuntimeUi.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 6499840 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.MediaCent#\e7b8df5d803bb9bd27f63f0074775aaf\Microsoft.MediaCenter.UI.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 1009664 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.MediaCent#\d22ec1c367b915c4028867244c6a1623\Microsoft.MediaCenter.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 2335744 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\b3fde69f9642ab464bd3389f1fe3c5bd\Microsoft.JScript.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 1361408 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Ink\b0d0daea6a1d9a111a0f33a9a868bcf7\Microsoft.Ink.ni.dll
+ 2012-06-23 15:52 . 2012-06-23 15:52 1970176 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\d7245402b9853a8e390552ba45b3a6b4\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\880a680b2160130c8cf858a7d2a9067d\Microsoft.Build.Tasks.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\e4031bd0b7706fd0a686e9bb6353aa2a\Microsoft.Build.Engine.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 2035712 c:\windows\assembly\NativeImages_v2.0.50727_32\mcstore\740a64a316ada107a23dd34f35ae3b94\mcstore.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 3025920 c:\windows\assembly\NativeImages_v2.0.50727_32\mcepg\38e4b4d4c4cf98e359438769fae66149\mcepg.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 1291264 c:\windows\assembly\NativeImages_v2.0.50727_32\KodakAiOUpdater\afb04bc2b6ffdabfb131df6f8694297e\KodakAiOUpdater.ni.exe
+ 2012-06-23 15:51 . 2012-06-23 15:51 1183744 c:\windows\assembly\NativeImages_v2.0.50727_32\InkjetCore\cc08289099fbfcc7fb9757f42624116e\InkjetCore.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 1195520 c:\windows\assembly\NativeImages_v2.0.50727_32\InkjetCore\955669f67442cb0bbb4252c57beb899e\InkjetCore.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 1532928 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Editing\a27623d022bf7329d9c5cf2ed488665b\Inkjet.Editing.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 1218560 c:\windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Destination\f7889389e5836ba0169bf7ee4fb77bd1\Inkjet.Destination.ni.dll
+ 2012-06-23 15:50 . 2012-06-23 15:50 1177600 c:\windows\assembly\NativeImages_v2.0.50727_32\idrskrn_net14\43f895820211713210fd0e5af9f89766\idrskrn_net14.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 3764736 c:\windows\assembly\NativeImages_v2.0.50727_32\CommonControls\dd6cfb5b608e2203b05b9db3c5ab1c1a\CommonControls.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 3762176 c:\windows\assembly\NativeImages_v2.0.50727_32\CommonControls\cca7b1fa909b0fa5efdb2a7ddd36414a\CommonControls.ni.dll
+ 2012-06-23 15:51 . 2012-06-23 15:51 3207680 c:\windows\assembly\NativeImages_v2.0.50727_32\AiOPrinterTools\a91f841b384f55001621e931897172ca\AiOPrinterTools.ni.exe
+ 2012-06-23 15:51 . 2012-06-23 15:51 1060864 c:\windows\assembly\NativeImages_v2.0.50727_32\AiOHostDirector\2182d5fa4e110f30d603157f11b982ff\AiOHostDirector.ni.exe
+ 2012-06-23 15:50 . 2012-06-23 15:50 1874944 c:\windows\assembly\NativeImages_v2.0.50727_32\AiOHomeCenter\75efaef3090d857b88b9d98baf15f5dd\AiOHomeCenter.ni.exe
+ 2011-07-02 21:10 . 2010-11-05 01:53 1253376 c:\windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
+ 2011-07-02 21:10 . 2010-11-05 01:58 3190784 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2011-07-02 21:10 . 2010-11-05 01:58 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
- 2009-07-13 20:46 . 2009-06-10 21:23 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2011-07-02 21:10 . 2010-11-05 01:53 1630208 c:\windows\assembly\GAC_MSIL\System.Workflow.ComponentModel\3.0.0.0__31bf3856ad364e35\System.Workflow.ComponentModel.dll
- 2009-07-14 00:36 . 2009-06-10 21:15 1630208 c:\windows\assembly\GAC_MSIL\System.Workflow.ComponentModel\3.0.0.0__31bf3856ad364e35\System.Workflow.ComponentModel.dll
- 2009-07-14 00:36 . 2009-06-10 21:15 1142784 c:\windows\assembly\GAC_MSIL\System.Workflow.Activities\3.0.0.0__31bf3856ad364e35\System.Workflow.Activities.dll
+ 2011-07-02 21:06 . 2010-11-05 01:53 1142784 c:\windows\assembly\GAC_MSIL\System.Workflow.Activities\3.0.0.0__31bf3856ad364e35\System.Workflow.Activities.dll
- 2012-05-11 16:16 . 2012-03-21 22:29 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2011-07-02 21:10 . 2010-11-05 01:58 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
- 2012-01-11 00:06 . 2011-12-26 19:13 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
+ 2011-07-02 21:10 . 2010-11-05 01:53 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
+ 2011-07-02 21:10 . 2010-11-05 01:52 5988352 c:\windows\assembly\GAC_MSIL\System.ServiceModel\3.0.0.0__b77a5c561934e089\System.ServiceModel.dll
+ 2011-07-02 21:10 . 2010-11-20 13:44 3010560 c:\windows\assembly\GAC_MSIL\System.Management.Automation\1.0.0.0__31bf3856ad364e35\System.Management.Automation.dll
- 2009-07-13 21:37 . 2009-07-14 01:53 3010560 c:\windows\assembly\GAC_MSIL\System.Management.Automation\1.0.0.0__31bf3856ad364e35\System.Management.Automation.dll
+ 2011-07-02 21:06 . 2010-11-05 01:58 4927488 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
- 2012-06-14 03:07 . 2012-03-21 22:29 4927488 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2011-07-02 21:09 . 2010-11-05 01:53 2879488 c:\windows\assembly\GAC_MSIL\System.Data.Entity\3.5.0.0__b77a5c561934e089\System.Data.Entity.dll
- 2009-07-13 21:10 . 2009-06-10 21:14 2879488 c:\windows\assembly\GAC_MSIL\System.Data.Entity\3.5.0.0__b77a5c561934e089\System.Data.Entity.dll
- 2012-05-11 16:16 . 2012-04-06 00:49 5279744 c:\windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2011-07-02 21:10 . 2010-11-05 01:53 5279744 c:\windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2011-07-02 21:08 . 2010-11-20 13:44 1077248 c:\windows\assembly\GAC_MSIL\Narrator\6.1.0.0__31bf3856ad364e35\Narrator.exe
- 2010-07-22 00:03 . 2010-07-22 00:03 1077248 c:\windows\assembly\GAC_MSIL\Narrator\6.1.0.0__31bf3856ad364e35\Narrator.exe
- 2009-07-13 21:46 . 2009-07-14 01:27 3416064 c:\windows\assembly\GAC_MSIL\MiguiControls\1.0.0.0__31bf3856ad364e35\MIGUIControls.dll
+ 2011-07-02 21:09 . 2010-11-20 12:36 3416064 c:\windows\assembly\GAC_MSIL\MiguiControls\1.0.0.0__31bf3856ad364e35\MIGUIControls.dll
- 2009-07-13 22:35 . 2009-07-14 01:26 2596864 c:\windows\assembly\GAC_MSIL\Microsoft.MediaCenter.UI\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.UI.dll
+ 2011-07-02 21:06 . 2010-11-20 12:35 2596864 c:\windows\assembly\GAC_MSIL\Microsoft.MediaCenter.UI\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.UI.dll
- 2009-07-13 22:35 . 2009-07-14 01:23 1572864 c:\windows\assembly\GAC_MSIL\Microsoft.MediaCenter.Shell\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.Shell.dll
+ 2011-07-02 21:06 . 2010-11-20 12:35 1572864 c:\windows\assembly\GAC_MSIL\Microsoft.MediaCenter.Shell\6.1.0.0__31bf3856ad364e35\Microsoft.MediaCenter.Shell.dll
- 2011-01-15 04:02 . 2010-08-04 06:28 6307840 c:\windows\assembly\GAC_MSIL\ehshell\6.1.0.0__31bf3856ad364e35\ehshell.dll
+ 2011-07-02 21:10 . 2010-11-20 12:32 6307840 c:\windows\assembly\GAC_MSIL\ehshell\6.1.0.0__31bf3856ad364e35\ehshell.dll
+ 2011-07-02 21:10 . 2010-11-05 01:57 5259264 c:\windows\assembly\GAC_64\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
- 2012-01-11 00:06 . 2011-12-26 19:08 5259264 c:\windows\assembly\GAC_64\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2011-07-02 21:10 . 2010-11-05 01:56 3095552 c:\windows\assembly\GAC_64\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2011-07-02 21:09 . 2010-11-05 01:53 2255192 c:\windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\wpfgfx_v0300.dll
+ 2011-07-02 21:10 . 2010-11-05 01:52 3997696 c:\windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2012-05-11 16:16 . 2012-04-06 00:45 3997696 c:\windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2012-05-11 16:16 . 2012-01-04 02:48 4567040 c:\windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-07-02 21:10 . 2010-11-05 01:56 4567040 c:\windows\assembly\GAC_64\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
- 2012-01-11 00:06 . 2011-12-26 19:13 5251072 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2011-07-02 21:10 . 2010-11-05 01:58 5251072 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2011-07-02 21:10 . 2010-11-05 01:58 2927616 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2011-07-02 21:08 . 2010-11-05 01:53 1736536 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\wpfgfx_v0300.dll
+ 2011-07-02 21:10 . 2010-11-05 01:53 4218880 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
- 2012-05-11 16:16 . 2012-01-04 02:51 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2011-07-02 21:10 . 2010-11-05 01:57 4550656 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
- 2009-07-13 23:27 . 2009-07-14 01:14 2175488 c:\windows\AppPatch\AcGenral.dll
+ 2011-07-02 21:08 . 2010-11-20 12:18 2175488 c:\windows\AppPatch\AcGenral.dll
- 2011-01-15 04:12 . 2010-09-01 04:23 12625408 c:\windows\SysWOW64\wmploc.DLL
+ 2011-07-02 21:06 . 2010-11-20 12:08 12625408 c:\windows\SysWOW64\wmploc.DLL
+ 2011-07-02 21:10 . 2010-11-20 12:21 11410432 c:\windows\SysWOW64\wmp.dll
+ 2012-02-16 01:06 . 2012-01-04 08:59 12872704 c:\windows\SysWOW64\shell32.dll
+ 2011-07-02 21:06 . 2010-11-20 13:16 12625920 c:\windows\system32\wmploc.DLL
- 2011-01-15 04:12 . 2010-09-01 05:12 12625920 c:\windows\system32\wmploc.DLL
+ 2011-07-02 21:10 . 2010-11-20 13:27 14633472 c:\windows\system32\wmp.dll
+ 2009-07-14 02:34 . 2012-06-23 15:19 10747904 c:\windows\system32\SMI\Store\Machine\schema.dat
+ 2012-02-16 01:06 . 2012-01-04 10:44 14172672 c:\windows\system32\shell32.dll
- 2009-07-13 23:33 . 2009-07-14 01:41 10085888 c:\windows\system32\migwiz\wet.dll
+ 2011-07-02 21:08 . 2010-11-20 13:26 10085888 c:\windows\system32\migwiz\wet.dll
+ 2011-07-02 21:10 . 2010-11-20 13:25 15697920 c:\windows\ehome\CreateDisc\SBEServer.exe
- 2009-07-14 00:47 . 2009-07-14 01:39 15697920 c:\windows\ehome\CreateDisc\SBEServer.exe
+ 2012-06-23 15:26 . 2012-06-23 15:26 10617344 c:\windows\assembly\NativeImages_v2.0.50727_64\System\adff7dd9fe8e541775c46b6363401b22\System.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 17379328 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\6c352ff9e3603b0e69d969ff7e7632f5\System.Windows.Forms.ni.dll
+ 2012-06-23 15:31 . 2012-06-23 15:31 15249408 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Web\ea5a0e7af3956d40caeffaab3bb8b753\System.Web.ni.dll
+ 2012-06-23 15:36 . 2012-06-23 15:36 23913984 c:\windows\assembly\NativeImages_v2.0.50727_64\System.ServiceModel\ac74a0642981011a441823a762bfb3d8\System.ServiceModel.ni.dll
+ 2012-06-23 16:07 . 2012-06-23 16:07 11900928 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Management.A#\009a09f5b2322bb8c5520dc5ddbb28bb\System.Management.Automation.ni.dll
+ 2012-06-23 15:32 . 2012-06-23 15:32 13609472 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Design\d42a48a3e73b472a80d0d44038af89b0\System.Design.ni.dll
+ 2012-06-23 16:09 . 2012-06-23 16:09 13760000 c:\windows\assembly\NativeImages_v2.0.50727_64\System.Data.Entity\84467aa24019da88d4aece177e51a223\System.Data.Entity.ni.dll
+ 2012-06-23 15:35 . 2012-06-23 15:35 19195392 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\09ca6fe45ec9d8c535413b0dfa7d2075\PresentationFramework.ni.dll
+ 2012-06-23 15:34 . 2012-06-23 15:34 16540160 c:\windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\e097881a6e1956a4c3f6b8dbb81cb4ee\PresentationCore.ni.dll
+ 2012-06-23 15:25 . 2012-06-23 15:25 15568384 c:\windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9469491f37d9c35b596968b206615309\mscorlib.ni.dll
+ 2012-06-23 15:33 . 2012-06-23 15:33 25470976 c:\windows\assembly\NativeImages_v2.0.50727_64\ehshell\a1e624126e0db648f3b8ea24d0f13f84\ehshell.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 12432896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\3afcd5168c7a6cb02eab99d7fd71e102\System.Windows.Forms.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 11819520 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\da5da08245467818759aa44c4eb948e1\System.Web.ni.dll
+ 2012-06-23 15:37 . 2012-06-23 15:37 17478656 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\e2642bff810609f64343e53dddb6b59c\System.ServiceModel.ni.dll
+ 2012-06-23 15:28 . 2012-06-23 15:28 10580480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\52873358b397c328168f0a5be7f3b9ae\System.Design.ni.dll
+ 2012-06-23 15:30 . 2012-06-23 15:30 14339072 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\bfaf8f86e69928fb2f67987c0203f603\PresentationFramework.ni.dll
+ 2012-06-23 15:29 . 2012-06-23 15:29 12234752 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\2ad23de8284d4594aa658dfb5e667d97\PresentationCore.ni.dll
+ 2012-06-23 15:27 . 2012-06-23 15:27 11490304 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\62a0b3e4b40ec0e8c5cfaa0c8848e64a\mscorlib.ni.dll
.

Tony Lillie · Jun 23, 2012

FINAL ComboFix log:

-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-02-10 1712184]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-05-19 2736128]
"Facebook Update"="c:\users\Owner\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-03-07 137536]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"Norton Online Backup"="c:\program files (x86)\Symantec\Norton Online Backup\NOBuClient.exe" [2010-06-01 1155928]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2011-06-14 587320]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"WRSVC"="c:\program files\Webroot\WRSA.exe" [2012-06-08 684240]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-04-06 641664]
"Conime"="c:\windows\system32\conime.exe" [BU]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"KodakHomeCenter"="c:\program files (x86)\Kodak\AiO\Center\AiOHomeCenter.exe" [2012-03-07 2234288]
.
c:\users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Facebook Messenger.lnk - c:\users\Owner\AppData\Local\Facebook\Messenger\2.1.4520.0\FacebookMessenger.exe [N/A]
OneNote 2010 Screen Clipper and Launcher.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [2011-9-2 227712]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Event Reminder.lnk - c:\program files (x86)\PrintMaster Platinum 18\Remind.exe [2007-9-9 344064]
NETGEAR WG111v3 Smart Wizard.lnk - c:\program files (x86)\NETGEAR\WG111v3\WG111v3.exe [2009-11-6 2469888]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoDevMgrUpdate"= 0 (0x0)
"NoDFSTab"= 0 (0x0)
"NoEncryptOnMove"= 0 (0x0)
"NoResolveTrack"= 0 (0x0)
"NoStartMenuSubFolders"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDevMgrUpdate"= 0 (0x0)
"NoDFSTab"= 0 (0x0)
"NoEncryptOnMove"= 0 (0x0)
"NoResolveTrack"= 0 (0x0)
"NoStartMenuSubFolders"= 0 (0x0)
.
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"DisableLocalMachineRun"= 0 (0x0)
"DisableLocalMachineRunOnce"= 0 (0x0)
"DisableCurrentUserRun"= 0 (0x0)
"DisableCurrentUserRunOnce"= 0 (0x0)
"NoFile"= 0 (0x0)
"HideClock"= 0 (0x0)
"NoDevMgrUpdate"= 0 (0x0)
"NoDFSTab"= 0 (0x0)
"NoEncryptOnMove"= 0 (0x0)
"NoResolveTrack"= 0 (0x0)
"NoStartMenuSubFolders"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 WRSVC;WRSVC;c:\program files\Webroot\WRSA.exe [2012-06-08 684240]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-15 257224]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [x]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
R3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-06-16 113120]
R3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista;c:\windows\system32\DRIVERS\netr28x.sys [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
R3 RTL8187B;NETGEAR WG111v3 Wireless-G USB Adapter Win7 Driver;c:\windows\system32\DRIVERS\wg111v3.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x]
R3 ZTEusbgps;ZTE GPS Port;c:\windows\system32\DRIVERS\ZTEusbgps.sys [x]
R3 ZTEusbnmeaext;ZTE NMEAExt Port;c:\windows\system32\DRIVERS\ZTEusbnmeaext.sys [x]
S0 WRkrn;WRkrn;c:\windows\System32\drivers\WRkrn.sys [x]
S1 DVMIO;DeviceVM IO Service;c:\windows\system32\DRIVERS\dvmio.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2011-04-03 89600]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-04-06 361984]
S2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-03-05 53888]
S2 atashost;WebEx Service Host for Support Center;c:\windows\SysWOW64\atashost.exe [2012-03-06 133944]
S2 CinemaNow Service;CinemaNow Service;c:\program files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe [2010-06-13 400368]
S2 DvmMDES;DeviceVM Meta Data Export Service;c:\swsetup\HPQWMM\QuickWeb\QW.SYS\config\DVMExportService.exe [2010-06-25 338168]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-09-09 86072]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-06-18 103992]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2011-06-14 26680]
S2 Kodak AiO Network Discovery Service;Kodak AiO Network Discovery Service;c:\program files (x86)\Kodak\AiO\Center\EKAiOHostService.exe [2012-03-16 389120]
S2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [x]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
S3 clwvd;HP Webcam Splitter;c:\windows\system32\DRIVERS\clwvd.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-05-19 17:36 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2012-06-24 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-30 23:12]
.
2012-06-22 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-959162889-2114385041-1396956070-1000Core.job
- c:\users\Owner\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-03-07 22:49]
.
2012-06-24 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-959162889-2114385041-1396956070-1000UA.job
- c:\users\Owner\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-03-07 22:49]
.
2012-06-23 c:\windows\Tasks\HPCeeScheduleForOwner.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 04:15]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2010-06-26 324096]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2010-01-20 611896]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-06-18 8192]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-04-03 525312]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"EKIJ5000StatusMonitor"="c:\windows\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe" [2011-06-16 2922496]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~3\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~3\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.254.254
FF - ProfilePath - c:\users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\2cp4fjmy.default\
.
.
------- File Associations -------
.
inifile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1
JSEFile="%SystemRoot%\System32\WScript.exe" "%1" %*
txtfile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_2_202_235_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_2_202_235.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-06-23 20:13:30
ComboFix-quarantined-files.txt 2012-06-24 01:13
ComboFix2.txt 2012-06-23 03:13
ComboFix3.txt 2012-06-19 20:37
.
Pre-Run: 416,693,813,248 bytes free
Post-Run: 416,172,806,144 bytes free
.
- - End Of File - - A72983F6C6766A3D7702CFCFA6ECCE9E

Broni · Jun 23, 2012

Please check if IE is redirected as well.

Tony Lillie · Jun 23, 2012

Here are the results from Bootkit:

[wrong log]

Broni · Jun 23, 2012

You posted some part of Combofix instead of Bootkit Remover log.

Also, please read my previous reply.

Tony Lillie · Jun 23, 2012

Here is the log from aswMBR:

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-06-23 21:14:52
-----------------------------
21:14:52.441 OS Version: Windows x64 6.1.7601 Service Pack 1
21:14:52.441 Number of processors: 2 586 0x603
21:14:52.441 ComputerName: OWNER-HP UserName: Owner
21:14:53.689 Initialize success
21:16:23.792 AVAST engine defs: 12062301
21:16:47.339 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
21:16:47.339 Disk 0 Vendor: WDC_WD5000BEVT-60A0RT0 02.01A02 Size: 476940MB BusType: 11
21:16:47.355 Disk 0 MBR read successfully
21:16:47.370 Disk 0 MBR scan
21:16:47.386 Disk 0 unknown MBR code
21:16:47.402 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
21:16:47.417 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 458602 MB offset 409600
21:16:47.464 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 18034 MB offset 939626496
21:16:47.495 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 103 MB offset 976560128
21:16:47.542 Disk 0 scanning C:\Windows\system32\drivers
21:17:00.100 Service scanning
21:17:49.186 Modules scanning
21:17:49.202 Disk 0 trace - called modules:
21:17:49.233 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
21:17:49.233 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80042ef5f0]
21:17:49.249 3 CLASSPNP.SYS[fffff8800160143f] -> nt!IofCallDriver -> [0xfffffa80042ef040]
21:17:49.264 5 hpdskflt.sys[fffff8800197a189] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80042d3060]
21:17:51.027 AVAST engine scan C:\Windows
21:17:54.756 AVAST engine scan C:\Windows\system32
21:21:22.539 AVAST engine scan C:\Windows\system32\drivers
21:21:37.016 AVAST engine scan C:\Users\Owner
21:27:56.387 AVAST engine scan C:\ProgramData
21:31:08.062 Scan finished successfully
21:47:07.292 Disk 0 MBR has been saved successfully to "C:\Users\Owner\Desktop\MBR.dat"
21:47:07.292 The log file has been saved successfully to "C:\Users\Owner\Desktop\aswMBR.txt"

Solved Firefox redirecting from Google search

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 16,313 +36

Posts: 56,041 +516

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 30 +0

Posts: 56,041 +516

Posts: 30 +0

Posts: 56,041 +516

Posts: 30 +0

Similar threads