Jump to content
Sign in to follow this  
boanro

Pc Slowdown

Recommended Posts

Computer has slowed down considerably. Such as, when typing something into google, I have to wait a few seconds before it is actually entered. Then when opening it takes several times longer than it used to. Thought I would post a log, maybe someone might see something that shouldn't be there. Thanks.

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 9:15:28 PM, on 5/1/2011

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\CTsvcCDA.EXE

C:\Program Files\Alwil Software\Avast5\avastUI.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Common Files\Motive\McciCMService.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Program Files\Verizon\VSP\ServicepointService.exe

C:\Program Files\VERIZONDM\bin\sprtsvc.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\VERIZONDM\bin\tgsrvc.exe

C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

C:\Program Files\Chikka Messenger\Chikka v.4\ChikkaLauncher.exe

C:\WINDOWS\system32\LVComsX.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe

C:\Program Files\Veetle\Player\player.exe

C:\Program Files\Veetle\Player\player.exe

C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\WINDOWS\system32\wuauclt.exe

C:\WINDOWS\system32\LMPDPUI.EXE

C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

 

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.yahoo.com/ext/search/search.html'>http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local;*.local

O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll

O2 - BHO: (no name) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - (no file)

O2 - BHO: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - (no file)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll

O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll

O9 - Extra button: (no name) - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {5067A26B-1337-4436-8AFE-EE169C2DA79F} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL

O9 - Extra button: Fiddler2 - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files\Fiddler2\Fiddler.exe" (file missing)

O9 - Extra 'Tools' menuitem: Fiddler2 - {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files\Fiddler2\Fiddler.exe" (file missing)

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O16 - DPF: vzTCPConfig - http://my.verizon.com/micro/speedoptimizer/fios/vzTCPConfig.CAB

O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (MSN Games – Matchmaking) - http://zone.msn.com/binFrameWork/v10/StagingUI.cab55579.cab

O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://support.microsoft.com/Dcode/ActiveX/MSDcode.cab

O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab

O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/betapit/PCPitStop.CAB

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://download.ewido.net/ewidoOnlineScan.cab

O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab

O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll

O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (MSN Games – Buddy Invite) - http://zone.msn.com/BinFrameWork/v10/ZBuddy.cab55579.cab

O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} (CTVUAxCtrl Object) - http://dl.tvunetworks.com/TVUAx.cab

O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://photo.walgreens.com/WalgreensActivia.cab

O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by127fd.bay127.hotmail.msn.com/resources/MsnPUpld.cab

O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (MSN Games – Game Chat) - http://zone.msn.com/binframework/v10/ZPAChat.cab55579.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab

O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab

O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab

O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://floridakeysmedia.tv/axiscam/Codebase/AxisCamControl.ocx

O16 - DPF: {95B5D20C-BD31-4489-8ABF-F8C8BE748463} (ZPA_HRTZ Object) - http://zone.msn.com/bingame/zpagames/zpa_hrtz.cab40641.cab

O16 - DPF: {A27C56D2-3F58-4ABB-AA31-1168EDA6636F} (PCMaticVer Class) - http://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab

O16 - DPF: {A4110378-789B-455F-AE86-3A1BFC402853} (ZPA_SHVL Object) - http://zone.msn.com/bingame/zpagames/zpa_shvl.cab55579.cab

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} (Java Plug-in 1.6.0_17) -

O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (MSN Games – Game Communicator) - http://zone.msn.com/binframework/v10/StProxy.cab55579.cab

O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://66.162.102.214/activex/AMC.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://driveragent.com/files/driveragent.cab

O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O20 - Winlogon Notify: GoToAssist - C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe

O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: IHA_MessageCenter - Unknown owner - C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: McciCMService - Alcatel-Lucent - C:\Program Files\Common Files\Motive\McciCMService.exe

O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe

O23 - Service: ServicepointService - Radialpoint Inc. - C:\Program Files\Verizon\VSP\ServicepointService.exe

O23 - Service: SupportSoft Sprocket Service (verizondm) (sprtsvc_verizondm) - SupportSoft, Inc. - C:\Program Files\VERIZONDM\bin\sprtsvc.exe

O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: SupportSoft Repair Service (verizondm) (tgsrvc_verizondm) - SupportSoft, Inc. - C:\Program Files\VERIZONDM\bin\tgsrvc.exe

O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

 

--

End of file - 13406 bytes

Share this post


Link to post
Share on other sites

Hi boanro , welcome to the forum.

 

To make cleaning this machine easier

  • Please do not uninstall/install any programs unless asked to

    It is more difficult when files/programs are appearing in/disappearing from the logs.

  • Please do not run any scans other than those requested
  • Please follow all instructions in the order posted
  • All logs/reports, etc.. must be posted in Notepad. Please ensure that word wrap is unchecked. In notepad click format, uncheck word wrap if it is checked.
  • Do not attach any logs/reports, etc.. unless specifically requested to do so.
  • If you have problems with or do not understand the instructions, Please ask before continuing.
  • Please stay with this thread until given the All Clear. A absence of symptoms does not mean a clean machine.

 

Looks like you may have mutiple antivirus programs installed. If this is the case it will not give you more protection, it may actually give you less. Multiple antivirus programs will conflict causing the slow down you are experiencing.

 

Avast5

COMODO Internet Security- did you install this with the antivirus?

 

 

Please download DDS and save it to your desktop.

  • Disable any script blocking protection
  • Double click dds.scr to run the tool.
  • When done, DDS.txt will open.An additional log called Attach.txt should appear minimized on the task bar.
  • Save both reports to your desktop before closing the DDS window.

Please post back with

  • antivirus status
  • DDS.txt
  • Attach.txt
Thanks

Share this post


Link to post
Share on other sites

.

DDS (Ver_11-03-05.01) - NTFSx86

Run by Bob at 9:16:13.07 on Tue 05/03/2011

Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_24

Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2045.1286 [GMT -4:00]

.

AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}

FW: COMODO Firewall *Disabled*

.

============== Running Processes ===============

.

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe

C:\WINDOWS\system32\svchost.exe -k netsvcs

C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup

svchost.exe

svchost.exe

C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

svchost.exe

C:\WINDOWS\system32\CTsvcCDA.EXE

C:\Program Files\Alwil Software\Avast5\avastUI.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Common Files\Motive\McciCMService.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\Program Files\Verizon\VSP\ServicepointService.exe

C:\Program Files\VERIZONDM\bin\sprtsvc.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\Program Files\VERIZONDM\bin\tgsrvc.exe

C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

C:\Program Files\Chikka Messenger\Chikka v.4\ChikkaLauncher.exe

C:\WINDOWS\system32\LVComsX.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe

C:\Program Files\Veetle\Player\player.exe

C:\Program Files\Veetle\Player\player.exe

C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe

C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Documents and Settings\Bob\Desktop\dds.scr

C:\Program Files\Skype\Toolbars\Shared\SkypeNames.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.com/

uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8

mStart Page = hxxp://www.yahoo.com

mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html

uInternet Connection Wizard,ShellNext = iexplore

uInternet Settings,ProxyOverride = local;*.local

uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com

BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll

BHO: {043C5167-00BB-4324-AF7E-62013FAEDACF} - No File

BHO: {0974BA1E-64EC-11DE-B2A5-E43756D89593} - No File

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll

BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll

BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar1.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn0\YTSingleInstance.dll

TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar1.dll

TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll

{bc4ffe41-de9f-46fa-b455-aad49b9f9938}

mRun: [avast5] "c:\program files\alwil software\avast5\avastUI.exe" /nogui

mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup

mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime

mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"

uPolicies-explorer: RestrictRun = 0 (0x0)

mPolicies-explorer: RestrictRun = 0 (0x0)

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office12\EXCEL.EXE/3000

IE: {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "c:\program files\fiddler2\Fiddler.exe"

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~4\office12\ONBttnIE.dll

IE: {5067A26B-1337-4436-8AFE-EE169C2DA79F} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll

IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~4\office12\REFIEBAR.DLL

IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll

DPF: vzTCPConfig - hxxp://my.verizon.com/micro/speedoptimizer/fios/vzTCPConfig.CAB

DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} - hxxp://zone.msn.com/binFrameWork/v10/StagingUI.cab55579.cab

DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} - hxxps://support.microsoft.com/Dcode/ActiveX/MSDcode.cab

DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab

DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} - hxxp://www.pcpitstop.com/betapit/PCPitStop.CAB

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204

DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} - hxxp://download.ewido.net/ewidoOnlineScan.cab

DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} - hxxp://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab

DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll

DPF: {33564D57-0000-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB

DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} - hxxp://zone.msn.com/BinFrameWork/v10/ZBuddy.cab55579.cab

DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} - hxxp://dl.tvunetworks.com/TVUAx.cab

DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} - hxxp://photo.walgreens.com/WalgreensActivia.cab

DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - hxxp://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab

DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://by127fd.bay127.hotmail.msn.com/resources/MsnPUpld.cab

DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} - hxxp://zone.msn.com/binframework/v10/ZPAChat.cab55579.cab

DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - hxxp://download.bitdefender.com/resources/scan8/oscan8.cab

DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab

DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab

DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab

DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} - hxxp://floridakeysmedia.tv/axiscam/Codebase/AxisCamControl.ocx

DPF: {95B5D20C-BD31-4489-8ABF-F8C8BE748463} - hxxp://zone.msn.com/bingame/zpagames/zpa_hrtz.cab40641.cab

DPF: {A27C56D2-3F58-4ABB-AA31-1168EDA6636F} - hxxp://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab

DPF: {A4110378-789B-455F-AE86-3A1BFC402853} - hxxp://zone.msn.com/bingame/zpagames/zpa_shvl.cab55579.cab

DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - hxxp://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab

DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab

DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} - hxxp://zone.msn.com/binframework/v10/StProxy.cab55579.cab

DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - hxxp://66.162.102.214/activex/AMC.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} - hxxp://driveragent.com/files/driveragent.cab

DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} - hxxps://secure.gopetslive.com/dev/GoPetsWeb.cab

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL

Handler: x-excid - {9D6CC632-1337-4a33-9214-2DA092E776F4} - c:\windows\downloaded program files\mimectl.dll

Notify: GoToAssist - c:\program files\citrix\gotoassist\514\G2AWinLogon.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\docume~1\bob\applic~1\mozilla\firefox\profiles\uj97gzcy.default\

FF - prefs.js: browser.startup.homepage - hxxp://www.facebook.com/

FF - prefs.js: network.proxy.type - 0

FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll

FF - plugin: c:\documents and settings\bob\application data\move networks\plugins\npqmp071503000010.dll

FF - plugin: c:\documents and settings\bob\application data\mozilla\plugins\np-mswmp.dll

FF - plugin: c:\documents and settings\bob\application data\mozilla\plugins\npgoogletalk.dll

FF - plugin: c:\documents and settings\bob\application data\mozilla\plugins\npgtpo3dautoplugin.dll

FF - plugin: c:\documents and settings\bob\local settings\application data\google\update\1.2.183.39\npGoogleOneClick8.dll

FF - plugin: c:\program files\common files\motive\npMotive.dll

FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll

FF - plugin: c:\program files\google\picasa3\npPicasa3.dll

FF - plugin: c:\program files\google\update\1.2.183.39\npGoogleOneClick8.dll

FF - plugin: c:\program files\google\update\1.3.21.53\npGoogleUpdate3.dll

FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\program files\nos\bin\np_gp.dll

FF - plugin: c:\program files\veetle\player\npvlc.dll

FF - plugin: c:\program files\veetle\plugins\npVeetle.dll

FF - plugin: c:\program files\verizon\vsp\nprpspa.dll

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}

FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension

FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff

FF - Ext: Move Media Player: moveplayer@movenetworks.com - c:\documents and settings\bob\application data\Move Networks

FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}

.

---- FIREFOX POLICIES ----

FF - user.js: yahoo.ytff.general.dontshowhpoffer - true

.

============= SERVICES / DRIVERS ===============

.

R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-2-28 371544]

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2008-9-18 301528]

R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdGuard.sys [2010-6-4 239240]

R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2010-6-1 25240]

R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-9-18 19544]

R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-9-27 42184]

R2 cmdAgent;COMODO Internet Security Helper Service;c:\program files\comodo\comodo internet security\cmdagent.exe [2010-6-1 1901056]

R2 IHA_MessageCenter;IHA_MessageCenter;c:\program files\verizon\iha_messagecenter\bin\Verizon_IHAMessageCenter.exe [2010-10-13 118784]

R2 ServicepointService;ServicepointService;c:\program files\verizon\vsp\ServicepointService.exe [2010-11-22 689392]

R2 sprtsvc_verizondm;SupportSoft Sprocket Service (verizondm);c:\program files\verizondm\bin\sprtsvc.exe [2010-9-29 206120]

R2 tgsrvc_verizondm;SupportSoft Repair Service (verizondm);c:\program files\verizondm\bin\tgsrvc.exe [2010-9-29 185640]

R3 V0060VID;Creative WebCam Live! Ultra;c:\windows\system32\drivers\V0060Vid.sys [2006-4-25 196409]

R3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2010-11-8 25704]

R3 WsAudio_DeviceS(2);WsAudio_DeviceS(2);c:\windows\system32\drivers\WsAudio_DeviceS(2).sys [2010-11-8 25704]

R3 WsAudio_DeviceS(3);WsAudio_DeviceS(3);c:\windows\system32\drivers\WsAudio_DeviceS(3).sys [2010-11-8 25704]

R3 WsAudio_DeviceS(4);WsAudio_DeviceS(4);c:\windows\system32\drivers\WsAudio_DeviceS(4).sys [2010-11-8 25704]

R3 WsAudio_DeviceS(5);WsAudio_DeviceS(5);c:\windows\system32\drivers\WsAudio_DeviceS(5).sys [2010-11-8 25704]

S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-4-29 136176]

S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-4-29 136176]

S3 nosGetPlusHelper;getPlus® Helper 3004;c:\windows\system32\svchost.exe -k nosGetPlusHelper [2004-8-10 14336]

S3 SDTHOOK;SDTHOOK;c:\windows\system32\drivers\SDTHOOK.SYS [2007-12-14 44928]

S3 SndTAudio;SndTAudio;c:\windows\system32\drivers\SndTAudio.sys [2010-11-7 23096]

S3 SwitchBoard;Adobe SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]

S3 WmaCAudio;WmaCAudio;c:\windows\system32\drivers\WmaCAudio.sys [2010-11-7 23096]

.

=============== Created Last 30 ================

.

.

==================== Find3M ====================

.

2011-03-07 05:33:50 692736 ----a-w- c:\windows\system32\inetcomm.dll

2011-03-04 06:37:06 420864 ----a-w- c:\windows\system32\vbscript.dll

2011-03-03 13:21:11 1857920 ----a-w- c:\windows\system32\win32k.sys

2011-02-23 15:04:21 40648 ----a-w- c:\windows\avastSS.scr

2011-02-22 23:06:29 916480 ----a-w- c:\windows\system32\wininet.dll

2011-02-22 23:06:29 43520 ----a-w- c:\windows\system32\licmgr10.dll

2011-02-22 23:06:29 1469440 ----a-w- c:\windows\system32\inetcpl.cpl

2011-02-22 11:41:59 385024 ----a-w- c:\windows\system32\html.iec

2011-02-17 12:32:12 5120 ----a-w- c:\windows\system32\xpsp4res.dll

2011-02-15 12:56:39 290432 ----a-w- c:\windows\system32\atmfd.dll

2011-02-11 13:25:52 229888 ----a-w- c:\windows\system32\fxscover.exe

2011-02-09 13:53:52 270848 ----a-w- c:\windows\system32\sbe.dll

2011-02-09 13:53:52 186880 ----a-w- c:\windows\system32\encdec.dll

2011-02-08 13:33:55 978944 ----a-w- c:\windows\system32\mfc42.dll

2011-02-08 13:33:55 974848 ----a-w- c:\windows\system32\mfc42u.dll

2011-02-03 02:40:23 472808 ----a-w- c:\windows\system32\deployJava1.dll

2011-02-03 00:19:39 73728 ----a-w- c:\windows\system32\javacpl.cpl

.

============= FINISH: 9:20:59.17 ===============

 

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_11-03-05.01)

.

Microsoft Windows XP Home Edition

Boot Device: \Device\HarddiskVolume2

Install Date: 4/25/2006 9:52:43 PM

System Uptime: 4/22/2011 4:13:53 PM (257 hours ago)

.

Motherboard: Dell Inc. | | 0XH241

Processor: Intel® Pentium® D CPU 3.20GHz | Microprocessor | 3192/800mhz

.

==== Disk Partitions =========================

.

A: is Removable

C: is FIXED (NTFS) - 149 GiB total, 80.934 GiB free.

D: is CDROM ()

E: is CDROM ()

F: is CDROM ()

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP1: 2/20/2011 8:58:47 PM - System Checkpoint

RP2: 2/21/2011 9:01:15 PM - System Checkpoint

RP3: 2/22/2011 9:09:36 PM - System Checkpoint

RP4: 2/23/2011 10:09:35 PM - System Checkpoint

RP5: 2/24/2011 3:00:15 AM - Software Distribution Service 3.0

RP6: 2/24/2011 9:58:38 PM - Installed Java 6 Update 24

RP7: 2/26/2011 1:23:55 AM - System Checkpoint

RP8: 2/27/2011 1:52:08 AM - System Checkpoint

RP9: 2/28/2011 1:58:08 AM - System Checkpoint

RP10: 3/1/2011 2:29:17 AM - System Checkpoint

RP11: 3/2/2011 3:29:16 AM - System Checkpoint

RP12: 3/3/2011 4:29:15 AM - System Checkpoint

RP13: 3/4/2011 5:29:15 AM - System Checkpoint

RP14: 3/5/2011 6:29:15 AM - System Checkpoint

RP15: 3/6/2011 7:29:15 AM - System Checkpoint

RP16: 3/7/2011 8:29:16 AM - System Checkpoint

RP17: 3/8/2011 9:29:15 AM - System Checkpoint

RP18: 3/9/2011 11:09:42 AM - System Checkpoint

RP19: 3/10/2011 3:00:22 AM - Software Distribution Service 3.0

RP20: 3/11/2011 3:31:09 AM - System Checkpoint

RP21: 3/12/2011 4:05:03 AM - System Checkpoint

RP22: 3/13/2011 6:05:03 AM - System Checkpoint

RP23: 3/14/2011 6:31:11 AM - System Checkpoint

RP24: 3/15/2011 6:32:15 AM - System Checkpoint

RP25: 3/16/2011 9:50:01 AM - System Checkpoint

RP26: 3/17/2011 11:00:22 AM - System Checkpoint

RP27: 3/18/2011 11:32:14 AM - System Checkpoint

RP28: 3/19/2011 12:31:09 PM - System Checkpoint

RP29: 3/20/2011 2:11:26 PM - System Checkpoint

RP30: 3/21/2011 3:07:35 PM - System Checkpoint

RP31: 3/22/2011 4:07:32 PM - System Checkpoint

RP32: 3/23/2011 5:07:32 PM - System Checkpoint

RP33: 3/24/2011 10:30:21 AM - Software Distribution Service 3.0

RP34: 3/25/2011 11:07:32 AM - System Checkpoint

RP35: 3/26/2011 12:50:49 PM - System Checkpoint

RP36: 3/27/2011 1:45:44 PM - System Checkpoint

RP37: 3/28/2011 2:07:33 PM - System Checkpoint

RP38: 3/29/2011 2:52:17 PM - System Checkpoint

RP39: 3/30/2011 3:52:17 PM - System Checkpoint

RP40: 3/31/2011 4:44:41 PM - System Checkpoint

RP41: 4/1/2011 5:44:40 PM - System Checkpoint

RP42: 4/2/2011 6:44:40 PM - System Checkpoint

RP43: 4/3/2011 7:44:40 PM - System Checkpoint

RP44: 4/4/2011 10:19:17 PM - System Checkpoint

RP45: 4/5/2011 10:41:57 PM - System Checkpoint

RP46: 4/6/2011 11:36:53 PM - System Checkpoint

RP47: 4/8/2011 1:28:14 AM - System Checkpoint

RP48: 4/9/2011 1:29:03 AM - System Checkpoint

RP49: 4/10/2011 2:19:28 AM - System Checkpoint

RP50: 4/11/2011 3:19:29 AM - System Checkpoint

RP51: 4/12/2011 4:19:29 AM - System Checkpoint

RP52: 4/13/2011 4:34:15 AM - System Checkpoint

RP53: 4/14/2011 5:19:28 AM - System Checkpoint

RP54: 4/15/2011 6:20:33 AM - System Checkpoint

RP55: 4/16/2011 7:19:28 AM - System Checkpoint

RP56: 4/17/2011 8:17:10 AM - System Checkpoint

RP57: 4/18/2011 12:42:35 AM - Software Distribution Service 3.0

RP58: 4/19/2011 12:55:40 AM - System Checkpoint

RP59: 4/20/2011 1:15:07 AM - System Checkpoint

RP60: 4/21/2011 1:39:50 AM - System Checkpoint

RP61: 4/21/2011 3:00:15 AM - Software Distribution Service 3.0

RP62: 4/22/2011 3:39:50 AM - System Checkpoint

RP63: 4/23/2011 4:19:31 AM - System Checkpoint

RP64: 4/24/2011 5:19:30 AM - System Checkpoint

RP65: 4/25/2011 6:40:37 AM - System Checkpoint

RP66: 4/26/2011 7:41:32 AM - System Checkpoint

RP67: 4/27/2011 8:19:30 AM - System Checkpoint

RP68: 4/28/2011 3:00:16 AM - Software Distribution Service 3.0

RP69: 4/29/2011 3:19:30 AM - System Checkpoint

RP70: 4/30/2011 4:19:30 AM - System Checkpoint

RP71: 5/1/2011 5:18:49 AM - System Checkpoint

RP72: 5/2/2011 5:30:50 AM - System Checkpoint

.

==== Installed Programs ======================

.

Acrobat.com

Adobe AIR

Adobe Community Help

Adobe Download Manager

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Media Player

Adobe Photoshop CS5

Adobe Reader 9.4.4

Adobe Shockwave Player 11.5

Adobe® Photoshop® Album Starter Edition 3.0

Advanced Spyware Remover Free Edition

Apple Application Support

Apple Mobile Device Support

Apple Software Update

ArcSoft PhotoImpression 4

ArcSoft PhotoImpression 5

AutoUpdate

avast! Free Antivirus

AXIS Media Control Embedded

Bonjour

BSR Screen Recorder 4

CamGrab-2SE

CamStudio

CCleaner

CCScore

Chikka Messenger V4

CinepPlayer 30 Update

COMODO Internet Security

Compatibility Pack for the 2007 Office system

Conexant D850 56K V.9x DFVc Modem

Creative MediaSource

Creative WebCam Center

Creative WebCam Live! Ultra Driver (1.01.03.0127)

Creative WebCam Live! Ultra User's Guide (English)

Critical Update for Windows Media Player 11 (KB959772)

Daniusoft Digital WMA MP3 Converter(Build 2.6.0.0)

Dell CinePlayer

Dell Driver Reset Tool

Dell Media Experience

Digital Content Portal

Digital Line Detect

DivX Codec

DivX Content Uploader

DivX Converter

DivX Player

DivX Web Player

Documentation & Support Launcher

EasyCleaner

EducateU

ELIcon

ESET Online Scanner v3

ESSBrwr

ESSCDBK

ESScore

ESSgui

ESSini

ESSPCD

ESSPDock

ESSSONIC

ESSTOOLS

essvatgt

Fiddler2

Fishdom

FM Screen Capture Codec (Remove Only)

FrostWire 4.21.3

Games, Music, & Photos Launcher

Google Chrome

Google Earth

Google Talk Plugin

Google Toolbar for Internet Explorer

Google Update Helper

GoToAssist 8.0.0.514

HijackThis 2.0.2

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

Hotfix for Windows Media Format 11 SDK (KB929399)

Hotfix for Windows Media Player 11 (KB939683)

Hotfix for Windows XP (KB2158563)

Hotfix for Windows XP (KB2443685)

Hotfix for Windows XP (KB952287)

Hotfix for Windows XP (KB954550-v5)

Hotfix for Windows XP (KB961118)

Hotfix for Windows XP (KB970653-v3)

Hotfix for Windows XP (KB976098-v2)

Hotfix for Windows XP (KB979306)

Hotfix for Windows XP (KB981793)

IHA_MessageCenter

IrfanView (remove only)

irock! Digital Download Manager

iTunes

Java Auto Updater

Java 6 Update 24

kgcbase

KODAK EASYSHARE Gallery Easy Upload, v2.1

Kodak EasyShare software

Learn2 Player (Uninstall Only)

Lexmark X125

Logitech QuickCam Software

Logitech® Camera Driver

Malwarebytes' Anti-Malware

MCU

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.5 SP1

Microsoft Compression Client Pack 1.0 for Windows XP

Microsoft Internationalized Domain Names Mitigation APIs

Microsoft National Language Support Downlevel APIs

Microsoft Office 2007 Service Pack 2 (SP2)

Microsoft Office Access MUI (English) 2007

Microsoft Office Access Setup Metadata MUI (English) 2007

Microsoft Office Converter Pack

Microsoft Office Enterprise 2007

Microsoft Office Excel MUI (English) 2007

Microsoft Office Groove MUI (English) 2007

Microsoft Office Groove Setup Metadata MUI (English) 2007

Microsoft Office InfoPath MUI (English) 2007

Microsoft Office OneNote MUI (English) 2007

Microsoft Office Outlook MUI (English) 2007

Microsoft Office PowerPoint MUI (English) 2007

Microsoft Office PowerPoint Viewer 2003

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (Spanish) 2007

Microsoft Office Proofing (English) 2007

Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

Microsoft Office Publisher MUI (English) 2007

Microsoft Office Shared MUI (English) 2007

Microsoft Office Shared Setup Metadata MUI (English) 2007

Microsoft Office Word MUI (English) 2007

Microsoft Outlook Web Access S/MIME

Microsoft Plus! Digital Media Edition Installer

Microsoft Plus! Photo Story 2 LE

Microsoft Silverlight

Microsoft Software Update for Web Folders (English) 12

Microsoft User-Mode Driver Framework Feature Pack 1.0

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft_VC80_ATL_x86

Microsoft_VC80_CRT_x86

Microsoft_VC80_MFC_x86

Microsoft_VC80_MFCLOC_x86

Microsoft_VC90_ATL_x86

Microsoft_VC90_CRT_x86

Microsoft_VC90_MFC_x86

Modem Helper

Move Media Player

Mozilla Firefox (3.6.17)

MSXML 4.0 SP2 (KB927978)

MSXML 4.0 SP2 (KB936181)

MSXML 4.0 SP2 (KB954430)

MSXML 4.0 SP2 (KB973688)

MSXML 4.0 SP3 Parser (KB973685)

MY CAMERA

netbrdg

Netflix Movie Viewer

NetWaiting

Nokia Connectivity Cable Driver

Nokia Lifeblog 2.1

Nokia MTP driver

Nokia PC Connectivity Solution

Nokia PC Suite

NVIDIA Drivers

OfotoXMI

PDF Settings CS5

Photo Click

PicaJet 2.5.0.460

Picasa 3

QuickTime

RealNetworks - Microsoft Visual C++ 2008 Runtime

RealPlayer

RealUpgrade 1.1

Redist

Rhapsody Player Engine

Roxio DLA

Roxio MyDVD LE

Roxio RecordNow Audio

Roxio RecordNow Copy

Roxio RecordNow Data

Sansa Updater

ScreenVirtuoso 1.61

ScreenVirtuoso Pro 2.15

Search Settings v1.2.3

Security Update for 2007 Microsoft Office System (KB2288621)

Security Update for 2007 Microsoft Office System (KB2288931)

Security Update for 2007 Microsoft Office System (KB2345043)

Security Update for 2007 Microsoft Office System (KB2466156)

Security Update for 2007 Microsoft Office System (KB2509488)

Security Update for 2007 Microsoft Office System (KB969559)

Security Update for 2007 Microsoft Office System (KB976321)

Security Update for CAPICOM (KB931906)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)

Security Update for Microsoft Office Access 2007 (KB979440)

Security Update for Microsoft Office Excel 2007 (KB2464583)

Security Update for Microsoft Office Groove 2007 (KB2494047)

Security Update for Microsoft Office InfoPath 2007 (KB979441)

Security Update for Microsoft Office PowerPoint 2007 (KB2464594)

Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)

Security Update for Microsoft Office Publisher 2007 (KB2284697)

Security Update for Microsoft Office system 2007 (972581)

Security Update for Microsoft Office system 2007 (KB974234)

Security Update for Microsoft Office Visio Viewer 2007 (KB973709)

Security Update for Microsoft Office Word 2007 (KB2344993)

Security Update for Step By Step Interactive Training (KB898458)

Security Update for Step By Step Interactive Training (KB923723)

Security Update for Windows Internet Explorer 8 (KB2183461)

Security Update for Windows Internet Explorer 8 (KB2360131)

Security Update for Windows Internet Explorer 8 (KB2416400)

Security Update for Windows Internet Explorer 8 (KB2482017)

Security Update for Windows Internet Explorer 8 (KB2497640)

Security Update for Windows Internet Explorer 8 (KB2510531)

Security Update for Windows Internet Explorer 8 (KB969897)

Security Update for Windows Internet Explorer 8 (KB971961)

Security Update for Windows Internet Explorer 8 (KB972260)

Security Update for Windows Internet Explorer 8 (KB974455)

Security Update for Windows Internet Explorer 8 (KB976325)

Security Update for Windows Internet Explorer 8 (KB978207)

Security Update for Windows Internet Explorer 8 (KB981332)

Security Update for Windows Internet Explorer 8 (KB982381)

Security Update for Windows Media Player (KB2378111)

Security Update for Windows Media Player (KB911564)

Security Update for Windows Media Player (KB952069)

Security Update for Windows Media Player (KB954155)

Security Update for Windows Media Player (KB968816)

Security Update for Windows Media Player (KB973540)

Security Update for Windows Media Player (KB975558)

Security Update for Windows Media Player (KB978695)

Security Update for Windows Media Player 10 (KB911565)

Security Update for Windows Media Player 10 (KB917734)

Security Update for Windows Media Player 11 (KB936782)

Security Update for Windows Media Player 11 (KB954154)

Security Update for Windows Media Player 6.4 (KB925398)

Security Update for Windows Media Player 9 Series (KB969878)

Security Update for Windows XP (KB2079403)

Security Update for Windows XP (KB2115168)

Security Update for Windows XP (KB2121546)

Security Update for Windows XP (KB2160329)

Security Update for Windows XP (KB2229593)

Security Update for Windows XP (KB2259922)

Security Update for Windows XP (KB2279986)

Security Update for Windows XP (KB2286198)

Security Update for Windows XP (KB2296011)

Security Update for Windows XP (KB2296199)

Security Update for Windows XP (KB2347290)

Security Update for Windows XP (KB2360937)

Security Update for Windows XP (KB2387149)

Security Update for Windows XP (KB2393802)

Security Update for Windows XP (KB2412687)

Security Update for Windows XP (KB2419632)

Security Update for Windows XP (KB2423089)

Security Update for Windows XP (KB2436673)

Security Update for Windows XP (KB2440591)

Security Update for Windows XP (KB2443105)

Security Update for Windows XP (KB2476687)

Security Update for Windows XP (KB2478960)

Security Update for Windows XP (KB2478971)

Security Update for Windows XP (KB2479628)

Security Update for Windows XP (KB2479943)

Security Update for Windows XP (KB2481109)

Security Update for Windows XP (KB2483185)

Security Update for Windows XP (KB2485376)

Security Update for Windows XP (KB2485663)

Security Update for Windows XP (KB2491683)

Security Update for Windows XP (KB2503658)

Security Update for Windows XP (KB2506212)

Security Update for Windows XP (KB2506223)

Security Update for Windows XP (KB2507618)

Security Update for Windows XP (KB2508272)

Security Update for Windows XP (KB2508429)

Security Update for Windows XP (KB2509553)

Security Update for Windows XP (KB2511455)

Security Update for Windows XP (KB2524375)

Security Update for Windows XP (KB923561)

Security Update for Windows XP (KB938464)

Security Update for Windows XP (KB941569)

Security Update for Windows XP (KB946648)

Security Update for Windows XP (KB950759)

Security Update for Windows XP (KB950760)

Security Update for Windows XP (KB950762)

Security Update for Windows XP (KB950974)

Security Update for Windows XP (KB951066)

Security Update for Windows XP (KB951376-v2)

Security Update for Windows XP (KB951698)

Security Update for Windows XP (KB951748)

Security Update for Windows XP (KB952004)

Security Update for Windows XP (KB952954)

Security Update for Windows XP (KB953838)

Security Update for Windows XP (KB953839)

Security Update for Windows XP (KB954211)

Security Update for Windows XP (KB954459)

Security Update for Windows XP (KB954600)

Security Update for Windows XP (KB955069)

Security Update for Windows XP (KB956390)

Security Update for Windows XP (KB956391)

Security Update for Windows XP (KB956572)

Security Update for Windows XP (KB956744)

Security Update for Windows XP (KB956802)

Security Update for Windows XP (KB956803)

Security Update for Windows XP (KB956841)

Security Update for Windows XP (KB956844)

Security Update for Windows XP (KB957095)

Security Update for Windows XP (KB957097)

Security Update for Windows XP (KB958215)

Security Update for Windows XP (KB958644)

Security Update for Windows XP (KB958687)

Security Update for Windows XP (KB958690)

Security Update for Windows XP (KB958869)

Security Update for Windows XP (KB959426)

Security Update for Windows XP (KB960225)

Security Update for Windows XP (KB960714)

Security Update for Windows XP (KB960715)

Security Update for Windows XP (KB960803)

Security Update for Windows XP (KB960859)

Security Update for Windows XP (KB961371)

Security Update for Windows XP (KB961373)

Security Update for Windows XP (KB961501)

Security Update for Windows XP (KB968537)

Security Update for Windows XP (KB969059)

Security Update for Windows XP (KB969898)

Security Update for Windows XP (KB969947)

Security Update for Windows XP (KB970238)

Security Update for Windows XP (KB970430)

Security Update for Windows XP (KB971468)

Security Update for Windows XP (KB971486)

Security Update for Windows XP (KB971557)

Security Update for Windows XP (KB971633)

Security Update for Windows XP (KB971657)

Security Update for Windows XP (KB972270)

Security Update for Windows XP (KB973346)

Security Update for Windows XP (KB973354)

Security Update for Windows XP (KB973507)

Security Update for Windows XP (KB973525)

Security Update for Windows XP (KB973869)

Security Update for Windows XP (KB973904)

Security Update for Windows XP (KB974112)

Security Update for Windows XP (KB974318)

Security Update for Windows XP (KB974392)

Security Update for Windows XP (KB974571)

Security Update for Windows XP (KB975025)

Security Update for Windows XP (KB975467)

Security Update for Windows XP (KB975560)

Security Update for Windows XP (KB975561)

Security Update for Windows XP (KB975562)

Security Update for Windows XP (KB975713)

Security Update for Windows XP (KB977165-v2)

Security Update for Windows XP (KB977816)

Security Update for Windows XP (KB977914)

Security Update for Windows XP (KB978037)

Security Update for Windows XP (KB978251)

Security Update for Windows XP (KB978262)

Security Update for Windows XP (KB978338)

Security Update for Windows XP (KB978542)

Security Update for Windows XP (KB978601)

Security Update for Windows XP (KB978706)

Security Update for Windows XP (KB979309)

Security Update for Windows XP (KB979482)

Security Update for Windows XP (KB979559)

Security Update for Windows XP (KB979683)

Security Update for Windows XP (KB979687)

Security Update for Windows XP (KB980195)

Security Update for Windows XP (KB980218)

Security Update for Windows XP (KB980232)

Security Update for Windows XP (KB980436)

Security Update for Windows XP (KB981322)

Security Update for Windows XP (KB981852)

Security Update for Windows XP (KB981957)

Security Update for Windows XP (KB981997)

Security Update for Windows XP (KB982132)

Security Update for Windows XP (KB982214)

Security Update for Windows XP (KB982665)

Security Update for Windows XP (KB982802)

SFR

SHASTA

skin0001

SKINXSDK

Skype web features

Skype™ 4.1

Sonic Activation Module

Sonic Advanced Decoder

Sonic Update Manager

Sound Blaster Audigy 2 ZS

Spybot - Search & Destroy

SpywareBlaster v3.5.1

staticcr

tooltips

Tweak UI

TweakNow RegCleaner Standard

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Microsoft Office OneNote 2007 (KB980729)

Update for Microsoft Office Outlook 2007 (KB2412171)

Update for Outlook 2007 Junk Email Filter (KB2522999)

Update for Windows Internet Explorer 8 (KB968220)

Update for Windows Internet Explorer 8 (KB976662)

Update for Windows Internet Explorer 8 (KB976749)

Update for Windows Internet Explorer 8 (KB980182)

Update for Windows XP (KB2141007)

Update for Windows XP (KB2345886)

Update for Windows XP (KB2467659)

Update for Windows XP (KB951072-v2)

Update for Windows XP (KB951978)

Update for Windows XP (KB955759)

Update for Windows XP (KB955839)

Update for Windows XP (KB967715)

Update for Windows XP (KB968389)

Update for Windows XP (KB971029)

Update for Windows XP (KB971737)

Update for Windows XP (KB973687)

Update for Windows XP (KB973815)

Veetle TV 0.9.18

Ventrilo Client

Verizon Download Manager

Verizon FiOS Activation

Verizon Help and Support Tool

Verizon Media Manager

Verizon Servicepoint 3.5.18

Verizon Yahoo! Applications

Visual C++ 2008 x86 Runtime - (v9.0.30729)

Visual C++ 2008 x86 Runtime - v9.0.30729.01

VLC media player 1.0.0

VPRINTOL

Vz In Home Agent

WebFldrs XP

Windows Driver Package - Nokia Modem (06/12/2006 6.81.0.21)

Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray

Windows Genuine Advantage Notifications (KB905474)

Windows Installer 3.1 (KB893803)

Windows Installer Clean Up

Windows Internet Explorer 8

Windows Live installer

Windows Media Format 11 runtime

Windows Media Player 10

Windows Media Player 11

Windows XP Service Pack 3

WIRELESS

WordPerfect Office 12

Y!mLite 261.1

YahELite 301

Yahoo! Software Update

Yazak Chat 8.86.57

.

==== End Of File ===========================

 

The Comodo, I downloaded at a time when I was having trouble getting windows firewall to work. I can delete that now anytime. Thanks for looking in and helping.

Share this post


Link to post
Share on other sites

Hi boanro ,

 

Comodo appears to be installed with just the firewall. When did you first notice the slow down? Any other symptoms?

 

 

 

FrostWire 4.21.3

You have FrostWire 4.21.3, a P2P/file sharing program installed on your computer. P2P applications like it are the largest source of malware we see. You'll be doing yourself a favor by removing it.

 

References for the risk of these programs can be found in these links:

http://www.microsoft.com/windows/ie/commun...protection.mspx

 

http://www.internetworldstats.com/articles/art053.htm://http://www.techweb.com/wire/1605005...cles/art053.htm

 

I would recommend that you uninstall FrostWire 4.21.3, however that choice is up to you. If you choose to remove this program, you can do so via Control Panel >> Add or Remove Programs.

 

If you wish to keep it, please do not use it until your computer is cleaned.

 

Open hijackthis, do a system scan only and checkmark these lines, if present

 

O2 - BHO: (no name) - {043C5167-00BB-4324-AF7E-62013FAEDACF} - (no file)

O2 - BHO: (no name) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - (no file)

O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} (Java Plug-in 1.6.0_17) -

 

Close ALL other windows/browsers and click Fix Checked. Answer Yes if prompted. Close HJT.

 

 

 

Download aswMBR.exe ( 511KB ) to your desktop.

 

Double click the aswMBR.exe to run it

 

Posted Image

Click the "Scan" button to start scan

 

Posted Image

On completion of the scan click save log, save it to your desktop and post in your next reply

Share this post


Link to post
Share on other sites

aswMBR version 0.9.5.256 Copyright© 2011 AVAST Software

Run date: 2011-05-03 18:07:43

-----------------------------

18:07:43.514 OS Version: Windows 5.1.2600 Service Pack 3

18:07:43.514 Number of processors: 2 586 0x602

18:07:43.514 ComputerName: MONACO UserName: Bob

18:07:44.279 Initialize success

18:07:46.576 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000076

18:07:46.576 Disk 0 Vendor: SAMSUNG_HD160JJ/P ZM100-34 Size: 152587MB BusType: 3

18:07:46.576 Disk 0 MBR read error 0

18:07:46.576 Disk 0 MBR scan

18:07:46.576 Disk 0 unknown MBR code

18:07:46.576 MBR BIOS signature not found 0

18:07:46.592 Disk 0 scanning sectors +312480315

18:07:46.592 Disk 0 scanning C:\WINDOWS\system32\drivers

18:07:54.389 Service scanning

18:07:55.560 Disk 0 trace - called modules:

18:07:55.576 ntkrnlpa.exe CLASSPNP.SYS disk.sys nvatabus.sys spjw.sys hal.dll >>UNKNOWN [0x8ab40938]<<

18:07:55.576 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8aa85ab8]

18:07:55.576 3 CLASSPNP.SYS[ba0c8fd7] -> nt!IofCallDriver -> \Device\00000076[0x8aa23030]

18:07:55.576 Scan finished successfully

18:08:12.279 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Bob\Desktop\MBR.dat"

18:08:12.279 The log file has been saved successfully to "C:\Documents and Settings\Bob\Desktop\aswMBR.txt"

 

This problem started about 2 weeks ago. It does not keep me from using the pc, it is just annoying to be typing something into google, then have to wait a few seconds for it to catch up.

Edited by boanro

Share this post


Link to post
Share on other sites

Hi boanro,

 

There may be a false reading in that last scan. It may be caused some software you have installed that could interfer with aswMBR. We'll temporarily disable some drivers and make sure we get an accurate log.

 

 

 

Please download DeFogger to your desktop.

Double click DeFogger to run the tool.

  • The application window will appear
  • Click the Disable button to disable your CD Emulation drivers
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • If it needs to, DeFogger may ask to reboot the machine - click OK
IMPORTANT! If you receive an error message while running DeFogger, please post the log defogger_disable which will appear on your desktop.

Do not re-enable these drivers until otherwise instructed.

 

 

Next

 

 

Please rerun aswMBR.exe as you did before and post the log produced.

Share this post


Link to post
Share on other sites

aswMBR version 0.9.5.256 Copyright© 2011 AVAST Software

Run date: 2011-05-04 10:17:02

-----------------------------

10:17:02.328 OS Version: Windows 5.1.2600 Service Pack 3

10:17:02.328 Number of processors: 2 586 0x602

10:17:02.328 ComputerName: MONACO UserName: Bob

10:17:04.390 Initialize success

10:17:08.500 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000074

10:17:08.500 Disk 0 Vendor: SAMSUNG_HD160JJ/P ZM100-34 Size: 152587MB BusType: 3

10:17:08.515 Disk 0 MBR read successfully

10:17:08.515 Disk 0 MBR scan

10:17:08.515 Disk 0 Windows XP default MBR code

10:17:08.515 Disk 0 scanning sectors +312480315

10:17:08.546 Disk 0 scanning C:\WINDOWS\system32\drivers

10:17:17.593 Service scanning

10:17:21.000 Disk 0 trace - called modules:

10:17:21.015 ntkrnlpa.exe CLASSPNP.SYS disk.sys nvatabus.sys hal.dll

10:17:21.015 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8ab26ab8]

10:17:21.015 3 CLASSPNP.SYS[ba0c8fd7] -> nt!IofCallDriver -> \Device\00000074[0x8ab0e030]

10:17:21.015 Scan finished successfully

10:17:31.359 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Bob\Desktop\MBR.dat"

10:17:31.359 The log file has been saved successfully to "C:\Documents and Settings\Bob\Desktop\aswMBR.txt"

Share this post


Link to post
Share on other sites

H iboanro,

 

That log looks good.

 

Which browser are you using? Is it the same with all browsers?

 

 

 

Download TFC to your desktop

  • Close any open windows.
  • Double click the TFC icon to run the program
  • TFC will close all open programs itself in order to run,
  • Click the Start button to begin the process.
  • Allow TFC to run uninterrupted.
  • The program should not take long to finish it's job
  • Once its finished it should automatically reboot your machine,
  • if it doesn't, manually reboot to ensure a complete clean

Next

 

You have this program installed, Malwarebytes' Anti-Malware (MBAM). Please update it and run a scan.

 

Open MBAM

 

  • Click the Update tab
  • Click Check for Updates
  • If an update is found, it will download and install the latest version.
  • The program will close to update and reopen.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.

 

Please post back with

  • MBAM log
Thanks

Share this post


Link to post
Share on other sites

Malwarebytes' Anti-Malware 1.50.1.1100

www.malwarebytes.org

 

Database version: 6509

 

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

 

5/5/2011 10:33:29 AM

mbam-log-2011-05-05 (10-33-29).txt

 

Scan type: Quick scan

Objects scanned: 179851

Time elapsed: 4 minute(s), 6 second(s)

 

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 1

Files Infected: 0

 

Memory Processes Infected:

(No malicious items detected)

 

Memory Modules Infected:

(No malicious items detected)

 

Registry Keys Infected:

(No malicious items detected)

 

Registry Values Infected:

(No malicious items detected)

 

Registry Data Items Infected:

(No malicious items detected)

 

Folders Infected:

c:\documents and settings\Bob\application data\Mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@playsushi.com (PUP.PlaySushi) -> Quarantined and deleted successfully.

 

Files Infected:

(No malicious items detected)

 

I am using IE7. It actually seems to be working correctly now.

Share this post


Link to post
Share on other sites

Hi boanro,

 

Perhaps your temporary internet files got a little out of hand. When is the last time you did some basic maintanance and cleanup?

 

Try using the computer for a bit. Let me know how you make out and if it still seems ok we'll clean up the tools.

Share this post


Link to post
Share on other sites

I do keep my temp files and such pretty clean. I'd say once every 2 weeks I use my cleaning tools. Right now everything does seem fine, but unfortunately it will be a couple of days till I can spend adequate time and do a sufficient test. I will respond back to this in about 2 days if you don't mind keeping it open.

Share this post


Link to post
Share on other sites

Ok, well it is a whole lot better. It still seems a little jumpy, meaning when typing into google, it may take a second or two for the words to be typed out, but it's not like before because then I would have to stop and wait for it to catch up. Does that make sense? Anyway, the way it is now, it's hardly noticeble and definitely bearable.

Share this post


Link to post
Share on other sites

Hi boanro,

 

 

Let's see if this will turn anything up.

 

Please read through these instructions to familarize yourself with what to expect when this tool runs

 

 

Download ComboFix from one of these locations:

 

Link 1

Link 2

 

 

* IMPORTANT !!! Save ComboFix.exe to your Desktop

 

  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. Note: If you are having difficulty properly disabling your protective programs, or are unsure as to what programs need to be disabled, please refer to the information available through this link : How to Disable your Security Programs

  • Double click on ComboFix.exe & follow the prompts.

  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.

  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

 

Posted Image

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

 

Posted Image

 

Click on Yes, to continue scanning for malware.

 

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.

 

Notes:

 

1.Do not mouse-click Combofix's window while it is running. That may cause it to stall.

2. ComboFix may reset a number of Internet Explorer's settings, including making I-E the default browser.

3. Combofix prevents autorun of ALL CD, floppy and USB devices to assist with malware removal & increase security. If this is an issue or makes it difficult for you -- please tell your helper.

4. CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.

 

 

Please post back with the combofix log.

 

Thanks

Share this post


Link to post
Share on other sites

ComboFix 11-05-09.04 - Bob 05/10/2011 22:07:21.11.2 - x86

Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2045.1452 [GMT -4:00]

Running from: c:\documents and settings\Bob\Desktop\ComboFix.exe

AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}

FW: COMODO Firewall *Disabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}

.

.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat

c:\documents and settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat

.

----- BITS: Possible infected sites -----

.

hxxp://au.downj+|Cv+@J:NGD_DQ{zcxLJS@7E)WUmWU Client DownloadS-1-5-18`HT4?? 6VwoQZCDHM6VwoQZCDHMXudddd*3VcxLJS@GD_DQ{zGD_DQ{zGD_DQ{z+@J:Nj+|Cvupdate.com

.

((((((((((((((((((((((((( Files Created from 2011-04-11 to 2011-05-11 )))))))))))))))))))))))))))))))

.

.

2011-04-14 07:39 . 2011-04-14 07:39 103864 ----a-w- c:\program files\Mozilla Firefox\plugins\nppdf32.dll

2011-04-14 07:39 . 2011-04-14 07:39 103864 ----a-w- c:\program files\Internet Explorer\PLUGINS\nppdf32.dll

.

.

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-03-07 05:33 . 2004-08-10 18:02 692736 ----a-w- c:\windows\system32\inetcomm.dll

2011-03-04 06:37 . 2004-08-10 17:51 420864 ----a-w- c:\windows\system32\vbscript.dll

2011-03-03 13:21 . 2004-08-10 17:51 1857920 ----a-w- c:\windows\system32\win32k.sys

2011-02-23 15:04 . 2010-09-27 04:03 40648 ----a-w- c:\windows\avastSS.scr

2011-02-23 15:04 . 2008-09-18 05:43 190016 ----a-w- c:\windows\system32\aswBoot.exe

2011-02-23 14:56 . 2011-02-28 15:41 371544 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2011-02-23 14:56 . 2008-09-18 05:43 301528 ----a-w- c:\windows\system32\drivers\aswSP.sys

2011-02-23 14:55 . 2008-09-18 05:43 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2011-02-23 14:55 . 2008-09-18 05:43 102232 ----a-w- c:\windows\system32\drivers\aswmon2.sys

2011-02-23 14:55 . 2008-09-18 05:43 96344 ----a-w- c:\windows\system32\drivers\aswmon.sys

2011-02-23 14:55 . 2008-09-18 05:43 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys

2011-02-23 14:54 . 2008-09-18 05:43 30680 ----a-w- c:\windows\system32\drivers\aavmker4.sys

2011-02-23 14:54 . 2008-09-18 05:43 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

2011-02-22 23:06 . 2004-08-10 17:51 916480 ----a-w- c:\windows\system32\wininet.dll

2011-02-22 23:06 . 2004-08-10 17:51 43520 ----a-w- c:\windows\system32\licmgr10.dll

2011-02-22 23:06 . 2004-08-10 17:51 1469440 ----a-w- c:\windows\system32\inetcpl.cpl

2011-02-22 11:41 . 2004-08-10 17:51 385024 ----a-w- c:\windows\system32\html.iec

2011-02-17 13:18 . 2006-04-22 12:59 455936 ----a-w- c:\windows\system32\drivers\mrxsmb.sys

2011-02-17 13:18 . 2006-04-22 12:59 357888 ----a-w- c:\windows\system32\drivers\srv.sys

2011-02-17 12:32 . 2009-04-15 02:23 5120 ----a-w- c:\windows\system32\xpsp4res.dll

2011-02-15 12:56 . 2004-08-10 17:50 290432 ----a-w- c:\windows\system32\atmfd.dll

2011-02-11 13:25 . 2004-08-10 18:01 229888 ----a-w- c:\windows\system32\fxscover.exe

.

.

((((((((((((((((((((((((((((( SnapShot@2011-02-21_14.55.01 )))))))))))))))))))))))))))))))))))))))))

.

+ 2011-05-09 09:53 . 2011-05-09 09:53 16384 c:\windows\TEMP\Perflib_Perfdata_c60.dat

+ 2004-08-10 17:51 . 2011-04-18 04:55 69256 c:\windows\system32\perfc009.dat

- 2004-08-10 17:51 . 2010-11-08 03:04 69256 c:\windows\system32\perfc009.dat

- 2004-08-10 17:51 . 2010-12-20 23:59 66560 c:\windows\system32\mshtmled.dll

+ 2004-08-10 17:51 . 2011-02-22 23:06 66560 c:\windows\system32\mshtmled.dll

+ 2009-03-08 08:31 . 2011-02-22 23:06 55296 c:\windows\system32\msfeedsbs.dll

- 2009-03-08 08:31 . 2010-12-20 23:59 55296 c:\windows\system32\msfeedsbs.dll

+ 2004-08-10 17:51 . 2011-02-22 23:06 25600 c:\windows\system32\jsproxy.dll

- 2004-08-10 17:51 . 2010-12-20 23:59 25600 c:\windows\system32\jsproxy.dll

- 2004-08-10 17:50 . 2008-04-14 00:11 45568 c:\windows\system32\dnsrslvr.dll

+ 2004-08-10 17:50 . 2009-04-20 17:17 45568 c:\windows\system32\dnsrslvr.dll

+ 2009-06-11 17:01 . 2011-02-22 23:06 12800 c:\windows\system32\dllcache\xpshims.dll

- 2009-06-11 17:01 . 2010-12-20 23:59 12800 c:\windows\system32\dllcache\xpshims.dll

- 2009-03-08 08:31 . 2010-12-20 23:59 66560 c:\windows\system32\dllcache\mshtmled.dll

+ 2009-03-08 08:31 . 2011-02-22 23:06 66560 c:\windows\system32\dllcache\mshtmled.dll

+ 2009-07-29 13:30 . 2011-02-22 23:06 55296 c:\windows\system32\dllcache\msfeedsbs.dll

- 2009-07-29 13:30 . 2010-12-20 23:59 55296 c:\windows\system32\dllcache\msfeedsbs.dll

- 2009-03-08 08:34 . 2010-12-20 23:59 43520 c:\windows\system32\dllcache\licmgr10.dll

+ 2009-03-08 08:34 . 2011-02-22 23:06 43520 c:\windows\system32\dllcache\licmgr10.dll

+ 2004-08-10 17:51 . 2011-02-22 23:06 25600 c:\windows\system32\dllcache\jsproxy.dll

- 2004-08-10 17:51 . 2010-12-20 23:59 25600 c:\windows\system32\dllcache\jsproxy.dll

- 2004-08-10 17:50 . 2008-04-14 00:11 45568 c:\windows\system32\dllcache\dnsrslvr.dll

+ 2004-08-10 17:50 . 2009-04-20 17:17 45568 c:\windows\system32\dllcache\dnsrslvr.dll

+ 2011-04-29 12:47 . 2011-04-29 12:47 21504 c:\windows\Installer\22736536.msi

- 2008-10-06 18:54 . 2011-02-10 08:01 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe

+ 2008-10-06 18:54 . 2011-04-18 04:59 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe

+ 2008-10-06 18:54 . 2011-04-18 04:59 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe

- 2008-10-06 18:54 . 2011-02-10 08:01 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe

- 2008-10-06 18:54 . 2011-02-10 08:01 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe

+ 2008-10-06 18:54 . 2011-04-18 04:59 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe

- 2010-11-10 16:48 . 2010-11-10 16:48 34632 c:\windows\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe

+ 2011-04-18 04:52 . 2011-04-18 04:52 34632 c:\windows\Installer\{90120000-0020-0409-0000-0000000FF1CE}\O12ConvIcon.exe

+ 2010-06-06 19:36 . 2011-04-21 07:01 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll

- 2010-06-06 19:36 . 2010-12-24 04:09 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll

+ 2011-04-18 04:56 . 2010-12-20 23:59 12800 c:\windows\ie8updates\KB2497640-IE8\xpshims.dll

+ 2011-04-18 04:56 . 2010-12-20 23:59 66560 c:\windows\ie8updates\KB2497640-IE8\mshtmled.dll

+ 2011-04-18 04:56 . 2010-12-20 23:59 55296 c:\windows\ie8updates\KB2497640-IE8\msfeedsbs.dll

+ 2011-04-18 04:56 . 2010-12-20 23:59 43520 c:\windows\ie8updates\KB2497640-IE8\licmgr10.dll

+ 2011-04-18 04:56 . 2010-12-20 23:59 25600 c:\windows\ie8updates\KB2497640-IE8\jsproxy.dll

+ 2010-10-06 02:26 . 2010-10-06 02:26 69120 c:\windows\assembly\temp\WXQ74DYVSP\CustomMarshalers.dll

+ 2011-04-18 05:02 . 2011-04-18 05:02 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\368187bcb570d202a019fc7c53b1df4c\UIAutomationProvider.ni.dll

+ 2011-04-18 05:43 . 2011-04-18 05:43 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\3f621b90371e67197bd4d0b86aa6f21d\System.Windows.Presentation.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\577b049541803541e6b00e2c36c00852\System.Web.DynamicData.Design.ni.dll

+ 2011-04-18 05:41 . 2011-04-18 05:41 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\636ed65b7e5481320e3010b78a5e6cfa\System.ComponentModel.DataAnnotations.ni.dll

+ 2011-04-18 04:59 . 2011-04-18 04:59 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\2740ba673b1040f1995f13c6044da64c\PresentationFontCache.ni.exe

+ 2011-04-18 04:58 . 2011-04-18 04:58 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\8514e7de63d46b6f8232ef70d93a1650\PresentationCFFRasterizer.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\108426b4dc654100c9a99bfa71f69886\Microsoft.Vsa.ni.dll

+ 2011-04-18 05:40 . 2011-04-18 05:40 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\8905268997c77a27c7f9c54aeba37f24\Microsoft.Build.Framework.ni.dll

+ 2011-04-18 05:41 . 2011-04-18 05:41 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\11bb8ef375848eb1c074da1afd5cecdc\Microsoft.Build.Framework.ni.dll

+ 2011-04-18 05:40 . 2011-04-18 05:40 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\6d74b9308a1517bfe959e597c3dd2427\dfsvc.ni.exe

+ 2011-04-18 05:39 . 2011-04-18 05:39 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\fdf7f1404f4a5c7f5a0463d8e7a442e4\Accessibility.ni.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll

- 2010-10-06 02:27 . 2010-10-06 02:27 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll

- 2010-10-06 02:27 . 2010-10-06 02:27 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll

+ 2010-10-06 02:26 . 2011-04-18 04:55 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll

+ 2011-02-24 08:00 . 2008-07-08 13:02 26488 c:\windows\$hf_mig$\KB971029\update\spcustom.dll

+ 2011-02-24 08:00 . 2008-07-08 13:02 17272 c:\windows\$hf_mig$\KB971029\spmsg.dll

+ 2011-03-24 14:30 . 2010-07-05 13:15 26488 c:\windows\$hf_mig$\KB2524375\update\spcustom.dll

+ 2011-03-24 14:30 . 2010-07-05 13:15 17272 c:\windows\$hf_mig$\KB2524375\spmsg.dll

+ 2011-03-10 08:01 . 2010-07-05 13:15 26488 c:\windows\$hf_mig$\KB2481109\update\spcustom.dll

+ 2011-03-10 08:01 . 2010-07-05 13:15 17272 c:\windows\$hf_mig$\KB2481109\spmsg.dll

+ 2011-02-02 07:57 . 2011-02-02 07:57 53248 c:\windows\$hf_mig$\KB2481109\SP3QFE\tsgqec.dll

+ 2011-03-10 08:10 . 2010-07-05 13:15 26488 c:\windows\$hf_mig$\KB2479943\update\spcustom.dll

+ 2011-03-10 08:10 . 2010-07-05 13:15 17272 c:\windows\$hf_mig$\KB2479943\spmsg.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll

- 2010-10-06 02:27 . 2010-10-06 02:27 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll

- 2010-10-06 02:26 . 2010-10-06 02:26 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll

- 2004-08-10 17:51 . 2008-04-14 00:12 135168 c:\windows\system32\shsvcs.dll

+ 2004-08-10 17:51 . 2009-07-27 23:17 135168 c:\windows\system32\shsvcs.dll

+ 2004-08-10 17:51 . 2011-02-09 13:53 270848 c:\windows\system32\sbe.dll

- 2004-08-10 17:51 . 2008-04-14 00:12 270848 c:\windows\system32\sbe.dll

+ 2004-08-10 17:51 . 2011-04-18 04:55 437030 c:\windows\system32\perfh009.dat

- 2004-08-10 17:51 . 2010-11-08 03:04 437030 c:\windows\system32\perfh009.dat

- 2004-08-10 17:51 . 2010-12-20 23:59 206848 c:\windows\system32\occache.dll

+ 2004-08-10 17:51 . 2011-02-22 23:06 206848 c:\windows\system32\occache.dll

+ 2004-08-10 17:51 . 2008-06-20 16:02 245248 c:\windows\system32\mswsock.dll

- 2004-08-10 17:51 . 2008-06-20 17:46 245248 c:\windows\system32\mswsock.dll

- 2004-08-10 18:01 . 2008-04-14 00:12 677888 c:\windows\system32\mstsc.exe

+ 2004-08-10 18:01 . 2011-01-27 11:57 677888 c:\windows\system32\mstsc.exe

+ 2004-08-10 17:51 . 2011-02-22 23:06 611840 c:\windows\system32\mstime.dll

- 2004-08-10 17:51 . 2010-12-20 23:59 611840 c:\windows\system32\mstime.dll

- 2009-03-08 08:32 . 2010-12-20 23:59 602112 c:\windows\system32\msfeeds.dll

+ 2009-03-08 08:32 . 2011-02-22 23:06 602112 c:\windows\system32\msfeeds.dll

- 2004-08-10 17:51 . 2010-09-18 16:23 974848 c:\windows\system32\mfc42u.dll

+ 2004-08-10 17:51 . 2011-02-08 13:33 974848 c:\windows\system32\mfc42u.dll

+ 2004-08-10 17:51 . 2011-02-08 13:33 978944 c:\windows\system32\mfc42.dll

+ 2011-04-16 14:14 . 2011-04-16 14:14 235168 c:\windows\system32\Macromed\Flash\FlashUtil10p_ActiveX.exe

+ 2011-04-16 14:14 . 2011-04-16 14:14 311456 c:\windows\system32\Macromed\Flash\FlashUtil10p_ActiveX.dll

+ 2011-03-21 15:57 . 2011-03-21 15:57 235168 c:\windows\system32\Macromed\Flash\FlashUtil10n_Plugin.exe

+ 2004-08-10 17:51 . 2011-03-04 06:37 726528 c:\windows\system32\jscript.dll

- 2004-08-10 17:51 . 2009-12-09 05:53 726528 c:\windows\system32\jscript.dll

+ 2011-02-25 02:58 . 2011-02-03 02:40 157472 c:\windows\system32\javaws.exe

- 2010-01-20 04:18 . 2010-01-20 04:18 145184 c:\windows\system32\javaw.exe

+ 2011-02-25 02:58 . 2011-02-03 02:40 145184 c:\windows\system32\javaw.exe

- 2010-01-20 04:18 . 2010-01-20 04:18 145184 c:\windows\system32\java.exe

+ 2011-02-25 02:58 . 2011-02-03 02:40 145184 c:\windows\system32\java.exe

+ 2004-08-10 17:51 . 2011-02-22 23:06 184320 c:\windows\system32\iepeers.dll

- 2004-08-10 17:51 . 2010-12-20 23:59 184320 c:\windows\system32\iepeers.dll

+ 2004-08-10 17:51 . 2011-02-22 23:06 387584 c:\windows\system32\iedkcs32.dll

- 2004-08-10 17:51 . 2010-12-20 23:59 387584 c:\windows\system32\iedkcs32.dll

- 2004-08-10 17:51 . 2010-12-20 12:55 173568 c:\windows\system32\ie4uinit.exe

+ 2004-08-10 17:51 . 2011-02-18 11:49 173568 c:\windows\system32\ie4uinit.exe

- 2004-08-10 17:51 . 2008-04-14 00:11 186880 c:\windows\system32\encdec.dll

+ 2004-08-10 17:51 . 2011-02-09 13:53 186880 c:\windows\system32\encdec.dll

+ 2004-08-10 17:50 . 2008-10-16 14:43 138496 c:\windows\system32\drivers\afd.sys

- 2004-08-10 17:50 . 2008-08-14 10:04 138496 c:\windows\system32\drivers\afd.sys

+ 2004-08-10 17:50 . 2011-03-03 06:55 149504 c:\windows\system32\dnsapi.dll

+ 2004-08-10 17:51 . 2011-02-22 23:06 916480 c:\windows\system32\dllcache\wininet.dll

- 2004-08-10 17:51 . 2010-12-20 23:59 916480 c:\windows\system32\dllcache\wininet.dll

+ 2004-08-10 17:51 . 2011-03-04 06:37 420864 c:\windows\system32\dllcache\vbscript.dll

+ 2008-10-15 04:19 . 2011-02-17 13:18 357888 c:\windows\system32\dllcache\srv.sys

+ 2009-07-27 23:17 . 2009-07-27 23:17 135168 c:\windows\system32\dllcache\shsvcs.dll

+ 2011-02-09 13:53 . 2011-02-09 13:53 270848 c:\windows\system32\dllcache\sbe.dll

+ 2009-03-08 08:34 . 2011-02-22 23:06 206848 c:\windows\system32\dllcache\occache.dll

- 2009-03-08 08:34 . 2010-12-20 23:59 206848 c:\windows\system32\dllcache\occache.dll

- 2008-06-20 17:46 . 2008-06-20 17:46 245248 c:\windows\system32\dllcache\mswsock.dll

+ 2008-06-20 17:46 . 2008-06-20 16:02 245248 c:\windows\system32\dllcache\mswsock.dll

- 2009-03-08 08:32 . 2010-12-20 23:59 611840 c:\windows\system32\dllcache\mstime.dll

+ 2009-03-08 08:32 . 2011-02-22 23:06 611840 c:\windows\system32\dllcache\mstime.dll

+ 2009-07-29 13:30 . 2011-02-22 23:06 602112 c:\windows\system32\dllcache\msfeeds.dll

- 2009-07-29 13:30 . 2010-12-20 23:59 602112 c:\windows\system32\dllcache\msfeeds.dll

+ 2008-11-12 04:12 . 2011-02-17 13:18 455936 c:\windows\system32\dllcache\mrxsmb.sys

+ 2004-08-10 17:51 . 2011-02-08 13:33 974848 c:\windows\system32\dllcache\mfc42u.dll

- 2004-08-10 17:51 . 2010-09-18 16:23 974848 c:\windows\system32\dllcache\mfc42u.dll

+ 2004-08-10 17:51 . 2011-02-08 13:33 978944 c:\windows\system32\dllcache\mfc42.dll

+ 2011-01-27 11:57 . 2011-01-27 11:57 677888 c:\windows\system32\dllcache\lhmstsc.exe

+ 2004-08-10 17:51 . 2011-03-04 06:37 726528 c:\windows\system32\dllcache\jscript.dll

- 2004-08-10 17:51 . 2009-12-09 05:53 726528 c:\windows\system32\dllcache\jscript.dll

- 2008-08-13 08:46 . 2010-06-09 07:43 692736 c:\windows\system32\dllcache\inetcomm.dll

+ 2008-08-13 08:46 . 2011-03-07 05:33 692736 c:\windows\system32\dllcache\inetcomm.dll

+ 2009-06-11 17:01 . 2011-02-22 23:06 247808 c:\windows\system32\dllcache\ieproxy.dll

- 2009-06-11 17:01 . 2010-12-20 23:59 247808 c:\windows\system32\dllcache\ieproxy.dll

- 2009-03-08 08:31 . 2010-12-20 23:59 184320 c:\windows\system32\dllcache\iepeers.dll

+ 2009-03-08 08:31 . 2011-02-22 23:06 184320 c:\windows\system32\dllcache\iepeers.dll

- 2010-06-11 19:40 . 2010-12-20 23:59 743424 c:\windows\system32\dllcache\iedvtool.dll

+ 2010-06-11 19:40 . 2011-02-22 23:06 743424 c:\windows\system32\dllcache\iedvtool.dll

+ 2009-03-08 18:09 . 2011-02-22 23:06 387584 c:\windows\system32\dllcache\iedkcs32.dll

- 2009-03-08 18:09 . 2010-12-20 23:59 387584 c:\windows\system32\dllcache\iedkcs32.dll

+ 2009-03-08 08:32 . 2011-02-18 11:49 173568 c:\windows\system32\dllcache\ie4uinit.exe

- 2009-03-08 08:32 . 2010-12-20 12:55 173568 c:\windows\system32\dllcache\ie4uinit.exe

+ 2011-02-11 13:25 . 2011-02-11 13:25 229888 c:\windows\system32\dllcache\fxscover.exe

+ 2004-08-10 17:51 . 2011-02-09 13:53 186880 c:\windows\system32\dllcache\encdec.dll

- 2004-08-10 17:51 . 2008-04-14 00:11 186880 c:\windows\system32\dllcache\encdec.dll

+ 2004-08-10 17:50 . 2011-03-03 06:55 149504 c:\windows\system32\dllcache\dnsapi.dll

+ 2004-08-10 17:50 . 2011-02-15 12:56 290432 c:\windows\system32\dllcache\atmfd.dll

+ 2004-08-10 17:50 . 2008-10-16 14:43 138496 c:\windows\system32\dllcache\afd.sys

- 2004-08-10 17:50 . 2008-08-14 10:04 138496 c:\windows\system32\dllcache\afd.sys

+ 2011-02-25 02:58 . 2011-02-03 02:40 472808 c:\windows\system32\deployJava1.dll

+ 2011-02-11 13:25 . 2011-02-11 13:25 229888 c:\windows\ServicePackFiles\ServicePackCache\i386\fxscover.exe

- 2010-05-11 10:40 . 2010-05-11 10:40 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll

+ 2011-01-18 08:39 . 2011-01-18 08:39 388936 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll

+ 2011-01-18 08:39 . 2011-01-18 08:39 363856 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll

- 2010-05-11 10:40 . 2010-05-11 10:40 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll

+ 2011-01-18 08:39 . 2011-01-18 08:39 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll

+ 2011-02-25 02:59 . 2011-02-25 02:59 180224 c:\windows\Installer\402dc74.msi

- 2008-10-06 18:54 . 2011-02-10 08:01 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe

+ 2008-10-06 18:54 . 2011-04-18 04:59 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe

+ 2008-10-06 18:54 . 2011-04-18 04:59 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe

- 2008-10-06 18:54 . 2011-02-10 08:01 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe

+ 2008-10-06 18:54 . 2011-04-18 04:59 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe

- 2008-10-06 18:54 . 2011-02-10 08:01 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe

- 2008-10-06 18:54 . 2011-02-10 08:01 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe

+ 2008-10-06 18:54 . 2011-04-18 04:59 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe

- 2008-10-06 18:54 . 2011-02-10 08:01 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe

+ 2008-10-06 18:54 . 2011-04-18 04:59 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe

+ 2008-10-06 18:54 . 2011-04-18 04:59 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe

- 2008-10-06 18:54 . 2011-02-10 08:01 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe

- 2008-10-06 18:54 . 2011-02-10 08:01 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe

+ 2008-10-06 18:54 . 2011-04-18 04:59 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe

+ 2009-02-14 10:04 . 2009-02-14 10:04 625520 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\GROOVEWEBSERVICES.DLL

+ 2009-02-12 19:19 . 2009-02-12 19:19 688512 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\GROOVEWEBPLATFORMSERVICES.DLL

+ 2009-03-06 08:33 . 2009-03-06 08:33 961888 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\GROOVEUTIL.DLL

+ 2009-02-14 10:03 . 2009-02-14 10:03 337264 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.6425\GROOVE.EXE

+ 2011-04-18 04:43 . 2010-03-10 06:15 420352 c:\windows\ie8updates\KB2510531-IE8\vbscript.dll

+ 2011-04-18 04:43 . 2010-07-05 13:16 382840 c:\windows\ie8updates\KB2510531-IE8\spuninst\updspapi.dll

+ 2011-04-18 04:43 . 2010-07-05 13:15 231288 c:\windows\ie8updates\KB2510531-IE8\spuninst\spuninst.exe

+ 2011-04-18 04:43 . 2009-12-09 05:53 726528 c:\windows\ie8updates\KB2510531-IE8\jscript.dll

+ 2011-04-18 04:56 . 2010-12-20 23:59 916480 c:\windows\ie8updates\KB2497640-IE8\wininet.dll

+ 2011-04-18 04:56 . 2010-07-05 13:16 382840 c:\windows\ie8updates\KB2497640-IE8\spuninst\updspapi.dll

+ 2011-04-18 04:56 . 2010-07-05 13:15 231288 c:\windows\ie8updates\KB2497640-IE8\spuninst\spuninst.exe

+ 2011-04-18 04:56 . 2010-12-20 23:59 206848 c:\windows\ie8updates\KB2497640-IE8\occache.dll

+ 2011-04-18 04:56 . 2010-12-20 23:59 611840 c:\windows\ie8updates\KB2497640-IE8\mstime.dll

+ 2011-04-18 04:56 . 2010-12-20 23:59 602112 c:\windows\ie8updates\KB2497640-IE8\msfeeds.dll

+ 2011-04-18 04:56 . 2010-12-20 23:59 247808 c:\windows\ie8updates\KB2497640-IE8\ieproxy.dll

+ 2011-04-18 04:56 . 2010-12-20 23:59 184320 c:\windows\ie8updates\KB2497640-IE8\iepeers.dll

+ 2011-04-18 04:56 . 2010-12-20 23:59 743424 c:\windows\ie8updates\KB2497640-IE8\iedvtool.dll

+ 2011-04-18 04:56 . 2010-12-20 23:59 387584 c:\windows\ie8updates\KB2497640-IE8\iedkcs32.dll

+ 2011-04-18 04:56 . 2010-12-20 12:55 173568 c:\windows\ie8updates\KB2497640-IE8\ie4uinit.exe

+ 2008-11-12 04:12 . 2011-02-17 13:18 455936 c:\windows\Driver Cache\i386\mrxsmb.sys

+ 2011-04-18 05:40 . 2011-04-18 05:40 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\95de80b860252231b46014f58226e473\WsatConfig.ni.exe

+ 2011-04-18 05:02 . 2011-04-18 05:02 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\715710f5a31a494ed5c0ec0874dafe3e\WindowsFormsIntegration.ni.dll

+ 2011-04-18 05:02 . 2011-04-18 05:02 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\017be0e6c5f1810f15a696157cd5e2c2\UIAutomationTypes.ni.dll

+ 2011-04-18 05:01 . 2011-04-18 05:01 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\bec5b0a93df12eb26c02c877a4eae678\UIAutomationClient.ni.dll

+ 2011-04-18 05:43 . 2011-04-18 05:43 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\3d8f787002439f4942c33f376cfd8555\System.Xml.Linq.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\4b746fea8062a10ccc6e5331914e7dad\System.Web.Routing.ni.dll

+ 2011-04-18 05:43 . 2011-04-18 05:43 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\103956fdb019bce8a173fe9cb9da3e02\System.Web.RegularExpressions.ni.dll

+ 2011-04-18 05:43 . 2011-04-18 05:43 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\c0a156fbf46ad272ac262e45eaa998f4\System.Web.Extensions.Design.ni.dll

+ 2011-04-18 05:43 . 2011-04-18 05:43 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\e3651e13567ce4e3fa7bb2fbab737d9a\System.Web.Entity.ni.dll

+ 2011-04-18 05:43 . 2011-04-18 05:43 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\834d7769f39e4d937eda1ad3707d4716\System.Web.Entity.Design.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\032c96c6206b53bca122d1fbaf5f8ca2\System.Web.DynamicData.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\6ce0e4fb33afcfcce43c427e82b987db\System.Web.Abstractions.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\990d96810a21e0fa95f916ffc66f3a94\System.Transactions.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\e0d56c0582316e9ecb4c18186e37217c\System.ServiceProcess.ni.dll

+ 2011-04-18 05:41 . 2011-04-18 05:41 679936 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\9e91cca51a5ed6fb13b67558109d2726\System.Security.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\fa6a58394a1f162eecce4cd8af0875c3\System.Runtime.Serialization.Formatters.Soap.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\6194eb4bc1e0133d0183d086b747f512\System.Net.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\042658de519bb1e22ec5925092061892\System.Management.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\d6ae8171ae6fd4fe83add34e6d70e5b5\System.Management.Instrumentation.ni.dll

+ 2011-04-18 05:40 . 2011-04-18 05:40 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\abd5a61d39e474f12b30ccbbe6277667\System.IO.Log.ni.dll

+ 2011-04-18 05:40 . 2011-04-18 05:40 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\12c4dba6d4ff0278d208c283d9ed7670\System.IdentityModel.Selectors.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\ff5c7a52497d892f3a3206384d46b5e7\System.EnterpriseServices.Wrapper.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\ff5c7a52497d892f3a3206384d46b5e7\System.EnterpriseServices.ni.dll

+ 2011-04-18 05:01 . 2011-04-18 05:01 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\e6b7128278d8c0e8382a5685f5b196c6\System.Drawing.Design.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\8ef56bf47fc2fc4204e0fcc1f32bab01\System.DirectoryServices.AccountManagement.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\447d7b4a7d0add13f8d2086088bcc41c\System.DirectoryServices.Protocols.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\ce2afe8854ee9cdc834b6f392348c882\System.Data.Services.Design.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\03d4658290e300e437e745ef4a613b59\System.Data.Services.Client.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\7ce21a2855bb7731de4dab797e69f3f6\System.Data.Entity.Design.ni.dll

+ 2011-04-18 05:41 . 2011-04-18 05:41 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\ea57694aea47c05853516c9bb2ad54b4\System.Data.DataSetExtensions.ni.dll

+ 2011-04-18 05:41 . 2011-04-18 05:41 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\3d6b4509225efde2a4e3db77205f8a51\System.Configuration.ni.dll

+ 2011-04-18 05:42 . 2011-04-18 05:42 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\f312bb844670ebc7458fec9e6b2568b3\System.Configuration.Install.ni.dll

+ 2011-04-18 05:41 . 2011-04-18 05:41 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\afd9595f07a8c68b26e81cf995957f56\System.AddIn.ni.dll

+ 2011-04-18 05:40 . 2011-04-18 05:40 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\3a42b2fbafe93d7b9395e328bea35afa\SMSvcHost.ni.exe

+ 2011-04-18 05:40 . 2011-04-18 05:40 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\97ff96d3fc8d0b10ea294f320acf821e\SMDiagnostics.ni.dll

+ 2011-04-18 05:40 . 2011-04-18 05:40 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\28ed0e9efd938b05b4f53e0d90046701\ServiceModelReg.ni.exe

+ 2011-04-18 05:00 . 2011-04-18 05:00 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ffe13679e6b3e36e5cb6c47f8c4faf9c\PresentationFramework.Aero.ni.dll

+ 2011-04-18 05:00 . 2011-04-18 05:00 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\dbb40299379f2009c140ddadb04231b4\PresentationFramework.Classic.ni.dll

+ 2011-04-18 05:00 . 2011-04-18 05:00 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a34cd33cec1bdfebe4a3910bceb8723b\PresentationFramework.Royale.ni.dll

+ 2011-04-18 05:00 . 2011-04-18 05:00 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\689bb394bcb437ed085c22a43aba30c6\PresentationFramework.Luna.ni.dll

+ 2011-04-18 05:40 . 2011-04-18 05:40 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\5670e74887ef1025c6a8c056ffe86b38\MSBuild.ni.exe

+ 2011-04-18 05:40 . 2011-04-18 05:40 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\653732002ebf5c68f69150a60e145e6a\Microsoft.Transactions.Bridge.Dtc.ni.dll

+ 2011-04-18 05:41 . 2011-04-18 05:41 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\cc62770393640302bd4d7e442b1e49a4\Microsoft.Build.Utilities.v3.5.ni.dll

+ 2011-04-18 05:41 . 2011-04-18 05:41 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\352bff1ee71ce114e225f849038dc48d\Microsoft.Build.Utilities.ni.dll

+ 2011-04-18 05:41 . 2011-04-18 05:41 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\7345f4d2d7157bf49de4158e8f2b6847\Microsoft.Build.Engine.ni.dll

+ 2011-04-18 05:41 . 2011-04-18 05:41 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\d7dba901ddd410ca1a0156d0f2a27533\Microsoft.Build.Conversion.v3.5.ni.dll

+ 2011-04-18 05:41 . 2011-04-18 05:41 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\010552e529d130ce914765b0801e2367\CustomMarshalers.ni.dll

+ 2011-04-18 05:40 . 2011-04-18 05:40 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\6861f639b13967e9b014b44bbb7c5d4c\ComSvcConfig.ni.exe

+ 2011-04-18 05:40 . 2011-04-18 05:40 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\800da7dec567fadf3392091e9f01ecb9\AspNetMMCExt.ni.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll

- 2010-10-06 02:27 . 2010-10-06 02:27 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll

- 2010-10-06 02:27 . 2010-10-06 02:27 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll

- 2010-10-06 02:27 . 2010-10-06 02:27 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll

- 2010-10-06 02:27 . 2010-10-06 02:27 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll

- 2010-10-06 02:27 . 2010-10-06 02:27 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll

- 2010-10-06 02:27 . 2010-10-06 02:27 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll

- 2010-10-06 02:27 . 2010-10-06 02:27 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll

- 2010-10-06 02:26 . 2010-10-06 02:26 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll

+ 2011-04-18 04:55 . 2011-04-18 04:55 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll

- 2010-10-06 02:27 . 2010-10-06 02:27 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll

+ 2011-02-24 08:00 . 2009-05-26 11:40 382840 c:\windows\$NtUninstallKB971029$\spuninst\updspapi.dll

+ 2011-02-24 08:00 . 2008-07-08 13:02 231288 c:\windows\$NtUninstallKB971029$\spuninst\spuninst.exe

+ 2011-02-24 08:00 . 2008-04-14 00:12 135168 c:\windows\$NtUninstallKB971029$\shsvcs.dll

+ 2011-03-24 14:30 . 2010-07-05 13:16 382840 c:\windows\$NtUninstallKB2524375$\spuninst\updspapi.dll

+ 2011-03-24 14:30 . 2010-07-05 13:15 231288 c:\windows\$NtUninstallKB2524375$\spuninst\spuninst.exe

+ 2011-03-10 08:01 . 2010-07-05 13:16 382840 c:\windows\$NtUninstallKB2481109$\spuninst\updspapi.dll

+ 2011-03-10 08:01 . 2010-07-05 13:15 231288 c:\windows\$NtUninstallKB2481109$\spuninst\spuninst.exe

+ 2011-03-10 08:01 . 2008-04-14 00:12 677888 c:\windows\$NtUninstallKB2481109$\mstsc.exe

+ 2011-03-10 08:10 . 2010-07-05 13:16 382840 c:\windows\$NtUninstallKB2479943$\spuninst\updspapi.dll

+ 2011-03-10 08:10 . 2010-07-05 13:15 231288 c:\windows\$NtUninstallKB2479943$\spuninst\spuninst.exe

+ 2011-03-10 08:10 . 2008-04-14 00:12 270848 c:\windows\$NtUninstallKB2479943$\sbe.dll

+ 2011-03-10 08:10 . 2008-04-14 00:11 186880 c:\windows\$NtUninstallKB2479943$\encdec.dll

+ 2011-02-24 08:00 . 2009-05-26 11:40 382840 c:\windows\$hf_mig$\KB971029\update\updspapi.dll

+ 2011-02-24 08:00 . 2009-05-26 11:40 755576 c:\windows\$hf_mig$\KB971029\update\update.exe

+ 2011-02-24 08:00 . 2008-07-08 13:02 231288 c:\windows\$hf_mig$\KB971029\spuninst.exe

+ 2009-07-27 22:13 . 2009-07-27 22:13 135168 c:\windows\$hf_mig$\KB971029\SP3QFE\shsvcs.dll

+ 2011-03-24 14:30 . 2010-07-05 13:16 382840 c:\windows\$hf_mig$\KB2524375\update\updspapi.dll

+ 2011-03-24 14:30 . 2010-07-05 13:15 755576 c:\windows\$hf_mig$\KB2524375\update\update.exe

+ 2011-03-24 14:30 . 2010-07-05 13:15 231288 c:\windows\$hf_mig$\KB2524375\spuninst.exe

+ 2011-03-10 08:01 . 2010-07-05 13:16 382840 c:\windows\$hf_mig$\KB2481109\update\updspapi.dll

+ 2011-03-10 08:01 . 2010-07-05 13:15 755576 c:\windows\$hf_mig$\KB2481109\update\update.exe

+ 2011-03-10 08:01 . 2010-07-05 13:15 231288 c:\windows\$hf_mig$\KB2481109\spuninst.exe

+ 2011-01-27 11:41 . 2011-01-27 11:41 677888 c:\windows\$hf_mig$\KB2481109\SP3QFE\lhmstsc.exe

+ 2011-02-02 07:57 . 2011-02-02 07:57 136192 c:\windows\$hf_mig$\KB2481109\SP3QFE\aaclient.dll

+ 2011-03-10 08:10 . 2010-07-05 13:16 382840 c:\windows\$hf_mig$\KB2479943\update\updspapi.dll

+ 2011-03-10 08:10 . 2010-07-05 13:15 755576 c:\windows\$hf_mig$\KB2479943\update\update.exe

+ 2011-03-10 08:10 . 2010-07-05 13:15 231288 c:\windows\$hf_mig$\KB2479943\spuninst.exe

+ 2011-02-09 13:52 . 2011-02-09 13:52 270848 c:\windows\$hf_mig$\KB2479943\SP3QFE\sbe.dll

+ 2011-02-09 13:52 . 2011-02-09 13:52 186880 c:\windows\$hf_mig$\KB2479943\SP3QFE\encdec.dll

+ 2011-04-15 17:28 . 2010-10-23 00:51 1748992 c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22509_x-ww_c7dad023\GdiPlus.dll

+ 2004-08-10 17:51 . 2011-02-22 23:06 1210880 c:\windows\system32\urlmon.dll

- 2004-08-10 17:51 . 2010-12-20 23:59 1210880 c:\windows\system32\urlmon.dll

+ 2004-08-10 18:01 . 2011-02-02 07:58 2067456 c:\windows\system32\mstscax.dll

+ 2004-08-10 17:51 . 2011-02-22 23:06 5962240 c:\windows\system32\mshtml.dll

+ 2010-01-27 01:07 . 2011-03-21 15:57 6053536 c:\windows\system32\Macromed\Flash\NPSWF32.dll

+ 2009-03-08 08:32 . 2011-02-22 23:06 1991680 c:\windows\system32\iertutil.dll

- 2009-03-08 08:32 . 2010-12-20 23:59 1991680 c:\windows\system32\iertutil.dll

+ 2004-08-10 17:57 . 2011-04-18 05:36 3660776 c:\windows\system32\FNTCACHE.DAT

- 2004-08-10 17:57 . 2011-02-10 08:43 3660776 c:\windows\system32\FNTCACHE.DAT

+ 2008-10-15 04:19 . 2011-03-03 13:21 1857920 c:\windows\system32\dllcache\win32k.sys

- 2004-08-10 17:51 . 2010-12-20 23:59 1210880 c:\windows\system32\dllcache\urlmon.dll

+ 2004-08-10 17:51 . 2011-02-22 23:06 1210880 c:\windows\system32\dllcache\urlmon.dll

+ 2008-04-21 06:44 . 2011-02-22 23:06 5962240 c:\windows\system32\dllcache\mshtml.dll

+ 2011-02-02 07:58 . 2011-02-02 07:58 2067456 c:\windows\system32\dllcache\lhmstscx.dll

+ 2009-06-11 17:01 . 2011-02-22 23:06 1991680 c:\windows\system32\dllcache\iertutil.dll

- 2009-06-11 17:01 . 2010-12-20 23:59 1991680 c:\windows\system32\dllcache\iertutil.dll

+ 2011-01-18 08:39 . 2011-01-18 08:39 5813072 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll

+ 2011-01-18 08:39 . 2011-01-18 08:39 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll

- 2010-05-11 10:40 . 2010-05-11 10:40 4550656 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll

+ 2011-04-14 14:46 . 2011-04-14 14:46 3854848 c:\windows\Installer\a39b148.msp

+ 2011-03-18 00:05 . 2011-03-18 00:05 4989440 c:\windows\Installer\844660c.msp

+ 2011-01-11 21:49 . 2011-01-11 21:49 9003008 c:\windows\Installer\84465f6.msp

+ 2010-11-21 03:32 . 2010-11-21 03:32 4165120 c:\windows\Installer\84465e0.msp

+ 2010-11-21 03:34 . 2010-11-21 03:34 1198080 c:\windows\Installer\84465be.msp

+ 2011-03-18 00:01 . 2011-03-18 00:01 9563648 c:\windows\Installer\84465a3.msp

+ 2011-01-11 21:50 . 2011-01-11 21:50 8177152 c:\windows\Installer\8446588.msp

+ 2010-11-21 03:33 . 2010-11-21 03:33 1980928 c:\windows\Installer\8446580.msp

+ 2011-02-16 18:54 . 2011-02-16 18:54 4992000 c:\windows\Installer\2f1f4e0d.msp

+ 2011-01-11 22:5

Share this post


Link to post
Share on other sites

Hi boanro,

 

I don't see anything to be concerned with. It does seem to be a temporary file issue, the last tool we used will clean out some of the caches.

 

We'll clean up the tools. Keep Defogger as we will use it later in the cleanup.

 

From your desktop, please delete, if present

  • any notepads/logs that we created
  • aswMBR.exe
  • DDS.scr
  • MBR.dat

Next

 

Click the Start button, click Run. Copy and paste the following line into the run box and click OK

Combofix /uninstall

 

 

I suggest you keep MBAM. Keep it updated and use it regularly.

 

You can also keep TFC, use it regularly.

 

 

To re-enable your Emulation drivers, double click DeFogger to run the tool.

  • The application window will appear
  • Click the Re-enable button to re-enable your CD Emulation drivers
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • DeFogger will now ask to reboot the machine - click OK
IMPORTANT! If you receive an error message while running DeFogger, please post the log defogger_enable which will appear on your desktop.

 

Your Emulation drivers are now re-enabled. You can now delete Defogger.

 

 

Updates and upgrades

 

There is a new version of java available.

 

Click your start button, open Control panel.

  • Locate the Java icon (it looks like a coffee cup)
  • double click it to open it
  • click the Update tab
  • Click update now

Next, clear the java cache

 

Still in Control Panel.

[*]Double-click the Java icon in the control panel.

[*]On the General tab, Click Settings under Temporary Internet Files.

[*]On the Temporary Files Settings screen, Click Delete Files.

[*]check all boxes

[*]Click OK

Some Recommendations and prevention tips

Basic security consists of 1 antivirus program, 1 resident antispyware program, 1 on demand antispyware program and a firewall. You have those already.

 

You can also use Spybot to install a Custom Hosts file.

 

 

-Secure your Internet Explorer

 

From within Internet Explorer click on the Tools menu and then click on Options.

  • Click once on the Security tab
  • Click once on the Internet icon so it becomes highlighted.
  • Click once on the Custom Level button.
  • Change the Download signed ActiveX controls to Prompt
  • Change the Download unsigned ActiveX controls to Disable
  • Change the Initialize and script ActiveX controls not marked as safe to Disable
  • Change the Installation of desktop items to Prompt
  • Change the Launching programs and files in an IFRAME to Prompt
  • Change the Navigate sub-frames across different domains to Prompt
  • When all these settings have been made, click on the OK button.
  • If it prompts you as to whether or not you want to save the settings, press the Yes button.
Next press the Apply button and then the OK to exit the Internet Properties page.

 

 

- Keeping your Windows up-to-date is crucial to your computer's security. Please go to the Windows Update Site (using Internet Explorer) and download and install all critical updates on a regular basis

 

 

- Make sure you have reset Automatic Updates to your chosen optionClick your start button > Control Panel > System

 

 

- Keep your antivirus program updated, as well as any other security programs you have.

 

 

-More tips and programs can be found HERE

 

- You may also want to read this article By Tony Klein

http://www.freedomlist.com/forum/viewtopic.php?t=22879

 

Please post back if you have any problems.

 

Take care

Share this post


Link to post
Share on other sites

Done. Everything seems to be fine. Thank you for all the help and especially for staying with me since I could not be on every day. Much appreciation.

 

Bob

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  

×
×
  • Create New...