GeekPolice
Welcome to GeekPolice.net!

GeekPolice is a website which provides free Computer Technical Support & Virus/Spyware Removal to our members.

You are currently viewing the forum as "Guest" which doesn't give you the same privilege as members to ask questions or post comments.

Click the Register button below to unlock the limitations of this website and start asking questions to discover new computer knowledge!

  • Usergroups
  • Search
  • Home
  • Search
  • Register
  • Log in
  • About GeekPolice
  • Tech Blog

cyber defender still in system and cant uninstall.

Post new topic   Reply to topic

GeekPolice :: Security :: Virus, Spyware & Malware Removal

Page 1 of 4 1, 2, 3, 4  Next

View previous topic View next topic Go down

cyber defender still in system and cant uninstall.

Post by HoldR4D on Sun 01 Nov 2009, 9:18 pm

Hello

i install avast AV and it did not work properly, i had to uninstall it and when i did i ran the malwarebytes to check if i had any spyware and the log showed i still had cyberdefender still install and i cant find where to uninstalll. what can i doo ?

HoldR4D

Rookie Surfer
Rookie Surfer

Posts: 50
Joined: 2009-10-03
Operating System: windows XP

View user profile

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by DragonMaster Jay on Sun 01 Nov 2009, 9:25 pm

Please download ComboFix from [You must be registered and logged in to see this link.]
(NOTE: DELETE OLD COPY, if necessary)
Rename ComboFix.exe to commy.exe before you save it to your Desktop
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools A guide to do this can be found [You must be registered and logged in to see this link.]
  • Click Start>Run then copy paste the following command into the Run box & click OK "%userprofile%\desktop\commy.exe" /stepdel
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console


Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:


  • Click on Yes, to continue scanning for malware.
  • When finished, it shall produce a log for you. Please include the contents of C:\ComboFix.txt in your next reply.

I would also like to see a list of installed programs, so please do this:
Click Start > Run then copy/paste the following single-line command into the Run box and click OK:

C:\Qoobox\Add-Remove Programs.txt

In your next reply, please include the ComboFix log and the Add-Remove Programs log.

______________________________


[You must be registered and logged in to see this link.]

[You must be registered and logged in to see this link.]

[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.]

DragonMaster Jay

Moderator | Tech Staff
Moderator | Tech Staff

Posts: 2126
Joined: 2009-09-06
Operating System: Windows 7 Ultimate 32-Bit

View user profile http://www.twitter.com/dragonmasterjay

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by HoldR4D on Mon 02 Nov 2009, 12:07 am

ComboFix 09-11-01.02 - Administrator 11/02/2009 0:53.23.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.621 [GMT -5:00]
Running from: c:\documents and settings\Administrator\My Documents\commy.exe
AV: CyberDefender Internet Security *On-access scanning enabled* (Updated) {925FF895-595E-4ED4-BB84-E12C72FBA43A}
.

((((((((((((((((((((((((( Files Created from 2009-10-02 to 2009-11-02 )))))))))))))))))))))))))))))))
.

2009-11-02 05:53 . 2005-04-25 18:28 871040 ----a-w- c:\windows\system32\drivers\iastor.sys
2009-11-02 05:53 . 2008-04-13 18:40 96512 ----a-w- c:\windows\system32\drivers\atapi.sys
2009-11-02 05:53 . 2008-04-13 18:40 96512 ----a-w- c:\windows\system32\dllcache\atapi.sys
2009-11-01 07:46 . 2009-11-01 07:46 102032 ----a-w- c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2009-11-01 07:19 . 2009-11-01 07:19 -------- d-----w- c:\program files\Microsoft IntelliPoint
2009-11-01 01:37 . 2009-11-01 07:46 -------- d-----w- c:\windows\system32\XPSViewer
2009-11-01 01:37 . 2009-11-01 01:37 -------- d-----w- c:\program files\MSBuild
2009-11-01 01:37 . 2009-11-01 01:37 -------- d-----w- c:\program files\Reference Assemblies
2009-10-30 09:46 . 2008-04-15 15:17 295424 ------w- c:\windows\system32\dllcache\termsrv.dll
2009-10-30 06:38 . 2008-07-06 12:06 89088 ------w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-10-30 06:38 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2009-10-30 06:38 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\dllcache\xpsshhdr.dll
2009-10-30 06:38 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2009-10-30 06:38 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\dllcache\xpssvcs.dll
2009-10-30 06:38 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2009-10-30 06:38 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-10-29 22:01 . 2009-10-29 22:01 -------- dc-h--w- c:\windows\ie8
2009-10-29 21:39 . 2009-11-01 22:37 -------- d--h--w- c:\windows\msdownld.tmp
2009-10-29 21:39 . 2009-10-29 21:39 -------- d-----w- c:\windows\Logs
2009-10-29 07:27 . 2009-10-29 07:27 -------- d-----w- c:\program files\Disney
2009-10-29 04:26 . 2009-10-29 04:26 -------- d-----w- c:\program files\MSXML 6.0
2009-10-29 01:24 . 2009-10-29 01:24 -------- d-----w- c:\program files\Alwil Software
2009-10-28 19:57 . 2008-04-14 00:12 50176 ----a-w- c:\windows\system32\proquota.exe
2009-10-28 19:57 . 2008-04-14 00:12 50176 ----a-w- c:\windows\system32\dllcache\proquota.exe
2009-10-28 04:02 . 2009-10-28 17:04 120 ----a-w- c:\windows\Fhaxakefuperula.dat
2009-10-28 04:02 . 2009-10-28 04:02 0 ----a-w- c:\windows\Wkilu.bin
2009-10-28 04:02 . 2009-10-28 04:02 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\{B19CBC09-1095-4378-BF07-6289F1E6AE4E}
2009-10-28 03:37 . 2009-10-28 03:37 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Navnet_Solutions
2009-10-28 03:17 . 2009-10-28 03:44 -------- d-----w- c:\program files\NavNet
2009-10-27 22:42 . 2009-09-10 18:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-10-27 22:42 . 2009-09-10 18:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-10-27 19:11 . 2009-10-27 19:11 0 ----a-r- c:\windows\win32k.sys
2009-10-22 10:39 . 2009-10-22 10:39 -------- d-----w- c:\documents and settings\Administrator\Application Data\Viewpoint
2009-10-19 17:06 . 2009-10-19 17:06 223232 ------w- c:\windows\system32\wksprt.exe
2009-10-19 17:06 . 2009-10-19 17:06 223232 ------w- c:\windows\system32\dllcache\wksprt.exe
2009-10-19 17:06 . 2009-10-19 17:06 46080 ------w- c:\windows\system32\TSWbPrxy.exe
2009-10-19 17:06 . 2009-10-19 17:06 46080 ------w- c:\windows\system32\dllcache\TSWbPrxy.exe
2009-10-19 17:06 . 2009-10-19 17:06 36864 ------w- c:\windows\system32\dllcache\tsgQec.dll
2009-10-19 17:06 . 2009-10-19 17:06 12800 ------w- c:\windows\system32\wksprtPS.dll
2009-10-19 17:06 . 2009-10-19 17:06 12800 ------w- c:\windows\system32\dllcache\wksprtPS.dll
2009-10-19 17:06 . 2009-10-19 17:06 1033728 ------w- c:\windows\system32\dllcache\mstsc.exe
2009-10-19 17:06 . 2009-10-19 17:06 44544 ------w- c:\windows\system32\MsRdpWebAccess.dll
2009-10-19 17:06 . 2009-10-19 17:06 44544 ------w- c:\windows\system32\dllcache\MsRdpWebAccess.dll
2009-10-19 17:06 . 2009-10-19 17:06 130560 ------w- c:\windows\system32\dllcache\aaclient.dll
2009-10-16 00:13 . 2009-10-16 00:13 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Help
2009-10-15 23:59 . 2009-10-15 23:59 -------- d-----w- c:\documents and settings\Administrator\Application Data\Leadertech
2009-10-15 01:05 . 2009-10-15 02:07 -------- d-----w- c:\program files\Softick
2009-10-13 23:13 . 2009-11-01 22:43 35904 ----a-w- c:\documents and settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-10-13 19:46 . 2009-10-13 19:46 -------- d--h--w- c:\documents and settings\All Users\Application Data\GTek
2009-10-13 19:45 . 2009-10-13 19:45 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\AOL
2009-10-13 19:33 . 2008-04-14 00:12 1033728 ----a-w- c:\windows\system32\dllcache\explorer.exe
2009-10-13 19:33 . 2008-04-14 00:12 1033728 ------w- c:\windows\Explorer.exe
2009-10-13 19:33 . 2004-08-10 10:00 4224 ----a-w- c:\windows\system32\dllcache\beep.sys
2009-10-13 19:33 . 2004-08-10 10:00 4224 ------w- c:\windows\system32\drivers\beep.sys
2009-10-13 02:48 . 2009-10-13 02:48 -------- d-sh--w- c:\documents and settings\Administrator\IECompatCache
2009-10-13 02:16 . 2009-10-13 02:16 -------- d-----w- c:\documents and settings\Administrator\Application Data\Malwarebytes
2009-10-12 04:47 . 2009-10-12 04:47 -------- d-----w- c:\documents and settings\Administrator\Application Data\AdobeUM
2009-10-10 05:33 . 2009-10-15 23:59 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Adobe
2009-10-10 00:53 . 2009-11-02 05:17 -------- d-----w- c:\documents and settings\Administrator\Tracing
2009-10-09 14:07 . 2009-10-09 14:07 -------- d-sh--w- c:\documents and settings\Administrator\PrivacIE
2009-10-09 14:07 . 2009-10-09 14:07 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache



(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-11-02 03:57 . 2005-07-27 23:06 384 ----a-w- c:\windows\system32\DVCStateBkp-{00000005-00000000-00000004-00001102-00000004-20061102}.dat
2009-11-02 03:57 . 2005-07-27 23:06 384 ----a-w- c:\windows\system32\DVCState-{00000005-00000000-00000004-00001102-00000004-20061102}.dat
2009-10-29 07:24 . 2004-08-19 21:20 -------- d-----w- c:\program files\RGB
2009-10-27 22:42 . 2009-09-22 15:57 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-10-19 17:06 . 2008-10-14 03:14 36864 ------w- c:\windows\system32\tsgQec.dll
2009-10-19 17:06 . 2004-08-19 21:01 1033728 ----a-w- c:\windows\system32\mstsc.exe
2009-10-19 17:06 . 2004-08-19 21:01 2689024 ----a-w- c:\windows\system32\mstscax.dll
2009-10-19 17:06 . 2008-10-14 03:10 130560 ------w- c:\windows\system32\aaclient.dll
2009-10-16 00:15 . 2005-12-13 16:56 -------- d-----w- c:\program files\DL_cats
2009-10-13 21:39 . 2005-07-27 23:12 -------- d-----w- c:\documents and settings\Administrator\Application Data\Jasc Software Inc
2009-10-03 06:54 . 2009-09-23 00:58 664 ----a-w- c:\windows\system32\d3d9caps.dat
2009-09-22 16:48 . 2009-09-22 16:48 -------- d-----w- c:\program files\MCS Studios
2009-09-22 15:57 . 2009-09-22 15:57 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-09-22 15:24 . 2009-09-22 15:21 -------- d-----w- c:\program files\Sagasoft
2009-09-22 15:01 . 2008-10-14 02:52 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-09-22 03:22 . 2009-06-22 03:22 180224 --sha-w- c:\windows\system32\wimesabi.exe
2009-09-17 04:45 . 2009-09-17 04:45 -------- d-----w- c:\program files\Microsoft
2009-09-17 04:45 . 2009-09-17 04:44 -------- d-----w- c:\program files\Windows Live
2009-09-17 04:44 . 2009-09-17 04:44 -------- d-----w- c:\program files\Windows Live SkyDrive
2009-09-17 04:42 . 2009-09-17 04:42 -------- d-----w- c:\program files\Common Files\Windows Live
2009-09-11 14:18 . 2004-08-19 20:49 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-09 10:50 . 2008-10-16 19:47 -------- d-----w- c:\program files\Microsoft Silverlight
2009-09-04 21:44 . 2009-10-29 21:41 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2009-09-04 21:44 . 2009-10-29 21:41 238936 ----a-w- c:\windows\system32\xactengine3_5.dll
2009-09-04 21:44 . 2009-10-29 21:41 69464 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2009-09-04 21:29 . 2009-10-29 21:41 235344 ----a-w- c:\windows\system32\d3dx11_42.dll
2009-09-04 21:29 . 2009-10-29 21:41 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2009-09-04 21:29 . 2009-10-29 21:41 1974616 ----a-w- c:\windows\system32\D3DCompiler_42.dll
2009-09-04 21:29 . 2009-10-29 21:41 5501792 ----a-w- c:\windows\system32\d3dcsx_42.dll
2009-09-04 21:29 . 2009-10-29 21:41 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2009-09-04 21:03 . 2004-08-19 20:49 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-08-29 08:08 . 2004-08-19 20:49 916480 ------w- c:\windows\system32\wininet.dll
2009-08-26 08:00 . 2004-08-19 20:50 247326 ----a-w- c:\windows\system32\strmdll.dll
2009-08-07 00:08 . 2009-08-07 00:09 67424 ----a-w- c:\windows\system32\drivers\CDAVFS.sys
2009-08-06 23:24 . 2004-08-19 21:04 327896 ----a-w- c:\windows\system32\wucltui.dll
2009-08-06 23:24 . 2004-08-19 21:04 209632 ----a-w- c:\windows\system32\wuweb.dll
2009-08-06 23:24 . 2005-05-26 10:16 44768 ----a-w- c:\windows\system32\wups2.dll
2009-08-06 23:24 . 2004-08-19 21:04 35552 ----a-w- c:\windows\system32\wups.dll
2009-08-06 23:24 . 2004-08-19 21:04 53472 ------w- c:\windows\system32\wuauclt.exe
2009-08-06 23:24 . 2004-08-19 20:49 96480 ----a-w- c:\windows\system32\cdm.dll
2009-08-06 23:23 . 2004-08-19 21:04 575704 ----a-w- c:\windows\system32\wuapi.dll
2009-08-06 23:23 . 2005-12-11 04:44 215920 ----a-w- c:\windows\system32\muweb.dll
2009-08-06 23:23 . 2005-12-11 04:44 274288 ----a-w- c:\windows\system32\mucltui.dll
2009-08-06 23:23 . 2004-08-19 21:04 1929952 ----a-w- c:\windows\system32\wuaueng.dll
2009-08-05 09:01 . 2004-08-19 20:49 204800 ----a-w- c:\windows\system32\mswebdvd.dll
2009-08-04 23:52 . 2009-08-04 23:52 1193832 ----a-w- c:\windows\system32\FM20.DLL
2009-08-04 15:13 . 2004-08-19 20:49 2145280 ------w- c:\windows\system32\ntoskrnl.exe
2009-08-04 14:20 . 2004-08-04 03:59 2023936 ------w- c:\windows\system32\ntkrnlpa.exe
.

HoldR4D

Rookie Surfer
Rookie Surfer

Posts: 50
Joined: 2009-10-03
Operating System: windows XP

View user profile

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by HoldR4D on Mon 02 Nov 2009, 12:09 am

((((((((((((((((((((((((((((( SnapShot_2009-10-30_23.30.12 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-07-30 01:10 . 2008-07-30 01:10 26112 c:\windows\system32\TsWpfWrp.exe
+ 2008-07-29 23:59 . 2008-07-29 23:59 43544 c:\windows\system32\PresentationHostProxy.dll
+ 2004-08-19 20:49 . 2009-11-01 22:02 69314 c:\windows\system32\perfc009.dat
+ 2008-07-25 15:17 . 2008-07-25 15:17 15360 c:\windows\system32\mui\0409\mscorees.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 83968 c:\windows\system32\mscories.dll
+ 2008-07-29 23:24 . 2008-07-29 23:24 97800 c:\windows\system32\infocardapi.dll
+ 2008-07-29 23:24 . 2008-07-29 23:24 11264 c:\windows\system32\icardres.dll
+ 2008-07-30 01:10 . 2008-07-30 01:10 73720 c:\windows\system32\dxva2.dll
+ 2009-11-01 07:19 . 2009-06-01 18:51 27792 c:\windows\system32\DRVSTORE\pnt32uw_0146674678D17813487C2D8A44DBDCDECC0A0FCB\point32.sys
+ 2009-11-01 07:19 . 2009-06-01 18:51 30088 c:\windows\system32\DRVSTORE\pnt32uk_8214D0C0E38E4E28200067D7B4626077F0F61AE9\point32k.sys
+ 2009-11-01 07:19 . 2009-06-01 18:51 27792 c:\windows\system32\DRVSTORE\pnt32pw_CB249526F3BCCC95156E697A296FA3B7D18CF5A8\point32.sys
+ 2009-11-01 07:19 . 2009-06-01 18:51 30088 c:\windows\system32\DRVSTORE\pnt32pk_9D6AF11B59064EF508FBE16C6725D410336FCCBD\point32k.sys
+ 2009-11-01 07:19 . 2009-06-01 18:51 14736 c:\windows\system32\DRVSTORE\nuidfltr_4E0E8EE59F9DAE2041109D0574E5E84EF08156B8\NuidFltr.sys
+ 2008-07-25 15:16 . 2008-07-25 15:16 96760 c:\windows\system32\dfshim.dll
- 2005-12-07 15:36 . 2009-10-12 03:00 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2005-12-07 15:36 . 2009-10-31 23:20 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2008-07-30 03:40 . 2008-07-30 03:40 70648 c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
+ 2008-07-30 03:40 . 2008-07-30 03:40 91136 c:\windows\Microsoft.NET\Framework\v3.5\MSBuild.exe
+ 2008-07-30 03:40 . 2008-07-30 03:40 41984 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft.VisualC.STLCLR.dll
+ 2008-07-30 03:40 . 2008-07-30 03:40 40960 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft.Data.Entity.Build.Tasks.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 89080 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.2052.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 92664 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1042.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 95224 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1041.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 89592 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1028.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 84480 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.2052.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 94720 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1042.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 97792 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1041.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 84992 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1028.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 97280 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\DeleteTemp.exe
+ 2008-07-30 03:40 . 2008-07-30 03:40 95224 c:\windows\Microsoft.NET\Framework\v3.5\EdmGen.exe
+ 2008-07-30 03:40 . 2008-07-30 03:40 78856 c:\windows\Microsoft.NET\Framework\v3.5\DataSvcUtil.exe
+ 2008-07-30 03:40 . 2008-07-30 03:40 41984 c:\windows\Microsoft.NET\Framework\v3.5\AddInUtil.exe
+ 2008-07-30 03:40 . 2008-07-30 03:40 41992 c:\windows\Microsoft.NET\Framework\v3.5\AddInProcess32.exe
+ 2008-07-30 03:40 . 2008-07-30 03:40 41992 c:\windows\Microsoft.NET\Framework\v3.5\AddInProcess.exe
+ 2008-07-30 01:10 . 2008-07-30 01:10 46104 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
+ 2008-07-29 23:59 . 2008-07-29 23:59 32768 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationCFFRasterizer.dll
+ 2008-07-30 01:10 . 2008-07-30 01:10 71160 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PenIMC.dll
+ 2008-07-29 23:32 . 2008-07-29 23:32 17448 c:\windows\Microsoft.NET\Framework\v3.0\Windows Workflow Foundation\PerformanceCounterInstaller.exe
+ 2008-07-29 23:16 . 2008-07-29 23:16 32768 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.WasHosting.dll
+ 2008-07-29 23:16 . 2008-07-29 23:16 73728 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.Install.dll
+ 2008-07-29 23:16 . 2008-07-29 23:16 20504 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceMonikerSupport.dll
+ 2008-07-29 23:16 . 2008-07-29 23:16 11280 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelEvents.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 37896 c:\windows\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 81400 c:\windows\Microsoft.NET\Framework\v2.0.50727\TLBREF.DLL
+ 2008-07-25 15:17 . 2008-07-25 15:17 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.RegularExpressions.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 57392 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Thunk.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.Design.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.Design.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Configuration.Install.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Configuration.Install.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 95232 c:\windows\Microsoft.NET\Framework\v2.0.50727\ShFusRes.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 16896 c:\windows\Microsoft.NET\Framework\v2.0.50727\sbscmp20_mscorlib.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 61952 c:\windows\Microsoft.NET\Framework\v2.0.50727\regtlibv12.exe
- 2005-09-23 11:28 . 2005-09-23 11:28 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
+ 2008-07-25 15:17 . 2008-07-25 15:17 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
- 2005-09-23 11:28 . 2005-09-23 11:28 53248 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
+ 2008-07-25 15:17 . 2008-07-25 15:17 53248 c:\windows\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
+ 2008-07-25 15:17 . 2008-07-25 15:17 88584 c:\windows\Microsoft.NET\Framework\v2.0.50727\PerfCounter.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 24584 c:\windows\Microsoft.NET\Framework\v2.0.50727\normalization.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 31744 c:\windows\Microsoft.NET\Framework\v2.0.50727\MUI\0409\mscorsecr.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 19456 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscortim.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
+ 2008-07-25 15:16 . 2008-07-25 15:16 18944 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsn.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 77312 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 94208 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorld.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 46592 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorie.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 83456 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbc.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe
- 2005-09-23 11:28 . 2005-09-23 11:28 69632 c:\windows\Microsoft.NET\Framework\v2.0.50727\MSBuild.exe
+ 2008-07-25 15:16 . 2008-07-25 15:16 97792 c:\windows\Microsoft.NET\Framework\v2.0.50727\MmcAspExt.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 12800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 12800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Vsa.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Vsa.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Vsa.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Utilities.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Framework.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Framework.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\jsc.exe
+ 2008-07-25 15:16 . 2008-07-25 15:16 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\jsc.exe
- 2005-09-23 11:28 . 2005-09-23 11:28 72192 c:\windows\Microsoft.NET\Framework\v2.0.50727\ISymWrapper.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 72192 c:\windows\Microsoft.NET\Framework\v2.0.50727\ISymWrapper.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 65032 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtilLib.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
- 2007-04-13 07:21 . 2007-04-13 07:21 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
+ 2008-07-25 15:17 . 2008-07-25 15:17 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEHost.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 18936 c:\windows\Microsoft.NET\Framework\v2.0.50727\fusion.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 62968 c:\windows\Microsoft.NET\Framework\v2.0.50727\dfdll.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 35320 c:\windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
+ 2008-07-25 15:17 . 2008-07-25 15:17 69120 c:\windows\Microsoft.NET\Framework\v2.0.50727\CustomMarshalers.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 27136 c:\windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 13312 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscompmgd.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 13312 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscompmgd.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 80376 c:\windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
+ 2008-07-25 15:17 . 2008-07-25 15:17 89608 c:\windows\Microsoft.NET\Framework\v2.0.50727\CORPerfMonExt.dll
+ 2008-11-25 08:59 . 2008-11-25 08:59 31560 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
+ 2008-07-25 15:16 . 2008-07-25 15:16 34312 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
+ 2008-07-25 15:16 . 2008-07-25 15:16 33288 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe
+ 2008-07-25 15:16 . 2008-07-25 15:16 24576 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regbrowsers.exe
+ 2008-07-25 15:16 . 2008-07-25 15:16 84480 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_rc.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 33800 c:\windows\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 17416 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 22024 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_filter.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe
- 2005-09-23 11:28 . 2005-09-23 11:28 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe
+ 2008-07-25 15:17 . 2008-07-25 15:17 58880 c:\windows\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
+ 2008-07-25 15:16 . 2008-07-25 15:16 98808 c:\windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 10752 c:\windows\Microsoft.NET\Framework\v2.0.50727\Accessibility.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 10752 c:\windows\Microsoft.NET\Framework\v2.0.50727\Accessibility.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 13824 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\CvtResUI.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\alinkui.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 96768 c:\windows\Microsoft.NET\Framework\v1.0.3705\mscormmc.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 16896 c:\windows\Microsoft.NET\Framework\SharedReg12.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 16896 c:\windows\Microsoft.NET\Framework\sbscmp20_perfcounter.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 16896 c:\windows\Microsoft.NET\Framework\sbscmp20_mscorwks.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 16896 c:\windows\Microsoft.NET\Framework\sbscmp10.dll
- 2007-10-24 05:47 . 2007-10-24 05:47 16896 c:\windows\Microsoft.NET\Framework\sbscmp10.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 82944 c:\windows\Microsoft.NET\Framework\NETFXSBS10.exe
+ 2008-07-30 01:07 . 2008-07-30 01:07 23040 c:\windows\Installer\2ec37e.msp
+ 2009-11-01 01:36 . 2009-11-01 01:36 88576 c:\windows\Installer\2c9dc1.msi
+ 2009-11-01 06:36 . 2009-11-01 06:36 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\b4a9e413d5cd6d6ec2d50aa05381e293\UIAutomationProvider.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 37888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Pres#\8acb476a0d4ee17a12881e17ae74a6af\System.Windows.Presentation.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 36864 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\4b87ca3482a3c0ee733e028ecee7de65\System.Web.DynamicData.Design.ni.dll
+ 2009-11-01 08:26 . 2009-11-01 08:26 94208 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ComponentMod#\a0c71055364bd356971791284c3fb910\System.ComponentModel.DataAnnotations.ni.dll
+ 2009-11-01 08:26 . 2009-11-01 08:26 82944 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn.Contra#\f9a75bbdc2ce7db578b5977766a09b99\System.AddIn.Contract.ni.dll
+ 2009-11-01 06:32 . 2009-11-01 06:32 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\3dd0f86c966c75755d62eab8ddf0634c\PresentationFontCache.ni.exe
+ 2009-11-01 06:27 . 2009-11-01 06:27 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\034d081fe294bab1ee1ecc98c1181424\PresentationCFFRasterizer.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 55296 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\f2673aec397c52796aef05bb9d2668df\Microsoft.Vsa.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 65024 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\d513fe1a81c441e7656a9b062cff4e9f\Microsoft.Build.Framework.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\c5d504724d7f351b1d034615dbb72a2a\Microsoft.Build.Framework.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\a664ccab020f93f1d533919f57131190\dfsvc.ni.exe
+ 2009-11-01 08:25 . 2009-11-01 08:25 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\e63d6d26b8a664cfdfbd4ad75e03c14d\Accessibility.ni.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 94208 c:\windows\assembly\GAC_MSIL\WindowsFormsIntegration\3.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 98304 c:\windows\assembly\GAC_MSIL\UIAutomationTypes\3.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 40960 c:\windows\assembly\GAC_MSIL\UIAutomationProvider\3.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 12288 c:\windows\assembly\GAC_MSIL\System.Windows.Presentation\3.5.0.0__b77a5c561934e089\System.Windows.Presentation.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 61440 c:\windows\assembly\GAC_MSIL\System.Web.Routing\3.5.0.0__31bf3856ad364e35\System.Web.Routing.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 32768 c:\windows\assembly\GAC_MSIL\System.Web.DynamicData.Design\3.5.0.0__31bf3856ad364e35\System.Web.DynamicData.Design.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 77824 c:\windows\assembly\GAC_MSIL\System.Web.Abstractions\3.5.0.0__31bf3856ad364e35\System.Web.Abstractions.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 32768 c:\windows\assembly\GAC_MSIL\System.ServiceModel.WasHosting\3.0.0.0__b77a5c561934e089\System.ServiceModel.WasHosting.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 73728 c:\windows\assembly\GAC_MSIL\System.ServiceModel.Install\3.0.0.0__b77a5c561934e089\System.ServiceModel.Install.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 53248 c:\windows\assembly\GAC_MSIL\System.Data.DataSetExtensions\3.5.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 57344 c:\windows\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\3.5.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 45056 c:\windows\assembly\GAC_MSIL\System.AddIn.Contract\2.0.0.0__b03f5f7f11d50a3a\System.AddIn.Contract.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 46104 c:\windows\assembly\GAC_MSIL\PresentationFontCache\3.0.0.0__31bf3856ad364e35\PresentationFontCache.exe
+ 2009-11-01 01:37 . 2009-11-01 01:37 32768 c:\windows\assembly\GAC_MSIL\PresentationCFFRasterizer\3.0.0.0__31bf3856ad364e35\PresentationCFFRasterizer.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 41984 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC.STLCLR\1.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.STLCLR.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 94208 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.v3.5.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
- 2009-10-30 13:00 . 2009-10-30 13:00 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
- 2009-10-30 07:18 . 2009-10-30 07:18 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll
+ 2008-07-30 03:40 . 2008-07-30 03:40 5632 c:\windows\Microsoft.NET\Framework\v3.5\Sentinel.v3.5Client.dll

HoldR4D

Rookie Surfer
Rookie Surfer

Posts: 50
Joined: 2009-10-03
Operating System: windows XP

View user profile

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by HoldR4D on Mon 02 Nov 2009, 12:09 am

- 2005-09-23 11:28 . 2005-09-23 11:28 7168 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft_VsaVb.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 7168 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft_VsaVb.dll
- 2005-09-23 11:29 . 2005-09-23 11:29 5632 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualC.Dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 5632 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualC.Dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 6656 c:\windows\Microsoft.NET\Framework\v2.0.50727\IIEHost.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 8192 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExecRemote.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 8192 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExecRemote.dll
- 2007-04-13 07:21 . 2007-04-13 07:21 9728 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExec.exe
+ 2008-07-25 15:17 . 2008-07-25 15:17 9728 c:\windows\Microsoft.NET\Framework\v2.0.50727\IEExec.exe
- 2007-04-13 07:20 . 2007-04-13 07:20 5120 c:\windows\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe
+ 2008-07-25 15:16 . 2008-07-25 15:16 5120 c:\windows\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe
+ 2009-11-01 01:38 . 2009-11-01 01:38 5632 c:\windows\assembly\GAC_MSIL\Sentinel.v3.5Client\3.5.0.0__b03f5f7f11d50a3a\Sentinel.v3.5Client.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
- 2009-10-30 13:00 . 2009-10-30 13:00 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
- 2009-10-30 13:00 . 2009-10-30 13:00 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 635904 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 558080 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcp80.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcm80.dll
+ 2008-07-30 01:26 . 2008-07-30 01:26 301568 c:\windows\system32\XPSViewer\XPSViewer.exe
+ 2008-07-29 23:59 . 2008-07-29 23:59 161296 c:\windows\system32\UIAutomationCore.dll
+ 2006-08-24 20:15 . 2006-08-24 20:15 150808 c:\windows\system32\rgb9rast_2.dll
+ 2008-07-29 23:59 . 2008-07-29 23:59 781344 c:\windows\system32\PresentationNative_v0300.dll
+ 2008-07-30 00:35 . 2008-07-30 00:35 326160 c:\windows\system32\PresentationHost.exe
+ 2008-07-29 23:59 . 2008-07-29 23:59 105016 c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
+ 2004-08-19 20:49 . 2009-11-01 22:02 437470 c:\windows\system32\perfh009.dat
+ 2008-07-25 15:16 . 2008-07-25 15:16 158720 c:\windows\system32\mscorier.dll
- 2007-10-24 05:47 . 2007-10-24 05:47 282112 c:\windows\system32\mscoree.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 282112 c:\windows\system32\mscoree.dll
+ 2008-07-29 23:24 . 2008-07-29 23:24 622080 c:\windows\system32\icardagt.exe
+ 2004-08-19 20:57 . 2009-11-01 21:57 164320 c:\windows\system32\FNTCACHE.DAT
+ 2008-07-30 01:10 . 2008-07-30 01:10 493048 c:\windows\system32\evr.dll
- 2009-09-22 03:17 . 2009-09-23 05:32 245760 c:\windows\system32\config\systemprofile\IETldCache\index.dat
+ 2009-09-22 03:17 . 2009-10-31 23:12 245760 c:\windows\system32\config\systemprofile\IETldCache\index.dat
+ 2008-07-30 03:40 . 2008-07-30 03:40 196104 c:\windows\Microsoft.NET\Framework\v3.5\WFServicesReg.exe
+ 2008-07-30 03:40 . 2008-07-30 03:40 802816 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft.Build.Tasks.v3.5.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 984056 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapUI.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 107512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 111096 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.3082.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 110072 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.2070.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 106488 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1055.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 105976 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1053.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 107000 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1049.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 107512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1046.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 109048 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1045.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 106488 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1044.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 108536 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1043.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 110072 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1040.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 111096 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1038.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 101368 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1037.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 112120 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1036.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 106488 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1035.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 113656 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1032.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 111608 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1031.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 108536 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1030.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 108536 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1029.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 102904 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\WapRes.1025.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 689152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vsscenario.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 413184 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vsbasereqs.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 632320 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs70uimgr.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 652800 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs_setup.msi
+ 2008-07-29 22:47 . 2008-07-29 22:47 110080 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 131584 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.3082.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 131072 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.2070.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 121344 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1055.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 121344 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1053.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 123904 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1049.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 122880 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1046.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 128512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1045.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 121856 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1044.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 129024 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1043.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 128512 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1040.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 132096 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1038.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 111104 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1037.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 133120 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1036.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 122368 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1035.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 137728 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1032.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 130048 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1031.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 126464 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1030.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 125440 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1029.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 113152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setupres.1025.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 269304 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
+ 2008-07-29 22:47 . 2008-07-29 22:47 177152 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\HtmlLite.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 276984 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\dlmgr.dll
+ 2008-07-30 03:15 . 2008-07-30 03:15 225490 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\baseline.dat
+ 2008-07-30 03:40 . 2008-07-30 03:40 233976 c:\windows\Microsoft.NET\Framework\v3.5\1033\vbc7ui.dll
+ 2008-07-30 03:40 . 2008-07-30 03:40 168448 c:\windows\Microsoft.NET\Framework\v3.5\1033\cscompui.dll
+ 2008-07-30 00:35 . 2008-07-30 00:35 864256 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationUI.dll
+ 2008-07-29 23:59 . 2008-07-29 23:59 132120 c:\windows\Microsoft.NET\Framework\v3.0\WPF\PresentationHostDLL.dll
+ 2008-07-30 01:10 . 2008-07-30 01:10 806928 c:\windows\Microsoft.NET\Framework\v3.0\WPF\NaturalLanguage6.dll
+ 2008-07-29 23:16 . 2008-07-29 23:16 152576 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\WsatConfig.exe
+ 2008-07-29 23:16 . 2008-07-29 23:16 966656 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
+ 2008-07-29 23:16 . 2008-07-29 23:16 132096 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
+ 2008-07-29 23:16 . 2008-07-29 23:16 110592 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMdiagnostics.dll
+ 2008-07-29 23:16 . 2008-07-29 23:16 156688 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelReg.exe
+ 2008-07-29 23:16 . 2008-07-29 23:16 163840 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\Microsoft.Transactions.Bridge.Dtc.dll
+ 2008-07-29 23:16 . 2008-07-29 23:16 397312 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\Microsoft.Transactions.Bridge.dll
+ 2008-07-29 23:24 . 2008-07-29 23:24 881664 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
+ 2008-07-29 23:16 . 2008-07-29 23:16 168968 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ComSvcConfig.exe
+ 2008-11-25 08:59 . 2008-11-25 08:59 436040 c:\windows\Microsoft.NET\Framework\v2.0.50727\webengine.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 839680 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Services.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 835584 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Mobile.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 835584 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.Mobile.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 261632 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Transactions.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 114688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.ServiceProcess.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 114688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.ServiceProcess.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Security.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 131072 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 131072 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 303104 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Remoting.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Messaging.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Messaging.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Management.dll
- 2007-04-13 07:21 . 2007-04-13 07:21 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Management.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 113664 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Wrapper.dll
- 2007-04-13 07:21 . 2007-04-13 07:21 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 258048 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 626688 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll
- 2007-04-13 07:21 . 2007-04-13 07:21 188416 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.Protocols.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 188416 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.Protocols.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 401408 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 970752 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Deployment.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 745472 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.SqlXml.dll
+ 2008-11-25 08:59 . 2008-11-25 08:59 486400 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.OracleClient.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 425984 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.configuration.dll
- 2007-04-13 07:21 . 2007-04-13 07:21 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\sysglobl.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\sysglobl.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 392184 c:\windows\Microsoft.NET\Framework\v2.0.50727\SOS.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 118784 c:\windows\Microsoft.NET\Framework\v2.0.50727\shfusion.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 143360 c:\windows\Microsoft.NET\Framework\v2.0.50727\peverify.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 100856 c:\windows\Microsoft.NET\Framework\v2.0.50727\ngen.exe
+ 2008-07-25 15:17 . 2008-07-25 15:17 230912 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvc.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 345600 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorrc.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 114176 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
+ 2008-11-25 08:59 . 2008-11-25 08:59 364872 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 308224 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordbi.dll
+ 2009-08-08 04:51 . 2009-08-08 04:51 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 659456 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.dll
- 2005-09-23 11:29 . 2005-09-23 11:29 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 372736 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.dll
- 2005-09-23 11:29 . 2005-09-23 11:29 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 749568 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.JScript.dll
- 2007-04-13 07:21 . 2007-04-13 07:21 749568 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.JScript.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 655360 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Tasks.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 348160 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Engine.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 230904 c:\windows\Microsoft.NET\Framework\v2.0.50727\ilasm.exe
+ 2008-07-25 15:17 . 2008-07-25 15:17 798224 c:\windows\Microsoft.NET\Framework\v2.0.50727\EventLogMessages.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 575496 c:\windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
+ 2008-07-25 15:17 . 2008-07-25 15:17 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\CasPol.exe
+ 2008-07-25 15:16 . 2008-07-25 15:16 507904 c:\windows\Microsoft.NET\Framework\v2.0.50727\AspNetMMCExt.dll
- 2007-04-13 07:20 . 2007-04-13 07:20 507904 c:\windows\Microsoft.NET\Framework\v2.0.50727\AspNetMMCExt.dll
- 2005-09-23 11:28 . 2005-09-23 11:28 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regsql.exe
+ 2008-07-25 15:16 . 2008-07-25 15:16 106496 c:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_regsql.exe
+ 2008-07-25 15:17 . 2008-07-25 15:17 147968 c:\windows\Microsoft.NET\Framework\v2.0.50727\AdoNetDiag.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 218112 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\Vsavb7rtUI.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 193016 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\vbc7ui.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 145408 c:\windows\Microsoft.NET\Framework\v2.0.50727\1033\cscompui.dll
+ 2008-12-13 13:58 . 2008-12-13 13:58 754688 c:\windows\Installer\2f7b20.msp
+ 2009-11-01 01:38 . 2009-11-01 01:38 648192 c:\windows\Installer\2f7afd.msi
+ 2008-07-30 01:23 . 2008-07-30 01:23 250880 c:\windows\Installer\2ec387.msp
+ 2008-07-30 01:28 . 2008-07-30 01:28 278016 c:\windows\Installer\2ec385.msp
+ 2008-07-29 23:40 . 2008-07-29 23:40 291840 c:\windows\Installer\2ec383.msp
+ 2009-11-01 01:37 . 2009-11-01 01:37 137728 c:\windows\Installer\2ec37d.msi
+ 2009-03-20 16:48 . 2009-03-20 16:48 183808 c:\windows\Installer\2e2080.msp
+ 2008-07-29 21:35 . 2008-07-29 21:35 553472 c:\windows\Installer\2c9dc6.msp
+ 2008-07-29 21:33 . 2008-07-29 21:33 506368 c:\windows\Installer\2c9dc4.msp
+ 2008-07-29 21:37 . 2008-07-29 21:37 911360 c:\windows\Installer\2c9dc3.msp
+ 2009-11-01 07:18 . 2009-11-01 07:18 301056 c:\windows\Installer\19af2e.msi
+ 2009-11-01 08:25 . 2009-11-01 08:25 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\e2098e43d115155d6ba91ba3a7e577cf\WsatConfig.ni.exe
+ 2009-11-01 06:36 . 2009-11-01 06:36 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\bf92bc207f927cbbd6dfc9dc0c3eae68\WindowsFormsIntegration.ni.dll
+ 2009-11-01 06:36 . 2009-11-01 06:36 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\6f488b7644dc50a083868e91a4014466\UIAutomationTypes.ni.dll
+ 2009-11-01 06:36 . 2009-11-01 06:36 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\c2fbf25609b704061a93500efa6f241d\UIAutomationClient.ni.dll
+ 2009-11-02 01:07 . 2009-11-02 01:07 400896 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml.Linq\eb23b78564687badff1bd1f1d0a0ec97\System.Xml.Linq.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 129536 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Routing\e7666364bf9f3ba5f4833c9efedd8218\System.Web.Routing.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 202240 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.RegularE#\b5f1b8791e6c47e5bd5e7018c346c586\System.Web.RegularExpressions.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 859648 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\884eacddf339b8b342f66aedff5f8ef9\System.Web.Extensions.Design.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 328704 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity\9e199645bd26f1afe58ebe185d1e7f0f\System.Web.Entity.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 301056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Entity.D#\652017ebe962ab2eb271c2524f31cd61\System.Web.Entity.Design.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 547328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.DynamicD#\d0070c1c1a642ae30394e00bc0d82336\System.Web.DynamicData.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Abstract#\1896753d02d146be1988d32241300f51\System.Web.Abstractions.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 627200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Transactions\408e637346ef628a3f54fb1b9b83ac9f\System.Transactions.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\1f61bccb700d687775cf778dd77752e9\System.ServiceProcess.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 676352 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Security\a9e9b885a6601469c4058375cc74d856\System.Security.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 311296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\9bc34a79af9c3ed2cf17a0226c769b4c\System.Runtime.Serialization.Formatters.Soap.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 621056 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Net\5f74a84e9d28c2332c51f6e30da0e125\System.Net.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 998400 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management\2c208e4c5521f31057ea7d6e93c6a567\System.Management.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 330752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Management.I#\818b20a7c6f3b2fe97bf008ca24080c1\System.Management.Instrumentation.ni.dll
+ 2009-11-01 08:24 . 2009-11-01 08:24 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\6c273eb9d1ee8b66b5ecb073de4b785d\System.IO.Log.ni.dll
+ 2009-11-01 08:24 . 2009-11-01 08:24 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\7222db518afb4eaaa138824278249bc7\System.IdentityModel.Selectors.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 280064 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\8a7d0bd0057a8ed38291d5662248f7a1\System.EnterpriseServices.Wrapper.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 627712 c:\windows\assembly\NativeImages_v2.0.50727_32\System.EnterpriseSe#\8a7d0bd0057a8ed38291d5662248f7a1\System.EnterpriseServices.ni.dll
+ 2009-11-01 06:35 . 2009-11-01 06:35 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\ca6d7208c0fb72ff97429f2636ced321\System.Drawing.Design.ni.dll
+ 2009-11-02 01:05 . 2009-11-02 01:05 881152 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\c92fc19800e701c90f90ab7a2ab44c47\System.DirectoryServices.AccountManagement.ni.dll
+ 2009-11-02 01:05 . 2009-11-02 01:05 455680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\a601f47a98ee67df424685c9a66ea449\System.DirectoryServices.Protocols.ni.dll
+ 2009-11-02 01:05 . 2009-11-02 01:05 939008 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\b91b44015859163646f210d284f7166a\System.Data.Services.Client.ni.dll
+ 2009-11-02 01:05 . 2009-11-02 01:05 354816 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Service#\1b35297e07b85071daecdb06f96750a1\System.Data.Services.Design.ni.dll
+ 2009-11-02 01:05 . 2009-11-02 01:05 756736 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity.#\cf906bf9146d1f0013451ec63b58e064\System.Data.Entity.Design.ni.dll
+ 2009-11-01 08:26 . 2009-11-01 08:26 135680 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.DataSet#\4ff4134b0d490c090e03d74e104517c4\System.Data.DataSetExtensions.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 971264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\7c743462baccf29b3567b0e3ec9ac134\System.Configuration.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 141312 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\443e3a85c491b2de4a2ac654cb957484\System.Configuration.Install.ni.dll
+ 2009-11-01 08:26 . 2009-11-01 08:26 633856 c:\windows\assembly\NativeImages_v2.0.50727_32\System.AddIn\cba35f47925431a54d0e6ae147a292f1\System.AddIn.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\6af32fe5cbec0aa54e2efa6910c73651\SMSvcHost.ni.exe
+ 2009-11-01 08:25 . 2009-11-01 08:25 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\7602d7687fb9bd21cd9ae60d2b187c99\SMDiagnostics.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\a23dc25782df04533a13e348203e4dc5\ServiceModelReg.ni.exe
+ 2009-11-01 06:34 . 2009-11-01 06:34 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\96f74da5fc40b92f09069230bc0df4f0\PresentationFramework.Royale.ni.dll
+ 2009-11-01 06:34 . 2009-11-01 06:34 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\3bb4d16b042b72c2c85a0f8ac9d48f28\PresentationFramework.Luna.ni.dll
+ 2009-11-01 06:34 . 2009-11-01 06:34 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\30c5c2682d3c5bdaa83bb9a36ee48afa\PresentationFramework.Aero.ni.dll
+ 2009-11-01 06:34 . 2009-11-01 06:34 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\07e952efd70f5608e221a008e6231ace\PresentationFramework.Classic.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\eade8c1c9c1e8e5ffb50e6c9b9af0f6a\MSBuild.ni.exe
+ 2009-11-01 08:25 . 2009-11-01 08:25 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\fc4d66e0a92b3767006a84f2519d2457\Microsoft.Transactions.Bridge.Dtc.ni.dll
+ 2009-11-01 08:26 . 2009-11-01 08:26 144384 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\58ca3ecc52b7246b448c109817198a0b\Microsoft.Build.Utilities.ni.dll
+ 2009-11-01 08:26 . 2009-11-01 08:26 175104 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\4dd43724dd92026577c6f588270137a0\Microsoft.Build.Utilities.v3.5.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 839680 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\8c651f75bb741330370986dcad8e9e5b\Microsoft.Build.Engine.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 222720 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Con#\a6dcbae619ccd938bfe808c54d6d3ae0\Microsoft.Build.Conversion.v3.5.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 220672 c:\windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\77688ce14f221ed94a9f442ae4736123\CustomMarshalers.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\a17c65f0cffaa4f792dd38d50df9d526\ComSvcConfig.ni.exe
+ 2009-11-01 08:25 . 2009-11-01 08:25 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\85d7c111956b478766d90625b35d963f\AspNetMMCExt.ni.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 385024 c:\windows\assembly\GAC_MSIL\UIAutomationClientsideProviders\3.0.0.0__31bf3856ad364e35\UIAutomationClientsideProviders.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 167936 c:\windows\assembly\GAC_MSIL\UIAutomationClient\3.0.0.0__31bf3856ad364e35\UIAutomationClient.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 139264 c:\windows\assembly\GAC_MSIL\System.Xml.Linq\3.5.0.0__b77a5c561934e089\System.Xml.Linq.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 507904 c:\windows\assembly\GAC_MSIL\System.WorkflowServices\3.5.0.0__31bf3856ad364e35\System.WorkflowServices.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 540672 c:\windows\assembly\GAC_MSIL\System.Workflow.Runtime\3.0.0.0__31bf3856ad364e35\System.Workflow.Runtime.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
- 2009-10-30 13:00 . 2009-10-30 13:00 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 335872 c:\windows\assembly\GAC_MSIL\System.Web.Extensions.Design\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.Design.dll
+ 2009-11-01 01:41 . 2009-11-01 01:41 139264 c:\windows\assembly\GAC_MSIL\System.Web.Entity\3.5.0.0__b77a5c561934e089\System.Web.Entity.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 131072 c:\windows\assembly\GAC_MSIL\System.Web.Entity.Design\3.5.0.0__b77a5c561934e089\System.Web.Entity.Design.dll
+ 2009-11-01 01:41 . 2009-11-01 01:41 229376 c:\windows\assembly\GAC_MSIL\System.Web.DynamicData\3.5.0.0__31bf3856ad364e35\System.Web.DynamicData.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 688128 c:\windows\assembly\GAC_MSIL\System.Speech\3.0.0.0__31bf3856ad364e35\System.Speech.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 569344 c:\windows\assembly\GAC_MSIL\System.ServiceModel.Web\3.5.0.0__31bf3856ad364e35\System.ServiceModel.Web.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 966656 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
- 2009-10-30 13:00 . 2009-10-30 13:00 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 233472 c:\windows\assembly\GAC_MSIL\System.Net\3.5.0.0__b03f5f7f11d50a3a\System.Net.dll
- 2009-10-30 13:00 . 2009-10-30 13:00 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
- 2009-10-30 13:00 . 2009-10-30 13:00 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 143360 c:\windows\assembly\GAC_MSIL\System.Management.Instrumentation\3.5.0.0__b77a5c561934e089\System.Management.Instrumentation.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 131072 c:\windows\assembly\GAC_MSIL\System.IO.Log\3.0.0.0__b03f5f7f11d50a3a\System.IO.Log.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 430080 c:\windows\assembly\GAC_MSIL\System.IdentityModel\3.0.0.0__b77a5c561934e089\System.IdentityModel.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 126976 c:\windows\assembly\GAC_MSIL\System.IdentityModel.Selectors\3.0.0.0__b77a5c561934e089\System.IdentityModel.Selectors.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 286720 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\3.5.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
+ 2009-11-01 01:41 . 2009-11-01 01:41 442368 c:\windows\assembly\GAC_MSIL\System.Data.Services\3.5.0.0__b77a5c561934e089\System.Data.Services.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 114688 c:\windows\assembly\GAC_MSIL\System.Data.Services.Design\3.5.0.0__b77a5c561934e089\System.Data.Services.Design.dll
+ 2009-11-01 01:41 . 2009-11-01 01:41 294912 c:\windows\assembly\GAC_MSIL\System.Data.Services.Client\3.5.0.0__b77a5c561934e089\System.Data.Services.Client.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 684032 c:\windows\assembly\GAC_MSIL\System.Data.Linq\3.5.0.0__b77a5c561934e089\System.Data.Linq.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 229376 c:\windows\assembly\GAC_MSIL\System.Data.Entity.Design\3.5.0.0__b77a5c561934e089\System.Data.Entity.Design.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 667648 c:\windows\assembly\GAC_MSIL\System.Core\3.5.0.0__b77a5c561934e089\System.Core.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 163840 c:\windows\assembly\GAC_MSIL\System.AddIn\3.5.0.0__b77a5c561934e089\System.AddIn.dll
- 2009-10-30 13:00 . 2009-10-30 13:00 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 110592 c:\windows\assembly\GAC_MSIL\SMDiagnostics\3.0.0.0__b77a5c561934e089\SMdiagnostics.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 528384 c:\windows\assembly\GAC_MSIL\ReachFramework\3.0.0.0__31bf3856ad364e35\ReachFramework.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 864256 c:\windows\assembly\GAC_MSIL\PresentationUI\3.0.0.0__31bf3856ad364e35\PresentationUI.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 163840 c:\windows\assembly\GAC_MSIL\PresentationFramework.Royale\3.0.0.0__31bf3856ad364e35\PresentationFramework.Royale.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 397312 c:\windows\assembly\GAC_MSIL\PresentationFramework.Luna\3.0.0.0__31bf3856ad364e35\PresentationFramework.Luna.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 139264 c:\windows\assembly\GAC_MSIL\PresentationFramework.Classic\3.0.0.0__31bf3856ad364e35\PresentationFramework.Classic.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 196608 c:\windows\assembly\GAC_MSIL\PresentationFramework.Aero\3.0.0.0__31bf3856ad364e35\PresentationFramework.Aero.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 598016 c:\windows\assembly\GAC_MSIL\PresentationBuildTasks\3.0.0.0__31bf3856ad364e35\PresentationBuildTasks.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
- 2009-10-30 13:00 . 2009-10-30 13:00 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
- 2009-10-30 13:00 . 2009-10-30 13:00 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 397312 c:\windows\assembly\GAC_MSIL\Microsoft.Transactions.Bridge\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 802816 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.v3.5.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 733184 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 106496 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Conversion.v3.5\3.5.0.0__b03f5f7f11d50a3a\Microsoft.Build.Conversion.v3.5.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 368640 c:\windows\assembly\GAC_32\System.Printing\3.0.0.0__31bf3856ad364e35\System.Printing.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
- 2009-10-30 12:59 . 2009-10-30 12:59 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 163840 c:\windows\assembly\GAC_32\Microsoft.Transactions.Bridge.Dtc\3.0.0.0__b03f5f7f11d50a3a\Microsoft.Transactions.Bridge.Dtc.dll
+ 2009-11-01 07:19 . 2009-06-01 18:51 1418120 c:\windows\system32\DRVSTORE\nuidfltr_4E0E8EE59F9DAE2041109D0574E5E84EF08156B8\wdfcoinstaller01005.dll
+ 2008-07-30 03:40 . 2008-07-30 03:40 1720824 c:\windows\Microsoft.NET\Framework\v3.5\vbc.exe
+ 2008-07-29 22:47 . 2008-07-29 22:47 1054208 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\vs_setup.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 1364992 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\SITSetup.dll
+ 2008-07-29 22:47 . 2008-07-29 22:47 1064448 c:\windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\gencomp.dll
+ 2008-07-30 03:40 . 2008-07-30 03:40 1548280 c:\windows\Microsoft.NET\Framework\v3.5\csc.exe
+ 2008-12-05 23:35 . 2008-12-05 23:35 1736528 c:\windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
+ 2008-07-30 01:10 . 2008-07-30 01:10 2637840 c:\windows\Microsoft.NET\Framework\v3.0\WPF\NlsLexicons0009.dll
+ 2008-07-30 01:10 . 2008-07-30 01:10 4883464 c:\windows\Microsoft.NET\Framework\v3.0\WPF\NlsData0009.dll
+ 2008-12-06 00:12 . 2008-12-06 00:12 5931008 c:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.ServiceModel.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 1344000 c:\windows\Microsoft.NET\Framework\v2.0.50727\VsaVb7rt.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 1172472 c:\windows\Microsoft.NET\Framework\v2.0.50727\vbc.exe
+ 2008-11-25 08:59 . 2008-11-25 08:59 2048000 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.XML.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 5025792 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
+ 2008-11-25 08:59 . 2008-11-25 08:59 5242880 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 3149824 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 5062656 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Design.dll
+ 2008-07-25 15:17 . 2008-07-25 15:17 2933248 c:\windows\Microsoft.NET\Framework\v2.0.50727\System.Data.dll
+ 2009-08-08 04:51 . 2009-08-08 04:51 5812560 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
+ 2009-08-08 04:51 . 2009-08-08 04:51 4546560 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
+ 2008-07-25 15:16 . 2008-07-25 15:16 1163768 c:\windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
+ 2008-12-13 13:57 . 2008-12-13 13:57 8397824 c:\windows\Installer\2f7b0b.msp
+ 2008-07-29 23:26 . 2008-07-29 23:26 1043456 c:\windows\Installer\2ec386.msp
+ 2008-07-30 00:37 . 2008-07-30 00:37 2679808 c:\windows\Installer\2ec384.msp
+ 2008-07-30 01:15 . 2008-07-30 01:15 3697664 c:\windows\Installer\2ec382.msp
+ 2008-07-29 23:34 . 2008-07-29 23:34 1448448 c:\windows\Installer\2ec381.msp
+ 2008-07-30 00:22 . 2008-07-30 00:22 4137984 c:\windows\Installer\2ec380.msp
+ 2008-07-29 23:18 . 2008-07-29 23:18 3376640 c:\windows\Installer\2ec37f.msp
+ 2008-07-29 21:45 . 2008-07-29 21:45 2543616 c:\windows\Installer\2c9dca.msp
+ 2008-07-29 21:29 . 2008-07-29 21:29 2926080 c:\windows\Installer\2c9dc9.msp
+ 2008-07-29 21:41 . 2008-07-29 21:41 6487040 c:\windows\Installer\2c9dc8.msp
+ 2008-07-29 21:39 . 2008-07-29 21:39 3403264 c:\windows\Installer\2c9dc7.msp
+ 2008-07-29 21:43 . 2008-07-29 21:43 1013248 c:\windows\Installer\2c9dc5.msp
+ 2008-07-29 21:31 . 2008-07-29 21:31 6083072 c:\windows\Installer\2c9dc2.msp
+ 2009-11-01 07:19 . 2009-11-01 07:19 1326080 c:\windows\Installer\19af33.msi
+ 2009-11-01 06:31 . 2009-11-01 06:31 3313664 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\204d6e5b335134f23ca37638b9227ecf\WindowsBase.ni.dll
+ 2009-11-01 06:36 . 2009-11-01 06:36 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\0f2ed6a204eb13841e99b77025464afc\UIAutomationClientsideProviders.ni.dll
+ 2009-11-01 06:27 . 2009-11-01 06:27 7868416 c:\windows\assembly\NativeImages_v2.0.50727_32\System\3de5bd01124463d7862bd173af90bc83\System.ni.dll
+ 2009-11-01 06:36 . 2009-11-01 06:36 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5913d3f81e77194ec833991b1047a532\System.Xml.ni.dll
+ 2009-11-02 01:07 . 2009-11-02 01:07 1356288 c:\windows\assembly\NativeImages_v2.0.50727_32\System.WorkflowServ#\fa48917b13629d8effa80dd4a2f2973d\System.WorkflowServices.ni.dll
+ 2009-11-02 01:07 . 2009-11-02 01:07 1908224 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Run#\6fe66ee6f3c81996bc148f1ebe7ec030\System.Workflow.Runtime.ni.dll
+ 2009-11-02 01:07 . 2009-11-02 01:07 4514304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Com#\9d0b61f2f1ebdc300bd970f594c422ef\System.Workflow.ComponentModel.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 2992640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Workflow.Act#\65328898148a720d394f802f192fc2a0\System.Workflow.Activities.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 1840640 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\ea07ac791bb5cb9f83679e3dd1a0c0cc\System.Web.Services.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 2209280 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Mobile\29e2f8b1fb691ced973acf49fcee6ec1\System.Web.Mobile.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 2403328 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web.Extensio#\981dea02bc63c0c083e335adf9018788\System.Web.Extensions.ni.dll
+ 2009-11-01 06:35 . 2009-11-01 06:35 1917440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\99594bae1d022502925f5b9dfcdaae9a\System.Speech.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 1706496 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel#\e182695d05ea57257568bc5f3208aca7\System.ServiceModel.Web.ni.dll
+ 2009-11-01 08:24 . 2009-11-01 08:24 2338304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\67ad55827f2542552b576170f0a7dc56\System.Runtime.Serialization.ni.dll
+ 2009-11-01 06:35 . 2009-11-01 06:35 1035264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\e5313735a40c0800f116e27fba4754db\System.Printing.ni.dll
+ 2009-11-01 08:24 . 2009-11-01 08:24 1056768 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\c3b18fef5c6dc3bcdbe5df699fd21a55\System.IdentityModel.ni.dll
+ 2009-11-01 06:35 . 2009-11-01 06:35 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\abb2ac7e08bee026f857d8fa36f9fe6f\System.Drawing.ni.dll
+ 2009-11-02 01:05 . 2009-11-02 01:05 1116672 c:\windows\assembly\NativeImages_v2.0.50727_32\System.DirectorySer#\f47ebb9db460874b1bcbfc391dc970b1\System.DirectoryServices.ni.dll
+ 2009-11-02 01:05 . 2009-11-02 01:05 1801216 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Deployment\c94a427baa7683f4221b91f90c18461b\System.Deployment.ni.dll
+ 2009-11-01 06:34 . 2009-11-01 06:34 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\694c07365e0fd6bba0bc304d4d2404a7\System.Data.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 2510336 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\272152f0cc139490729e215611a4b244\System.Data.SqlXml.ni.dll
+ 2009-11-02 01:05 . 2009-11-02 01:05 1328128 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Services\112a48e34620a0210eb850040da8a31b\System.Data.Services.ni.dll
+ 2009-11-01 06:34 . 2009-11-01 06:34 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\32788c58ff9f8324460604cf1fe7681b\System.Data.Linq.ni.dll
+ 2009-11-02 01:05 . 2009-11-02 01:05 9924096 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Entity\9012cac7819660f61f1c69cf8e4f2ccf\System.Data.Entity.ni.dll
+ 2009-11-01 06:34 . 2009-11-01 06:34 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\c0a42d2ad8a4078040b334f6770ea11f\System.Core.ni.dll
+ 2009-11-01 06:34 . 2009-11-01 06:34 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\954685c29689d2a6126ceca1fd55e904\ReachFramework.ni.dll
+ 2009-11-01 06:34 . 2009-11-01 06:34 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\a3a6f52ce1d09a7bdccc8e7fc664792d\PresentationUI.ni.dll
+ 2009-11-01 06:27 . 2009-11-01 06:27 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\f906701365083c1473db31519147e263\PresentationBuildTasks.ni.dll
+ 2009-11-01 08:26 . 2009-11-01 08:26 1712128 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\6eee9b772b6d12d3dbd82f118c2ab2e5\Microsoft.VisualBasic.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\f19e9b439636d0744597fff1331cad04\Microsoft.Transactions.Bridge.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 2332160 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\5b1af7b5be24c7ace065fe1c81c2b650\Microsoft.JScript.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 1620992 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\9eec1cc7ac37e0c7f3205e8156149c5a\Microsoft.Build.Tasks.ni.dll
+ 2009-11-01 08:26 . 2009-11-01 08:26 1966080 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\28c0730288453d57d5dcd62903c4d31b\Microsoft.Build.Tasks.v3.5.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\5dd4f58999eed37c12aee7ea9f9863ac\Microsoft.Build.Engine.ni.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 1245184 c:\windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 3149824 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 1630208 c:\windows\assembly\GAC_MSIL\System.Workflow.ComponentModel\3.0.0.0__31bf3856ad364e35\System.Workflow.ComponentModel.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 1138688 c:\windows\assembly\GAC_MSIL\System.Workflow.Activities\3.0.0.0__31bf3856ad364e35\System.Workflow.Activities.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
+ 2009-11-01 01:41 . 2009-11-01 01:41 1277952 c:\windows\assembly\GAC_MSIL\System.Web.Extensions\3.5.0.0__31bf3856ad364e35\System.Web.Extensions.dll
+ 2009-11-01 01:40 . 2009-11-01 01:40 5931008 c:\windows\assembly\GAC_MSIL\System.ServiceModel\3.0.0.0__b77a5c561934e089\System.ServiceModel.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
+ 2009-11-01 01:38 . 2009-11-01 01:38 2879488 c:\windows\assembly\GAC_MSIL\System.Data.Entity\3.5.0.0__b77a5c561934e089\System.Data.Entity.dll
+ 2009-11-01 01:40 . 2009-11-01 01:40 5283840 c:\windows\assembly\GAC_MSIL\PresentationFramework\3.0.0.0__31bf3856ad364e35\PresentationFramework.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
+ 2009-11-01 01:37 . 2009-11-01 01:37 4210688 c:\windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
+ 2009-11-01 07:44 . 2009-11-01 07:44 4546560 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
+ 2008-12-13 14:21 . 2008-12-13 14:21 10473472 c:\windows\Installer\2f7b15.msp
+ 2009-08-15 01:32 . 2009-08-15 01:32 11110912 c:\windows\Installer\2e2089.msp
+ 2009-11-01 06:35 . 2009-11-01 06:36 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d2ea8d76f015817db1607075812b555f\System.Windows.Forms.ni.dll
+ 2009-11-02 01:06 . 2009-11-02 01:06 11796992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\5cea03cfb008f2eac1439a9905467f37\System.Web.ni.dll
+ 2009-11-01 08:25 . 2009-11-01 08:25 17317888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\06d6eab93282d2b136a377bd50b7c5a9\System.ServiceModel.ni.dll
+ 2009-11-01 06:35 . 2009-11-01 06:35 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\8b82e08c008924d51833cb0884bcbfc5\System.Design.ni.dll
+ 2009-11-01 06:33 . 2009-11-01 06:33 14327808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\58c7ac6b6054038dc9346d7ec8e32b4c\PresentationFramework.ni.dll
+ 2009-11-01 06:32 . 2009-11-01 06:32 12216320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\94badbd64df59de7da249f71da38b1c2\PresentationCore.ni.dll
+ 2009-11-01 06:26 . 2009-11-01 06:26 11486720 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7124a40b9998f7b63c86bd1a2125ce26\mscorlib.ni.dll
.
-- Snapshot reset to current date --

HoldR4D

Rookie Surfer
Rookie Surfer

Posts: 50
Joined: 2009-10-03
Operating System: windows XP

View user profile

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by HoldR4D on Mon 02 Nov 2009, 12:10 am

.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DellSupport"="c:\program files\Dell Support\DSAgnt.exe" [2005-05-15 332800]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"WAB"="c:\documents and settings\Administrator\Application Data\Macromedia\Common\102d407419.exe" [2009-11-02 16384]
"rundll32.exe"="" [BU]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2004-08-10 59392]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2005-04-25 139264]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-04-15 344064]
"CTDVDDET"="c:\program files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDET.EXE" [2003-06-18 45056]
"DLBXCATS"="c:\windows\System32\spool\DRIVERS\W32X86\3\DLBXtime.dll" [2004-12-07 69632]
"dlbxmon.exe"="c:\program files\Dell Photo AIO Printer 962\dlbxmon.exe" [2005-01-18 425984]
"HostManager"="c:\program files\Common Files\AOL\1134621263\ee\AOLSoftware.exe" [2007-10-08 41824]
"LogitechCommunicationsManager"="c:\program files\Common Files\Logitech\LComMgr\Communications_Helper.exe" [2006-10-31 284184]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2007-12-11 286720]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-09 63712]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 221184]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2009-06-01 1468296]
"SigmatelSysTrayApp"="stsystra.exe" - c:\windows\stsystra.exe [2005-03-23 339968]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2005-7-27 24576]
QuickBooks Update Agent.lnk - c:\program files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe [2004-11-11 806912]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSetActiveDesktop"= 1 (0x1)
"NoActiveDesktopChanges"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\reset5c]
reset5c.dll [BU]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"wave1"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"midi1"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"mixer1"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"wave2"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"midi2"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"mixer2"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"aux1"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"aux2"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"DisableNotifications"= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"=
"c:\\Program Files\\America Online 9.0\\waol.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Common Files\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"=
"c:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"c:\\Program Files\\Common Files\\AOL\\1134621263\\ee\\aolsoftware.exe"=
"c:\\Program Files\\Common Files\\AOL\\1134621263\\ee\\aim6.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
"c:\\Program Files\\Common Files\\AOL\\System Information\\sinf.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\WINDOWS\\system32\\taskmgr.exe"=
"%windir%\\system32\\lsass.exe"=
"c:\\Program Files\\Disney\\Disney Online\\PiratesOnline\\Launcher1.exe"=
"c:\\Program Files\\Disney\\Disney Online\\PiratesOnline\\Pirates.exe"=
"c:\\Program Files\\Disney\\Disney Online\\PiratesOnline\\Pirates_Online.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009

S3 aswArKrn;aswArKrn;\??\c:\docume~1\ADMINI~1\LOCALS~1\Temp\aswArKrn.sys --> c:\docume~1\ADMINI~1\LOCALS~1\Temp\aswArKrn.sys [?]
S3 CDAVFS;CDAVFS;c:\windows\system32\drivers\CDAVFS.sys [8/6/2009 7:09 PM 67424]

--- Other Services/Drivers In Memory ---

*NewlyCreated* - PROCEXP113
*Deregistered* - mbr
*Deregistered* - PROCEXP113
.
Contents of the 'Scheduled Tasks' folder

2009-10-28 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 19:57]
.
.
------- Supplementary Scan -------
.
uStart Page = [You must be registered and logged in to see this link.]
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [You must be registered and logged in to see this link.]
Rootkit scan 2009-11-02 01:01
Windows 5.1.2600 Service Pack 3 NTFS

scanning hȋdden processes ...

scanning hȋdden autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
DLBXCATS = rundll32 c:\windows\System32\spool\DRIVERS\W32X86\3\DLBXtime.dll,_RunDLLEntry@16???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????

scanning hȋdden files ...

scan completed successfully
hȋdden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,44,5c,8d,03,37,4c,d2,4d,aa,20,0e,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,44,5c,8d,03,37,4c,d2,4d,aa,20,0e,\

[HKEY_USERS\S-1-5-21-3835334267-1934715317-2934981272-500\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (Administrator)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,a9,9c,5d,7b,36,8f,3b,41,b2,20,90,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,a9,9c,5d,7b,36,8f,3b,41,b2,20,90,\

[HKEY_USERS\S-1-5-21-3835334267-1934715317-2934981272-500\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{8C1A580A-4BAD-8BC4-F5E5-BF4C87F6657D}*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"pamofejndooopfiopnnejpgkhebaepfa"=hex:6b,61,68,6c,6a,6e,64,6c,66,6f,70,63,65,
6b,69,63,63,66,66,65,6b,69,00,00
"oacpjgecpodccglbknncijmgeniaed"=hex:6b,61,68,6c,6a,6e,64,6c,66,6f,70,63,65,6b,
69,63,63,66,66,65,6b,69,00,00
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(796)
c:\windows\system32\wininet.dll

- - - - - - - > 'explorer.exe'(2228)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
.
Completion time: 2009-11-02 1:03
ComboFix-quarantined-files.txt 2009-11-02 06:03
ComboFix2.txt 2009-11-01 00:02
ComboFix3.txt 2009-10-30 23:32
ComboFix4.txt 2009-10-29 22:33
ComboFix5.txt 2009-11-02 05:24

Pre-Run: 213,144,395,776 bytes free
Post-Run: 213,378,621,440 bytes free

- - End Of File - - 265AA4E967E9F89C31F00AF6E99EC582

HoldR4D

Rookie Surfer
Rookie Surfer

Posts: 50
Joined: 2009-10-03
Operating System: windows XP

View user profile

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by HoldR4D on Mon 02 Nov 2009, 12:11 am

this is the combofix sorry but i had to brake it down by sections and here is the add and remove section.

HoldR4D

Rookie Surfer
Rookie Surfer

Posts: 50
Joined: 2009-10-03
Operating System: windows XP

View user profile

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by HoldR4D on Mon 02 Nov 2009, 12:12 am

ABBYY FineReader 6.0 Sprint Plus
Adobe Flash Player 10 ActiveX
Adobe Reader 7.1.0
Adobe® Photoshop® Album Starter Edition 3.2
AOL Uninstaller (Choose which Products to Remove)
AOLIcon
Apple Software Update
ATI Control Panel
ATI Display Driver
CleanMyPC - Registry Cleaner
Conexant D850 56K V.9x DFVc Modem
Creative MediaSource
Dell Digital Jukebox Driver
Dell Driver Reset Tool
Dell Photo AIO Printer 962
Dell Picture Studio v3.0
Dell Support 3.1
Dell System Restore
Digital Line Detect
Disney Pirates of the Caribbean Online
Duane Reade Digital Image Pack
EarthLink setup files
GemMaster Mystic
getPlus(R)_ocx
Google Earth
High Definition Audio Driver Package - KB835221
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB895961-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB969084)
Hotfix for Windows XP (KB970653-v3)
Intel Matrix Storage Manager
Intel(R) PRO Network Connections Software v9.2.4.11
Intel(R) PROSafe for Wired Connections
Internet Explorer Default Page
iPod for Windows 2006-01-10
iTunes
J2SE Runtime Environment 5.0 Update 6
Jasc Paint Shop Photo Album
Jasc Paint Shop Photo Album 5
Jasc Paint Shop Pro 8 Dell Edition
Jasc Paint Shop Pro Studio, Dell Editon
Java 2 Runtime Environment, SE v1.4.2_03
Logitech Audio Echo Cancellation Component
Logitech Desktop Messenger
Logitech QuickCam
Logitech Video Enumerator
Logitech® Camera Driver
Macromedia Flash Player
Malwarebytes' Anti-Malware
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft IntelliPoint 7.0
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Basic Edition 2003
Microsoft Office PowerPoint Viewer 2003
Microsoft Plus! Digital Media Edition Installer
Microsoft Plus! Photo Story 2 LE
Microsoft Silverlight
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Works 6-9 Converter
Modem Helper
MSN
MSVCRT
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 6.0 Parser (KB933579)
Musicmatch for Windows Media Player
Musicmatch® Jukebox
My Way Search Assistant
NetWaiting
Otto
PowerDVD 5.9
Print to Fax
Qualxserve Service Agreement
QuickBooks Simple Start Special Edition
QuickTime
RealPlayer Basic
Rhapsody Player Engine
SD-MovieStage
Security Update for CAPICOM (KB931906)
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950759)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953155)
Security Update for Windows XP (KB953838)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970483)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Segoe UI
Sonic DLA
Sonic Encoders
Sonic MyDVD LE
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
Sound Blaster Audigy 2 ZS
The Home Depot® 3D Home Designer
UMVPLStandalone
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB975364)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB961503)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB973815)
Update Rollup 1 for Windows XP Media Center Edition 2005 with HDTV Support (KB873369)
Viewpoint Media Player
WebCyberCoach 3.2 Dell
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Live Upload Tool
Windows Media Format Runtime
Windows Media Player 10
Windows XP Media Center Edition 2005 KB973768
Windows XP Service Pack 3
WinRAR archiver

HoldR4D

Rookie Surfer
Rookie Surfer

Posts: 50
Joined: 2009-10-03
Operating System: windows XP

View user profile

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by DragonMaster Jay on Mon 02 Nov 2009, 4:41 am

Re-running ComboFix to remove infections:

  1. Close any open browsers.
  2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
  3. Open notepad and copy/paste the text in the quotebox below into it:

    File::
    c:\windows\Fhaxakefuperula.dat
    c:\windows\Wkilu.bin
    c:\windows\system32\wimesabi.exe

    Folder::
    c:\documents and settings\Administrator\Local Settings\Application Data\{B19CBC09-1095-4378-BF07-6289F1E6AE4E}

    Rootkit::
    c:\documents and settings\ADMINISTRATOR\LOCAL SETTINGS\Temp\aswArKrn.sys
  4. Save this as CFScript.txt, in the same location as ComboFix.exe



  5. Referring to the picture above, drag CFScript into ComboFix.exe
  6. When finished, it shall produce a log for you at C:\ComboFix.txt
  7. Please post the contents of the log in your next reply.


==

Jotti File Submission:
  • Please go to [You must be registered and logged in to see this link.]

  • Copy and paste the following file path into the "File to upload & scan"box on the top of the page:

    • c:\windows\msdownld.tmp


  • Click on the submit button

  • Please post the results (URL) in your next reply.

______________________________


[You must be registered and logged in to see this link.]

[You must be registered and logged in to see this link.]

[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.]

DragonMaster Jay

Moderator | Tech Staff
Moderator | Tech Staff

Posts: 2126
Joined: 2009-09-06
Operating System: Windows 7 Ultimate 32-Bit

View user profile http://www.twitter.com/dragonmasterjay

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by HoldR4D on Mon 02 Nov 2009, 5:54 pm

ComboFix 09-11-01.04 - Administrator 11/02/2009 18:31.24.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.569 [GMT -5:00]
Running from: c:\documents and settings\Administrator\My Documents\commy.exe
Command switches used :: c:\documents and settings\Administrator\My Documents\CFScript.txt
AV: CyberDefender Internet Security *On-access scanning enabled* (Updated) {925FF895-595E-4ED4-BB84-E12C72FBA43A}

FILE ::
"c:\windows\Fhaxakefuperula.dat"
"c:\windows\system32\wimesabi.exe"
"c:\windows\Wkilu.bin"
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Administrator\Local Settings\Application Data\{B19CBC09-1095-4378-BF07-6289F1E6AE4E}
c:\documents and settings\Administrator\Local Settings\Application Data\{B19CBC09-1095-4378-BF07-6289F1E6AE4E}\chrome.manifest
c:\documents and settings\Administrator\Local Settings\Application Data\{B19CBC09-1095-4378-BF07-6289F1E6AE4E}\chrome\content\_cfg.js
c:\documents and settings\Administrator\Local Settings\Application Data\{B19CBC09-1095-4378-BF07-6289F1E6AE4E}\chrome\content\overlay.xul
c:\documents and settings\Administrator\Local Settings\Application Data\{B19CBC09-1095-4378-BF07-6289F1E6AE4E}\install.rdf
c:\windows\Fhaxakefuperula.dat
c:\windows\system32\wimesabi.exe
c:\windows\Wkilu.bin

.
((((((((((((((((((((((((( Files Created from 2009-10-02 to 2009-11-02 )))))))))))))))))))))))))))))))
.

2009-11-02 08:02 . 2009-11-02 08:04 -------- d-----w- c:\windows\system32\Adobe
2009-11-02 05:53 . 2005-04-25 18:28 871040 ----a-w- c:\windows\system32\drivers\iastor.sys
2009-11-02 05:53 . 2008-04-13 18:40 96512 ----a-w- c:\windows\system32\drivers\atapi.sys
2009-11-02 05:53 . 2008-04-13 18:40 96512 ----a-w- c:\windows\system32\dllcache\atapi.sys
2009-11-01 07:46 . 2009-11-01 07:46 102032 ----a-w- c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2009-11-01 07:19 . 2009-11-01 07:19 -------- d-----w- c:\program files\Microsoft IntelliPoint
2009-11-01 01:37 . 2009-11-01 07:46 -------- d-----w- c:\windows\system32\XPSViewer
2009-11-01 01:37 . 2009-11-01 01:37 -------- d-----w- c:\program files\MSBuild
2009-11-01 01:37 . 2009-11-01 01:37 -------- d-----w- c:\program files\Reference Assemblies
2009-10-30 09:46 . 2008-04-15 15:17 295424 ------w- c:\windows\system32\dllcache\termsrv.dll
2009-10-30 06:38 . 2008-07-06 12:06 89088 ------w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-10-30 06:38 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2009-10-30 06:38 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\dllcache\xpsshhdr.dll
2009-10-30 06:38 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2009-10-30 06:38 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\dllcache\xpssvcs.dll
2009-10-30 06:38 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2009-10-30 06:38 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-10-29 22:01 . 2009-10-29 22:01 -------- dc-h--w- c:\windows\ie8
2009-10-29 21:39 . 2009-11-01 22:37 -------- d--h--w- c:\windows\msdownld.tmp
2009-10-29 21:39 . 2009-10-29 21:39 -------- d-----w- c:\windows\Logs
2009-10-29 07:27 . 2009-10-29 07:27 -------- d-----w- c:\program files\Disney
2009-10-29 04:26 . 2009-10-29 04:26 -------- d-----w- c:\program files\MSXML 6.0
2009-10-29 01:24 . 2009-10-29 01:24 -------- d-----w- c:\program files\Alwil Software
2009-10-28 19:57 . 2008-04-14 00:12 50176 ----a-w- c:\windows\system32\proquota.exe
2009-10-28 19:57 . 2008-04-14 00:12 50176 ----a-w- c:\windows\system32\dllcache\proquota.exe
2009-10-28 03:37 . 2009-10-28 03:37 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Navnet_Solutions
2009-10-28 03:17 . 2009-10-28 03:44 -------- d-----w- c:\program files\NavNet
2009-10-27 22:42 . 2009-09-10 18:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-10-27 22:42 . 2009-09-10 18:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-10-27 19:11 . 2009-10-27 19:11 0 ----a-r- c:\windows\win32k.sys
2009-10-22 10:39 . 2009-10-22 10:39 -------- d-----w- c:\documents and settings\Administrator\Application Data\Viewpoint
2009-10-19 17:06 . 2009-10-19 17:06 223232 ------w- c:\windows\system32\wksprt.exe
2009-10-19 17:06 . 2009-10-19 17:06 223232 ------w- c:\windows\system32\dllcache\wksprt.exe
2009-10-19 17:06 . 2009-10-19 17:06 46080 ------w- c:\windows\system32\TSWbPrxy.exe
2009-10-19 17:06 . 2009-10-19 17:06 46080 ------w- c:\windows\system32\dllcache\TSWbPrxy.exe
2009-10-19 17:06 . 2009-10-19 17:06 36864 ------w- c:\windows\system32\dllcache\tsgQec.dll
2009-10-19 17:06 . 2009-10-19 17:06 12800 ------w- c:\windows\system32\wksprtPS.dll
2009-10-19 17:06 . 2009-10-19 17:06 12800 ------w- c:\windows\system32\dllcache\wksprtPS.dll
2009-10-19 17:06 . 2009-10-19 17:06 1033728 ------w- c:\windows\system32\dllcache\mstsc.exe
2009-10-19 17:06 . 2009-10-19 17:06 44544 ------w- c:\windows\system32\MsRdpWebAccess.dll
2009-10-19 17:06 . 2009-10-19 17:06 44544 ------w- c:\windows\system32\dllcache\MsRdpWebAccess.dll
2009-10-19 17:06 . 2009-10-19 17:06 130560 ------w- c:\windows\system32\dllcache\aaclient.dll
2009-10-16 00:13 . 2009-10-16 00:13 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Help
2009-10-15 23:59 . 2009-10-15 23:59 -------- d-----w- c:\documents and settings\Administrator\Application Data\Leadertech
2009-10-15 01:05 . 2009-10-15 02:07 -------- d-----w- c:\program files\Softick
2009-10-13 23:13 . 2009-11-01 22:43 35904 ----a-w- c:\documents and settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-10-13 19:46 . 2009-10-13 19:46 -------- d--h--w- c:\documents and settings\All Users\Application Data\GTek
2009-10-13 19:45 . 2009-10-13 19:45 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\AOL
2009-10-13 19:33 . 2008-04-14 00:12 1033728 ----a-w- c:\windows\system32\dllcache\explorer.exe
2009-10-13 19:33 . 2008-04-14 00:12 1033728 ------w- c:\windows\Explorer.exe
2009-10-13 19:33 . 2004-08-10 10:00 4224 ----a-w- c:\windows\system32\dllcache\beep.sys
2009-10-13 19:33 . 2004-08-10 10:00 4224 ------w- c:\windows\system32\drivers\beep.sys
2009-10-13 02:48 . 2009-10-13 02:48 -------- d-sh--w- c:\documents and settings\Administrator\IECompatCache
2009-10-13 02:16 . 2009-10-13 02:16 -------- d-----w- c:\documents and settings\Administrator\Application Data\Malwarebytes
2009-10-12 04:47 . 2009-10-12 04:47 -------- d-----w- c:\documents and settings\Administrator\Application Data\AdobeUM
2009-10-10 05:33 . 2009-10-15 23:59 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Adobe
2009-10-10 00:53 . 2009-11-02 23:25 -------- d-----w- c:\documents and settings\Administrator\Tracing
2009-10-09 14:07 . 2009-10-09 14:07 -------- d-sh--w- c:\documents and settings\Administrator\PrivacIE
2009-10-09 14:07 . 2009-10-09 14:07 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-11-02 23:42 . 2005-07-27 23:06 384 ----a-w- c:\windows\system32\DVCStateBkp-{00000005-00000000-00000004-00001102-00000004-20061102}.dat
2009-11-02 23:42 . 2005-07-27 23:06 384 ----a-w- c:\windows\system32\DVCState-{00000005-00000000-00000004-00001102-00000004-20061102}.dat
2009-10-29 07:24 . 2004-08-19 21:20 -------- d-----w- c:\program files\RGB
2009-10-27 22:42 . 2009-09-22 15:57 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-10-19 17:06 . 2008-10-14 03:14 36864 ------w- c:\windows\system32\tsgQec.dll
2009-10-19 17:06 . 2004-08-19 21:01 1033728 ----a-w- c:\windows\system32\mstsc.exe
2009-10-19 17:06 . 2004-08-19 21:01 2689024 ----a-w- c:\windows\system32\mstscax.dll
2009-10-19 17:06 . 2008-10-14 03:10 130560 ------w- c:\windows\system32\aaclient.dll
2009-10-16 00:15 . 2005-12-13 16:56 -------- d-----w- c:\program files\DL_cats
2009-10-13 21:39 . 2005-07-27 23:12 -------- d-----w- c:\documents and settings\Administrator\Application Data\Jasc Software Inc
2009-10-03 06:54 . 2009-09-23 00:58 664 ----a-w- c:\windows\system32\d3d9caps.dat
2009-09-22 16:48 . 2009-09-22 16:48 -------- d-----w- c:\program files\MCS Studios
2009-09-22 15:57 . 2009-09-22 15:57 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-09-22 15:24 . 2009-09-22 15:21 -------- d-----w- c:\program files\Sagasoft
2009-09-22 15:01 . 2008-10-14 02:52 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-09-17 04:45 . 2009-09-17 04:45 -------- d-----w- c:\program files\Microsoft
2009-09-17 04:45 . 2009-09-17 04:44 -------- d-----w- c:\program files\Windows Live
2009-09-17 04:44 . 2009-09-17 04:44 -------- d-----w- c:\program files\Windows Live SkyDrive
2009-09-17 04:42 . 2009-09-17 04:42 -------- d-----w- c:\program files\Common Files\Windows Live
2009-09-11 14:18 . 2004-08-19 20:49 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-09 10:50 . 2008-10-16 19:47 -------- d-----w- c:\program files\Microsoft Silverlight
2009-09-04 21:44 . 2009-10-29 21:41 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2009-09-04 21:44 . 2009-10-29 21:41 238936 ----a-w- c:\windows\system32\xactengine3_5.dll
2009-09-04 21:44 . 2009-10-29 21:41 69464 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2009-09-04 21:29 . 2009-10-29 21:41 235344 ----a-w- c:\windows\system32\d3dx11_42.dll
2009-09-04 21:29 . 2009-10-29 21:41 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2009-09-04 21:29 . 2009-10-29 21:41 1974616 ----a-w- c:\windows\system32\D3DCompiler_42.dll
2009-09-04 21:29 . 2009-10-29 21:41 5501792 ----a-w- c:\windows\system32\d3dcsx_42.dll
2009-09-04 21:29 . 2009-10-29 21:41 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2009-09-04 21:03 . 2004-08-19 20:49 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-08-29 08:08 . 2004-08-19 20:49 916480 ------w- c:\windows\system32\wininet.dll
2009-08-26 08:00 . 2004-08-19 20:50 247326 ----a-w- c:\windows\system32\strmdll.dll
2009-08-07 00:08 . 2009-08-07 00:09 67424 ----a-w- c:\windows\system32\drivers\CDAVFS.sys
2009-08-06 23:24 . 2004-08-19 21:04 327896 ----a-w- c:\windows\system32\wucltui.dll
2009-08-06 23:24 . 2004-08-19 21:04 209632 ----a-w- c:\windows\system32\wuweb.dll
2009-08-06 23:24 . 2005-05-26 10:16 44768 ----a-w- c:\windows\system32\wups2.dll
2009-08-06 23:24 . 2004-08-19 21:04 35552 ----a-w- c:\windows\system32\wups.dll
2009-08-06 23:24 . 2004-08-19 21:04 53472 ------w- c:\windows\system32\wuauclt.exe
2009-08-06 23:24 . 2004-08-19 20:49 96480 ----a-w- c:\windows\system32\cdm.dll
2009-08-06 23:23 . 2004-08-19 21:04 575704 ----a-w- c:\windows\system32\wuapi.dll
2009-08-06 23:23 . 2005-12-11 04:44 215920 ----a-w- c:\windows\system32\muweb.dll
2009-08-06 23:23 . 2005-12-11 04:44 274288 ----a-w- c:\windows\system32\mucltui.dll
2009-08-06 23:23 . 2004-08-19 21:04 1929952 ----a-w- c:\windows\system32\wuaueng.dll
2009-08-05 09:01 . 2004-08-19 20:49 204800 ----a-w- c:\windows\system32\mswebdvd.dll
2009-08-04 23:52 . 2009-08-04 23:52 1193832 ----a-w- c:\windows\system32\FM20.DLL



((((((((((((((((((((((((((((( SnapShot_2009-11-02_06.01.31 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-16 11:00 . 2009-07-16 11:00 98304 c:\windows\system32\Macromed\Shockwave 10\SwOnce.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 86016 c:\windows\system32\Macromed\Shockwave 10\SwMenuX.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 77824 c:\windows\system32\Macromed\Shockwave 10\SwInit.exe
+ 2009-07-16 11:00 . 2009-07-16 11:00 24576 c:\windows\system32\Macromed\Shockwave 10\DynaPlayer.dll
+ 2009-03-16 08:59 . 2009-03-16 08:59 53248 c:\windows\system32\Macromed\Common\SwSupport.dll
+ 2009-11-02 08:03 . 2009-11-02 08:03 87618 c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
+ 2009-07-31 13:26 . 2009-07-31 13:26 94208 c:\windows\system32\Adobe\Shockwave 11\SwMenu.dll
+ 2009-07-31 12:54 . 2009-07-31 12:54 79488 c:\windows\system32\Adobe\Shockwave 11\gtapi.dll
+ 2009-07-31 13:42 . 2009-07-31 13:42 67000 c:\windows\system32\Adobe\Director\SWDNLD.EXE
+ 2009-07-31 13:28 . 2009-07-31 13:28 9216 c:\windows\system32\Adobe\Shockwave 11\DynaPlayer.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 180224 c:\windows\system32\Macromed\Shockwave 10\Proj.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 475136 c:\windows\system32\Macromed\Shockwave 10\PluginPing.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 339968 c:\windows\system32\Macromed\Shockwave 10\Plugin.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 606208 c:\windows\system32\Macromed\Shockwave 10\iml32X.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 581632 c:\windows\system32\Macromed\Shockwave 10\Control.dll
+ 2009-07-31 12:54 . 2009-07-31 12:54 132472 c:\windows\system32\Adobe\Shockwave 11\SYMCCHECKER.DLL
+ 2009-07-31 13:26 . 2009-07-31 13:26 114688 c:\windows\system32\Adobe\Shockwave 11\SwInit.exe
+ 2009-07-31 13:40 . 2009-07-31 13:40 468408 c:\windows\system32\Adobe\Shockwave 11\SwHelper_1151601.exe
+ 2009-07-31 13:28 . 2009-07-31 13:28 446464 c:\windows\system32\Adobe\Shockwave 11\Proj.dll
+ 2009-07-31 13:26 . 2009-07-31 13:26 372736 c:\windows\system32\Adobe\Shockwave 11\Plugin.dll
+ 2009-07-31 12:54 . 2009-07-31 12:54 714752 c:\windows\system32\Adobe\Shockwave 11\gi.dll
+ 2009-07-31 13:25 . 2009-07-31 13:25 614400 c:\windows\system32\Adobe\Shockwave 11\Control.dll
+ 2009-07-31 13:41 . 2009-07-31 13:41 206264 c:\windows\system32\Adobe\Director\SwDir.dll
+ 2009-07-31 13:27 . 2009-07-31 13:27 131072 c:\windows\system32\Adobe\Director\np32dsw.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 1490944 c:\windows\system32\Macromed\Shockwave 10\dirapiX.dll
+ 2009-07-31 13:00 . 2009-07-31 13:00 1011712 c:\windows\system32\Adobe\Shockwave 11\iml32.dll
+ 2009-07-31 12:54 . 2009-07-31 12:54 1886320 c:\windows\system32\Adobe\Shockwave 11\gt.exe
+ 2009-07-31 13:04 . 2009-07-31 13:04 1798144 c:\windows\system32\Adobe\Shockwave 11\dirapi.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

HoldR4D

Rookie Surfer
Rookie Surfer

Posts: 50
Joined: 2009-10-03
Operating System: windows XP

View user profile

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by HoldR4D on Mon 02 Nov 2009, 5:55 pm

*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DellSupport"="c:\program files\Dell Support\DSAgnt.exe" [2005-05-15 332800]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
"WAB"="c:\documents and settings\Administrator\Application Data\Macromedia\Common\102d407419.exe" [2009-11-02 16384]
"rundll32.exe"="" [BU]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2004-08-10 59392]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2005-04-25 139264]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-04-15 344064]
"CTDVDDET"="c:\program files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDET.EXE" [2003-06-18 45056]
"DLBXCATS"="c:\windows\System32\spool\DRIVERS\W32X86\3\DLBXtime.dll" [2004-12-07 69632]
"dlbxmon.exe"="c:\program files\Dell Photo AIO Printer 962\dlbxmon.exe" [2005-01-18 425984]
"HostManager"="c:\program files\Common Files\AOL\1134621263\ee\AOLSoftware.exe" [2007-10-08 41824]
"LogitechCommunicationsManager"="c:\program files\Common Files\Logitech\LComMgr\Communications_Helper.exe" [2006-10-31 284184]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2007-12-11 286720]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-09 63712]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 221184]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2009-06-01 1468296]
"SigmatelSysTrayApp"="stsystra.exe" - c:\windows\stsystra.exe [2005-03-23 339968]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2005-7-27 24576]
QuickBooks Update Agent.lnk - c:\program files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe [2004-11-11 806912]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSetActiveDesktop"= 1 (0x1)
"NoActiveDesktopChanges"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\reset5c]
reset5c.dll [BU]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"wave1"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"midi1"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"mixer1"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"wave2"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"midi2"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"mixer2"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"aux1"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"aux2"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"DisableNotifications"= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"=
"c:\\Program Files\\America Online 9.0\\waol.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Common Files\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"=
"c:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"c:\\Program Files\\Common Files\\AOL\\1134621263\\ee\\aolsoftware.exe"=
"c:\\Program Files\\Common Files\\AOL\\1134621263\\ee\\aim6.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
"c:\\Program Files\\Common Files\\AOL\\System Information\\sinf.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\WINDOWS\\system32\\taskmgr.exe"=
"%windir%\\system32\\lsass.exe"=
"c:\\Program Files\\Disney\\Disney Online\\PiratesOnline\\Launcher1.exe"=
"c:\\Program Files\\Disney\\Disney Online\\PiratesOnline\\Pirates.exe"=
"c:\\Program Files\\Disney\\Disney Online\\PiratesOnline\\Pirates_Online.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009

S3 aswArKrn;aswArKrn;\??\c:\docume~1\ADMINI~1\LOCALS~1\Temp\aswArKrn.sys --> c:\docume~1\ADMINI~1\LOCALS~1\Temp\aswArKrn.sys [?]
S3 CDAVFS;CDAVFS;c:\windows\system32\drivers\CDAVFS.sys [8/6/2009 7:09 PM 67424]

--- Other Services/Drivers In Memory ---

*Deregistered* - mbr
.
Contents of the 'Scheduled Tasks' folder

2009-10-28 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 19:57]
.
.
------- Supplementary Scan -------
.
uStart Page = [You must be registered and logged in to see this link.]
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [You must be registered and logged in to see this link.]
Rootkit scan 2009-11-02 18:44
Windows 5.1.2600 Service Pack 3 NTFS

scanning hȋdden processes ...

scanning hȋdden autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
DLBXCATS = rundll32 c:\windows\System32\spool\DRIVERS\W32X86\3\DLBXtime.dll,_RunDLLEntry@16???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????

scanning hȋdden files ...

scan completed successfully
hȋdden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,44,5c,8d,03,37,4c,d2,4d,aa,20,0e,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,44,5c,8d,03,37,4c,d2,4d,aa,20,0e,\

[HKEY_USERS\S-1-5-21-3835334267-1934715317-2934981272-500\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (Administrator)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,a9,9c,5d,7b,36,8f,3b,41,b2,20,90,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,a9,9c,5d,7b,36,8f,3b,41,b2,20,90,\

[HKEY_USERS\S-1-5-21-3835334267-1934715317-2934981272-500\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{8C1A580A-4BAD-8BC4-F5E5-BF4C87F6657D}*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"pamofejndooopfiopnnejpgkhebaepfa"=hex:6b,61,68,6c,6a,6e,64,6c,66,6f,70,63,65,
6b,69,63,63,66,66,65,6b,69,00,00
"oacpjgecpodccglbknncijmgeniaed"=hex:6b,61,68,6c,6a,6e,64,6c,66,6f,70,63,65,6b,
69,63,63,66,66,65,6b,69,00,00
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(824)
c:\windows\system32\wininet.dll

- - - - - - - > 'explorer.exe'(4080)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\progra~1\COMMON~1\AOL\ACS\AOLacsd.exe
c:\windows\system32\CTsvcCDA.EXE
c:\windows\eHome\ehRecvr.exe
c:\windows\eHome\ehSched.exe
c:\program files\Intel\Intel Matrix Storage Manager\iaantmon.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\wanmpsvc.exe
c:\windows\system32\dllhost.exe
c:\windows\eHome\ehmsas.exe
c:\program files\Microsoft IntelliPoint\dpupdchk.exe
c:\windows\system32\dlbxcoms.exe
.
**************************************************************************
.
Completion time: 2009-11-02 18:52 - machine was rebooted
ComboFix-quarantined-files.txt 2009-11-02 23:52
ComboFix2.txt 2009-11-02 06:03
ComboFix3.txt 2009-11-01 00:02
ComboFix4.txt 2009-10-30 23:32
ComboFix5.txt 2009-11-02 23:30

Pre-Run: 213,211,168,768 bytes free
Post-Run: 213,346,480,128 bytes free

- - End Of File - - 5AEDDF2ED34CEECC1394D0B1F561B3DA

HoldR4D

Rookie Surfer
Rookie Surfer

Posts: 50
Joined: 2009-10-03
Operating System: windows XP

View user profile

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by HoldR4D on Mon 02 Nov 2009, 5:58 pm

the jottymalware doesnt work doesnt let me type of copy abnd paste

HoldR4D

Rookie Surfer
Rookie Surfer

Posts: 50
Joined: 2009-10-03
Operating System: windows XP

View user profile

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by DragonMaster Jay on Mon 02 Nov 2009, 7:03 pm

Please do this for Cyber Defender:

1. Click on the Start menu.
2. Select Run...
3. Type wbemtest and click OK
4. Connect to root\SecurityCenter
5. Click on Query
6. Type in SELECT * FROM AntiVirusProduct and click on Apply



If there is more than one result, it means there is more than one Antivirus program installed. Double click on each result to view the properties for that Antivirus product. Identify the product(s) installed and DELETE any records for an Antivirus software that is no longer installed.

==

Re-running ComboFix to remove infections:

  1. Close any open browsers.
  2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
  3. Open notepad and copy/paste the text in the quotebox below into it:

    File::
    c:\documents and settings\ADMINISTRATOR\LOCAL SETTINGS\Temp\aswArKrn.sys

    Folder::
    c:\windows\msdownld.tmp
  4. Save this as CFScript.txt, in the same location as ComboFix.exe



  5. Referring to the picture above, drag CFScript into ComboFix.exe
  6. When finished, it shall produce a log for you at C:\ComboFix.txt
  7. Please post the contents of the log in your next reply.

______________________________


[You must be registered and logged in to see this link.]

[You must be registered and logged in to see this link.]

[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.]

DragonMaster Jay

Moderator | Tech Staff
Moderator | Tech Staff

Posts: 2126
Joined: 2009-09-06
Operating System: Windows 7 Ultimate 32-Bit

View user profile http://www.twitter.com/dragonmasterjay

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by HoldR4D on Mon 02 Nov 2009, 7:43 pm

ComboFix 09-11-01.04 - Administrator 11/02/2009 20:29.26.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.541 [GMT -5:00]
Running from: c:\documents and settings\Administrator\My Documents\commy.exe
Command switches used :: c:\documents and settings\Administrator\My Documents\CFScript.txt

FILE ::
"c:\documents and settings\ADMINISTRATOR\LOCAL SETTINGS\Temp\aswArKrn.sys"
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\msdownld.tmp

.
((((((((((((((((((((((((( Files Created from 2009-10-03 to 2009-11-03 )))))))))))))))))))))))))))))))
.

2009-11-02 08:02 . 2009-11-02 08:04 -------- d-----w- c:\windows\system32\Adobe
2009-11-02 05:53 . 2005-04-25 18:28 871040 ----a-w- c:\windows\system32\drivers\iastor.sys
2009-11-02 05:53 . 2008-04-13 18:40 96512 ----a-w- c:\windows\system32\drivers\atapi.sys
2009-11-02 05:53 . 2008-04-13 18:40 96512 ----a-w- c:\windows\system32\dllcache\atapi.sys
2009-11-01 07:46 . 2009-11-01 07:46 102032 ----a-w- c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2009-11-01 07:19 . 2009-11-01 07:19 -------- d-----w- c:\program files\Microsoft IntelliPoint
2009-11-01 01:37 . 2009-11-01 07:46 -------- d-----w- c:\windows\system32\XPSViewer
2009-11-01 01:37 . 2009-11-01 01:37 -------- d-----w- c:\program files\MSBuild
2009-11-01 01:37 . 2009-11-01 01:37 -------- d-----w- c:\program files\Reference Assemblies
2009-10-30 09:46 . 2008-04-15 15:17 295424 ------w- c:\windows\system32\dllcache\termsrv.dll
2009-10-30 06:38 . 2008-07-06 12:06 89088 ------w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-10-30 06:38 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2009-10-30 06:38 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\dllcache\xpsshhdr.dll
2009-10-30 06:38 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2009-10-30 06:38 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\dllcache\xpssvcs.dll
2009-10-30 06:38 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2009-10-30 06:38 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-10-29 22:01 . 2009-10-29 22:01 -------- dc-h--w- c:\windows\ie8
2009-10-29 21:39 . 2009-10-29 21:39 -------- d-----w- c:\windows\Logs
2009-10-29 07:27 . 2009-10-29 07:27 -------- d-----w- c:\program files\Disney
2009-10-29 04:26 . 2009-10-29 04:26 -------- d-----w- c:\program files\MSXML 6.0
2009-10-29 01:24 . 2009-10-29 01:24 -------- d-----w- c:\program files\Alwil Software
2009-10-28 19:57 . 2008-04-14 00:12 50176 ----a-w- c:\windows\system32\proquota.exe
2009-10-28 19:57 . 2008-04-14 00:12 50176 ----a-w- c:\windows\system32\dllcache\proquota.exe
2009-10-28 03:37 . 2009-10-28 03:37 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Navnet_Solutions
2009-10-28 03:17 . 2009-10-28 03:44 -------- d-----w- c:\program files\NavNet
2009-10-27 22:42 . 2009-09-10 18:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-10-27 22:42 . 2009-09-10 18:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-10-27 19:11 . 2009-10-27 19:11 0 ----a-r- c:\windows\win32k.sys
2009-10-22 10:39 . 2009-10-22 10:39 -------- d-----w- c:\documents and settings\Administrator\Application Data\Viewpoint
2009-10-19 17:06 . 2009-10-19 17:06 223232 ------w- c:\windows\system32\wksprt.exe
2009-10-19 17:06 . 2009-10-19 17:06 223232 ------w- c:\windows\system32\dllcache\wksprt.exe
2009-10-19 17:06 . 2009-10-19 17:06 46080 ------w- c:\windows\system32\TSWbPrxy.exe
2009-10-19 17:06 . 2009-10-19 17:06 46080 ------w- c:\windows\system32\dllcache\TSWbPrxy.exe
2009-10-19 17:06 . 2009-10-19 17:06 36864 ------w- c:\windows\system32\dllcache\tsgQec.dll
2009-10-19 17:06 . 2009-10-19 17:06 12800 ------w- c:\windows\system32\wksprtPS.dll
2009-10-19 17:06 . 2009-10-19 17:06 12800 ------w- c:\windows\system32\dllcache\wksprtPS.dll
2009-10-19 17:06 . 2009-10-19 17:06 1033728 ------w- c:\windows\system32\dllcache\mstsc.exe
2009-10-19 17:06 . 2009-10-19 17:06 44544 ------w- c:\windows\system32\MsRdpWebAccess.dll
2009-10-19 17:06 . 2009-10-19 17:06 44544 ------w- c:\windows\system32\dllcache\MsRdpWebAccess.dll
2009-10-19 17:06 . 2009-10-19 17:06 130560 ------w- c:\windows\system32\dllcache\aaclient.dll
2009-10-16 00:13 . 2009-10-16 00:13 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Help
2009-10-15 23:59 . 2009-10-15 23:59 -------- d-----w- c:\documents and settings\Administrator\Application Data\Leadertech
2009-10-15 01:05 . 2009-10-15 02:07 -------- d-----w- c:\program files\Softick
2009-10-13 23:13 . 2009-11-01 22:43 35904 ----a-w- c:\documents and settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-10-13 19:46 . 2009-10-13 19:46 -------- d--h--w- c:\documents and settings\All Users\Application Data\GTek
2009-10-13 19:45 . 2009-10-13 19:45 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\AOL
2009-10-13 19:33 . 2008-04-14 00:12 1033728 ----a-w- c:\windows\system32\dllcache\explorer.exe
2009-10-13 19:33 . 2008-04-14 00:12 1033728 ------w- c:\windows\Explorer.exe
2009-10-13 19:33 . 2004-08-10 10:00 4224 ----a-w- c:\windows\system32\dllcache\beep.sys
2009-10-13 19:33 . 2004-08-10 10:00 4224 ------w- c:\windows\system32\drivers\beep.sys
2009-10-13 02:48 . 2009-10-13 02:48 -------- d-sh--w- c:\documents and settings\Administrator\IECompatCache
2009-10-13 02:16 . 2009-10-13 02:16 -------- d-----w- c:\documents and settings\Administrator\Application Data\Malwarebytes
2009-10-12 04:47 . 2009-10-12 04:47 -------- d-----w- c:\documents and settings\Administrator\Application Data\AdobeUM
2009-10-10 05:33 . 2009-10-15 23:59 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Adobe
2009-10-10 00:53 . 2009-11-03 01:23 -------- d-----w- c:\documents and settings\Administrator\Tracing
2009-10-09 14:07 . 2009-10-09 14:07 -------- d-sh--w- c:\documents and settings\Administrator\PrivacIE
2009-10-09 14:07 . 2009-10-09 14:07 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-11-03 00:38 . 2005-07-27 23:06 384 ----a-w- c:\windows\system32\DVCStateBkp-{00000005-00000000-00000004-00001102-00000004-20061102}.dat
2009-11-03 00:38 . 2005-07-27 23:06 384 ----a-w- c:\windows\system32\DVCState-{00000005-00000000-00000004-00001102-00000004-20061102}.dat
2009-10-29 07:24 . 2004-08-19 21:20 -------- d-----w- c:\program files\RGB
2009-10-27 22:42 . 2009-09-22 15:57 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-10-19 17:06 . 2008-10-14 03:14 36864 ------w- c:\windows\system32\tsgQec.dll
2009-10-19 17:06 . 2004-08-19 21:01 1033728 ----a-w- c:\windows\system32\mstsc.exe
2009-10-19 17:06 . 2004-08-19 21:01 2689024 ----a-w- c:\windows\system32\mstscax.dll
2009-10-19 17:06 . 2008-10-14 03:10 130560 ------w- c:\windows\system32\aaclient.dll
2009-10-16 00:15 . 2005-12-13 16:56 -------- d-----w- c:\program files\DL_cats
2009-10-13 21:39 . 2005-07-27 23:12 -------- d-----w- c:\documents and settings\Administrator\Application Data\Jasc Software Inc
2009-10-03 06:54 . 2009-09-23 00:58 664 ----a-w- c:\windows\system32\d3d9caps.dat
2009-09-22 16:48 . 2009-09-22 16:48 -------- d-----w- c:\program files\MCS Studios
2009-09-22 15:57 . 2009-09-22 15:57 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-09-22 15:24 . 2009-09-22 15:21 -------- d-----w- c:\program files\Sagasoft
2009-09-22 15:01 . 2008-10-14 02:52 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-09-17 04:45 . 2009-09-17 04:45 -------- d-----w- c:\program files\Microsoft
2009-09-17 04:45 . 2009-09-17 04:44 -------- d-----w- c:\program files\Windows Live
2009-09-17 04:44 . 2009-09-17 04:44 -------- d-----w- c:\program files\Windows Live SkyDrive
2009-09-17 04:42 . 2009-09-17 04:42 -------- d-----w- c:\program files\Common Files\Windows Live
2009-09-11 14:18 . 2004-08-19 20:49 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-09 10:50 . 2008-10-16 19:47 -------- d-----w- c:\program files\Microsoft Silverlight
2009-09-04 21:44 . 2009-10-29 21:41 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2009-09-04 21:44 . 2009-10-29 21:41 238936 ----a-w- c:\windows\system32\xactengine3_5.dll
2009-09-04 21:44 . 2009-10-29 21:41 69464 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2009-09-04 21:29 . 2009-10-29 21:41 235344 ----a-w- c:\windows\system32\d3dx11_42.dll
2009-09-04 21:29 . 2009-10-29 21:41 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2009-09-04 21:29 . 2009-10-29 21:41 1974616 ----a-w- c:\windows\system32\D3DCompiler_42.dll
2009-09-04 21:29 . 2009-10-29 21:41 5501792 ----a-w- c:\windows\system32\d3dcsx_42.dll
2009-09-04 21:29 . 2009-10-29 21:41 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2009-09-04 21:03 . 2004-08-19 20:49 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-08-29 08:08 . 2004-08-19 20:49 916480 ------w- c:\windows\system32\wininet.dll
2009-08-26 08:00 . 2004-08-19 20:50 247326 ----a-w- c:\windows\system32\strmdll.dll
2009-08-07 00:08 . 2009-08-07 00:09 67424 ----a-w- c:\windows\system32\drivers\CDAVFS.sys
2009-08-06 23:24 . 2004-08-19 21:04 327896 ----a-w- c:\windows\system32\wucltui.dll
2009-08-06 23:24 . 2004-08-19 21:04 209632 ----a-w- c:\windows\system32\wuweb.dll
2009-08-06 23:24 . 2005-05-26 10:16 44768 ----a-w- c:\windows\system32\wups2.dll
2009-08-06 23:24 . 2004-08-19 21:04 35552 ----a-w- c:\windows\system32\wups.dll
2009-08-06 23:24 . 2004-08-19 21:04 53472 ------w- c:\windows\system32\wuauclt.exe
2009-08-06 23:24 . 2004-08-19 20:49 96480 ----a-w- c:\windows\system32\cdm.dll
2009-08-06 23:23 . 2004-08-19 21:04 575704 ----a-w- c:\windows\system32\wuapi.dll
2009-08-06 23:23 . 2005-12-11 04:44 215920 ----a-w- c:\windows\system32\muweb.dll
2009-08-06 23:23 . 2005-12-11 04:44 274288 ----a-w- c:\windows\system32\mucltui.dll
2009-08-06 23:23 . 2004-08-19 21:04 1929952 ----a-w- c:\windows\system32\wuaueng.dll
2009-08-05 09:01 . 2004-08-19 20:49 204800 ----a-w- c:\windows\system32\mswebdvd.dll
.

((((((((((((((((((((((((((((( SnapShot_2009-11-02_06.01.31 )))))))))))))))))))))))))))))))))))))))))
.
+ 2005-07-27 23:06 . 2007-04-09 17:21 22528 c:\windows\system32\sfman32.dll
+ 2009-11-03 00:35 . 2004-08-04 02:54 53932 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\ctdaught.dat
+ 2009-11-03 00:35 . 2008-04-14 00:12 23552 c:\windows\system32\ReinstallBackups\0018\DriverFiles\i386\wdmaud.drv
+ 2009-11-03 00:35 . 2008-04-13 18:45 49408 c:\windows\system32\ReinstallBackups\0018\DriverFiles\i386\stream.sys
+ 2009-11-03 00:35 . 2008-04-13 18:45 60160 c:\windows\system32\ReinstallBackups\0018\DriverFiles\i386\drmk.sys
+ 2009-11-03 00:35 . 2001-08-18 00:35 36864 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Common\sfman32.dll
+ 2009-11-03 00:35 . 2003-11-14 04:54 65536 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Common\a3d.dll
+ 2005-07-27 23:06 . 2007-04-09 17:21 48128 c:\windows\system32\regplib.exe
+ 2007-04-09 17:32 . 2007-04-09 17:32 38400 c:\windows\system32\readreg.exe
+ 2007-04-09 17:32 . 2007-04-09 17:32 37888 c:\windows\system32\psconv.exe
+ 2005-07-27 23:06 . 2007-04-09 17:21 81920 c:\windows\system32\piaproxy.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 98304 c:\windows\system32\Macromed\Shockwave 10\SwOnce.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 86016 c:\windows\system32\Macromed\Shockwave 10\SwMenuX.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 77824 c:\windows\system32\Macromed\Shockwave 10\SwInit.exe
+ 2009-07-16 11:00 . 2009-07-16 11:00 24576 c:\windows\system32\Macromed\Shockwave 10\DynaPlayer.dll
+ 2009-03-16 08:59 . 2009-03-16 08:59 53248 c:\windows\system32\Macromed\Common\SwSupport.dll
+ 2005-07-27 23:06 . 2007-04-09 17:19 10240 c:\windows\system32\killapps.exe
+ 2007-04-09 17:33 . 2007-04-09 17:33 11776 c:\windows\system32\inres.dll
- 2005-07-27 23:06 . 2001-07-11 20:51 77824 c:\windows\system32\EAXAC3.DLL
+ 2005-07-27 23:06 . 2001-07-11 07:51 77824 c:\windows\system32\eaxac3.dll
- 2004-08-04 04:08 . 2008-04-13 18:45 49408 c:\windows\system32\drivers\stream.sys
+ 2004-08-04 04:08 . 2008-04-13 19:45 49408 c:\windows\system32\drivers\stream.sys
+ 2005-07-27 23:06 . 2007-04-10 09:32 16168 c:\windows\system32\drivers\pfmodnt.sys
+ 2005-07-27 23:06 . 2007-04-10 09:28 92968 c:\windows\system32\drivers\emupia2k.sys
- 2005-07-27 22:49 . 2008-04-13 18:45 60160 c:\windows\system32\drivers\drmk.sys
+ 2005-07-27 22:49 . 2008-04-13 19:45 60160 c:\windows\system32\drivers\drmk.sys
+ 2005-07-27 23:06 . 2007-04-10 09:25 14632 c:\windows\system32\drivers\ctprxy2k.sys
+ 2004-08-04 04:08 . 2008-04-13 19:45 49408 c:\windows\system32\dllcache\stream.sys
+ 2005-07-27 22:49 . 2008-04-13 19:45 60160 c:\windows\system32\dllcache\drmk.sys
+ 2005-07-27 23:06 . 2007-04-09 17:32 34816 c:\windows\system32\dllcache\a3d.dll
+ 2007-04-09 17:19 . 2007-04-09 17:19 48640 c:\windows\system32\devreg.dll
+ 2007-04-09 17:19 . 2007-04-09 17:19 26783 c:\windows\system32\Data\ctd20x.dat
+ 2007-04-09 17:32 . 2007-04-09 17:32 46592 c:\windows\system32\CTxfiSpk.dll
+ 2007-04-09 17:29 . 2007-04-09 17:29 43520 c:\windows\system32\Ctxfireg.exe
+ 2007-04-09 17:32 . 2007-04-09 17:32 19968 c:\windows\system32\Ctxfihlp.exe
+ 2007-04-09 17:32 . 2007-04-09 17:32 35840 c:\windows\system32\CTxfiBtn.dll
+ 2005-07-27 23:06 . 2007-04-09 17:32 69632 c:\windows\system32\ctthxcal.dll
+ 2005-07-27 23:06 . 2007-04-09 17:32 45568 c:\windows\system32\ctspkhlp.dll
+ 2005-07-27 23:06 . 2007-04-09 17:32 78336 c:\windows\system32\ctscal.dll
+ 2006-11-14 14:01 . 2006-11-14 14:01 58104 c:\windows\system32\ctpxinst.exe
+ 2007-04-09 16:25 . 2007-04-09 16:25 45568 c:\windows\system32\ctppld.dll
+ 2007-04-09 17:32 . 2007-04-09 17:32 56832 c:\windows\system32\CTpcmcia.dll
+ 2005-07-27 23:06 . 2007-04-09 17:32 12800 c:\windows\system32\ctmmep.dll
+ 2005-06-16 15:17 . 2005-06-16 15:17 71680 c:\windows\system32\ctmmactl.dll
+ 2007-04-12 13:10 . 2007-04-12 13:10 66816 c:\windows\system32\CTHWIUT.DLL
+ 2005-07-27 23:06 . 2007-04-09 17:32 19456 c:\windows\system32\CtHelper.exe
+ 2007-04-12 13:10 . 2007-04-12 13:10 94976 c:\windows\system32\CTERFXFX.DLL
+ 2007-04-09 17:22 . 2007-04-09 17:22 50176 c:\windows\system32\ctedasio.dll
+ 2005-07-27 23:06 . 2007-04-09 17:22 76800 c:\windows\system32\ctdproxy.dll
+ 2007-04-09 17:24 . 2007-04-09 17:24 46273 c:\windows\system32\ctdnlstr.dat
+ 2007-04-09 17:32 . 2007-04-09 17:32 10240 c:\windows\system32\ctdcres.dll
+ 2005-07-27 23:06 . 2007-04-09 17:19 53932 c:\windows\system32\ctdaught.dat
- 2005-07-27 23:06 . 2004-08-04 02:54 53932 c:\windows\system32\ctdaught.dat
+ 2007-04-09 17:33 . 2007-04-09 17:33 86016 c:\windows\system32\ctcoinst.dll
+ 2007-04-09 17:33 . 2007-04-09 17:33 43520 c:\windows\system32\CTBurst.dll
+ 2005-07-27 23:06 . 2007-04-09 17:22 79872 c:\windows\system32\ctasio.dll
+ 2007-04-09 17:29 . 2007-04-09 17:29 10752 c:\windows\system32\Ct20xspi.dll
+ 2005-07-27 23:06 . 2007-04-18 13:59 98600 c:\windows\system32\COMMONFX.DLL
+ 2009-11-02 08:03 . 2009-11-02 08:03 87618 c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
+ 2009-07-31 13:26 . 2009-07-31 13:26 94208 c:\windows\system32\Adobe\Shockwave 11\SwMenu.dll
+ 2009-07-31 12:54 . 2009-07-31 12:54 79488 c:\windows\system32\Adobe\Shockwave 11\gtapi.dll
+ 2009-07-31 13:42 . 2009-07-31 13:42 67000 c:\windows\system32\Adobe\Director\SWDNLD.EXE
+ 2007-04-09 16:25 . 2007-04-09 16:25 48400 c:\windows\system32\AddCat.exe
+ 2005-07-27 23:06 . 2007-04-09 17:32 27648 c:\windows\system32\ac3api.dll
+ 2005-07-27 23:06 . 2007-04-09 17:32 34816 c:\windows\system32\a3d.dll
+ 2009-11-03 00:35 . 2004-08-07 03:29 6656 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\pfmodnt.sys
+ 2009-11-03 00:35 . 2004-07-13 20:11 6096 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\ctprxy2k.sys
+ 2009-11-03 00:35 . 2008-04-14 00:11 4096 c:\windows\system32\ReinstallBackups\0018\DriverFiles\i386\ksuser.dll
+ 2007-04-09 17:19 . 2007-04-09 17:19 5120 c:\windows\system32\enlocstr.exe
+ 2007-04-09 17:19 . 2007-04-09 17:19 2091 c:\windows\system32\Data\cts20x.dat
+ 2007-04-09 17:32 . 2007-04-09 17:32 9216 c:\windows\system32\ctpres.dll
+ 2005-07-27 23:06 . 2007-04-09 17:32 8704 c:\windows\system32\ctagent.dll
+ 2009-07-31 13:28 . 2009-07-31 13:28 9216 c:\windows\system32\Adobe\Shockwave 11\DynaPlayer.dll
+ 2005-07-27 23:06 . 2007-04-09 17:21 130048 c:\windows\system32\sfms32.dll
+ 2009-11-03 00:35 . 2004-07-13 20:15 148432 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\haP16v2k.sys
+ 2009-11-03 00:35 . 2004-08-13 01:40 904752 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\ha10kx2k.sys
+ 2009-11-03 00:35 . 2004-07-13 20:13 145488 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\emupia2k.sys
+ 2009-11-03 00:35 . 2004-07-13 20:12 130288 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\ctsfm2k.sys
+ 2009-11-03 00:35 . 2004-08-13 01:52 264466 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\ctsbas2w.dat
+ 2009-11-03 00:35 . 2004-07-13 20:11 178672 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\ctoss2k.sys
+ 2009-11-03 00:35 . 2003-11-13 07:11 333600 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\ctdvda2k.sys
+ 2009-11-03 00:35 . 2003-11-26 23:29 127226 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\ctdlang.dat
+ 2009-11-03 00:35 . 2004-08-13 01:52 140643 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\ctbas2w.dat
+ 2009-11-03 00:35 . 2004-08-06 20:43 366384 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\ctaud2k.sys
+ 2009-11-03 00:35 . 2004-07-13 20:09 645360 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Win2K_XP\ctac32k.sys
+ 2009-11-03 00:35 . 2008-04-13 19:19 146048 c:\windows\system32\ReinstallBackups\0018\DriverFiles\i386\portcls.sys
+ 2009-11-03 00:35 . 2008-04-13 19:16 141056 c:\windows\system32\ReinstallBackups\0018\DriverFiles\i386\ks.sys
+ 2009-11-03 00:35 . 2003-11-14 05:04 606208 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Common\ctsblfx.dll
+ 2009-11-03 00:35 . 2004-07-13 19:53 585728 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Common\ctaudfx.dll
+ 2009-11-03 00:35 . 2003-11-14 05:02 114688 c:\windows\system32\ReinstallBackups\0018\DriverFiles\Common\commonfx.dll
+ 2006-11-23 05:55 . 2006-11-23 05:55 782336 c:\windows\system32\OALInst.exe
+ 2009-07-16 11:00 . 2009-07-16 11:00 180224 c:\windows\system32\Macromed\Shockwave 10\Proj.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 475136 c:\windows\system32\Macromed\Shockwave 10\PluginPing.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 339968 c:\windows\system32\Macromed\Shockwave 10\Plugin.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 606208 c:\windows\system32\Macromed\Shockwave 10\iml32X.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 581632 c:\windows\system32\Macromed\Shockwave 10\Control.dll
- 2005-07-27 22:49 . 2008-04-13 19:19 146048 c:\windows\system32\drivers\portcls.sys
+ 2005-07-27 22:49 . 2008-04-13 20:19 146048 c:\windows\system32\drivers\portcls.sys
+ 2004-08-04 04:15 . 2008-04-13 20:16 141056 c:\windows\system32\drivers\ks.sys
- 2004-08-04 04:15 . 2008-04-13 19:16 141056 c:\windows\system32\drivers\ks.sys
+ 2007-04-10 09:32 . 2007-04-10 09:32 189736 c:\windows\system32\drivers\haP17v2k.sys
+ 2005-07-27 23:06 . 2007-04-10 09:31 163112 c:\windows\system32\drivers\haP16v2k.sys
+ 2005-07-27 23:06 . 2007-04-10 09:29 797992 c:\windows\system32\drivers\ha10kx2k.sys
+ 2005-07-27 23:06 . 2007-04-10 11:00 157480 c:\windows\system32\drivers\ctsfm2k.sys
+ 2005-07-27 23:06 . 2007-04-10 10:59 126760 c:\windows\system32\drivers\ctoss2k.sys
+ 2005-07-27 23:06 . 2007-04-10 09:21 347128 c:\windows\system32\drivers\ctdvda2k.sys
+ 2005-07-27 23:06 . 2007-04-10 09:20 520488 c:\windows\system32\drivers\ctaud2k.sys
+ 2005-07-27 23:06 . 2007-04-10 09:19 511272 c:\windows\system32\drivers\ctac32k.sys
+ 2005-07-27 22:49 . 2008-04-13 20:19 146048 c:\windows\system32\dllcache\portcls.sys
+ 2004-08-04 04:15 . 2008-04-13 20:16 141056 c:\windows\system32\dllcache\ks.sys
+ 2007-04-09 17:19 . 2007-04-09 17:19 233684 c:\windows\system32\Data\CTPM002W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235142 c:\windows\system32\Data\CTPDXW.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 232158 c:\windows\system32\Data\CTP4893W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 232158 c:\windows\system32\Data\CTP4891W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 232158 c:\windows\system32\Data\CTP4890W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 233024 c:\windows\system32\Data\CTP4875W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 233024 c:\windows\system32\Data\CTP4872W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 233024 c:\windows\system32\Data\CTP4871W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 233024 c:\windows\system32\Data\CTP4870W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 233024 c:\windows\system32\Data\CTP4850W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 232158 c:\windows\system32\Data\CTP4840W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 233024 c:\windows\system32\Data\CTP4832W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 233024 c:\windows\system32\Data\CTP4831W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 233024 c:\windows\system32\Data\CTP4830W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 267599 c:\windows\system32\Data\CTP4820W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 232158 c:\windows\system32\Data\CTP4790W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 233024 c:\windows\system32\Data\CTP4780W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 233024 c:\windows\system32\Data\CTP4760W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 233024 c:\windows\system32\Data\CTP4670W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 233024 c:\windows\system32\Data\CTP4620W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 233684 c:\windows\system32\Data\CTP1140W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 268778 c:\windows\system32\Data\CTP0930W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 269402 c:\windows\system32\Data\CTP0773W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 263543 c:\windows\system32\Data\CTP0760W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 265966 c:\windows\system32\Data\CTP073AW.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 265966 c:\windows\system32\Data\CTP0730W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 345761 c:\windows\system32\Data\CTP0679W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 345761 c:\windows\system32\Data\CTP0678W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 319757 c:\windows\system32\Data\CTP0669W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 319757 c:\windows\system32\Data\CTP0610W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 319757 c:\windows\system32\Data\CTP0600W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 264060 c:\windows\system32\Data\CTP055AW.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 264388 c:\windows\system32\Data\CTP0550W.DAT
+ 2007-04-09 17:20 . 2007-04-09 17:20 321377 c:\windows\system32\Data\CTP0531W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 232116 c:\windows\system32\Data\CTP0531L.DAT
+ 2007-04-09 17:20 . 2007-04-09 17:20 321377 c:\windows\system32\Data\CTP0530W.DAT
+ 2007-04-09 17:20 . 2007-04-09 17:20 232116 c:\windows\system32\Data\CTP0530L.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 263802 c:\windows\system32\Data\CTP046CW.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 263802 c:\windows\system32\Data\CTP046BW.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 263802 c:\windows\system32\Data\CTP046AW.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 264130 c:\windows\system32\Data\CTP0469W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 264130 c:\windows\system32\Data\CTP0468W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 264130 c:\windows\system32\Data\CTP0466W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 264130 c:\windows\system32\Data\CTP0465W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 264130 c:\windows\system32\Data\CTP0464W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 264060 c:\windows\system32\Data\CTP0463W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 264130 c:\windows\system32\Data\CTP0462W.DAT
+ 2007-04-09 17:21 . 2007-04-09 17:21 264130 c:\windows\system32\Data\CTP0460W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 319757 c:\windows\system32\Data\CTP0400W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 320076 c:\windows\system32\Data\CTP0380W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 320076 c:\windows\system32\Data\CTP0360W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 320622 c:\windows\system32\Data\CTP0359W.DAT
+ 2005-07-27 23:06 . 2007-04-09 17:19 321552 c:\windows\system32\Data\CTP0358W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 322194 c:\windows\system32\Data\CTP0355W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 321529 c:\windows\system32\Data\CTP0352W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 323640 c:\windows\system32\Data\CTP0350W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 318254 c:\windows\system32\Data\CTP0320W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 318254 c:\windows\system32\Data\CTP0280W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 318341 c:\windows\system32\Data\CTP0249W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 319730 c:\windows\system32\Data\CTP0246W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 318254 c:\windows\system32\Data\CTP0245W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 319730 c:\windows\system32\Data\CTP0244W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 318800 c:\windows\system32\Data\CTP0243W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 319730 c:\windows\system32\Data\CTP0242W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 319070 c:\windows\system32\Data\CTP0240W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 275517 c:\windows\system32\Data\CTP0238W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 277159 c:\windows\system32\Data\CTP0232W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 275816 c:\windows\system32\Data\CTP0231W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 277159 c:\windows\system32\Data\CTP0230W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 236189 c:\windows\system32\Data\CTP0222W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 236189 c:\windows\system32\Data\CTP0221W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 276738 c:\windows\system32\Data\CTP0192W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 275169 c:\windows\system32\Data\CTP0191W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235142 c:\windows\system32\Data\CTP017HW.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235142 c:\windows\system32\Data\CTP017GW.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235142 c:\windows\system32\Data\CTP017FW.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235142 c:\windows\system32\Data\CTP017EW.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235142 c:\windows\system32\Data\CTP017DW.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235142 c:\windows\system32\Data\CTP017CW.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235142 c:\windows\system32\Data\CTP017BW.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235142 c:\windows\system32\Data\CTP017AW.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235259 c:\windows\system32\Data\CTP0170W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 276738 c:\windows\system32\Data\CTP0162W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 275427 c:\windows\system32\Data\CTP0161W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 232158 c:\windows\system32\Data\CTP0150W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235259 c:\windows\system32\Data\CTP0105W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235259 c:\windows\system32\Data\CTP0103W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235259 c:\windows\system32\Data\CTP0102W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235259 c:\windows\system32\Data\CTP0101W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235259 c:\windows\system32\Data\CTP0100W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 274587 c:\windows\system32\Data\CTP0095W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 276738 c:\windows\system32\Data\CTP0092W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 275169 c:\windows\system32\Data\CTP0091W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 276738 c:\windows\system32\Data\CTP0090W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 289409 c:\windows\system32\Data\CTP0073W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 289409 c:\windows\system32\Data\CTP0070W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235259 c:\windows\system32\Data\CTP0061W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235259 c:\windows\system32\Data\CTP0060W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 374041 c:\windows\system32\Data\CTEDSPW.DAT
+ 2007-04-09 17:20 . 2007-04-09 17:20 270927 c:\windows\system32\Data\CTEDSPUW.DAT
+ 2007-04-09 17:20 . 2007-04-09 17:20 270927 c:\windows\system32\Data\CTEDSPTW.DAT
+ 2007-04-09 17:20 . 2007-04-09 17:20 330665 c:\windows\system32\Data\CTEDSPPW.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 294775 c:\windows\system32\Data\CTEDSPLW.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 294775 c:\windows\system32\Data\CTEDSPKW.DAT
+ 2007-04-09 17:20 . 2007-04-09 17:20 348425 c:\windows\system32\Data\CTEDSPHW.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 374041 c:\windows\system32\Data\CTEDSP2W.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 201502 c:\windows\system32\Data\CTEAPSW.DAT
+ 2007-04-09 17:19 . 2007-04-09 17:19 235142 c:\windows\system32\Data\CT0060W.DAT
+ 2007-04-09 17:29 . 2007-04-09 17:29 934400 c:\windows\system32\CTxfispi.exe
+ 2007-04-09 17:19 . 2007-04-09 17:19 313207 c:\windows\system32\ctstatic.dat
+ 2005-06-30 12:24 . 2005-06-30 12:24 121856 c:\windows\system32\ctsfinst.dll
+ 2005-07-27 23:06 . 2007-04-12 13:10 560384 c:\windows\system32\CTSBLFX.DLL
+ 2005-07-27 22:43 . 2007-04-09 17:19 274587 c:\windows\system32\ctsbas2w.dat
+ 2005-07-27 23:06 . 2007-04-09 17:21 137728 c:\windows\system32\ctosuser.dll
+ 2005-07-27 23:06 . 2007-04-09 17:24 110080 c:\windows\system32\ctemupia.dll
+ 2007-04-12 13:10 . 2007-04-12 13:10 323328 c:\windows\system32\CTEDSPSY.DLL
+ 2007-04-12 13:10 . 2007-04-12 13:10 128768 c:\windows\system32\CTEDSPIO.DLL
+ 2007-04-12 13:10 . 2007-04-12 13:10 280320 c:\windows\system32\CTEDSPFX.DLL
+ 2007-04-12 13:10 . 2007-04-12 13:10 168192 c:\windows\system32\CTEAPSFX.DLL
+ 2007-04-09 17:33 . 2007-04-09 17:33 163328 c:\windows\system32\ctdvinst.dll
+ 2005-07-27 23:06 . 2007-04-09 17:32 131072 c:\windows\system32\ctdcifce.dll
+ 2005-07-27 23:06 . 2007-04-09 17:32 335872 c:\windows\system32\ctdc0001.dll
+ 2005-07-27 23:06 . 2007-04-09 17:32 227840 c:\windows\system32\ctdc0000.dll
+ 2005-07-27 22:43 . 2007-04-09 17:21 149838 c:\windows\system32\ctbas2w.dat
+ 2005-07-27 23:06 . 2007-04-12 13:10 546048 c:\windows\system32\CTAUDFX.DLL
+ 2007-04-09 16:25 . 2007-04-09 16:25 444928 c:\windows\system32\CTAPO32.dll
+ 2007-04-12 13:10 . 2007-04-12 13:10 164608 c:\windows\system32\CT20XUT.DLL
+ 2007-04-09 17:22 . 2007-04-09 17:22 205312 c:\windows\system32\ct_oal.dll
+ 2007-04-12 13:10 . 2007-04-12 13:10 105728 c:\windows\system32\APOMgrH.dll
+ 2009-07-31 12:54 . 2009-07-31 12:54 132472 c:\windows\system32\Adobe\Shockwave 11\SYMCCHECKER.DLL
+ 2009-07-31 13:26 . 2009-07-31 13:26 114688 c:\windows\system32\Adobe\Shockwave 11\SwInit.exe
+ 2009-07-31 13:40 . 2009-07-31 13:40 468408 c:\windows\system32\Adobe\Shockwave 11\SwHelper_1151601.exe
+ 2009-07-31 13:28 . 2009-07-31 13:28 446464 c:\windows\system32\Adobe\Shockwave 11\Proj.dll
+ 2009-07-31 13:26 . 2009-07-31 13:26 372736 c:\windows\system32\Adobe\Shockwave 11\Plugin.dll
+ 2009-07-31 12:54 . 2009-07-31 12:54 714752 c:\windows\system32\Adobe\Shockwave 11\gi.dll
+ 2009-07-31 13:25 . 2009-07-31 13:25 614400 c:\windows\system32\Adobe\Shockwave 11\Control.dll
+ 2009-07-31 13:41 . 2009-07-31 13:41 206264 c:\windows\system32\Adobe\Director\SwDir.dll
+ 2009-07-31 13:27 . 2009-07-31 13:27 131072 c:\windows\system32\Adobe\Director\np32dsw.dll
+ 2009-07-16 11:00 . 2009-07-16 11:00 1490944 c:\windows\system32\Macromed\Shockwave 10\dirapiX.dll
+ 2007-04-10 11:03 . 2007-04-10 11:03 1164072 c:\windows\system32\drivers\ha20x2k.sys
+ 2007-04-12 13:10 . 2007-04-12 13:10 1317632 c:\windows\system32\CTEXFIFX.DLL
+ 2009-07-31 13:00 . 2009-07-31 13:00 1011712 c:\windows\system32\Adobe\Shockwave 11\iml32.dll
+ 2009-07-31 12:54 . 2009-07-31 12:54 1886320 c:\windows\system32\Adobe\Shockwave 11\gt.exe
+ 2009-07-31 13:04 . 2009-07-31 13:04 1798144 c:\windows\system32\Adobe\Shockwave 11\dirapi.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DellSupport"="c:\program files\Dell Support\DSAgnt.exe" [2005-05-15 332800]
"WAB"="c:\documents and settings\Administrator\Application Data\Macromedia\Common\102d407419.exe" [2009-11-03 16384]
"rundll32.exe"="" [BU]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2004-08-10 59392]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2005-04-25 139264]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-04-15 344064]
"CTDVDDET"="c:\program files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDET.EXE" [2003-06-18 45056]
"DLBXCATS"="c:\windows\System32\spool\DRIVERS\W32X86\3\DLBXtime.dll" [2004-12-07 69632]
"dlbxmon.exe"="c:\program files\Dell Photo AIO Printer 962\dlbxmon.exe" [2005-01-18 425984]
"HostManager"="c:\program files\Common Files\AOL\1134621263\ee\AOLSoftware.exe" [2007-10-08 41824]
"LogitechCommunicationsManager"="c:\program files\Common Files\Logitech\LComMgr\Communications_Helper.exe" [2006-10-31 284184]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2007-12-11 286720]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-09 63712]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 221184]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2009-06-01 1468296]
"SigmatelSysTrayApp"="stsystra.exe" - c:\windows\stsystra.exe [2005-03-23 339968]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2005-7-27 24576]
QuickBooks Update Agent.lnk - c:\program files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe [2004-11-11 806912]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSetActiveDesktop"= 1 (0x1)
"NoActiveDesktopChanges"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\reset5c]
reset5c.dll [BU]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"wave1"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"midi1"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"mixer1"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"wave2"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"midi2"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"mixer2"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"aux1"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll
"aux2"=c:\docume~1\ADMINI~1\APPLIC~1\MACROM~1\Common\102d40741.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"DisableNotifications"= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"=
"c:\\Program Files\\America Online 9.0\\waol.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Common Files\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"=
"c:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"c:\\Program Files\\Common Files\\AOL\\1134621263\\ee\\aolsoftware.exe"=
"c:\\Program Files\\Common Files\\AOL\\1134621263\\ee\\aim6.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
"c:\\Program Files\\Common Files\\AOL\\System Information\\sinf.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\WINDOWS\\system32\\taskmgr.exe"=
"%windir%\\system32\\lsass.exe"=
"c:\\Program Files\\Disney\\Disney Online\\PiratesOnline\\Launcher1.exe"=
"c:\\Program Files\\Disney\\Disney Online\\PiratesOnline\\Pirates.exe"=
"c:\\Program Files\\Disney\\Disney Online\\PiratesOnline\\Pirates_Online.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009

S3 aswArKrn;aswArKrn;\??\c:\docume~1\ADMINI~1\LOCALS~1\Temp\aswArKrn.sys --> c:\docume~1\ADMINI~1\LOCALS~1\Temp\aswArKrn.sys [?]
S3 CDAVFS;CDAVFS;c:\windows\system32\drivers\CDAVFS.sys [8/6/2009 7:09 PM 67424]

--- Other Services/Drivers In Memory ---

*Deregistered* - mbr
*Deregistered* - PROCEXP113
.
Contents of the 'Scheduled Tasks' folder

2009-10-28 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 19:57]
.
.
------- Supplementary Scan -------
.
uStart Page = [You must be registered and logged in to see this link.]
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [You must be registered and logged in to see this link.]
Rootkit scan 2009-11-02 20:38
Windows 5.1.2600 Service Pack 3 NTFS

scanning hȋdden processes ...

scanning hȋdden autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
DLBXCATS = rundll32 c:\windows\System32\spool\DRIVERS\W32X86\3\DLBXtime.dll,_RunDLLEntry@16???????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????

scanning hȋdden files ...

scan completed successfully
hȋdden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,44,5c,8d,03,37,4c,d2,4d,aa,20,0e,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,44,5c,8d,03,37,4c,d2,4d,aa,20,0e,\

[HKEY_USERS\S-1-5-21-3835334267-1934715317-2934981272-500\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (Administrator)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,a9,9c,5d,7b,36,8f,3b,41,b2,20,90,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,a9,9c,5d,7b,36,8f,3b,41,b2,20,90,\

[HKEY_USERS\S-1-5-21-3835334267-1934715317-2934981272-500\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{8C1A580A-4BAD-8BC4-F5E5-BF4C87F6657D}*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"pamofejndooopfiopnnejpgkhebaepfa"=hex:6b,61,68,6c,6a,6e,64,6c,66,6f,70,63,65,
6b,69,63,63,66,66,65,6b,69,00,00
"oacpjgecpodccglbknncijmgeniaed"=hex:6b,61,68,6c,6a,6e,64,6c,66,6f,70,63,65,6b,
69,63,63,66,66,65,6b,69,00,00
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(796)
c:\windows\system32\wininet.dll

- - - - - - - > 'explorer.exe'(3472)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
.
Completion time: 2009-11-03 20:41
ComboFix-quarantined-files.txt 2009-11-03 01:41
ComboFix2.txt 2009-11-02 23:52
ComboFix3.txt 2009-11-02 06:03
ComboFix4.txt 2009-11-01 00:02
ComboFix5.txt 2009-11-03 01:08

Pre-Run: 213,154,615,296 bytes free
Post-Run: 213,219,586,048 bytes free

- - End Of File - - DC294981E78964688B83903049CA6542

HoldR4D

Rookie Surfer
Rookie Surfer

Posts: 50
Joined: 2009-10-03
Operating System: windows XP

View user profile

Back to top Go down

Re: cyber defender still in system and cant uninstall.

Post by DragonMaster Jay on Mon 02 Nov 2009, 9:21 pm

I think CyberDefender has vanished.

Please download Malwarebytes Anti-Malware from [You must be registered and logged in to see this link.].

Double Click mbam-setup.exe to install the application.

  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Full Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  • Please save the log to a location you will remember.
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the entire report in your next reply.

Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.

______________________________


[You must be registered and logged in to see this link.]

[You must be registered and logged in to see this link.]

[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.]

DragonMaster Jay

Moderator | Tech Staff
Moderator | Tech Staff

Posts: 2126
Joined: 2009-09-06
Operating System: Windows 7 Ultimate 32-Bit

View user profile http://www.twitter.com/dragonmasterjay

Back to top Go down

Page 1 of 4 1, 2, 3, 4  Next

View previous topic View next topic Back to top

Post new topic   Reply to topic

GeekPolice :: Security :: Virus, Spyware & Malware Removal

Permissions of this forum:
You cannot reply to topics in this forum