Hi chryssi,
1] My brother has a firewall setup on the network we use at home. I also have Windows Firewall that I use if I bring my laptop elsewhere to use.
2] I emptied the Symantec Quarantine files successfully
3] I didn't find any of the 4 folders you listed.
4] Spysweeper and Webroot weren't on the list of programs.
5] I ran ComboFix again and here is the new report:
ComboFix 07-10-07.2 - Charlene Chan 2007-10-09 23:36:01.2 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.159 [GMT -7:00]
Running from: C:\Documents and Settings\Charlene Chan\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\Charlene Chan\Desktop\CFScript.txt
* Created a new restore point
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\SYSTEM32\vMW10a
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
-------\LEGACY_SSFS0BB8
-------\SSFS0BB8
((((((((((((((((((((((((( Files Created from 2007-09-10 to 2007-10-10 )))))))))))))))))))))))))))))))
.
2007-10-09 01:07 <DIR> d-------- C:\Documents and Settings\Charlene Chan\Application Data\Move Networks
2007-10-07 14:04 51,200 --a------ C:\WINDOWS\NirCmd.exe
2007-10-06 19:46 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Symantec
2007-10-06 19:46 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Jasc Software Inc
2007-10-06 19:23 10,872 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\AvgAsCln.sys
2007-10-06 02:21 23,864 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\sskbfd.sys
2007-10-06 02:21 20,280 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\SSFS0BB8.sys
2007-10-06 02:12 164 --a------ C:\install.dat
2007-10-05 21:50 <DIR> d-------- C:\Documents and Settings\LocalService\Application Data\Help
2007-10-05 00:32 <DIR> d-------- C:\Documents and Settings\Charlene Chan\Application Data\Yahoo!
2007-10-05 00:32 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2007-10-05 00:23 <DIR> d--h----- C:\WINDOWS\msdownld.tmp
2007-10-05 00:23 <DIR> d-------- C:\Program Files\Yahoo!
2007-09-29 16:38 <DIR> d-------- C:\Program Files\Lavasoft
2007-09-29 16:38 <DIR> d-------- C:\Documents and Settings\Charlene Chan\Application Data\Lavasoft
2007-09-29 15:49 <DIR> d-------- C:\Documents and Settings\Charlene Chan\Application Data\SuperAdBlocker.com
2007-09-29 15:48 <DIR> d-------- C:\Program Files\SuperAdBlocker.com
2007-09-29 15:47 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-09-28 19:53 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\logs
2007-09-27 01:20 <DIR> d-------- C:\Documents and Settings\Charlene Chan\Application Data\UseNeXT
2007-09-27 00:32 <DIR> d-------- C:\Documents and Settings\Charlene Chan\Application Data\Azureus
2007-09-27 00:32 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Azureus
2007-09-27 00:24 <DIR> d-------- C:\Program Files\Azureus
2007-09-26 23:50 <DIR> d-------- C:\Documents and Settings\Charlene Chan\Application Data\DivX
2007-09-26 23:34 9,464 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\cdralw2k.sys
2007-09-26 23:34 9,336 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\cdr4_xp.sys
2007-09-26 23:34 129,784 --a------ C:\WINDOWS\SYSTEM32\pxafs.dll
2007-09-26 23:34 120,056 --a------ C:\WINDOWS\SYSTEM32\pxcpyi64.exe
2007-09-26 23:34 118,520 --a------ C:\WINDOWS\SYSTEM32\pxinsi64.exe
2007-09-26 15:47 0 --a------ C:\WINDOWS\SYSTEM32\SBRC.dat
2007-09-26 15:47 0 --a------ C:\WINDOWS\SYSTEM32\SBFC.dat
2007-09-26 13:51 15,544 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\sbhr.sys
2007-09-26 13:50 <DIR> d-------- C:\Documents and Settings\Charlene Chan\Application Data\Sunbelt Software
2007-09-26 13:50 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Sunbelt Software
2007-09-26 13:48 <DIR> d-------- C:\Program Files\Sunbelt Software
2007-09-17 11:23 823,296 --a------ C:\WINDOWS\SYSTEM32\divx_xx0c.dll
2007-09-17 11:23 823,296 --a------ C:\WINDOWS\SYSTEM32\divx_xx07.dll
2007-09-17 11:22 802,816 --a------ C:\WINDOWS\SYSTEM32\divx_xx11.dll
2007-09-17 11:22 739,840 --a------ C:\WINDOWS\SYSTEM32\DivX.dll
2007-09-14 10:57 1,411 --a------ C:\WINDOWS\mozver.dat
2007-09-12 16:46 <DIR> d-------- C:\Program Files\Ventrilo
2007-09-11 16:14 156,992 --a------ C:\WINDOWS\SYSTEM32\DivXCodecVersionChecker.exe
2007-09-10 17:50 <DIR> d-------- C:\Documents and Settings\Charlene Chan\Application Data\acccore
2007-09-10 17:49 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\AOL OCP
2007-09-10 17:48 <DIR> d-------- C:\Program Files\AIM6
2007-09-10 17:47 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\AOL Downloads
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-10-09 11:10 --------- d-------- C:\Documents and Settings\All Users\Application Data\Viewpoint
2007-10-08 22:42 --------- d-------- C:\Program Files\FlashFXP
2007-09-26 23:34 --------- d-------- C:\Program Files\DivX
2007-09-13 18:51 --------- d-------- C:\Program Files\PokerStars
2007-09-10 17:49 --------- d-------- C:\Documents and Settings\All Users\Application Data\AOL
2007-09-10 17:48 --------- d-------- C:\Program Files\Common Files\AOL
2007-08-15 15:33 43528 --a------ C:\WINDOWS\system32\drivers\pxhelp20.sys
.
((((((((((((((((((((((((((((( snapshot@2007-10-07_14.22.57.41 )))))))))))))))))))))))))))))))))))))))))
.
----a-w 14,048 2007-03-06 01:22:36 C:\WINDOWS\$hf_mig$\KB937143-IE7\spmsg.dll
----a-w 213,216 2007-03-06 01:22:41 C:\WINDOWS\$hf_mig$\KB937143-IE7\spuninst.exe
----a-w 124,928 2007-06-27 14:39:42 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\advpack.dll
----a-w 132,608 2007-06-27 14:39:42 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\extmgr.dll
----a-w 63,488 2007-06-27 09:16:27 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\ie4uinit.exe
----a-w 153,088 2007-06-27 14:39:42 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\ieakeng.dll
----a-w 230,400 2007-06-27 14:39:43 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\ieaksie.dll
----a-w 161,792 2007-06-27 07:07:01 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\ieakui.dll
----a-w 2,455,488 2007-04-17 09:32:38 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\ieapfltr.dat
----a-w 383,488 2007-06-27 14:39:43 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\ieapfltr.dll
----a-w 384,512 2007-06-27 14:39:44 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\iedkcs32.dll
----a-w 6,059,008 2007-06-27 14:39:51 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\ieframe.dll
----a-w 44,544 2007-06-27 14:39:51 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\iernonce.dll
----a-w 267,776 2007-06-27 14:39:52 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\iertutil.dll
----a-w 13,824 2007-06-27 09:16:27 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\ieudinit.exe
----a-w 625,152 2007-06-27 09:16:52 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\iexplore.exe
----a-w 27,648 2007-06-27 14:39:54 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\jsproxy.dll
----a-w 459,264 2007-06-27 14:39:55 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\msfeeds.dll
----a-w 52,224 2007-06-27 14:39:55 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\msfeedsbs.dll
----a-w 3,584,000 2007-07-18 21:09:49 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\mshtml.dll
----a-w 477,696 2007-06-27 14:40:00 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\mshtmled.dll
----a-w 193,024 2007-06-27 14:40:01 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\msrating.dll
----a-w 671,232 2007-06-27 14:40:01 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\mstime.dll
----a-w 102,400 2007-06-27 14:40:01 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\occache.dll
----a-w 105,984 2007-06-27 14:40:01 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\url.dll
----a-w 1,154,048 2007-06-27 14:40:02 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\urlmon.dll
----a-w 232,960 2007-06-27 14:40:02 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\webcheck.dll
----a-w 824,320 2007-06-27 14:40:03 C:\WINDOWS\$hf_mig$\KB937143-IE7\SP2QFE\wininet.dll
----a-w 22,752 2007-03-06 01:22:34 C:\WINDOWS\$hf_mig$\KB937143-IE7\update\spcustom.dll
----a-w 716,000 2007-03-06 01:22:59 C:\WINDOWS\$hf_mig$\KB937143-IE7\update\update.exe
----a-w 371,424 2007-03-06 01:23:51 C:\WINDOWS\$hf_mig$\KB937143-IE7\update\updspapi.dll
----a-w 14,048 2007-03-06 01:22:36 C:\WINDOWS\$hf_mig$\KB938127-IE7\spmsg.dll
----a-w 213,216 2007-03-06 01:22:41 C:\WINDOWS\$hf_mig$\KB938127-IE7\spuninst.exe
----a-w 765,952 2007-07-12 23:28:55 C:\WINDOWS\$hf_mig$\KB938127-IE7\SP2QFE\vgx.dll
----a-w 22,752 2007-03-06 01:22:34 C:\WINDOWS\$hf_mig$\KB938127-IE7\update\spcustom.dll
----a-w 716,000 2007-03-06 01:22:59 C:\WINDOWS\$hf_mig$\KB938127-IE7\update\update.exe
----a-w 371,424 2007-03-06 01:23:51 C:\WINDOWS\$hf_mig$\KB938127-IE7\update\updspapi.dll
----a-w 68,608 2007-10-08 03:32:40 C:\WINDOWS\ASSEMBLY\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
----a-w 72,192 2007-10-08 03:33:00 C:\WINDOWS\ASSEMBLY\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
----a-w 4,308,992 2007-10-08 03:33:02 C:\WINDOWS\ASSEMBLY\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
----a-w 2,902,016 2007-10-08 03:32:54 C:\WINDOWS\ASSEMBLY\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
----a-w 482,304 2007-10-08 03:33:06 C:\WINDOWS\ASSEMBLY\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
----a-w 258,048 2007-10-08 03:32:29 C:\WINDOWS\ASSEMBLY\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
----a-w 114,176 2007-10-08 03:32:29 C:\WINDOWS\ASSEMBLY\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
----a-w 260,096 2007-10-08 03:33:18 C:\WINDOWS\ASSEMBLY\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
----a-w 5,156,864 2007-10-08 03:32:46 C:\WINDOWS\ASSEMBLY\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
----a-w 10,752 2007-10-08 03:32:37 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
----a-w 507,904 2007-10-08 03:32:28 C:\WINDOWS\ASSEMBLY\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
----a-w 13,312 2007-10-08 03:32:32 C:\WINDOWS\ASSEMBLY\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
----a-w 8,192 2007-10-08 03:32:57 C:\WINDOWS\ASSEMBLY\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
----a-w 36,864 2007-10-08 03:32:58 C:\WINDOWS\ASSEMBLY\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
----a-w 5,632 2007-10-08 03:32:59 C:\WINDOWS\ASSEMBLY\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
----a-w 413,696 2007-10-08 03:32:34 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
----a-w 36,864 2007-10-08 03:32:35 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
----a-w 647,168 2007-10-08 03:32:36 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
----a-w 73,728 2007-10-08 03:32:37 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
----a-w 749,568 2007-10-08 03:32:33 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
----a-w 667,648 2007-10-08 03:33:20 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
----a-w 372,736 2007-10-08 03:33:21 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
----a-w 110,592 2007-10-08 03:33:22 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
----a-w 28,672 2007-10-08 03:32:24 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
----a-w 5,632 2007-10-08 03:33:23 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
----a-w 32,768 2007-10-08 03:32:25 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
----a-w 12,800 2007-10-08 03:32:27 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
----a-w 7,168 2007-10-08 03:32:26 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
----a-w 110,592 2007-10-08 03:33:11 C:\WINDOWS\ASSEMBLY\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
----a-w 2,940,928 2007-10-08 03:33:14 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
----a-w 413,696 2007-10-08 03:33:13 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
----a-w 81,920 2007-10-08 03:32:41 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
----a-w 716,800 2007-10-08 03:33:07 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
----a-w 888,832 2007-10-08 03:32:31 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
----a-w 5,001,216 2007-10-08 03:32:56 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
----a-w 397,312 2007-10-08 03:32:42 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
----a-w 188,416 2007-10-08 03:32:43 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
----a-w 577,536 2007-10-08 03:33:16 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
----a-w 81,920 2007-10-08 03:32:44 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
----a-w 372,736 2007-10-08 03:33:08 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
----a-w 258,048 2007-10-08 03:33:17 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
----a-w 299,008 2007-10-08 03:33:09 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
----a-w 131,072 2007-10-08 03:33:10 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
----a-w 258,048 2007-10-08 03:32:39 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
----a-w 114,688 2007-10-08 03:32:45 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
----a-w 835,584 2007-10-08 03:33:19 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
----a-w 86,016 2007-10-08 03:32:47 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
----a-w 823,296 2007-10-08 03:32:49 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
----a-w 5,152,768 2007-10-08 03:32:50 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
----a-w 2,027,520 2007-10-08 03:32:52 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
----a-w 26,624 2007-10-08 04:09:32 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\Accessibility\b87cac4cd452555353e79c0dd35ee059\Accessibility.ni.dll
----a-w 888,832 2007-10-08 04:09:41 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\AspNetMMCExt\c787f76d275c78b8140cf2087f574624\AspNetMMCExt.ni.dll
----a-w 237,568 2007-10-08 04:09:43 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\CustomMarshalers\0d302e7e15dfc209a3b35ba1afc0f02c\CustomMarshalers.ni.dll
----a-w 15,360 2007-10-08 04:09:42 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\dfsvc\7c100b4f949aa7dcf39060f04e8847f5\dfsvc.ni.exe
----a-w 880,640 2007-10-08 04:09:45 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\15a9cceaf845e0927b9bd99eb92df46e\Microsoft.Build.Engine.ni.dll
----a-w 81,920 2007-10-08 04:09:46 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\5a434410dc93fbc22b2734f53f0e4209\Microsoft.Build.Framework.ni.dll
----a-w 1,687,552 2007-10-08 04:09:51 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\Microsoft.Build.Tas#\c0f5161088ee63b352c201138408d2b1\Microsoft.Build.Tasks.ni.dll
----a-w 163,840 2007-10-08 04:09:52 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\Microsoft.Build.Uti#\05d8849516bdbe5adf9589dfe3136a00\Microsoft.Build.Utilities.ni.dll
----a-w 1,720,320 2007-10-08 04:09:56 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\e763d37ad60b537f696276ba6529439f\Microsoft.VisualBasic.ni.dll
----a-w 11,304,960 2007-10-08 03:36:07 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\mscorlib\b9808ceba5eacb2e218bdb142bb37db0\mscorlib.ni.dll
----a-w 8,130,560 2007-10-08 03:36:38 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System\e649415a3b98099d781ccbc76bfb5486\System.ni.dll
----a-w 1,003,520 2007-10-08 04:09:58 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Configuration\41b7679b4fb29ba2008773ccf812d403\System.Configuration.ni.dll
----a-w 6,676,480 2007-10-08 03:37:05 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Data\3096a6bfc55cd27bd5cdc0f1be2c939e\System.Data.ni.dll
----a-w 1,724,416 2007-10-08 04:10:01 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Deployment\e271f72fb70ab46ba7d78136895d3d6f\System.Deployment.ni.dll
----a-w 10,702,848 2007-10-08 03:37:37 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Design\b6e87e9a4cc8b89b23020a9da85a13b1\System.Design.ni.dll
----a-w 512,000 2007-10-08 04:17:31 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.DirectorySer#\11b0d0e15723d11612b24b2e339900a7\System.DirectoryServices.Protocols.ni.dll
----a-w 1,216,512 2007-10-08 04:17:30 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.DirectorySer#\75dd1ebb2adaa571e4928f077875bc2b\System.DirectoryServices.ni.dll
----a-w 1,601,536 2007-10-08 03:37:41 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Drawing\0468178ccfd5f2f90855dcc6b6d83c88\System.Drawing.ni.dll
----a-w 229,376 2007-10-08 03:37:43 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Drawing.Desi#\e20e093dcd57bfba07e030237b5a0f3c\System.Drawing.Design.ni.dll
----a-w 659,456 2007-10-08 04:17:34 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.EnterpriseSe#\1617c2e9f16db283c5542030bc83badb\System.EnterpriseServices.ni.dll
----a-w 294,912 2007-10-08 04:17:34 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.EnterpriseSe#\1617c2e9f16db283c5542030bc83badb\System.EnterpriseServices.Wrapper.dll
----a-w 729,088 2007-10-08 04:17:36 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Security\00c266370dd4fe79341bb1600b4e1369\System.Security.ni.dll
----a-w 684,032 2007-10-08 04:17:38 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Transactions\95f6f89132d67bf0ab4d576c52554639\System.Transactions.ni.dll
----a-w 12,185,600 2007-10-08 04:25:25 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Web\e1ca9bccdce3386a832eb7000a23009c\System.Web.ni.dll
----a-w 2,306,048 2007-10-08 04:25:31 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Web.Mobile\544615bd3772bc89c434e25a2dd24917\System.Web.Mobile.ni.dll
----a-w 237,568 2007-10-08 04:25:32 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Web.RegularE#\9ca371715d1179580db79e86ca00be48\System.Web.RegularExpressions.ni.dll
----a-w 1,941,504 2007-10-08 04:25:36 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Web.Services\77ae03295efe60221b20e677c6e96f85\System.Web.Services.ni.dll
----a-w 13,107,200 2007-10-08 03:38:09 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Windows.Forms\fdf7de3618078a8da24b081cf48b1e02\System.Windows.Forms.ni.dll
----a-w 5,623,808 2007-10-08 03:38:27 C:\WINDOWS\ASSEMBLY\NativeImages_v2.0.50727_32\System.Xml\1a8167c8460c05fa03cdedcd82c9a280\System.Xml.ni.dll
-c----w 123,904 2006-11-07 10:26:24 C:\WINDOWS\ie7updates\KB937143-IE7\advpack.dll
-c----w 131,584 2006-11-08 04:03:36 C:\WINDOWS\ie7updates\KB937143-IE7\extmgr.dll
-c----w 54,784 2006-11-07 10:26:28 C:\WINDOWS\ie7updates\KB937143-IE7\ie4uinit.exe
-c----w 152,064 2006-11-07 10:26:56 C:\WINDOWS\ie7updates\KB937143-IE7\ieakeng.dll
-c----w 229,376 2006-11-07 10:27:02 C:\WINDOWS\ie7updates\KB937143-IE7\ieaksie.dll
-c----w 161,792 2006-11-07 10:25:14 C:\WINDOWS\ie7updates\KB937143-IE7\ieakui.dll
-c----w 2,451,824 2006-09-06 06:01:26 C:\WINDOWS\ie7updates\KB937143-IE7\ieapfltr.dat
-c----w 380,928 2006-10-17 18:27:56 C:\WINDOWS\ie7updates\KB937143-IE7\ieapfltr.dll
-c----w 382,976 2006-11-07 10:27:10 C:\WINDOWS\ie7updates\KB937143-IE7\iedkcs32.dll
-c----w 6,049,280 2006-11-08 04:03:36 C:\WINDOWS\ie7updates\KB937143-IE7\ieframe.dll
-c----w 43,008 2006-11-07 10:26:28 C:\WINDOWS\ie7updates\KB937143-IE7\iernonce.dll
-c----w 266,752 2006-10-17 18:57:20 C:\WINDOWS\ie7updates\KB937143-IE7\iertutil.dll
-c----w 13,312 2006-11-07 10:26:32 C:\WINDOWS\ie7updates\KB937143-IE7\ieudinit.exe
-c----w 622,080 2006-10-17 19:04:40 C:\WINDOWS\ie7updates\KB937143-IE7\iexplore.exe
-c----w 27,136 2006-11-08 04:03:36 C:\WINDOWS\ie7updates\KB937143-IE7\jsproxy.dll
-c----w 458,752 2006-11-08 04:03:36 C:\WINDOWS\ie7updates\KB937143-IE7\msfeeds.dll
-c----w 50,688 2006-11-08 04:03:36 C:\WINDOWS\ie7updates\KB937143-IE7\msfeedsbs.dll
-c----w 3,577,856 2006-11-08 04:03:36 C:\WINDOWS\ie7updates\KB937143-IE7\mshtml.dll
-c----w 475,648 2006-11-08 04:03:36 C:\WINDOWS\ie7updates\KB937143-IE7\mshtmled.dll
-c----w 192,000 2006-10-17 19:05:10 C:\WINDOWS\ie7updates\KB937143-IE7\msrating.dll
-c----w 670,720 2006-11-08 04:03:36 C:\WINDOWS\ie7updates\KB937143-IE7\mstime.dll
-c----w 101,376 2006-10-17 19:04:46 C:\WINDOWS\ie7updates\KB937143-IE7\occache.dll
-c----w 105,984 2006-10-17 19:05:22 C:\WINDOWS\ie7updates\KB937143-IE7\url.dll
-c----w 1,162,240 2006-11-08 04:03:36 C:\WINDOWS\ie7updates\KB937143-IE7\urlmon.dll
-c----w 231,424 2006-11-08 04:03:36 C:\WINDOWS\ie7updates\KB937143-IE7\webcheck.dll
-c----w 818,688 2006-11-08 04:03:36 C:\WINDOWS\ie7updates\KB937143-IE7\wininet.dll
-c----w 213,216 2007-03-06 01:22:41 C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe
-c----w 371,424 2007-03-06 01:23:51 C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\updspapi.dll
-c----w 765,952 2006-11-08 04:03:36 C:\WINDOWS\ie7updates\KB938127-IE7\vgx.dll
-c----w 213,216 2007-03-06 01:22:41 C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe
-c----w 371,424 2007-03-06 01:23:51 C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\updspapi.dll
----a-w 58,712 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
----a-w 507,904 2007-04-13 10:20:52 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\AspNetMMCExt.dll
----a-w 10,752 2007-04-13 10:20:52 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_filter.dll
----a-w 8,192 2007-04-13 10:20:52 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll
----a-w 23,552 2007-04-13 10:20:52 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
----a-w 75,264 2007-04-13 10:20:50 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_rc.dll
----a-w 32,608 2007-04-13 10:20:52 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe
----a-w 33,632 2007-04-13 10:20:52 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
----a-w 32,600 2007-04-13 10:20:52 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
----a-w 88,576 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\CORPerfMonExt.dll
----a-w 5,120 2007-04-13 10:20:58 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe
----a-w 9,728 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\IEExec.exe
----a-w 228,688 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\ilasm.exe
----a-w 28,672 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
----a-w 413,696 2007-04-13 10:21:10 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Engine.dll
----a-w 647,168 2007-04-13 10:21:10 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Tasks.dll
----a-w 749,568 2007-04-13 10:21:08 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft.JScript.dll
----a-w 87,040 2007-04-13 10:20:52 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\MmcAspExt.dll
----a-w 802,304 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
----a-w 36,864 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorie.dll
----a-w 326,656 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
----a-w 4,308,992 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
----a-w 102,912 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
----a-w 227,328 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvc.dll
----a-w 68,952 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
----a-w 5,634,048 2007-04-13 10:21:12 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
----a-w 99,152 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\ngen.exe
----a-w 15,360 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\normalization.dll
----a-w 136,192 2007-04-13 10:21:12 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\peverify.dll
----a-w 382,464 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\SOS.dll
----a-w 110,592 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\sysglobl.dll
----a-w 413,696 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.configuration.dll
----a-w 2,902,016 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Data.dll
----a-w 482,304 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Data.OracleClient.dll
----a-w 716,800 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Data.SqlXml.dll
----a-w 888,832 2007-04-13 10:20:58 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Deployment.dll
----a-w 5,001,216 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Design.dll
----a-w 188,416 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.Protocols.dll
----a-w 2,940,928 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.dll
----a-w 577,536 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll
----a-w 258,048 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
----a-w 47,616 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Thunk.dll
----a-w 114,176 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Wrapper.dll
----a-w 372,736 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Management.dll
----a-w 299,008 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Remoting.dll
----a-w 260,096 2007-04-13 10:21:18 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Transactions.dll
----a-w 5,156,864 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
----a-w 5,152,768 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
----a-w 2,027,520 2007-04-13 10:21:16 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.XML.dll
----a-w 1,166,672 2007-04-13 10:21:28 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vbc.exe
----a-w 1,330,688 2007-04-13 10:20:50 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\VsaVb7rt.dll
----a-w 406,016 2007-04-13 10:20:52 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\webengine.dll
----a-w 124,928 2007-06-27 14:34:51 C:\WINDOWS\SYSTEM32\advpack.dll
----a-w 132,608 2007-06-27 14:34:51 C:\WINDOWS\SYSTEM32\extmgr.dll
----a-w 63,488 2007-06-27 08:27:04 C:\WINDOWS\SYSTEM32\ie4uinit.exe
----a-w 153,088 2007-06-27 14:34:51 C:\WINDOWS\SYSTEM32\ieakeng.dll
----a-w 230,400 2007-06-27 14:34:51 C:\WINDOWS\SYSTEM32\ieaksie.dll
----a-w 161,792 2007-06-27 07:00:33 C:\WINDOWS\SYSTEM32\ieakui.dll
----a-w 2,455,488 2007-04-17 09:32:38 C:\WINDOWS\SYSTEM32\ieapfltr.dat
----a-w 383,488 2007-06-27 14:34:51 C:\WINDOWS\SYSTEM32\ieapfltr.dll
----a-w 384,512 2007-06-27 14:34:51 C:\WINDOWS\SYSTEM32\iedkcs32.dll
----a-w 6,058,496 2007-06-27 14:34:55 C:\WINDOWS\SYSTEM32\ieframe.dll
----a-w 44,544 2007-06-27 14:34:55 C:\WINDOWS\SYSTEM32\iernonce.dll
----a-w 267,776 2007-06-27 14:34:55 C:\WINDOWS\SYSTEM32\iertutil.dll
----a-w 13,824 2007-06-27 08:27:05 C:\WINDOWS\SYSTEM32\ieudinit.exe
----a-w 27,648 2007-06-27 14:34:56 C:\WINDOWS\SYSTEM32\jsproxy.dll
----a-w 271,360 2007-04-13 10:21:14 C:\WINDOWS\SYSTEM32\mscoree.dll
----a-w 459,264 2007-06-27 14:34:56 C:\WINDOWS\SYSTEM32\msfeeds.dll
----a-w 52,224 2007-06-27 14:34:56 C:\WINDOWS\SYSTEM32\msfeedsbs.dll
----a-w 3,583,488 2007-07-19 06:59:59 C:\WINDOWS\SYSTEM32\mshtml.dll
----a-w 477,696 2007-06-27 14:34:57 C:\WINDOWS\SYSTEM32\mshtmled.dll
----a-w 193,024 2007-06-27 14:34:58 C:\WINDOWS\SYSTEM32\msrating.dll
----a-w 671,232 2007-06-27 14:34:58 C:\WINDOWS\SYSTEM32\mstime.dll
----a-w 102,400 2007-06-27 14:34:58 C:\WINDOWS\SYSTEM32\occache.dll
----a-w 63,418 2007-10-08 03:34:06 C:\WINDOWS\SYSTEM32\PERFC009.DAT
----a-w 402,974 2007-10-08 03:34:06 C:\WINDOWS\SYSTEM32\PERFH009.DAT
------w 14,048 2007-03-06 01:22:36 C:\WINDOWS\SYSTEM32\spmsg.dll
----a-w 105,984 2007-06-27 14:34:58 C:\WINDOWS\SYSTEM32\url.dll
----a-w 1,152,000 2007-06-27 14:34:58 C:\WINDOWS\SYSTEM32\urlmon.dll
----a-w 232,960 2007-06-27 14:34:59 C:\WINDOWS\SYSTEM32\webcheck.dll
----a-w 823,808 2007-06-27 14:34:59 C:\WINDOWS\SYSTEM32\wininet.dll
------w 124,928 2007-06-27 14:34:51 C:\WINDOWS\SYSTEM32\DLLCACHE\advpack.dll
----a-w 132,608 2007-06-27 14:34:51 C:\WINDOWS\SYSTEM32\DLLCACHE\extmgr.dll
------w 63,488 2007-06-27 08:27:04 C:\WINDOWS\SYSTEM32\DLLCACHE\ie4uinit.exe
------w 153,088 2007-06-27 14:34:51 C:\WINDOWS\SYSTEM32\DLLCACHE\ieakeng.dll
------w 230,400 2007-06-27 14:34:51 C:\WINDOWS\SYSTEM32\DLLCACHE\ieaksie.dll
------w 161,792 2007-06-27 07:00:33 C:\WINDOWS\SYSTEM32\DLLCACHE\ieakui.dll
------w 2,455,488 2007-04-17 09:32:38 C:\WINDOWS\SYSTEM32\DLLCACHE\ieapfltr.dat
------w 383,488 2007-06-27 14:34:51 C:\WINDOWS\SYSTEM32\DLLCACHE\ieapfltr.dll
------w 384,512 2007-06-27 14:34:51 C:\WINDOWS\SYSTEM32\DLLCACHE\iedkcs32.dll
------w 6,058,496 2007-06-27 14:34:55 C:\WINDOWS\SYSTEM32\DLLCACHE\ieframe.dll
------w 44,544 2007-06-27 14:34:55 C:\WINDOWS\SYSTEM32\DLLCACHE\iernonce.dll
------w 267,776 2007-06-27 14:34:55 C:\WINDOWS\SYSTEM32\DLLCACHE\iertutil.dll
------w 13,824 2007-06-27 08:27:05 C:\WINDOWS\SYSTEM32\DLLCACHE\ieudinit.exe
------w 625,152 2007-06-27 08:27:30 C:\WINDOWS\SYSTEM32\DLLCACHE\iexplore.exe
----a-w 27,648 2007-06-27 14:34:56 C:\WINDOWS\SYSTEM32\DLLCACHE\jsproxy.dll
------w 459,264 2007-06-27 14:34:56 C:\WINDOWS\SYSTEM32\DLLCACHE\msfeeds.dll
------w 52,224 2007-06-27 14:34:56 C:\WINDOWS\SYSTEM32\DLLCACHE\msfeedsbs.dll
----a-w 3,583,488 2007-07-19 06:59:59 C:\WINDOWS\SYSTEM32\DLLCACHE\mshtml.dll
----a-w 477,696 2007-06-27 14:34:57 C:\WINDOWS\SYSTEM32\DLLCACHE\mshtmled.dll
----a-w 193,024 2007-06-27 14:34:58 C:\WINDOWS\SYSTEM32\DLLCACHE\msrating.dll
----a-w 671,232 2007-06-27 14:34:58 C:\WINDOWS\SYSTEM32\DLLCACHE\mstime.dll
------w 102,400 2007-06-27 14:34:58 C:\WINDOWS\SYSTEM32\DLLCACHE\occache.dll
------w 105,984 2007-06-27 14:34:58 C:\WINDOWS\SYSTEM32\DLLCACHE\url.dll
----a-w 1,152,000 2007-06-27 14:34:58 C:\WINDOWS\SYSTEM32\DLLCACHE\urlmon.dll
----a-w 765,952 2007-07-12 23:31:54 C:\WINDOWS\SYSTEM32\DLLCACHE\vgx.dll
------w 232,960 2007-06-27 14:34:59 C:\WINDOWS\SYSTEM32\DLLCACHE\webcheck.dll
----a-w 823,808 2007-06-27 14:34:59 C:\WINDOWS\SYSTEM32\DLLCACHE\wininet.dll
----a-w 258,048 2007-10-08 03:32:29 C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
----a-w 114,176 2007-10-08 03:32:29 C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
.
----a-w 68,608 2007-10-01 11:03:02 C:\WINDOWS\ASSEMBLY\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
----a-w 72,192 2007-10-01 11:02:35 C:\WINDOWS\ASSEMBLY\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll
----a-w 4,308,992 2007-10-01 11:02:30 C:\WINDOWS\ASSEMBLY\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
----a-w 2,878,976 2007-09-27 15:46:57 C:\WINDOWS\ASSEMBLY\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
----a-w 482,304 2007-10-01 11:02:28 C:\WINDOWS\ASSEMBLY\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll
----a-w 258,048 2007-10-01 11:03:12 C:\WINDOWS\ASSEMBLY\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
----a-w 114,176 2007-10-01 11:03:12 C:\WINDOWS\ASSEMBLY\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
----a-w 260,096 2007-10-01 10:00:16 C:\WINDOWS\ASSEMBLY\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll
----a-w 5,029,888 2007-10-01 10:00:53 C:\WINDOWS\ASSEMBLY\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
----a-w 10,752 2007-10-01 11:03:05 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
----a-w 503,808 2007-10-01 11:03:14 C:\WINDOWS\ASSEMBLY\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
----a-w 13,312 2007-10-01 11:03:11 C:\WINDOWS\ASSEMBLY\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll
----a-w 8,192 2007-10-01 11:02:39 C:\WINDOWS\ASSEMBLY\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll
----a-w 36,864 2007-10-01 11:02:38 C:\WINDOWS\ASSEMBLY\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll
----a-w 5,632 2007-10-01 11:02:36 C:\WINDOWS\ASSEMBLY\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll
----a-w 413,696 2007-10-01 11:03:09 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll
----a-w 36,864 2007-10-01 11:03:07 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll
----a-w 647,168 2007-10-01 11:03:06 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll
----a-w 73,728 2007-10-01 11:03:05 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll
----a-w 745,472 2007-10-01 11:03:09 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll
----a-w 667,648 2007-10-01 10:00:14 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll
----a-w 372,736 2007-10-01 10:00:13 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll
----a-w 110,592 2007-10-01 10:00:12 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll
----a-w 28,672 2007-10-01 11:03:19 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll
----a-w 5,632 2007-10-01 10:00:11 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll
----a-w 32,768 2007-10-01 11:03:18 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll
----a-w 12,800 2007-10-01 11:03:14 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
----a-w 7,168 2007-10-01 11:03:16 C:\WINDOWS\ASSEMBLY\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll
----a-w 110,592 2007-10-01 10:00:22 C:\WINDOWS\ASSEMBLY\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll
----a-w 3,018,752 2007-09-27 15:47:17 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
----a-w 389,120 2007-10-01 10:00:22 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
----a-w 81,920 2007-10-01 11:03:02 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
----a-w 716,800 2007-10-01 11:02:27 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
----a-w 884,736 2007-10-01 11:03:11 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
----a-w 5,050,368 2007-09-27 15:46:59 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll
----a-w 397,312 2007-10-01 11:03:00 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
----a-w 188,416 2007-10-01 11:03:00 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll
----a-w 700,416 2007-10-01 10:00:18 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
----a-w 81,920 2007-10-01 11:02:59 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll
----a-w 368,640 2007-10-01 11:02:24 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
----a-w 258,048 2007-10-01 10:00:17 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll
----a-w 299,008 2007-10-01 10:00:25 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
----a-w 131,072 2007-10-01 10:00:23 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
----a-w 258,048 2007-10-01 11:03:03 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
----a-w 114,688 2007-10-01 11:02:56 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
----a-w 835,584 2007-10-01 10:00:15 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll
----a-w 86,016 2007-10-01 11:02:53 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll
----a-w 823,296 2007-10-01 11:02:50 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
----a-w 5,316,608 2007-09-27 15:46:54 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
----a-w 2,035,712 2007-09-27 15:46:56 C:\WINDOWS\ASSEMBLY\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
----a-w 55,488 2005-09-23 14:28:58 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\AppLaunch.exe
----a-w 503,808 2005-09-23 14:28:32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\AspNetMMCExt.dll
----a-w 10,752 2006-04-14 13:08:30 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_filter.dll
----a-w 8,192 2005-09-23 14:28:32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll
----a-w 23,552 2005-09-23 14:28:32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
----a-w 70,656 2005-09-23 14:28:32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_rc.dll
----a-w 26,824 2005-09-23 14:28:32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis.exe
----a-w 29,896 2005-09-23 14:28:32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
----a-w 23,040 2006-09-13 00:10:46 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_wp.exe
----a-w 88,576 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\CORPerfMonExt.dll
----a-w 4,608 2005-09-23 14:28:38 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\dfsvc.exe
----a-w 9,728 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\IEExec.exe
----a-w 224,952 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\ilasm.exe
----a-w 28,672 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe
----a-w 413,696 2005-09-23 14:28:48 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Engine.dll
----a-w 647,168 2005-09-23 14:28:48 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft.Build.Tasks.dll
----a-w 745,472 2005-09-23 14:28:48 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft.JScript.dll
----a-w 87,552 2005-09-23 14:28:32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\MmcAspExt.dll
----a-w 800,768 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll
----a-w 36,864 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorie.dll
----a-w 326,144 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
----a-w 4,308,992 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
----a-w 102,400 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
----a-w 226,816 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvc.dll
----a-w 66,240 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
----a-w 5,615,616 2005-09-23 14:28:50 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
----a-w 96,440 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\ngen.exe
----a-w 14,848 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\normalization.dll
----a-w 136,192 2005-09-23 14:28:50 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\peverify.dll
----a-w 377,344 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\SOS.dll
----a-w 110,592 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\sysglobl.dll
----a-w 389,120 2005-09-23 14:28:58 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.configuration.dll
----a-w 2,878,976 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Data.dll
----a-w 482,304 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Data.OracleClient.dll
----a-w 716,800 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Data.SqlXml.dll
----a-w 884,736 2005-09-23 14:28:38 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Deployment.dll
----a-w 5,050,368 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Design.dll
----a-w 188,416 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.DirectoryServices.Protocols.dll
----a-w 3,018,752 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.dll
----a-w 700,416 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Drawing.dll
----a-w 258,048 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.dll
----a-w 47,616 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Thunk.dll
----a-w 114,176 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.EnterpriseServices.Wrapper.dll
----a-w 368,640 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Management.dll
----a-w 299,008 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Remoting.dll
----a-w 260,096 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Transactions.dll
----a-w 5,029,888 2006-09-13 00:11:12 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Web.dll
----a-w 5,316,608 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.Windows.Forms.dll
----a-w 2,035,712 2005-09-23 14:28:56 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\System.XML.dll
----a-w 1,140,920 2005-09-23 14:29:06 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\vbc.exe
----a-w 1,306,624 2005-09-23 14:28:30 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\VsaVb7rt.dll
----a-w 300,032 2006-09-13 00:10:46 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\webengine.dll
----a-w 123,904 2006-11-07 10:26:24 C:\WINDOWS\SYSTEM32\advpack.dll
----a-w 131,584 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\extmgr.dll
----a-w 54,784 2006-11-07 10:26:28 C:\WINDOWS\SYSTEM32\ie4uinit.exe
----a-w 152,064 2006-11-07 10:26:56 C:\WINDOWS\SYSTEM32\ieakeng.dll
----a-w 229,376 2006-11-07 10:27:02 C:\WINDOWS\SYSTEM32\ieaksie.dll
----a-w 161,792 2006-11-07 10:25:14 C:\WINDOWS\SYSTEM32\ieakui.dll
----a-w 2,451,824 2006-09-06 06:01:26 C:\WINDOWS\SYSTEM32\ieapfltr.dat
----a-w 380,928 2006-10-17 18:27:56 C:\WINDOWS\SYSTEM32\ieapfltr.dll
----a-w 382,976 2006-11-07 10:27:10 C:\WINDOWS\SYSTEM32\iedkcs32.dll
----a-w 6,049,280 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\ieframe.dll
----a-w 43,008 2006-11-07 10:26:28 C:\WINDOWS\SYSTEM32\iernonce.dll
----a-w 266,752 2006-10-17 18:57:20 C:\WINDOWS\SYSTEM32\iertutil.dll
----a-w 13,312 2006-11-07 10:26:32 C:\WINDOWS\SYSTEM32\ieudinit.exe
----a-w 27,136 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\jsproxy.dll
----a-w 271,360 2006-12-22 19:28:14 C:\WINDOWS\SYSTEM32\mscoree.dll
----a-w 458,752 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\msfeeds.dll
----a-w 50,688 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\msfeedsbs.dll
----a-w 3,577,856 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\mshtml.dll
----a-w 475,648 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\mshtmled.dll
----a-w 192,000 2006-10-17 19:05:10 C:\WINDOWS\SYSTEM32\msrating.dll
----a-w 670,720 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\mstime.dll
----a-w 101,376 2006-10-17 19:04:46 C:\WINDOWS\SYSTEM32\occache.dll
----a-w 63,418 2007-09-27 15:47:55 C:\WINDOWS\SYSTEM32\PERFC009.DAT
----a-w 402,974 2007-09-27 15:47:55 C:\WINDOWS\SYSTEM32\PERFH009.DAT
----a-w 14,048 2006-09-06 23:43:16 C:\WINDOWS\SYSTEM32\spmsg.dll
----a-w 105,984 2006-10-17 19:05:22 C:\WINDOWS\SYSTEM32\url.dll
----a-w 1,162,240 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\urlmon.dll
----a-w 231,424 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\webcheck.dll
----a-w 818,688 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\wininet.dll
------w 123,904 2006-11-07 10:26:24 C:\WINDOWS\SYSTEM32\DLLCACHE\advpack.dll
----a-w 131,584 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\DLLCACHE\extmgr.dll
------w 54,784 2006-11-07 10:26:28 C:\WINDOWS\SYSTEM32\DLLCACHE\ie4uinit.exe
------w 152,064 2006-11-07 10:26:56 C:\WINDOWS\SYSTEM32\DLLCACHE\ieakeng.dll
------w 229,376 2006-11-07 10:27:02 C:\WINDOWS\SYSTEM32\DLLCACHE\ieaksie.dll
------w 161,792 2006-11-07 10:25:14 C:\WINDOWS\SYSTEM32\DLLCACHE\ieakui.dll
------w 382,976 2006-11-07 10:27:10 C:\WINDOWS\SYSTEM32\DLLCACHE\iedkcs32.dll
------w 43,008 2006-11-07 10:26:28 C:\WINDOWS\SYSTEM32\DLLCACHE\iernonce.dll
------w 622,080 2006-10-17 19:04:40 C:\WINDOWS\SYSTEM32\DLLCACHE\iexplore.exe
----a-w 27,136 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\DLLCACHE\jsproxy.dll
----a-w 3,577,856 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\DLLCACHE\mshtml.dll
----a-w 475,648 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\DLLCACHE\mshtmled.dll
----a-w 192,000 2006-10-17 19:05:10 C:\WINDOWS\SYSTEM32\DLLCACHE\msrating.dll
----a-w 670,720 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\DLLCACHE\mstime.dll
------w 101,376 2006-10-17 19:04:46 C:\WINDOWS\SYSTEM32\DLLCACHE\occache.dll
------w 105,984 2006-10-17 19:05:22 C:\WINDOWS\SYSTEM32\DLLCACHE\url.dll
----a-w 1,162,240 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\DLLCACHE\urlmon.dll
----a-w 765,952 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\DLLCACHE\VGX.dll
------w 231,424 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\DLLCACHE\webcheck.dll
----a-w 818,688 2006-11-08 04:03:36 C:\WINDOWS\SYSTEM32\DLLCACHE\wininet.dll
----a-w 258,048 2007-10-01 11:03:12 C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll
----a-w 114,176 2007-10-01 11:03:12 C:\WINDOWS\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPLpr"="C:\Program Files\Synaptics\SynTP\SynTPLpr.exe" [2004-04-22 14:23]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2004-04-22 14:23]
"PCMService"="C:\Program Files\Dell\Media Experience\PCMService.exe" [2004-04-11 18:15]
"DwlClient"="C:\Program Files\Common Files\Dell\EUSW\Support.exe" [2004-05-27 18:05]
"vptray"="C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe" [2003-10-07 13:39]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2005-02-06 12:44]
"HPDJ Taskbar Utility"="C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe" [2003-05-14 00:01]
"igfxtray"="C:\WINDOWS\system32\igfxtray.exe" [2005-09-20 09:35]
"igfxhkcmd"="C:\WINDOWS\system32\hkcmd.exe" [2005-09-20 09:32]
"igfxpers"="C:\WINDOWS\system32\igfxpers.exe" [2005-09-20 09:36]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2006-06-14 16:24]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2006-08-12 23:52]
"SBCSTray"="C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe" [2007-06-15 15:17]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 02:25]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 03:00]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 09:24]
"Aim6"="" []
"SuperAdBlocker"="C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SAdBlock.exe" [2007-02-27 11:24]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000D7}"= C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABSEHB.DLL [2006-11-07 11:58 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SABWinLogon]
C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABWINLO.DLL 2007-02-27 11:24 159744 C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABWINLO.DLL
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^America Online 9.0 Tray Icon.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\America Online 9.0 Tray Icon.lnk
backup=C:\WINDOWS\pss\America Online 9.0 Tray Icon.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Digital Line Detect.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk
backup=C:\WINDOWS\pss\Digital Line Detect.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DVDLauncher]
"C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mmtask]
c:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
"C:\Program Files\Messenger\msmsgs.exe" /background
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"C:\Program Files\QuickTime\qttask.exe" -atboottime
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\sealmon]
C:\Program Files\SealedMedia\sealmon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ViewMgr]
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
R0 SBHR;SBHR;C:\WINDOWS\system32\drivers\sbhr.sys
R1 SABDIFSV;SABDIFSV;\??\C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABDIFSV.SYS
R1 SABKUTIL;SABKUTIL;\??\C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABKUTIL.sys
R3 SBAPIFS;SBAPIFS;\??\C:\WINDOWS\system32\drivers\sbapifs.sys
R3 tifm;tifm;C:\WINDOWS\system32\drivers\tifm.sys
*Newly Created Service* - SBAPIFS
.
Contents of the 'Scheduled Tasks' folder
"2007-10-10 06:15:14 C:\WINDOWS\Tasks\Symantec NetDetect.job"
.
**************************************************************************
catchme 0.3.1169 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2007-10-09 23:43:12
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2007-10-09 23:48:33 - machine was rebooted
C:\ComboFix-quarantined-files.txt ... 2007-10-09 23:48
C:\ComboFix2.txt ... 2007-10-07 14:23
.
--- E O F ---
6] I ran HiJackThis again and here is the new log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:49:47 PM, on 10/9/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\Common Files\Dell\EUSW\Support.exe
C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Dell\Support\Alert\bin\NotifyAlert.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Charlene Chan\Desktop\scanner.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext =
http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 198.168.0.3:80
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: SuperAdBlockerBHO Class - {00000000-6C30-11D8-9363-000AE6309654} - C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABBHO.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Super Ad Blocker Toolbar - {B4B3001E-0F56-4E51-8250-BDE11547EC55} - C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\sabtb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SynTPLpr] "C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
O4 - HKLM\..\Run: [SynTPEnh] "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [DwlClient] "C:\Program Files\Common Files\Dell\EUSW\Support.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SBCSTray] "C:\Program Files\Sunbelt Software\CounterSpy\SBCSTray.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SuperAdBlocker] "C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SAdBlock.exe"
O8 - Extra context menu item: &Google Search -
res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word -
res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links -
res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page -
res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages -
res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English -
res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} -
http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) -
http://go