Just nu i M3-nätverket
Gå till innehåll

Kan inte surfa till sidor med online viruskontroll


kaca70

Rekommendera Poster

Jag fick en virusvarning från BitDefender förra veckan och sedan dess strular datorn och jag misstänker att ett virus slinkit igenom. Har dock scannat igenom hela datorn med BitDefender, men den hittar inget skumt.

 

Det som strular är att BitDefender inte alltid startar varje gång jag startar datorn, om den skulle starta så går det inte att göra uppdateringar.

 

Det som gör är att jag misstänker virus är att jag kan surfa som vanligt till alla sidor - utom till Bitdefender.com och hemsidor med online viruskontroll. Jag kan surfa till dessa sidor på min andra dator på samma nätverk.

 

Ikväll installerade jag om XP, men det hjälpte inte.

 

Har gett upp BitDefenders support, har tyvärr ingen bra erfarenhet av dem. Tex, när virusprogrammet inte startat trots drygt tio omstarter av datorn föreslog de att jag skulle öppna programmet och ändra några inställningar! Inte så lätt när programmet inte går att starta...

 

Vore tacksam om någon kan hjälpa mig med råd om vad som kan vara fel!

 

/ Stefan

Länk till kommentar
Dela på andra webbplatser

  • Svars 84
  • Skapad
  • Senaste svar

Det verkar mycket riktigt som att din dator är infekterad med något.

 

Kan du får fram någon logg eller något liknande i BitDefender som visar vad för något det hittade och i vilken fil/mapp det var?

 

Vi kan se vad DDS visar till att börja med. Spara DDS på Skrivbordet.

http://download.bleepingcomputer.com/sUBs/dds.scr

 

Starta programmet genom att dubbelklicka på det.

Tryck Yes/Ja om frågan om Optional Scan dyker upp.

I ditt svar klistrar du in loggen DSS.txt. Medan du bifogar Attach.txt som en fil.

Länk till kommentar
Dela på andra webbplatser

Tack för snabbt svar!!!

 

Tyvärr har jag ingen logg kvar som kan visa vad det var BitDefender varnade för. Deras första åtgärd när jag kontaktade supporten var att be mig avinstallera hela BD och sedan installera det igen på nytt. Antar att all historik försvann då.

 

Ska köra DDS nu, återkommer...

Länk till kommentar
Dela på andra webbplatser

Här kommer resultatet:

 

 

DDS (Ver_10-03-17.01) - NTFSx86

Run by Knutsson at 23:30:03,67 on 2010-03-18

Internet Explorer: 8.0.6001.18702

Microsoft Windows XP Home Edition 5.1.2600.3.1252.46.1053.18.3070.2569 [GMT 1:00]

 

AV: BitDefender Antivirus *On-access scanning enabled* (Outdated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB}

FW: BitDefender Firewall *enabled* {4055920F-2E99-48A8-A270-4243D2B8F242}

 

============== Running Processes ===============

 

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\Program\Delade filer\BitDefender\BitDefender Update Service\livesrv.exe

C:\Program\BitDefender\BitDefender 2009\vsserv.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

svchost.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\WINDOWS\system32\wuauclt.exe

C:\WINDOWS\system32\wscntfy.exe

C:\Program\ekort\ekort.exe

C:\Program\Adobe\Reader 8.0\Reader\Reader_sl.exe

C:\Program\BitDefender\BitDefender 2009\bdagent.exe

C:\WINDOWS\stsystra.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program\Windows Live\Messenger\MsnMsgr.Exe

C:\WINDOWS\System32\svchost.exe -k HTTPFilter

C:\WINDOWS\system32\OBroker.exe

C:\Program\Personal\bin\Personal.exe

C:\Program\BitDefender\BitDefender 2009\seccenter.exe

C:\WINDOWS\system32\wuauclt.exe

D:\dds.scr

 

============== Pseudo HJT Report ===============

 

uStart Page = file:///C:/Documents%20and%20Settings/Knutsson/Mina%20dokument/internet/startsidan/startsida.htm

uInternet Connection Wizard,ShellNext = iexplore

BHO: Länkhjälp till Adobe PDF Reader: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program\delade filer\adobe\acrobat\activex\AcroIEHelper.dll

BHO: EKortBrowserHelper Class: {1c900459-deef-4aa9-b260-1ef0f0c70a8d} - c:\program\ekort\Bhoekort.dll

BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program\java\jre1.6.0_07\bin\ssv.dll

BHO: Windows Live inloggningshjälpen: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program\delade filer\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: e-kort Helper Class: {9065e913-4f23-4b47-9b5d-b055d32db1f3} - c:\program\ekort\EKortHelper.dll

TB: e-kort Toolbar: {8db2b2e8-579f-48a8-a496-18fefcf8f4df} - c:\program\ekort\EKortToolbar.dll

TB: BitDefender Toolbar: {381ffde8-2394-4f90-b10d-fc6124a40f8c} - c:\program\bitdefender\bitdefender 2009\IEToolbar.dll

uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe

uRun: [MsnMsgr] "c:\program\windows live\messenger\MsnMsgr.Exe" /background

mRun: [iDTSysTrayApp] sttray.exe

mRun: [ATIPTA] "c:\program\ati technologies\ati control panel\atiptaxx.exe"

mRun: [e-kort] c:\program\ekort\ekort.exe /dontopenmycards /Autostart

mRun: [Adobe Reader Speed Launcher] "c:\program\adobe\reader 8.0\reader\Reader_sl.exe"

mRun: [QuickTime Task] "c:\program\quicktime\qttask.exe" -atboottime

mRun: [sysgif32] c:\windows\temp\~TME.tmp

mRun: [bDAgent] "c:\program\bitdefender\bitdefender 2009\bdagent.exe"

mRun: [bitDefender Antiphishing Helper] "c:\program\bitdefender\bitdefender 2009\IEShow.exe"

mRun: [sigmatelSysTrayApp] stsystra.exe

dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE

StartupFolder: c:\docume~1\alluse~1\start-~1\program\autost~1\bankid~1.lnk - c:\program\personal\bin\Personal.exe

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program\messenger\msmsgs.exe

IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} - c:\program\java\jre1.6.0_07\bin\ssv.dll

DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} - hxxp://quickscan.bitdefender.com/qsax/qsax.cab

DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx2.hotmail.com/mail/w3/resources/MSNPUpld.cab

DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} - hxxp://www.fujidirekt.se/aurigma/ImageUploader5.cab

DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1219858640796

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} - hxxp://62.181.87.189/activex/AxisCamControl.cab

DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} - hxxp://acs.pandasoftware.com/activescan/cabs/as2stubie.cab

DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_04-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} - hxxp://www.fujidirekt.se/aurigma2/ImageUploader4.cab

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

 

================= FIREFOX ===================

 

FF - ProfilePath - c:\docume~1\knutsson\applic~1\mozilla\firefox\profiles\kamm187k.default\

FF - prefs.js: browser.startup.homepage - file:///C:/Documents%20and%20Settings/Knutsson/Mina%20dokument/internet/startsidan/startsida.htm

FF - component: c:\program\ekort\components\SlimOrbAddonEkort.dll

FF - component: c:\program\mozilla firefox\components\FFComm.dll

FF - plugin: c:\program\google\google earth\plugin\npgeplugin.dll

FF - plugin: c:\program\google\update\1.2.183.17\npGoogleOneClick8.dll

FF - plugin: c:\program\personal\bin\np_prsnl.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\

 

---- FIREFOX POLICIES ----

c:\program\mozilla firefox\greprefs\all.js - pref("browser.visited_color", "#551A8B");

c:\program\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);

c:\program\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".se");

c:\program\mozilla firefox\defaults\pref\firefox.js - pref("browser.videoFeeds.handler", "ask");

 

============= SERVICES / DRIVERS ===============

 

R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2009-12-31 28552]

R2 athsgt;athsgt;c:\windows\system32\drivers\athsgt.sys [2008-11-13 164992]

R2 BDVEDISK;BDVEDISK;c:\program\bitdefender\bitdefender 2009\BDVEDISK.sys [2008-10-6 82696]

R2 limsgt;limsgt;c:\windows\system32\drivers\limsgt.sys [2008-11-13 12544]

R3 bdfm;BDFM;c:\windows\system32\drivers\bdfm.sys [2008-9-18 111112]

R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;c:\windows\system32\drivers\bdfndisf.sys [2009-2-3 104328]

S2 gupdate;Tjänsten Google Update (gupdate);c:\program\google\update\GoogleUpdate.exe [2009-11-29 135664]

S3 Arrakis3;BitDefender Arrakis Server;c:\program\delade filer\bitdefender\bitdefender arrakis server\bin\Arrakis3.exe [2008-7-17 118784]

 

=============== Created Last 30 ================

 

2010-03-18 22:11:33 69120 -c----w- c:\windows\system32\dllcache\iecompat.dll

2010-03-18 22:11:10 594432 -c----w- c:\windows\system32\dllcache\msfeeds.dll

2010-03-18 22:11:10 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll

2010-03-18 22:11:10 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll

2010-03-18 22:11:09 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll

2010-03-18 22:11:09 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll

2010-03-18 22:11:09 11070464 -c----w- c:\windows\system32\dllcache\ieframe.dll

2010-03-18 20:48:35 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll

2010-03-18 20:43:26 272128 -c----w- c:\windows\system32\dllcache\bthport.sys

2010-03-18 20:35:51 128512 -c----w- c:\windows\system32\dllcache\dhtmled.ocx

2010-03-18 20:35:26 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys

2010-03-18 20:35:25 331776 -c----w- c:\windows\system32\dllcache\msadce.dll

2010-03-18 20:35:25 1315328 -c----w- c:\windows\system32\dllcache\msoe.dll

2010-03-18 20:35:17 691712 -c----w- c:\windows\system32\dllcache\inetcomm.dll

2010-03-18 20:34:33 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll

2010-03-18 20:34:32 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll

2010-03-18 20:34:03 217088 -c----w- c:\windows\system32\dllcache\wordpad.exe

2010-03-18 20:34:03 1206508 -c----w- c:\windows\system32\dllcache\sysmain.sdb

2010-03-18 20:33:52 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe

2010-03-18 20:33:33 353792 -c----w- c:\windows\system32\dllcache\srv.sys

2010-03-18 20:33:31 455424 -c----w- c:\windows\system32\dllcache\mrxsmb.sys

2010-03-18 19:48:14 28288 -c--a-w- c:\windows\system32\dllcache\xjis.nls

2010-03-18 19:48:07 156672 -c--a-w- c:\windows\system32\dllcache\winzm.ime

2010-03-18 19:48:06 65536 -c--a-w- c:\windows\system32\dllcache\winime.ime

2010-03-18 19:48:06 156672 -c--a-w- c:\windows\system32\dllcache\winsp.ime

2010-03-18 19:48:06 156672 -c--a-w- c:\windows\system32\dllcache\winpy.ime

2010-03-18 19:48:05 79360 -c--a-w- c:\windows\system32\dllcache\winar30.ime

2010-03-18 19:48:05 72704 -c--a-w- c:\windows\system32\dllcache\wingb.ime

2010-03-18 19:48:05 31232 -c--a-w- c:\windows\system32\dllcache\weitekp9.sys

2010-03-18 19:48:04 41600 -c--a-w- c:\windows\system32\dllcache\weitekp9.dll

2010-03-18 19:48:03 48256 -c--a-w- c:\windows\system32\dllcache\w32.dll

2010-03-18 19:48:02 86073 -c--a-w- c:\windows\system32\dllcache\voicesub.dll

2010-03-18 19:48:02 426041 -c--a-w- c:\windows\system32\dllcache\voicepad.dll

2010-03-18 19:46:59 6144 -c--a-w- c:\windows\system32\dllcache\kbd101a.dll

2010-03-18 19:45:53 5632 -c--a-w- c:\windows\system32\dllcache\EXCH_adsiisex.dll

2010-03-18 19:45:49 16384 -c--a-w- c:\windows\system32\dllcache\tcptsat.dll

2010-03-18 19:45:43 208896 -c--a-w- c:\windows\system32\dllcache\fpmmcsat.dll

2010-03-18 19:43:58 488 ---ha-r- c:\windows\system32\logonui.exe.manifest

2010-03-18 19:43:52 749 ---ha-r- c:\windows\WindowsShell.Manifest

2010-03-18 19:43:52 749 ---ha-r- c:\windows\system32\wuaucpl.cpl.manifest

2010-03-18 19:43:52 749 ---ha-r- c:\windows\system32\sapi.cpl.manifest

2010-03-18 19:43:52 749 ---ha-r- c:\windows\system32\ncpa.cpl.manifest

2010-03-18 19:43:33 16384 -c--a-w- c:\windows\system32\dllcache\isignup.exe

2010-03-12 15:09:09 850 ----a-w- c:\windows\system32\ProductTweaks.xml

2010-03-12 15:09:09 385 ----a-w- c:\windows\system32\user_gensett.xml

2010-03-09 18:46:51 0 d-----w- c:\docume~1\knutsson\applic~1\BitDefender

2010-03-09 18:46:19 0 d-----w- c:\docume~1\alluse~1\applic~1\BitDefender

2010-03-09 18:45:31 0 d-----w- c:\program\delade filer\BitDefender

2010-03-09 18:30:15 293376 ----a-w- c:\windows\system32\browserchoice.exe

2010-03-09 18:19:58 429451 ----a-w- C:\BdUninstallTool2010.03.09-07.19.54.reg

2010-02-20 06:18:57 0 d-----w- c:\program\Personal

 

==================== Find3M ====================

 

2010-03-18 22:19:52 81984 ----a-w- c:\windows\system32\bdod.bin

2010-03-18 21:57:39 78734 ----a-w- c:\windows\system32\perfc01D.dat

2010-03-18 21:57:39 434528 ----a-w- c:\windows\system32\perfh01D.dat

2010-03-18 19:42:53 22840 -c--a-w- c:\windows\system32\emptyregdb.dat

2010-03-06 13:48:28 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll

2010-01-09 13:42:34 107888 ----a-w- c:\windows\system32\CmdLineExt.dll

2009-12-26 23:06:23 4 ----a-w- c:\docume~1\knutsson\applic~1\avdrn.dat

2009-12-22 05:20:58 81920 ------w- c:\windows\system32\ieencode.dll

2009-12-21 19:09:46 916480 ----a-w- c:\windows\system32\wininet.dll

 

============= FINISH: 23:31:23,59 ===============

 

Attach.zip

Länk till kommentar
Dela på andra webbplatser

Ladda ner Malwarebytes Anti-Malware (MBAM) från:

http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html

Dubbelklicka på mbam-setup för att installera programmet.

 

Se till i slutet av installationen att det är bockar för:

Uppdatera Malwarebytes' Anti-Malware

Starta Malwarebytes' Anti-Malware

Tryck på Slutför

Om det finns någon uppdatering så kommer den att laddas ner och installeras.

 

När programmet startar så välj "Utför snabb skanning" och tryck på Skanna.

Skanningen tar ett tag.

När den är klar så tryck på OK och sedan "Visa resultat".

Bocka för allt och tryck sedan Ta bort markerade.

När borttagningen är klar så öppnar Anteckningar med en logg.

 

Eventuellt så kommer det upp en begäran om att starta om datorn (Restart). I så fall gör det.

Om det blir ett felmeddelande Error loading... efter omstarten så starta om datorn än en gång.

Om programmet inte kommer igång efter omstarten så starta det.

 

Om loggen inte kommer upp själv i Anteckningar så hittar du loggen på fliken Loggar i MBAM.

Kopiera loggen och klistra in den i ditt svar.

Länk till kommentar
Dela på andra webbplatser

När jag startat programmet så stängs det ned igen efter tre sekunder, oavsett om jag hinner klicka "Skanna" eller inte. Har provat att installera om det, men det hjälpte inte.

Länk till kommentar
Dela på andra webbplatser

Det är det skadliga programmet som stoppar MBAM från att köras. Se om det kommer igång så här:

 

Spara RKill av Grinler på Skrivbordet. Ladda ner det från den första av dessa länkar:

http://download.bleepingcomputer.com/grinler/rkill.com

http://download.bleepingcomputer.com/grinler/rkill.pif

http://download.bleepingcomputer.com/grinler/rkill.scr

http://download.bleepingcomputer.com/grinler/rkill.exe

 

Starta Rkill (i Vista och Windows 7 genom att högerklicka på filen och välj Kör som administratör om det valet finns).

Det blir ett svart fönster/ruta en stund om programmet lyckades köra.

Om det inte blev något svart fönster/ruta så ta bort den RKill-varianten och upprepa med nästa RKill.

 

Om du får ett meddelande om att RKill är skadligt så bry dig inte om det. Det är det skadliga programmen som inte vill bli stoppat. Lämna kvar varningen på skärmen och kör RKill en gång till.

 

Kör RKill flera gånger efter varandra tills du inte ser till det skadliga programmet längre, dock max 10 gånger. Fortsätt med resten sedan. Om du redan från början inte ser till det skadliga programmet så räcker det med 3 gånger.

 

Om inte någon av program-varianterna kan köra så berätta det.

Länk till kommentar
Dela på andra webbplatser

Jag har nu kört alla fyra programmen i tur och ordning tre gånger var. Först kommer en säkerhetsvarning från Windows att Utgivaren inte kunde verifieras, men jag antar att det inte var det meddelandet du menade. Alla tolv körningarna gick bra, utan att programmet blev stoppat.

 

Men MBAM går fortfarande inte att köra :(

Länk till kommentar
Dela på andra webbplatser

Okej, ett sista försök med MBAM innan vi försöker med ett annat program.

 

Starta om datorn i felsäkert läge (tryck F8 upprepade gånger under uppstarten och välj felsäkert läge i menyn).

 

Kör en RKill tre gånger.

 

Öppna mappen "C:\program\Malwarebytes' Anti-Malware" och leta reda på filen mbam.exe. Byt namn på den till explorer.exe.

Dubbelklicka på den filen så att MBAM startar.

 

Välj fliken Skanna (eller något liknande ord). Välj "Utför fullständig skanning" och därefter trycker du på Skanna.

 

MBAM kommer att söka igenom datorn. Beroende på hur mycket filer du har så kan det ta några timmar. Lämna datorn ifred under tiden.

 

När skanningen är klar så kommer det upp ett meddelande och då trycker du på OK.

 

Tryck på "Visa resultat".

 

Allt som MBAM hittade visas. Se till att alla hittade filer är förbockade. Tryck på knappen "Ta bort markerade". Om det kommer upp ett meddelande om att datorn ska startas om så låt datorn göra det.

 

Starta om datorn i normalt läge.

 

Starta MBAM och på fliken Loggar hittar du loggen som du öppnar. Kopiera loggen och klistra in i ditt svar här.

Länk till kommentar
Dela på andra webbplatser

Tyvärr så verkar inte mitt virus vara så lättlurat, den avslutar fortfarande MBAM efter tre sekunder.

Länk till kommentar
Dela på andra webbplatser

Om du inte har kört RKill sedan du startade datorn så gör det.

 

Spara ComboFix genom att högerklicka på länken och välja spara:

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

När det kommer upp var du vill spara filen så välj Skrivbordet och byt samtidigt namn på filen till explorer.exe.

 

Stäng av alla program du ser inklusive antivirusprogram och antispionprogram men lämna brandväggen på.

Hur? Se http://www.bleepingcomputer.com/forums/topic114351.html

Kör ComboFix (explorer.exe) och följ anvisningarna som visas.

Om det kommer upp en fråga om du vill installera återställningskonsolen så svara ja.

 

VIKTIGT! Klicka inte på ComboFix-fönstret med musen när den körs annars kan den hänga upp sig.

 

När den är färdig så ska en logg komma upp, klistra in den i ditt svar. Kontrollera att antivirusprogram mm är igång innan du ansluter till internet.

 

Om du får problem med att komma ut på internet:

Kontrollpanelen - Nätverksanslutningar

högerklicka på din internetanslutning och välj Reparera och/eller starta om datorn.

 

Varning! ComboFix förhindrar automatisk körning av CD, disketter och USB-enheter för att göra det lättare att rensa datorn och skydda datorn mot infektioner i framtiden. Det kan bli problem t ex om datorn har internet via ett USB-modem eller USB-nätverkskort. Säg då till i stället för att köra ComboFix.

Länk till kommentar
Dela på andra webbplatser

Det syns två saker i DDS-loggen. Den ena filen är daterad 26 december och det ser ut som att du har kört Pandas onlineskanning den 29 december. Kommer du ihåg något om vad för typ av infektion du hade? Något falskt antivirusprogram? I så fall kommer du ihåg vad det kallade sig, t ex XP Antivirus Pro, Total Security?

 

ComboFix ska inte ta mer än en halvtimme. Håller den på längre så avbryt.

Länk till kommentar
Dela på andra webbplatser

Det stämmer, efter jul (kan stämma att det var annandagen) hade jag också problem med datorn. (Även den gången varnade BitDefender för virus när jag var ute och surfade, men släppte tydligen igenom viruset trots att det detekterat det.) Hjälpen jag fick från BitDefenders support kändes inte helt rätt, men plötsligt var viruset borta. Tyckte det var för bra för att vara sant, så därför körde jag Pandas onlineskanning som hittade Trj/Dropper.wf.

 

Här kommer loggen från ComboFix:

 

ComboFix 10-03-18.02 - Knutsson 2010-03-19 10:33:18.1.2 - x86

Microsoft Windows XP Home Edition 5.1.2600.3.1252.46.1053.18.3070.2640 [GMT 1:00]

Körs från: c:\documents and settings\Knutsson\Skrivbord\ComboFix.exe

AV: BitDefender Antivirus *On-access scanning disabled* (Outdated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB}

FW: BitDefender Firewall *enabled* {4055920F-2E99-48A8-A270-4243D2B8F242}

.

 

((((((((((((((((((((((((((((((((((((((( Andra raderingar ))))))))))))))))))))))))))))))))))))))))))))))))

.

 

c:\docume~1\Knutsson\LOKALA~1\Temp\gxbv.dat

c:\documents and settings\Knutsson\Application Data\avdrn.dat

c:\documents and settings\Knutsson\Application Data\inst.exe

c:\documents and settings\Knutsson\Lokala inställningar\Temp\gxbv.dat

c:\windows\system32\fjhdyfhsn.bat

 

.

(((((((((((((((((((((((( Filer Skapade från 2010-02-19 till 2010-03-19 ))))))))))))))))))))))))))))))

.

 

2010-03-18 23:37 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2010-03-18 23:37 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys

2010-03-18 23:27 . 2010-03-18 23:27 -------- d-----w- c:\documents and settings\Knutsson\Application Data\Malwarebytes

2010-03-18 23:27 . 2010-03-19 08:55 -------- d-----w- c:\program\Malwarebytes' Anti-Malware

2010-03-18 23:27 . 2010-03-18 23:27 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes

2010-03-18 22:11 . 2009-12-11 08:38 69120 -c----w- c:\windows\system32\dllcache\iecompat.dll

2010-03-18 22:11 . 2009-12-21 19:09 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll

2010-03-18 22:11 . 2009-12-21 19:09 594432 -c----w- c:\windows\system32\dllcache\msfeeds.dll

2010-03-18 22:11 . 2009-12-21 19:09 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll

2010-03-18 22:11 . 2009-12-21 19:09 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll

2010-03-18 22:11 . 2009-12-21 19:09 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll

2010-03-18 22:11 . 2009-12-21 19:09 11070464 -c----w- c:\windows\system32\dllcache\ieframe.dll

2010-03-18 20:48 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll

2010-03-18 20:44 . 2008-04-14 15:41 79872 -c----w- c:\windows\system32\dllcache\msxml6r.dll

2010-03-18 20:44 . 2004-08-04 12:00 403 -c----w- c:\windows\system32\dllcache\npdrmv2.zip

2010-03-18 20:44 . 2004-08-04 12:00 22060 -c----w- c:\windows\system32\dllcache\npds.zip

2010-03-18 20:44 . 2008-04-14 16:05 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe

2010-03-18 20:43 . 2008-06-14 17:36 272128 -c----w- c:\windows\system32\dllcache\bthport.sys

2010-03-18 20:35 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys

2010-03-18 20:35 . 2009-07-10 13:31 1315328 -c----w- c:\windows\system32\dllcache\msoe.dll

2010-03-18 20:35 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll

2010-03-18 20:35 . 2008-04-11 19:06 691712 -c----w- c:\windows\system32\dllcache\inetcomm.dll

2010-03-18 20:34 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll

2010-03-18 20:34 . 2009-07-31 04:35 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll

2010-03-18 20:34 . 2008-04-21 21:16 217088 -c----w- c:\windows\system32\dllcache\wordpad.exe

2010-03-18 20:33 . 2009-10-23 15:28 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe

2010-03-18 20:33 . 2009-12-31 16:50 353792 -c----w- c:\windows\system32\dllcache\srv.sys

2010-03-18 20:33 . 2009-12-04 18:22 455424 -c----w- c:\windows\system32\dllcache\mrxsmb.sys

2010-03-18 19:48 . 2004-08-04 12:00 31232 -c--a-w- c:\windows\system32\dllcache\weitekp9.sys

2010-03-18 19:48 . 2004-08-04 12:00 41600 -c--a-w- c:\windows\system32\dllcache\weitekp9.dll

2010-03-18 19:48 . 2004-08-04 12:00 48256 -c--a-w- c:\windows\system32\dllcache\w32.dll

2010-03-18 19:48 . 2008-04-14 16:04 86073 -c--a-w- c:\windows\system32\dllcache\voicesub.dll

2010-03-18 19:48 . 2008-04-14 16:04 426041 -c--a-w- c:\windows\system32\dllcache\voicepad.dll

2010-03-18 19:46 . 2004-08-04 12:00 6144 -c--a-w- c:\windows\system32\dllcache\kbd101a.dll

2010-03-18 19:45 . 2001-09-06 19:33 5632 -c--a-w- c:\windows\system32\dllcache\EXCH_adsiisex.dll

2010-03-18 19:45 . 2003-04-14 20:10 16384 -c--a-w- c:\windows\system32\dllcache\tcptsat.dll

2010-03-18 19:45 . 2003-04-14 20:10 208896 -c--a-w- c:\windows\system32\dllcache\fpmmcsat.dll

2010-03-18 19:43 . 2004-08-04 12:00 16384 -c--a-w- c:\windows\system32\dllcache\isignup.exe

2010-03-18 19:35 . 2004-08-04 12:00 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll

2010-03-18 19:35 . 2004-08-04 12:00 13312 ----a-w- c:\windows\system32\irclass.dll

2010-03-18 19:35 . 2004-08-04 12:00 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll

2010-03-18 19:35 . 2004-08-04 12:00 24661 ----a-w- c:\windows\system32\spxcoins.dll

2010-03-11 07:12 . 2010-03-11 07:12 -------- d-----w- c:\documents and settings\Arvid\Application Data\BitDefender

2010-03-09 18:46 . 2010-03-09 18:46 -------- d-----w- c:\documents and settings\Knutsson\Application Data\BitDefender

2010-03-09 18:46 . 2010-03-09 18:48 -------- d-----w- c:\documents and settings\All Users\Application Data\BitDefender

2010-03-09 18:45 . 2010-03-09 18:46 -------- d-----w- c:\program\Delade filer\BitDefender

2010-03-09 18:30 . 2010-02-12 10:03 293376 ----a-w- c:\windows\system32\browserchoice.exe

2010-03-09 18:19 . 2010-03-09 18:22 429451 ----a-w- C:\BdUninstallTool2010.03.09-07.19.54.reg

2010-02-20 06:18 . 2010-02-20 06:18 -------- d-----w- c:\program\Personal

 

.

(((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-03-19 09:43 . 2008-08-27 16:42 81984 ----a-w- c:\windows\system32\bdod.bin

2010-03-18 22:56 . 2008-12-24 23:16 1 ----a-w- c:\documents and settings\Knutsson\Application Data\OpenOffice.org\3\user\uno_packages\cache\stamp.sys

2010-03-18 22:31 . 2004-08-04 12:00 78734 ----a-w- c:\windows\system32\perfc01D.dat

2010-03-18 22:31 . 2004-08-04 12:00 434528 ----a-w- c:\windows\system32\perfh01D.dat

2010-03-18 22:05 . 2008-08-27 18:41 848 --sha-w- c:\windows\system32\KGyGaAvL.sys

2010-03-18 19:42 . 2008-08-26 19:18 22840 -c--a-w- c:\windows\system32\emptyregdb.dat

2010-03-14 14:51 . 2008-12-18 19:00 -------- d-----w- c:\documents and settings\Knutsson\Application Data\U3

2010-03-14 11:48 . 2010-01-12 19:51 -------- d-----w- c:\documents and settings\All Users\Application Data\WinZip

2010-03-09 18:46 . 2008-08-27 16:34 -------- d-----w- c:\program\BitDefender

2010-03-07 07:05 . 2010-01-10 12:18 -------- d-----w- c:\program\Alfons

2010-03-06 13:48 . 2009-06-25 06:30 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll

2010-02-12 09:08 . 2008-08-29 19:41 -------- d-----w- c:\documents and settings\All Users\Application Data\pdf995

2010-02-11 15:37 . 2010-02-11 15:37 -------- d-----w- c:\documents and settings\Knutsson\Application Data\LEGO Media

2010-02-11 15:37 . 2008-08-28 17:38 -------- d--h--w- c:\program\InstallShield Installation Information

2010-02-11 15:37 . 2008-09-02 14:21 -------- d-----w- c:\program\LEGO Media

2010-02-09 21:25 . 2008-08-29 19:41 60 ----a-w- c:\windows\wpd99.drv

2010-02-09 08:59 . 2008-11-16 14:33 -------- d-----w- c:\program\Google

2010-01-29 19:47 . 2008-10-23 10:10 -------- d-----w- c:\documents and settings\Knutsson\Application Data\CopyToDvd

2010-01-29 19:47 . 2008-10-23 09:42 -------- d-----w- c:\documents and settings\Knutsson\Application Data\Vso

2010-01-28 19:11 . 2009-08-20 20:30 132 ----a-w- c:\windows\system32\rezumatenoi.dat

2010-01-26 08:18 . 2010-01-12 08:37 -------- d-----w- c:\program\FemMyror1

2010-01-09 13:42 . 2008-09-23 17:30 107888 ----a-w- c:\windows\system32\CmdLineExt.dll

2009-12-31 16:50 . 2004-08-04 12:00 353792 ----a-w- c:\windows\system32\drivers\srv.sys

2009-12-28 21:49 . 2009-12-28 21:49 20 ----a-w- c:\windows\system32\config\systemprofile\Application Data\fvgqad.dat

2009-12-26 23:06 . 2009-12-26 23:06 20 ----a-w- c:\documents and settings\NetworkService\Application Data\fvgqad.dat

2009-12-22 05:20 . 2009-12-22 05:20 81920 ------w- c:\windows\system32\ieencode.dll

2009-12-21 19:09 . 2004-08-04 12:00 916480 ----a-w- c:\windows\system32\wininet.dll

2008-12-16 16:52 . 2008-10-30 16:34 61440 ----a-w- c:\program\mozilla firefox\components\FFComm.dll

.

 

------- Sigcheck -------

 

[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\atapi.sys

[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\atapi.sys

[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\drivers\atapi.sys

[-] 2004-08-04 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\atapi.sys

 

[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\asyncmac.sys

[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\asyncmac.sys

[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\drivers\asyncmac.sys

[-] 2004-08-04 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\asyncmac.sys

 

[-] 2004-08-04 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\beep.sys

[-] 2004-08-04 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys

 

[-] 2008-04-14 . D655CA94C8E2E0223C1BC28BCD95723A . 24832 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\kbdclass.sys

[-] 2008-04-14 . D655CA94C8E2E0223C1BC28BCD95723A . 24832 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\kbdclass.sys

[-] 2008-04-14 . D655CA94C8E2E0223C1BC28BCD95723A . 24832 . . [5.1.2600.5512] . . c:\windows\system32\drivers\kbdclass.sys

[-] 2004-08-04 . CE96BFA4AF66A2FE61982093BD1D8FFB . 24832 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\kbdclass.sys

 

[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ndis.sys

[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ndis.sys

[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ndis.sys

[-] 2004-08-04 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ndis.sys

 

[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntfs.sys

[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ntfs.sys

[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ntfs.sys

[-] 2004-08-04 . B78BE402C3F63DD55521F73876951CDD . 574592 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ntfs.sys

 

[-] 2004-08-04 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\null.sys

[-] 2004-08-04 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys

 

[-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys

[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp3gdr\tcpip.sys

[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys

[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys

[-] 2008-06-20 . 2A5554FC5B1E04E131230E3CE035C3F9 . 360320 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp2gdr\tcpip.sys

[-] 2008-06-20 . 744E57C99232201AE98C49168B918F48 . 360960 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp2qfe\tcpip.sys

[-] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\tcpip.sys

[-] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tcpip.sys

[-] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\tcpip.sys

[-] 2004-08-04 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\tcpip.sys

 

[-] 2008-04-14 . E0D4A1CC49EFB58A32B5E9D35798C9DD . 77824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\browser.dll

[-] 2008-04-14 . E0D4A1CC49EFB58A32B5E9D35798C9DD . 77824 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\browser.dll

[-] 2008-04-14 . E0D4A1CC49EFB58A32B5E9D35798C9DD . 77824 . . [5.1.2600.5512] . . c:\windows\system32\browser.dll

[-] 2004-08-04 . FEC7F081BB318697FB4EABCBF7E4AFF7 . 77312 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\browser.dll

 

[-] 2008-04-14 . FF1805D5DAF41625AF5282750D4A3700 . 13312 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lsass.exe

[-] 2008-04-14 . FF1805D5DAF41625AF5282750D4A3700 . 13312 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\lsass.exe

[-] 2008-04-14 . FF1805D5DAF41625AF5282750D4A3700 . 13312 . . [5.1.2600.5512] . . c:\windows\system32\lsass.exe

[-] 2004-08-04 . BA428312D9A0726E4C07C2037E882520 . 13312 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\lsass.exe

 

[-] 2008-04-14 . 7F791C1C9D3FEC5D3F519C9DB19465D3 . 198144 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netman.dll

[-] 2008-04-14 . 7F791C1C9D3FEC5D3F519C9DB19465D3 . 198144 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\netman.dll

[-] 2008-04-14 . 7F791C1C9D3FEC5D3F519C9DB19465D3 . 198144 . . [5.1.2600.5512] . . c:\windows\system32\netman.dll

[-] 2004-08-04 . D26EFF3B5C1ECE26BE3B7AC630D03331 . 198144 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\netman.dll

 

[-] 2008-04-14 . 9741942A86E579231D3C41AA51DE042F . 409088 . . [6.7.2600.5512] . . c:\windows\ServicePackFiles\i386\qmgr.dll

[-] 2008-04-14 . 9741942A86E579231D3C41AA51DE042F . 409088 . . [6.7.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\qmgr.dll

[-] 2008-04-14 . 9741942A86E579231D3C41AA51DE042F . 409088 . . [6.7.2600.5512] . . c:\windows\system32\qmgr.dll

[-] 2008-04-14 . 9741942A86E579231D3C41AA51DE042F . 409088 . . [6.7.2600.5512] . . c:\windows\system32\bits\qmgr.dll

[-] 2004-08-04 . FAA2463DCDB539D78142E48324C64305 . 382464 . . [6.6.2600.2180] . . c:\windows\$NtServicePackUninstall$\qmgr.dll

 

[-] 2009-02-09 . 4538B0C2A67E774F4BB7D4AC1E1036A1 . 401408 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\rpcss.dll

[-] 2009-02-09 . 4538B0C2A67E774F4BB7D4AC1E1036A1 . 401408 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3QFE\rpcss.dll

[-] 2009-02-09 . 87DADC3F6E6CD5AAEB913E19CBFF922C . 401408 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3GDR\rpcss.dll

[-] 2009-02-09 . 87DADC3F6E6CD5AAEB913E19CBFF922C . 401408 . . [5.1.2600.5755] . . c:\windows\system32\rpcss.dll

[-] 2009-02-09 . 87DADC3F6E6CD5AAEB913E19CBFF922C . 401408 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\rpcss.dll

[-] 2009-02-09 . 976DFC5E0B6DDD87F939CF4948F2913A . 399360 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2GDR\rpcss.dll

[-] 2009-02-09 . DF462BB56B6FA6DEA8B056BB8D88BC68 . 401408 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2QFE\rpcss.dll

[-] 2008-04-14 . CA6C886E70BCD38C4891E26CB4ABD2EB . 399360 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\rpcss.dll

[-] 2008-04-14 . CA6C886E70BCD38C4891E26CB4ABD2EB . 399360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\rpcss.dll

[-] 2008-04-14 . CA6C886E70BCD38C4891E26CB4ABD2EB . 399360 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\rpcss.dll

[-] 2004-08-04 . 94B83B61A9436F00E28E895AF8E55091 . 395776 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\rpcss.dll

 

[-] 2009-02-09 . 8870B0C4A094C1CE80CEA6F85FA38FF2 . 110592 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3GDR\services.exe

[-] 2009-02-09 . 8870B0C4A094C1CE80CEA6F85FA38FF2 . 110592 . . [5.1.2600.5755] . . c:\windows\system32\services.exe

[-] 2009-02-09 . 8870B0C4A094C1CE80CEA6F85FA38FF2 . 110592 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\services.exe

[-] 2009-02-09 . 5DD875F92626DC3C8F46AB3E6CC1C98E . 110592 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\services.exe

[-] 2009-02-09 . 5DD875F92626DC3C8F46AB3E6CC1C98E . 110592 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3QFE\services.exe

[-] 2009-02-09 . 3B41CF1E48524775796C0A4AAA92E26B . 110592 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2GDR\services.exe

[-] 2009-02-09 . 056EDFF8EFA8D44CA9C322BA9B10ECFF . 110592 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2QFE\services.exe

[-] 2008-04-14 . 9436FEE6DF0F12AABDE97BEA8501B538 . 108544 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\services.exe

[-] 2008-04-14 . 9436FEE6DF0F12AABDE97BEA8501B538 . 108544 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\services.exe

[-] 2008-04-14 . 9436FEE6DF0F12AABDE97BEA8501B538 . 108544 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\services.exe

[-] 2004-08-04 . 0DF00535E2F5AEFAEAD3A800F75137AF . 108032 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\services.exe

 

[-] 2008-04-14 . AC6A8CEAAF03081DA74EE70EA2124495 . 57856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\spoolsv.exe

[-] 2008-04-14 . AC6A8CEAAF03081DA74EE70EA2124495 . 57856 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\spoolsv.exe

[-] 2008-04-14 . AC6A8CEAAF03081DA74EE70EA2124495 . 57856 . . [5.1.2600.5512] . . c:\windows\system32\spoolsv.exe

[-] 2004-08-04 . 5770628BC7A7A3E49E7D4426EE60BEE6 . 57856 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\spoolsv.exe

 

[-] 2008-04-14 . ABD2D070BE76A9386A0A283A332E3862 . 507904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\winlogon.exe

[-] 2008-04-14 . ABD2D070BE76A9386A0A283A332E3862 . 507904 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\winlogon.exe

[-] 2008-04-14 . ABD2D070BE76A9386A0A283A332E3862 . 507904 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe

[-] 2004-08-04 . 3E080D3D4F81B0638766CCC4D7707D10 . 502272 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\winlogon.exe

 

[-] 2008-04-14 . EBBEC1CFFA49A5442AD37AB4A619E831 . 617472 . . [5.82] . . c:\windows\ServicePackFiles\i386\comctl32.dll

[-] 2008-04-14 . EBBEC1CFFA49A5442AD37AB4A619E831 . 617472 . . [5.82] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\comctl32.dll

[-] 2008-04-14 . EBBEC1CFFA49A5442AD37AB4A619E831 . 617472 . . [5.82] . . c:\windows\system32\comctl32.dll

[-] 2008-04-14 . 4C3DAA3ACEFD864BB355379035005593 . 1054208 . . [6.0] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\asms\60\msft\windows\common\controls\comctl32.dll

[-] 2004-08-04 . 5ED72EA9559BDC4CFF5122E7DFD41337 . 611328 . . [5.82] . . c:\windows\$NtServicePackUninstall$\comctl32.dll

 

[-] 2008-04-14 . 04FD6585508A7320B2C7453CED231D6B . 62464 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\cryptsvc.dll

[-] 2008-04-14 . 04FD6585508A7320B2C7453CED231D6B . 62464 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\cryptsvc.dll

[-] 2008-04-14 . 04FD6585508A7320B2C7453CED231D6B . 62464 . . [5.1.2600.5512] . . c:\windows\system32\cryptsvc.dll

[-] 2004-08-04 . 2E0BCB4A44E781182953D34D43F57E7F . 60416 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\cryptsvc.dll

 

[-] 2008-07-07 20:32 . CD4CA297537422B3C836F558EB1813C9 . 253952 . . [2001.12.4414.320] . . c:\windows\SoftwareDistribution\Download\81e128e5904afff015389b7b983ded46\sp2gdr\es.dll

[-] 2008-07-07 20:29 . 01CEC6DE315F1A06CE5AA70009C6979E . 253952 . . [2001.12.4414.706] . . c:\windows\SoftwareDistribution\Download\81e128e5904afff015389b7b983ded46\sp3gdr\es.dll

[-] 2008-07-07 20:29 . 01CEC6DE315F1A06CE5AA70009C6979E . 253952 . . [2001.12.4414.706] . . c:\windows\system32\es.dll

[-] 2008-07-07 20:29 . 01CEC6DE315F1A06CE5AA70009C6979E . 253952 . . [2001.12.4414.706] . . c:\windows\system32\dllcache\es.dll

[-] 2008-07-07 20:25 . 66FD60CBE71E38FBF2EC6841D07AA5C3 . 253952 . . [2001.12.4414.706] . . c:\windows\$hf_mig$\KB950974\SP3QFE\es.dll

[-] 2008-07-07 20:23 . 2E8BB8E821E584DA53F6CEDA427BCA4E . 253952 . . [2001.12.4414.320] . . c:\windows\SoftwareDistribution\Download\81e128e5904afff015389b7b983ded46\sp2qfe\es.dll

[-] 2008-04-14 16:04 . 4EC63804DC5809DC0D0BE0AB1EFA0E9E . 246272 . . [2001.12.4414.701] . . c:\windows\$NtUninstallKB950974$\es.dll

[-] 2008-04-14 16:04 . 4EC63804DC5809DC0D0BE0AB1EFA0E9E . 246272 . . [2001.12.4414.701] . . c:\windows\ServicePackFiles\i386\es.dll

[-] 2008-04-14 16:04 . 4EC63804DC5809DC0D0BE0AB1EFA0E9E . 246272 . . [2001.12.4414.701] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\es.dll

[-] 2004-08-04 12:00 . 40D5BBA450D4D639394B1B042C8DBA56 . 243200 . . [2001.12.4414.258] . . c:\windows\$NtServicePackUninstall$\es.dll

 

[-] 2008-04-14 . E95CDEAC9C6B69DF3F414B765CF62040 . 110080 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\imm32.dll

[-] 2008-04-14 . E95CDEAC9C6B69DF3F414B765CF62040 . 110080 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\imm32.dll

[-] 2008-04-14 . E95CDEAC9C6B69DF3F414B765CF62040 . 110080 . . [5.1.2600.5512] . . c:\windows\system32\imm32.dll

[-] 2004-08-04 . D7A091CEBBD237232110BA876FC49033 . 110080 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\imm32.dll

 

[-] 2008-04-14 . 619B0747C67FB805583B1D75AAA72402 . 19968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\linkinfo.dll

[-] 2008-04-14 . 619B0747C67FB805583B1D75AAA72402 . 19968 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\linkinfo.dll

[-] 2008-04-14 . 619B0747C67FB805583B1D75AAA72402 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\linkinfo.dll

[-] 2004-08-04 . BE6D60A5749C6526107077FA6B05B4E5 . 18944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\linkinfo.dll

 

[-] 2008-04-14 . 8EA9F199253137816A92871F1B98CF0B . 22016 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lpk.dll

[-] 2008-04-14 . 8EA9F199253137816A92871F1B98CF0B . 22016 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\lpk.dll

[-] 2008-04-14 . 8EA9F199253137816A92871F1B98CF0B . 22016 . . [5.1.2600.5512] . . c:\windows\system32\lpk.dll

[-] 2004-08-04 . FB7048CAFAEC5B78D3F1810FB677C7BE . 22016 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\lpk.dll

 

[7] 2009-12-22 . 58C7E6B4BFF6EAD90BAD88D156871DDF . 3084800 . . [6.00.2900.3660] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp2gdr\mshtml.dll

[7] 2009-12-22 . 251540269A6CEA1ECAF3B95BC583A845 . 3092480 . . [6.00.2900.3660] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp2qfe\mshtml.dll

[7] 2009-12-22 . A8B6C96AEB9115FE69F1DB095D1B8802 . 3092480 . . [6.00.2900.5921] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp3gdr\mshtml.dll

[7] 2009-12-22 . 7CB1F91DE8B2A54A87DC3655412EF50A . 3094528 . . [6.00.2900.5921] . . c:\windows\$hf_mig$\KB978207\SP3QFE\mshtml.dll

[7] 2009-12-22 . 7CB1F91DE8B2A54A87DC3655412EF50A . 3094528 . . [6.00.2900.5921] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp3qfe\mshtml.dll

[-] 2009-12-21 . 8AC2C2EBD245C752ACA1F4AACE96A9CB . 5942784 . . [8.00.6001.18876] . . c:\windows\SoftwareDistribution\Download\281f631aeb22c0ba06ccd0d322de01a5\SP3GDR\mshtml.dll

[-] 2009-12-21 . 8AC2C2EBD245C752ACA1F4AACE96A9CB . 5942784 . . [8.00.6001.18876] . . c:\windows\system32\mshtml.dll

[-] 2009-12-21 . 8AC2C2EBD245C752ACA1F4AACE96A9CB . 5942784 . . [8.00.6001.18876] . . c:\windows\system32\dllcache\mshtml.dll

[-] 2009-12-21 . C61D223B5732174971C4B5115CF97A6C . 5945856 . . [8.00.6001.22967] . . c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\mshtml.dll

[-] 2009-12-21 . C61D223B5732174971C4B5115CF97A6C . 5945856 . . [8.00.6001.22967] . . c:\windows\SoftwareDistribution\Download\281f631aeb22c0ba06ccd0d322de01a5\SP3QFE\mshtml.dll

[-] 2009-10-29 . 84C4556B441B4D209C48BD37ACD4A690 . 5940736 . . [8.00.6001.18854] . . c:\windows\ie8updates\KB978207-IE8\mshtml.dll

[-] 2009-10-29 . 84C4556B441B4D209C48BD37ACD4A690 . 5940736 . . [8.00.6001.18854] . . c:\windows\SoftwareDistribution\Download\7231a52675ed6f6f1e8dae4d7d1ae04c\SP3GDR\mshtml.dll

[-] 2009-10-29 . 791436583556C0BC32753598C3196769 . 5944320 . . [8.00.6001.22945] . . c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\mshtml.dll

[-] 2009-10-29 . 791436583556C0BC32753598C3196769 . 5944320 . . [8.00.6001.22945] . . c:\windows\SoftwareDistribution\Download\7231a52675ed6f6f1e8dae4d7d1ae04c\SP3QFE\mshtml.dll

[-] 2009-10-22 . 1A1170B452E3D6132E91BF25C5CB4A10 . 5943296 . . [8.00.6001.22942] . . c:\windows\$hf_mig$\KB976749-IE8\SP3QFE\mshtml.dll

[-] 2009-08-29 . 2A10826194D928EFD82AA50C96712E5F . 5940224 . . [8.00.6001.18828] . . c:\windows\ie8updates\KB976749-IE8\mshtml.dll

[-] 2009-08-29 . E22E865907E73E7FA2BC6B80A128FD69 . 5942272 . . [8.00.6001.22918] . . c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\mshtml.dll

[-] 2009-07-19 . AA48D80B3611AD33F35F34AD8A546EE5 . 5938176 . . [8.00.6001.22902] . . c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\mshtml.dll

[-] 2009-07-19 . A77E66F54E651BBA360D93CD0F97D92F . 5937152 . . [8.00.6001.18812] . . c:\windows\ie8updates\KB974455-IE8\mshtml.dll

[-] 2009-05-13 . 543FA026FCEF227EE9E7BCE509752AD7 . 5936128 . . [8.00.6001.22873] . . c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\mshtml.dll

[-] 2009-05-13 . BD11926D3DF25513194A4B2E2BCF292E . 5936128 . . [8.00.6001.18783] . . c:\windows\ie8updates\KB972260-IE8\mshtml.dll

[-] 2009-03-08 . D469A0EBA2EF5C6BEE8065B7E3196E5E . 5937152 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB976325-IE8\mshtml.dll

[-] 2009-03-08 . D469A0EBA2EF5C6BEE8065B7E3196E5E . 5937152 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB969897-IE8\mshtml.dll

[-] 2009-02-21 . FE048E56B779B4C3C8C542BDBF59D925 . 3596800 . . [7.00.6000.21015] . . c:\windows\$hf_mig$\KB963027-IE7\SP3QFE\mshtml.dll

[-] 2009-01-16 . 9E7BB7FADDE9C959BACF0C73E0258E13 . 3594752 . . [7.00.6000.16809] . . c:\windows\ie7updates\KB963027-IE7\mshtml.dll

[-] 2009-01-16 . 5A33E1166BEDA8484A89D240EA060245 . 3596288 . . [7.00.6000.20996] . . c:\windows\$hf_mig$\KB961260-IE7\SP2QFE\mshtml.dll

[-] 2008-12-13 . EA41E6964683D1A715F5EBDF26EB0628 . 3593216 . . [7.00.6000.16788] . . c:\windows\ie7updates\KB961260-IE7\mshtml.dll

[-] 2008-12-13 . 1FEE7A02A3E13E86A1629F1C98A9248E . 3594752 . . [7.00.6000.20973] . . c:\windows\$hf_mig$\KB960714-IE7\SP2QFE\mshtml.dll

[-] 2008-10-17 . 7D84D9BA4FEB3B267C4A0049B213A17B . 3593216 . . [7.00.6000.16762] . . c:\windows\ie7updates\KB960714-IE7\mshtml.dll

[-] 2008-10-16 . 52519FE918C19FA2CEE70B53284BDA31 . 3595264 . . [7.00.6000.20935] . . c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\mshtml.dll

[-] 2008-08-27 . A71E35F297E9884D7DF669D479F796F8 . 3593216 . . [7.00.6000.16735] . . c:\windows\ie7updates\KB958215-IE7\mshtml.dll

[-] 2008-08-26 . D0F7AF708E7027BE4887D353289E775D . 3594752 . . [7.00.6000.20900] . . c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\mshtml.dll

[-] 2008-06-25 . 5D05E6BF588DC21D2864F1741DD0026D . 3088896 . . [6.00.2900.5626] . . c:\windows\SoftwareDistribution\Download\b1caa8833edad68b8615b04e88571d60\sp3qfe\mshtml.dll

[-] 2008-06-24 . 3287E3E8F9445B60472E7C010E95CE9B . 3592192 . . [7.00.6000.16705] . . c:\windows\ie7updates\KB956390-IE7\mshtml.dll

[-] 2008-06-24 . 3287E3E8F9445B60472E7C010E95CE9B . 3592192 . . [7.00.6000.16705] . . c:\windows\SoftwareDistribution\Download\b18d8ea58b78a61167e23f47d2b9dc98\SP2GDR\mshtml.dll

[-] 2008-06-23 . 99C425240D7BAEC6A9890CAA8A6EF07C . 3594240 . . [7.00.6000.20861] . . c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\mshtml.dll

[-] 2008-06-23 . 99C425240D7BAEC6A9890CAA8A6EF07C . 3594240 . . [7.00.6000.20861] . . c:\windows\SoftwareDistribution\Download\b18d8ea58b78a61167e23f47d2b9dc98\SP2QFE\mshtml.dll

[-] 2008-06-23 . D55470DB84CB431546D41683AB969568 . 3088384 . . [6.00.2900.5626] . . c:\windows\SoftwareDistribution\Download\b1caa8833edad68b8615b04e88571d60\sp3gdr\mshtml.dll

[-] 2008-04-14 . ABAC4EE83DE2DA38BAB7F65A8146A7A5 . 3066880 . . [6.00.2900.5512] . . c:\windows\ie7\mshtml.dll

[-] 2008-04-14 . ABAC4EE83DE2DA38BAB7F65A8146A7A5 . 3066880 . . [6.00.2900.5512] . . c:\windows\ie8\mshtml.dll

[-] 2008-04-14 . ABAC4EE83DE2DA38BAB7F65A8146A7A5 . 3066880 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\mshtml.dll

[-] 2008-04-14 . ABAC4EE83DE2DA38BAB7F65A8146A7A5 . 3066880 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\mshtml.dll

[-] 2007-08-13 . C6EC2493346ED8888A549F59210A8ED3 . 3578368 . . [7.00.5730.13] . . c:\windows\ie7updates\KB953838-IE7\mshtml.dll

[-] 2004-08-04 . 59B5A7634968B3581DE89F4A4E264D4C . 3003392 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\mshtml.dll

 

[-] 2008-04-14 . 7DF5CF86D9C13E74D507928C0D0336B4 . 343040 . . [7.0.2600.5512] . . c:\windows\ServicePackFiles\i386\msvcrt.dll

[-] 2008-04-14 . 7DF5CF86D9C13E74D507928C0D0336B4 . 343040 . . [7.0.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\msvcrt.dll

[-] 2008-04-14 . 7DF5CF86D9C13E74D507928C0D0336B4 . 343040 . . [7.0.2600.5512] . . c:\windows\system32\msvcrt.dll

[-] 2008-04-14 . B2CDBFF333D361A9CE81B08C46A8920F . 343040 . . [7.0.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\asms\70\msft\windows\mswincrt\msvcrt.dll

[-] 2004-08-04 . A2645A79B4988F4939CFBD796280289C . 343040 . . [7.0.2600.2180] . . c:\windows\$NtServicePackUninstall$\msvcrt.dll

 

[-] 2008-06-20 . BAA1DE3A083F4120840BA929A7366867 . 247296 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp3gdr\mswsock.dll

[-] 2008-06-20 . BAA1DE3A083F4120840BA929A7366867 . 247296 . . [5.1.2600.5625] . . c:\windows\system32\mswsock.dll

[-] 2008-06-20 . BAA1DE3A083F4120840BA929A7366867 . 247296 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\mswsock.dll

[-] 2008-06-20 . B19355968C355A918F9A3E0B12AA1523 . 247296 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll

[-] 2008-06-20 . D05ED17C8AF0F0124A616D9E40754976 . 247296 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp2gdr\mswsock.dll

[-] 2008-06-20 . 158DE3426F164E76994B7B7967310787 . 247296 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp2qfe\mswsock.dll

[-] 2008-04-14 . BABB92BC3369AC9E2DD47DB5976A11D0 . 247296 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\mswsock.dll

[-] 2008-04-14 . BABB92BC3369AC9E2DD47DB5976A11D0 . 247296 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\mswsock.dll

[-] 2008-04-14 . BABB92BC3369AC9E2DD47DB5976A11D0 . 247296 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\mswsock.dll

[-] 2004-08-04 . 85D58E28D38F3E3B6E6C6912BFB9562D . 247296 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\mswsock.dll

 

[-] 2009-02-06 . 132A5BBF7FB14BAE44D8803A34E73A96 . 408064 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\69ec2a293bc0096e26a37c0767faca2e\sp2qfe\netlogon.dll

[-] 2009-02-06 . 132A5BBF7FB14BAE44D8803A34E73A96 . 408064 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\9cb7a986d9ff777d70da2507928f4a7a\sp2qfe\netlogon.dll

[-] 2008-04-14 . 4F4A16EAEB932AE413E48923E6A400E0 . 407040 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netlogon.dll

[-] 2008-04-14 . 4F4A16EAEB932AE413E48923E6A400E0 . 407040 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\netlogon.dll

[-] 2008-04-14 . 4F4A16EAEB932AE413E48923E6A400E0 . 407040 . . [5.1.2600.5512] . . c:\windows\system32\netlogon.dll

[-] 2004-08-04 . A6FD3341EC1A98A31B044C6E0DAF8F26 . 407040 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\netlogon.dll

 

[-] 2009-12-10 . C1D460C98586653DE8F3DF4487B1C40A . 2190080 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165-v2\SP3QFE\ntoskrnl.exe

[-] 2009-12-10 . C1D460C98586653DE8F3DF4487B1C40A . 2190080 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP3QFE\ntoskrnl.exe

[-] 2009-12-09 . C1D460C98586653DE8F3DF4487B1C40A . 2190080 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165\SP3QFE\ntoskrnl.exe

[-] 2009-12-09 . 21B53B13819E72A55C4A7D82B625ED7F . 2181120 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP2GDR\ntoskrnl.exe

[-] 2009-12-09 . 4B72FDFADE98CCA3F2552EA26F86B630 . 2186752 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP2QFE\ntoskrnl.exe

[-] 2009-12-09 . 5455BC01E754F1E1E1EA0C61586F1A18 . 2189952 . . [5.1.2600.5913] . . c:\windows\Driver Cache\i386\ntoskrnl.exe

[-] 2009-12-09 . 5455BC01E754F1E1E1EA0C61586F1A18 . 2189952 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP3GDR\ntoskrnl.exe

[-] 2009-12-09 . 095A9D1E0F27DDE714A28BC55579E359 . 2146304 . . [5.1.2600.5913] . . c:\windows\system32\ntoskrnl.exe

[-] 2009-12-09 . 5455BC01E754F1E1E1EA0C61586F1A18 . 2189952 . . [5.1.2600.5913] . . c:\windows\system32\dllcache\ntoskrnl.exe

[-] 2009-08-04 . A6C4211F1A258869C05378DC60B97E61 . 2190080 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3QFE\ntoskrnl.exe

[-] 2009-02-10 . A9B77A48089BA2B465243F757EDB3691 . 2189952 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3QFE\ntoskrnl.exe

[-] 2009-02-10 . A9B77A48089BA2B465243F757EDB3691 . 2189952 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe

[-] 2009-02-09 . DEED42460E59383B37E38250F2AA552F . 2181248 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2GDR\ntoskrnl.exe

[-] 2009-02-09 . 7FA5B4A962F2A9DF8049A913D0749D6C . 2186880 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2QFE\ntoskrnl.exe

[-] 2009-02-09 . 9997BBBC842F134DB32321E1618572C8 . 2189824 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3GDR\ntoskrnl.exe

[-] 2009-02-09 . 9D1261FF3BDE3232A9C84ACA080A2448 . 2146304 . . [5.1.2600.5755] . . c:\windows\$NtUninstallKB977165-v2$\ntoskrnl.exe

[-] 2008-08-14 . 1A43A9EF689A90E3D914FAC8BB71C084 . 2189952 . . [5.1.2600.5657] . . c:\windows\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe

[-] 2008-04-14 . 141A27527788DD5CE5C3D85BB937EE5E . 2189824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntoskrnl.exe

[-] 2008-04-14 . 141A27527788DD5CE5C3D85BB937EE5E . 2189824 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ntoskrnl.exe

[-] 2008-04-14 . F1471E7F81CA6C20129D3A7529EDFD86 . 2146304 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\ntoskrnl.exe

[-] 2004-08-04 . 9FDBB2B041EA089E9F83EFA8BC57F868 . 2149376 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ntoskrnl.exe

 

[-] 2008-04-14 . 477B6E1192C640FDDD6899255370276D . 17408 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\powrprof.dll

[-] 2008-04-14 . 477B6E1192C640FDDD6899255370276D . 17408 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\powrprof.dll

[-] 2008-04-14 . 477B6E1192C640FDDD6899255370276D . 17408 . . [6.00.2900.5512] . . c:\windows\system32\powrprof.dll

[-] 2004-08-04 . E893663BA7306E29630239795F50DC0B . 17408 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\powrprof.dll

 

[-] 2008-04-14 . 3B50B494647E60CE6AC516E3F5C82B25 . 184832 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\scecli.dll

[-] 2008-04-14 . 3B50B494647E60CE6AC516E3F5C82B25 . 184832 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\scecli.dll

[-] 2008-04-14 . 3B50B494647E60CE6AC516E3F5C82B25 . 184832 . . [5.1.2600.5512] . . c:\windows\system32\scecli.dll

[-] 2004-08-04 . 24BADA1C3795CB877C67E0F2F8BBAD1F . 183808 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\scecli.dll

 

[-] 2008-04-14 . 142DA4249650F32DF9B8BBADAF42BCC4 . 5120 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfc.dll

[-] 2008-04-14 . 142DA4249650F32DF9B8BBADAF42BCC4 . 5120 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\sfc.dll

[-] 2008-04-14 . 142DA4249650F32DF9B8BBADAF42BCC4 . 5120 . . [5.1.2600.5512] . . c:\windows\system32\sfc.dll

[-] 2004-08-04 . EFDB74A669D6085FE3080D08E1F3FEAF . 5120 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\sfc.dll

 

[-] 2008-04-14 . 6CCEF19D7301D9861F90E299C798AD3F . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\svchost.exe

[-] 2008-04-14 . 6CCEF19D7301D9861F90E299C798AD3F . 14336 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\svchost.exe

[-] 2008-04-14 . 6CCEF19D7301D9861F90E299C798AD3F . 14336 . . [5.1.2600.5512] . . c:\windows\system32\svchost.exe

[-] 2004-08-04 . 22D8A75754B7B9ECC4753E3C09A56B18 . 14336 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\svchost.exe

 

[-] 2008-04-14 . 18261106524F7A93CECEACDC03A5B989 . 249856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tapisrv.dll

[-] 2008-04-14 . 18261106524F7A93CECEACDC03A5B989 . 249856 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\tapisrv.dll

[-] 2008-04-14 . 18261106524F7A93CECEACDC03A5B989 . 249856 . . [5.1.2600.5512] . . c:\windows\system32\tapisrv.dll

[-] 2004-08-04 . 5298D6FB9307190052E85F0D89C91A99 . 246272 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\tapisrv.dll

 

[-] 2008-04-14 . E3CF0EC59316EA8E856DB1E1F442CD57 . 578560 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\user32.dll

[-] 2008-04-14 . E3CF0EC59316EA8E856DB1E1F442CD57 . 578560 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\user32.dll

[-] 2008-04-14 . E3CF0EC59316EA8E856DB1E1F442CD57 . 578560 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll

[-] 2004-08-04 . 3E9523A6915656F639A49EBF8453CA00 . 577024 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\user32.dll

 

[-] 2008-04-14 . 317799A2E42B5EA048A8A70F482CBA9F . 26112 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\userinit.exe

[-] 2008-04-14 . 317799A2E42B5EA048A8A70F482CBA9F . 26112 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\userinit.exe

[-] 2008-04-14 . 317799A2E42B5EA048A8A70F482CBA9F . 26112 . . [5.1.2600.5512] . . c:\windows\system32\userinit.exe

[-] 2004-08-04 . 452202227D7A5020D058D49106C0B872 . 24576 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\userinit.exe

 

[7] 2009-12-22 . D1963B5AD72AD03708F8E4488C97AD6E . 662528 . . [6.00.2900.3660] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp2gdr\wininet.dll

[7] 2009-12-22 . CAED0A17F660CEEB44C7139C3CF1DB59 . 669184 . . [6.00.2900.3660] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp2qfe\wininet.dll

[7] 2009-12-22 . F630B944117DE586E50AA9CF3602A285 . 667648 . . [6.00.2900.5921] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp3gdr\wininet.dll

[7] 2009-12-22 . 690F72C01CAD42433DE3D780BEEEC980 . 669184 . . [6.00.2900.5921] . . c:\windows\$hf_mig$\KB978207\SP3QFE\wininet.dll

[7] 2009-12-22 . 690F72C01CAD42433DE3D780BEEEC980 . 669184 . . [6.00.2900.5921] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp3qfe\wininet.dll

[-] 2009-12-21 . 5697BB13923C753C54697FBDFFB6FB0E . 916480 . . [8.00.6001.18876] . . c:\windows\SoftwareDistribution\Download\281f631aeb22c0ba06ccd0d322de01a5\SP3GDR\wininet.dll

[-] 2009-12-21 . 5697BB13923C753C54697FBDFFB6FB0E . 916480 . . [8.00.6001.18876] . . c:\windows\system32\wininet.dll

[-] 2009-12-21 . 5697BB13923C753C54697FBDFFB6FB0E . 916480 . . [8.00.6001.18876] . . c:\windows\system32\dllcache\wininet.dll

[-] 2009-12-21 . 493D1BB6DE014EC0558F61D5EE303260 . 916480 . . [8.00.6001.22967] . . c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\wininet.dll

[-] 2009-12-21 . 493D1BB6DE014EC0558F61D5EE303260 . 916480 . . [8.00.6001.22967] . . c:\windows\SoftwareDistribution\Download\281f631aeb22c0ba06ccd0d322de01a5\SP3QFE\wininet.dll

[-] 2009-10-29 . 36583A6EA9E90CA8154D98E12C56BA5B . 916480 . . [8.00.6001.18854] . . c:\windows\ie8updates\KB978207-IE8\wininet.dll

[-] 2009-10-29 . 36583A6EA9E90CA8154D98E12C56BA5B . 916480 . . [8.00.6001.18854] . . c:\windows\SoftwareDistribution\Download\7231a52675ed6f6f1e8dae4d7d1ae04c\SP3GDR\wininet.dll

[-] 2009-10-29 . 12B2C000E7DFA661969BB79B145E5829 . 916480 . . [8.00.6001.22945] . . c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\wininet.dll

[-] 2009-10-29 . 12B2C000E7DFA661969BB79B145E5829 . 916480 . . [8.00.6001.22945] . . c:\windows\SoftwareDistribution\Download\7231a52675ed6f6f1e8dae4d7d1ae04c\SP3QFE\wininet.dll

[-] 2009-08-29 . 00F8442F558E57497BD7770E23C0CB37 . 916480 . . [8.00.6001.22918] . . c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\wininet.dll

[-] 2009-07-03 . D6D7072A4298A8D0CCE7C66807884865 . 915456 . . [8.00.6001.22896] . . c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\wininet.dll

[-] 2009-07-03 . C36047A4F492E8BD84AF38C00D200FDB . 915456 . . [8.00.6001.18806] . . c:\windows\ie8updates\KB974455-IE8\wininet.dll

[-] 2009-05-13 . F141583C843A96E3D3A293317C71202A . 915456 . . [8.00.6001.22873] . . c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\wininet.dll

[-] 2009-05-13 . 8E5C9B190A503287EDC58AFD72AB400F . 915456 . . [8.00.6001.18783] . . c:\windows\ie8updates\KB972260-IE8\wininet.dll

[-] 2009-03-08 . 6CE32F7778061CCC5814D5E0F282D369 . 914944 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB976325-IE8\wininet.dll

[-] 2009-03-08 . 6CE32F7778061CCC5814D5E0F282D369 . 914944 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB969897-IE8\wininet.dll

[-] 2009-03-03 . F43B023F7B8787130195B8022D7C9AB8 . 828416 . . [7.00.6000.21020] . . c:\windows\$hf_mig$\KB963027-IE7\SP3QFE\wininet.dll

[-] 2008-12-20 . 25760D831FB2C82B6C7D14E27A00F9F3 . 827904 . . [7.00.6000.20978] . . c:\windows\$hf_mig$\KB961260-IE7\SP2QFE\wininet.dll

[-] 2008-12-20 . 1AAB5F08D42E5C08F9614FF5EB1FF939 . 826368 . . [7.00.6000.16791] . . c:\windows\ie7updates\KB963027-IE7\wininet.dll

[-] 2008-10-16 . 046DA003D4E4664EBBF9EA40B79BDC28 . 826368 . . [7.00.6000.16762] . . c:\windows\ie7updates\KB961260-IE7\wininet.dll

[-] 2008-10-16 . E54A023EEB7DCF92ADD34940679078E2 . 827904 . . [7.00.6000.20935] . . c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\wininet.dll

[-] 2008-08-26 . 27431705F27B772F4F7903E4BF96EFB2 . 827904 . . [7.00.6000.20900] . . c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\wininet.dll

[-] 2008-08-26 . 91A76D98B206723D21612AECBC1D65CE . 826368 . . [7.00.6000.16735] . . c:\windows\ie7updates\KB958215-IE7\wininet.dll

[-] 2008-06-23 . CE365A16790EC5C5DDDC78820949C02E . 826368 . . [7.00.6000.16705] . . c:\windows\ie7updates\KB956390-IE7\wininet.dll

[-] 2008-06-23 . CE365A16790EC5C5DDDC78820949C02E . 826368 . . [7.00.6000.16705] . . c:\windows\SoftwareDistribution\Download\b18d8ea58b78a61167e23f47d2b9dc98\SP2GDR\wininet.dll

[-] 2008-06-23 . 763148C042469C197933AC956E566226 . 827904 . . [7.00.6000.20861] . . c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\wininet.dll

[-] 2008-06-23 . 763148C042469C197933AC956E566226 . 827904 . . [7.00.6000.20861] . . c:\windows\SoftwareDistribution\Download\b18d8ea58b78a61167e23f47d2b9dc98\SP2QFE\wininet.dll

[-] 2008-06-23 . FC3E1BFFCE916684241709D210DCCDBB . 666624 . . [6.00.2900.5626] . . c:\windows\SoftwareDistribution\Download\b1caa8833edad68b8615b04e88571d60\sp3gdr\wininet.dll

[-] 2008-06-23 . 43CFEBFB41F304E1CBFD1D89EA2BC1F0 . 667136 . . [6.00.2900.5626] . . c:\windows\SoftwareDistribution\Download\b1caa8833edad68b8615b04e88571d60\sp3qfe\wininet.dll

[-] 2008-04-14 . B8D98F0CDF9B1429CD95497AD9995078 . 666624 . . [6.00.2900.5512] . . c:\windows\ie7\wininet.dll

[-] 2008-04-14 . B8D98F0CDF9B1429CD95497AD9995078 . 666624 . . [6.00.2900.5512] . . c:\windows\ie8\wininet.dll

[-] 2008-04-14 . B8D98F0CDF9B1429CD95497AD9995078 . 666624 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\wininet.dll

[-] 2008-04-14 . B8D98F0CDF9B1429CD95497AD9995078 . 666624 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\wininet.dll

[-] 2007-08-13 . A4A0FC92358F39538A6494C42EF99FE9 . 818688 . . [7.00.5730.13] . . c:\windows\ie7updates\KB953838-IE7\wininet.dll

[-] 2004-08-04 . 9F721BD834534E75661D8F9BD1EFDCD7 . 656896 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\wininet.dll

 

[-] 2008-04-14 . 45C8F895EE6D409FC3C5911C7749D60E . 82432 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ws2_32.dll

[-] 2008-04-14 . 45C8F895EE6D409FC3C5911C7749D60E . 82432 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ws2_32.dll

[-] 2008-04-14 . 45C8F895EE6D409FC3C5911C7749D60E . 82432 . . [5.1.2600.5512] . . c:\windows\system32\ws2_32.dll

[-] 2004-08-04 . CD46885DF74086059A723209990298A9 . 82944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ws2_32.dll

 

[-] 2008-04-14 . 74BB7DCD2BFDCC0E52869DB3582CA781 . 1034240 . . [6.00.2900.5512] . . c:\windows\explorer.exe

[-] 2008-04-14 . 74BB7DCD2BFDCC0E52869DB3582CA781 . 1034240 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\explorer.exe

[-] 2008-04-14 . 74BB7DCD2BFDCC0E52869DB3582CA781 . 1034240 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\explorer.exe

[-] 2004-08-04 . 87A3C8EAD27CF3591713D629D8BCB990 . 1032704 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\explorer.exe

 

[-] 2008-04-14 . 25EDB60132F9D82CB1B7961C1D0D13F2 . 171008 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll

[-] 2008-04-14 . 25EDB60132F9D82CB1B7961C1D0D13F2 . 171008 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\srsvc.dll

[-] 2008-04-14 . 25EDB60132F9D82CB1B7961C1D0D13F2 . 171008 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll

[-] 2004-08-04 . A0A0308C26C95D75FCFB1411440C5220 . 170496 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\srsvc.dll

 

[-] 2008-04-14 . 6931B3B2E9ADD1CEAEFF480E7FFF0194 . 13824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wscntfy.exe

[-] 2008-04-14 . 6931B3B2E9ADD1CEAEFF480E7FFF0194 . 13824 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\wscntfy.exe

[-] 2008-04-14 . 6931B3B2E9ADD1CEAEFF480E7FFF0194 . 13824 . . [5.1.2600.5512] . . c:\windows\system32\wscntfy.exe

[-] 2004-08-04 . 25DC003C667F8F204F3447AC736CD30C . 13824 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\wscntfy.exe

 

[-] 2008-04-14 . 5B3D475AA8629320686FBFFBE67AB492 . 129024 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\xmlprov.dll

[-] 2008-04-14 . 5B3D475AA8629320686FBFFBE67AB492 . 129024 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\xmlprov.dll

[-] 2008-04-14 . 5B3D475AA8629320686FBFFBE67AB492 . 129024 . . [5.1.2600.5512] . . c:\windows\system32\xmlprov.dll

[-] 2004-08-04 . 1315FA775BFE769470E51221318AF34B . 129536 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\xmlprov.dll

 

[-] 2008-04-14 . 0A6DF967AE8E836D053DB46398F603E5 . 56320 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\eventlog.dll

[-] 2008-04-14 . 0A6DF967AE8E836D053DB46398F603E5 . 56320 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\eventlog.dll

[-] 2008-04-14 . 0A6DF967AE8E836D053DB46398F603E5 . 56320 . . [5.1.2600.5512] . . c:\windows\system32\eventlog.dll

[-] 2004-08-04 . 264DBC116901E89565B830B0CC20F922 . 55808 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\eventlog.dll

 

[-] 2008-04-14 . 5AF808D660A8EF98B27596481CE43E5C . 1571840 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfcfiles.dll

[-] 2008-04-14 . 5AF808D660A8EF98B27596481CE43E5C . 1571840 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\sfcfiles.dll

[-] 2008-04-14 . 5AF808D660A8EF98B27596481CE43E5C . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll

[-] 2004-08-04 . DA7EDC069A8A299A756839591AA04B8B . 1548288 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\sfcfiles.dll

 

[-] 2008-04-14 . 07F27822A1376C2DA7F8C7265015CEDC . 15360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ctfmon.exe

[-] 2008-04-14 . 07F27822A1376C2DA7F8C7265015CEDC . 15360 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ctfmon.exe

[-] 2008-04-14 . 07F27822A1376C2DA7F8C7265015CEDC . 15360 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe

[-] 2004-08-04 . FEBE82A289A6645E26B27F3A0A4D2B84 . 15360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ctfmon.exe

 

[-] 2008-04-14 . 187CA499EBD287E7BBAC5B9B7AA9321E . 135168 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\shsvcs.dll

[-] 2008-04-14 . 187CA499EBD287E7BBAC5B9B7AA9321E . 135168 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\shsvcs.dll

[-] 2008-04-14 . 187CA499EBD287E7BBAC5B9B7AA9321E . 135168 . . [6.00.2900.5512] . . c:\windows\system32\shsvcs.dll

[-] 2004-08-04 . 6004C5BFB151EC97A40118623F9AFCAD . 134656 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\shsvcs.dll

 

[-] 2008-04-14 . 66BC81FEA0C86632255B696A69BA9827 . 59904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\regsvc.dll

[-] 2008-04-14 . 66BC81FEA0C86632255B696A69BA9827 . 59904 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\regsvc.dll

[-] 2008-04-14 . 66BC81FEA0C86632255B696A69BA9827 . 59904 . . [5.1.2600.5512] . . c:\windows\system32\regsvc.dll

[-] 2004-08-04 . E6B18EF583A365649E515DAAADE1560A . 59904 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\regsvc.dll

 

[-] 2008-04-14 . C7DC69A9D8C9AB2FBCA3238C989D598F . 193024 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\schedsvc.dll

[-] 2008-04-14 . C7DC69A9D8C9AB2FBCA3238C989D598F . 193024 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\schedsvc.dll

[-] 2008-04-14 . C7DC69A9D8C9AB2FBCA3238C989D598F . 193024 . . [5.1.2600.5512] . . c:\windows\system32\schedsvc.dll

[-] 2004-08-04 . C40F9882AF2A7139AB2046C0D1E78398 . 191488 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\schedsvc.dll

 

[-] 2008-04-14 . 53FFC29DC150E0107F28F0A622FF8D1A . 71680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ssdpsrv.dll

[-] 2008-04-14 . 53FFC29DC150E0107F28F0A622FF8D1A . 71680 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ssdpsrv.dll

[-] 2008-04-14 . 53FFC29DC150E0107F28F0A622FF8D1A . 71680 . . [5.1.2600.5512] . . c:\windows\system32\ssdpsrv.dll

[-] 2004-08-04 . 7252EFDC36040FEC2C97F4A966B4EC55 . 71680 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ssdpsrv.dll

 

[-] 2008-04-14 . F89C53D455420DF4D66E45842FB3A46E . 295424 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\termsrv.dll

[-] 2008-04-14 . F89C53D455420DF4D66E45842FB3A46E . 295424 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\termsrv.dll

[-] 2008-04-14 . F89C53D455420DF4D66E45842FB3A46E . 295424 . . [5.1.2600.5512] . . c:\windows\system32\termsrv.dll

[-] 2004-08-04 . 7BA1802C39AEC78EC1D9B3B927884A9B . 295424 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\termsrv.dll

 

[-] 2004-08-04 . DECEDC736CEF3C0FFF6E981B31E73A61 . 11776 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys

 

[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\ServicePackFiles\i386\aec.sys

[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\aec.sys

[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\drivers\aec.sys

[-] 2004-08-04 12:00 . 841F385C6CFAF66B58FBD898722BB4F0 . 142464 . . [5.1.2601.2078] . . c:\windows\$NtServicePackUninstall$\aec.sys

 

[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\agp440.sys

[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\agp440.sys

[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\drivers\agp440.sys

[-] 2004-08-03 . 2C428FA0C3E3A01ED93C9B2A27D8D4BB . 42368 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\agp440.sys

 

[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ip6fw.sys

[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ip6fw.sys

[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ip6fw.sys

[-] 2004-08-04 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ip6fw.sys

 

[-] 2008-04-14 16:04 . DC16E39186F6B5D854FA8EB98E71268B . 927504 . . [4.1.0.61] . . c:\windows\ServicePackFiles\i386\mfc40u.dll

[-] 2008-04-14 16:04 . DC16E39186F6B5D854FA8EB98E71268B . 927504 . . [4.1.0.61] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\mfc40u.dll

[-] 2008-04-14 16:04 . DC16E39186F6B5D854FA8EB98E71268B . 927504 . . [4.1.0.61] . . c:\windows\system32\mfc40u.dll

[-] 2004-08-04 12:00 . 17A3CC1BC2399BBED2BE084295F410FB . 924432 . . [4.1.6140] . . c:\windows\$NtServicePackUninstall$\mfc40u.dll

 

[-] 2008-04-14 . 363E8EBAE26BB8B4987C91B4D3CE0F54 . 33792 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msgsvc.dll

[-] 2008-04-14 . 363E8EBAE26BB8B4987C91B4D3CE0F54 . 33792 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\msgsvc.dll

[-] 2008-04-14 . 363E8EBAE26BB8B4987C91B4D3CE0F54 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\msgsvc.dll

[-] 2004-08-04 . D9C0868200BA225E376259F813DE894F . 33792 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\msgsvc.dll

 

[-] 2008-04-14 16:04 . CF8E2625AF439A3F336C499ADE0C4BEC . 52224 . . [9.0.1.56] . . c:\windows\$NtUninstallWMFDist11$\mspmsnsv.dll

[-] 2008-04-14 16:04 . CF8E2625AF439A3F336C499ADE0C4BEC . 52224 . . [9.0.1.56] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\mspmsnsv.dll

[-] 2008-04-14 16:04 . CF8E2625AF439A3F336C499ADE0C4BEC . 52224 . . [9.0.1.56] . . c:\windows\system32\mspmsnsv.dll

[-] 2008-04-14 16:04 . CF8E2625AF439A3F336C499ADE0C4BEC . 52224 . . [9.0.1.56] . . c:\windows\system32\dllcache\mspmsnsv.dll

[-] 2004-08-04 12:00 . B365EED5A9639E1BE6F9D820DDBFDD0B . 52224 . . [9.0.1.56] . . c:\windows\$NtServicePackUninstall$\mspmsnsv.dll

 

[-] 2009-12-10 . 343D35310C693845A6F0FBFCCEE6F6ED . 2066944 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165-v2\SP3QFE\ntkrnlpa.exe

[-] 2009-12-10 . 343D35310C693845A6F0FBFCCEE6F6ED . 2066944 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP3QFE\ntkrnlpa.exe

[-] 2009-12-09 . 343D35310C693845A6F0FBFCCEE6F6ED . 2066944 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165\SP3QFE\ntkrnlpa.exe

[-] 2009-12-09 . 31455820AA14D8323356A59549A65496 . 2058496 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP2GDR\ntkrnlpa.exe

[-] 2009-12-09 . 6E2DBE8947813E746E362AC87209B9FB . 2063872 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP2QFE\ntkrnlpa.exe

[-] 2009-12-09 . 25318C35A78B1BF74EE31B2783DD6458 . 2066816 . . [5.1.2600.5913] . . c:\windows\Driver Cache\i386\ntkrnlpa.exe

[-] 2009-12-09 . 25318C35A78B1BF74EE31B2783DD6458 . 2066816 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP3GDR\ntkrnlpa.exe

[-] 2009-12-09 . 25318C35A78B1BF74EE31B2783DD6458 . 2066816 . . [5.1.2600.5913] . . c:\windows\system32\dllcache\ntkrnlpa.exe

[-] 2009-12-09 . D406ED420D25D672E234F53F54F742A7 . 2024960 . . [5.1.2600.5913] . . c:\windows\system32\ntkrnlpa.exe

[-] 2009-08-04 . 6568FBFE68FA181B3062896882FFECC0 . 2066944 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3QFE\ntkrnlpa.exe

[-] 2009-02-10 . 81C4A213E88283B5C1989BE75E333815 . 2066816 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3GDR\ntkrnlpa.exe

[-] 2009-02-09 . 7104CFDD0A6ECCBC2D08BFEA2790EA2F . 2058496 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2GDR\ntkrnlpa.exe

[-] 2009-02-09 . 0776DF82E2CC1D5553C94E6A7599D1B3 . 2063744 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2QFE\ntkrnlpa.exe

[-] 2009-02-09 . 381ECDBEDCAE721E43220FCC09D21C78 . 2024960 . . [5.1.2600.5755] . . c:\windows\$NtUninstallKB977165-v2$\ntkrnlpa.exe

[-] 2009-02-09 . 4F791E49AE659E3A0E148F88D887401D . 2066944 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntkrnlpa.exe

[-] 2009-02-09 . 4F791E49AE659E3A0E148F88D887401D . 2066944 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3QFE\ntkrnlpa.exe

[-] 2008-08-14 . 238671F196B8CDBC299AF346BF4F3E22 . 2066816 . . [5.1.2600.5657] . . c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe

[-] 2008-04-14 . C0F26B28557E880BB160C3BBD1155F6C . 2024960 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\ntkrnlpa.exe

[-] 2008-04-14 . 559891E5A025A92AC648D4A85EA757C5 . 2066688 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntkrnlpa.exe

[-] 2008-04-14 . 559891E5A025A92AC648D4A85EA757C5 . 2066688 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ntkrnlpa.exe

[-] 2004-08-04 . AC0284721C96C699D4893A91625293EC . 2016256 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ntkrnlpa.exe

 

[-] 2008-04-14 16:04 . 5FD9F539BAF23288D131F1B709A62807 . 435712 . . [5.1.2400.5512] . . c:\windows\ServicePackFiles\i386\ntmssvc.dll

[-] 2008-04-14 16:04 . 5FD9F539BAF23288D131F1B709A62807 . 435712 . . [5.1.2400.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ntmssvc.dll

[-] 2008-04-14 16:04 . 5FD9F539BAF23288D131F1B709A62807 . 435712 . . [5.1.2400.5512] . . c:\windows\system32\ntmssvc.dll

[-] 2004-08-04 12:00 . 4F124D35D080AFD860DAD4DC1C355249 . 435712 . . [5.1.2400.2180] . . c:\windows\$NtServicePackUninstall$\ntmssvc.dll

 

[-] 2008-04-14 . B1222A2302480D56A32C5343150BB16D . 186368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\upnphost.dll

[-] 2008-04-14 . B1222A2302480D56A32C5343150BB16D . 186368 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\upnphost.dll

[-] 2008-04-14 . B1222A2302480D56A32C5343150BB16D . 186368 . . [5.1.2600.5512] . . c:\windows\system32\upnphost.dll

[-] 2004-08-04 . 40D341373885692CD3B67303EBAA443D . 185344 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\upnphost.dll

.

(((((((((((((((((((((((((((((((((( Startpunkter i registret )))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Not* Tomma poster & legitima standardposter visas inte.

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"MsnMsgr"="c:\program\Windows Live\Messenger\MsnMsgr.Exe" [2009-07-26 3883840]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ATIPTA"="c:\program\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2006-02-09 344064]

"e-kort"="c:\program\ekort\ekort.exe" [2008-12-11 377856]

"Adobe Reader Speed Launcher"="c:\program\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]

"QuickTime Task"="c:\program\QuickTime\qttask.exe" [2009-11-10 417792]

"BDAgent"="c:\program\BitDefender\BitDefender 2009\bdagent.exe" [2009-01-09 741376]

"BitDefender Antiphishing Helper"="c:\program\BitDefender\BitDefender 2009\IEShow.exe" [2008-10-17 69632]

"SigmatelSysTrayApp"="stsystra.exe" [2005-03-22 339968]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

 

c:\documents and settings\Arvid\Start-meny\Program\Autostart\

OpenOffice.org 3.0.lnk - c:\program\OpenOffice.org 3\program\quickstart.exe [2008-9-12 384000]

 

c:\documents and settings\All Users\Start-meny\Program\Autostart\

BankID s„kerhetsprogram.lnk - c:\program\Personal\bin\Personal.exe [2010-2-20 939920]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"midi9"=c:\docume~1\Knutsson\LOKALA~1\Temp\gxbv.dat 2yAPFDOFNF

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Program\\Windows Live\\Messenger\\msnmsgr.exe"=

 

R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2009-12-31 28552]

R2 athsgt;athsgt;c:\windows\system32\drivers\athsgt.sys [2008-11-13 164992]

R2 BDVEDISK;BDVEDISK;c:\program\BitDefender\BitDefender 2009\BDVEDISK.sys [2008-10-06 82696]

R2 limsgt;limsgt;c:\windows\system32\drivers\limsgt.sys [2008-11-13 12544]

R3 bdfm;BDFM;c:\windows\system32\drivers\bdfm.sys [2008-09-18 111112]

R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;c:\windows\system32\drivers\bdfndisf.sys [2009-02-03 104328]

S2 gupdate;Tjänsten Google Update (gupdate);c:\program\Google\Update\GoogleUpdate.exe [2009-11-29 135664]

S3 Arrakis3;BitDefender Arrakis Server;c:\program\Delade filer\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [2008-07-17 118784]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

bdx REG_MULTI_SZ scan

.

Innehållet i mappen 'Schemalagda aktiviteter':

 

2010-03-10 c:\windows\Tasks\AppleSoftwareUpdate.job

- c:\program\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

 

2010-03-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program\Google\Update\GoogleUpdate.exe [2009-11-29 20:52]

 

2010-03-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program\Google\Update\GoogleUpdate.exe [2009-11-29 20:52]

 

2010-03-19 c:\windows\Tasks\User_Feed_Synchronization-{5CDC76FA-D26F-40B4-AAC0-705B857E5065}.job

- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]

 

2010-03-19 c:\windows\Tasks\User_Feed_Synchronization-{CD86F014-872E-4A22-BD04-837FD8F3C763}.job

- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]

.

.

------- Extra genomsökning -------

.

uStart Page = file:///C:/Documents%20and%20Settings/Knutsson/Mina%20dokument/internet/startsidan/startsida.htm

uInternet Connection Wizard,ShellNext = iexplore

FF - ProfilePath - c:\documents and settings\Knutsson\Application Data\Mozilla\Firefox\Profiles\kamm187k.default\

FF - prefs.js: browser.startup.homepage - file:///C:/Documents%20and%20Settings/Knutsson/Mina%20dokument/internet/startsidan/startsida.htm

FF - component: c:\program\ekort\components\SlimOrbAddonEkort.dll

FF - component: c:\program\Mozilla Firefox\components\FFComm.dll

FF - plugin: c:\program\Google\Google Earth\plugin\npgeplugin.dll

FF - plugin: c:\program\Google\Update\1.2.183.17\npGoogleOneClick8.dll

FF - plugin: c:\program\Personal\bin\np_prsnl.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

 

---- FIREFOX POLICY ----

c:\program\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".se");

.

- - - - FÖRÄLDRALÖSA POSTER SOM TAGITS BORT - - - -

 

HKLM-Run-IDTSysTrayApp - sttray.exe

 

 

 

**************************************************************************

 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2010-03-19 10:45

Windows 5.1.2600 Service Pack 3 NTFS

 

scanning hidden processes ...

 

scanning hidden autostart entries ...

 

scanning hidden files ...

 

scan completed successfully

hidden files: 0

 

**************************************************************************

.

--------------------- DLLer som "laddats" under processer som körs ---------------------

 

- - - - - - - > 'explorer.exe'(2524)

c:\windows\system32\webcheck.dll

c:\windows\system32\WPDShServiceObj.dll

c:\program\Whisper Technology\FTP Surfer\wtftpshx.dll

c:\windows\system32\PortableDeviceTypes.dll

c:\windows\system32\PortableDeviceApi.dll

.

------------------------ Andra processer som körs ------------------------

.

c:\windows\system32\Ati2evxx.exe

c:\windows\system32\wscntfy.exe

c:\windows\stsystra.exe

c:\windows\system32\OBroker.exe

c:\program\BitDefender\BitDefender 2009\seccenter.exe

.

**************************************************************************

.

Sluttid: 2010-03-19 10:52:56 - datorn startades om.

ComboFix-quarantined-files.txt 2010-03-19 09:52

 

Före genomsökningen: 33 206 665 216 byte ledigt

Efter genomsökningen: 34 575 056 896 byte ledigt

 

WindowsXP-KB310994-SP2-Home-BootDisk-SVE.exe

[boot loader]

timeout=2

default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS

[operating systems]

c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect

 

- - End Of File - - C13D82184557B693133C2DE4C5C7C68F

Länk till kommentar
Dela på andra webbplatser

Går det att köra MBAM nu?

 

Spara ATF-Cleaner på Skrivbordet:

 

http://www.atribune.org/ccount/click.php?id=1

 

Stäng av alla andra program, särskilt webbläsare.

Dubbelklicka på ATF-Cleaner.exe för att starta programmet.

Bocka i Select All. Tryck på Empty Selected.

 

Om du använder Firefox: Tryck på Firefox och välj Select All. Tryck på Empty Selected. Om du vill ha kvar dina lösenord så tryck No vid frågan.

 

Om du använder Opera: Tryck på Opera och välj Select All. Tryck på Empty Selected. Om du vill ha kvar dina lösenord så tryck No vid frågan.

 

Tryck på Exit i Main-menyn för att stänga programmet.

 

Obs! Detta kommer att ta bort alla cookies, om du har cookies som du vill ha kvar så får du antingen spara undan dem innan eller låta bli att välja Select All och i stället markera allt annat.

Länk till kommentar
Dela på andra webbplatser

Nu fungerade MBAM, jag fortsätter med ATF-Cleaner.

 

Loggen från MBAM:

Malwarebytes' Anti-Malware 1.44

Databasversion: 3510

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

 

2010-03-19 12:43:29

mbam-log-2010-03-19 (12-43-29).txt

 

Skanningstyp: Snabb skanning

Antal skannade objekt: 118724

Förfluten tid: 4 minute(s), 51 second(s)

 

Infekterade minnesprocesser: 0

Infekterade minnesmoduler: 0

Infekterade registernycklar: 0

Infekterade registervärden: 0

Infekterade registerdataposter: 0

Infekterade mappar: 0

Infekterade filer: 1

 

Infekterade minnesprocesser:

(Inga illasinnade poster hittades)

 

Infekterade minnesmoduler:

(Inga illasinnade poster hittades)

 

Infekterade registernycklar:

(Inga illasinnade poster hittades)

 

Infekterade registervärden:

(Inga illasinnade poster hittades)

 

Infekterade registerdataposter:

(Inga illasinnade poster hittades)

 

Infekterade mappar:

(Inga illasinnade poster hittades)

 

Infekterade filer:

C:\Documents and Settings\NetworkService\Application Data\fvgqad.dat (Malware.Trace) -> Quarantined and deleted successfully.

Länk till kommentar
Dela på andra webbplatser

Nu verkar allt fungera som vanligt igen!!! Tack för hjälpen!!!

 

Har du kunnat se i loggarna vad det var jag råkat ut för? Hade varit lite kul att kunna berätta för BitDefender vad det är de släppte igenom och inte kunde hitta.

Länk till kommentar
Dela på andra webbplatser

Nej, jag kan inte säga mer detaljerat vad datorn råkade ut för. Det var troligen någon sorts falskt program och alla antivirusprogram verkar ha svårt att hantera sådana program. Du verkar inte heller ha senaste BitDefender, dvs årsmodell 2010, och det är möjligt att det hade gått bättre om du hade haft det.

 

Dock tror jag inte att datorn är riktigt ren än utifrån ComboFix-loggen. Kan du skicka en ny ComboFix-logg så jag får se hur det ser ut nu efter MBAM.

Länk till kommentar
Dela på andra webbplatser

Aj då, var jag alltför optimistisk?

 

Jag har BitDefender 2010, men när jag blev ombedd av BD:s support att ominstallera blev det av någon anledning 2009 jag fick. Och eftersom jag undvikit att ha datorn internetansluten bytte jag inte till 2010. Men det gjorde jag för en stund sedan, när jag trodde allt var ok.

 

Här kommer en ny ComboFix-logg:

 

ComboFix 10-03-18.02 - Knutsson 2010-03-19 15:29:46.2.2 - x86

Microsoft Windows XP Home Edition 5.1.2600.3.1252.46.1053.18.3070.2394 [GMT 1:00]

Körs från: c:\documents and settings\Knutsson\Skrivbord\Fixa virus\ComboFix.exe

AV: BitDefender Antivirus *On-access scanning disabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB}

FW: BitDefender Firewall *disabled* {4055920F-2E99-48A8-A270-4243D2B8F242}

.

 

(((((((((((((((((((((((( Filer Skapade från 2010-02-19 till 2010-03-19 ))))))))))))))))))))))))))))))

.

 

2010-03-19 12:51 . 2010-03-19 12:52 -------- d-----w- c:\documents and settings\Knutsson\Application Data\Notepad++

2010-03-19 12:51 . 2010-03-19 12:51 -------- d-----w- c:\program\Notepad++

2010-03-19 12:12 . 2010-03-19 12:14 -------- d-----w- c:\documents and settings\All Users\Application Data\BitDefender

2010-03-19 12:12 . 2010-03-19 12:12 -------- d-----w- c:\program\BitDefender

2010-03-19 12:12 . 2010-03-19 12:12 -------- d-----w- c:\documents and settings\Knutsson\Application Data\BitDefender

2010-03-19 12:11 . 2010-03-19 12:12 -------- d-----w- c:\program\Delade filer\BitDefender

2010-03-19 12:04 . 2010-03-19 12:06 1287314 ----a-w- C:\BdUninstallTool2010.03.19-01.04.37.reg

2010-03-18 23:37 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2010-03-18 23:37 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys

2010-03-18 23:27 . 2010-03-18 23:27 -------- d-----w- c:\documents and settings\Knutsson\Application Data\Malwarebytes

2010-03-18 23:27 . 2010-03-19 08:55 -------- d-----w- c:\program\Malwarebytes' Anti-Malware

2010-03-18 23:27 . 2010-03-18 23:27 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes

2010-03-18 22:11 . 2009-12-11 08:38 69120 -c----w- c:\windows\system32\dllcache\iecompat.dll

2010-03-18 22:11 . 2009-12-21 19:09 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll

2010-03-18 22:11 . 2009-12-21 19:09 594432 -c----w- c:\windows\system32\dllcache\msfeeds.dll

2010-03-18 22:11 . 2009-12-21 19:09 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll

2010-03-18 22:11 . 2009-12-21 19:09 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll

2010-03-18 22:11 . 2009-12-21 19:09 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll

2010-03-18 22:11 . 2009-12-21 19:09 11070464 -c----w- c:\windows\system32\dllcache\ieframe.dll

2010-03-18 20:48 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll

2010-03-18 20:44 . 2008-04-14 15:41 79872 -c----w- c:\windows\system32\dllcache\msxml6r.dll

2010-03-18 20:44 . 2004-08-04 12:00 403 -c----w- c:\windows\system32\dllcache\npdrmv2.zip

2010-03-18 20:44 . 2004-08-04 12:00 22060 -c----w- c:\windows\system32\dllcache\npds.zip

2010-03-18 20:44 . 2008-04-14 16:05 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe

2010-03-18 20:43 . 2008-06-14 17:36 272128 -c----w- c:\windows\system32\dllcache\bthport.sys

2010-03-18 20:35 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys

2010-03-18 20:35 . 2009-07-10 13:31 1315328 -c----w- c:\windows\system32\dllcache\msoe.dll

2010-03-18 20:35 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll

2010-03-18 20:35 . 2008-04-11 19:06 691712 -c----w- c:\windows\system32\dllcache\inetcomm.dll

2010-03-18 20:34 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll

2010-03-18 20:34 . 2009-07-31 04:35 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll

2010-03-18 20:34 . 2008-04-21 21:16 217088 -c----w- c:\windows\system32\dllcache\wordpad.exe

2010-03-18 20:33 . 2009-10-23 15:28 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe

2010-03-18 20:33 . 2009-12-31 16:50 353792 -c----w- c:\windows\system32\dllcache\srv.sys

2010-03-18 20:33 . 2009-12-04 18:22 455424 -c----w- c:\windows\system32\dllcache\mrxsmb.sys

2010-03-18 19:48 . 2004-08-04 12:00 31232 -c--a-w- c:\windows\system32\dllcache\weitekp9.sys

2010-03-18 19:48 . 2004-08-04 12:00 41600 -c--a-w- c:\windows\system32\dllcache\weitekp9.dll

2010-03-18 19:48 . 2004-08-04 12:00 48256 -c--a-w- c:\windows\system32\dllcache\w32.dll

2010-03-18 19:48 . 2008-04-14 16:04 86073 -c--a-w- c:\windows\system32\dllcache\voicesub.dll

2010-03-18 19:48 . 2008-04-14 16:04 426041 -c--a-w- c:\windows\system32\dllcache\voicepad.dll

2010-03-18 19:46 . 2004-08-04 12:00 6144 -c--a-w- c:\windows\system32\dllcache\kbd101a.dll

2010-03-18 19:45 . 2001-09-06 19:33 5632 -c--a-w- c:\windows\system32\dllcache\EXCH_adsiisex.dll

2010-03-18 19:45 . 2003-04-14 20:10 16384 -c--a-w- c:\windows\system32\dllcache\tcptsat.dll

2010-03-18 19:45 . 2003-04-14 20:10 208896 -c--a-w- c:\windows\system32\dllcache\fpmmcsat.dll

2010-03-18 19:43 . 2004-08-04 12:00 16384 -c--a-w- c:\windows\system32\dllcache\isignup.exe

2010-03-18 19:35 . 2004-08-04 12:00 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll

2010-03-18 19:35 . 2004-08-04 12:00 13312 ----a-w- c:\windows\system32\irclass.dll

2010-03-18 19:35 . 2004-08-04 12:00 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll

2010-03-18 19:35 . 2004-08-04 12:00 24661 ----a-w- c:\windows\system32\spxcoins.dll

2010-03-09 18:30 . 2010-02-12 10:03 293376 ----a-w- c:\windows\system32\browserchoice.exe

2010-03-09 18:19 . 2010-03-09 18:22 429451 ----a-w- C:\BdUninstallTool2010.03.09-07.19.54.reg

2010-02-20 06:18 . 2010-02-20 06:18 -------- d-----w- c:\program\Personal

 

.

(((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-03-19 12:38 . 2004-08-04 12:00 78734 ----a-w- c:\windows\system32\perfc01D.dat

2010-03-19 12:38 . 2004-08-04 12:00 434528 ----a-w- c:\windows\system32\perfh01D.dat

2010-03-19 12:19 . 2009-12-07 17:49 106464 ----a-w- c:\windows\system32\drivers\bdhv.sys

2010-03-19 12:19 . 2009-12-07 17:46 153448 ----a-w- c:\windows\system32\drivers\bdfm.sys

2010-03-19 12:04 . 2008-08-27 16:42 81984 ----a-w- c:\windows\system32\bdod.bin

2010-03-18 22:56 . 2008-12-24 23:16 1 ----a-w- c:\documents and settings\Knutsson\Application Data\OpenOffice.org\3\user\uno_packages\cache\stamp.sys

2010-03-18 22:05 . 2008-08-27 18:41 848 --sha-w- c:\windows\system32\KGyGaAvL.sys

2010-03-18 19:42 . 2008-08-26 19:18 22840 -c--a-w- c:\windows\system32\emptyregdb.dat

2010-03-14 14:51 . 2008-12-18 19:00 -------- d-----w- c:\documents and settings\Knutsson\Application Data\U3

2010-03-14 11:48 . 2010-01-12 19:51 -------- d-----w- c:\documents and settings\All Users\Application Data\WinZip

2010-03-07 07:05 . 2010-01-10 12:18 -------- d-----w- c:\program\Alfons

2010-03-06 13:48 . 2009-06-25 06:30 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll

2010-02-12 09:08 . 2008-08-29 19:41 -------- d-----w- c:\documents and settings\All Users\Application Data\pdf995

2010-02-11 15:37 . 2010-02-11 15:37 -------- d-----w- c:\documents and settings\Knutsson\Application Data\LEGO Media

2010-02-11 15:37 . 2008-08-28 17:38 -------- d--h--w- c:\program\InstallShield Installation Information

2010-02-11 15:37 . 2008-09-02 14:21 -------- d-----w- c:\program\LEGO Media

2010-02-09 21:25 . 2008-08-29 19:41 60 ----a-w- c:\windows\wpd99.drv

2010-02-09 08:59 . 2008-11-16 14:33 -------- d-----w- c:\program\Google

2010-01-29 19:47 . 2008-10-23 10:10 -------- d-----w- c:\documents and settings\Knutsson\Application Data\CopyToDvd

2010-01-29 19:47 . 2008-10-23 09:42 -------- d-----w- c:\documents and settings\Knutsson\Application Data\Vso

2010-01-28 19:11 . 2009-08-20 20:30 132 ----a-w- c:\windows\system32\rezumatenoi.dat

2010-01-26 08:18 . 2010-01-12 08:37 -------- d-----w- c:\program\FemMyror1

2010-01-09 13:42 . 2008-09-23 17:30 107888 ----a-w- c:\windows\system32\CmdLineExt.dll

2009-12-31 16:50 . 2004-08-04 12:00 353792 ----a-w- c:\windows\system32\drivers\srv.sys

2009-12-28 21:49 . 2009-12-28 21:49 20 ----a-w- c:\windows\system32\config\systemprofile\Application Data\fvgqad.dat

2009-12-22 05:20 . 2009-12-22 05:20 81920 ------w- c:\windows\system32\ieencode.dll

2009-12-21 19:09 . 2004-08-04 12:00 916480 ----a-w- c:\windows\system32\wininet.dll

.

 

------- Sigcheck -------

 

[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\atapi.sys

[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\atapi.sys

[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\drivers\atapi.sys

[-] 2004-08-04 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\atapi.sys

 

[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\asyncmac.sys

[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\asyncmac.sys

[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\drivers\asyncmac.sys

[-] 2004-08-04 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\asyncmac.sys

 

[-] 2004-08-04 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\beep.sys

[-] 2004-08-04 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys

 

[-] 2008-04-14 . D655CA94C8E2E0223C1BC28BCD95723A . 24832 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\kbdclass.sys

[-] 2008-04-14 . D655CA94C8E2E0223C1BC28BCD95723A . 24832 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\kbdclass.sys

[-] 2008-04-14 . D655CA94C8E2E0223C1BC28BCD95723A . 24832 . . [5.1.2600.5512] . . c:\windows\system32\drivers\kbdclass.sys

[-] 2004-08-04 . CE96BFA4AF66A2FE61982093BD1D8FFB . 24832 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\kbdclass.sys

 

[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ndis.sys

[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ndis.sys

[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ndis.sys

[-] 2004-08-04 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ndis.sys

 

[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntfs.sys

[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ntfs.sys

[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ntfs.sys

[-] 2004-08-04 . B78BE402C3F63DD55521F73876951CDD . 574592 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ntfs.sys

 

[-] 2004-08-04 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\null.sys

[-] 2004-08-04 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys

 

[-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys

[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp3gdr\tcpip.sys

[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys

[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys

[-] 2008-06-20 . 2A5554FC5B1E04E131230E3CE035C3F9 . 360320 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp2gdr\tcpip.sys

[-] 2008-06-20 . 744E57C99232201AE98C49168B918F48 . 360960 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp2qfe\tcpip.sys

[-] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\tcpip.sys

[-] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tcpip.sys

[-] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\tcpip.sys

[-] 2004-08-04 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\tcpip.sys

 

[-] 2008-04-14 . E0D4A1CC49EFB58A32B5E9D35798C9DD . 77824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\browser.dll

[-] 2008-04-14 . E0D4A1CC49EFB58A32B5E9D35798C9DD . 77824 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\browser.dll

[-] 2008-04-14 . E0D4A1CC49EFB58A32B5E9D35798C9DD . 77824 . . [5.1.2600.5512] . . c:\windows\system32\browser.dll

[-] 2004-08-04 . FEC7F081BB318697FB4EABCBF7E4AFF7 . 77312 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\browser.dll

 

[-] 2008-04-14 . FF1805D5DAF41625AF5282750D4A3700 . 13312 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lsass.exe

[-] 2008-04-14 . FF1805D5DAF41625AF5282750D4A3700 . 13312 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\lsass.exe

[-] 2008-04-14 . FF1805D5DAF41625AF5282750D4A3700 . 13312 . . [5.1.2600.5512] . . c:\windows\system32\lsass.exe

[-] 2004-08-04 . BA428312D9A0726E4C07C2037E882520 . 13312 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\lsass.exe

 

[-] 2008-04-14 . 7F791C1C9D3FEC5D3F519C9DB19465D3 . 198144 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netman.dll

[-] 2008-04-14 . 7F791C1C9D3FEC5D3F519C9DB19465D3 . 198144 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\netman.dll

[-] 2008-04-14 . 7F791C1C9D3FEC5D3F519C9DB19465D3 . 198144 . . [5.1.2600.5512] . . c:\windows\system32\netman.dll

[-] 2004-08-04 . D26EFF3B5C1ECE26BE3B7AC630D03331 . 198144 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\netman.dll

 

[-] 2008-04-14 . 9741942A86E579231D3C41AA51DE042F . 409088 . . [6.7.2600.5512] . . c:\windows\ServicePackFiles\i386\qmgr.dll

[-] 2008-04-14 . 9741942A86E579231D3C41AA51DE042F . 409088 . . [6.7.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\qmgr.dll

[-] 2008-04-14 . 9741942A86E579231D3C41AA51DE042F . 409088 . . [6.7.2600.5512] . . c:\windows\system32\qmgr.dll

[-] 2008-04-14 . 9741942A86E579231D3C41AA51DE042F . 409088 . . [6.7.2600.5512] . . c:\windows\system32\bits\qmgr.dll

[-] 2004-08-04 . FAA2463DCDB539D78142E48324C64305 . 382464 . . [6.6.2600.2180] . . c:\windows\$NtServicePackUninstall$\qmgr.dll

 

[-] 2009-02-09 . 4538B0C2A67E774F4BB7D4AC1E1036A1 . 401408 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\rpcss.dll

[-] 2009-02-09 . 4538B0C2A67E774F4BB7D4AC1E1036A1 . 401408 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3QFE\rpcss.dll

[-] 2009-02-09 . 87DADC3F6E6CD5AAEB913E19CBFF922C . 401408 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3GDR\rpcss.dll

[-] 2009-02-09 . 87DADC3F6E6CD5AAEB913E19CBFF922C . 401408 . . [5.1.2600.5755] . . c:\windows\system32\rpcss.dll

[-] 2009-02-09 . 87DADC3F6E6CD5AAEB913E19CBFF922C . 401408 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\rpcss.dll

[-] 2009-02-09 . 976DFC5E0B6DDD87F939CF4948F2913A . 399360 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2GDR\rpcss.dll

[-] 2009-02-09 . DF462BB56B6FA6DEA8B056BB8D88BC68 . 401408 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2QFE\rpcss.dll

[-] 2008-04-14 . CA6C886E70BCD38C4891E26CB4ABD2EB . 399360 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\rpcss.dll

[-] 2008-04-14 . CA6C886E70BCD38C4891E26CB4ABD2EB . 399360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\rpcss.dll

[-] 2008-04-14 . CA6C886E70BCD38C4891E26CB4ABD2EB . 399360 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\rpcss.dll

[-] 2004-08-04 . 94B83B61A9436F00E28E895AF8E55091 . 395776 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\rpcss.dll

 

[-] 2009-02-09 . 8870B0C4A094C1CE80CEA6F85FA38FF2 . 110592 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3GDR\services.exe

[-] 2009-02-09 . 8870B0C4A094C1CE80CEA6F85FA38FF2 . 110592 . . [5.1.2600.5755] . . c:\windows\system32\services.exe

[-] 2009-02-09 . 8870B0C4A094C1CE80CEA6F85FA38FF2 . 110592 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\services.exe

[-] 2009-02-09 . 5DD875F92626DC3C8F46AB3E6CC1C98E . 110592 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\services.exe

[-] 2009-02-09 . 5DD875F92626DC3C8F46AB3E6CC1C98E . 110592 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3QFE\services.exe

[-] 2009-02-09 . 3B41CF1E48524775796C0A4AAA92E26B . 110592 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2GDR\services.exe

[-] 2009-02-09 . 056EDFF8EFA8D44CA9C322BA9B10ECFF . 110592 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2QFE\services.exe

[-] 2008-04-14 . 9436FEE6DF0F12AABDE97BEA8501B538 . 108544 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\services.exe

[-] 2008-04-14 . 9436FEE6DF0F12AABDE97BEA8501B538 . 108544 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\services.exe

[-] 2008-04-14 . 9436FEE6DF0F12AABDE97BEA8501B538 . 108544 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\services.exe

[-] 2004-08-04 . 0DF00535E2F5AEFAEAD3A800F75137AF . 108032 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\services.exe

 

[-] 2008-04-14 . AC6A8CEAAF03081DA74EE70EA2124495 . 57856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\spoolsv.exe

[-] 2008-04-14 . AC6A8CEAAF03081DA74EE70EA2124495 . 57856 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\spoolsv.exe

[-] 2008-04-14 . AC6A8CEAAF03081DA74EE70EA2124495 . 57856 . . [5.1.2600.5512] . . c:\windows\system32\spoolsv.exe

[-] 2004-08-04 . 5770628BC7A7A3E49E7D4426EE60BEE6 . 57856 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\spoolsv.exe

 

[-] 2008-04-14 . ABD2D070BE76A9386A0A283A332E3862 . 507904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\winlogon.exe

[-] 2008-04-14 . ABD2D070BE76A9386A0A283A332E3862 . 507904 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\winlogon.exe

[-] 2008-04-14 . ABD2D070BE76A9386A0A283A332E3862 . 507904 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe

[-] 2004-08-04 . 3E080D3D4F81B0638766CCC4D7707D10 . 502272 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\winlogon.exe

 

[-] 2008-04-14 . EBBEC1CFFA49A5442AD37AB4A619E831 . 617472 . . [5.82] . . c:\windows\ServicePackFiles\i386\comctl32.dll

[-] 2008-04-14 . EBBEC1CFFA49A5442AD37AB4A619E831 . 617472 . . [5.82] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\comctl32.dll

[-] 2008-04-14 . EBBEC1CFFA49A5442AD37AB4A619E831 . 617472 . . [5.82] . . c:\windows\system32\comctl32.dll

[-] 2008-04-14 . 4C3DAA3ACEFD864BB355379035005593 . 1054208 . . [6.0] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\asms\60\msft\windows\common\controls\comctl32.dll

[-] 2004-08-04 . 5ED72EA9559BDC4CFF5122E7DFD41337 . 611328 . . [5.82] . . c:\windows\$NtServicePackUninstall$\comctl32.dll

 

[-] 2008-04-14 . 04FD6585508A7320B2C7453CED231D6B . 62464 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\cryptsvc.dll

[-] 2008-04-14 . 04FD6585508A7320B2C7453CED231D6B . 62464 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\cryptsvc.dll

[-] 2008-04-14 . 04FD6585508A7320B2C7453CED231D6B . 62464 . . [5.1.2600.5512] . . c:\windows\system32\cryptsvc.dll

[-] 2004-08-04 . 2E0BCB4A44E781182953D34D43F57E7F . 60416 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\cryptsvc.dll

 

[-] 2008-07-07 20:32 . CD4CA297537422B3C836F558EB1813C9 . 253952 . . [2001.12.4414.320] . . c:\windows\SoftwareDistribution\Download\81e128e5904afff015389b7b983ded46\sp2gdr\es.dll

[-] 2008-07-07 20:29 . 01CEC6DE315F1A06CE5AA70009C6979E . 253952 . . [2001.12.4414.706] . . c:\windows\SoftwareDistribution\Download\81e128e5904afff015389b7b983ded46\sp3gdr\es.dll

[-] 2008-07-07 20:29 . 01CEC6DE315F1A06CE5AA70009C6979E . 253952 . . [2001.12.4414.706] . . c:\windows\system32\es.dll

[-] 2008-07-07 20:29 . 01CEC6DE315F1A06CE5AA70009C6979E . 253952 . . [2001.12.4414.706] . . c:\windows\system32\dllcache\es.dll

[-] 2008-07-07 20:25 . 66FD60CBE71E38FBF2EC6841D07AA5C3 . 253952 . . [2001.12.4414.706] . . c:\windows\$hf_mig$\KB950974\SP3QFE\es.dll

[-] 2008-07-07 20:23 . 2E8BB8E821E584DA53F6CEDA427BCA4E . 253952 . . [2001.12.4414.320] . . c:\windows\SoftwareDistribution\Download\81e128e5904afff015389b7b983ded46\sp2qfe\es.dll

[-] 2008-04-14 16:04 . 4EC63804DC5809DC0D0BE0AB1EFA0E9E . 246272 . . [2001.12.4414.701] . . c:\windows\$NtUninstallKB950974$\es.dll

[-] 2008-04-14 16:04 . 4EC63804DC5809DC0D0BE0AB1EFA0E9E . 246272 . . [2001.12.4414.701] . . c:\windows\ServicePackFiles\i386\es.dll

[-] 2008-04-14 16:04 . 4EC63804DC5809DC0D0BE0AB1EFA0E9E . 246272 . . [2001.12.4414.701] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\es.dll

[-] 2004-08-04 12:00 . 40D5BBA450D4D639394B1B042C8DBA56 . 243200 . . [2001.12.4414.258] . . c:\windows\$NtServicePackUninstall$\es.dll

 

[-] 2008-04-14 . E95CDEAC9C6B69DF3F414B765CF62040 . 110080 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\imm32.dll

[-] 2008-04-14 . E95CDEAC9C6B69DF3F414B765CF62040 . 110080 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\imm32.dll

[-] 2008-04-14 . E95CDEAC9C6B69DF3F414B765CF62040 . 110080 . . [5.1.2600.5512] . . c:\windows\system32\imm32.dll

[-] 2004-08-04 . D7A091CEBBD237232110BA876FC49033 . 110080 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\imm32.dll

 

[-] 2008-04-14 . 619B0747C67FB805583B1D75AAA72402 . 19968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\linkinfo.dll

[-] 2008-04-14 . 619B0747C67FB805583B1D75AAA72402 . 19968 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\linkinfo.dll

[-] 2008-04-14 . 619B0747C67FB805583B1D75AAA72402 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\linkinfo.dll

[-] 2004-08-04 . BE6D60A5749C6526107077FA6B05B4E5 . 18944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\linkinfo.dll

 

[-] 2008-04-14 . 8EA9F199253137816A92871F1B98CF0B . 22016 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lpk.dll

[-] 2008-04-14 . 8EA9F199253137816A92871F1B98CF0B . 22016 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\lpk.dll

[-] 2008-04-14 . 8EA9F199253137816A92871F1B98CF0B . 22016 . . [5.1.2600.5512] . . c:\windows\system32\lpk.dll

[-] 2004-08-04 . FB7048CAFAEC5B78D3F1810FB677C7BE . 22016 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\lpk.dll

 

[7] 2009-12-22 . 58C7E6B4BFF6EAD90BAD88D156871DDF . 3084800 . . [6.00.2900.3660] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp2gdr\mshtml.dll

[7] 2009-12-22 . 251540269A6CEA1ECAF3B95BC583A845 . 3092480 . . [6.00.2900.3660] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp2qfe\mshtml.dll

[7] 2009-12-22 . A8B6C96AEB9115FE69F1DB095D1B8802 . 3092480 . . [6.00.2900.5921] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp3gdr\mshtml.dll

[7] 2009-12-22 . 7CB1F91DE8B2A54A87DC3655412EF50A . 3094528 . . [6.00.2900.5921] . . c:\windows\$hf_mig$\KB978207\SP3QFE\mshtml.dll

[7] 2009-12-22 . 7CB1F91DE8B2A54A87DC3655412EF50A . 3094528 . . [6.00.2900.5921] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp3qfe\mshtml.dll

[-] 2009-12-21 . 8AC2C2EBD245C752ACA1F4AACE96A9CB . 5942784 . . [8.00.6001.18876] . . c:\windows\SoftwareDistribution\Download\281f631aeb22c0ba06ccd0d322de01a5\SP3GDR\mshtml.dll

[-] 2009-12-21 . 8AC2C2EBD245C752ACA1F4AACE96A9CB . 5942784 . . [8.00.6001.18876] . . c:\windows\system32\mshtml.dll

[-] 2009-12-21 . 8AC2C2EBD245C752ACA1F4AACE96A9CB . 5942784 . . [8.00.6001.18876] . . c:\windows\system32\dllcache\mshtml.dll

[-] 2009-12-21 . C61D223B5732174971C4B5115CF97A6C . 5945856 . . [8.00.6001.22967] . . c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\mshtml.dll

[-] 2009-12-21 . C61D223B5732174971C4B5115CF97A6C . 5945856 . . [8.00.6001.22967] . . c:\windows\SoftwareDistribution\Download\281f631aeb22c0ba06ccd0d322de01a5\SP3QFE\mshtml.dll

[-] 2009-10-29 . 84C4556B441B4D209C48BD37ACD4A690 . 5940736 . . [8.00.6001.18854] . . c:\windows\ie8updates\KB978207-IE8\mshtml.dll

[-] 2009-10-29 . 84C4556B441B4D209C48BD37ACD4A690 . 5940736 . . [8.00.6001.18854] . . c:\windows\SoftwareDistribution\Download\7231a52675ed6f6f1e8dae4d7d1ae04c\SP3GDR\mshtml.dll

[-] 2009-10-29 . 791436583556C0BC32753598C3196769 . 5944320 . . [8.00.6001.22945] . . c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\mshtml.dll

[-] 2009-10-29 . 791436583556C0BC32753598C3196769 . 5944320 . . [8.00.6001.22945] . . c:\windows\SoftwareDistribution\Download\7231a52675ed6f6f1e8dae4d7d1ae04c\SP3QFE\mshtml.dll

[-] 2009-10-22 . 1A1170B452E3D6132E91BF25C5CB4A10 . 5943296 . . [8.00.6001.22942] . . c:\windows\$hf_mig$\KB976749-IE8\SP3QFE\mshtml.dll

[-] 2009-08-29 . 2A10826194D928EFD82AA50C96712E5F . 5940224 . . [8.00.6001.18828] . . c:\windows\ie8updates\KB976749-IE8\mshtml.dll

[-] 2009-08-29 . E22E865907E73E7FA2BC6B80A128FD69 . 5942272 . . [8.00.6001.22918] . . c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\mshtml.dll

[-] 2009-07-19 . AA48D80B3611AD33F35F34AD8A546EE5 . 5938176 . . [8.00.6001.22902] . . c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\mshtml.dll

[-] 2009-07-19 . A77E66F54E651BBA360D93CD0F97D92F . 5937152 . . [8.00.6001.18812] . . c:\windows\ie8updates\KB974455-IE8\mshtml.dll

[-] 2009-05-13 . 543FA026FCEF227EE9E7BCE509752AD7 . 5936128 . . [8.00.6001.22873] . . c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\mshtml.dll

[-] 2009-05-13 . BD11926D3DF25513194A4B2E2BCF292E . 5936128 . . [8.00.6001.18783] . . c:\windows\ie8updates\KB972260-IE8\mshtml.dll

[-] 2009-03-08 . D469A0EBA2EF5C6BEE8065B7E3196E5E . 5937152 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB976325-IE8\mshtml.dll

[-] 2009-03-08 . D469A0EBA2EF5C6BEE8065B7E3196E5E . 5937152 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB969897-IE8\mshtml.dll

[-] 2009-02-21 . FE048E56B779B4C3C8C542BDBF59D925 . 3596800 . . [7.00.6000.21015] . . c:\windows\$hf_mig$\KB963027-IE7\SP3QFE\mshtml.dll

[-] 2009-01-16 . 9E7BB7FADDE9C959BACF0C73E0258E13 . 3594752 . . [7.00.6000.16809] . . c:\windows\ie7updates\KB963027-IE7\mshtml.dll

[-] 2009-01-16 . 5A33E1166BEDA8484A89D240EA060245 . 3596288 . . [7.00.6000.20996] . . c:\windows\$hf_mig$\KB961260-IE7\SP2QFE\mshtml.dll

[-] 2008-12-13 . EA41E6964683D1A715F5EBDF26EB0628 . 3593216 . . [7.00.6000.16788] . . c:\windows\ie7updates\KB961260-IE7\mshtml.dll

[-] 2008-12-13 . 1FEE7A02A3E13E86A1629F1C98A9248E . 3594752 . . [7.00.6000.20973] . . c:\windows\$hf_mig$\KB960714-IE7\SP2QFE\mshtml.dll

[-] 2008-10-17 . 7D84D9BA4FEB3B267C4A0049B213A17B . 3593216 . . [7.00.6000.16762] . . c:\windows\ie7updates\KB960714-IE7\mshtml.dll

[-] 2008-10-16 . 52519FE918C19FA2CEE70B53284BDA31 . 3595264 . . [7.00.6000.20935] . . c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\mshtml.dll

[-] 2008-08-27 . A71E35F297E9884D7DF669D479F796F8 . 3593216 . . [7.00.6000.16735] . . c:\windows\ie7updates\KB958215-IE7\mshtml.dll

[-] 2008-08-26 . D0F7AF708E7027BE4887D353289E775D . 3594752 . . [7.00.6000.20900] . . c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\mshtml.dll

[-] 2008-06-25 . 5D05E6BF588DC21D2864F1741DD0026D . 3088896 . . [6.00.2900.5626] . . c:\windows\SoftwareDistribution\Download\b1caa8833edad68b8615b04e88571d60\sp3qfe\mshtml.dll

[-] 2008-06-24 . 3287E3E8F9445B60472E7C010E95CE9B . 3592192 . . [7.00.6000.16705] . . c:\windows\ie7updates\KB956390-IE7\mshtml.dll

[-] 2008-06-24 . 3287E3E8F9445B60472E7C010E95CE9B . 3592192 . . [7.00.6000.16705] . . c:\windows\SoftwareDistribution\Download\b18d8ea58b78a61167e23f47d2b9dc98\SP2GDR\mshtml.dll

[-] 2008-06-23 . 99C425240D7BAEC6A9890CAA8A6EF07C . 3594240 . . [7.00.6000.20861] . . c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\mshtml.dll

[-] 2008-06-23 . 99C425240D7BAEC6A9890CAA8A6EF07C . 3594240 . . [7.00.6000.20861] . . c:\windows\SoftwareDistribution\Download\b18d8ea58b78a61167e23f47d2b9dc98\SP2QFE\mshtml.dll

[-] 2008-06-23 . D55470DB84CB431546D41683AB969568 . 3088384 . . [6.00.2900.5626] . . c:\windows\SoftwareDistribution\Download\b1caa8833edad68b8615b04e88571d60\sp3gdr\mshtml.dll

[-] 2008-04-14 . ABAC4EE83DE2DA38BAB7F65A8146A7A5 . 3066880 . . [6.00.2900.5512] . . c:\windows\ie7\mshtml.dll

[-] 2008-04-14 . ABAC4EE83DE2DA38BAB7F65A8146A7A5 . 3066880 . . [6.00.2900.5512] . . c:\windows\ie8\mshtml.dll

[-] 2008-04-14 . ABAC4EE83DE2DA38BAB7F65A8146A7A5 . 3066880 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\mshtml.dll

[-] 2008-04-14 . ABAC4EE83DE2DA38BAB7F65A8146A7A5 . 3066880 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\mshtml.dll

[-] 2007-08-13 . C6EC2493346ED8888A549F59210A8ED3 . 3578368 . . [7.00.5730.13] . . c:\windows\ie7updates\KB953838-IE7\mshtml.dll

[-] 2004-08-04 . 59B5A7634968B3581DE89F4A4E264D4C . 3003392 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\mshtml.dll

 

[-] 2008-04-14 . 7DF5CF86D9C13E74D507928C0D0336B4 . 343040 . . [7.0.2600.5512] . . c:\windows\ServicePackFiles\i386\msvcrt.dll

[-] 2008-04-14 . 7DF5CF86D9C13E74D507928C0D0336B4 . 343040 . . [7.0.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\msvcrt.dll

[-] 2008-04-14 . 7DF5CF86D9C13E74D507928C0D0336B4 . 343040 . . [7.0.2600.5512] . . c:\windows\system32\msvcrt.dll

[-] 2008-04-14 . B2CDBFF333D361A9CE81B08C46A8920F . 343040 . . [7.0.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\asms\70\msft\windows\mswincrt\msvcrt.dll

[-] 2004-08-04 . A2645A79B4988F4939CFBD796280289C . 343040 . . [7.0.2600.2180] . . c:\windows\$NtServicePackUninstall$\msvcrt.dll

 

[-] 2008-06-20 . BAA1DE3A083F4120840BA929A7366867 . 247296 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp3gdr\mswsock.dll

[-] 2008-06-20 . BAA1DE3A083F4120840BA929A7366867 . 247296 . . [5.1.2600.5625] . . c:\windows\system32\mswsock.dll

[-] 2008-06-20 . BAA1DE3A083F4120840BA929A7366867 . 247296 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\mswsock.dll

[-] 2008-06-20 . B19355968C355A918F9A3E0B12AA1523 . 247296 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll

[-] 2008-06-20 . D05ED17C8AF0F0124A616D9E40754976 . 247296 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp2gdr\mswsock.dll

[-] 2008-06-20 . 158DE3426F164E76994B7B7967310787 . 247296 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp2qfe\mswsock.dll

[-] 2008-04-14 . BABB92BC3369AC9E2DD47DB5976A11D0 . 247296 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\mswsock.dll

[-] 2008-04-14 . BABB92BC3369AC9E2DD47DB5976A11D0 . 247296 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\mswsock.dll

[-] 2008-04-14 . BABB92BC3369AC9E2DD47DB5976A11D0 . 247296 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\mswsock.dll

[-] 2004-08-04 . 85D58E28D38F3E3B6E6C6912BFB9562D . 247296 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\mswsock.dll

 

[-] 2009-02-06 . 132A5BBF7FB14BAE44D8803A34E73A96 . 408064 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\69ec2a293bc0096e26a37c0767faca2e\sp2qfe\netlogon.dll

[-] 2009-02-06 . 132A5BBF7FB14BAE44D8803A34E73A96 . 408064 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\9cb7a986d9ff777d70da2507928f4a7a\sp2qfe\netlogon.dll

[-] 2008-04-14 . 4F4A16EAEB932AE413E48923E6A400E0 . 407040 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netlogon.dll

[-] 2008-04-14 . 4F4A16EAEB932AE413E48923E6A400E0 . 407040 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\netlogon.dll

[-] 2008-04-14 . 4F4A16EAEB932AE413E48923E6A400E0 . 407040 . . [5.1.2600.5512] . . c:\windows\system32\netlogon.dll

[-] 2004-08-04 . A6FD3341EC1A98A31B044C6E0DAF8F26 . 407040 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\netlogon.dll

 

[-] 2009-12-10 . C1D460C98586653DE8F3DF4487B1C40A . 2190080 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165-v2\SP3QFE\ntoskrnl.exe

[-] 2009-12-10 . C1D460C98586653DE8F3DF4487B1C40A . 2190080 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP3QFE\ntoskrnl.exe

[-] 2009-12-09 . C1D460C98586653DE8F3DF4487B1C40A . 2190080 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165\SP3QFE\ntoskrnl.exe

[-] 2009-12-09 . 21B53B13819E72A55C4A7D82B625ED7F . 2181120 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP2GDR\ntoskrnl.exe

[-] 2009-12-09 . 4B72FDFADE98CCA3F2552EA26F86B630 . 2186752 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP2QFE\ntoskrnl.exe

[-] 2009-12-09 . 5455BC01E754F1E1E1EA0C61586F1A18 . 2189952 . . [5.1.2600.5913] . . c:\windows\Driver Cache\i386\ntoskrnl.exe

[-] 2009-12-09 . 5455BC01E754F1E1E1EA0C61586F1A18 . 2189952 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP3GDR\ntoskrnl.exe

[-] 2009-12-09 . 095A9D1E0F27DDE714A28BC55579E359 . 2146304 . . [5.1.2600.5913] . . c:\windows\system32\ntoskrnl.exe

[-] 2009-12-09 . 5455BC01E754F1E1E1EA0C61586F1A18 . 2189952 . . [5.1.2600.5913] . . c:\windows\system32\dllcache\ntoskrnl.exe

[-] 2009-08-04 . A6C4211F1A258869C05378DC60B97E61 . 2190080 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3QFE\ntoskrnl.exe

[-] 2009-02-10 . A9B77A48089BA2B465243F757EDB3691 . 2189952 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3QFE\ntoskrnl.exe

[-] 2009-02-10 . A9B77A48089BA2B465243F757EDB3691 . 2189952 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe

[-] 2009-02-09 . DEED42460E59383B37E38250F2AA552F . 2181248 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2GDR\ntoskrnl.exe

[-] 2009-02-09 . 7FA5B4A962F2A9DF8049A913D0749D6C . 2186880 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2QFE\ntoskrnl.exe

[-] 2009-02-09 . 9997BBBC842F134DB32321E1618572C8 . 2189824 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3GDR\ntoskrnl.exe

[-] 2009-02-09 . 9D1261FF3BDE3232A9C84ACA080A2448 . 2146304 . . [5.1.2600.5755] . . c:\windows\$NtUninstallKB977165-v2$\ntoskrnl.exe

[-] 2008-08-14 . 1A43A9EF689A90E3D914FAC8BB71C084 . 2189952 . . [5.1.2600.5657] . . c:\windows\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe

[-] 2008-04-14 . 141A27527788DD5CE5C3D85BB937EE5E . 2189824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntoskrnl.exe

[-] 2008-04-14 . 141A27527788DD5CE5C3D85BB937EE5E . 2189824 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ntoskrnl.exe

[-] 2008-04-14 . F1471E7F81CA6C20129D3A7529EDFD86 . 2146304 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\ntoskrnl.exe

[-] 2004-08-04 . 9FDBB2B041EA089E9F83EFA8BC57F868 . 2149376 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ntoskrnl.exe

 

[-] 2008-04-14 . 477B6E1192C640FDDD6899255370276D . 17408 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\powrprof.dll

[-] 2008-04-14 . 477B6E1192C640FDDD6899255370276D . 17408 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\powrprof.dll

[-] 2008-04-14 . 477B6E1192C640FDDD6899255370276D . 17408 . . [6.00.2900.5512] . . c:\windows\system32\powrprof.dll

[-] 2004-08-04 . E893663BA7306E29630239795F50DC0B . 17408 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\powrprof.dll

 

[-] 2008-04-14 . 3B50B494647E60CE6AC516E3F5C82B25 . 184832 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\scecli.dll

[-] 2008-04-14 . 3B50B494647E60CE6AC516E3F5C82B25 . 184832 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\scecli.dll

[-] 2008-04-14 . 3B50B494647E60CE6AC516E3F5C82B25 . 184832 . . [5.1.2600.5512] . . c:\windows\system32\scecli.dll

[-] 2004-08-04 . 24BADA1C3795CB877C67E0F2F8BBAD1F . 183808 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\scecli.dll

 

[-] 2008-04-14 . 142DA4249650F32DF9B8BBADAF42BCC4 . 5120 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfc.dll

[-] 2008-04-14 . 142DA4249650F32DF9B8BBADAF42BCC4 . 5120 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\sfc.dll

[-] 2008-04-14 . 142DA4249650F32DF9B8BBADAF42BCC4 . 5120 . . [5.1.2600.5512] . . c:\windows\system32\sfc.dll

[-] 2004-08-04 . EFDB74A669D6085FE3080D08E1F3FEAF . 5120 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\sfc.dll

 

[-] 2008-04-14 . 6CCEF19D7301D9861F90E299C798AD3F . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\svchost.exe

[-] 2008-04-14 . 6CCEF19D7301D9861F90E299C798AD3F . 14336 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\svchost.exe

[-] 2008-04-14 . 6CCEF19D7301D9861F90E299C798AD3F . 14336 . . [5.1.2600.5512] . . c:\windows\system32\svchost.exe

[-] 2004-08-04 . 22D8A75754B7B9ECC4753E3C09A56B18 . 14336 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\svchost.exe

 

[-] 2008-04-14 . 18261106524F7A93CECEACDC03A5B989 . 249856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tapisrv.dll

[-] 2008-04-14 . 18261106524F7A93CECEACDC03A5B989 . 249856 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\tapisrv.dll

[-] 2008-04-14 . 18261106524F7A93CECEACDC03A5B989 . 249856 . . [5.1.2600.5512] . . c:\windows\system32\tapisrv.dll

[-] 2004-08-04 . 5298D6FB9307190052E85F0D89C91A99 . 246272 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\tapisrv.dll

 

[-] 2008-04-14 . E3CF0EC59316EA8E856DB1E1F442CD57 . 578560 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\user32.dll

[-] 2008-04-14 . E3CF0EC59316EA8E856DB1E1F442CD57 . 578560 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\user32.dll

[-] 2008-04-14 . E3CF0EC59316EA8E856DB1E1F442CD57 . 578560 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll

[-] 2004-08-04 . 3E9523A6915656F639A49EBF8453CA00 . 577024 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\user32.dll

 

[-] 2008-04-14 . 317799A2E42B5EA048A8A70F482CBA9F . 26112 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\userinit.exe

[-] 2008-04-14 . 317799A2E42B5EA048A8A70F482CBA9F . 26112 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\userinit.exe

[-] 2008-04-14 . 317799A2E42B5EA048A8A70F482CBA9F . 26112 . . [5.1.2600.5512] . . c:\windows\system32\userinit.exe

[-] 2004-08-04 . 452202227D7A5020D058D49106C0B872 . 24576 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\userinit.exe

 

[7] 2009-12-22 . D1963B5AD72AD03708F8E4488C97AD6E . 662528 . . [6.00.2900.3660] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp2gdr\wininet.dll

[7] 2009-12-22 . CAED0A17F660CEEB44C7139C3CF1DB59 . 669184 . . [6.00.2900.3660] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp2qfe\wininet.dll

[7] 2009-12-22 . F630B944117DE586E50AA9CF3602A285 . 667648 . . [6.00.2900.5921] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp3gdr\wininet.dll

[7] 2009-12-22 . 690F72C01CAD42433DE3D780BEEEC980 . 669184 . . [6.00.2900.5921] . . c:\windows\$hf_mig$\KB978207\SP3QFE\wininet.dll

[7] 2009-12-22 . 690F72C01CAD42433DE3D780BEEEC980 . 669184 . . [6.00.2900.5921] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp3qfe\wininet.dll

[-] 2009-12-21 . 5697BB13923C753C54697FBDFFB6FB0E . 916480 . . [8.00.6001.18876] . . c:\windows\SoftwareDistribution\Download\281f631aeb22c0ba06ccd0d322de01a5\SP3GDR\wininet.dll

[-] 2009-12-21 . 5697BB13923C753C54697FBDFFB6FB0E . 916480 . . [8.00.6001.18876] . . c:\windows\system32\wininet.dll

[-] 2009-12-21 . 5697BB13923C753C54697FBDFFB6FB0E . 916480 . . [8.00.6001.18876] . . c:\windows\system32\dllcache\wininet.dll

[-] 2009-12-21 . 493D1BB6DE014EC0558F61D5EE303260 . 916480 . . [8.00.6001.22967] . . c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\wininet.dll

[-] 2009-12-21 . 493D1BB6DE014EC0558F61D5EE303260 . 916480 . . [8.00.6001.22967] . . c:\windows\SoftwareDistribution\Download\281f631aeb22c0ba06ccd0d322de01a5\SP3QFE\wininet.dll

[-] 2009-10-29 . 36583A6EA9E90CA8154D98E12C56BA5B . 916480 . . [8.00.6001.18854] . . c:\windows\ie8updates\KB978207-IE8\wininet.dll

[-] 2009-10-29 . 36583A6EA9E90CA8154D98E12C56BA5B . 916480 . . [8.00.6001.18854] . . c:\windows\SoftwareDistribution\Download\7231a52675ed6f6f1e8dae4d7d1ae04c\SP3GDR\wininet.dll

[-] 2009-10-29 . 12B2C000E7DFA661969BB79B145E5829 . 916480 . . [8.00.6001.22945] . . c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\wininet.dll

[-] 2009-10-29 . 12B2C000E7DFA661969BB79B145E5829 . 916480 . . [8.00.6001.22945] . . c:\windows\SoftwareDistribution\Download\7231a52675ed6f6f1e8dae4d7d1ae04c\SP3QFE\wininet.dll

[-] 2009-08-29 . 00F8442F558E57497BD7770E23C0CB37 . 916480 . . [8.00.6001.22918] . . c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\wininet.dll

[-] 2009-07-03 . D6D7072A4298A8D0CCE7C66807884865 . 915456 . . [8.00.6001.22896] . . c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\wininet.dll

[-] 2009-07-03 . C36047A4F492E8BD84AF38C00D200FDB . 915456 . . [8.00.6001.18806] . . c:\windows\ie8updates\KB974455-IE8\wininet.dll

[-] 2009-05-13 . F141583C843A96E3D3A293317C71202A . 915456 . . [8.00.6001.22873] . . c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\wininet.dll

[-] 2009-05-13 . 8E5C9B190A503287EDC58AFD72AB400F . 915456 . . [8.00.6001.18783] . . c:\windows\ie8updates\KB972260-IE8\wininet.dll

[-] 2009-03-08 . 6CE32F7778061CCC5814D5E0F282D369 . 914944 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB976325-IE8\wininet.dll

[-] 2009-03-08 . 6CE32F7778061CCC5814D5E0F282D369 . 914944 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB969897-IE8\wininet.dll

[-] 2009-03-03 . F43B023F7B8787130195B8022D7C9AB8 . 828416 . . [7.00.6000.21020] . . c:\windows\$hf_mig$\KB963027-IE7\SP3QFE\wininet.dll

[-] 2008-12-20 . 25760D831FB2C82B6C7D14E27A00F9F3 . 827904 . . [7.00.6000.20978] . . c:\windows\$hf_mig$\KB961260-IE7\SP2QFE\wininet.dll

[-] 2008-12-20 . 1AAB5F08D42E5C08F9614FF5EB1FF939 . 826368 . . [7.00.6000.16791] . . c:\windows\ie7updates\KB963027-IE7\wininet.dll

[-] 2008-10-16 . 046DA003D4E4664EBBF9EA40B79BDC28 . 826368 . . [7.00.6000.16762] . . c:\windows\ie7updates\KB961260-IE7\wininet.dll

[-] 2008-10-16 . E54A023EEB7DCF92ADD34940679078E2 . 827904 . . [7.00.6000.20935] . . c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\wininet.dll

[-] 2008-08-26 . 27431705F27B772F4F7903E4BF96EFB2 . 827904 . . [7.00.6000.20900] . . c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\wininet.dll

[-] 2008-08-26 . 91A76D98B206723D21612AECBC1D65CE . 826368 . . [7.00.6000.16735] . . c:\windows\ie7updates\KB958215-IE7\wininet.dll

[-] 2008-06-23 . CE365A16790EC5C5DDDC78820949C02E . 826368 . . [7.00.6000.16705] . . c:\windows\ie7updates\KB956390-IE7\wininet.dll

[-] 2008-06-23 . CE365A16790EC5C5DDDC78820949C02E . 826368 . . [7.00.6000.16705] . . c:\windows\SoftwareDistribution\Download\b18d8ea58b78a61167e23f47d2b9dc98\SP2GDR\wininet.dll

[-] 2008-06-23 . 763148C042469C197933AC956E566226 . 827904 . . [7.00.6000.20861] . . c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\wininet.dll

[-] 2008-06-23 . 763148C042469C197933AC956E566226 . 827904 . . [7.00.6000.20861] . . c:\windows\SoftwareDistribution\Download\b18d8ea58b78a61167e23f47d2b9dc98\SP2QFE\wininet.dll

[-] 2008-06-23 . FC3E1BFFCE916684241709D210DCCDBB . 666624 . . [6.00.2900.5626] . . c:\windows\SoftwareDistribution\Download\b1caa8833edad68b8615b04e88571d60\sp3gdr\wininet.dll

[-] 2008-06-23 . 43CFEBFB41F304E1CBFD1D89EA2BC1F0 . 667136 . . [6.00.2900.5626] . . c:\windows\SoftwareDistribution\Download\b1caa8833edad68b8615b04e88571d60\sp3qfe\wininet.dll

[-] 2008-04-14 . B8D98F0CDF9B1429CD95497AD9995078 . 666624 . . [6.00.2900.5512] . . c:\windows\ie7\wininet.dll

[-] 2008-04-14 . B8D98F0CDF9B1429CD95497AD9995078 . 666624 . . [6.00.2900.5512] . . c:\windows\ie8\wininet.dll

[-] 2008-04-14 . B8D98F0CDF9B1429CD95497AD9995078 . 666624 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\wininet.dll

[-] 2008-04-14 . B8D98F0CDF9B1429CD95497AD9995078 . 666624 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\wininet.dll

[-] 2007-08-13 . A4A0FC92358F39538A6494C42EF99FE9 . 818688 . . [7.00.5730.13] . . c:\windows\ie7updates\KB953838-IE7\wininet.dll

[-] 2004-08-04 . 9F721BD834534E75661D8F9BD1EFDCD7 . 656896 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\wininet.dll

 

[-] 2008-04-14 . 45C8F895EE6D409FC3C5911C7749D60E . 82432 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ws2_32.dll

[-] 2008-04-14 . 45C8F895EE6D409FC3C5911C7749D60E . 82432 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ws2_32.dll

[-] 2008-04-14 . 45C8F895EE6D409FC3C5911C7749D60E . 82432 . . [5.1.2600.5512] . . c:\windows\system32\ws2_32.dll

[-] 2004-08-04 . CD46885DF74086059A723209990298A9 . 82944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ws2_32.dll

 

[-] 2008-04-14 . 74BB7DCD2BFDCC0E52869DB3582CA781 . 1034240 . . [6.00.2900.5512] . . c:\windows\explorer.exe

[-] 2008-04-14 . 74BB7DCD2BFDCC0E52869DB3582CA781 . 1034240 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\explorer.exe

[-] 2008-04-14 . 74BB7DCD2BFDCC0E52869DB3582CA781 . 1034240 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\explorer.exe

[-] 2004-08-04 . 87A3C8EAD27CF3591713D629D8BCB990 . 1032704 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\explorer.exe

 

[-] 2008-04-14 . 25EDB60132F9D82CB1B7961C1D0D13F2 . 171008 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll

[-] 2008-04-14 . 25EDB60132F9D82CB1B7961C1D0D13F2 . 171008 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\srsvc.dll

[-] 2008-04-14 . 25EDB60132F9D82CB1B7961C1D0D13F2 . 171008 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll

[-] 2004-08-04 . A0A0308C26C95D75FCFB1411440C5220 . 170496 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\srsvc.dll

 

[-] 2008-04-14 . 6931B3B2E9ADD1CEAEFF480E7FFF0194 . 13824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wscntfy.exe

[-] 2008-04-14 . 6931B3B2E9ADD1CEAEFF480E7FFF0194 . 13824 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\wscntfy.exe

[-] 2008-04-14 . 6931B3B2E9ADD1CEAEFF480E7FFF0194 . 13824 . . [5.1.2600.5512] . . c:\windows\system32\wscntfy.exe

[-] 2004-08-04 . 25DC003C667F8F204F3447AC736CD30C . 13824 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\wscntfy.exe

 

[-] 2008-04-14 . 5B3D475AA8629320686FBFFBE67AB492 . 129024 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\xmlprov.dll

[-] 2008-04-14 . 5B3D475AA8629320686FBFFBE67AB492 . 129024 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\xmlprov.dll

[-] 2008-04-14 . 5B3D475AA8629320686FBFFBE67AB492 . 129024 . . [5.1.2600.5512] . . c:\windows\system32\xmlprov.dll

[-] 2004-08-04 . 1315FA775BFE769470E51221318AF34B . 129536 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\xmlprov.dll

 

[-] 2008-04-14 . 0A6DF967AE8E836D053DB46398F603E5 . 56320 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\eventlog.dll

[-] 2008-04-14 . 0A6DF967AE8E836D053DB46398F603E5 . 56320 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\eventlog.dll

[-] 2008-04-14 . 0A6DF967AE8E836D053DB46398F603E5 . 56320 . . [5.1.2600.5512] . . c:\windows\system32\eventlog.dll

[-] 2004-08-04 . 264DBC116901E89565B830B0CC20F922 . 55808 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\eventlog.dll

 

[-] 2008-04-14 . 5AF808D660A8EF98B27596481CE43E5C . 1571840 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfcfiles.dll

[-] 2008-04-14 . 5AF808D660A8EF98B27596481CE43E5C . 1571840 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\sfcfiles.dll

[-] 2008-04-14 . 5AF808D660A8EF98B27596481CE43E5C . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll

[-] 2004-08-04 . DA7EDC069A8A299A756839591AA04B8B . 1548288 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\sfcfiles.dll

 

[-] 2008-04-14 . 07F27822A1376C2DA7F8C7265015CEDC . 15360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ctfmon.exe

[-] 2008-04-14 . 07F27822A1376C2DA7F8C7265015CEDC . 15360 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ctfmon.exe

[-] 2008-04-14 . 07F27822A1376C2DA7F8C7265015CEDC . 15360 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe

[-] 2004-08-04 . FEBE82A289A6645E26B27F3A0A4D2B84 . 15360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ctfmon.exe

 

[-] 2008-04-14 . 187CA499EBD287E7BBAC5B9B7AA9321E . 135168 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\shsvcs.dll

[-] 2008-04-14 . 187CA499EBD287E7BBAC5B9B7AA9321E . 135168 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\shsvcs.dll

[-] 2008-04-14 . 187CA499EBD287E7BBAC5B9B7AA9321E . 135168 . . [6.00.2900.5512] . . c:\windows\system32\shsvcs.dll

[-] 2004-08-04 . 6004C5BFB151EC97A40118623F9AFCAD . 134656 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\shsvcs.dll

 

[-] 2008-04-14 . 66BC81FEA0C86632255B696A69BA9827 . 59904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\regsvc.dll

[-] 2008-04-14 . 66BC81FEA0C86632255B696A69BA9827 . 59904 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\regsvc.dll

[-] 2008-04-14 . 66BC81FEA0C86632255B696A69BA9827 . 59904 . . [5.1.2600.5512] . . c:\windows\system32\regsvc.dll

[-] 2004-08-04 . E6B18EF583A365649E515DAAADE1560A . 59904 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\regsvc.dll

 

[-] 2008-04-14 . C7DC69A9D8C9AB2FBCA3238C989D598F . 193024 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\schedsvc.dll

[-] 2008-04-14 . C7DC69A9D8C9AB2FBCA3238C989D598F . 193024 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\schedsvc.dll

[-] 2008-04-14 . C7DC69A9D8C9AB2FBCA3238C989D598F . 193024 . . [5.1.2600.5512] . . c:\windows\system32\schedsvc.dll

[-] 2004-08-04 . C40F9882AF2A7139AB2046C0D1E78398 . 191488 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\schedsvc.dll

 

[-] 2008-04-14 . 53FFC29DC150E0107F28F0A622FF8D1A . 71680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ssdpsrv.dll

[-] 2008-04-14 . 53FFC29DC150E0107F28F0A622FF8D1A . 71680 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ssdpsrv.dll

[-] 2008-04-14 . 53FFC29DC150E0107F28F0A622FF8D1A . 71680 . . [5.1.2600.5512] . . c:\windows\system32\ssdpsrv.dll

[-] 2004-08-04 . 7252EFDC36040FEC2C97F4A966B4EC55 . 71680 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ssdpsrv.dll

 

[-] 2008-04-14 . F89C53D455420DF4D66E45842FB3A46E . 295424 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\termsrv.dll

[-] 2008-04-14 . F89C53D455420DF4D66E45842FB3A46E . 295424 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\termsrv.dll

[-] 2008-04-14 . F89C53D455420DF4D66E45842FB3A46E . 295424 . . [5.1.2600.5512] . . c:\windows\system32\termsrv.dll

[-] 2004-08-04 . 7BA1802C39AEC78EC1D9B3B927884A9B . 295424 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\termsrv.dll

 

[-] 2004-08-04 . DECEDC736CEF3C0FFF6E981B31E73A61 . 11776 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys

 

[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\ServicePackFiles\i386\aec.sys

[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\aec.sys

[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\drivers\aec.sys

[-] 2004-08-04 12:00 . 841F385C6CFAF66B58FBD898722BB4F0 . 142464 . . [5.1.2601.2078] . . c:\windows\$NtServicePackUninstall$\aec.sys

 

[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\agp440.sys

[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\agp440.sys

[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\drivers\agp440.sys

[-] 2004-08-03 . 2C428FA0C3E3A01ED93C9B2A27D8D4BB . 42368 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\agp440.sys

 

[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ip6fw.sys

[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ip6fw.sys

[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ip6fw.sys

[-] 2004-08-04 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ip6fw.sys

 

[-] 2008-04-14 16:04 . DC16E39186F6B5D854FA8EB98E71268B . 927504 . . [4.1.0.61] . . c:\windows\ServicePackFiles\i386\mfc40u.dll

[-] 2008-04-14 16:04 . DC16E39186F6B5D854FA8EB98E71268B . 927504 . . [4.1.0.61] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\mfc40u.dll

[-] 2008-04-14 16:04 . DC16E39186F6B5D854FA8EB98E71268B . 927504 . . [4.1.0.61] . . c:\windows\system32\mfc40u.dll

[-] 2004-08-04 12:00 . 17A3CC1BC2399BBED2BE084295F410FB . 924432 . . [4.1.6140] . . c:\windows\$NtServicePackUninstall$\mfc40u.dll

 

[-] 2008-04-14 . 363E8EBAE26BB8B4987C91B4D3CE0F54 . 33792 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msgsvc.dll

[-] 2008-04-14 . 363E8EBAE26BB8B4987C91B4D3CE0F54 . 33792 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\msgsvc.dll

[-] 2008-04-14 . 363E8EBAE26BB8B4987C91B4D3CE0F54 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\msgsvc.dll

[-] 2004-08-04 . D9C0868200BA225E376259F813DE894F . 33792 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\msgsvc.dll

 

[-] 2008-04-14 16:04 . CF8E2625AF439A3F336C499ADE0C4BEC . 52224 . . [9.0.1.56] . . c:\windows\$NtUninstallWMFDist11$\mspmsnsv.dll

[-] 2008-04-14 16:04 . CF8E2625AF439A3F336C499ADE0C4BEC . 52224 . . [9.0.1.56] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\mspmsnsv.dll

[-] 2008-04-14 16:04 . CF8E2625AF439A3F336C499ADE0C4BEC . 52224 . . [9.0.1.56] . . c:\windows\system32\mspmsnsv.dll

[-] 2008-04-14 16:04 . CF8E2625AF439A3F336C499ADE0C4BEC . 52224 . . [9.0.1.56] . . c:\windows\system32\dllcache\mspmsnsv.dll

[-] 2004-08-04 12:00 . B365EED5A9639E1BE6F9D820DDBFDD0B . 52224 . . [9.0.1.56] . . c:\windows\$NtServicePackUninstall$\mspmsnsv.dll

 

[-] 2009-12-10 . 343D35310C693845A6F0FBFCCEE6F6ED . 2066944 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165-v2\SP3QFE\ntkrnlpa.exe

[-] 2009-12-10 . 343D35310C693845A6F0FBFCCEE6F6ED . 2066944 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP3QFE\ntkrnlpa.exe

[-] 2009-12-09 . 343D35310C693845A6F0FBFCCEE6F6ED . 2066944 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165\SP3QFE\ntkrnlpa.exe

[-] 2009-12-09 . 31455820AA14D8323356A59549A65496 . 2058496 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP2GDR\ntkrnlpa.exe

[-] 2009-12-09 . 6E2DBE8947813E746E362AC87209B9FB . 2063872 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP2QFE\ntkrnlpa.exe

[-] 2009-12-09 . 25318C35A78B1BF74EE31B2783DD6458 . 2066816 . . [5.1.2600.5913] . . c:\windows\Driver Cache\i386\ntkrnlpa.exe

[-] 2009-12-09 . 25318C35A78B1BF74EE31B2783DD6458 . 2066816 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP3GDR\ntkrnlpa.exe

[-] 2009-12-09 . 25318C35A78B1BF74EE31B2783DD6458 . 2066816 . . [5.1.2600.5913] . . c:\windows\system32\dllcache\ntkrnlpa.exe

[-] 2009-12-09 . D406ED420D25D672E234F53F54F742A7 . 2024960 . . [5.1.2600.5913] . . c:\windows\system32\ntkrnlpa.exe

[-] 2009-08-04 . 6568FBFE68FA181B3062896882FFECC0 . 2066944 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3QFE\ntkrnlpa.exe

[-] 2009-02-10 . 81C4A213E88283B5C1989BE75E333815 . 2066816 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3GDR\ntkrnlpa.exe

[-] 2009-02-09 . 7104CFDD0A6ECCBC2D08BFEA2790EA2F . 2058496 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2GDR\ntkrnlpa.exe

[-] 2009-02-09 . 0776DF82E2CC1D5553C94E6A7599D1B3 . 2063744 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2QFE\ntkrnlpa.exe

[-] 2009-02-09 . 381ECDBEDCAE721E43220FCC09D21C78 . 2024960 . . [5.1.2600.5755] . . c:\windows\$NtUninstallKB977165-v2$\ntkrnlpa.exe

[-] 2009-02-09 . 4F791E49AE659E3A0E148F88D887401D . 2066944 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntkrnlpa.exe

[-] 2009-02-09 . 4F791E49AE659E3A0E148F88D887401D . 2066944 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3QFE\ntkrnlpa.exe

[-] 2008-08-14 . 238671F196B8CDBC299AF346BF4F3E22 . 2066816 . . [5.1.2600.5657] . . c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe

[-] 2008-04-14 . C0F26B28557E880BB160C3BBD1155F6C . 2024960 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\ntkrnlpa.exe

[-] 2008-04-14 . 559891E5A025A92AC648D4A85EA757C5 . 2066688 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntkrnlpa.exe

[-] 2008-04-14 . 559891E5A025A92AC648D4A85EA757C5 . 2066688 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ntkrnlpa.exe

[-] 2004-08-04 . AC0284721C96C699D4893A91625293EC . 2016256 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ntkrnlpa.exe

 

[-] 2008-04-14 16:04 . 5FD9F539BAF23288D131F1B709A62807 . 435712 . . [5.1.2400.5512] . . c:\windows\ServicePackFiles\i386\ntmssvc.dll

[-] 2008-04-14 16:04 . 5FD9F539BAF23288D131F1B709A62807 . 435712 . . [5.1.2400.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ntmssvc.dll

[-] 2008-04-14 16:04 . 5FD9F539BAF23288D131F1B709A62807 . 435712 . . [5.1.2400.5512] . . c:\windows\system32\ntmssvc.dll

[-] 2004-08-04 12:00 . 4F124D35D080AFD860DAD4DC1C355249 . 435712 . . [5.1.2400.2180] . . c:\windows\$NtServicePackUninstall$\ntmssvc.dll

 

[-] 2008-04-14 . B1222A2302480D56A32C5343150BB16D . 186368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\upnphost.dll

[-] 2008-04-14 . B1222A2302480D56A32C5343150BB16D . 186368 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\upnphost.dll

[-] 2008-04-14 . B1222A2302480D56A32C5343150BB16D . 186368 . . [5.1.2600.5512] . . c:\windows\system32\upnphost.dll

[-] 2004-08-04 . 40D341373885692CD3B67303EBAA443D . 185344 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\upnphost.dll

.

((((((((((((((((((((((((((((( SnapShot@2010-03-19_09.45.44 )))))))))))))))))))))))))))))))))))))))))

.

- 2004-08-04 12:00 . 2008-04-14 16:04 90112 c:\windows\system32\wshext.dll

+ 2004-08-04 12:00 . 2008-05-09 10:56 90112 c:\windows\system32\wshext.dll

+ 2004-08-04 12:00 . 2009-10-21 05:40 75776 c:\windows\system32\strmfilt.dll

- 2004-08-04 12:00 . 2008-04-14 16:04 75776 c:\windows\system32\strmfilt.dll

+ 2004-08-04 12:00 . 2010-03-19 12:38 67312 c:\windows\system32\perfc009.dat

- 2004-08-04 12:00 . 2010-03-18 22:31 67312 c:\windows\system32\perfc009.dat

+ 2004-08-04 12:00 . 2009-10-21 05:40 25088 c:\windows\system32\httpapi.dll

+ 2009-09-22 07:22 . 2009-09-22 07:22 83208 c:\windows\system32\drivers\BDVEDISK.sys

+ 2008-05-09 10:56 . 2008-05-09 10:56 90112 c:\windows\system32\dllcache\wshext.dll

+ 2009-10-21 05:40 . 2009-10-21 05:40 75776 c:\windows\system32\dllcache\strmfilt.dll

+ 2009-10-21 05:40 . 2009-10-21 05:40 25088 c:\windows\system32\dllcache\httpapi.dll

+ 2010-03-19 10:02 . 2010-03-19 10:02 22528 c:\windows\Installer\10eb40.msi

+ 2010-03-19 12:13 . 2010-03-19 12:13 57344 c:\windows\Installer\{A149E33D-74B9-4033-9B53-A5DE82864850}\texticon.exe

+ 2010-03-19 12:13 . 2010-03-19 12:13 32768 c:\windows\Installer\{A149E33D-74B9-4033-9B53-A5DE82864850}\maintenance_icon.exe

+ 2010-03-19 12:13 . 2010-03-19 12:13 61440 c:\windows\Installer\{A149E33D-74B9-4033-9B53-A5DE82864850}\helpicon.exe

+ 2010-03-19 12:35 . 2008-07-08 13:21 18296 c:\windows\ie8updates\KB976662-IE8\spmsg.dll

+ 2010-03-19 12:35 . 2008-07-08 13:21 26488 c:\windows\ie8updates\KB976662-IE8\spcustom.dll

+ 2010-03-19 12:33 . 2008-07-08 13:21 18296 c:\windows\ie8updates\KB971961-IE8\spmsg.dll

+ 2010-03-19 12:33 . 2008-07-08 13:21 26488 c:\windows\ie8updates\KB971961-IE8\spcustom.dll

- 2004-08-04 12:00 . 2008-04-14 16:05 155648 c:\windows\system32\wscript.exe

+ 2004-08-04 12:00 . 2008-05-08 11:24 155648 c:\windows\system32\wscript.exe

+ 2004-08-04 12:00 . 2009-04-03 11:15 485376 c:\windows\system32\wmspdmod.dll

- 2004-08-04 12:00 . 2008-04-14 16:04 485376 c:\windows\system32\wmspdmod.dll

- 2004-08-04 12:00 . 2008-04-14 16:04 233472 c:\windows\system32\wmpdxm.dll

+ 2004-08-04 12:00 . 2009-07-12 11:21 233472 c:\windows\system32\wmpdxm.dll

+ 2004-08-04 12:00 . 2009-08-25 09:20 354816 c:\windows\system32\winhttp.dll

+ 2009-01-15 11:45 . 2009-01-15 11:45 181248 c:\windows\system32\txmlutil.dll

- 2004-08-04 12:00 . 2008-04-14 16:04 172032 c:\windows\system32\scrrun.dll

+ 2004-08-04 12:00 . 2008-05-09 10:56 172032 c:\windows\system32\scrrun.dll

- 2004-08-04 12:00 . 2008-04-14 16:04 180224 c:\windows\system32\scrobj.dll

+ 2004-08-04 12:00 . 2008-05-09 10:56 180224 c:\windows\system32\scrobj.dll

+ 2004-08-04 12:00 . 2010-03-19 12:38 432356 c:\windows\system32\perfh009.dat

- 2004-08-04 12:00 . 2010-03-18 22:31 432356 c:\windows\system32\perfh009.dat

+ 2004-03-31 11:28 . 2004-03-31 11:28 131072 c:\windows\system32\mapi32.dll

- 2004-08-04 12:00 . 2008-04-14 16:05 103936 c:\windows\system32\logagent.exe

+ 2004-08-04 12:00 . 2008-06-10 02:11 103936 c:\windows\system32\logagent.exe

+ 2004-08-04 12:00 . 2009-12-09 05:55 726528 c:\windows\system32\jscript.dll

- 2004-08-04 12:00 . 2009-03-08 03:33 726528 c:\windows\system32\jscript.dll

+ 2004-08-04 12:00 . 2009-10-20 16:20 265728 c:\windows\system32\drivers\http.sys

+ 2009-07-24 10:26 . 2009-07-24 10:26 285704 c:\windows\system32\drivers\bdfsfltr.sys

+ 2009-10-19 15:04 . 2009-10-19 15:04 110984 c:\windows\system32\drivers\bdfndisf.sys

+ 2008-05-08 11:24 . 2008-05-08 11:24 155648 c:\windows\system32\dllcache\wscript.exe

- 2004-08-04 12:00 . 2008-04-14 16:04 485376 c:\windows\system32\dllcache\wmspdmod.dll

+ 2004-08-04 12:00 . 2009-04-03 11:15 485376 c:\windows\system32\dllcache\wmspdmod.dll

- 2004-08-04 12:00 . 2008-04-14 16:04 233472 c:\windows\system32\dllcache\wmpdxm.dll

+ 2004-08-04 12:00 . 2009-07-12 11:21 233472 c:\windows\system32\dllcache\wmpdxm.dll

+ 2008-12-16 12:33 . 2009-08-25 09:20 354816 c:\windows\system32\dllcache\winhttp.dll

+ 2008-05-09 10:56 . 2008-05-09 10:56 172032 c:\windows\system32\dllcache\scrrun.dll

+ 2008-05-09 10:56 . 2008-05-09 10:56 180224 c:\windows\system32\dllcache\scrobj.dll

- 2004-08-04 12:00 . 2008-04-14 16:05 103936 c:\windows\system32\dllcache\logagent.exe

+ 2004-08-04 12:00 . 2008-06-10 02:11 103936 c:\windows\system32\dllcache\logagent.exe

+ 2009-03-08 03:33 . 2009-12-09 05:55 726528 c:\windows\system32\dllcache\jscript.dll

- 2009-03-08 03:33 . 2009-03-08 03:33 726528 c:\windows\system32\dllcache\jscript.dll

+ 2009-10-20 16:20 . 2009-10-20 16:20 265728 c:\windows\system32\dllcache\http.sys

+ 2008-05-07 09:07 . 2008-05-07 09:07 135168 c:\windows\system32\dllcache\cscript.exe

+ 2004-08-04 12:00 . 2008-05-07 09:07 135168 c:\windows\system32\cscript.exe

+ 2010-03-19 12:13 . 2010-03-19 12:13 336782 c:\windows\Installer\{A149E33D-74B9-4033-9B53-A5DE82864850}\register_icon.exe

+ 2010-03-19 12:35 . 2008-07-08 13:21 392568 c:\windows\ie8updates\KB976662-IE8\updspapi.dll

+ 2010-03-19 12:35 . 2008-07-08 13:21 759160 c:\windows\ie8updates\KB976662-IE8\update.exe

+ 2010-03-19 12:35 . 2008-07-08 13:21 232824 c:\windows\ie8updates\KB976662-IE8\spuninst.exe

+ 2010-03-19 12:33 . 2008-07-08 13:21 392568 c:\windows\ie8updates\KB971961-IE8\updspapi.dll

+ 2010-03-19 12:33 . 2008-07-08 13:21 759160 c:\windows\ie8updates\KB971961-IE8\update.exe

+ 2010-03-19 12:33 . 2008-07-08 13:21 232824 c:\windows\ie8updates\KB971961-IE8\spuninst.exe

- 2009-09-11 16:43 . 2009-03-08 02:33 726528 c:\windows\ie8updates\KB971961-IE8\jscript.dll

+ 2009-09-11 16:43 . 2009-03-08 03:33 726528 c:\windows\ie8updates\KB971961-IE8\jscript.dll

+ 2009-10-20 16:20 . 2009-10-20 16:20 265728 c:\windows\Driver Cache\i386\http.sys

+ 2004-08-04 12:00 . 2009-05-26 15:53 2174976 c:\windows\system32\WMVCore.dll

- 2004-08-04 12:00 . 2008-04-14 16:04 4874240 c:\windows\system32\wmp.dll

+ 2004-08-04 12:00 . 2009-07-12 11:21 4874240 c:\windows\system32\wmp.dll

+ 2004-08-04 12:00 . 2008-06-10 05:11 1053696 c:\windows\system32\WMNetmgr.dll

+ 2008-08-26 19:17 . 2009-06-10 08:22 2066432 c:\windows\system32\mstscax.dll

+ 2004-08-04 12:00 . 2009-05-26 15:53 2174976 c:\windows\system32\dllcache\WMVCore.dll

+ 2004-08-04 12:00 . 2009-07-12 11:21 4874240 c:\windows\system32\dllcache\wmp.dll

- 2004-08-04 12:00 . 2008-04-14 16:04 4874240 c:\windows\system32\dllcache\wmp.dll

+ 2004-08-04 12:00 . 2008-06-10 05:11 1053696 c:\windows\system32\dllcache\WMNetmgr.dll

+ 2008-08-26 19:17 . 2009-06-10 08:22 2066432 c:\windows\system32\dllcache\mstscax.dll

+ 2010-03-19 12:13 . 2010-03-19 12:13 14611456 c:\windows\Installer\505d8.msi

.

-- Snapshot återställt till dagens datum --

.

(((((((((((((((((((((((((((((((((( Startpunkter i registret )))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Not* Tomma poster & legitima standardposter visas inte.

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"MsnMsgr"="c:\program\Windows Live\Messenger\MsnMsgr.Exe" [2009-07-26 3883840]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ATIPTA"="c:\program\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2006-02-09 344064]

"e-kort"="c:\program\ekort\ekort.exe" [2008-12-11 377856]

"Adobe Reader Speed Launcher"="c:\program\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]

"QuickTime Task"="c:\program\QuickTime\qttask.exe" [2009-11-10 417792]

"SigmatelSysTrayApp"="stsystra.exe" [2005-03-22 339968]

"BDAgent"="c:\program\BitDefender\BitDefender 2010\bdagent.exe" [2010-01-20 1120704]

"BitDefender Antiphishing Helper"="c:\program\BitDefender\BitDefender 2010\IEShow.exe" [2009-10-19 71152]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

 

c:\documents and settings\Arvid\Start-meny\Program\Autostart\

OpenOffice.org 3.0.lnk - c:\program\OpenOffice.org 3\program\quickstart.exe [2008-9-12 384000]

 

c:\documents and settings\All Users\Start-meny\Program\Autostart\

BankID s„kerhetsprogram.lnk - c:\program\Personal\bin\Personal.exe [2010-2-20 939920]

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Program\\Windows Live\\Messenger\\msnmsgr.exe"=

 

R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2009-12-31 28552]

R2 athsgt;athsgt;c:\windows\system32\drivers\athsgt.sys [2008-11-13 164992]

R2 BDVEDISK;BDVEDISK;c:\program\BitDefender\BitDefender 2010\bdvedisk.sys [2009-09-22 83208]

R2 limsgt;limsgt;c:\windows\system32\drivers\limsgt.sys [2008-11-13 12544]

R3 bdfm;BDFM;c:\windows\system32\drivers\bdfm.sys [2009-12-07 153448]

R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;c:\windows\system32\drivers\bdfndisf.sys [2009-10-19 110984]

S2 gupdate;Tjänsten Google Update (gupdate);c:\program\Google\Update\GoogleUpdate.exe [2009-11-29 135664]

S3 Arrakis3;BitDefender Arrakis Server;c:\program\Delade filer\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2009-10-19 183880]

 

--- Övriga tjänster/drivrutiner i minnet ---

 

*NewlyCreated* - 5B8E5386

*NewlyCreated* - 83BE3077

*Deregistered* - 5b8e5386

*Deregistered* - 83be3077

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

bdx REG_MULTI_SZ scan

.

Innehållet i mappen 'Schemalagda aktiviteter':

 

2010-03-10 c:\windows\Tasks\AppleSoftwareUpdate.job

- c:\program\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

 

2010-03-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program\Google\Update\GoogleUpdate.exe [2009-11-29 20:52]

 

2010-03-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program\Google\Update\GoogleUpdate.exe [2009-11-29 20:52]

 

2010-03-19 c:\windows\Tasks\User_Feed_Synchronization-{5CDC76FA-D26F-40B4-AAC0-705B857E5065}.job

- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]

 

2010-03-19 c:\windows\Tasks\User_Feed_Synchronization-{CD86F014-872E-4A22-BD04-837FD8F3C763}.job

- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]

.

.

------- Extra genomsökning -------

.

uStart Page = file:///C:/Documents%20and%20Settings/Knutsson/Mina%20dokument/internet/startsidan/startsida.htm

uInternet Connection Wizard,ShellNext = iexplore

FF - ProfilePath - c:\documents and settings\Knutsson\Application Data\Mozilla\Firefox\Profiles\kamm187k.default\

FF - prefs.js: browser.startup.homepage - file:///C:/Documents%20and%20Settings/Knutsson/Mina%20dokument/internet/startsidan/startsida.htm

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

 

---- FIREFOX POLICY ----

c:\program\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".se");

.

 

**************************************************************************

 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2010-03-19 15:33

Windows 5.1.2600 Service Pack 3 NTFS

 

scanning hidden processes ...

 

scanning hidden autostart entries ...

 

scanning hidden files ...

 

scan completed successfully

hidden files: 0

 

**************************************************************************

.

--------------------- DLLer som "laddats" under processer som körs ---------------------

 

- - - - - - - > 'explorer.exe'(2296)

c:\windows\system32\webcheck.dll

c:\windows\system32\WPDShServiceObj.dll

c:\windows\system32\PortableDeviceTypes.dll

c:\windows\system32\PortableDeviceApi.dll

.

Sluttid: 2010-03-19 15:37:25

ComboFix-quarantined-files.txt 2010-03-19 14:37

ComboFix2.txt 2010-03-19 09:52

 

Före genomsökningen: 33 720 098 816 byte ledigt

Efter genomsökningen: 33 793 785 856 byte ledigt

 

- - End Of File - - 3EFEC3AD1BA13B3AF9D1FFD6EB84B42E

Länk till kommentar
Dela på andra webbplatser

Du har en gammal databas till MBAM. Du måste uppdatera inifrån programmet innan du söker igenom datorn igen.

 

På sidan http://www.virustotal.com trycker du på Bläddra-knappen och klistrar in ett av följande filnamn i rutan, tryck på Skicka Fil och vänta tills resultatet är klart (Närvarande status blir genomförd). Klistra in en länk till resultatet här. Upprepa med nästa filnamn.

c:\windows\system32\emptyregdb.dat

c:\windows\system32\rezumatenoi.dat

c:\windows\system32\drivers\srv.sys

c:\windows\system32\config\systemprofile\Application Data\fvgqad.dat

c:\windows\system32\drivers\athsgt.sys

c:\windows\system32\drivers\limsgt.sys

 

Sedan är jag oroad över alla dess filer som är uppräknade under Sigcheck-rubriken.

Spara Gmer på Skrivbordet från:

http://www2.gmer.net/download.php

Den har ett slumpmässigt namn så notera vad programmet sparas som.

 

Dra ur internetanslutningen.

Stäng alla program, även antivirusprogram och brandvägg.

Starta det nedladdade programmet.

En första snabbskanning startar.

Om det kommer upp en WARNING som nämner ROOTKIT och frågar om "fully scan" så välj Nej/No. Spara loggen och klistra in i ditt svar. Gör inte mer.

 

Om frågan inte kommer så välj fliken Rootkit/Malware, kontrollera att allt är förbockat till höger utom Show All och andra partitioner än C:\. Tryck på Scan. Låt datorn stå ifred medan Gmer håller på.

Tryck på Save och spara resultatet på Skrivbordet.

Sätt igång antivirusprogram och brandvägg innan du ansluter till internet.

Klistra in resultatet i ditt svar.

Länk till kommentar
Dela på andra webbplatser

Nu har jag uppdaterat MBAM. Resultat:

 

Malwarebytes' Anti-Malware 1.44

Databasversion: 3885

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

 

2010-03-19 16:52:25

mbam-log-2010-03-19 (16-52-25).txt

 

Skanningstyp: Snabb skanning

Antal skannade objekt: 131254

Förfluten tid: 7 minute(s), 42 second(s)

 

Infekterade minnesprocesser: 0

Infekterade minnesmoduler: 0

Infekterade registernycklar: 0

Infekterade registervärden: 0

Infekterade registerdataposter: 0

Infekterade mappar: 0

Infekterade filer: 0

 

Infekterade minnesprocesser:

(Inga illasinnade poster hittades)

 

Infekterade minnesmoduler:

(Inga illasinnade poster hittades)

 

Infekterade registernycklar:

(Inga illasinnade poster hittades)

 

Infekterade registervärden:

(Inga illasinnade poster hittades)

 

Infekterade registerdataposter:

(Inga illasinnade poster hittades)

 

Infekterade mappar:

(Inga illasinnade poster hittades)

 

Infekterade filer:

(Inga illasinnade poster hittades)

Länk till kommentar
Dela på andra webbplatser

Har även kört VirusTotal:

 

c:\windows\system32\emptyregdb.dat

Resultat: 0/42 (0%)

http://www.virustotal.com/sv/analisis/9b2c7ba8edfe81ef78f42af05a2c3f08ac34e528c5722a50cbccbcbd37652a38-1269014068

 

c:\windows\system32\rezumatenoi.dat

Resultat: 0/42 (0%)

http://www.virustotal.com/sv/analisis/fa2ae0bda71cc328a2084ab2c14129422196c64f1a8589407ca481b341ec563b-1269014236

 

c:\windows\system32\drivers\srv.sys

Resultat: 0/41 (0%)

http://www.virustotal.com/sv/analisis/e832b62178f2991b2d006f3fd540ae955811e29eb4fde57445a5c532f8a57c15-1269014426

 

c:\windows\system32\config\systemprofile\Application Data\fvgqad.dat

Resultat: 1/42 (2.39%) Norman TXT/JunkFile.AD

http://www.virustotal.com/sv/analisis/780c6b1d2c74fbcfa0d400ecca317b08ec558501056603517c7123c906dcdd88-1269014651

 

c:\windows\system32\drivers\athsgt.sys

Resultat: 0/42 (0%)

http://www.virustotal.com/sv/analisis/e11321ecad6757b030330fb62d056dc39779afa4658bba8cf62ac7682a6353e8-1269014763

 

c:\windows\system32\drivers\limsgt.sys

Resultat: 0/42 (0%)

http://www.virustotal.com/sv/analisis/d6024085cdf0c9c55aa27a4b4260f10121f4ab94023006d7a96bac4d7c30cfd6-1269014869

Länk till kommentar
Dela på andra webbplatser

Kopiera alla rader i rutan:

Driver::
File::
c:\windows\system32\rezumatenoi.dat
c:\windows\system32\config\systemprofile\Application Data\fvgqad.dat
Folder::

och klistra in i Anteckningar.

Spara filen på Skrivbordet med namnet CFScript.

 

Förbered datorn på samma sätt som tidigare för ComboFix.

Dra CFScript med musen och släpp den ovanpå ComboFix-ikonen på Skrivbordet så startar programmet på ett särskilt sätt.

Klistra in loggen som kommer ut.

Länk till kommentar
Dela på andra webbplatser

Nedan finns loggen från ComboFix med skript.

 

Körde Gmer igår, men jag hann gå och lägga mig innan den var klar (då hade den jobbat i sex timmar) och i morse startade datorn om pga "Allvarligt fel". Återkommer i em när jag kört Gmer en gång till.

 

ComboFix 10-03-18.02 - Knutsson 2010-03-20 7:10.3.2 - x86

Microsoft Windows XP Home Edition 5.1.2600.3.1252.46.1053.18.3070.2616 [GMT 1:00]

Körs från: c:\documents and settings\Knutsson\Skrivbord\ComboFix.exe

Använda kommandoväxlar :: c:\documents and settings\Knutsson\Skrivbord\CFScript.txt

AV: BitDefender Antivirus *On-access scanning disabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB}

FW: BitDefender Firewall *enabled* {4055920F-2E99-48A8-A270-4243D2B8F242}

 

FILE ::

"c:\windows\system32\config\systemprofile\Application Data\fvgqad.dat"

"c:\windows\system32\rezumatenoi.dat"

.

 

((((((((((((((((((((((((((((((((((((((( Andra raderingar ))))))))))))))))))))))))))))))))))))))))))))))))

.

 

c:\windows\system32\config\systemprofile\Application Data\fvgqad.dat

c:\windows\system32\rezumatenoi.dat

 

.

(((((((((((((((((((((((( Filer Skapade från 2010-02-20 till 2010-03-20 ))))))))))))))))))))))))))))))

.

 

2010-03-19 15:42 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2010-03-19 15:42 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys

2010-03-19 12:51 . 2010-03-19 12:52 -------- d-----w- c:\documents and settings\Knutsson\Application Data\Notepad++

2010-03-19 12:51 . 2010-03-19 12:51 -------- d-----w- c:\program\Notepad++

2010-03-19 12:12 . 2010-03-19 12:14 -------- d-----w- c:\documents and settings\All Users\Application Data\BitDefender

2010-03-19 12:12 . 2010-03-19 12:12 -------- d-----w- c:\program\BitDefender

2010-03-19 12:12 . 2010-03-19 12:12 -------- d-----w- c:\documents and settings\Knutsson\Application Data\BitDefender

2010-03-19 12:11 . 2010-03-19 12:12 -------- d-----w- c:\program\Delade filer\BitDefender

2010-03-19 12:04 . 2010-03-19 12:06 1287314 ----a-w- C:\BdUninstallTool2010.03.19-01.04.37.reg

2010-03-18 23:27 . 2010-03-18 23:27 -------- d-----w- c:\documents and settings\Knutsson\Application Data\Malwarebytes

2010-03-18 23:27 . 2010-03-19 15:43 -------- d-----w- c:\program\Malwarebytes' Anti-Malware

2010-03-18 23:27 . 2010-03-18 23:27 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes

2010-03-18 22:11 . 2009-12-11 08:38 69120 -c----w- c:\windows\system32\dllcache\iecompat.dll

2010-03-18 22:11 . 2009-12-21 19:09 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll

2010-03-18 22:11 . 2009-12-21 19:09 594432 -c----w- c:\windows\system32\dllcache\msfeeds.dll

2010-03-18 22:11 . 2009-12-21 19:09 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll

2010-03-18 22:11 . 2009-12-21 19:09 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll

2010-03-18 22:11 . 2009-12-21 19:09 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll

2010-03-18 22:11 . 2009-12-21 19:09 11070464 -c----w- c:\windows\system32\dllcache\ieframe.dll

2010-03-18 20:48 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll

2010-03-18 20:44 . 2008-04-14 15:41 79872 -c----w- c:\windows\system32\dllcache\msxml6r.dll

2010-03-18 20:44 . 2004-08-04 12:00 403 -c----w- c:\windows\system32\dllcache\npdrmv2.zip

2010-03-18 20:44 . 2004-08-04 12:00 22060 -c----w- c:\windows\system32\dllcache\npds.zip

2010-03-18 20:44 . 2008-04-14 16:05 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe

2010-03-18 20:43 . 2008-06-14 17:36 272128 -c----w- c:\windows\system32\dllcache\bthport.sys

2010-03-18 20:35 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys

2010-03-18 20:35 . 2009-07-10 13:31 1315328 -c----w- c:\windows\system32\dllcache\msoe.dll

2010-03-18 20:35 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll

2010-03-18 20:35 . 2008-04-11 19:06 691712 -c----w- c:\windows\system32\dllcache\inetcomm.dll

2010-03-18 20:34 . 2008-10-15 16:38 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll

2010-03-18 20:34 . 2009-07-31 04:35 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll

2010-03-18 20:34 . 2008-04-21 21:16 217088 -c----w- c:\windows\system32\dllcache\wordpad.exe

2010-03-18 20:33 . 2009-10-23 15:28 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe

2010-03-18 20:33 . 2009-12-31 16:50 353792 -c----w- c:\windows\system32\dllcache\srv.sys

2010-03-18 20:33 . 2009-12-04 18:22 455424 -c----w- c:\windows\system32\dllcache\mrxsmb.sys

2010-03-18 19:48 . 2004-08-04 12:00 31232 -c--a-w- c:\windows\system32\dllcache\weitekp9.sys

2010-03-18 19:48 . 2004-08-04 12:00 41600 -c--a-w- c:\windows\system32\dllcache\weitekp9.dll

2010-03-18 19:48 . 2004-08-04 12:00 48256 -c--a-w- c:\windows\system32\dllcache\w32.dll

2010-03-18 19:48 . 2008-04-14 16:04 86073 -c--a-w- c:\windows\system32\dllcache\voicesub.dll

2010-03-18 19:48 . 2008-04-14 16:04 426041 -c--a-w- c:\windows\system32\dllcache\voicepad.dll

2010-03-18 19:46 . 2004-08-04 12:00 6144 -c--a-w- c:\windows\system32\dllcache\kbd101a.dll

2010-03-18 19:45 . 2001-09-06 19:33 5632 -c--a-w- c:\windows\system32\dllcache\EXCH_adsiisex.dll

2010-03-18 19:45 . 2003-04-14 20:10 16384 -c--a-w- c:\windows\system32\dllcache\tcptsat.dll

2010-03-18 19:45 . 2003-04-14 20:10 208896 -c--a-w- c:\windows\system32\dllcache\fpmmcsat.dll

2010-03-18 19:43 . 2004-08-04 12:00 16384 -c--a-w- c:\windows\system32\dllcache\isignup.exe

2010-03-18 19:35 . 2004-08-04 12:00 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll

2010-03-18 19:35 . 2004-08-04 12:00 13312 ----a-w- c:\windows\system32\irclass.dll

2010-03-18 19:35 . 2004-08-04 12:00 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll

2010-03-18 19:35 . 2004-08-04 12:00 24661 ----a-w- c:\windows\system32\spxcoins.dll

2010-03-09 18:30 . 2010-02-12 10:03 293376 ----a-w- c:\windows\system32\browserchoice.exe

2010-03-09 18:19 . 2010-03-09 18:22 429451 ----a-w- C:\BdUninstallTool2010.03.09-07.19.54.reg

2010-02-20 06:18 . 2010-02-20 06:18 -------- d-----w- c:\program\Personal

 

.

(((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-03-19 12:38 . 2004-08-04 12:00 78734 ----a-w- c:\windows\system32\perfc01D.dat

2010-03-19 12:38 . 2004-08-04 12:00 434528 ----a-w- c:\windows\system32\perfh01D.dat

2010-03-19 12:19 . 2009-12-07 17:49 106464 ----a-w- c:\windows\system32\drivers\bdhv.sys

2010-03-19 12:19 . 2009-12-07 17:46 153448 ----a-w- c:\windows\system32\drivers\bdfm.sys

2010-03-19 12:04 . 2008-08-27 16:42 81984 ----a-w- c:\windows\system32\bdod.bin

2010-03-18 22:56 . 2008-12-24 23:16 1 ----a-w- c:\documents and settings\Knutsson\Application Data\OpenOffice.org\3\user\uno_packages\cache\stamp.sys

2010-03-18 22:05 . 2008-08-27 18:41 848 --sha-w- c:\windows\system32\KGyGaAvL.sys

2010-03-18 19:42 . 2008-08-26 19:18 22840 -c--a-w- c:\windows\system32\emptyregdb.dat

2010-03-14 14:51 . 2008-12-18 19:00 -------- d-----w- c:\documents and settings\Knutsson\Application Data\U3

2010-03-14 11:48 . 2010-01-12 19:51 -------- d-----w- c:\documents and settings\All Users\Application Data\WinZip

2010-03-07 07:05 . 2010-01-10 12:18 -------- d-----w- c:\program\Alfons

2010-03-06 13:48 . 2009-06-25 06:30 43520 ----a-w- c:\windows\system32\CmdLineExt03.dll

2010-02-12 09:08 . 2008-08-29 19:41 -------- d-----w- c:\documents and settings\All Users\Application Data\pdf995

2010-02-11 15:37 . 2010-02-11 15:37 -------- d-----w- c:\documents and settings\Knutsson\Application Data\LEGO Media

2010-02-11 15:37 . 2008-08-28 17:38 -------- d--h--w- c:\program\InstallShield Installation Information

2010-02-11 15:37 . 2008-09-02 14:21 -------- d-----w- c:\program\LEGO Media

2010-02-09 21:25 . 2008-08-29 19:41 60 ----a-w- c:\windows\wpd99.drv

2010-02-09 08:59 . 2008-11-16 14:33 -------- d-----w- c:\program\Google

2010-01-29 19:47 . 2008-10-23 10:10 -------- d-----w- c:\documents and settings\Knutsson\Application Data\CopyToDvd

2010-01-29 19:47 . 2008-10-23 09:42 -------- d-----w- c:\documents and settings\Knutsson\Application Data\Vso

2010-01-26 08:18 . 2010-01-12 08:37 -------- d-----w- c:\program\FemMyror1

2010-01-09 13:42 . 2008-09-23 17:30 107888 ----a-w- c:\windows\system32\CmdLineExt.dll

2009-12-31 16:50 . 2004-08-04 12:00 353792 ----a-w- c:\windows\system32\drivers\srv.sys

2009-12-22 05:20 . 2009-12-22 05:20 81920 ------w- c:\windows\system32\ieencode.dll

2009-12-21 19:09 . 2004-08-04 12:00 916480 ----a-w- c:\windows\system32\wininet.dll

.

 

------- Sigcheck -------

 

[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\atapi.sys

[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\atapi.sys

[-] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\drivers\atapi.sys

[-] 2004-08-04 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\atapi.sys

 

[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\asyncmac.sys

[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\asyncmac.sys

[-] 2008-04-13 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\drivers\asyncmac.sys

[-] 2004-08-04 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\asyncmac.sys

 

[-] 2004-08-04 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\beep.sys

[-] 2004-08-04 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys

 

[-] 2008-04-14 . D655CA94C8E2E0223C1BC28BCD95723A . 24832 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\kbdclass.sys

[-] 2008-04-14 . D655CA94C8E2E0223C1BC28BCD95723A . 24832 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\kbdclass.sys

[-] 2008-04-14 . D655CA94C8E2E0223C1BC28BCD95723A . 24832 . . [5.1.2600.5512] . . c:\windows\system32\drivers\kbdclass.sys

[-] 2004-08-04 . CE96BFA4AF66A2FE61982093BD1D8FFB . 24832 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\kbdclass.sys

 

[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ndis.sys

[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ndis.sys

[-] 2008-04-13 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ndis.sys

[-] 2004-08-04 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ndis.sys

 

[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntfs.sys

[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ntfs.sys

[-] 2008-04-13 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ntfs.sys

[-] 2004-08-04 . B78BE402C3F63DD55521F73876951CDD . 574592 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ntfs.sys

 

[-] 2004-08-04 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\null.sys

[-] 2004-08-04 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys

 

[-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys

[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp3gdr\tcpip.sys

[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys

[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys

[-] 2008-06-20 . 2A5554FC5B1E04E131230E3CE035C3F9 . 360320 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp2gdr\tcpip.sys

[-] 2008-06-20 . 744E57C99232201AE98C49168B918F48 . 360960 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp2qfe\tcpip.sys

[-] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\tcpip.sys

[-] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tcpip.sys

[-] 2008-04-13 . 93EA8D04EC73A85DB02EB8805988F733 . 361344 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\tcpip.sys

[-] 2004-08-04 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\tcpip.sys

 

[-] 2008-04-14 . E0D4A1CC49EFB58A32B5E9D35798C9DD . 77824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\browser.dll

[-] 2008-04-14 . E0D4A1CC49EFB58A32B5E9D35798C9DD . 77824 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\browser.dll

[-] 2008-04-14 . E0D4A1CC49EFB58A32B5E9D35798C9DD . 77824 . . [5.1.2600.5512] . . c:\windows\system32\browser.dll

[-] 2004-08-04 . FEC7F081BB318697FB4EABCBF7E4AFF7 . 77312 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\browser.dll

 

[-] 2008-04-14 . FF1805D5DAF41625AF5282750D4A3700 . 13312 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lsass.exe

[-] 2008-04-14 . FF1805D5DAF41625AF5282750D4A3700 . 13312 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\lsass.exe

[-] 2008-04-14 . FF1805D5DAF41625AF5282750D4A3700 . 13312 . . [5.1.2600.5512] . . c:\windows\system32\lsass.exe

[-] 2004-08-04 . BA428312D9A0726E4C07C2037E882520 . 13312 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\lsass.exe

 

[-] 2008-04-14 . 7F791C1C9D3FEC5D3F519C9DB19465D3 . 198144 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netman.dll

[-] 2008-04-14 . 7F791C1C9D3FEC5D3F519C9DB19465D3 . 198144 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\netman.dll

[-] 2008-04-14 . 7F791C1C9D3FEC5D3F519C9DB19465D3 . 198144 . . [5.1.2600.5512] . . c:\windows\system32\netman.dll

[-] 2004-08-04 . D26EFF3B5C1ECE26BE3B7AC630D03331 . 198144 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\netman.dll

 

[-] 2008-04-14 . 9741942A86E579231D3C41AA51DE042F . 409088 . . [6.7.2600.5512] . . c:\windows\ServicePackFiles\i386\qmgr.dll

[-] 2008-04-14 . 9741942A86E579231D3C41AA51DE042F . 409088 . . [6.7.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\qmgr.dll

[-] 2008-04-14 . 9741942A86E579231D3C41AA51DE042F . 409088 . . [6.7.2600.5512] . . c:\windows\system32\qmgr.dll

[-] 2008-04-14 . 9741942A86E579231D3C41AA51DE042F . 409088 . . [6.7.2600.5512] . . c:\windows\system32\bits\qmgr.dll

[-] 2004-08-04 . FAA2463DCDB539D78142E48324C64305 . 382464 . . [6.6.2600.2180] . . c:\windows\$NtServicePackUninstall$\qmgr.dll

 

[-] 2009-02-09 . 4538B0C2A67E774F4BB7D4AC1E1036A1 . 401408 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\rpcss.dll

[-] 2009-02-09 . 4538B0C2A67E774F4BB7D4AC1E1036A1 . 401408 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3QFE\rpcss.dll

[-] 2009-02-09 . 87DADC3F6E6CD5AAEB913E19CBFF922C . 401408 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3GDR\rpcss.dll

[-] 2009-02-09 . 87DADC3F6E6CD5AAEB913E19CBFF922C . 401408 . . [5.1.2600.5755] . . c:\windows\system32\rpcss.dll

[-] 2009-02-09 . 87DADC3F6E6CD5AAEB913E19CBFF922C . 401408 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\rpcss.dll

[-] 2009-02-09 . 976DFC5E0B6DDD87F939CF4948F2913A . 399360 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2GDR\rpcss.dll

[-] 2009-02-09 . DF462BB56B6FA6DEA8B056BB8D88BC68 . 401408 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2QFE\rpcss.dll

[-] 2008-04-14 . CA6C886E70BCD38C4891E26CB4ABD2EB . 399360 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\rpcss.dll

[-] 2008-04-14 . CA6C886E70BCD38C4891E26CB4ABD2EB . 399360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\rpcss.dll

[-] 2008-04-14 . CA6C886E70BCD38C4891E26CB4ABD2EB . 399360 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\rpcss.dll

[-] 2004-08-04 . 94B83B61A9436F00E28E895AF8E55091 . 395776 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\rpcss.dll

 

[-] 2009-02-09 . 8870B0C4A094C1CE80CEA6F85FA38FF2 . 110592 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3GDR\services.exe

[-] 2009-02-09 . 8870B0C4A094C1CE80CEA6F85FA38FF2 . 110592 . . [5.1.2600.5755] . . c:\windows\system32\services.exe

[-] 2009-02-09 . 8870B0C4A094C1CE80CEA6F85FA38FF2 . 110592 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\services.exe

[-] 2009-02-09 . 5DD875F92626DC3C8F46AB3E6CC1C98E . 110592 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\services.exe

[-] 2009-02-09 . 5DD875F92626DC3C8F46AB3E6CC1C98E . 110592 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3QFE\services.exe

[-] 2009-02-09 . 3B41CF1E48524775796C0A4AAA92E26B . 110592 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2GDR\services.exe

[-] 2009-02-09 . 056EDFF8EFA8D44CA9C322BA9B10ECFF . 110592 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2QFE\services.exe

[-] 2008-04-14 . 9436FEE6DF0F12AABDE97BEA8501B538 . 108544 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\services.exe

[-] 2008-04-14 . 9436FEE6DF0F12AABDE97BEA8501B538 . 108544 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\services.exe

[-] 2008-04-14 . 9436FEE6DF0F12AABDE97BEA8501B538 . 108544 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\services.exe

[-] 2004-08-04 . 0DF00535E2F5AEFAEAD3A800F75137AF . 108032 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\services.exe

 

[-] 2008-04-14 . AC6A8CEAAF03081DA74EE70EA2124495 . 57856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\spoolsv.exe

[-] 2008-04-14 . AC6A8CEAAF03081DA74EE70EA2124495 . 57856 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\spoolsv.exe

[-] 2008-04-14 . AC6A8CEAAF03081DA74EE70EA2124495 . 57856 . . [5.1.2600.5512] . . c:\windows\system32\spoolsv.exe

[-] 2004-08-04 . 5770628BC7A7A3E49E7D4426EE60BEE6 . 57856 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\spoolsv.exe

 

[-] 2008-04-14 . ABD2D070BE76A9386A0A283A332E3862 . 507904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\winlogon.exe

[-] 2008-04-14 . ABD2D070BE76A9386A0A283A332E3862 . 507904 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\winlogon.exe

[-] 2008-04-14 . ABD2D070BE76A9386A0A283A332E3862 . 507904 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe

[-] 2004-08-04 . 3E080D3D4F81B0638766CCC4D7707D10 . 502272 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\winlogon.exe

 

[-] 2008-04-14 . EBBEC1CFFA49A5442AD37AB4A619E831 . 617472 . . [5.82] . . c:\windows\ServicePackFiles\i386\comctl32.dll

[-] 2008-04-14 . EBBEC1CFFA49A5442AD37AB4A619E831 . 617472 . . [5.82] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\comctl32.dll

[-] 2008-04-14 . EBBEC1CFFA49A5442AD37AB4A619E831 . 617472 . . [5.82] . . c:\windows\system32\comctl32.dll

[-] 2008-04-14 . 4C3DAA3ACEFD864BB355379035005593 . 1054208 . . [6.0] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\asms\60\msft\windows\common\controls\comctl32.dll

[-] 2004-08-04 . 5ED72EA9559BDC4CFF5122E7DFD41337 . 611328 . . [5.82] . . c:\windows\$NtServicePackUninstall$\comctl32.dll

 

[-] 2008-04-14 . 04FD6585508A7320B2C7453CED231D6B . 62464 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\cryptsvc.dll

[-] 2008-04-14 . 04FD6585508A7320B2C7453CED231D6B . 62464 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\cryptsvc.dll

[-] 2008-04-14 . 04FD6585508A7320B2C7453CED231D6B . 62464 . . [5.1.2600.5512] . . c:\windows\system32\cryptsvc.dll

[-] 2004-08-04 . 2E0BCB4A44E781182953D34D43F57E7F . 60416 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\cryptsvc.dll

 

[-] 2008-07-07 20:32 . CD4CA297537422B3C836F558EB1813C9 . 253952 . . [2001.12.4414.320] . . c:\windows\SoftwareDistribution\Download\81e128e5904afff015389b7b983ded46\sp2gdr\es.dll

[-] 2008-07-07 20:29 . 01CEC6DE315F1A06CE5AA70009C6979E . 253952 . . [2001.12.4414.706] . . c:\windows\SoftwareDistribution\Download\81e128e5904afff015389b7b983ded46\sp3gdr\es.dll

[-] 2008-07-07 20:29 . 01CEC6DE315F1A06CE5AA70009C6979E . 253952 . . [2001.12.4414.706] . . c:\windows\system32\es.dll

[-] 2008-07-07 20:29 . 01CEC6DE315F1A06CE5AA70009C6979E . 253952 . . [2001.12.4414.706] . . c:\windows\system32\dllcache\es.dll

[-] 2008-07-07 20:25 . 66FD60CBE71E38FBF2EC6841D07AA5C3 . 253952 . . [2001.12.4414.706] . . c:\windows\$hf_mig$\KB950974\SP3QFE\es.dll

[-] 2008-07-07 20:23 . 2E8BB8E821E584DA53F6CEDA427BCA4E . 253952 . . [2001.12.4414.320] . . c:\windows\SoftwareDistribution\Download\81e128e5904afff015389b7b983ded46\sp2qfe\es.dll

[-] 2008-04-14 16:04 . 4EC63804DC5809DC0D0BE0AB1EFA0E9E . 246272 . . [2001.12.4414.701] . . c:\windows\$NtUninstallKB950974$\es.dll

[-] 2008-04-14 16:04 . 4EC63804DC5809DC0D0BE0AB1EFA0E9E . 246272 . . [2001.12.4414.701] . . c:\windows\ServicePackFiles\i386\es.dll

[-] 2008-04-14 16:04 . 4EC63804DC5809DC0D0BE0AB1EFA0E9E . 246272 . . [2001.12.4414.701] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\es.dll

[-] 2004-08-04 12:00 . 40D5BBA450D4D639394B1B042C8DBA56 . 243200 . . [2001.12.4414.258] . . c:\windows\$NtServicePackUninstall$\es.dll

 

[-] 2008-04-14 . E95CDEAC9C6B69DF3F414B765CF62040 . 110080 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\imm32.dll

[-] 2008-04-14 . E95CDEAC9C6B69DF3F414B765CF62040 . 110080 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\imm32.dll

[-] 2008-04-14 . E95CDEAC9C6B69DF3F414B765CF62040 . 110080 . . [5.1.2600.5512] . . c:\windows\system32\imm32.dll

[-] 2004-08-04 . D7A091CEBBD237232110BA876FC49033 . 110080 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\imm32.dll

 

[-] 2008-04-14 . 619B0747C67FB805583B1D75AAA72402 . 19968 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\linkinfo.dll

[-] 2008-04-14 . 619B0747C67FB805583B1D75AAA72402 . 19968 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\linkinfo.dll

[-] 2008-04-14 . 619B0747C67FB805583B1D75AAA72402 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\linkinfo.dll

[-] 2004-08-04 . BE6D60A5749C6526107077FA6B05B4E5 . 18944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\linkinfo.dll

 

[-] 2008-04-14 . 8EA9F199253137816A92871F1B98CF0B . 22016 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\lpk.dll

[-] 2008-04-14 . 8EA9F199253137816A92871F1B98CF0B . 22016 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\lpk.dll

[-] 2008-04-14 . 8EA9F199253137816A92871F1B98CF0B . 22016 . . [5.1.2600.5512] . . c:\windows\system32\lpk.dll

[-] 2004-08-04 . FB7048CAFAEC5B78D3F1810FB677C7BE . 22016 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\lpk.dll

 

[7] 2009-12-22 . 58C7E6B4BFF6EAD90BAD88D156871DDF . 3084800 . . [6.00.2900.3660] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp2gdr\mshtml.dll

[7] 2009-12-22 . 251540269A6CEA1ECAF3B95BC583A845 . 3092480 . . [6.00.2900.3660] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp2qfe\mshtml.dll

[7] 2009-12-22 . A8B6C96AEB9115FE69F1DB095D1B8802 . 3092480 . . [6.00.2900.5921] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp3gdr\mshtml.dll

[7] 2009-12-22 . 7CB1F91DE8B2A54A87DC3655412EF50A . 3094528 . . [6.00.2900.5921] . . c:\windows\$hf_mig$\KB978207\SP3QFE\mshtml.dll

[7] 2009-12-22 . 7CB1F91DE8B2A54A87DC3655412EF50A . 3094528 . . [6.00.2900.5921] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp3qfe\mshtml.dll

[-] 2009-12-21 . 8AC2C2EBD245C752ACA1F4AACE96A9CB . 5942784 . . [8.00.6001.18876] . . c:\windows\SoftwareDistribution\Download\281f631aeb22c0ba06ccd0d322de01a5\SP3GDR\mshtml.dll

[-] 2009-12-21 . 8AC2C2EBD245C752ACA1F4AACE96A9CB . 5942784 . . [8.00.6001.18876] . . c:\windows\system32\mshtml.dll

[-] 2009-12-21 . 8AC2C2EBD245C752ACA1F4AACE96A9CB . 5942784 . . [8.00.6001.18876] . . c:\windows\system32\dllcache\mshtml.dll

[-] 2009-12-21 . C61D223B5732174971C4B5115CF97A6C . 5945856 . . [8.00.6001.22967] . . c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\mshtml.dll

[-] 2009-12-21 . C61D223B5732174971C4B5115CF97A6C . 5945856 . . [8.00.6001.22967] . . c:\windows\SoftwareDistribution\Download\281f631aeb22c0ba06ccd0d322de01a5\SP3QFE\mshtml.dll

[-] 2009-10-29 . 84C4556B441B4D209C48BD37ACD4A690 . 5940736 . . [8.00.6001.18854] . . c:\windows\ie8updates\KB978207-IE8\mshtml.dll

[-] 2009-10-29 . 84C4556B441B4D209C48BD37ACD4A690 . 5940736 . . [8.00.6001.18854] . . c:\windows\SoftwareDistribution\Download\7231a52675ed6f6f1e8dae4d7d1ae04c\SP3GDR\mshtml.dll

[-] 2009-10-29 . 791436583556C0BC32753598C3196769 . 5944320 . . [8.00.6001.22945] . . c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\mshtml.dll

[-] 2009-10-29 . 791436583556C0BC32753598C3196769 . 5944320 . . [8.00.6001.22945] . . c:\windows\SoftwareDistribution\Download\7231a52675ed6f6f1e8dae4d7d1ae04c\SP3QFE\mshtml.dll

[-] 2009-10-22 . 1A1170B452E3D6132E91BF25C5CB4A10 . 5943296 . . [8.00.6001.22942] . . c:\windows\$hf_mig$\KB976749-IE8\SP3QFE\mshtml.dll

[-] 2009-08-29 . 2A10826194D928EFD82AA50C96712E5F . 5940224 . . [8.00.6001.18828] . . c:\windows\ie8updates\KB976749-IE8\mshtml.dll

[-] 2009-08-29 . E22E865907E73E7FA2BC6B80A128FD69 . 5942272 . . [8.00.6001.22918] . . c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\mshtml.dll

[-] 2009-07-19 . AA48D80B3611AD33F35F34AD8A546EE5 . 5938176 . . [8.00.6001.22902] . . c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\mshtml.dll

[-] 2009-07-19 . A77E66F54E651BBA360D93CD0F97D92F . 5937152 . . [8.00.6001.18812] . . c:\windows\ie8updates\KB974455-IE8\mshtml.dll

[-] 2009-05-13 . 543FA026FCEF227EE9E7BCE509752AD7 . 5936128 . . [8.00.6001.22873] . . c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\mshtml.dll

[-] 2009-05-13 . BD11926D3DF25513194A4B2E2BCF292E . 5936128 . . [8.00.6001.18783] . . c:\windows\ie8updates\KB972260-IE8\mshtml.dll

[-] 2009-03-08 . D469A0EBA2EF5C6BEE8065B7E3196E5E . 5937152 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB976325-IE8\mshtml.dll

[-] 2009-03-08 . D469A0EBA2EF5C6BEE8065B7E3196E5E . 5937152 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB969897-IE8\mshtml.dll

[-] 2009-02-21 . FE048E56B779B4C3C8C542BDBF59D925 . 3596800 . . [7.00.6000.21015] . . c:\windows\$hf_mig$\KB963027-IE7\SP3QFE\mshtml.dll

[-] 2009-01-16 . 9E7BB7FADDE9C959BACF0C73E0258E13 . 3594752 . . [7.00.6000.16809] . . c:\windows\ie7updates\KB963027-IE7\mshtml.dll

[-] 2009-01-16 . 5A33E1166BEDA8484A89D240EA060245 . 3596288 . . [7.00.6000.20996] . . c:\windows\$hf_mig$\KB961260-IE7\SP2QFE\mshtml.dll

[-] 2008-12-13 . EA41E6964683D1A715F5EBDF26EB0628 . 3593216 . . [7.00.6000.16788] . . c:\windows\ie7updates\KB961260-IE7\mshtml.dll

[-] 2008-12-13 . 1FEE7A02A3E13E86A1629F1C98A9248E . 3594752 . . [7.00.6000.20973] . . c:\windows\$hf_mig$\KB960714-IE7\SP2QFE\mshtml.dll

[-] 2008-10-17 . 7D84D9BA4FEB3B267C4A0049B213A17B . 3593216 . . [7.00.6000.16762] . . c:\windows\ie7updates\KB960714-IE7\mshtml.dll

[-] 2008-10-16 . 52519FE918C19FA2CEE70B53284BDA31 . 3595264 . . [7.00.6000.20935] . . c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\mshtml.dll

[-] 2008-08-27 . A71E35F297E9884D7DF669D479F796F8 . 3593216 . . [7.00.6000.16735] . . c:\windows\ie7updates\KB958215-IE7\mshtml.dll

[-] 2008-08-26 . D0F7AF708E7027BE4887D353289E775D . 3594752 . . [7.00.6000.20900] . . c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\mshtml.dll

[-] 2008-06-25 . 5D05E6BF588DC21D2864F1741DD0026D . 3088896 . . [6.00.2900.5626] . . c:\windows\SoftwareDistribution\Download\b1caa8833edad68b8615b04e88571d60\sp3qfe\mshtml.dll

[-] 2008-06-24 . 3287E3E8F9445B60472E7C010E95CE9B . 3592192 . . [7.00.6000.16705] . . c:\windows\ie7updates\KB956390-IE7\mshtml.dll

[-] 2008-06-24 . 3287E3E8F9445B60472E7C010E95CE9B . 3592192 . . [7.00.6000.16705] . . c:\windows\SoftwareDistribution\Download\b18d8ea58b78a61167e23f47d2b9dc98\SP2GDR\mshtml.dll

[-] 2008-06-23 . 99C425240D7BAEC6A9890CAA8A6EF07C . 3594240 . . [7.00.6000.20861] . . c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\mshtml.dll

[-] 2008-06-23 . 99C425240D7BAEC6A9890CAA8A6EF07C . 3594240 . . [7.00.6000.20861] . . c:\windows\SoftwareDistribution\Download\b18d8ea58b78a61167e23f47d2b9dc98\SP2QFE\mshtml.dll

[-] 2008-06-23 . D55470DB84CB431546D41683AB969568 . 3088384 . . [6.00.2900.5626] . . c:\windows\SoftwareDistribution\Download\b1caa8833edad68b8615b04e88571d60\sp3gdr\mshtml.dll

[-] 2008-04-14 . ABAC4EE83DE2DA38BAB7F65A8146A7A5 . 3066880 . . [6.00.2900.5512] . . c:\windows\ie7\mshtml.dll

[-] 2008-04-14 . ABAC4EE83DE2DA38BAB7F65A8146A7A5 . 3066880 . . [6.00.2900.5512] . . c:\windows\ie8\mshtml.dll

[-] 2008-04-14 . ABAC4EE83DE2DA38BAB7F65A8146A7A5 . 3066880 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\mshtml.dll

[-] 2008-04-14 . ABAC4EE83DE2DA38BAB7F65A8146A7A5 . 3066880 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\mshtml.dll

[-] 2007-08-13 . C6EC2493346ED8888A549F59210A8ED3 . 3578368 . . [7.00.5730.13] . . c:\windows\ie7updates\KB953838-IE7\mshtml.dll

[-] 2004-08-04 . 59B5A7634968B3581DE89F4A4E264D4C . 3003392 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\mshtml.dll

 

[-] 2008-04-14 . 7DF5CF86D9C13E74D507928C0D0336B4 . 343040 . . [7.0.2600.5512] . . c:\windows\ServicePackFiles\i386\msvcrt.dll

[-] 2008-04-14 . 7DF5CF86D9C13E74D507928C0D0336B4 . 343040 . . [7.0.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\msvcrt.dll

[-] 2008-04-14 . 7DF5CF86D9C13E74D507928C0D0336B4 . 343040 . . [7.0.2600.5512] . . c:\windows\system32\msvcrt.dll

[-] 2008-04-14 . B2CDBFF333D361A9CE81B08C46A8920F . 343040 . . [7.0.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\asms\70\msft\windows\mswincrt\msvcrt.dll

[-] 2004-08-04 . A2645A79B4988F4939CFBD796280289C . 343040 . . [7.0.2600.2180] . . c:\windows\$NtServicePackUninstall$\msvcrt.dll

 

[-] 2008-06-20 . BAA1DE3A083F4120840BA929A7366867 . 247296 . . [5.1.2600.5625] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp3gdr\mswsock.dll

[-] 2008-06-20 . BAA1DE3A083F4120840BA929A7366867 . 247296 . . [5.1.2600.5625] . . c:\windows\system32\mswsock.dll

[-] 2008-06-20 . BAA1DE3A083F4120840BA929A7366867 . 247296 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\mswsock.dll

[-] 2008-06-20 . B19355968C355A918F9A3E0B12AA1523 . 247296 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll

[-] 2008-06-20 . D05ED17C8AF0F0124A616D9E40754976 . 247296 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp2gdr\mswsock.dll

[-] 2008-06-20 . 158DE3426F164E76994B7B7967310787 . 247296 . . [5.1.2600.3394] . . c:\windows\SoftwareDistribution\Download\c3ee7ade01b5ca0e8047c4880bb4c17d\sp2qfe\mswsock.dll

[-] 2008-04-14 . BABB92BC3369AC9E2DD47DB5976A11D0 . 247296 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB951748$\mswsock.dll

[-] 2008-04-14 . BABB92BC3369AC9E2DD47DB5976A11D0 . 247296 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\mswsock.dll

[-] 2008-04-14 . BABB92BC3369AC9E2DD47DB5976A11D0 . 247296 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\mswsock.dll

[-] 2004-08-04 . 85D58E28D38F3E3B6E6C6912BFB9562D . 247296 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\mswsock.dll

 

[-] 2009-02-06 . 132A5BBF7FB14BAE44D8803A34E73A96 . 408064 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\69ec2a293bc0096e26a37c0767faca2e\sp2qfe\netlogon.dll

[-] 2009-02-06 . 132A5BBF7FB14BAE44D8803A34E73A96 . 408064 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\9cb7a986d9ff777d70da2507928f4a7a\sp2qfe\netlogon.dll

[-] 2008-04-14 . 4F4A16EAEB932AE413E48923E6A400E0 . 407040 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\netlogon.dll

[-] 2008-04-14 . 4F4A16EAEB932AE413E48923E6A400E0 . 407040 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\netlogon.dll

[-] 2008-04-14 . 4F4A16EAEB932AE413E48923E6A400E0 . 407040 . . [5.1.2600.5512] . . c:\windows\system32\netlogon.dll

[-] 2004-08-04 . A6FD3341EC1A98A31B044C6E0DAF8F26 . 407040 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\netlogon.dll

 

[-] 2009-12-10 . C1D460C98586653DE8F3DF4487B1C40A . 2190080 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165-v2\SP3QFE\ntoskrnl.exe

[-] 2009-12-10 . C1D460C98586653DE8F3DF4487B1C40A . 2190080 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP3QFE\ntoskrnl.exe

[-] 2009-12-09 . C1D460C98586653DE8F3DF4487B1C40A . 2190080 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165\SP3QFE\ntoskrnl.exe

[-] 2009-12-09 . 21B53B13819E72A55C4A7D82B625ED7F . 2181120 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP2GDR\ntoskrnl.exe

[-] 2009-12-09 . 4B72FDFADE98CCA3F2552EA26F86B630 . 2186752 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP2QFE\ntoskrnl.exe

[-] 2009-12-09 . 5455BC01E754F1E1E1EA0C61586F1A18 . 2189952 . . [5.1.2600.5913] . . c:\windows\Driver Cache\i386\ntoskrnl.exe

[-] 2009-12-09 . 5455BC01E754F1E1E1EA0C61586F1A18 . 2189952 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP3GDR\ntoskrnl.exe

[-] 2009-12-09 . 095A9D1E0F27DDE714A28BC55579E359 . 2146304 . . [5.1.2600.5913] . . c:\windows\system32\ntoskrnl.exe

[-] 2009-12-09 . 5455BC01E754F1E1E1EA0C61586F1A18 . 2189952 . . [5.1.2600.5913] . . c:\windows\system32\dllcache\ntoskrnl.exe

[-] 2009-08-04 . A6C4211F1A258869C05378DC60B97E61 . 2190080 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3QFE\ntoskrnl.exe

[-] 2009-02-10 . A9B77A48089BA2B465243F757EDB3691 . 2189952 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3QFE\ntoskrnl.exe

[-] 2009-02-10 . A9B77A48089BA2B465243F757EDB3691 . 2189952 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe

[-] 2009-02-09 . DEED42460E59383B37E38250F2AA552F . 2181248 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2GDR\ntoskrnl.exe

[-] 2009-02-09 . 7FA5B4A962F2A9DF8049A913D0749D6C . 2186880 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2QFE\ntoskrnl.exe

[-] 2009-02-09 . 9997BBBC842F134DB32321E1618572C8 . 2189824 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3GDR\ntoskrnl.exe

[-] 2009-02-09 . 9D1261FF3BDE3232A9C84ACA080A2448 . 2146304 . . [5.1.2600.5755] . . c:\windows\$NtUninstallKB977165-v2$\ntoskrnl.exe

[-] 2008-08-14 . 1A43A9EF689A90E3D914FAC8BB71C084 . 2189952 . . [5.1.2600.5657] . . c:\windows\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe

[-] 2008-04-14 . 141A27527788DD5CE5C3D85BB937EE5E . 2189824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntoskrnl.exe

[-] 2008-04-14 . 141A27527788DD5CE5C3D85BB937EE5E . 2189824 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ntoskrnl.exe

[-] 2008-04-14 . F1471E7F81CA6C20129D3A7529EDFD86 . 2146304 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\ntoskrnl.exe

[-] 2004-08-04 . 9FDBB2B041EA089E9F83EFA8BC57F868 . 2149376 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ntoskrnl.exe

 

[-] 2008-04-14 . 477B6E1192C640FDDD6899255370276D . 17408 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\powrprof.dll

[-] 2008-04-14 . 477B6E1192C640FDDD6899255370276D . 17408 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\powrprof.dll

[-] 2008-04-14 . 477B6E1192C640FDDD6899255370276D . 17408 . . [6.00.2900.5512] . . c:\windows\system32\powrprof.dll

[-] 2004-08-04 . E893663BA7306E29630239795F50DC0B . 17408 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\powrprof.dll

 

[-] 2008-04-14 . 3B50B494647E60CE6AC516E3F5C82B25 . 184832 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\scecli.dll

[-] 2008-04-14 . 3B50B494647E60CE6AC516E3F5C82B25 . 184832 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\scecli.dll

[-] 2008-04-14 . 3B50B494647E60CE6AC516E3F5C82B25 . 184832 . . [5.1.2600.5512] . . c:\windows\system32\scecli.dll

[-] 2004-08-04 . 24BADA1C3795CB877C67E0F2F8BBAD1F . 183808 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\scecli.dll

 

[-] 2008-04-14 . 142DA4249650F32DF9B8BBADAF42BCC4 . 5120 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfc.dll

[-] 2008-04-14 . 142DA4249650F32DF9B8BBADAF42BCC4 . 5120 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\sfc.dll

[-] 2008-04-14 . 142DA4249650F32DF9B8BBADAF42BCC4 . 5120 . . [5.1.2600.5512] . . c:\windows\system32\sfc.dll

[-] 2004-08-04 . EFDB74A669D6085FE3080D08E1F3FEAF . 5120 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\sfc.dll

 

[-] 2008-04-14 . 6CCEF19D7301D9861F90E299C798AD3F . 14336 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\svchost.exe

[-] 2008-04-14 . 6CCEF19D7301D9861F90E299C798AD3F . 14336 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\svchost.exe

[-] 2008-04-14 . 6CCEF19D7301D9861F90E299C798AD3F . 14336 . . [5.1.2600.5512] . . c:\windows\system32\svchost.exe

[-] 2004-08-04 . 22D8A75754B7B9ECC4753E3C09A56B18 . 14336 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\svchost.exe

 

[-] 2008-04-14 . 18261106524F7A93CECEACDC03A5B989 . 249856 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\tapisrv.dll

[-] 2008-04-14 . 18261106524F7A93CECEACDC03A5B989 . 249856 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\tapisrv.dll

[-] 2008-04-14 . 18261106524F7A93CECEACDC03A5B989 . 249856 . . [5.1.2600.5512] . . c:\windows\system32\tapisrv.dll

[-] 2004-08-04 . 5298D6FB9307190052E85F0D89C91A99 . 246272 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\tapisrv.dll

 

[-] 2008-04-14 . E3CF0EC59316EA8E856DB1E1F442CD57 . 578560 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\user32.dll

[-] 2008-04-14 . E3CF0EC59316EA8E856DB1E1F442CD57 . 578560 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\user32.dll

[-] 2008-04-14 . E3CF0EC59316EA8E856DB1E1F442CD57 . 578560 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll

[-] 2004-08-04 . 3E9523A6915656F639A49EBF8453CA00 . 577024 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\user32.dll

 

[-] 2008-04-14 . 317799A2E42B5EA048A8A70F482CBA9F . 26112 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\userinit.exe

[-] 2008-04-14 . 317799A2E42B5EA048A8A70F482CBA9F . 26112 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\userinit.exe

[-] 2008-04-14 . 317799A2E42B5EA048A8A70F482CBA9F . 26112 . . [5.1.2600.5512] . . c:\windows\system32\userinit.exe

[-] 2004-08-04 . 452202227D7A5020D058D49106C0B872 . 24576 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\userinit.exe

 

[7] 2009-12-22 . D1963B5AD72AD03708F8E4488C97AD6E . 662528 . . [6.00.2900.3660] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp2gdr\wininet.dll

[7] 2009-12-22 . CAED0A17F660CEEB44C7139C3CF1DB59 . 669184 . . [6.00.2900.3660] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp2qfe\wininet.dll

[7] 2009-12-22 . F630B944117DE586E50AA9CF3602A285 . 667648 . . [6.00.2900.5921] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp3gdr\wininet.dll

[7] 2009-12-22 . 690F72C01CAD42433DE3D780BEEEC980 . 669184 . . [6.00.2900.5921] . . c:\windows\$hf_mig$\KB978207\SP3QFE\wininet.dll

[7] 2009-12-22 . 690F72C01CAD42433DE3D780BEEEC980 . 669184 . . [6.00.2900.5921] . . c:\windows\SoftwareDistribution\Download\1c813c537867256fda05fcec68b7fe58\sp3qfe\wininet.dll

[-] 2009-12-21 . 5697BB13923C753C54697FBDFFB6FB0E . 916480 . . [8.00.6001.18876] . . c:\windows\SoftwareDistribution\Download\281f631aeb22c0ba06ccd0d322de01a5\SP3GDR\wininet.dll

[-] 2009-12-21 . 5697BB13923C753C54697FBDFFB6FB0E . 916480 . . [8.00.6001.18876] . . c:\windows\system32\wininet.dll

[-] 2009-12-21 . 5697BB13923C753C54697FBDFFB6FB0E . 916480 . . [8.00.6001.18876] . . c:\windows\system32\dllcache\wininet.dll

[-] 2009-12-21 . 493D1BB6DE014EC0558F61D5EE303260 . 916480 . . [8.00.6001.22967] . . c:\windows\$hf_mig$\KB978207-IE8\SP3QFE\wininet.dll

[-] 2009-12-21 . 493D1BB6DE014EC0558F61D5EE303260 . 916480 . . [8.00.6001.22967] . . c:\windows\SoftwareDistribution\Download\281f631aeb22c0ba06ccd0d322de01a5\SP3QFE\wininet.dll

[-] 2009-10-29 . 36583A6EA9E90CA8154D98E12C56BA5B . 916480 . . [8.00.6001.18854] . . c:\windows\ie8updates\KB978207-IE8\wininet.dll

[-] 2009-10-29 . 36583A6EA9E90CA8154D98E12C56BA5B . 916480 . . [8.00.6001.18854] . . c:\windows\SoftwareDistribution\Download\7231a52675ed6f6f1e8dae4d7d1ae04c\SP3GDR\wininet.dll

[-] 2009-10-29 . 12B2C000E7DFA661969BB79B145E5829 . 916480 . . [8.00.6001.22945] . . c:\windows\$hf_mig$\KB976325-IE8\SP3QFE\wininet.dll

[-] 2009-10-29 . 12B2C000E7DFA661969BB79B145E5829 . 916480 . . [8.00.6001.22945] . . c:\windows\SoftwareDistribution\Download\7231a52675ed6f6f1e8dae4d7d1ae04c\SP3QFE\wininet.dll

[-] 2009-08-29 . 00F8442F558E57497BD7770E23C0CB37 . 916480 . . [8.00.6001.22918] . . c:\windows\$hf_mig$\KB974455-IE8\SP3QFE\wininet.dll

[-] 2009-07-03 . D6D7072A4298A8D0CCE7C66807884865 . 915456 . . [8.00.6001.22896] . . c:\windows\$hf_mig$\KB972260-IE8\SP3QFE\wininet.dll

[-] 2009-07-03 . C36047A4F492E8BD84AF38C00D200FDB . 915456 . . [8.00.6001.18806] . . c:\windows\ie8updates\KB974455-IE8\wininet.dll

[-] 2009-05-13 . F141583C843A96E3D3A293317C71202A . 915456 . . [8.00.6001.22873] . . c:\windows\$hf_mig$\KB969897-IE8\SP3QFE\wininet.dll

[-] 2009-05-13 . 8E5C9B190A503287EDC58AFD72AB400F . 915456 . . [8.00.6001.18783] . . c:\windows\ie8updates\KB972260-IE8\wininet.dll

[-] 2009-03-08 . 6CE32F7778061CCC5814D5E0F282D369 . 914944 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB976325-IE8\wininet.dll

[-] 2009-03-08 . 6CE32F7778061CCC5814D5E0F282D369 . 914944 . . [8.00.6001.18702] . . c:\windows\ie8updates\KB969897-IE8\wininet.dll

[-] 2009-03-03 . F43B023F7B8787130195B8022D7C9AB8 . 828416 . . [7.00.6000.21020] . . c:\windows\$hf_mig$\KB963027-IE7\SP3QFE\wininet.dll

[-] 2008-12-20 . 25760D831FB2C82B6C7D14E27A00F9F3 . 827904 . . [7.00.6000.20978] . . c:\windows\$hf_mig$\KB961260-IE7\SP2QFE\wininet.dll

[-] 2008-12-20 . 1AAB5F08D42E5C08F9614FF5EB1FF939 . 826368 . . [7.00.6000.16791] . . c:\windows\ie7updates\KB963027-IE7\wininet.dll

[-] 2008-10-16 . 046DA003D4E4664EBBF9EA40B79BDC28 . 826368 . . [7.00.6000.16762] . . c:\windows\ie7updates\KB961260-IE7\wininet.dll

[-] 2008-10-16 . E54A023EEB7DCF92ADD34940679078E2 . 827904 . . [7.00.6000.20935] . . c:\windows\$hf_mig$\KB958215-IE7\SP2QFE\wininet.dll

[-] 2008-08-26 . 27431705F27B772F4F7903E4BF96EFB2 . 827904 . . [7.00.6000.20900] . . c:\windows\$hf_mig$\KB956390-IE7\SP2QFE\wininet.dll

[-] 2008-08-26 . 91A76D98B206723D21612AECBC1D65CE . 826368 . . [7.00.6000.16735] . . c:\windows\ie7updates\KB958215-IE7\wininet.dll

[-] 2008-06-23 . CE365A16790EC5C5DDDC78820949C02E . 826368 . . [7.00.6000.16705] . . c:\windows\ie7updates\KB956390-IE7\wininet.dll

[-] 2008-06-23 . CE365A16790EC5C5DDDC78820949C02E . 826368 . . [7.00.6000.16705] . . c:\windows\SoftwareDistribution\Download\b18d8ea58b78a61167e23f47d2b9dc98\SP2GDR\wininet.dll

[-] 2008-06-23 . 763148C042469C197933AC956E566226 . 827904 . . [7.00.6000.20861] . . c:\windows\$hf_mig$\KB953838-IE7\SP2QFE\wininet.dll

[-] 2008-06-23 . 763148C042469C197933AC956E566226 . 827904 . . [7.00.6000.20861] . . c:\windows\SoftwareDistribution\Download\b18d8ea58b78a61167e23f47d2b9dc98\SP2QFE\wininet.dll

[-] 2008-06-23 . FC3E1BFFCE916684241709D210DCCDBB . 666624 . . [6.00.2900.5626] . . c:\windows\SoftwareDistribution\Download\b1caa8833edad68b8615b04e88571d60\sp3gdr\wininet.dll

[-] 2008-06-23 . 43CFEBFB41F304E1CBFD1D89EA2BC1F0 . 667136 . . [6.00.2900.5626] . . c:\windows\SoftwareDistribution\Download\b1caa8833edad68b8615b04e88571d60\sp3qfe\wininet.dll

[-] 2008-04-14 . B8D98F0CDF9B1429CD95497AD9995078 . 666624 . . [6.00.2900.5512] . . c:\windows\ie7\wininet.dll

[-] 2008-04-14 . B8D98F0CDF9B1429CD95497AD9995078 . 666624 . . [6.00.2900.5512] . . c:\windows\ie8\wininet.dll

[-] 2008-04-14 . B8D98F0CDF9B1429CD95497AD9995078 . 666624 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\wininet.dll

[-] 2008-04-14 . B8D98F0CDF9B1429CD95497AD9995078 . 666624 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\wininet.dll

[-] 2007-08-13 . A4A0FC92358F39538A6494C42EF99FE9 . 818688 . . [7.00.5730.13] . . c:\windows\ie7updates\KB953838-IE7\wininet.dll

[-] 2004-08-04 . 9F721BD834534E75661D8F9BD1EFDCD7 . 656896 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\wininet.dll

 

[-] 2008-04-14 . 45C8F895EE6D409FC3C5911C7749D60E . 82432 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ws2_32.dll

[-] 2008-04-14 . 45C8F895EE6D409FC3C5911C7749D60E . 82432 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ws2_32.dll

[-] 2008-04-14 . 45C8F895EE6D409FC3C5911C7749D60E . 82432 . . [5.1.2600.5512] . . c:\windows\system32\ws2_32.dll

[-] 2004-08-04 . CD46885DF74086059A723209990298A9 . 82944 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ws2_32.dll

 

[-] 2008-04-14 . 74BB7DCD2BFDCC0E52869DB3582CA781 . 1034240 . . [6.00.2900.5512] . . c:\windows\explorer.exe

[-] 2008-04-14 . 74BB7DCD2BFDCC0E52869DB3582CA781 . 1034240 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\explorer.exe

[-] 2008-04-14 . 74BB7DCD2BFDCC0E52869DB3582CA781 . 1034240 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\explorer.exe

[-] 2004-08-04 . 87A3C8EAD27CF3591713D629D8BCB990 . 1032704 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\explorer.exe

 

[-] 2008-04-14 . 25EDB60132F9D82CB1B7961C1D0D13F2 . 171008 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\srsvc.dll

[-] 2008-04-14 . 25EDB60132F9D82CB1B7961C1D0D13F2 . 171008 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\srsvc.dll

[-] 2008-04-14 . 25EDB60132F9D82CB1B7961C1D0D13F2 . 171008 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll

[-] 2004-08-04 . A0A0308C26C95D75FCFB1411440C5220 . 170496 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\srsvc.dll

 

[-] 2008-04-14 . 6931B3B2E9ADD1CEAEFF480E7FFF0194 . 13824 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\wscntfy.exe

[-] 2008-04-14 . 6931B3B2E9ADD1CEAEFF480E7FFF0194 . 13824 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\wscntfy.exe

[-] 2008-04-14 . 6931B3B2E9ADD1CEAEFF480E7FFF0194 . 13824 . . [5.1.2600.5512] . . c:\windows\system32\wscntfy.exe

[-] 2004-08-04 . 25DC003C667F8F204F3447AC736CD30C . 13824 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\wscntfy.exe

 

[-] 2008-04-14 . 5B3D475AA8629320686FBFFBE67AB492 . 129024 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\xmlprov.dll

[-] 2008-04-14 . 5B3D475AA8629320686FBFFBE67AB492 . 129024 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\xmlprov.dll

[-] 2008-04-14 . 5B3D475AA8629320686FBFFBE67AB492 . 129024 . . [5.1.2600.5512] . . c:\windows\system32\xmlprov.dll

[-] 2004-08-04 . 1315FA775BFE769470E51221318AF34B . 129536 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\xmlprov.dll

 

[-] 2008-04-14 . 0A6DF967AE8E836D053DB46398F603E5 . 56320 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\eventlog.dll

[-] 2008-04-14 . 0A6DF967AE8E836D053DB46398F603E5 . 56320 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\eventlog.dll

[-] 2008-04-14 . 0A6DF967AE8E836D053DB46398F603E5 . 56320 . . [5.1.2600.5512] . . c:\windows\system32\eventlog.dll

[-] 2004-08-04 . 264DBC116901E89565B830B0CC20F922 . 55808 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\eventlog.dll

 

[-] 2008-04-14 . 5AF808D660A8EF98B27596481CE43E5C . 1571840 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\sfcfiles.dll

[-] 2008-04-14 . 5AF808D660A8EF98B27596481CE43E5C . 1571840 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\sfcfiles.dll

[-] 2008-04-14 . 5AF808D660A8EF98B27596481CE43E5C . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll

[-] 2004-08-04 . DA7EDC069A8A299A756839591AA04B8B . 1548288 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\sfcfiles.dll

 

[-] 2008-04-14 . 07F27822A1376C2DA7F8C7265015CEDC . 15360 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ctfmon.exe

[-] 2008-04-14 . 07F27822A1376C2DA7F8C7265015CEDC . 15360 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ctfmon.exe

[-] 2008-04-14 . 07F27822A1376C2DA7F8C7265015CEDC . 15360 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe

[-] 2004-08-04 . FEBE82A289A6645E26B27F3A0A4D2B84 . 15360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ctfmon.exe

 

[-] 2008-04-14 . 187CA499EBD287E7BBAC5B9B7AA9321E . 135168 . . [6.00.2900.5512] . . c:\windows\ServicePackFiles\i386\shsvcs.dll

[-] 2008-04-14 . 187CA499EBD287E7BBAC5B9B7AA9321E . 135168 . . [6.00.2900.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\shsvcs.dll

[-] 2008-04-14 . 187CA499EBD287E7BBAC5B9B7AA9321E . 135168 . . [6.00.2900.5512] . . c:\windows\system32\shsvcs.dll

[-] 2004-08-04 . 6004C5BFB151EC97A40118623F9AFCAD . 134656 . . [6.00.2900.2180] . . c:\windows\$NtServicePackUninstall$\shsvcs.dll

 

[-] 2008-04-14 . 66BC81FEA0C86632255B696A69BA9827 . 59904 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\regsvc.dll

[-] 2008-04-14 . 66BC81FEA0C86632255B696A69BA9827 . 59904 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\regsvc.dll

[-] 2008-04-14 . 66BC81FEA0C86632255B696A69BA9827 . 59904 . . [5.1.2600.5512] . . c:\windows\system32\regsvc.dll

[-] 2004-08-04 . E6B18EF583A365649E515DAAADE1560A . 59904 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\regsvc.dll

 

[-] 2008-04-14 . C7DC69A9D8C9AB2FBCA3238C989D598F . 193024 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\schedsvc.dll

[-] 2008-04-14 . C7DC69A9D8C9AB2FBCA3238C989D598F . 193024 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\schedsvc.dll

[-] 2008-04-14 . C7DC69A9D8C9AB2FBCA3238C989D598F . 193024 . . [5.1.2600.5512] . . c:\windows\system32\schedsvc.dll

[-] 2004-08-04 . C40F9882AF2A7139AB2046C0D1E78398 . 191488 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\schedsvc.dll

 

[-] 2008-04-14 . 53FFC29DC150E0107F28F0A622FF8D1A . 71680 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ssdpsrv.dll

[-] 2008-04-14 . 53FFC29DC150E0107F28F0A622FF8D1A . 71680 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ssdpsrv.dll

[-] 2008-04-14 . 53FFC29DC150E0107F28F0A622FF8D1A . 71680 . . [5.1.2600.5512] . . c:\windows\system32\ssdpsrv.dll

[-] 2004-08-04 . 7252EFDC36040FEC2C97F4A966B4EC55 . 71680 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ssdpsrv.dll

 

[-] 2008-04-14 . F89C53D455420DF4D66E45842FB3A46E . 295424 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\termsrv.dll

[-] 2008-04-14 . F89C53D455420DF4D66E45842FB3A46E . 295424 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\termsrv.dll

[-] 2008-04-14 . F89C53D455420DF4D66E45842FB3A46E . 295424 . . [5.1.2600.5512] . . c:\windows\system32\termsrv.dll

[-] 2004-08-04 . 7BA1802C39AEC78EC1D9B3B927884A9B . 295424 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\termsrv.dll

 

[-] 2004-08-04 . DECEDC736CEF3C0FFF6E981B31E73A61 . 11776 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys

 

[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\ServicePackFiles\i386\aec.sys

[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\aec.sys

[-] 2008-04-13 16:39 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\drivers\aec.sys

[-] 2004-08-04 12:00 . 841F385C6CFAF66B58FBD898722BB4F0 . 142464 . . [5.1.2601.2078] . . c:\windows\$NtServicePackUninstall$\aec.sys

 

[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\agp440.sys

[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\agp440.sys

[-] 2008-04-13 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\drivers\agp440.sys

[-] 2004-08-03 . 2C428FA0C3E3A01ED93C9B2A27D8D4BB . 42368 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\agp440.sys

 

[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ip6fw.sys

[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ip6fw.sys

[-] 2008-04-13 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ip6fw.sys

[-] 2004-08-04 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ip6fw.sys

 

[-] 2008-04-14 16:04 . DC16E39186F6B5D854FA8EB98E71268B . 927504 . . [4.1.0.61] . . c:\windows\ServicePackFiles\i386\mfc40u.dll

[-] 2008-04-14 16:04 . DC16E39186F6B5D854FA8EB98E71268B . 927504 . . [4.1.0.61] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\mfc40u.dll

[-] 2008-04-14 16:04 . DC16E39186F6B5D854FA8EB98E71268B . 927504 . . [4.1.0.61] . . c:\windows\system32\mfc40u.dll

[-] 2004-08-04 12:00 . 17A3CC1BC2399BBED2BE084295F410FB . 924432 . . [4.1.6140] . . c:\windows\$NtServicePackUninstall$\mfc40u.dll

 

[-] 2008-04-14 . 363E8EBAE26BB8B4987C91B4D3CE0F54 . 33792 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\msgsvc.dll

[-] 2008-04-14 . 363E8EBAE26BB8B4987C91B4D3CE0F54 . 33792 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\msgsvc.dll

[-] 2008-04-14 . 363E8EBAE26BB8B4987C91B4D3CE0F54 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\msgsvc.dll

[-] 2004-08-04 . D9C0868200BA225E376259F813DE894F . 33792 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\msgsvc.dll

 

[-] 2008-04-14 16:04 . CF8E2625AF439A3F336C499ADE0C4BEC . 52224 . . [9.0.1.56] . . c:\windows\$NtUninstallWMFDist11$\mspmsnsv.dll

[-] 2008-04-14 16:04 . CF8E2625AF439A3F336C499ADE0C4BEC . 52224 . . [9.0.1.56] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\mspmsnsv.dll

[-] 2008-04-14 16:04 . CF8E2625AF439A3F336C499ADE0C4BEC . 52224 . . [9.0.1.56] . . c:\windows\system32\mspmsnsv.dll

[-] 2008-04-14 16:04 . CF8E2625AF439A3F336C499ADE0C4BEC . 52224 . . [9.0.1.56] . . c:\windows\system32\dllcache\mspmsnsv.dll

[-] 2004-08-04 12:00 . B365EED5A9639E1BE6F9D820DDBFDD0B . 52224 . . [9.0.1.56] . . c:\windows\$NtServicePackUninstall$\mspmsnsv.dll

 

[-] 2009-12-10 . 343D35310C693845A6F0FBFCCEE6F6ED . 2066944 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165-v2\SP3QFE\ntkrnlpa.exe

[-] 2009-12-10 . 343D35310C693845A6F0FBFCCEE6F6ED . 2066944 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP3QFE\ntkrnlpa.exe

[-] 2009-12-09 . 343D35310C693845A6F0FBFCCEE6F6ED . 2066944 . . [5.1.2600.5913] . . c:\windows\$hf_mig$\KB977165\SP3QFE\ntkrnlpa.exe

[-] 2009-12-09 . 31455820AA14D8323356A59549A65496 . 2058496 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP2GDR\ntkrnlpa.exe

[-] 2009-12-09 . 6E2DBE8947813E746E362AC87209B9FB . 2063872 . . [5.1.2600.3654] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP2QFE\ntkrnlpa.exe

[-] 2009-12-09 . 25318C35A78B1BF74EE31B2783DD6458 . 2066816 . . [5.1.2600.5913] . . c:\windows\Driver Cache\i386\ntkrnlpa.exe

[-] 2009-12-09 . 25318C35A78B1BF74EE31B2783DD6458 . 2066816 . . [5.1.2600.5913] . . c:\windows\SoftwareDistribution\Download\767ff9ac9a8753de02edc3bbf658374f\SP3GDR\ntkrnlpa.exe

[-] 2009-12-09 . 25318C35A78B1BF74EE31B2783DD6458 . 2066816 . . [5.1.2600.5913] . . c:\windows\system32\dllcache\ntkrnlpa.exe

[-] 2009-12-09 . D406ED420D25D672E234F53F54F742A7 . 2024960 . . [5.1.2600.5913] . . c:\windows\system32\ntkrnlpa.exe

[-] 2009-08-04 . 6568FBFE68FA181B3062896882FFECC0 . 2066944 . . [5.1.2600.5857] . . c:\windows\$hf_mig$\KB971486\SP3QFE\ntkrnlpa.exe

[-] 2009-02-10 . 81C4A213E88283B5C1989BE75E333815 . 2066816 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3GDR\ntkrnlpa.exe

[-] 2009-02-09 . 7104CFDD0A6ECCBC2D08BFEA2790EA2F . 2058496 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2GDR\ntkrnlpa.exe

[-] 2009-02-09 . 0776DF82E2CC1D5553C94E6A7599D1B3 . 2063744 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP2QFE\ntkrnlpa.exe

[-] 2009-02-09 . 381ECDBEDCAE721E43220FCC09D21C78 . 2024960 . . [5.1.2600.5755] . . c:\windows\$NtUninstallKB977165-v2$\ntkrnlpa.exe

[-] 2009-02-09 . 4F791E49AE659E3A0E148F88D887401D . 2066944 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntkrnlpa.exe

[-] 2009-02-09 . 4F791E49AE659E3A0E148F88D887401D . 2066944 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\770dfa4f4834a636ec37cfca624b4bf3\SP3QFE\ntkrnlpa.exe

[-] 2008-08-14 . 238671F196B8CDBC299AF346BF4F3E22 . 2066816 . . [5.1.2600.5657] . . c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe

[-] 2008-04-14 . C0F26B28557E880BB160C3BBD1155F6C . 2024960 . . [5.1.2600.5512] . . c:\windows\$NtUninstallKB956572$\ntkrnlpa.exe

[-] 2008-04-14 . 559891E5A025A92AC648D4A85EA757C5 . 2066688 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\ntkrnlpa.exe

[-] 2008-04-14 . 559891E5A025A92AC648D4A85EA757C5 . 2066688 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ntkrnlpa.exe

[-] 2004-08-04 . AC0284721C96C699D4893A91625293EC . 2016256 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\ntkrnlpa.exe

 

[-] 2008-04-14 16:04 . 5FD9F539BAF23288D131F1B709A62807 . 435712 . . [5.1.2400.5512] . . c:\windows\ServicePackFiles\i386\ntmssvc.dll

[-] 2008-04-14 16:04 . 5FD9F539BAF23288D131F1B709A62807 . 435712 . . [5.1.2400.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\ntmssvc.dll

[-] 2008-04-14 16:04 . 5FD9F539BAF23288D131F1B709A62807 . 435712 . . [5.1.2400.5512] . . c:\windows\system32\ntmssvc.dll

[-] 2004-08-04 12:00 . 4F124D35D080AFD860DAD4DC1C355249 . 435712 . . [5.1.2400.2180] . . c:\windows\$NtServicePackUninstall$\ntmssvc.dll

 

[-] 2008-04-14 . B1222A2302480D56A32C5343150BB16D . 186368 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\upnphost.dll

[-] 2008-04-14 . B1222A2302480D56A32C5343150BB16D . 186368 . . [5.1.2600.5512] . . c:\windows\SoftwareDistribution\Download\9a14ca4b66ff797a73268961b6265296\upnphost.dll

[-] 2008-04-14 . B1222A2302480D56A32C5343150BB16D . 186368 . . [5.1.2600.5512] . . c:\windows\system32\upnphost.dll

[-] 2004-08-04 . 40D341373885692CD3B67303EBAA443D . 185344 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\upnphost.dll

.

(((((((((((((((((((((((((((((((((( Startpunkter i registret )))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Not* Tomma poster & legitima standardposter visas inte.

REGEDIT4

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"MsnMsgr"="c:\program\Windows Live\Messenger\MsnMsgr.Exe" [2009-07-26 3883840]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ATIPTA"="c:\program\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2006-02-09 344064]

"e-kort"="c:\program\ekort\ekort.exe" [2008-12-11 377856]

"Adobe Reader Speed Launcher"="c:\program\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]

"QuickTime Task"="c:\program\QuickTime\qttask.exe" [2009-11-10 417792]

"SigmatelSysTrayApp"="stsystra.exe" [2005-03-22 339968]

"BDAgent"="c:\program\BitDefender\BitDefender 2010\bdagent.exe" [2010-01-20 1120704]

"BitDefender Antiphishing Helper"="c:\program\BitDefender\BitDefender 2010\IEShow.exe" [2009-10-19 71152]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

 

c:\documents and settings\Arvid\Start-meny\Program\Autostart\

OpenOffice.org 3.0.lnk - c:\program\OpenOffice.org 3\program\quickstart.exe [2008-9-12 384000]

 

c:\documents and settings\All Users\Start-meny\Program\Autostart\

BankID s„kerhetsprogram.lnk - c:\program\Personal\bin\Personal.exe [2010-2-20 939920]

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Program\\Windows Live\\Messenger\\msnmsgr.exe"=

 

R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2009-12-31 28552]

R2 athsgt;athsgt;c:\windows\system32\drivers\athsgt.sys [2008-11-13 164992]

R2 BDVEDISK;BDVEDISK;c:\program\BitDefender\BitDefender 2010\bdvedisk.sys [2009-09-22 83208]

R2 limsgt;limsgt;c:\windows\system32\drivers\limsgt.sys [2008-11-13 12544]

R3 bdfm;BDFM;c:\windows\system32\drivers\bdfm.sys [2009-12-07 153448]

R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;c:\windows\system32\drivers\bdfndisf.sys [2009-10-19 110984]

S2 gupdate;Tjänsten Google Update (gupdate);c:\program\Google\Update\GoogleUpdate.exe [2009-11-29 135664]

S3 Arrakis3;BitDefender Arrakis Server;c:\program\Delade filer\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2009-10-19 183880]

 

--- Övriga tjänster/drivrutiner i minnet ---

 

*NewlyCreated* - D8DD1478

*NewlyCreated* - DE7BBD38

*Deregistered* - d8dd1478

*Deregistered* - de7bbd38

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

bdx REG_MULTI_SZ scan

.

Innehållet i mappen 'Schemalagda aktiviteter':

 

2010-03-10 c:\windows\Tasks\AppleSoftwareUpdate.job

- c:\program\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

 

2010-03-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program\Google\Update\GoogleUpdate.exe [2009-11-29 20:52]

 

2010-03-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program\Google\Update\GoogleUpdate.exe [2009-11-29 20:52]

 

2010-03-19 c:\windows\Tasks\User_Feed_Synchronization-{5CDC76FA-D26F-40B4-AAC0-705B857E5065}.job

- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]

 

2010-03-20 c:\windows\Tasks\User_Feed_Synchronization-{CD86F014-872E-4A22-BD04-837FD8F3C763}.job

- c:\windows\system32\msfeedssync.exe [2007-08-13 02:31]

.

.

------- Extra genomsökning -------

.

uStart Page = file:///C:/Documents%20and%20Settings/Knutsson/Mina%20dokument/internet/startsidan/startsida.htm

uInternet Connection Wizard,ShellNext = iexplore

FF - ProfilePath - c:\documents and settings\Knutsson\Application Data\Mozilla\Firefox\Profiles\kamm187k.default\

FF - prefs.js: browser.startup.homepage - file:///C:/Documents%20and%20Settings/Knutsson/Mina%20dokument/internet/startsidan/startsida.htm

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

 

---- FIREFOX POLICY ----

c:\program\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".se");

.

 

**************************************************************************

 

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2010-03-20 07:16

Windows 5.1.2600 Service Pack 3 NTFS

 

scanning hidden processes ...

 

scanning hidden autostart entries ...

 

scanning hidden files ...

 

scan completed successfully

hidden files: 0

 

**************************************************************************

.

Sluttid: 2010-03-20 07:20:26

ComboFix-quarantined-files.txt 2010-03-20 06:20

ComboFix2.txt 2010-03-19 14:37

ComboFix3.txt 2010-03-19 09:52

 

Före genomsökningen: 31 625 134 080 byte ledigt

Efter genomsökningen: 31 627 673 600 byte ledigt

 

- - End Of File - - FFA026EC4FB2D89828ED76B61B80F634

Länk till kommentar
Dela på andra webbplatser

Om Gmer inte fungerar bra i datorn så pröva RootRepeal och TDSSKiller i stället. Spara dessa två filer på Skrivbordet:

http://rootrepeal.googlepages.com/RootRepeal.zip

http://support.kaspersky.com/downloads/utils/tdsskiller.zip

 

Högerklicka på de två nedladdade zip-filerna och välj Extrahera alla. Se till att uppackningen sker till Skrivbordet. Alternativt så kan du använda ditt eget program för att packa upp zip-filer, se bara till att programfilerna RootRepeal.exe och tdsskiller.exe hamnar på Skrivbordet.

 

Dra ut internetanslutningen. Stäng av alla program du ser inklusive brandvägg, antivirusprogram och antispionprogram.

Hur? Se http://www.bleepingcomputer.com/forums/topic114351.html

 

Starta RootRepeal (i Vista och Windows 7 som vanligt genom att högerklicka på ikonen och välja Kör som administratör).

Välj Report-fliken och tryck på Scan.

Bocka för alla sju valen och tryck sedan på Yes/Ja.

Välj C: och tryck Ok.

Det tar ett tag för RootRepeal att söka igenom C:.

När sökningen är klar så tryck på Save Report och spara den med namnet rootrepeal.log.

 

Start - Kör

Kopiera raden som är i rutan

"%userprofile%\skrivbord\TDSSKiller.exe" -l rapport.txt -v

 

Öppna filer rapport som skapades på Skrivbordet och klistra in innehållet i ditt svar.

Klistra in innehållet i rootrepeal.log i ditt svar.

Länk till kommentar
Dela på andra webbplatser

Har provat Gmer några gånger idag och datorn har startat om sig efter en kort stund. Vet inte om det betyder något, men sista gången glömde jag att stänga av BitDefender. Då kom det en WARNING som nämner ROOTKIT och frågar om "fully scan". Gmer hängde sig utan att göra någon logg, men jag kan se på skärmen att den rödmarkerat

Type=Process

Name=c:\windows\System32\msfeedssync.exe (***hidden***)

Value=2568

 

Nu provar jag RootRepeal och TDSSKiller i stället !

Länk till kommentar
Dela på andra webbplatser

Arkiverat

Det här ämnet är nu arkiverat och är stängt för ytterligare svar.

×
×
  • Skapa nytt...