Just nu i M3-nätverket
Gå till innehåll
niklasns

Security center fungerar inte

Rekommendera Poster

hej

windows security center har slutat fungera. jag tror att det var efter att ha kört combofix. det kommer upp ett säkerhetsmeddelande som säger att security center är avstängt, och när man trycker för att aktivera det igen så står det att det inte går att starta tjänsten.

 

vad ska jag göra?

 

 

Dela detta inlägg


Länk till inlägg
Dela på andra webbplatser

 

Gå in i Tjänstehanteraren och aktivera tjänsten igen.

 

Nu har inte jag Vista, men jag tror att du hittar Tjänster/Services om du letar i Kontrollpanelen.

 

Annars är det säkert inget du behöver ha aktiverat om du kan hantera säkerhetsfunktionerna utan påminnelser från Säkerhetscentret. Bara störande, tycker jag. I alla fall i XP.

 

Du kan titta in här:

http://members.rushmore.com/~jsky/id31.html

...du kan komma dit via "Kör"/"Run". Skriv services.msc och klicka på OK.

 

---

C:\Eforum\Stefan Eklinder>|

 

"Om allt verkar gå bra, måste du ha missat något."

 

- Steven Wright

[inlägget ändrat 2007-12-06 17:59:17 av Stefan Eklinder]

Dela detta inlägg


Länk till inlägg
Dela på andra webbplatser

har redan testat det och det går inte. får felmedelande 1083

 

vill gärna att det funkar. det är mer irriterande när det inte gör det då jag får felmedelande om att det inte funkar hela tiden

[inlägget ändrat 2007-12-06 23:19:17 av lyxell]

Dela detta inlägg


Länk till inlägg
Dela på andra webbplatser

hjälpte inte

 

inloggningen var rätt inställd och jag har redan testat fixen och den förstörde mitt register så vill inte försöka igen.

 

Dela detta inlägg


Länk till inlägg
Dela på andra webbplatser

[log]ComboFix 07-11-05.2 - Bertil 2007-11-05 11:59:26.2 - NTFSx86

Microsoft® Windows Vista™ Business 6.0.6000.0.1252.1.1053.18.1095 [GMT 1:00]

Running from: C:\Users\Bertil\Desktop\ComboFix.exe

.

 

((((((((((((((((((((((((( Files Created from 2007-10-05 to 2007-11-05 )))))))))))))))))))))))))))))))

.

 

2007-11-04 14:19 <KAT> d-------- C:\Users\Bertil\AppData\Roaming\Nero

2007-11-04 13:55 <KAT> d-------- C:\Users\All Users\Nero

2007-11-04 13:55 <KAT> d-------- C:\ProgramData\Nero

2007-11-04 13:55 <KAT> d-------- C:\Program Files\Nero

2007-11-04 13:55 <KAT> d-------- C:\Program Files\Common Files\Nero

2007-11-03 12:48 1,633,702 --a------ C:\Users\Bertil\ProcessExplorer.zip

2007-11-02 10:41 <KAT> d-------- C:\Program Files\Common Files\Ahead

2007-10-28 11:24 <KAT> d-------- C:\Program Files\Easy GIF Animator

2007-10-28 11:18 <KAT> d-------- C:\Program Files\Blaze Gif Creator

2007-10-28 10:55 212,992 --a------ C:\Windows\ALCHUNIN.EXE

2007-10-27 23:12 <KAT> d-------- C:\Users\Bertil\blogg

2007-10-27 22:16 <KAT> d-------- C:\Windows\Profiles

2007-10-27 22:16 <KAT> d-------- C:\Users\Bertil\AppData\Roaming\URSoft

2007-10-27 22:16 <KAT> d-------- C:\Program Files\Your Uninstaller 2006

2007-10-27 15:35 5,949 --a------ C:\Users\Bertil\vecconfigs1.10.zip

2007-10-26 10:42 <KAT> d-------- C:\Program Files\iTunes

2007-10-26 10:42 <KAT> d-------- C:\Program Files\iPod

2007-10-26 10:41 <KAT> d-------- C:\Program Files\QuickTime

2007-10-26 10:22 <KAT> d-------- C:\Program Files\Apple Software Update

2007-10-26 10:21 <KAT> d-------- C:\Users\All Users\Apple

2007-10-26 10:21 <KAT> d-------- C:\ProgramData\Apple

2007-10-26 10:21 <KAT> d-------- C:\Program Files\Common Files\Apple

2007-10-26 08:38 1,128,225 --a------ C:\Users\Bertil\noisefun.zip

2007-10-25 09:59 <KAT> d-------- C:\Program Files\WideCap

2007-10-25 08:23 <KAT> d-------- C:\Users\Bertil\Ny mapp (1)

2007-10-24 09:00 222,216,891 --a------ C:\Users\Bertil\OOo_2.3.0_071014_Win32Intel_instal l.exe

2007-10-22 07:23 <KAT> d-------- C:\Windows\pss

2007-10-21 18:06 <KAT> d-------- C:\Program Files\MiniCLIP

2007-10-19 11:39 <KAT> d-------- C:\Program Files\Do It Again

2007-10-12 21:21 3,365 --a------ C:\Windows\System32\SpoonUninstall-dBpoweramp Windows Media Audio 10 Codec.dat

2007-10-12 21:12 <KAT> d-------- C:\Program Files\NewMail

2007-10-11 23:12 <KAT> d-------- C:\Program Files\AV Vcs 5.5 DIAMOND

2007-10-11 22:30 <KAT> d-------- C:\Users\Bertil\AppData\Roaming\MechCAD

2007-10-11 22:30 <KAT> d-------- C:\Program Files\AceMoney

2007-10-10 10:40 <KAT> d-------- C:\Program Files\ElastoManiaRegistered

2007-10-10 09:32 8,147,968 --a------ C:\Windows\System32\wmploc.DLL

2007-10-10 09:32 356,864 --a------ C:\Windows\System32\MediaMetadataHandler.dll

2007-10-10 09:32 7,680 --a------ C:\Windows\System32\spwmp.dll

2007-10-10 09:32 4,096 --a------ C:\Windows\System32\dxmasf.dll

2007-10-10 09:30 737,792 --a------ C:\Windows\System32\inetcomm.dll

2007-10-10 09:30 84,480 --a------ C:\Windows\System32\INETRES.dll

2007-10-10 09:29 788,992 --a------ C:\Windows\System32\rpcrt4.dll

2007-10-09 15:46 <KAT> d-------- C:\Program Files\TPTEST5

2007-10-09 10:42 <KAT> d-------- C:\Program Files\ElastoMania111

2007-10-06 14:14 <KAT> d-------- C:\Program Files\Duplicate Music Files Finder

2007-10-05 15:48 <KAT> d-------- C:\GMouse20

2007-10-05 15:46 283,648 --a------ C:\Windows\uninst.exe

2007-10-05 11:07 82,061 --a------ C:\Windows\System32\drivers\klick.dat

2007-10-05 11:07 81,549 --a------ C:\Windows\System32\drivers\klin.dat

2007-10-05 11:06 <KAT> d-------- C:\Program Files\Kaspersky Lab

2007-10-05 11:06 10,146,336 --ahs---- C:\Windows\System32\drivers\fidbox.dat

 

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) ))

.

2007-11-05 07:32 --------- d-----w C:\ProgramData\Kaspersky Lab

2007-11-04 22:07 136,856 --sha-w C:\Windows\system32\drivers\fidbox.idx

2007-11-04 18:16 --------- d-----w C:\Users\Bertil\AppData\Roaming\uTorrent

2007-11-04 16:15 --------- d-----w C:\Users\Bertil\AppData\Roaming\OpenOffice.org2

2007-11-04 12:42 --------- d---a-w C:\ProgramData\TEMP

2007-11-03 15:48 --------- d-----w C:\Program Files\Warcraft III

2007-10-28 16:27 --------- d-----w C:\Program Files\Sony

2007-10-26 09:42 --------- d-----w C:\Users\Bertil\AppData\Roaming\Apple Computer

2007-10-26 09:42 --------- d-----w C:\ProgramData\Apple Computer

2007-10-26 07:23 --------- d-----w C:\Users\Bertil\AppData\Roaming\gtk-2.0

2007-10-25 14:56 --------- d-----w C:\Program Files\Java

2007-10-25 06:32 --------- d-----w C:\Program Files\Opera

2007-10-24 10:13 --------- d-----w C:\Program Files\FreeCap

2007-10-22 14:26 --------- d-----w C:\Program Files\SUPERAntiSpyware

2007-10-21 20:47 --------- d-----w C:\Users\Bertil\AppData\Roaming\Skype

2007-10-12 20:21 10,884,472 ----a-w C:\Windows\System32\SpoonUninstall.exe

2007-10-10 10:12 --------- d-----w C:\Program Files\Windows Mail

2007-10-10 08:31 56,320 ----a-w C:\Windows\System32\iesetup.dll

2007-10-10 08:31 52,736 ----a-w C:\Windows\AppPatch\iebrshim.dll

2007-10-10 08:31 26,624 ----a-w C:\Windows\System32\ieUnatt.exe

2007-10-06 08:04 --------- d-----w C:\Program Files\Google

2007-10-05 09:58 --------- d-----w C:\Program Files\NCH Swift Sound

2007-10-04 06:40 --------- d--h--w C:\Program Files\InstallShield Installation Information

2007-10-04 06:40 --------- d-----w C:\Program Files\EverNote

2007-10-02 07:58 720,896 ----a-w C:\Windows\iun6002.exe

2007-10-02 07:58 --------- d-----w C:\Program Files\Bridge Construction Set

2007-10-02 07:55 --------- d-----w C:\Program Files\Sierra Entertainment

2007-10-01 14:22 --------- d-----w C:\Users\Bertil\AppData\Roaming\SUPERAntiSpyware.c om

2007-10-01 14:22 --------- d-----w C:\ProgramData\SUPERAntiSpyware.com

2007-10-01 14:16 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard

2007-09-30 19:59 --------- d-----w C:\Program Files\Windows Live Safety Center

2007-09-30 18:44 --------- d-----w C:\ProgramData\Spybot - Search & Destroy

2007-09-30 17:49 --------- d-----w C:\ProgramData\Lavasoft

2007-09-30 17:49 --------- d-----w C:\Program Files\Lavasoft

2007-09-29 19:26 --------- d-----w C:\Users\Bertil\AppData\Roaming\Thunderbird

2007-09-29 19:26 --------- d-----w C:\Users\Bertil\AppData\Roaming\PeerNetworking

2007-09-29 19:26 --------- d-----w C:\Users\Bertil\AppData\Roaming\Nvu

2007-09-29 19:26 --------- d-----w C:\Users\Bertil\AppData\Roaming\mIRC

2007-09-29 19:26 --------- d-----w C:\Users\Bertil\AppData\Roaming\Joost

2007-09-29 19:26 --------- d-----w C:\Users\Bertil\AppData\Roaming\Bioshock

2007-09-29 19:26 --------- d-----w C:\ProgramData\Lenovo

2007-09-29 19:26 --------- d-----w C:\Program Files\Picasa2

2007-09-29 19:26 --------- d-----w C:\Program Files\Net Tools

2007-09-29 19:26 --------- d-----w C:\Program Files\Common Files\Skype

2007-09-29 14:54 --------- d-----w C:\Program Files\Trend Micro

2007-09-29 12:36 0 ----a-w C:\ntuser.dat

2007-09-29 11:25 --------- d-----w C:\Program Files\OpenVPN

2007-09-29 09:19 --------- d-----w C:\Program Files\Common Files\Lenovo

2007-09-28 21:20 --------- d-----w C:\Users\Bertil\AppData\Roaming\Sony

2007-09-28 21:20 --------- d-----w C:\Users\Bertil\AppData\Roaming\Publish Providers

2007-09-28 21:16 --------- d-----w C:\Program Files\Sony Setup

2007-09-27 11:11 --------- d-----w C:\Program Files\GraphCalc

2007-09-27 07:57 --------- d-----w C:\Program Files\LieroX v0.56 Pack 1.9

2007-09-25 08:20 --------- d-----w C:\Users\Bertil\AppData\Roaming\NCH Swift Sound

2007-09-24 21:24 --------- d-----w C:\ProgramData\NCH Swift Sound

2007-09-24 21:01 --------- d-----w C:\Program Files\NCH Software

2007-09-24 19:23 --------- d-----w C:\Program Files\Linksys

2007-09-24 13:41 --------- d-----w C:\Program Files\WinPcap

2007-09-24 10:15 --------- d-----w C:\Program Files\Your Freedom

2007-09-22 21:10 --------- d-----w C:\Users\Bertil\AppData\Roaming\dBpoweramp

2007-09-22 20:52 --------- d-----w C:\Program Files\Illustrate

2007-09-22 15:05 --------- d-----w C:\ProgramData\Last.fm

2007-09-22 15:05 --------- d-----w C:\Program Files\Last.fm

2007-09-22 14:41 --------- d-----w C:\Program Files\uTorrent

2007-09-21 18:59 --------- d-----w C:\Users\Bertil\AppData\Roaming\AccurateRip

2007-09-13 09:21 --------- d-----w C:\Program Files\DivX

2007-09-13 09:21 --------- d-----w C:\Program Files\Common Files\PX Storage Engine

2007-09-12 20:35 224,896 ----a-w C:\Windows\system32\drivers\e1e6032.sys

2007-09-09 19:39 --------- d--h--r C:\Users\Bertil\AppData\Roaming\SecuROM

2007-09-09 19:18 --------- d-----w C:\Program Files\2K Games

2007-09-09 17:03 --------- d-----w C:\Program Files\Audacity

2007-09-08 22:58 --------- d-----w C:\Program Files\Joost

2007-09-08 22:35 --------- d-----w C:\Program Files\Mozilla Thunderbird

2007-09-08 22:35 --------- d-----w C:\Program Files\Mozilla Sunbird

2007-09-08 21:27 --------- d-----w C:\Users\Bertil\AppData\Roaming\vlc

2007-09-08 21:23 --------- d-----w C:\Program Files\VideoLAN

2007-09-08 19:38 108,144 ----a-w C:\Windows\System32\CmdLineExt.dll

2007-09-08 17:42 --------- d-----w C:\Program Files\Microsoft Games

2007-08-29 11:55 174 --sha-w C:\Program Files\desktop.ini

2007-08-29 11:50 88,576 ----a-w C:\Windows\System32\avifil32.dll

2007-08-29 11:50 82,944 ----a-w C:\Windows\System32\mciavi32.dll

2007-08-29 11:50 8,138,240 ----a-w C:\Windows\System32\ssBranded.scr

2007-08-29 11:50 750,080 ----a-w C:\Windows\System32\qmgr.dll

2007-08-29 11:50 712,192 ----a-w C:\Windows\System32\WindowsCodecs.dll

2007-08-29 11:50 704,000 ----a-w C:\Windows\System32\PhotoScreensaver.scr

2007-08-29 11:50 69,632 ----a-w C:\Windows\System32\sendmail.dll

2007-08-29 11:50 65,024 ----a-w C:\Windows\System32\avicap32.dll

2007-08-29 11:50 61,440 ----a-w C:\Windows\System32\ntprint.exe

2007-08-29 11:50 31,232 ----a-w C:\Windows\System32\msvidc32.dll

2007-08-29 11:50 3,504,824 ----a-w C:\Windows\System32\ntkrnlpa.exe

2007-08-29 11:50 3,470,520 ----a-w C:\Windows\System32\ntoskrnl.exe

2007-08-29 11:50 269,824 ----a-w C:\Windows\System32\schannel.dll

2007-08-29 11:50 220,160 ----a-w C:\Windows\System32\ntprint.dll

2007-08-29 11:50 123,904 ----a-w C:\Windows\System32\msvfw32.dll

2007-08-29 11:50 120,320 ----a-w C:\Windows\System32\dhcpcsvc6.dll

2007-08-29 11:50 12,800 ----a-w C:\Windows\System32\msrle32.dll

2007-08-29 11:50 105,984 ----a-w C:\Windows\System32\CscMig.dll

2007-08-29 11:50 10,240 ----a-w C:\Windows\System32\dhcpcmonitor.dll

2007-08-29 11:50 1,984,512 ----a-w C:\Windows\System32\authui.dll

2007-08-27 13:20 139,264 ----a-w C:\Windows\War3Unin.exe

.

 

((((((((((((((((((((((((((((( snapshot@2007-10-04_17.44.24.36 )))))))))))))))))))))))))))))))))))))))))

.

- 2007-10-04 15:38:15 67,584 --s-a-w C:\Windows\bootstat.dat

+ 2007-11-05 07:29:11 67,584 --s-a-w C:\Windows\bootstat.dat

- 2007-09-28 07:06:08 135,168 ----a-w C:\Windows\catchme.exe

+ 2007-10-29 17:56:19 136,192 ----a-w C:\Windows\catchme.exe

- 2007-09-29 19:36:51 51,200 ----a-w C:\Windows\inf\infpub.dat

+ 2007-10-26 09:21:23 51,200 ----a-w C:\Windows\inf\infpub.dat

- 2007-09-29 19:36:51 86,016 ----a-w C:\Windows\inf\infstor.dat

+ 2007-10-26 09:21:23 86,016 ----a-w C:\Windows\inf\infstor.dat

- 2007-09-29 19:36:51 86,016 ----a-w C:\Windows\inf\infstrng.dat

+ 2007-10-26 09:21:23 86,016 ----a-w C:\Windows\inf\infstrng.dat

+ 2007-11-04 13:50:21 25,214 ----a-r C:\Windows\Installer\{0A2DEB31-F8E5-413B-8A86-0D7843C6C496}\ARPPRODUCTICON.exe

+ 2007-10-06 08:05:50 26,694 ----a-r C:\Windows\Installer\{1E04F83B-2AB9-4301-9EF7-E86307F79C72}\ARPPRODUCTICON.exe

+ 2007-10-06 08:05:50 26,694 ----a-r C:\Windows\Installer\{1E04F83B-2AB9-4301-9EF7-E86307F79C72}\googleearth.exe_407B9B5CDAC54F44A756 B57CAB4E6A8B.exe

+ 2007-10-06 08:05:50 26,694 ----a-r C:\Windows\Installer\{1E04F83B-2AB9-4301-9EF7-E86307F79C72}\googleearth.exe1_407B9B5CDAC54F44A75 6B57CAB4E6A8B.exe

+ 2007-10-06 08:05:50 65,536 ----a-r C:\Windows\Installer\{1E04F83B-2AB9-4301-9EF7-E86307F79C72}\NewShortcut1_407B9B5CDAC54F44A756B57 CAB4E6A8B.exe

+ 2007-10-06 08:05:50 65,536 ----a-r C:\Windows\Installer\{1E04F83B-2AB9-4301-9EF7-E86307F79C72}\NewShortcut2_407B9B5CDAC54F44A756B57 CAB4E6A8B.exe

+ 2007-10-06 08:05:50 26,694 ----a-r C:\Windows\Installer\{1E04F83B-2AB9-4301-9EF7-E86307F79C72}\UNINST_Uninstall_G_3DE5E7D47B88403CA 3FD2017A8240C5B.exe

+ 2007-10-26 09:42:55 102,400 ----a-r C:\Windows\Installer\{B045B608-4A47-4C77-9EAD-06C394503306}\iTunesIco.exe

+ 2007-10-26 09:22:12 27,136 ----a-r C:\Windows\Installer\{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}\AppleSoftwareUpdateIco.exe

+ 2007-11-04 12:58:35 25,214 ----a-r C:\Windows\Installer\{B944FA21-81AF-4A77-8328-CE4F4CC51053}\ARPPRODUCTICON.exe

+ 2007-10-10 08:32:06 32,768 ----a-r C:\Windows\Installer\{C523D256-313D-4866-B36A-F3DE528246EF}\icon.exe

- 2007-06-16 22:11:58 51,200 ----a-w C:\Windows\NirCmd.exe

+ 2007-06-16 23:11:58 51,200 ----a-w C:\Windows\NirCmd.exe

- 2007-10-04 06:55:36 262,144 ----a-w C:\Windows\ServiceProfiles\LocalService\AppData\Lo cal\Microsoft\Windows\usrclass.dat

+ 2007-11-04 13:10:25 262,144 ----a-w C:\Windows\ServiceProfiles\LocalService\AppData\Lo cal\Microsoft\Windows\usrclass.dat

- 2007-10-04 15:39:30 262,144 --sha-w C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT

+ 2007-11-05 07:31:00 262,144 --sha-w C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT

- 2007-10-04 06:55:36 262,144 ----a-w C:\Windows\ServiceProfiles\NetworkService\AppData\ Local\Microsoft\Windows\usrclass.dat

+ 2007-11-04 13:10:25 262,144 ----a-w C:\Windows\ServiceProfiles\NetworkService\AppData\ Local\Microsoft\Windows\usrclass.dat

- 2007-09-08 17:42:34 1,193,796 -c--a-w C:\Windows\ServiceProfiles\NetworkService\AppData\ Roaming\Microsoft\SoftwareLicensing\tokens.dat

+ 2007-10-10 10:15:38 1,193,796 -c--a-w C:\Windows\ServiceProfiles\NetworkService\AppData\ Roaming\Microsoft\SoftwareLicensing\tokens.dat

- 2007-10-04 15:39:30 262,144 --sha-w C:\Windows\ServiceProfiles\NetworkService\NTUSER.D AT

+ 2007-11-05 07:32:04 262,144 --sha-w C:\Windows\ServiceProfiles\NetworkService\NTUSER.D AT

+ 2007-11-05 07:32:04 262,144 ---ha-w C:\Windows\ServiceProfiles\NetworkService\ntuser.d at.LOG1

- 2007-08-24 21:29:49 124,928 ----a-w C:\Windows\System32\advpack.dll

+ 2007-10-10 08:31:06 124,928 ----a-w C:\Windows\System32\advpack.dll

- 2007-10-04 06:30:44 13,403 ----a-w C:\Windows\System32\config\systemprofile\AppData\L ocal\ATI\ACE\Manifest.Bin

+ 2007-11-05 07:30:34 13,403 ----a-w C:\Windows\System32\config\systemprofile\AppData\L ocal\ATI\ACE\Manifest.Bin

- 2007-10-04 14:43:09 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\L ocal\Microsoft\Windows\History\History.IE5\index.d at

+ 2007-11-05 07:29:24 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\L ocal\Microsoft\Windows\History\History.IE5\index.d at

- 2007-10-04 14:43:09 49,152 --sha-w C:\Windows\System32\config\systemprofile\AppData\L ocal\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

+ 2007-11-05 07:29:24 49,152 --sha-w C:\Windows\System32\config\systemprofile\AppData\L ocal\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

- 2007-10-04 14:43:09 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\R oaming\Microsoft\Windows\Cookies\index.dat

+ 2007-11-05 07:29:24 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\R oaming\Microsoft\Windows\Cookies\index.dat

- 2007-10-04 15:28:07 262,144 ----a-w C:\Windows\System32\config\systemprofile\ntuser.da t

+ 2007-11-05 10:59:09 262,144 ----a-w C:\Windows\System32\config\systemprofile\ntuser.da t

+ 2007-11-05 10:59:09 262,144 ---ha-w C:\Windows\System32\config\systemprofile\ntuser.da t.LOG1

+ 2006-09-19 12:44:04 15,664 ----a-w C:\Windows\System32\drivers\GEARAspiWDM.sys

- 2006-11-01 07:15:22 20,016 ------w C:\Windows\System32\drivers\ibmpmdrv.sys

+ 2007-06-01 00:01:30 21,424 ----a-w C:\Windows\System32\drivers\ibmpmdrv.sys

- 2007-09-29 19:35:44 127,768 ----a-w C:\Windows\System32\drivers\klif.sys

+ 2007-10-05 10:06:40 127,768 ----a-w C:\Windows\System32\drivers\klif.sys

- 2006-11-17 05:22:02 181,176 ------w C:\Windows\System32\drivers\SynTP.sys

+ 2007-08-13 18:53:00 181,168 ----a-w C:\Windows\System32\drivers\SynTP.sys

+ 2007-01-17 21:59:18 179,048 ----a-w C:\Windows\System32\DriverStore\FileRepository\e1e 6032.inf_d12b80df\e1000msg.dll

+ 2007-09-12 20:35:24 224,896 ----a-w C:\Windows\System32\DriverStore\FileRepository\e1e 6032.inf_d12b80df\e1e6032.sys

+ 2007-01-17 22:02:22 28,536 ----a-w C:\Windows\System32\DriverStore\FileRepository\e1e 6032.inf_d12b80df\NicCo.dll

+ 2007-01-29 20:36:06 62,840 ----a-w C:\Windows\System32\DriverStore\FileRepository\e1e 6032.inf_d12b80df\NicInstE.dll

+ 2007-01-17 22:07:40 154,496 ----a-w C:\Windows\System32\DriverStore\FileRepository\e1e 6032.inf_d12b80df\Prounstl.exe

+ 2007-06-01 00:01:30 21,424 ----a-w C:\Windows\System32\DriverStore\FileRepository\ibm pmdrv.inf_750ed1c2\x86\ibmpmdrv.sys

+ 2007-06-01 00:02:06 36,400 ----a-w C:\Windows\System32\DriverStore\FileRepository\ibm pmdrv.inf_750ed1c2\x86\ibmpmsvc.exe

+ 2007-06-01 00:02:12 35,376 ----a-w C:\Windows\System32\DriverStore\FileRepository\ibm pmdrv.inf_750ed1c2\x86\tpinspm.dll

+ 2007-08-13 18:53:00 116,008 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\InstNT.exe

+ 2007-08-13 18:03:00 163,840 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\SynCOM.dll

+ 2007-08-13 18:03:00 196,608 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\SynCtrl.dll

+ 2007-08-13 18:51:00 626,688 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\SynISDLL.dll

+ 2007-08-13 17:56:00 225,280 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\SynMood.exe

+ 2007-08-13 18:53:00 181,168 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\SynTP.sys

+ 2007-08-13 18:10:00 143,360 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\SynTPAPI.dll

+ 2007-08-13 18:52:00 110,592 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\SynTPCo4.dll

+ 2007-08-13 18:11:00 102,400 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\SynTPCOM.dll

+ 2007-08-13 18:14:00 884,736 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\SynTPCpl.dll

+ 2007-08-13 18:53:00 820,520 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\SynTPEnh.exe

+ 2007-08-13 18:33:00 110,592 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\SynTPLpr.exe

+ 2007-08-13 18:33:00 4,894,720 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\SynTPRes.dll

+ 2007-08-13 17:57:00 237,568 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\SynZMetr.exe

+ 2007-08-09 15:58:00 6,502 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\TP4scrol.dat

+ 2007-08-09 15:58:00 6,502 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\TP4table.dat

+ 2007-08-13 18:34:00 319,488 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\Tutorial.exe

+ 2006-03-09 15:58:00 1,060,424 ----a-w C:\Windows\System32\DriverStore\FileRepository\syn pd.inf_2f3670be\WdfCoInstaller01000.dll

+ 2007-09-06 11:28:16 30,336 ----a-w C:\Windows\System32\DriverStore\FileRepository\usb aapl.inf_7f57b84d\usbaapl.sys

- 2006-11-02 09:46:04 347,136 ------w C:\Windows\System32\dxtmsft.dll

+ 2007-10-10 08:31:02 347,136 ----a-w C:\Windows\System32\dxtmsft.dll

- 2006-11-02 09:46:04 214,528 ------w C:\Windows\System32\dxtrans.dll

+ 2007-10-10 08:31:02 214,528 ----a-w C:\Windows\System32\dxtrans.dll

+ 2006-10-03 17:47:52 109,360 ----a-w C:\Windows\System32\GEARAspi.dll

- 2006-11-01 07:15:38 36,392 ------w C:\Windows\System32\ibmpmsvc.exe

+ 2007-06-01 00:02:06 36,400 ----a-w C:\Windows\System32\ibmpmsvc.exe

- 2006-11-02 09:46:05 61,952 ------w C:\Windows\System32\icardie.dll

+ 2007-10-10 08:31:03 63,488 ----a-w C:\Windows\System32\icardie.dll

- 2007-08-24 21:29:49 63,488 ----a-w C:\Windows\System32\ie4uinit.exe

+ 2007-10-10 08:31:06 63,488 ----a-w C:\Windows\System32\ie4uinit.exe

- 2007-08-24 21:29:38 383,488 ----a-w C:\Windows\System32\ieapfltr.dll

+ 2007-10-10 08:31:01 383,488 ----a-w C:\Windows\System32\ieapfltr.dll

- 2007-08-24 21:29:51 6,058,496 ----a-w C:\Windows\System32\ieframe.dll

+ 2007-10-10 08:31:08 6,058,496 ----a-w C:\Windows\System32\ieframe.dll

- 2007-08-24 21:29:49 44,544 ----a-w C:\Windows\System32\iernonce.dll

+ 2007-10-10 08:31:05 44,544 ----a-w C:\Windows\System32\iernonce.dll

- 2007-08-24 21:29:51 180,736 ----a-w C:\Windows\System32\ieui.dll

+ 2007-10-10 08:31:08 180,736 ----a-w C:\Windows\System32\ieui.dll

+ 2006-03-17 11:45:52 1,757,184 ----a-w C:\Windows\System32\imagX7.dll

+ 2006-03-17 11:45:54 497,296 ----a-w C:\Windows\System32\imagXpr7.dll

+ 2006-03-17 11:45:54 258,048 ----a-w C:\Windows\System32\imagXR7.dll

+ 2006-03-17 11:45:54 802,816 ----a-w C:\Windows\System32\imagXRA7.dll

- 2007-07-11 23:22:00 135,168 ----a-w C:\Windows\System32\java.exe

+ 2007-09-24 20:30:28 135,168 ----a-w C:\Windows\System32\java.exe

- 2007-07-11 23:22:04 135,168 ----a-w C:\Windows\System32\javaw.exe

+ 2007-09-24 20:30:30 135,168 ----a-w C:\Windows\System32\javaw.exe

- 2007-07-12 00:22:38 139,264 ----a-w C:\Windows\System32\javaws.exe

+ 2007-09-24 21:31:42 139,264 ----a-w C:\Windows\System32\javaws.exe

- 2007-08-24 21:29:49 27,648 ----a-w C:\Windows\System32\jsproxy.dll

+ 2007-10-10 08:31:06 27,648 ----a-w C:\Windows\System32\jsproxy.dll

+ 2007-08-07 11:37:56 53,248 ----a-w C:\Windows\System32\Macromed\Common\SwSupport.dll

+ 2007-08-07 15:20:44 182,248 ----a-w C:\Windows\System32\Macromed\Director\SwDir.dll

+ 2007-06-11 12:04:38 190,696 ----a-r C:\Windows\System32\Macromed\Flash\FlashUtil9d.exe

- 2007-06-11 11:34:00 2,115,816 ----a-w C:\Windows\System32\Macromed\Flash\NPSWF32.dll

+ 2007-06-11 20:34:34 2,115,816 ----a-w C:\Windows\System32\Macromed\Flash\NPSWF32.dll

- 2007-06-11 11:34:00 190,696 ----a-w C:\Windows\System32\Macromed\Flash\NPSWF32_FlashUt il.exe

+ 2007-06-11 20:34:40 190,696 ----a-w C:\Windows\System32\Macromed\Flash\NPSWF32_FlashUt il.exe

+ 2007-10-06 13:01:48 45,218 ----a-w C:\Windows\System32\Macromed\Flash\uninstall_plugi n.exe

+ 2007-08-07 11:35:56 585,728 ----a-w C:\Windows\System32\Macromed\Shockwave 10\Control.dll

+ 2007-08-07 11:19:40 1,490,944 ----a-w C:\Windows\System32\Macromed\Shockwave 10\dirapi.dll

+ 2007-08-07 11:36:32 24,576 ----a-w C:\Windows\System32\Macromed\Shockwave 10\DynaPlayer.dll

+ 2007-08-07 14:52:32 1,113,600 ----a-w C:\Windows\System32\Macromed\Shockwave 10\gi.dll

+ 2007-08-07 11:08:48 52,288 ----a-w C:\Windows\System32\Macromed\Shockwave 10\gtapi.dll

+ 2007-08-07 11:17:24 606,208 ----a-w C:\Windows\System32\Macromed\Shockwave 10\iml32.dll

+ 2007-08-07 11:35:22 339,968 ----a-w C:\Windows\System32\Macromed\Shockwave 10\Plugin.dll

+ 2007-08-07 11:35:32 483,328 ----a-w C:\Windows\System32\Macromed\Shockwave 10\PluginPing.dll

+ 2007-08-07 11:28:38 180,224 ----a-w C:\Windows\System32\Macromed\Shockwave 10\Proj.dll

+ 2007-08-07 15:20:28 391,144 ----a-w C:\Windows\System32\Macromed\Shockwave 10\SwHelper_1020023.exe

+ 2007-08-07 11:37:56 77,824 ----a-w C:\Windows\System32\Macromed\Shockwave 10\SwInit.exe

+ 2007-08-07 11:35:18 86,016 ----a-w C:\Windows\System32\Macromed\Shockwave 10\SwMenu.dll

+ 2007-08-07 11:37:58 98,304 ----a-w C:\Windows\System32\Macromed\Shockwave 10\SwOnce.dll

+ 2007-08-07 11:08:46 50,808 ----a-w C:\Windows\System32\Macromed\Shockwave 10\SYMCCHECKER.DLL

+ 1999-06-25 08:55:30 149,504 ----a-w C:\Windows\System32\Macromed\Shockwave 10\UNWISE.EXE

- 2007-08-24 21:29:49 64,512 ----a-w C:\Windows\System32\migration\WininetPlugin.dll

+ 2007-10-10 08:31:06 64,512 ----a-w C:\Windows\System32\migration\WininetPlugin.dll

- 2007-09-05 17:50:44 17,474,680 ----a-w C:\Windows\System32\mrt.exe

+ 2007-09-28 05:19:39 18,089,592 ----a-w C:\Windows\System32\mrt.exe

- 2007-08-24 21:29:54 3,583,488 ----a-w C:\Windows\System32\mshtml.dll

+ 2007-10-10 08:31:11 3,584,512 ----a-w C:\Windows\System32\mshtml.dll

- 2007-08-24 21:29:53 477,696 ----a-w C:\Windows\System32\mshtmled.dll

+ 2007-10-10 08:31:10 477,696 ----a-w C:\Windows\System32\mshtmled.dll

- 2007-08-24 21:29:38 671,232 ----a-w C:\Windows\System32\mstime.dll

+ 2007-10-10 08:31:03 671,232 ----a-w C:\Windows\System32\mstime.dll

- 2007-05-08 13:03:04 1,275,392 ----a-w C:\Windows\System32\msxml4.dll

+ 2007-08-24 16:08:24 1,275,392 ----a-w C:\Windows\System32\msxml4.dll

- 2007-10-02 08:01:25 103,924 ----a-w C:\Windows\System32\perfc009.dat

+ 2007-11-04 20:35:30 103,924 ----a-w C:\Windows\System32\perfc009.dat

- 2007-10-02 08:01:25 81,514 ----a-w C:\Windows\System32\perfc01D.dat

+ 2007-11-04 20:35:30 81,514 ----a-w C:\Windows\System32\perfc01D.dat

- 2007-10-02 08:01:25 610,142 ----a-w C:\Windows\System32\perfh009.dat

+ 2007-11-04 20:35:30 610,142 ----a-w C:\Windows\System32\perfh009.dat

- 2007-10-02 08:01:25 472,414 ----a-w C:\Windows\System32\perfh01D.dat

+ 2007-11-04 20:35:30 472,414 ----a-w C:\Windows\System32\perfh01D.dat

- 2007-09-22 23:35:29 6,291,456 ----a-w C:\Windows\System32\SMI\Store\Machine\SCHEMA.DAT

+ 2007-11-03 17:37:05 6,291,456 ----a-w C:\Windows\System32\SMI\Store\Machine\SCHEMA.DAT

- 2007-07-22 16:39:27 844,800 ----a-w C:\Windows\System32\swreg.exe

+ 2007-07-22 17:39:27 279,552 ----a-w C:\Windows\System32\swreg.exe

- 2006-11-17 04:28:20 163,840 ------w C:\Windows\System32\SynCOM.dll

+ 2007-08-13 18:03:00 163,840 ----a-w C:\Windows\System32\SynCOM.dll

- 2006-11-17 04:28:50 196,608 ------w C:\Windows\System32\SynCtrl.dll

+ 2007-08-13 18:03:00 196,608 ----a-w C:\Windows\System32\SynCtrl.dll

- 2006-11-17 04:37:16 143,360 ------w C:\Windows\System32\SynTPAPI.dll

+ 2007-08-13 18:10:00 143,360 ----a-w C:\Windows\System32\SynTPAPI.dll

- 2006-11-17 05:19:56 110,592 ------w C:\Windows\System32\SynTPCo4.dll

+ 2007-08-13 18:52:00 110,592 ----a-w C:\Windows\System32\SynTPCo4.dll

- 2006-11-01 07:15:44 35,368 ------w C:\Windows\System32\tpinspm.dll

+ 2007-06-01 00:02:12 35,376 ----a-w C:\Windows\System32\tpinspm.dll

+ 2006-03-17 14:49:46 368,640 ----a-w C:\Windows\System32\TwnLib4.dll

- 2007-08-24 21:29:50 1,152,000 ----a-w C:\Windows\System32\urlmon.dll

+ 2007-10-10 08:31:07 1,152,000 ----a-w C:\Windows\System32\urlmon.dll

- 2007-10-04 14:56:16 11,220 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3382575162-3096710546-1214917861-1000_UserData.bin

+ 2007-11-05 07:31:56 14,028 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3382575162-3096710546-1214917861-1000_UserData.bin

- 2007-10-04 14:56:15 71,540 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics _SystemData.bin

+ 2007-11-05 07:31:55 76,222 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics _SystemData.bin

- 2007-10-04 14:56:13 44,112 ----a-w C:\Windows\System32\WDI\ShutdownPerformanceDiagnos tics_SystemData.bin

+ 2007-11-05 07:31:47 48,182 ----a-w C:\Windows\System32\WDI\ShutdownPerformanceDiagnos tics_SystemData.bin

- 2007-08-24 21:29:49 823,808 ----a-w C:\Windows\System32\wininet.dll

+ 2007-10-10 08:31:06 824,832 ----a-w C:\Windows\System32\wininet.dll

- 2007-08-24 21:34:32 10,617,344 ----a-w C:\Windows\System32\wmp.dll

+ 2007-10-10 08:32:49 10,617,344 ----a-w C:\Windows\System32\wmp.dll

+ 2007-10-10 08:31:06 124,928 ----a-w C:\Windows\winsxs\x86_microsoft-windows-advpack_31bf3856ad364e35_6.0.6000.16546_none_a9bfe 6f9f5c507a6\advpack.dll

+ 2007-10-10 08:31:06 124,928 ----a-w C:\Windows\winsxs\x86_microsoft-windows-advpack_31bf3856ad364e35_6.0.6000.20663_none_aa30e 30f0ef5934d\advpack.dll

+ 2007-10-10 08:31:07 1,152,000 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.1 6546_none_b2d7995bd9be6509\urlmon.dll

+ 2007-10-10 08:31:07 1,161,728 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.2 0663_none_b3489570f2eef0b0\urlmon.dll

+ 2007-10-10 08:31:03 671,232 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..mlrenderingadvanced_31bf3856ad364e35_6.0.6000.1 6546_none_deba28247f672478\mstime.dll

+ 2007-10-10 08:31:03 671,232 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..mlrenderingadvanced_31bf3856ad364e35_6.0.6000.2 0663_none_df2b24399897b01f\mstime.dll

+ 2007-10-10 08:31:06 27,648 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.1 6546_none_ffdd74fda4c78b9c\jsproxy.dll

+ 2007-10-10 08:31:06 824,832 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.1 6546_none_ffdd74fda4c78b9c\wininet.dll

+ 2007-10-10 08:31:06 64,512 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.1 6546_none_ffdd74fda4c78b9c\WininetPlugin.dll

+ 2007-10-10 08:31:06 27,648 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.2 0663_none_004e7112bdf81743\jsproxy.dll

+ 2007-10-10 08:31:07 825,344 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.2 0663_none_004e7112bdf81743\wininet.dll

+ 2007-10-10 08:31:07 64,512 ----a-w C:\Windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.2 0663_none_004e7112bdf81743\WininetPlugin.dll

+ 2007-10-10 08:31:01 2,455,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-antiphishfilter_31bf3856ad364e35_6.0.6000.16546_no ne_f98697d76eb305ef\ieapfltr.dat

+ 2007-10-10 08:31:01 383,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-antiphishfilter_31bf3856ad364e35_6.0.6000.16546_no ne_f98697d76eb305ef\ieapfltr.dll

+ 2007-10-10 08:31:01 2,455,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-antiphishfilter_31bf3856ad364e35_6.0.6000.20663_no ne_f9f793ec87e39196\ieapfltr.dat

+ 2007-10-10 08:31:01 383,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-antiphishfilter_31bf3856ad364e35_6.0.6000.20663_no ne_f9f793ec87e39196\ieapfltr.dll

+ 2007-10-10 08:31:02 347,136 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16546_ none_95bad08f84988c1d\dxtmsft.dll

+ 2007-10-10 08:31:02 214,528 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16546_ none_95bad08f84988c1d\dxtrans.dll

+ 2007-10-10 08:31:02 347,136 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20663_ none_962bcca49dc917c4\dxtmsft.dll

+ 2007-10-10 08:31:02 214,528 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.20663_ none_962bcca49dc917c4\dxtrans.dll

+ 2007-10-10 08:31:10 477,696 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-htmlediting_31bf3856ad364e35_6.0.6000.16546_none_4 61d6ae746593eaa\mshtmled.dll

+ 2007-10-10 08:31:10 478,208 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-htmlediting_31bf3856ad364e35_6.0.6000.20663_none_4 68e66fc5f89ca51\mshtmled.dll

+ 2007-10-10 08:31:11 3,584,512 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16546_none _1137941c251df4d2\mshtml.dll

+ 2007-10-10 08:31:12 3,592,192 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.20663_none _11a890313e4e8079\mshtml.dll

+ 2007-10-10 08:31:03 63,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-infocard_31bf3856ad364e35_6.0.6000.16546_none_5890 00e6673280db\icardie.dll

+ 2007-10-10 08:31:03 63,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-infocard_31bf3856ad364e35_6.0.6000.20663_none_5900 fcfb80630c82\icardie.dll

+ 2007-10-10 08:31:05 26,624 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16546_n one_2d5681891cf2fa7f\ieUnatt.exe

+ 2007-10-10 08:31:05 625,152 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16546_n one_2d5681891cf2fa7f\iexplore.exe

+ 2007-10-10 08:31:05 26,624 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.20663_n one_2dc77d9e36238626\ieUnatt.exe

+ 2007-10-10 08:31:05 625,152 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.20663_n one_2dc77d9e36238626\iexplore.exe

+ 2007-10-10 08:31:06 63,488 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.16546_none_c3c53 6a4616dc324\ie4uinit.exe

+ 2007-10-10 08:31:05 44,544 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.16546_none_c3c53 6a4616dc324\iernonce.dll

+ 2007-10-10 08:31:05 56,320 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.16546_none_c3c53 6a4616dc324\iesetup.dll

+ 2007-10-10 08:31:06 70,656 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.20663_none_c4363 2b97a9e4ecb\ie4uinit.exe

+ 2007-10-10 08:31:06 44,544 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.20663_none_c4363 2b97a9e4ecb\iernonce.dll

+ 2007-10-10 08:31:06 56,320 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.20663_none_c4363 2b97a9e4ecb\iesetup.dll

+ 2007-10-10 08:31:01 52,736 ----a-w C:\Windows\winsxs\x86_microsoft-windows-iebrshim_31bf3856ad364e35_6.0.6000.16546_none_29ea 4d14681d9881\iebrshim.dll

+ 2007-10-10 08:31:01 52,736 ----a-w C:\Windows\winsxs\x86_microsoft-windows-iebrshim_31bf3856ad364e35_6.0.6000.20663_none_2a5b 4929814e2428\iebrshim.dll

+ 2007-10-10 08:31:08 6,058,496 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16546_none_6296e e1fb11382ff\ieframe.dll

+ 2007-10-10 08:31:08 180,736 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16546_none_6296e e1fb11382ff\ieui.dll

+ 2007-10-10 08:31:09 6,066,176 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.20663_none_6307e a34ca440ea6\ieframe.dll

+ 2007-10-10 08:31:09 180,736 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.20663_none_6307e a34ca440ea6\ieui.dll

+ 2007-10-10 08:31:03 250,368 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieinstal_31bf3856ad364e35_6.0.6000.16546_none_e690 5a9e9496d737\ieinstal.exe

+ 2007-10-10 08:31:03 263,168 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieinstal_31bf3856ad364e35_6.0.6000.20663_none_e701 56b3adc762de\ieinstal.exe

+ 2007-10-10 08:31:06 294,912 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieuser_31bf3856ad364e35_6.0.6000.16546_none_0b388f bad71196e9\ieuser.exe

+ 2007-10-10 08:31:06 301,568 ----a-w C:\Windows\winsxs\x86_microsoft-windows-ieuser_31bf3856ad364e35_6.0.6000.20663_none_0ba98b cff0422290\ieuser.exe

+ 2007-10-10 08:30:28 737,792 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mail-comm-dll_31bf3856ad364e35_6.0.6000.16545_none_77a4aba05 b8204c8\inetcomm.dll

+ 2007-10-10 08:30:28 84,480 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mail-comm-dll_31bf3856ad364e35_6.0.6000.16545_none_77a4aba05 b8204c8\INETRES.dll

+ 2007-10-10 08:30:29 737,792 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mail-comm-dll_31bf3856ad364e35_6.0.6000.20662_none_7815a7b57 4b2906f\inetcomm.dll

+ 2007-10-10 08:30:29 84,480 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mail-comm-dll_31bf3856ad364e35_6.0.6000.20662_none_7815a7b57 4b2906f\INETRES.dll

+ 2007-10-10 08:32:47 356,864 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediametadatahandler_31bf3856ad364e35_6.0.6000.165 57_none_890b997ff4e3a637\MediaMetadataHandler.dll

+ 2007-10-10 08:32:47 356,864 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediametadatahandler_31bf3856ad364e35_6.0.6000.206 76_none_897e96290e12648c\MediaMetadataHandler.dll

+ 2007-10-10 08:32:48 4,096 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16557_none_095474fd 52156893\dxmasf.dll

+ 2007-10-10 08:32:48 7,680 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16557_none_095474fd 52156893\spwmp.dll

+ 2007-10-10 08:32:49 10,617,344 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16557_none_095474fd 52156893\wmp.dll

+ 2007-10-10 08:32:47 107,520 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16557_none_095474fd 52156893\wmpconfig.exe

+ 2007-10-10 08:32:48 168,960 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16557_none_095474fd 52156893\wmplayer.exe

+ 2007-10-10 08:32:49 8,147,968 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16557_none_095474fd 52156893\wmploc.DLL

+ 2007-10-10 08:32:48 107,520 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.16557_none_095474fd 52156893\wmpshare.exe

+ 2007-10-10 08:32:50 4,096 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20676_none_09c771a6 6b4426e8\dxmasf.dll

+ 2007-10-10 08:32:51 7,680 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20676_none_09c771a6 6b4426e8\spwmp.dll

+ 2007-10-10 08:32:51 10,616,832 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20676_none_09c771a6 6b4426e8\wmp.dll

+ 2007-10-10 08:32:50 107,520 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20676_none_09c771a6 6b4426e8\wmpconfig.exe

+ 2007-10-10 08:32:50 168,960 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20676_none_09c771a6 6b4426e8\wmplayer.exe

+ 2007-10-10 08:32:52 8,147,968 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20676_none_09c771a6 6b4426e8\wmploc.DLL

+ 2007-10-10 08:32:50 107,520 ----a-w C:\Windows\winsxs\x86_microsoft-windows-mediaplayer-core_31bf3856ad364e35_6.0.6000.20676_none_09c771a6 6b4426e8\wmpshare.exe

+ 2007-10-10 08:34:33 2,414,136 ----a-w C:\Windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.16565_none_f065fb826 e7feb68\OESpamFilter.dat

+ 2007-10-10 08:34:34 2,414,136 ----a-w C:\Windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.20687_none_f0dbf9098 7abf5c2\OESpamFilter.dat

+ 2007-10-10 08:29:46 788,992 ----a-w C:\Windows\winsxs\x86_microsoft-windows-rpc-local_31bf3856ad364e35_6.0.6000.16525_none_b203c02 547f977dc\rpcrt4.dll

+ 2007-10-10 08:29:46 788,992 ----a-w C:\Windows\winsxs\x86_microsoft-windows-rpc-local_31bf3856ad364e35_6.0.6000.20641_none_b273bbf 0612aea2c\rpcrt4.dll

+ 2007-10-10 08:32:06 1,275,392 ----a-w C:\Windows\winsxs\x86_microsoft.msxml2_6bd6b9abf34 5378f_4.20.9849.0_none_b7e911727b2899b7\msxml4.dll

.

-- Snapshot reset to current date --

.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]

"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2007-06-14 04:27]

"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2007-08-13 19:53]

"TPFNF7"="C:\PROGRA~1\Lenovo\NPDIRECT\TPFNF7SP.exe " [2007-04-10 02:03]

"EZEJMNAP"="C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp .Exe" [2006-11-28 18:30]

"TPHOTKEY"="C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe" [2007-03-09 13:49]

"PWMTRV"="C:\PROGRA~1\ThinkPad\UTILIT~1\PWMTR32V.D LL" [2007-04-11 01:03]

"BLOG"="C:\PROGRA~1\ThinkPad\UTILIT~1\BTVLogEx.DLL " [2007-04-11 01:03]

"TVT Scheduler Proxy"="C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe" [2006-12-13 22:23]

"LPManager"="C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe " [2007-03-23 01:02]

"AMSG"="C:\PROGRA~1\THINKV~1\AMSG\amsg.exe" [2006-12-21 10:50]

"AwaySch"="C:\Program Files\Lenovo\AwayTask\AwaySch.EXE" [2006-11-07 11:51]

"cssauth"="C:\Program Files\Lenovo\Client Security Solution\cssauth.exe" [2006-12-13 11:10]

"DiskeeperSystray"="C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe" [2006-11-15 15:21]

"LenovoOobeOffers"="c:\SWTOOLS\LenovoWelcome\Lenov oOobeOffers.exe" []

"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 00:11]

"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 02:06]

"TPKMAPHELPER"="C:\Program Files\ThinkPad\Program\TpKmapAp.exe" [2007-02-26 17:45]

"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2007-06-28 11:51]

"MSConfig"="C:\Windows\system32\msconfig.exe" [2006-11-02 10:45]

"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2007-06-29 05:24]

"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-09-26 13:42]

"NeroFilterCheck"="C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 15:57]

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]

"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 11:55]

"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 15:46]

"Vidalia"="C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe" []

"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 13:36]

 

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartupLast.fm Helper.lnk - C:\Program Files\Last.fm\LastFMHelper.exe [2007-09-22 16:05:26]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\ShellExecuteHooks]

"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 12:55 77824]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]

C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 12:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]

"AppInit_DLLs"=C:\PROGRA~1\KASPER~1\KASPER~1.0\r3h ook.dll,C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dl l

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\lsa]

"Notification Packages"= scecli ACGina

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Micros oft^Windows^Start Menu^Programs^Startup^MiniCLIP.lnk]

path=C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MiniCLIP.lnk

backup=C:\Windows\pss\MiniCLIP.lnk.CommonStartup

backupExtension=.CommonStartup

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IS CfgWiz]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Setup Initialization]

Microsoft Setup Initialization

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\osCheck]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]

C:\Program Files\Analog Devices\Core\smax4pnp.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

 

R0 Shockprf;Shockprf;C:\Windows\system32\DRIVERS\Apsx 86.sys

R0 TPDIGIMN;TPDIGIMN;C:\Windows\system32\DRIVERS\ApsH M86.sys

R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\system32\DRIVERS\klim6.sys

R1 lenovo.smi;Lenovo System Interface Driver;C:\Windows\system32\DRIVERS\smiif32.sys

R1 TPPWRIF;TPPWRIF;C:\Windows\system32\drivers\Tppwr3 2v.sys

R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe

R2 TPHKSVC;Visa på skärmen;C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe

R2 TVT Backup Protection Service;TVT Backup Protection Service;"C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe"

R2 XAudio;XAudio;C:\Windows\system32\DRIVERS\xaudio.s ys

R3 NETw3v32;Intel® PRO/trådlöst 3945ABG-kortdrivrutin för Windows Vista 32-bitars;C:\Windows\system32\DRIVERS\NETw3v32.sys

R3 R300;R300;C:\Windows\system32\DRIVERS\atikmdag.sys

R3 scrcap;scrcap;C:\Windows\system32\DRIVERS\scrcap.s ys

R3 TPM;TPM;C:\Windows\system32\drivers\tpm.sys

R3 TVTI2C;Lenovo SM bus driver;C:\Windows\system32\DRIVERS\Tvti2c.sys

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;C:\Windows\system32\DRIVERS\b57nd60x.sys

S3 tap0801;TAP-Win32 Adapter V8;C:\Windows\system32\DRIVERS\tap0801.sys

S3 WimFltr;WimFltr;C:\Windows\system32\DRIVERS\wimflt r.sys

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

LocalService nsi lltdsvc SSDPSRV upnphost SCardSvr w32time EventSystem RemoteRegistry WinHttpAutoProxySvc lanmanworkstation TBS SLUINotify THREADORDER fdrespub netprofm fdphost wcncsvc QWAVE WebClient

LocalSystemNetworkRestricted hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc CscService TabletInputService UmRdpService wlansvc WPDBusEnum EMDMgmt

LocalServiceNoNetwork PLA DPS BFE mpssvc

LocalServiceNetworkRestricted DHCP eventlog AudioSrv LmHosts wscsvc p2pimsvc PNRPSvc p2psvc PnrpAutoReg

 

 

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\ccc-core-static]

msiexec /fums {5CF4E506-3628-7338-E2DC-8132134AA893} /qb

.

Contents of the 'Scheduled Tasks' folder

"2007-11-05 10:27:00 C:\Windows\Tasks\Kontrollera uppdateringar för Windows Live Toolbar.job"

.

************************************************** ************************

 

catchme 0.3.1250 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2007-11-05 12:03:13

Windows 6.0.6000 NTFS

 

scanning hidden processes ...

 

scanning hidden autostart entries ...

 

HKLM\Software\Microsoft\Windows\CurrentVersion\Run

Windows Defender = %ProgramFiles%\Windows Defender\MSASCui.exe -hide?

 

scanning hidden files ...

 

scan completed successfully

hidden files: 0

 

************************************************** ************************

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]

"AVP"="\"C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 7.0\\avp.exe\""

.

Completion time: 2007-11-05 12:05:03

C:\ComboFix-quarantined-files.txt ... 2007-10-04 16:45

C:\ComboFix2.txt ... 2007-10-04 16:45

.

--- E O F ---[/log]

 

Dela detta inlägg


Länk till inlägg
Dela på andra webbplatser

Den ComboFix från i november har inte tagit bort något så vitt jag kan se. Det finns C:\ComboFix2.txt från i oktober också. Klistra in C:\ComboFix-quarantined-files.txt också så får vi se vad det står där.

 

Du hade dagen innan du körde ComboFix installerat Nero ser det ut som. Det är väl en laglig Nero?

 

Hmm, är det här din dator?

http://www.nutnworks.com/forums/showthread.php?s=41a99bbbe3294526cce4a2a61ca40f1e&p=22828#post22828

 

 

Dela detta inlägg


Länk till inlägg
Dela på andra webbplatser

jag har 3 combofixloggar, men det var efter den jag klistrade in som det hände.

 

[log]2002-03-02 04:10 53299 --a------ C:\Qoobox\Quarantine\C\Windows\System32\pthreadVC.dll.vir

2003-04-04 14:54 208896 --a------ C:\Qoobox\Quarantine\C\Windows\System32\wpcap.dll.vir

2003-04-04 15:03 57344 --a------ C:\Qoobox\Quarantine\C\Windows\System32\packet.dll.vir

2003-04-04 15:07 30336 --a------ C:\Qoobox\Quarantine\C\Windows\System32\drivers\npf.sys.vir

2007-10-04 17:31 808 --a------ C:\Qoobox\Quarantine\Registry_backups\services_NPF.reg.dat

 

 

Lista ”ver mappar i milj”variabeln PATH f”r volymen SW_Preload

Volymens serienummer „r 108E-BD37

C:\QOOBOX\QUARANTINE

+---C

| \---Windows

| \---System32

| | packet.dll.vir

| | pthreadVC.dll.vir

| | wpcap.dll.vir

| |

| \---drivers

| npf.sys.vir

|

\---Registry_backups

services_NPF.reg.dat[/log]

 

e en trial nero. men avinstallationen blev konstig så ligger förtfarande kvar i registret tror jag. fins det nåt sätt att ta bort det??.

 

a det är min dator

 

Dela detta inlägg


Länk till inlägg
Dela på andra webbplatser

Det är bara det att det inte ser ut som att den ComboFix-körningen gjorde någon förändring i datorn.

 

Gå till http://www.virustotal.com/ bläddra fram en i taget av filerna som finns i mappen C:\Qoobox\Quarantine, tryck på Skicka Fil och vänta tills resultatet är klart (Närvarande status blir genomförd). Klistra in resultatet från de olika antivirusprogrammen samt File size här.

 

Starta Anteckningar och öppna filen C:\Qoobox\Quarantine\Registry_backups\services_NPF.reg.dat

Klistra in innehållet här.

 

Har du slagit på systemåterställningen nu?

 

Dela detta inlägg


Länk till inlägg
Dela på andra webbplatser

okej

 

hittar ingen karantän mapp. har avinstallerat combifix om det kan vara det.

 

ja systemåterställningen är på. hade den avstängd innan för rensning av eventuella trojaner och så.

 

Dela detta inlägg


Länk till inlägg
Dela på andra webbplatser

Skapa ett konto eller logga in för att kommentera

Du måste vara medlem för att kunna kommentera

Skapa ett konto

Skapa ett nytt konto på vårt forum. Det är lätt!

Registrera ett nytt konto

Logga in

Redan medlem? Logga in här.

Logga in nu



×
×
  • Skapa nytt...