problem exe virus

3

problem exe virus

offline
  • Pridružio: 14 Apr 2009
  • Poruke: 28

Napisano: 16 Apr 2009 18:37

e ovako...ja selektujem te fajlove i kada kliknem delete on zablokira (not responding)....kada opet otvorim fles onda nema nista...
tek kada ponovo ubacim fles pojavi se isto....

Dopuna: 16 Apr 2009 18:38

i cim kliknem desnim tasterom na ikonicu on zablokira....zasto idem preko tastature...ali nista...


da ga bacam? Sad

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Postavi svež ComboFix log (pokreni ga dvoklikom i isprati postupak).

offline
  • Pridružio: 14 Apr 2009
  • Poruke: 28

ComboFix 09-04-14.09 - Olja 04/16/2009 21:15.2 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1033.18.2046.899 [GMT 2:00]
Running from: c:\users\Olja\Documents\Downloads\ComboFix.exe
.

((((((((((((((((((((((((( Files Created from 2009-03-16 to 2009-04-16 )))))))))))))))))))))))))))))))
.

2009-04-16 16:13 . 2009-04-16 16:13 -------- d-----w c:\users\Olja\AppData\Roaming\GRETECH
2009-04-15 17:12 . 2009-02-13 08:49 1255936 ----a-w c:\windows\system32\lsasrv.dll
2009-04-15 17:12 . 2009-02-13 08:49 72704 ----a-w c:\windows\system32\secur32.dll
2009-04-15 17:12 . 2009-03-17 03:38 13824 ----a-w c:\windows\system32\apilogen.dll
2009-04-15 17:12 . 2009-03-17 03:38 24064 ----a-w c:\windows\system32\amxread.dll
2009-04-14 20:00 . 2009-04-16 15:43 -------- d-----w C:\USBNoRisk
2009-04-14 11:50 . 2009-02-05 20:06 51792 ----a-w c:\windows\system32\drivers\aswMonFlt.sys
2009-03-29 20:23 . 2009-03-29 20:23 -------- d-----w c:\users\All Users\ALM
2009-03-29 20:23 . 2009-03-29 20:23 -------- d-----w c:\programdata\ALM
2009-03-29 20:13 . 2007-03-23 02:05 29272 ----a-r c:\windows\system32\AdobePDF.dll
2009-03-19 00:25 . 2009-03-29 22:14 2 ----a-w c:\windows\Twain001.Mtx
2009-03-19 00:25 . 2009-03-29 22:14 156 ----a-w c:\windows\Twunk001.MTX
2009-03-19 00:25 . 2009-03-19 00:25 0 ----a-w c:\windows\Twunk002.MTX

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-16 19:28 . 2008-12-08 17:52 -------- d-----w c:\users\Olja\AppData\Roaming\Skype
2009-04-16 19:22 . 2008-06-19 17:26 -------- d-----w c:\users\Olja\AppData\Roaming\DNA
2009-04-16 19:15 . 2007-10-24 07:06 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
2009-04-16 19:15 . 2007-10-24 07:06 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
2009-04-16 19:15 . 2007-10-24 07:06 16384 --sha-w c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
2009-04-16 19:12 . 2009-04-16 13:33 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009041620090417\index.dat
2009-04-16 19:12 . 2008-06-19 17:26 -------- d-----w c:\program files\DNA
2009-04-16 19:11 . 2009-04-16 19:00 2048 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
2009-04-16 19:11 . 2009-04-16 19:00 2048 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
2009-04-16 19:11 . 2009-03-14 14:22 11644 ----a-w C:\aaw7boot.log
2009-04-16 18:58 . 2008-06-19 17:27 -------- d-----w c:\users\Olja\AppData\Roaming\BitTorrent
2009-04-16 16:46 . 2008-12-08 17:54 -------- d-----w c:\users\Olja\AppData\Roaming\skypePM
2009-04-16 16:14 . 2008-05-12 18:29 -------- d-----w c:\program files\Mv2Player
2009-04-16 16:11 . 2009-04-16 16:11 -------- d-----w c:\program files\GRETECH
2009-04-16 14:07 . 2006-11-02 11:18 -------- d-----w c:\program files\Windows Mail
2009-04-15 21:30 . 2008-12-31 19:00 -------- d-----w c:\program files\MODEM Mobile Connection
2009-04-15 17:02 . 2009-04-15 06:01 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009041520090416\index.dat
2009-04-15 06:04 . 2009-01-16 21:12 -------- d-----w c:\program files\SpeedFan
2009-04-14 15:15 . 2009-04-14 10:14 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009041420090415\index.dat
2009-04-14 11:50 . 2009-04-14 11:50 -------- d-----w c:\program files\Alwil Software
2009-04-14 11:36 . 2006-11-02 10:25 51200 ----a-w c:\windows\Inf\infpub.dat
2009-04-14 11:36 . 2006-11-02 10:25 86016 ----a-w c:\windows\Inf\infstor.dat
2009-04-14 11:36 . 2006-11-02 10:25 143360 ----a-w c:\windows\Inf\infstrng.dat
2009-04-14 10:34 . 2008-10-20 16:26 268 ---ha-w C:\sqmdata04.sqm
2009-04-14 10:34 . 2008-10-20 16:26 244 ---ha-w C:\sqmnoopt04.sqm
2009-04-14 10:27 . 2009-03-09 00:31 -------- d-----w c:\programdata\Kaspersky Lab Setup Files
2009-04-14 10:22 . 2008-10-20 11:31 268 ---ha-w C:\sqmdata03.sqm
2009-04-14 10:22 . 2008-10-20 11:31 244 ---ha-w C:\sqmnoopt03.sqm
2009-04-14 10:22 . 2008-11-15 21:54 -------- d-----w c:\program files\Kaspersky Lab
2009-04-14 10:20 . 2008-05-22 16:15 -------- d-----w c:\users\Olja\AppData\Roaming\ZoomBrowser EX
2009-04-14 10:20 . 2008-05-22 16:10 -------- d-----w c:\programdata\ZoomBrowser
2009-04-14 10:14 . 2009-04-14 10:14 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009033020090406\index.dat
2009-04-01 20:27 . 2008-09-06 07:57 2828 --sha-w c:\users\All Users\KGyGaAvL.sys
2009-04-01 20:27 . 2008-09-06 07:57 2828 --sha-w c:\programdata\KGyGaAvL.sys
2009-03-29 20:33 . 2008-05-12 05:43 161136 ----a-w c:\users\Olja\AppData\Local\GDIPFONTCACHEV1.DAT
2009-03-29 20:30 . 2007-07-25 11:05 -------- d-----w c:\program files\Common Files\Adobe
2009-03-29 20:27 . 2009-03-29 20:27 -------- d-----w c:\program files\Common Files\Control Panels
2009-03-29 19:53 . 2009-03-29 19:53 -------- d-----w c:\program files\Bonjour
2009-03-29 18:48 . 2009-03-29 08:03 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009032920090330\index.dat
2009-03-29 12:11 . 2008-07-19 00:22 -------- d-----w c:\users\Olja\AppData\Roaming\Thinstall
2009-03-28 21:54 . 2008-10-06 22:45 -------- d-----w c:\program files\Planplus
2009-03-28 09:12 . 2009-03-28 09:12 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009032820090329\index.dat
2009-03-27 07:53 . 2007-10-24 07:10 -------- d-----w c:\program files\Launch Manager
2009-03-27 07:52 . 2009-03-27 07:52 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009032720090328\index.dat
2009-03-26 21:30 . 2009-03-26 11:15 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009032620090327\index.dat
2009-03-25 21:32 . 2008-07-02 16:28 -------- d-----w c:\program files\EA GAMES
2009-03-25 12:46 . 2009-03-25 12:46 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009032520090326\index.dat
2009-03-24 10:17 . 2009-03-23 23:20 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009032420090325\index.dat
2009-03-23 21:52 . 2008-05-12 06:17 55144 ----a-w c:\users\Olja\AppData\Roaming\nvModes.dat
2009-03-23 18:41 . 2009-03-23 09:28 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009032320090324\index.dat
2009-03-22 08:23 . 2009-03-22 08:23 594 ----a-w C:\updatedatfix.log
2009-03-19 13:03 . 2009-03-19 13:03 -------- d-----w c:\program files\Common Files\Windows Live
2009-03-17 03:38 . 2009-04-15 17:12 40960 ----a-w c:\windows\AppPatch\apihex86.dll
2009-03-15 16:20 . 2009-03-15 16:20 -------- d-----w c:\programdata\WinZip
2009-03-14 10:10 . 2009-03-14 09:57 -------- dc-h--w c:\programdata\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}
2009-03-14 10:10 . 2008-08-07 20:37 -------- d-----w c:\program files\Lavasoft
2009-03-13 14:44 . 2009-03-13 14:44 -------- d-----w c:\program files\LimeWire
2009-03-13 06:49 . 2009-03-06 17:37 -------- d-----w c:\programdata\HP Product Assistant
2009-03-13 06:49 . 2008-05-13 19:24 -------- d-----w c:\program files\Winamp
2009-03-13 06:49 . 2008-05-12 17:56 -------- d-----w c:\programdata\FLEXnet
2009-03-09 19:06 . 2009-03-14 10:23 15688 ----a-w c:\windows\System32\lsdelete.exe
2009-03-09 19:06 . 2009-03-14 10:13 64160 ----a-w c:\windows\system32\drivers\Lbd.sys
2009-03-09 17:52 . 2007-07-25 09:36 -------- d--h--w c:\program files\InstallShield Installation Information
2009-03-09 17:52 . 2009-01-02 01:31 -------- d-----w c:\program files\QuickTime
2009-03-09 00:29 . 2008-05-12 06:35 -------- d-----w c:\program files\ESET
2009-03-09 00:09 . 2009-03-09 00:09 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009030220090309\index.dat
2009-03-07 10:12 . 2009-03-06 17:30 -------- d-----w c:\programdata\HP
2009-03-07 10:05 . 2009-03-06 17:45 -------- d-----w c:\users\Olja\AppData\Roaming\HP
2009-03-06 17:44 . 2009-03-06 17:30 157457 ----a-w c:\windows\hpoins27.dat
2009-03-06 17:44 . 2009-03-06 17:44 -------- d-----w c:\programdata\WEBREG
2009-03-06 17:42 . 2009-03-06 17:42 -------- d-----w c:\programdata\Hewlett-Packard
2009-03-06 17:37 . 2009-03-06 17:33 -------- d-----w c:\program files\HP
2009-03-06 17:36 . 2009-03-06 17:36 -------- d-----w c:\program files\Hewlett-Packard
2009-03-06 17:36 . 2009-03-06 17:36 -------- d-----w c:\program files\Common Files\Hewlett-Packard
2009-03-06 17:35 . 2009-03-06 17:35 -------- d-----w c:\program files\Common Files\HP
2009-03-03 04:46 . 2009-04-15 17:14 3599328 ----a-w c:\windows\System32\ntkrnlpa.exe
2009-03-03 04:46 . 2009-04-15 17:14 3547632 ----a-w c:\windows\System32\ntoskrnl.exe
2009-03-03 04:40 . 2009-04-15 17:13 827392 ----a-w c:\windows\System32\wininet.dll
2009-03-03 04:39 . 2009-04-15 17:14 183296 ----a-w c:\windows\System32\sdohlp.dll
2009-03-03 04:39 . 2009-04-15 17:14 551424 ----a-w c:\windows\System32\rpcss.dll
2009-03-03 04:39 . 2009-04-15 17:14 26112 ----a-w c:\windows\System32\printfilterpipelineprxy.dll
2009-03-03 04:37 . 2009-04-15 17:13 78336 ----a-w c:\windows\System32\ieencode.dll
2009-03-03 04:37 . 2009-04-15 17:14 98304 ----a-w c:\windows\System32\iasrecst.dll
2009-03-03 04:37 . 2009-04-15 17:14 54784 ----a-w c:\windows\System32\iasads.dll
2009-03-03 04:37 . 2009-04-15 17:14 44032 ----a-w c:\windows\System32\iasdatastore.dll
2009-03-03 03:04 . 2009-04-15 17:14 666624 ----a-w c:\windows\System32\printfilterpipelinesvc.exe
2009-03-03 02:38 . 2009-04-15 17:14 17408 ----a-w c:\windows\System32\iashost.exe
2009-03-03 02:28 . 2009-04-15 17:13 26624 ----a-w c:\windows\System32\ieUnatt.exe
2009-02-27 18:25 . 2009-02-27 18:25 107888 ----a-w c:\windows\System32\CmdLineExt.dll
2009-02-18 10:06 . 2009-01-02 01:39 -------- d-----w c:\program files\Quark
2009-02-18 10:06 . 2009-01-02 01:39 -------- d-----w c:\programdata\Quark
2009-02-16 10:40 . 2009-02-16 10:40 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009020920090216\index.dat
2009-02-09 03:10 . 2009-03-13 10:10 2033152 ----a-w c:\windows\System32\win32k.sys
2009-02-08 18:21 . 2009-02-08 18:21 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009020820090209\index.dat
2009-02-07 09:50 . 2009-02-07 09:50 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009020720090208\index.dat
2009-02-06 09:32 . 2009-02-06 09:32 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009020620090207\index.dat
2009-02-05 08:40 . 2009-02-05 08:40 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009020520090206\index.dat
2009-02-04 16:46 . 2009-02-04 11:09 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009020420090205\index.dat
2009-02-03 16:53 . 2009-02-03 16:53 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009020320090204\index.dat
2009-02-02 10:05 . 2009-02-02 10:05 32768 --sha-w c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009020220090203\index.dat
.

((((((((((((((((((((((((((((( SnapShot@2009-04-14_16.52.56 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-04-15 17:14 . 2009-03-03 04:32 26112 c:\windows\winsxs\x86_microsoft-windows-p..oler-filterpipeline_31bf3856ad364e35_6.0.6001.22389_none_2be9bd5af4bd3b16\printfilterpipelineprxy.dll
+ 2009-04-15 17:14 . 2009-03-03 04:39 26112 c:\windows\winsxs\x86_microsoft-windows-p..oler-filterpipeline_31bf3856ad364e35_6.0.6001.18226_none_2b9dff39db71a7a1\printfilterpipelineprxy.dll
+ 2009-04-15 17:14 . 2009-03-03 04:17 26112 c:\windows\winsxs\x86_microsoft-windows-p..oler-filterpipeline_31bf3856ad364e35_6.0.6000.21023_none_2a3e34a2f76b9db7\printfilterpipelineprxy.dll
+ 2009-04-15 17:14 . 2009-03-03 04:19 24576 c:\windows\winsxs\x86_microsoft-windows-p..oler-filterpipeline_31bf3856ad364e35_6.0.6000.16830_none_29a6eeebde589a97\printfilterpipelineprxy.dll
+ 2009-04-15 17:14 . 2009-03-03 02:24 17408 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6001.22389_none_d16ab47d4f561502\iashost.exe
+ 2009-04-15 17:14 . 2009-03-03 04:28 47104 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6001.22389_none_d16ab47d4f561502\iasdatastore.dll
+ 2009-04-15 17:14 . 2009-03-03 04:28 57344 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6001.22389_none_d16ab47d4f561502\iasads.dll
+ 2009-04-15 17:14 . 2009-03-03 04:37 98304 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6001.18226_none_d11ef65c360a818d\iasrecst.dll
+ 2009-04-15 17:14 . 2009-03-03 02:38 17408 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6001.18226_none_d11ef65c360a818d\iashost.exe
+ 2009-04-15 17:14 . 2009-03-03 04:37 44032 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6001.18226_none_d11ef65c360a818d\iasdatastore.dll
+ 2009-04-15 17:14 . 2009-03-03 04:37 54784 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6001.18226_none_d11ef65c360a818d\iasads.dll
+ 2009-04-15 17:14 . 2009-03-03 04:14 97280 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6000.21023_none_cfbf2bc5520477a3\iasrecst.dll
+ 2009-04-15 17:14 . 2009-03-03 04:14 37888 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6000.21023_none_cfbf2bc5520477a3\iasdatastore.dll
+ 2009-04-15 17:14 . 2009-03-03 04:14 53248 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6000.21023_none_cfbf2bc5520477a3\iasads.dll
+ 2009-04-15 17:14 . 2009-03-03 04:16 97280 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6000.16830_none_cf27e60e38f17483\iasrecst.dll
+ 2009-04-15 17:14 . 2009-03-03 04:16 37888 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6000.16830_none_cf27e60e38f17483\iasdatastore.dll
+ 2009-04-15 17:14 . 2009-03-03 04:16 53248 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6000.16830_none_cf27e60e38f17483\iasads.dll
+ 2009-04-15 17:12 . 2009-02-13 08:21 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\secur32.dll
+ 2009-04-15 17:12 . 2009-02-13 08:49 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\secur32.dll
+ 2009-04-15 17:12 . 2009-02-13 07:15 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\secur32.dll
+ 2009-04-15 17:12 . 2009-02-13 07:26 72704 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\secur32.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 52736 c:\windows\winsxs\x86_microsoft-windows-iebrshim_31bf3856ad364e35_6.0.6000.21023_none_2a8666ad812ddf1b\iebrshim.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 52736 c:\windows\winsxs\x86_microsoft-windows-iebrshim_31bf3856ad364e35_6.0.6000.16830_none_29ef20f6681adbfb\iebrshim.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 56320 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.21023_none_c461503d7a7e09be\iesetup.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 44544 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.21023_none_c461503d7a7e09be\iernonce.dll
+ 2009-04-15 17:13 . 2009-03-03 02:06 70656 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.21023_none_c461503d7a7e09be\ie4uinit.exe
+ 2009-04-15 17:13 . 2009-03-03 04:16 56320 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.16830_none_c3ca0a86616b069e\iesetup.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 44544 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.16830_none_c3ca0a86616b069e\iernonce.dll
+ 2009-04-15 17:13 . 2009-03-03 02:08 70656 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_6.0.6000.16830_none_c3ca0a86616b069e\ie4uinit.exe
+ 2009-04-15 17:13 . 2009-03-03 02:15 26624 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22389_none_2f9e23da3354de78\ieUnatt.exe
+ 2009-04-15 17:13 . 2009-03-03 02:28 26624 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18226_none_2f5265b91a094b03\ieUnatt.exe
+ 2009-04-15 17:13 . 2009-03-03 02:06 26624 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.21023_none_2df29b2236034119\ieUnatt.exe
+ 2009-04-15 17:13 . 2009-03-03 02:08 26624 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16830_none_2d5b556b1cf03df9\ieUnatt.exe
+ 2009-04-15 17:13 . 2009-03-03 04:14 63488 c:\windows\winsxs\x86_microsoft-windows-ie-infocard_31bf3856ad364e35_6.0.6000.21023_none_592c1a7f8042c775\icardie.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 63488 c:\windows\winsxs\x86_microsoft-windows-ie-infocard_31bf3856ad364e35_6.0.6000.16830_none_5894d4c8672fc455\icardie.dll
+ 2009-04-15 17:13 . 2009-03-03 02:14 48128 c:\windows\winsxs\x86_microsoft-windows-ie-htmleditingsupport_31bf3856ad364e35_6.0.6001.22389_none_f3a9aa51d37cf9f0\mshtmler.dll
+ 2009-04-15 17:13 . 2009-03-03 04:28 78336 c:\windows\winsxs\x86_microsoft-windows-ie-htmleditingsupport_31bf3856ad364e35_6.0.6001.22389_none_f3a9aa51d37cf9f0\ieencode.dll
+ 2006-11-02 07:33 . 2006-11-02 07:33 48128 c:\windows\winsxs\x86_microsoft-windows-ie-htmleditingsupport_31bf3856ad364e35_6.0.6001.18226_none_f35dec30ba31667b\mshtmler.dll
+ 2009-04-15 17:13 . 2009-03-03 04:37 78336 c:\windows\winsxs\x86_microsoft-windows-ie-htmleditingsupport_31bf3856ad364e35_6.0.6001.18226_none_f35dec30ba31667b\ieencode.dll
+ 2009-04-15 17:13 . 2009-03-03 00:41 48128 c:\windows\winsxs\x86_microsoft-windows-ie-htmleditingsupport_31bf3856ad364e35_6.0.6000.21023_none_f1fe2199d62b5c91\mshtmler.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 78336 c:\windows\winsxs\x86_microsoft-windows-ie-htmleditingsupport_31bf3856ad364e35_6.0.6000.21023_none_f1fe2199d62b5c91\ieencode.dll
+ 2009-04-15 17:13 . 2009-03-03 00:44 48128 c:\windows\winsxs\x86_microsoft-windows-ie-htmleditingsupport_31bf3856ad364e35_6.0.6000.16830_none_f166dbe2bd185971\mshtmler.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 78336 c:\windows\winsxs\x86_microsoft-windows-ie-htmleditingsupport_31bf3856ad364e35_6.0.6000.16830_none_f166dbe2bd185971\ieencode.dll
+ 2009-04-15 17:13 . 2009-03-03 04:26 72704 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitmostfiles_31bf3856ad364e35_6.0.6001.22389_none_ae6e459e201c473b\admparse.dll
+ 2008-06-26 07:42 . 2008-01-19 07:33 72704 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitmostfiles_31bf3856ad364e35_6.0.6001.18226_none_ae22877d06d0b3c6\admparse.dll
+ 2009-04-15 17:13 . 2009-03-03 04:13 72704 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitmostfiles_31bf3856ad364e35_6.0.6000.21023_none_acc2bce622caa9dc\admparse.dll
+ 2009-04-15 17:13 . 2009-03-03 04:15 72704 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitmostfiles_31bf3856ad364e35_6.0.6000.16830_none_ac2b772f09b7a6bc\admparse.dll
+ 2009-04-15 17:13 . 2009-03-03 04:32 64512 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.22389_none_0225174ebb296f95\WininetPlugin.dll
+ 2009-04-15 17:13 . 2009-03-03 04:29 28160 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.22389_none_0225174ebb296f95\jsproxy.dll
+ 2008-10-18 00:21 . 2008-02-22 05:01 64512 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.18226_none_01d9592da1dddc20\WininetPlugin.dll
+ 2009-04-15 17:13 . 2009-03-03 04:37 28160 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.18226_none_01d9592da1dddc20\jsproxy.dll
+ 2009-04-15 17:13 . 2009-03-03 04:18 64512 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.21023_none_00798e96bdd7d236\WininetPlugin.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 27648 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.21023_none_00798e96bdd7d236\jsproxy.dll
+ 2009-04-15 17:13 . 2009-03-03 04:20 64512 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.16830_none_ffe248dfa4c4cf16\WininetPlugin.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 27648 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.16830_none_ffe248dfa4c4cf16\jsproxy.dll
+ 2009-04-15 17:13 . 2009-03-03 04:17 44544 c:\windows\winsxs\x86_microsoft-windows-i..ablenetworkgraphics_31bf3856ad364e35_6.0.6000.21023_none_ec570a422f6e343f\pngfilt.dll
+ 2009-04-15 17:13 . 2009-03-03 04:19 44544 c:\windows\winsxs\x86_microsoft-windows-i..ablenetworkgraphics_31bf3856ad364e35_6.0.6000.16830_none_ebbfc48b165b311f\pngfilt.dll
+ 2009-04-15 17:14 . 2008-06-06 03:25 38912 c:\windows\winsxs\x86_microsoft-windows-com-dtc-client_31bf3856ad364e35_6.0.6001.22197_none_4d223d3bd2ae154b\xolehlp.dll
+ 2009-04-15 17:14 . 2008-06-06 03:27 38912 c:\windows\winsxs\x86_microsoft-windows-com-dtc-client_31bf3856ad364e35_6.0.6001.18085_none_4ca16fc8b98a26e2\xolehlp.dll
+ 2009-04-15 17:14 . 2008-06-06 03:23 30208 c:\windows\winsxs\x86_microsoft-windows-com-dtc-client_31bf3856ad364e35_6.0.6000.20852_none_4b623eb9d56b930a\xolehlp.dll
+ 2009-04-15 17:14 . 2008-06-05 04:50 30208 c:\windows\winsxs\x86_microsoft-windows-com-dtc-client_31bf3856ad364e35_6.0.6000.16697_none_4ab261cabc69e490\xolehlp.dll
+ 2009-04-15 17:12 . 2009-03-21 03:14 13824 c:\windows\winsxs\x86_microsoft-windows-a..lity-infrastructure_31bf3856ad364e35_6.0.6001.22399_none_7b098a66fa8bd087\apilogen.dll
+ 2009-04-15 17:12 . 2009-03-21 03:14 40960 c:\windows\winsxs\x86_microsoft-windows-a..lity-infrastructure_31bf3856ad364e35_6.0.6001.22399_none_7b098a66fa8bd087\apihex86.dll
+ 2009-04-15 17:12 . 2009-03-21 03:14 24064 c:\windows\winsxs\x86_microsoft-windows-a..lity-infrastructure_31bf3856ad364e35_6.0.6001.22399_none_7b098a66fa8bd087\amxread.dll
+ 2009-04-15 17:12 . 2009-03-17 03:38 13824 c:\windows\winsxs\x86_microsoft-windows-a..lity-infrastructure_31bf3856ad364e35_6.0.6001.18230_none_7ab7ca89e145a508\apilogen.dll
+ 2009-04-15 17:12 . 2009-03-17 03:38 40960 c:\windows\winsxs\x86_microsoft-windows-a..lity-infrastructure_31bf3856ad364e35_6.0.6001.18230_none_7ab7ca89e145a508\apihex86.dll
+ 2009-04-15 17:12 . 2009-03-17 03:38 24064 c:\windows\winsxs\x86_microsoft-windows-a..lity-infrastructure_31bf3856ad364e35_6.0.6001.18230_none_7ab7ca89e145a508\amxread.dll
+ 2009-04-15 17:12 . 2009-03-17 03:19 14848 c:\windows\winsxs\x86_microsoft-windows-a..lity-infrastructure_31bf3856ad364e35_6.0.6000.21029_none_796ed356fd2caf41\apilogen.dll
+ 2009-04-15 17:12 . 2009-03-17 03:19 40960 c:\windows\winsxs\x86_microsoft-windows-a..lity-infrastructure_31bf3856ad364e35_6.0.6000.21029_none_796ed356fd2caf41\apihex86.dll
+ 2009-04-15 17:12 . 2009-03-17 03:19 25600 c:\windows\winsxs\x86_microsoft-windows-a..lity-infrastructure_31bf3856ad364e35_6.0.6000.21029_none_796ed356fd2caf41\amxread.dll
+ 2009-04-15 17:12 . 2009-03-17 03:16 14848 c:\windows\winsxs\x86_microsoft-windows-a..lity-infrastructure_31bf3856ad364e35_6.0.6000.16834_none_78d58d0be41b7973\apilogen.dll
+ 2009-04-15 17:12 . 2009-03-17 03:16 40960 c:\windows\winsxs\x86_microsoft-windows-a..lity-infrastructure_31bf3856ad364e35_6.0.6000.16834_none_78d58d0be41b7973\apihex86.dll
+ 2009-04-15 17:12 . 2009-03-17 03:16 25600 c:\windows\winsxs\x86_microsoft-windows-a..lity-infrastructure_31bf3856ad364e35_6.0.6000.16834_none_78d58d0be41b7973\amxread.dll
- 2008-06-26 07:45 . 2008-01-19 07:37 38912 c:\windows\System32\xolehlp.dll
+ 2009-04-15 17:14 . 2008-06-06 03:27 38912 c:\windows\System32\xolehlp.dll
+ 2007-07-25 09:32 . 2009-04-16 19:04 73264 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2006-11-02 13:05 . 2009-04-16 19:16 82086 c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2008-05-12 06:06 . 2009-04-16 19:16 17874 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2911883805-3122994826-1824005577-1000_UserData.bin
- 2008-06-26 07:43 . 2008-01-19 07:36 72704 c:\windows\System32\secur32.dll
+ 2009-04-15 17:12 . 2009-02-13 08:49 72704 c:\windows\System32\secur32.dll
- 2008-06-26 07:42 . 2008-01-19 07:36 26112 c:\windows\System32\printfilterpipelineprxy.dll
+ 2009-04-15 17:14 . 2009-03-03 04:39 26112 c:\windows\System32\printfilterpipelineprxy.dll
- 2009-02-11 10:51 . 2009-01-15 06:08 28160 c:\windows\System32\jsproxy.dll
+ 2009-04-15 17:13 . 2009-03-03 04:37 28160 c:\windows\System32\jsproxy.dll
- 2006-11-02 08:49 . 2006-11-02 09:45 26624 c:\windows\System32\ieUnatt.exe
+ 2009-04-15 17:13 . 2009-03-03 02:28 26624 c:\windows\System32\ieUnatt.exe
+ 2009-04-15 17:13 . 2009-03-03 04:37 78336 c:\windows\System32\ieencode.dll
- 2008-06-26 07:41 . 2008-01-19 07:34 78336 c:\windows\System32\ieencode.dll
+ 2009-04-15 17:14 . 2009-03-03 04:37 98304 c:\windows\System32\iasrecst.dll
- 2008-06-26 07:43 . 2008-01-19 07:34 98304 c:\windows\System32\iasrecst.dll
+ 2009-04-15 17:14 . 2009-03-03 02:38 17408 c:\windows\System32\iashost.exe
- 2008-06-26 07:44 . 2008-01-19 07:33 17408 c:\windows\System32\iashost.exe
- 2008-06-26 07:43 . 2008-01-19 07:34 44032 c:\windows\System32\iasdatastore.dll
+ 2009-04-15 17:14 . 2009-03-03 04:37 44032 c:\windows\System32\iasdatastore.dll
+ 2009-04-15 17:14 . 2009-03-03 04:37 54784 c:\windows\System32\iasads.dll
- 2008-06-26 07:43 . 2008-01-19 07:34 54784 c:\windows\System32\iasads.dll
+ 2007-10-24 07:06 . 2009-04-16 19:15 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2007-10-24 07:06 . 2009-04-14 16:45 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2007-10-24 07:06 . 2009-04-16 19:15 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2007-10-24 07:06 . 2009-04-14 16:45 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-04-16 13:33 . 2009-04-16 19:12 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009041620090417\index.dat
+ 2009-04-15 06:01 . 2009-04-15 17:02 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012009041520090416\index.dat
- 2007-10-24 07:06 . 2009-04-14 16:45 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2007-10-24 07:06 . 2009-04-16 19:15 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-04-15 17:12 . 2009-03-17 03:38 13824 c:\windows\System32\apilogen.dll
- 2008-06-26 07:41 . 2008-01-19 07:33 13824 c:\windows\System32\apilogen.dll
- 2008-06-26 07:41 . 2008-01-19 07:33 24064 c:\windows\System32\amxread.dll
+ 2009-04-15 17:12 . 2009-03-17 03:38 24064 c:\windows\System32\amxread.dll
- 2008-05-22 17:10 . 2009-03-14 09:30 23040 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2008-05-22 17:10 . 2009-04-16 13:43 23040 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2008-05-22 17:10 . 2009-04-16 13:43 61440 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\pubs.exe
- 2008-05-22 17:10 . 2009-03-14 09:30 61440 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\pubs.exe
- 2008-05-22 17:10 . 2009-03-14 09:30 27136 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2008-05-22 17:10 . 2009-04-16 13:43 27136 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2008-05-22 17:10 . 2009-03-14 09:30 11264 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2008-05-22 17:10 . 2009-04-16 13:43 11264 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2008-05-22 17:10 . 2009-04-16 13:43 86016 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\inficon.exe
- 2008-05-22 17:10 . 2009-03-14 09:30 86016 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\inficon.exe
- 2008-05-22 17:10 . 2009-03-14 09:30 12288 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2008-05-22 17:10 . 2009-04-16 13:43 12288 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2009-04-15 17:12 . 2009-03-17 03:38 40960 c:\windows\AppPatch\apihex86.dll
- 2008-06-26 07:41 . 2008-01-19 07:33 40960 c:\windows\AppPatch\apihex86.dll
+ 2009-04-15 17:12 . 2009-02-13 08:20 9728 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsass.exe
+ 2008-06-26 07:42 . 2008-01-19 07:33 9728 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsass.exe
+ 2009-04-15 17:12 . 2009-02-13 04:58 7680 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsass.exe
+ 2009-04-15 17:12 . 2009-02-13 07:26 7680 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsass.exe
+ 2009-04-16 19:00 . 2009-04-16 19:11 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2009-04-14 14:53 . 2009-04-14 14:53 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2009-04-16 19:00 . 2009-04-16 19:11 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-04-14 14:53 . 2009-04-14 14:53 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2008-05-22 17:10 . 2009-04-16 13:43 4096 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
- 2008-05-22 17:10 . 2009-03-14 09:30 4096 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2009-04-15 17:14 . 2008-12-06 04:26 376832 c:\windows\winsxs\x86_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6001.22323_none_2544fb0bdb4e81f9\winhttp.dll
+ 2009-04-15 17:14 . 2008-12-06 04:42 376832 c:\windows\winsxs\x86_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6001.18178_none_248a4e30c254ef70\winhttp.dll
+ 2009-04-15 17:14 . 2008-12-08 04:19 377344 c:\windows\winsxs\x86_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6000.20971_none_2326ac35de524a0f\winhttp.dll
+ 2009-04-15 17:14 . 2008-12-08 04:34 376832 c:\windows\winsxs\x86_microsoft.windows.winhttp_31bf3856ad364e35_5.1.6000.16786_none_22973f0ac53847c2\winhttp.dll
+ 2009-04-15 17:14 . 2009-03-03 02:03 247296 c:\windows\winsxs\x86_microsoft-windows-wmi-core-providerhost_31bf3856ad364e35_6.0.6001.22389_none_109ee25ca4bb6776\WmiPrvSE.exe
+ 2009-04-15 17:14 . 2009-03-03 04:33 499200 c:\windows\winsxs\x86_microsoft-windows-wmi-core-providerhost_31bf3856ad364e35_6.0.6001.22389_none_109ee25ca4bb6776\WmiPrvSD.dll
+ 2009-04-15 17:14 . 2009-03-03 04:33 129024 c:\windows\winsxs\x86_microsoft-windows-wmi-core-providerhost_31bf3856ad364e35_6.0.6001.22389_none_109ee25ca4bb6776\WmiDcPrv.dll
+ 2009-04-15 17:14 . 2009-03-03 02:16 247296 c:\windows\winsxs\x86_microsoft-windows-wmi-core-providerhost_31bf3856ad364e35_6.0.6001.18226_none_1053243b8b6fd401\WmiPrvSE.exe
+ 2009-04-15 17:14 . 2009-03-03 04:40 499200 c:\windows\winsxs\x86_microsoft-windows-wmi-core-providerhost_31bf3856ad364e35_6.0.6001.18226_none_1053243b8b6fd401\WmiPrvSD.dll
+ 2009-04-15 17:14 . 2009-03-03 04:40 129024 c:\windows\winsxs\x86_microsoft-windows-wmi-core-providerhost_31bf3856ad364e35_6.0.6001.18226_none_1053243b8b6fd401\WmiDcPrv.dll
+ 2009-04-15 17:14 . 2009-03-03 01:57 247296 c:\windows\winsxs\x86_microsoft-windows-wmi-core-providerhost_31bf3856ad364e35_6.0.6000.21023_none_0ef359a4a769ca17\WmiPrvSE.exe
+ 2009-04-15 17:14 . 2009-03-03 04:18 501760 c:\windows\winsxs\x86_microsoft-windows-wmi-core-providerhost_31bf3856ad364e35_6.0.6000.21023_none_0ef359a4a769ca17\WmiPrvSD.dll
+ 2009-04-15 17:14 . 2009-03-03 04:18 130560 c:\windows\winsxs\x86_microsoft-windows-wmi-core-providerhost_31bf3856ad364e35_6.0.6000.21023_none_0ef359a4a769ca17\WmiDcPrv.dll
+ 2009-04-15 17:14 . 2009-03-03 01:59 247296 c:\windows\winsxs\x86_microsoft-windows-wmi-core-providerhost_31bf3856ad364e35_6.0.6000.16830_none_0e5c13ed8e56c6f7\WmiPrvSE.exe
+ 2009-04-15 17:14 . 2009-03-03 04:20 501760 c:\windows\winsxs\x86_microsoft-windows-wmi-core-providerhost_31bf3856ad364e35_6.0.6000.16830_none_0e5c13ed8e56c6f7\WmiPrvSD.dll
+ 2009-04-15 17:14 . 2009-03-03 04:20 130560 c:\windows\winsxs\x86_microsoft-windows-wmi-core-providerhost_31bf3856ad364e35_6.0.6000.16830_none_0e5c13ed8e56c6f7\WmiDcPrv.dll
+ 2009-04-15 17:14 . 2009-03-03 04:28 615424 c:\windows\winsxs\x86_microsoft-windows-wmi-core-fastprox-dll_31bf3856ad364e35_6.0.6001.22389_none_fb85772b93130197\fastprox.dll
+ 2009-04-15 17:14 . 2009-03-03 04:36 615424 c:\windows\winsxs\x86_microsoft-windows-wmi-core-fastprox-dll_31bf3856ad364e35_6.0.6001.18226_none_fb39b90a79c76e22\fastprox.dll
+ 2009-04-15 17:14 . 2009-03-03 04:14 614912 c:\windows\winsxs\x86_microsoft-windows-wmi-core-fastprox-dll_31bf3856ad364e35_6.0.6000.21023_none_f9d9ee7395c16438\fastprox.dll
+ 2009-04-15 17:14 . 2009-03-03 04:16 614912 c:\windows\winsxs\x86_microsoft-windows-wmi-core-fastprox-dll_31bf3856ad364e35_6.0.6000.16830_none_f942a8bc7cae6118\fastprox.dll
+ 2009-04-15 17:14 . 2009-03-03 02:49 666624 c:\windows\winsxs\x86_microsoft-windows-p..oler-filterpipeline_31bf3856ad364e35_6.0.6001.22389_none_2be9bd5af4bd3b16\printfilterpipelinesvc.exe
+ 2009-04-15 17:14 . 2009-03-03 03:04 666624 c:\windows\winsxs\x86_microsoft-windows-p..oler-filterpipeline_31bf3856ad364e35_6.0.6001.18226_none_2b9dff39db71a7a1\printfilterpipelinesvc.exe
+ 2009-04-15 17:14 . 2009-03-03 02:37 659456 c:\windows\winsxs\x86_microsoft-windows-p..oler-filterpipeline_31bf3856ad364e35_6.0.6000.21023_none_2a3e34a2f76b9db7\printfilterpipelinesvc.exe
+ 2009-04-15 17:14 . 2009-03-03 02:40 654336 c:\windows\winsxs\x86_microsoft-windows-p..oler-filterpipeline_31bf3856ad364e35_6.0.6000.16830_none_29a6eeebde589a97\printfilterpipelinesvc.exe
+ 2009-04-15 17:14 . 2009-03-03 04:32 324608 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6001.22389_none_d16ab47d4f561502\sdohlp.dll
+ 2009-04-15 17:14 . 2009-03-03 04:28 119296 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6001.22389_none_d16ab47d4f561502\iasrecst.dll
+ 2009-04-15 17:14 . 2009-03-03 04:39 183296 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6001.18226_none_d11ef65c360a818d\sdohlp.dll
+ 2009-04-15 17:14 . 2009-03-03 04:17 158720 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6000.21023_none_cfbf2bc5520477a3\sdohlp.dll
+ 2009-04-15 17:14 . 2009-03-03 04:19 158720 c:\windows\winsxs\x86_microsoft-windows-n..n_service_datastore_31bf3856ad364e35_6.0.6000.16830_none_cf27e60e38f17483\sdohlp.dll
+ 2009-04-15 17:12 . 2009-01-30 00:29 441400 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\ksecdd.sys
+ 2008-06-26 07:45 . 2008-01-19 07:43 441400 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\ksecdd.sys
+ 2006-11-02 08:43 . 2006-11-02 09:51 407144 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\ksecdd.sys
+ 2006-11-02 08:43 . 2006-11-02 09:51 407144 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\ksecdd.sys
+ 2009-04-15 17:12 . 2009-02-13 08:21 890880 c:\windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.22376_none_9401d8206f9c7e67\kernel32.dll
+ 2009-04-15 17:12 . 2009-02-13 08:49 888832 c:\windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6001.18215_none_93b81a93564f1da0\kernel32.dll
+ 2009-04-15 17:12 . 2009-02-13 07:13 875520 c:\windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6000.21010_none_92564f68724ae108\kernel32.dll
+ 2009-04-15 17:12 . 2009-02-13 07:26 875520 c:\windows\winsxs\x86_microsoft-windows-kernel32_31bf3856ad364e35_6.0.6000.16820_none_91c20a8f593529ed\kernel32.dll
+ 2009-04-15 17:13 . 2009-03-03 02:07 301568 c:\windows\winsxs\x86_microsoft-windows-ieuser_31bf3856ad364e35_6.0.6000.21023_none_0bd4a953f021dd83\ieuser.exe
+ 2009-04-15 17:13 . 2009-03-03 02:09 301568 c:\windows\winsxs\x86_microsoft-windows-ieuser_31bf3856ad364e35_6.0.6000.16830_none_0b3d639cd70eda63\ieuser.exe
+ 2009-04-15 17:13 . 2009-03-03 02:07 263168 c:\windows\winsxs\x86_microsoft-windows-ieinstal_31bf3856ad364e35_6.0.6000.21023_none_e72c7437ada71dd1\ieinstal.exe
+ 2009-04-15 17:13 . 2009-03-03 02:08 263168 c:\windows\winsxs\x86_microsoft-windows-ieinstal_31bf3856ad364e35_6.0.6000.16830_none_e6952e8094941ab1\ieinstal.exe
+ 2009-04-15 17:13 . 2009-03-03 04:28 180736 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22389_none_64de9070c77566f8\ieui.dll
+ 2008-06-26 07:43 . 2008-01-19 07:34 180736 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18226_none_6492d24fae29d383\ieui.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 180736 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21023_none_633307b8ca23c999\ieui.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 180736 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16830_none_629bc201b110c679\ieui.dll
+ 2009-04-15 17:13 . 2009-03-03 04:32 129536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_6.0.6001.22389_none_47dfce2aa5da8df2\sqmapi.dll
+ 2009-04-15 17:13 . 2009-03-03 04:28 270848 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_6.0.6001.22389_none_47dfce2aa5da8df2\iertutil.dll
+ 2008-06-26 07:44 . 2008-01-19 07:36 129536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_6.0.6001.18226_none_479410098c8efa7d\sqmapi.dll
+ 2009-04-15 17:13 . 2009-03-03 04:37 270336 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_6.0.6001.18226_none_479410098c8efa7d\iertutil.dll
+ 2009-04-15 17:13 . 2009-03-03 04:17 134144 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_6.0.6000.21023_none_46344572a888f093\sqmapi.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 268288 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_6.0.6000.21023_none_46344572a888f093\iertutil.dll
+ 2009-04-15 17:13 . 2009-03-03 04:19 134144 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_6.0.6000.16830_none_459cffbb8f75ed73\sqmapi.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 268288 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_6.0.6000.16830_none_459cffbb8f75ed73\iertutil.dll
+ 2009-04-15 17:13 . 2009-03-03 04:31 102912 c:\windows\winsxs\x86_microsoft-windows-ie-objectcontrolviewer_31bf3856ad364e35_6.0.6001.22389_none_37628bfd2d797360\occache.dll
+ 2009-04-15 17:13 . 2009-03-03 04:39 102912 c:\windows\winsxs\x86_microsoft-windows-ie-objectcontrolviewer_31bf3856ad364e35_6.0.6001.18226_none_3716cddc142ddfeb\occache.dll
+ 2009-04-15 17:13 . 2009-03-03 04:17 102912 c:\windows\winsxs\x86_microsoft-windows-ie-objectcontrolviewer_31bf3856ad364e35_6.0.6000.21023_none_35b703453027d601\occache.dll
+ 2009-04-15 17:13 . 2009-03-03 04:19 102912 c:\windows\winsxs\x86_microsoft-windows-ie-objectcontrolviewer_31bf3856ad364e35_6.0.6000.16830_none_351fbd8e1714d2e1\occache.dll
+ 2009-04-15 17:13 . 2009-03-03 04:32 636072 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.22389_none_2f9e23da3354de78\iexplore.exe
+ 2009-04-15 17:13 . 2009-03-03 04:40 636072 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6001.18226_none_2f5265b91a094b03\iexplore.exe
+ 2009-04-15 17:13 . 2009-03-03 04:18 636072 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.21023_none_2df29b2236034119\iexplore.exe
+ 2009-04-15 17:13 . 2009-03-03 04:22 636072 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_6.0.6000.16830_none_2d5b556b1cf03df9\iexplore.exe
+ 2009-04-15 17:13 . 2009-03-03 04:15 477696 c:\windows\winsxs\x86_microsoft-windows-ie-htmlediting_31bf3856ad364e35_6.0.6000.21023_none_46b984805f698544\mshtmled.dll
+ 2009-04-15 17:13 . 2009-03-03 04:17 477696 c:\windows\winsxs\x86_microsoft-windows-ie-htmlediting_31bf3856ad364e35_6.0.6000.16830_none_46223ec946568224\mshtmled.dll
+ 2009-04-15 17:13 . 2009-03-03 04:30 458240 c:\windows\winsxs\x86_microsoft-windows-ie-feeds-platform_31bf3856ad364e35_6.0.6001.22389_none_6022ae1d53ccc24d\msfeeds.dll
+ 2009-04-15 17:13 . 2009-03-03 04:38 458240 c:\windows\winsxs\x86_microsoft-windows-ie-feeds-platform_31bf3856ad364e35_6.0.6001.18226_none_5fd6effc3a812ed8\msfeeds.dll
+ 2009-04-15 17:13 . 2009-03-03 04:15 459264 c:\windows\winsxs\x86_microsoft-windows-ie-feeds-platform_31bf3856ad364e35_6.0.6000.21023_none_5e772565567b24ee\msfeeds.dll
+ 2009-04-15 17:13 . 2009-03-03 04:17 459264 c:\windows\winsxs\x86_microsoft-windows-ie-feeds-platform_31bf3856ad364e35_6.0.6000.16830_none_5ddfdfae3d6821ce\msfeeds.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 214528 c:\windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_9656ea289da8d2b7\dxtrans.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 347136 c:\windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.21023_none_9656ea289da8d2b7\dxtmsft.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 214528 c:\windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_95bfa4718495cf97\dxtrans.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 347136 c:\windows\winsxs\x86_microsoft-windows-ie-directxtransforms_31bf3856ad364e35_6.0.6000.16830_none_95bfa4718495cf97\dxtmsft.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 380928 c:\windows\winsxs\x86_microsoft-windows-ie-antiphishfilter_31bf3856ad364e35_6.0.6000.21023_none_fa22b17087c34c89\ieapfltr.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 383488 c:\windows\winsxs\x86_microsoft-windows-ie-antiphishfilter_31bf3856ad364e35_6.0.6000.16830_none_f98b6bb96eb04969\ieapfltr.dll
+ 2009-04-15 17:13 . 2009-03-03 04:28 161792 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitmostfiles_31bf3856ad364e35_6.0.6001.22389_none_ae6e459e201c473b\ieakui.dll
+ 2009-04-15 17:13 . 2009-03-03 04:28 230400 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitmostfiles_31bf3856ad364e35_6.0.6001.22389_none_ae6e459e201c473b\ieaksie.dll
+ 2006-11-02 07:27 . 2006-11-02 09:39 161792 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitmostfiles_31bf3856ad364e35_6.0.6001.18226_none_ae22877d06d0b3c6\ieakui.dll
+ 2009-04-15 17:13 . 2009-03-03 04:37 230400 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitmostfiles_31bf3856ad364e35_6.0.6001.18226_none_ae22877d06d0b3c6\ieaksie.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 161792 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitmostfiles_31bf3856ad364e35_6.0.6000.21023_none_acc2bce622caa9dc\ieakui.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 230400 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitmostfiles_31bf3856ad364e35_6.0.6000.21023_none_acc2bce622caa9dc\ieaksie.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 161792 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitmostfiles_31bf3856ad364e35_6.0.6000.16830_none_ac2b772f09b7a6bc\ieakui.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 230400 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitmostfiles_31bf3856ad364e35_6.0.6000.16830_none_ac2b772f09b7a6bc\ieaksie.dll
+ 2009-04-15 17:13 . 2009-03-03 04:28 389120 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitbranding_31bf3856ad364e35_6.0.6001.22389_none_748c904a70d3905c\iedkcs32.dll
+ 2009-04-15 17:13 . 2009-03-03 04:37 389120 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitbranding_31bf3856ad364e35_6.0.6001.18226_none_7440d2295787fce7\iedkcs32.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 388608 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitbranding_31bf3856ad364e35_6.0.6000.21023_none_72e107927381f2fd\iedkcs32.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 385024 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitbranding_31bf3856ad364e35_6.0.6000.16830_none_7249c1db5a6eefdd\iedkcs32.dll
+ 2009-04-15 17:13 . 2009-03-03 04:32 827904 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.22389_none_0225174ebb296f95\wininet.dll
+ 2009-04-15 17:13 . 2009-03-03 04:40 827392 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6001.18226_none_01d9592da1dddc20\wininet.dll
+ 2009-04-15 17:13 . 2009-03-03 04:18 828416 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.21023_none_00798e96bdd7d236\wininet.dll
+ 2009-04-15 17:13 . 2009-03-03 04:20 826368 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_6.0.6000.16830_none_ffe248dfa4c4cf16\wininet.dll
+ 2009-04-15 17:13 . 2009-03-03 04:30 671232 c:\windows\winsxs\x86_microsoft-windows-i..mlrenderingadvanced_31bf3856ad364e35_6.0.6001.22389_none_e101ca7595c90871\mstime.dll
+ 2009-04-15 17:13 . 2009-03-03 04:38 671232 c:\windows\winsxs\x86_microsoft-windows-i..mlrenderingadvanced_31bf3856ad364e35_6.0.6001.18226_none_e0b60c547c7d74fc\mstime.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 671232 c:\windows\winsxs\x86_microsoft-windows-i..mlrenderingadvanced_31bf3856ad364e35_6.0.6000.21023_none_df5641bd98776b12\mstime.dll
+ 2009-04-15 17:13 . 2009-03-03 04:18 671232 c:\windows\winsxs\x86_microsoft-windows-i..mlrenderingadvanced_31bf3856ad364e35_6.0.6000.16830_none_debefc067f6467f2\mstime.dll
+ 2009-04-15 17:14 . 2008-06-06 03:23 562176 c:\windows\winsxs\x86_microsoft-windows-com-dtc-client_31bf3856ad364e35_6.0.6001.22197_none_4d223d3bd2ae154b\msdtcprx.dll
+ 2009-04-15 17:14 . 2008-06-06 03:27 562176 c:\windows\winsxs\x86_microsoft-windows-com-dtc-client_31bf3856ad364e35_6.0.6001.18085_none_4ca16fc8b98a26e2\msdtcprx.dll
+ 2009-04-15 17:14 . 2008-06-06 03:21 500736 c:\windows\winsxs\x86_microsoft-windows-com-dtc-client_31bf3856ad364e35_6.0.6000.20852_none_4b623eb9d56b930a\msdtcprx.dll
+ 2009-04-15 17:14 . 2008-06-05 04:50 500736 c:\windows\winsxs\x86_microsoft-windows-com-dtc-client_31bf3856ad364e35_6.0.6000.16697_none_4ab261cabc69e490\msdtcprx.dll
+ 2009-04-15 17:14 . 2009-03-03 04:32 551424 c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.0.6001.22389_none_6a06ffcd57365beb\rpcss.dll
+ 2009-04-15 17:14 . 2009-03-03 04:39 551424 c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.0.6001.18226_none_69bb41ac3deac876\rpcss.dll
+ 2009-04-15 17:14 . 2009-03-03 04:17 550400 c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.0.6000.21023_none_685b771559e4be8c\rpcss.dll
+ 2009-04-15 17:14 . 2009-03-03 04:19 549888 c:\windows\winsxs\x86_microsoft-windows-com-base-qfe-rpcss_31bf3856ad364e35_6.0.6000.16830_none_67c4315e40d1bb6c\rpcss.dll
+ 2009-04-15 17:13 . 2009-03-03 04:13 124928 c:\windows\winsxs\x86_microsoft-windows-advpack_31bf3856ad364e35_6.0.6000.21023_none_aa5c00930ed54e40\advpack.dll
+ 2009-04-15 17:13 . 2009-03-03 04:15 124928 c:\windows\winsxs\x86_microsoft-windows-advpack_31bf3856ad364e35_6.0.6000.16830_none_a9c4badbf5c24b20\advpack.dll
+ 2009-04-15 17:13 . 2009-03-03 04:40 827392 c:\windows\System32\wininet.dll
- 2009-02-11 10:51 . 2009-01-15 06:11 827392 c:\windows\System32\wininet.dll
+ 2009-04-15 17:14 . 2008-12-06 04:42 376832 c:\windows\System32\winhttp.dll
- 2008-06-26 07:45 . 2008-01-19 07:36 376832 c:\windows\System32\winhttp.dll
+ 2008-05-12 20:11 . 2009-04-15 18:53 355924 c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S4.bin
+ 2009-04-15 17:14 . 2009-03-03 02:16 247296 c:\windows\System32\wbem\WmiPrvSE.exe
+ 2009-04-15 17:14 . 2009-03-03 04:40 499200 c:\windows\System32\wbem\WmiPrvSD.dll
+ 2009-04-15 17:14 . 2009-03-03 04:40 129024 c:\windows\System32\wbem\WmiDcPrv.dll
+ 2009-04-15 17:14 . 2009-03-03 04:36 615424 c:\windows\System32\wbem\fastprox.dll
+ 2009-04-15 17:14 . 2009-03-03 04:39 183296 c:\windows\System32\sdohlp.dll
- 2008-06-26 07:45 . 2008-01-19 07:36 183296 c:\windows\System32\sdohlp.dll
+ 2009-04-15 17:14 . 2009-03-03 04:39 551424 c:\windows\System32\rpcss.dll
+ 2009-04-15 17:14 . 2009-03-03 03:04 666624 c:\windows\System32\printfilterpipelinesvc.exe
- 2006-11-02 10:33 . 2009-04-14 11:24 598588 c:\windows\System32\perfh009.dat
+ 2006-11-02 10:33 . 2009-04-16 15:41 598588 c:\windows\System32\perfh009.dat
- 2006-11-02 10:33 . 2009-04-14 11:24 102194 c:\windows\System32\perfc009.dat
+ 2006-11-02 10:33 . 2009-04-16 15:41 102194 c:\windows\System32\perfc009.dat
+ 2009-04-15 17:13 . 2009-03-03 04:39 102912 c:\windows\System32\occache.dll
- 2008-06-26 07:42 . 2008-01-19 07:36 102912 c:\windows\System32\occache.dll
+ 2009-04-15 17:13 . 2009-03-03 04:38 671232 c:\windows\System32\mstime.dll
- 2009-02-11 10:51 . 2009-01-15 06:08 671232 c:\windows\System32\mstime.dll
+ 2009-04-15 17:13 . 2009-03-03 04:38 458240 c:\windows\System32\msfeeds.dll
- 2009-02-11 10:51 . 2009-01-15 06:08 458240 c:\windows\System32\msfeeds.dll
+ 2009-04-15 17:14 . 2008-06-06 03:27 562176 c:\windows\System32\msdtcprx.dll
+ 2009-04-15 17:12 . 2009-02-13 08:49 888832 c:\windows\System32\kernel32.dll
- 2009-02-11 10:51 . 2009-01-15 06:07 270336 c:\windows\System32\iertutil.dll
+ 2009-04-15 17:13 . 2009-03-03 04:37 270336 c:\windows\System32\iertutil.dll
+ 2009-04-15 17:13 . 2009-03-03 04:37 389120 c:\windows\System32\iedkcs32.dll
- 2008-06-26 07:42 . 2008-01-19 07:34 230400 c:\windows\System32\ieaksie.dll
+ 2009-04-15 17:13 . 2009-03-03 04:37 230400 c:\windows\System32\ieaksie.dll
- 2006-11-02 12:47 . 2009-04-14 16:52 262144 c:\windows\ServiceProfiles\NetworkService\ntuser.dat
+ 2006-11-02 12:47 . 2009-04-16 19:15 262144 c:\windows\ServiceProfiles\NetworkService\ntuser.dat
- 2006-11-02 12:47 . 2009-04-14 16:52 262144 c:\windows\ServiceProfiles\LocalService\ntuser.dat
+ 2006-11-02 12:47 . 2009-04-16 19:15 262144 c:\windows\ServiceProfiles\LocalService\ntuser.dat
+ 2008-05-22 17:10 . 2009-04-16 13:43 409600 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\xlicons.exe
- 2008-05-22 17:10 . 2009-03-14 09:30 409600 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\xlicons.exe
- 2008-05-22 17:10 . 2009-03-14 09:30 286720 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2008-05-22 17:10 . 2009-04-16 13:43 286720 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\wordicon.exe
- 2008-05-22 17:10 . 2009-03-14 09:30 249856 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2008-05-22 17:10 . 2009-04-16 13:43 249856 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2008-05-22 17:10 . 2009-04-16 13:43 794624 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2008-05-22 17:10 . 2009-03-14 09:30 794624 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\outicon.exe
+ 2008-05-22 17:10 . 2009-04-16 13:43 135168 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2008-05-22 17:10 . 2009-03-14 09:30 135168 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2008-05-22 17:10 . 2009-03-14 09:30 593920 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2008-05-22 17:10 . 2009-04-16 13:43 593920 c:\windows\Installer\{90110409-6000-11D3-8CFE-0150048383C9}\accicons.exe
+ 2009-04-15 17:14 . 2009-03-03 04:37 3548656 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22389_none_6c6c8571cd797017\ntoskrnl.exe
+ 2009-04-15 17:14 . 2009-03-03 04:37 3600880 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22389_none_6c6c8571cd797017\ntkrnlpa.exe
+ 2009-04-15 17:14 . 2009-03-03 04:46 3547632 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18226_none_6c20c750b42ddca2\ntoskrnl.exe
+ 2009-04-15 17:14 . 2009-03-03 04:46 3599328 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18226_none_6c20c750b42ddca2\ntkrnlpa.exe
+ 2009-04-15 17:14 . 2009-03-03 04:22 3471328 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21023_none_6ac0fcb9d027d2b8\ntoskrnl.exe
+ 2009-04-15 17:14 . 2009-03-03 04:22 3505120 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21023_none_6ac0fcb9d027d2b8\ntkrnlpa.exe
+ 2009-04-15 17:14 . 2009-03-03 04:24 3469280 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16830_none_6a29b702b714cf98\ntoskrnl.exe
+ 2009-04-15 17:14 . 2009-03-03 04:24 3503584 c:\windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16830_none_6a29b702b714cf98\ntkrnlpa.exe
+ 2009-04-15 17:14 . 2009-03-13 22:23 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6001.22395_none_f2b56ce184dc676b\OESpamFilter.dat
+ 2009-04-15 17:14 . 2009-03-13 22:26 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6001.18229_none_f27b80b26b826966\OESpamFilter.dat
+ 2009-04-15 17:14 . 2009-03-13 22:24 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.21027_none_f11cb665877b78d3\OESpamFilter.dat
+ 2009-04-15 17:14 . 2009-03-13 22:24 2409784 c:\windows\winsxs\x86_microsoft-windows-oespamfilter-dat_31bf3856ad364e35_6.0.6000.16833_none_f08470646e695c5c\OESpamFilter.dat
+ 2009-04-15 17:12 . 2009-02-13 08:21 1257472 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsasrv.dll
+ 2009-04-15 17:12 . 2009-02-13 08:49 1255936 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsasrv.dll
+ 2009-04-15 17:12 . 2009-02-13 07:13 1234432 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsasrv.dll
+ 2009-04-15 17:12 . 2009-02-13 07:26 1233408 c:\windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsasrv.dll
+ 2009-04-15 17:13 . 2009-03-03 04:28 6070784 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.22389_none_64de9070c77566f8\ieframe.dll
+ 2009-04-15 17:13 . 2009-03-03 04:37 6068736 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6001.18226_none_6492d24fae29d383\ieframe.dll
+ 2009-04-15 17:13 . 2009-03-03 04:14 6068736 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.21023_none_633307b8ca23c999\ieframe.dll
+ 2009-04-15 17:13 . 2009-03-03 04:16 6066176 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_6.0.6000.16830_none_629bc201b110c679\ieframe.dll
+ 2009-04-15 17:13 . 2009-03-03 04:30 3581440 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.22389_none_137f366d3b7fd8cb\mshtml.dll
+ 2009-04-15 17:13 . 2009-03-03 04:38 3580928 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6001.18226_none_1333784c22344556\mshtml.dll
+ 2009-04-15 17:13 . 2009-03-03 04:15 3596800 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.21023_none_11d3adb53e2e3b6c\mshtml.dll
+ 2009-04-15 17:13 . 2009-03-03 04:17 3595264 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_6.0.6000.16830_none_113c67fe251b384c\mshtml.dll
+ 2008-06-21 01:04 . 2008-06-21 01:04 2455488 c:\windows\winsxs\x86_microsoft-windows-ie-antiphishfilter_31bf3856ad364e35_6.0.6000.21023_none_fa22b17087c34c89\ieapfltr.dat
+ 2008-06-21 01:04 . 2008-06-21 01:04 2455488 c:\windows\winsxs\x86_microsoft-windows-ie-antiphishfilter_31bf3856ad364e35_6.0.6000.16830_none_f98b6bb96eb04969\ieapfltr.dat
+ 2009-04-15 17:13 . 2009-03-03 04:32 1166848 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.22389_none_b51f3bacf0204902\urlmon.dll
+ 2009-04-15 17:13 . 2009-03-03 04:40 1166336 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6001.18226_none_b4d37d8bd6d4b58d\urlmon.dll
+ 2009-04-15 17:13 . 2009-03-03 04:18 1163264 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.21023_none_b373b2f4f2ceaba3\urlmon.dll
+ 2009-04-15 17:13 . 2009-03-03 04:20 1160192 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_6.0.6000.16830_none_b2dc6d3dd9bba883\urlmon.dll
+ 2009-04-15 17:13 . 2009-03-03 04:40 1166336 c:\windows\System32\urlmon.dll
- 2009-02-11 10:51 . 2009-01-15 06:11 1166336 c:\windows\System32\urlmon.dll
+ 2006-11-02 10:22 . 2009-04-16 16:41 6553600 c:\windows\System32\SMI\Store\Machine\schema.dat
- 2006-11-02 10:22 . 2009-03-29 22:47 6553600 c:\windows\System32\SMI\Store\Machine\schema.dat
+ 2009-04-15 17:14 . 2009-03-03 04:46 3547632 c:\windows\System32\ntoskrnl.exe
+ 2009-04-15 17:14 . 2009-03-03 04:46 3599328 c:\windows\System32\ntkrnlpa.exe
+ 2009-04-15 17:13 . 2009-03-03 04:38 3580928 c:\windows\System32\mshtml.dll
+ 2009-04-15 17:12 . 2009-02-13 08:49 1255936 c:\windows\System32\lsasrv.dll
- 2008-06-26 07:45 . 2008-01-19 07:36 1255936 c:\windows\System32\lsasrv.dll
+ 2009-04-15 17:13 . 2009-03-03 04:37 6068736 c:\windows\System32\ieframe.dll
+ 2008-06-22 20:56 . 2009-04-16 14:07 57809723 c:\windows\winsxs\ManifestCache\6.0.6001.18000_001c50b5_blobs.bin
+ 2006-11-02 10:24 . 2009-04-06 05:57 24921544 c:\windows\System32\mrt.exe
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2007-12-13 1688872]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]
"MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 5724184]
"eMuleAutoStart"="d:\programs\instalirano\emule\emule.exe" [BU]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]
"Search Protection"="c:\program files\Yahoo!\Search Protection\SearchProtection.exe" [2008-10-07 111856]
"YSearchProtection"="c:\program files\Yahoo!\Search Protection\SearchProtection.exe" [2008-10-07 111856]
"BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2009-01-01 342848]
"Google Update"="c:\users\Olja\AppData\Local\Google\Update\GoogleUpdate.exe" [2008-11-16 133104]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2008-11-07 21633320]
"Acer Tour Reminder"="" [BU]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ALaunch"="c:\acer\ALaunch\AlaunchClient.exe" [BU]
"eDataSecurity Loader"="c:\acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2007-04-25 457216]
"eAudio"="c:\acer\Empowering Technology\eAudio\eAudio.exe" [2007-06-11 1286144]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2007-08-15 772616]
"PlayMovie"="c:\program files\Acer Arcade Deluxe\Play Movie\PMVService.exe" [2007-05-24 206952]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2007-06-06 159744]
"Acer Tour Reminder"="c:\acer\AcerTour\Reminder.exe" [2007-05-22 151552]
"WarReg_PopUp"="c:\acer\WR_PopUp\WarReg_PopUp.exe" [2006-11-05 57344]
"SetPanel"="c:\acer\APanel\APanel.cmd"

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Prikači C:\ComboFix.txt uz poruku.

offline
  • Pridružio: 14 Apr 2009
  • Poruke: 28

Napisano: 16 Apr 2009 21:41

nije celo...evo ovako
mycity.rs/must-login.png

Dopuna: 16 Apr 2009 21:42

sada je combofix folder u C:/ prazan...jel to normalno?

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Jeste... ovo se malo zakomplikovalo.
Još malo ću da te gnjavim. Smile



Arrow Pokreni HijackThis, skeniraj i čekiraj sledeću liniju:

O4 - HKLM\..\Run: [winsvc32] winsvc32.exe

Klikni Fix checked.


Ukoliko ti Ad-Watch prijavi bilo kakvu promenu u registru, dozvoli je.


-------------------------------------------------------------------------------------


Arrow Upload-uj bilo koji od ovih file-ova sa flash drive-a (dovoljan je jedan):

skenirano.exe
Ivo Andric Znakovi pored puta_ (excerpts) [Borut's Literature Collection]_files.exe
knjiga1.exe
engleski.exe
плакат.exe
KNJIGA.exe
YAMB.exe
Znakovi pored puta.exe

preko ovog linka: http://www.mycity.rs/ambulanta-upload.php


-------------------------------------------------------------------------------------

Arrow Skini sledeći file (nova verzija programa):
http://amf.mycity.rs/personal/bobby/USBNoRisk/usbnorisk_debug.exe


Postupak ti je već poznat. Koristi ovaj skript:


{0a034528-0a2a-11de-be4d-001b385ddd7a}
f_delete: %DRIVE%skenirano.exe
f_delete: %DRIVE%Ivo Andric Znakovi pored puta_ (excerpts) [Borut's Literature Collection]_files.exe
f_delete: %DRIVE%knjiga1.exe
f_delete: %DRIVE%engleski.exe
f_delete: %DRIVE%плакат.exe
f_delete: %DRIVE%KNJIGA.exe
f_delete: %DRIVE%YAMB.exe
no_sh:
folder_list: %DRIVE%



Prikači novi log.

offline
  • Pridružio: 14 Apr 2009
  • Poruke: 28

1. uradjeno
2. opet zablokira Sad
3. evo... i opet isto.....mozda radim nesto pogresno?!



mycity.rs/must-login.png

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Možeš li upload-ovati neki od file-ova koje sam naveo?

offline
  • Pridružio: 14 Apr 2009
  • Poruke: 28

ne....odmah zablokira tj....browser ne reaguje (not responding)...

offline
  • dr_Bora  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 24 Jul 2007
  • Poruke: 12280
  • Gde živiš: Höganäs, SE

Da probamo drugi pristup... Priključi flash (i ostavi ga priključenog).
Nemoj pokušavati da mu pristupaš iz Windows Explorer-a.


Preuzmi program OTMoveIt3 na Desktop.

Dvoklikom pokreni OTMoveIt3.exe

U (levi) prozor programa (ispod Paste Instructions for Items to be Moved) iskopiraj sve što se nalazi unutar Kod polja:

:files
H:\skenirano.exe
H:\Ivo Andric Znakovi pored puta_ (excerpts) [Borut's Literature Collection]_files.exe
H:\knjiga1.exe
H:\engleski.exe
H:\плакат.exe
H:\KNJIGA.exe
H:\YAMB.exe


Klikni MoveIt!

Po završetku procesa, u desnom prozoru programa (ispod Results), će se nalaziti tekst koji je potrebno iskopirati u poruku na forumu.


Ukoliko se pojavi upit:

Confirm ::The system requires a reboot to finish removing files.
Do you want to reboot now?


kliknuti Yes kako bi se kompjuter restartovao i proces bio dovršen.

Nakon ponovnog pokretanja sistema, logfile će se automatski otvoriti u Notepadu.
Potrebno je iskopirati sadržaj tog loga u poruku na forumu.

Ko je trenutno na forumu
 

Ukupno su 1060 korisnika na forumu :: 39 registrovanih, 9 sakrivenih i 1012 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 357magnum, AF-1, airsuba, amaterSRB, bojank, bojcistv, Chainsaw, comi_pfc, Dimitrise93, draganca, draganl, HogarStrashni, hooraay, ILGromovnik, Ilija Cvorovic, Karla, Kvazar, ladro, Luka Blažević, Milometer, milos.cbr, Milos82, MilosKop, mocnijogurt, nemkea71, novator, Panter, Parker, pein, procesor, sasa87, Shinobi, Sirius, Smd, Srle993, stegonosa, vathra, VP6919, |_MeD_|