ComboFix 11-01-22.01 - Elise 22/01/2011 22:38:23.3.2 - x64 NETWORK Microsoft Windows 7 Ultimate 6.1.7600.0.1252.32.1043.18.3072.2202 [GMT 1:00] Gestart vanuit: c:\users\Elise\Desktop\ComboFix.exe AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160} AV: Telenet Security Pack 9.01 *Disabled/Updated* {15414183-282E-D62C-CA37-EF24860A2F17} FW: Telenet Security Pack 9.01 *Disabled* {2D7AC0A6-6241-D774-E168-461178D9686C} SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD} SP: Telenet Security Pack 9.01 *Disabled/Updated* {AE20A067-0E14-D9A2-F087-D456FD8D65AA} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\program files (x86)\facemoods.com c:\program files (x86)\facemoods.com\facemoods\1.4.17.1\facemoods.crx c:\program files (x86)\facemoods.com\facemoods\1.4.17.1\facemoods.png c:\program files (x86)\facemoods.com\facemoods\1.4.17.1\facemoodsApp.dll c:\program files (x86)\facemoods.com\facemoods\1.4.17.1\facemoodsEng.dll c:\program files (x86)\facemoods.com\facemoods\1.4.17.1\facemoodssrv.exe c:\program files (x86)\facemoods.com\facemoods\1.4.17.1\facemoodsTlbr.dll c:\program files (x86)\facemoods.com\facemoods\1.4.17.1\uninstall.exe c:\program files (x86)\facemoods.com\sqlite3.dll c:\users\Niels\AppData\Roaming\Microsoft\Windows\Templates\1.jpeg c:\users\Niels\AppData\Roaming\Microsoft\Windows\Templates\cdkeys.txt c:\windows\SysWow64\system32 c:\windows\SysWow64\system32\DRIVERS\RTL2832U_IRHID.sys c:\windows\SysWow64\system32\DRIVERS\RTL2832UBDA.sys c:\windows\SysWow64\system32\DRIVERS\RTL2832UUSB.sys c:\windows\XSxS . (((((((((((((((((((( Bestanden Gemaakt van 2010-12-22 to 2011-01-22 )))))))))))))))))))))))))))))) . 2011-01-22 21:34 . 2011-01-22 21:35 -------- d-----w- C:\32788R22FWJFW 2011-01-22 20:56 . 2011-01-22 20:56 388096 ----a-r- c:\users\Niels\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-01-22 17:54 . 2011-01-22 17:54 -------- d-----w- c:\users\Niels\AppData\Local\Mozilla 2011-01-22 16:57 . 2011-01-13 10:20 7844688 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{2B6E0950-9653-4BE8-8DC2-92AEBADBDC68}\mpengine.dll 2011-01-22 11:27 . 2011-01-22 11:26 333824 ----a-w- c:\users\Niels\AppData\Roaming\Microsoft\Windows\Templates\Server.exe 2011-01-22 10:42 . 2011-01-22 10:42 -------- d-----w- c:\program files (x86)\Find_Subtitles_10 2011-01-21 20:56 . 2011-01-21 20:56 -------- d-----w- c:\programdata\ATI 2011-01-21 20:47 . 2011-01-21 20:47 -------- d-----w- c:\programdata\Electronic Arts 2011-01-21 20:47 . 2011-01-21 20:47 9616 ----a-w- c:\windows\SysWow64\ealregsnapshot1.reg 2011-01-21 20:46 . 2011-01-21 20:46 -------- d-----w- c:\users\Niels\AppData\Local\Downloaded Installations 2011-01-20 19:51 . 2011-01-20 19:51 -------- d-----w- c:\users\Elise\AppData\Local\{1F3DF8A5-2EFB-4A9A-A066-8481CC4417C6} 2011-01-19 12:49 . 2011-01-19 12:50 -------- d-----w- c:\users\Elise\AppData\Local\{23443F14-97F0-4B0D-9163-0401059AE50D} 2011-01-17 20:07 . 2011-01-17 20:08 -------- d-----w- c:\users\Elise\AppData\Local\{C11F49DB-F3B2-494D-9DFF-46D7857AF537} 2011-01-16 21:56 . 2011-01-16 21:56 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll 2011-01-16 21:56 . 2011-01-16 21:56 704320 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll 2011-01-16 21:13 . 2011-01-16 21:14 -------- d-----w- c:\users\Elise\AppData\Local\{1E584271-6AAC-4B37-B506-710E041EFCF4} 2011-01-15 18:52 . 2011-01-15 18:53 -------- d-----w- c:\users\Elise\AppData\Local\{417D4965-0FA2-4365-A8FE-E7727E0D9581} 2011-01-15 16:37 . 2011-01-15 16:37 -------- d-----w- C:\download 2011-01-15 14:58 . 2011-01-15 16:41 -------- d-----w- c:\users\Niels\AppData\Local\Newsoft 2011-01-15 14:56 . 2011-01-15 14:56 -------- d-----w- c:\program files (x86)\Common Files\NewSoft 2011-01-15 14:56 . 2011-01-15 14:56 -------- d-----w- c:\program files (x86)\NewSoft 2011-01-15 14:55 . 2005-04-03 22:00 63488 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ISBEW64.exe 2011-01-15 14:55 . 2005-04-03 22:02 69714 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ctor.dll 2011-01-15 14:55 . 2005-04-03 22:01 274432 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iscript.dll 2011-01-15 14:55 . 2005-04-03 22:00 184320 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iuser.dll 2011-01-15 14:55 . 2005-04-03 21:59 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\DotNetInstaller.exe 2011-01-15 14:55 . 2005-04-03 22:02 753664 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iKernel.dll 2011-01-15 14:54 . 2011-01-15 14:54 200836 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iGdi.dll 2011-01-15 14:54 . 2011-01-15 14:54 331908 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\setup.dll 2011-01-15 14:54 . 2009-08-17 13:57 38944 ----a-w- c:\windows\SysWow64\drivers\RTL2832UUSB.sys 2011-01-15 14:54 . 2009-08-17 13:57 116640 ----a-w- c:\windows\SysWow64\drivers\RTL2832UBDA.sys 2011-01-15 14:54 . 2009-07-13 14:46 42912 ----a-w- c:\windows\SysWow64\drivers\RTL2832U_IRHID.sys 2011-01-15 14:54 . 2009-08-17 13:57 38944 ----a-w- c:\windows\system32\drivers\RTL2832UUSB.sys 2011-01-15 14:54 . 2009-08-17 13:57 116640 ----a-w- c:\windows\system32\drivers\RTL2832UBDA.sys 2011-01-15 14:54 . 2011-01-15 14:54 -------- d-----w- c:\program files\NewSoft 2011-01-15 14:54 . 2009-04-02 13:22 127085 ----a-w- c:\windows\SysWow64\RTKFMSOURCE.dll 2011-01-15 14:54 . 2011-01-15 14:54 -------- d-----w- c:\program files (x86)\Realtek 2011-01-15 14:53 . 2011-01-15 14:53 -------- d-----w- c:\users\Niels\AppData\Roaming\InstallShield 2011-01-12 12:30 . 2010-11-02 05:12 1837568 ----a-w- c:\windows\system32\d3d10warp.dll 2011-01-12 12:29 . 2010-10-16 05:17 720896 ----a-w- c:\windows\system32\odbc32.dll 2011-01-12 12:29 . 2010-10-16 05:16 1425408 ----a-w- c:\program files\Common Files\System\ado\msado15.dll 2011-01-12 12:29 . 2010-10-16 04:34 573440 ----a-w- c:\windows\SysWow64\odbc32.dll 2011-01-12 12:29 . 2010-10-16 05:16 466944 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll 2011-01-12 12:29 . 2010-10-16 05:16 495616 ----a-w- c:\program files\Common Files\System\ado\msadox.dll 2011-01-12 12:29 . 2010-10-16 05:16 258048 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll 2011-01-12 12:29 . 2010-10-16 04:33 987136 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll 2011-01-12 12:29 . 2010-10-16 04:33 372736 ----a-w- c:\program files (x86)\Common Files\System\ado\msadox.dll 2011-01-12 12:29 . 2010-10-16 04:33 352256 ----a-w- c:\program files (x86)\Common Files\System\ado\msadomd.dll 2011-01-12 12:29 . 2010-10-16 04:33 208896 ----a-w- c:\program files (x86)\Common Files\System\msadc\msadco.dll 2011-01-11 18:26 . 2011-01-11 18:26 -------- d-----w- c:\users\Elise\AppData\Local\{508DFB48-A6AF-4E71-9EDC-13A2DB3DEC0E} 2011-01-10 22:34 . 2011-01-14 20:17 -------- d-----w- c:\program files (x86)\Common Files\Steam 2011-01-10 20:33 . 2011-01-22 21:45 -------- d-----w- c:\users\Elise\AppData\Local\temp 2011-01-10 19:36 . 2011-01-10 19:36 -------- d-----w- c:\users\Niels\AppData\Roaming\Malwarebytes 2011-01-10 19:36 . 2011-01-10 19:36 -------- d-----w- c:\programdata\Malwarebytes 2011-01-10 19:36 . 2010-12-20 17:09 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys 2011-01-10 19:36 . 2011-01-10 19:36 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2011-01-10 19:36 . 2010-12-20 17:08 24152 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-01-09 14:31 . 2011-01-09 14:31 -------- d-----w- c:\users\Elise\AppData\Local\{EDE8E6FE-B092-4D98-A615-A105D6FCC215} 2011-01-09 00:51 . 2010-11-09 13:35 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x64.sys 2011-01-08 21:15 . 2010-02-04 09:01 78680 ----a-w- c:\windows\system32\XAPOFX1_4.dll 2011-01-08 21:15 . 2010-02-04 09:01 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_4.dll 2011-01-08 21:15 . 2010-02-04 09:01 530776 ----a-w- c:\windows\system32\XAudio2_6.dll 2011-01-08 21:15 . 2010-02-04 09:01 528216 ----a-w- c:\windows\SysWow64\XAudio2_6.dll 2011-01-08 21:15 . 2010-02-04 09:01 238936 ----a-w- c:\windows\SysWow64\xactengine3_6.dll 2011-01-08 21:15 . 2010-02-04 09:01 176984 ----a-w- c:\windows\system32\xactengine3_6.dll 2011-01-08 21:15 . 2010-02-04 09:01 24920 ----a-w- c:\windows\system32\X3DAudio1_7.dll 2011-01-08 21:15 . 2010-02-04 09:01 22360 ----a-w- c:\windows\SysWow64\X3DAudio1_7.dll 2011-01-08 18:13 . 2011-01-08 20:35 -------- d-----w- c:\program files (x86)\GameSpy Arcade 2011-01-07 15:34 . 2011-01-07 15:34 -------- d-----w- c:\users\Elise\AppData\Roaming\GrabPro 2011-01-07 12:43 . 2011-01-07 12:44 -------- d-----w- c:\users\Elise\AppData\Local\{FD57E65E-7CBA-4FD0-82DF-DC5C5E6215D8} 2011-01-06 12:34 . 2011-01-06 12:34 -------- d-----w- c:\users\Elise\AppData\Local\{E5C62F22-87EB-44BC-8AE0-837AB714F1FC} 2011-01-06 12:34 . 2011-01-06 12:34 -------- d-----w- c:\users\Elise\AppData\Local\{D9C3F73A-A57F-4150-9605-9A87FDB198D4} 2011-01-05 00:12 . 2011-01-10 19:23 -------- d-----w- c:\program files\Global Downloader 2011-01-03 20:03 . 2011-01-03 20:03 -------- d-----w- c:\users\Elise\AppData\Local\{0175C106-02B2-4173-9505-20FC047A84B7} 2011-01-03 15:56 . 2011-01-03 15:56 -------- d-----w- c:\users\Niels\AppData\Local\{615C4952-EA0A-41EC-9FAD-72EF39BAE550} 2011-01-03 15:15 . 2011-01-03 15:24 -------- d-----w- c:\users\Niels\AppData\Roaming\GARMIN 2011-01-03 15:14 . 2011-01-03 15:14 -------- d-----w- c:\program files (x86)\Garmin GPS Plugin 2011-01-03 15:14 . 2011-01-03 15:14 -------- d-----w- c:\program files\DIFX 2011-01-03 15:14 . 2011-01-03 15:14 -------- d-----w- c:\program files (x86)\Garmin 2011-01-03 09:52 . 2010-11-30 09:43 601424 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll 2011-01-03 09:52 . 2010-11-30 09:43 601424 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F8C44F22-4B40-47FC-A45B-90EAF417AF91}\gapaengine.dll 2011-01-03 09:52 . 2011-01-13 10:20 7844688 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll 2011-01-03 00:44 . 2011-01-03 00:44 -------- d-----w- c:\users\Elise\AppData\Local\{51DC7EEA-8E60-4FA1-AFCC-A93EBB508EC3} 2011-01-02 18:07 . 2011-01-02 18:07 1409 ----a-w- c:\windows\QTFont.for 2011-01-02 16:40 . 2009-07-14 01:40 54784 ----a-w- c:\users\Niels\cnmss Canon Inkjet MP700 (Local).dll 2011-01-02 16:38 . 2011-01-02 16:38 -------- d-----w- c:\users\Niels\AppData\Local\{D5DA666E-51F6-4C4E-8FB7-538A96DF9A51} 2011-01-02 16:38 . 2011-01-02 16:38 -------- d-----w- c:\users\Niels\AppData\Local\Windows Live Writer 2011-01-02 16:38 . 2011-01-02 16:38 -------- d-----w- c:\users\Niels\AppData\Roaming\Windows Live Writer 2011-01-02 16:34 . 1997-07-19 15:55 1347344 ----a-w- c:\windows\system\Msvbvm50.dll 2011-01-02 16:32 . 2011-01-02 16:32 -------- d-----w- c:\program files\Windows Live 2011-01-02 16:31 . 1997-07-19 15:55 1347344 ----a-w- c:\windows\system32\Msvbvm50.dll 2011-01-02 16:28 . 2010-05-23 08:35 206848 ----a-w- c:\windows\system32\mfps.dll 2011-01-02 16:28 . 2010-05-23 08:35 257024 ----a-w- c:\windows\system32\mfreadwrite.dll 2011-01-02 16:28 . 2010-05-23 10:11 196608 ----a-w- c:\windows\SysWow64\mfreadwrite.dll 2011-01-02 16:28 . 2010-05-23 10:15 1619456 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL 2011-01-02 16:28 . 2010-05-23 08:37 1888256 ----a-w- c:\windows\system32\WMVDECOD.DLL 2011-01-02 16:27 . 2010-05-23 08:35 4068864 ----a-w- c:\windows\system32\mf.dll 2011-01-02 16:27 . 2010-05-23 10:11 3181568 ----a-w- c:\windows\SysWow64\mf.dll 2011-01-02 16:23 . 2011-01-03 15:56 -------- d-----w- c:\users\Niels\AppData\Local\Windows Live 2011-01-02 13:48 . 2011-01-02 13:49 -------- d-----w- c:\program files (x86)\Microsoft Security Client 2011-01-02 13:48 . 2011-01-02 13:49 -------- d-----w- c:\program files\Microsoft Security Client 2011-01-02 13:48 . 2010-04-09 11:06 374664 ----a-w- c:\windows\system32\drivers\netio.sys 2011-01-02 13:44 . 2011-01-02 13:44 -------- d-----w- c:\windows\SysWow64\Wat 2011-01-02 13:44 . 2011-01-02 13:44 -------- d-----w- c:\windows\system32\Wat 2011-01-01 21:43 . 1997-01-24 16:44 1334032 ----a-w- c:\windows\SysWow64\MSVBVM50.DLL 2011-01-01 21:43 . 1997-01-16 08:11 195856 ----a-w- c:\windows\SysWow64\RICHTX32.OCX 2011-01-01 21:43 . 1997-01-16 08:10 579856 ----a-w- c:\windows\SysWow64\COMCTL32.OCX 2011-01-01 21:43 . 1995-07-25 23:00 89600 ----a-w- c:\windows\SysWow64\GRID32.OCX 2011-01-01 21:43 . 1995-07-25 23:00 78848 ----a-w- c:\windows\SysWow64\MSOUTL32.OCX 2011-01-01 21:43 . 1997-01-16 08:11 75536 ----a-w- c:\windows\SysWow64\PICCLP32.OCX 2011-01-01 20:42 . 2011-01-03 15:55 -------- d-----w- c:\users\Niels\Tracing 2011-01-01 20:01 . 2011-01-01 20:01 -------- d-----w- c:\windows\Java 2011-01-01 20:01 . 2010-08-22 12:48 114176 ----a-w- c:\windows\SysWow64\PCWizard.cpl 2011-01-01 20:00 . 2011-01-01 20:00 -------- d-----w- c:\program files (x86)\CPUID 2011-01-01 14:30 . 2008-10-27 09:04 518480 ----a-w- c:\windows\system32\XAudio2_3.dll 2011-01-01 14:11 . 2011-01-01 14:11 -------- d-----w- c:\users\Niels\AppData\Roaming\Xfire 2011-01-01 09:35 . 2011-01-01 09:35 -------- d-----w- c:\program files (x86)\bfgclient 2011-01-01 09:34 . 2011-01-02 11:33 -------- d-----w- C:\BigFishGamesCache 2010-12-31 08:49 . 2010-11-10 05:35 8199504 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EC6F914C-986F-42B3-9D21-CAB7AFDFA5F4}\mpengine.dll 2010-12-30 18:49 . 2010-12-30 18:49 -------- d-----w- c:\users\Elise\AppData\Roaming\WinAVI 2010-12-30 18:49 . 2010-12-30 18:49 -------- d-----w- c:\users\Elise\AppData\Local\WinAVI 2010-12-30 18:46 . 2010-12-30 18:47 -------- d-----w- c:\users\Elise\AppData\Roaming\Vso 2010-12-30 18:44 . 2010-12-30 18:44 -------- d-----w- c:\users\Elise\AppData\Roaming\DVDVideoSoft 2010-12-30 18:22 . 2010-12-30 18:22 -------- d-----w- c:\users\Elise\AppData\Roaming\Creative 2010-12-29 14:46 . 2010-12-29 14:46 -------- d-----w- c:\users\Niels\AppData\Roaming\vlc . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-01-21 20:49 . 2010-09-29 01:15 351232 ----a-w- c:\windows\system32\atiadlxx.dll 2011-01-21 20:49 . 2010-09-29 01:14 39936 ----a-w- c:\windows\system32\atiuxp64.dll 2011-01-21 20:49 . 2010-09-29 01:49 423424 ----a-w- c:\windows\system32\atipdl64.dll 2011-01-21 20:49 . 2010-08-04 01:23 58880 ----a-w- c:\windows\system32\coinst.dll 2011-01-21 20:49 . 2010-09-29 01:37 4794368 ----a-w- c:\windows\system32\atidxx64.dll 2011-01-21 20:49 . 2010-09-29 01:13 37888 ----a-w- c:\windows\system32\atiu9p64.dll 2011-01-21 20:49 . 2010-09-29 01:54 648704 ----a-w- c:\windows\system32\aticfx64.dll 2011-01-21 20:49 . 2010-09-29 01:13 28672 ----a-w- c:\windows\SysWow64\atiu9pag.dll 2011-01-21 19:53 . 2010-09-16 19:48 234536 ----a-w- c:\windows\SysWow64\PnkBstrB.exe 2011-01-21 19:53 . 2010-09-16 19:48 234536 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr 2011-01-10 19:19 . 2010-11-13 22:40 82816 ----a-w- c:\users\Niels\AppData\Roaming\pcouffin.sys 2010-12-22 09:11 . 2010-10-08 12:30 94280 ----a-w- c:\windows\system32\drivers\fsdfw.sys 2010-12-22 09:10 . 2010-10-08 12:30 45624 ----a-w- c:\windows\system32\drivers\fses.sys 2010-12-21 11:54 . 2010-12-21 11:36 2169856 ----a-w- c:\windows\system32\hale.exe 2010-12-15 15:26 . 2004-04-05 02:31 353576 ----a-w- c:\windows\SysWow64\msvcr71.dll 2010-12-15 15:26 . 2004-04-05 02:31 505128 ----a-w- c:\windows\SysWow64\msvcp71.dll 2010-12-15 12:50 . 2010-09-04 17:59 42664 ----a-w- c:\windows\SysWow64\drivers\fsbts.sys 2010-12-11 12:03 . 2010-12-11 12:03 344064 ------w- c:\windows\Setup1.exe 2010-12-11 12:03 . 2010-12-11 12:03 73216 ----a-w- c:\windows\ST6UNST.EXE 2010-12-11 08:00 . 2006-05-26 13:29 108032 ----a-w- c:\windows\SysWow64\ff_vfw.dll 2010-12-07 18:40 . 2006-11-01 06:54 183808 ----a-w- c:\windows\SysWow64\xvidvfw.dll 2010-12-07 18:22 . 2006-11-01 06:52 810496 ----a-w- c:\windows\SysWow64\xvidcore.dll 2010-12-02 21:58 . 2010-12-02 21:58 98304 ----a-w- c:\windows\SysWow64\qttask.exe 2010-11-22 16:18 . 2010-11-22 16:18 755320 ----a-w- c:\windows\SysWow64\awrdscdc.ax 2010-11-13 22:40 . 2010-11-13 22:40 82816 ----a-w- c:\windows\system32\drivers\pcouffin.sys 2010-11-12 17:53 . 2010-09-08 15:25 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll 2010-11-10 01:54 . 2010-11-10 01:54 49016 ----a-w- c:\windows\SysWow64\sirenacm.dll 2010-11-04 06:35 . 2010-12-15 14:28 1194496 ----a-w- c:\windows\system32\wininet.dll 2010-11-04 06:31 . 2010-12-15 14:28 57856 ----a-w- c:\windows\system32\licmgr10.dll 2010-11-04 05:52 . 2010-12-15 14:28 978944 ----a-w- c:\windows\SysWow64\wininet.dll 2010-11-04 05:48 . 2010-12-15 14:28 44544 ----a-w- c:\windows\SysWow64\licmgr10.dll 2010-11-04 05:16 . 2010-12-15 14:28 482816 ----a-w- c:\windows\system32\html.iec 2010-11-04 04:41 . 2010-12-15 14:28 386048 ----a-w- c:\windows\SysWow64\html.iec 2010-11-04 04:35 . 2010-12-15 14:28 1638912 ----a-w- c:\windows\system32\mshtml.tlb 2010-11-04 04:08 . 2010-12-15 14:28 1638912 ----a-w- c:\windows\SysWow64\mshtml.tlb 2010-11-03 19:08 . 2010-12-16 15:59 237568 ----a-w- c:\windows\SysWow64\yv12vfw.dll 2010-11-02 05:18 . 2010-12-15 14:29 524288 ----a-w- c:\windows\system32\wmicmiplugin.dll 2010-11-02 05:17 . 2010-12-15 14:29 1169408 ----a-w- c:\windows\system32\taskschd.dll 2010-11-02 05:17 . 2010-12-15 14:29 473600 ----a-w- c:\windows\system32\taskcomp.dll 2010-11-02 05:16 . 2010-12-15 14:29 1114624 ----a-w- c:\windows\system32\schedsvc.dll 2010-11-02 05:10 . 2010-12-15 14:29 464384 ----a-w- c:\windows\system32\taskeng.exe 2010-11-02 05:10 . 2010-12-15 14:29 285696 ----a-w- c:\windows\system32\schtasks.exe 2010-11-02 04:40 . 2010-12-15 14:29 496128 ----a-w- c:\windows\SysWow64\taskschd.dll 2010-11-02 04:40 . 2010-12-15 14:29 305152 ----a-w- c:\windows\SysWow64\taskcomp.dll 2010-11-02 04:34 . 2010-12-15 14:29 192000 ----a-w- c:\windows\SysWow64\taskeng.exe 2010-11-02 04:34 . 2010-12-15 14:29 179712 ----a-w- c:\windows\SysWow64\schtasks.exe 2010-10-27 05:06 . 2010-12-15 14:29 2048 ----a-w- c:\windows\system32\tzres.dll 2010-10-27 04:32 . 2010-12-15 14:29 2048 ----a-w- c:\windows\SysWow64\tzres.dll . ((((((((((((((((((((((((((((( SnapShot@2011-01-10_19.59.36 ))))))))))))))))))))))))))))))))))))))))) . - 2010-09-18 16:06 . 2010-06-02 02:55 74072 c:\windows\SysWOW64\XAPOFX1_5.dll + 2011-01-12 12:37 . 2010-06-02 03:55 74072 c:\windows\SysWOW64\XAPOFX1_5.dll - 2010-09-29 01:14 . 2010-09-29 01:14 30720 c:\windows\SysWOW64\atiuxpag.dll + 2011-01-21 20:49 . 2011-01-21 20:49 30720 c:\windows\SysWOW64\atiuxpag.dll - 2010-09-29 01:09 . 2010-09-29 01:09 52736 c:\windows\SysWOW64\atimpc32.dll + 2011-01-21 20:49 . 2011-01-21 20:49 52736 c:\windows\SysWOW64\atimpc32.dll - 2010-09-29 01:14 . 2010-09-29 01:14 12800 c:\windows\SysWOW64\atiglpxx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 12800 c:\windows\SysWOW64\atiglpxx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 27136 c:\windows\SysWOW64\atigktxx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 46080 c:\windows\SysWOW64\aticalrt.dll - 2010-09-29 01:27 . 2010-09-29 01:27 46080 c:\windows\SysWOW64\aticalrt.dll - 2010-09-29 01:27 . 2010-09-29 01:27 44032 c:\windows\SysWOW64\aticalcl.dll + 2011-01-21 20:49 . 2011-01-21 20:49 44032 c:\windows\SysWOW64\aticalcl.dll - 2010-09-29 01:49 . 2010-09-29 01:49 43520 c:\windows\SysWOW64\ati2edxx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 43520 c:\windows\SysWOW64\ati2edxx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 52736 c:\windows\SysWOW64\amdpcom32.dll - 2010-09-29 01:09 . 2010-09-29 01:09 52736 c:\windows\SysWOW64\amdpcom32.dll - 2010-09-18 16:06 . 2010-06-02 02:55 77656 c:\windows\system32\XAPOFX1_5.dll + 2011-01-12 12:37 . 2010-06-02 03:55 77656 c:\windows\system32\XAPOFX1_5.dll + 2010-09-04 17:21 . 2011-01-22 16:44 32936 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin + 2009-07-14 05:10 . 2011-01-22 16:44 32742 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin + 2010-09-04 17:21 . 2011-01-22 16:44 17148 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2100342236-492287434-466883542-1002_UserData.bin + 2010-09-05 16:38 . 2011-01-21 06:27 12776 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2100342236-492287434-466883542-1001_UserData.bin + 2009-07-14 05:30 . 2011-01-21 20:54 86016 c:\windows\system32\DriverStore\infpub.dat - 2009-07-14 05:30 . 2011-01-03 15:14 86016 c:\windows\system32\DriverStore\infpub.dat + 2011-01-15 14:54 . 2009-08-17 13:57 38944 c:\windows\system32\DriverStore\FileRepository\rtl2832ubda.inf_amd64_neutral_f843233e4d0bb94a\RTL2832UUSB.sys + 2011-01-15 14:54 . 2009-07-13 14:46 42912 c:\windows\system32\DriverStore\FileRepository\rtl2832u_irhid.inf_amd64_neutral_fa4c234fc77fbd1c\RTL2832U_IRHID.sys + 2011-01-21 20:49 . 2011-01-21 20:49 58880 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\coinst.dll + 2011-01-21 20:49 . 2011-01-21 20:49 30720 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiuxpag.dll + 2011-01-21 20:49 . 2011-01-21 20:49 39936 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiuxp64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 28672 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiu9pag.dll + 2011-01-21 20:49 . 2011-01-21 20:49 37888 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiu9p64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 51200 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\ATIODCLI.exe + 2011-01-21 20:49 . 2011-01-21 20:49 16384 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atimuixx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 53760 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atimpc64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 52736 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atimpc32.dll + 2011-01-21 20:49 . 2011-01-21 20:49 12800 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiglpxx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 27136 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atigktxx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 31744 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atig6txx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 14848 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atig6pxx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 59392 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiedu64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 51200 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\aticalrt64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 46080 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\aticalrt.dll + 2011-01-21 20:49 . 2011-01-21 20:49 44544 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\aticalcl64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 44032 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\aticalcl.dll + 2011-01-21 20:49 . 2011-01-21 20:49 53248 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\ati2erec.dll + 2011-01-21 20:49 . 2011-01-21 20:49 43520 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\ati2edxx.dll + 2009-07-14 00:06 . 2009-07-14 00:06 16000 c:\windows\system32\drivers\BdaSup.sys - 2010-09-29 01:12 . 2010-09-29 01:12 53248 c:\windows\system32\drivers\ati2erec.dll + 2011-01-21 20:49 . 2011-01-21 20:49 53248 c:\windows\system32\drivers\ati2erec.dll - 2010-09-04 16:26 . 2011-01-02 16:28 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2010-09-04 16:26 . 2011-01-12 12:52 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2010-09-04 16:26 . 2011-01-02 16:28 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2010-09-04 16:26 . 2011-01-12 12:52 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-07-14 04:54 . 2011-01-12 12:52 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-07-14 04:54 . 2011-01-02 16:28 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2011-01-21 20:49 . 2011-01-21 20:49 16384 c:\windows\system32\atimuixx.dll - 2010-09-29 01:09 . 2010-09-29 01:09 53760 c:\windows\system32\atimpc64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 53760 c:\windows\system32\atimpc64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 12800 c:\windows\system32\atiglpxx.dll - 2010-09-29 01:14 . 2010-09-29 01:14 12800 c:\windows\system32\atiglpxx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 31744 c:\windows\system32\atig6txx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 14848 c:\windows\system32\atig6pxx.dll - 2010-09-29 01:15 . 2010-09-29 01:15 14848 c:\windows\system32\atig6pxx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 59392 c:\windows\system32\atiedu64.dll - 2010-09-29 01:49 . 2010-09-29 01:49 59392 c:\windows\system32\atiedu64.dll - 2010-09-29 01:27 . 2010-09-29 01:27 51200 c:\windows\system32\aticalrt64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 51200 c:\windows\system32\aticalrt64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 44544 c:\windows\system32\aticalcl64.dll - 2010-09-29 01:27 . 2010-09-29 01:27 44544 c:\windows\system32\aticalcl64.dll - 2010-09-29 01:09 . 2010-09-29 01:09 53760 c:\windows\system32\amdpcom64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 53760 c:\windows\system32\amdpcom64.dll - 2010-09-04 16:54 . 2011-01-10 19:25 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2010-09-04 16:54 . 2011-01-22 10:10 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2009-07-14 04:46 . 2011-01-15 14:58 74136 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat + 2010-09-04 16:54 . 2011-01-22 10:10 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2010-09-04 16:54 . 2011-01-10 19:25 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2010-09-04 16:54 . 2011-01-22 10:10 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2010-09-04 16:54 . 2011-01-10 19:25 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2010-09-04 16:54 . 2011-01-10 19:25 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2010-09-04 16:54 . 2011-01-22 21:06 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2010-09-04 16:54 . 2011-01-22 21:06 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2010-09-04 16:54 . 2011-01-10 19:25 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2011-01-21 20:56 . 2011-01-21 20:56 10134 c:\windows\Installer\{FA16AE79-DEFE-CEC4-9213-0CE361C8D627}\ARPPRODUCTICON.exe + 2011-01-21 20:50 . 2011-01-21 20:50 77542 c:\windows\Installer\{EEBAEA5A-07C3-22AD-1E2F-7482BE5C1582}\NewShortcut5_3B1A0823966A48909E77539C330FBF6E.exe + 2011-01-21 20:50 . 2011-01-21 20:50 77542 c:\windows\Installer\{EEBAEA5A-07C3-22AD-1E2F-7482BE5C1582}\NewShortcut4_3B1A0823966A48909E77539C330FBF6E.exe + 2011-01-21 20:50 . 2011-01-21 20:50 77542 c:\windows\Installer\{EEBAEA5A-07C3-22AD-1E2F-7482BE5C1582}\NewShortcut3_3B1A0823966A48909E77539C330FBF6E.exe + 2011-01-21 20:50 . 2011-01-21 20:50 77542 c:\windows\Installer\{EEBAEA5A-07C3-22AD-1E2F-7482BE5C1582}\NewShortcut2_3B1A0823966A48909E77539C330FBF6E.exe + 2011-01-21 20:50 . 2011-01-21 20:50 77542 c:\windows\Installer\{EEBAEA5A-07C3-22AD-1E2F-7482BE5C1582}\ARPPRODUCTICON.exe + 2010-09-04 17:51 . 2011-01-12 12:42 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe - 2010-09-04 17:51 . 2010-12-15 14:39 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe + 2010-09-04 17:51 . 2011-01-12 12:42 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe - 2010-09-04 17:51 . 2010-12-15 14:39 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe + 2010-09-04 17:51 . 2011-01-12 12:42 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe - 2010-09-04 17:51 . 2010-12-15 14:39 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe + 2011-01-21 20:56 . 2011-01-21 20:56 10134 c:\windows\Installer\{87788F6B-90DC-3702-E4E2-BAAC54F6DC06}\ARPPRODUCTICON.exe + 2011-01-21 20:50 . 2011-01-21 20:50 10134 c:\windows\Installer\{8320F92E-6E12-FB6F-B7A7-2C37D86507C1}\ARPPRODUCTICON.exe + 2011-01-21 20:55 . 2011-01-21 20:55 10134 c:\windows\Installer\{6AB57823-3580-4CE0-9CF0-072E2A39460C}\ARPPRODUCTICON.exe + 2011-01-21 20:42 . 2011-01-21 20:42 15086 c:\windows\Installer\{4D87DC92-C328-46EC-A7B4-9C88129DC696}\DS_48.exe + 2011-01-21 20:56 . 2011-01-21 20:56 44758 c:\windows\Installer\{38E45772-7CD6-8400-693C-1D268E6D1850}\NewShortcut11_EAB9635D261D49BE88DDE71A7C809B2D.exe + 2011-01-21 20:56 . 2011-01-21 20:56 10134 c:\windows\Installer\{38E45772-7CD6-8400-693C-1D268E6D1850}\ARPPRODUCTICON.exe + 2011-01-10 22:34 . 2011-01-10 22:34 27648 c:\windows\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C91.exe + 2011-01-12 18:01 . 2011-01-12 18:01 12800 c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll - 2011-01-08 21:14 . 2011-01-08 21:14 12800 c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll - 2011-01-08 21:14 . 2011-01-08 21:14 53248 c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll + 2011-01-12 18:01 . 2011-01-12 18:01 53248 c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll + 2011-01-21 20:49 . 2011-01-21 20:49 2888 c:\windows\SysWOW64\atipblag.dat - 2010-09-18 21:40 . 2011-01-09 03:49 8488 c:\windows\system32\wdi\ERCQueuedResolutions.dat + 2010-09-18 21:40 . 2011-01-22 21:22 8488 c:\windows\system32\wdi\ERCQueuedResolutions.dat + 2011-01-21 20:49 . 2011-01-21 20:49 2888 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atipblag.dat + 2011-01-21 20:49 . 2011-01-21 20:49 2888 c:\windows\system32\atipblag.dat + 2011-01-22 21:25 . 2011-01-22 21:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat - 2011-01-10 19:24 . 2011-01-10 19:28 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2011-01-22 21:25 . 2011-01-22 21:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat - 2011-01-10 19:24 . 2011-01-10 19:28 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2011-01-21 20:56 . 2011-01-21 20:56 9158 c:\windows\Installer\{F61833FE-70D2-06F8-6A53-58BC8DCD0D6C}\ARPPRODUCTICON.exe + 2011-01-21 20:48 . 2011-01-21 20:48 7598 c:\windows\Installer\{EF7E931D-DC84-471B-8DB6-A83358095474}\ead_startmenu_shortc_F557710133CC471182353A95BCD49DB0.exe + 2011-01-21 20:48 . 2011-01-21 20:48 7598 c:\windows\Installer\{EF7E931D-DC84-471B-8DB6-A83358095474}\ead_desktop_shortcut_F557710133CC471182353A95BCD49DB0.exe + 2011-01-21 20:48 . 2011-01-21 20:48 7598 c:\windows\Installer\{EF7E931D-DC84-471B-8DB6-A83358095474}\ARPPRODUCTICON.exe - 2009-07-14 00:15 . 2009-07-14 01:16 135168 c:\windows\SysWOW64\XpsRasterService.dll + 2011-01-12 12:30 . 2010-11-02 04:41 135168 c:\windows\SysWOW64\XpsRasterService.dll + 2011-01-12 12:30 . 2010-11-02 04:41 442880 c:\windows\SysWOW64\XpsPrint.dll + 2011-01-12 12:30 . 2010-11-02 04:41 283648 c:\windows\SysWOW64\XpsGdiConverter.dll - 2010-09-18 16:06 . 2010-06-02 02:55 527192 c:\windows\SysWOW64\XAudio2_7.dll + 2011-01-12 12:37 . 2010-06-02 03:55 527192 c:\windows\SysWOW64\XAudio2_7.dll - 2010-09-18 16:06 . 2010-06-02 02:55 239960 c:\windows\SysWOW64\xactengine3_7.dll + 2011-01-12 12:37 . 2010-06-02 03:55 239960 c:\windows\SysWOW64\xactengine3_7.dll - 2010-09-29 01:49 . 2010-09-29 01:49 278528 c:\windows\SysWOW64\Oemdspif.dll + 2011-01-21 20:49 . 2011-01-21 20:49 278528 c:\windows\SysWOW64\Oemdspif.dll + 2011-01-16 12:16 . 2010-11-12 17:53 157472 c:\windows\SysWOW64\javaws.exe + 2011-01-16 12:16 . 2010-11-12 17:53 145184 c:\windows\SysWOW64\javaw.exe - 2010-09-08 15:25 . 2010-09-08 15:24 145184 c:\windows\SysWOW64\javaw.exe - 2010-09-08 15:25 . 2010-09-08 15:24 145184 c:\windows\SysWOW64\java.exe + 2011-01-16 12:16 . 2010-11-12 17:53 145184 c:\windows\SysWOW64\java.exe + 2011-01-12 12:37 . 2010-05-26 10:41 248672 c:\windows\SysWOW64\d3dx11_43.dll - 2010-09-18 16:06 . 2010-05-26 09:41 248672 c:\windows\SysWOW64\d3dx11_43.dll - 2010-09-18 16:06 . 2010-05-26 09:41 470880 c:\windows\SysWOW64\d3dx10_43.dll + 2011-01-12 12:37 . 2010-05-26 10:41 470880 c:\windows\SysWOW64\d3dx10_43.dll + 2011-01-12 12:30 . 2010-11-02 04:35 218624 c:\windows\SysWOW64\d3d10_1core.dll + 2011-01-12 12:30 . 2010-11-02 04:35 161792 c:\windows\SysWOW64\d3d10_1.dll - 2009-07-13 23:27 . 2009-07-14 01:15 161792 c:\windows\SysWOW64\d3d10_1.dll + 2011-01-12 12:30 . 2010-11-02 04:35 739840 c:\windows\SysWOW64\d2d1.dll + 2011-01-21 20:49 . 2011-01-21 20:49 356352 c:\windows\SysWOW64\atipdlxx.dll - 2010-09-29 01:49 . 2010-09-29 01:49 356352 c:\windows\SysWOW64\atipdlxx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 550400 c:\windows\SysWOW64\aticfx32.dll + 2011-01-21 20:49 . 2011-01-21 20:49 249856 c:\windows\SysWOW64\atiadlxy.dll + 2011-01-12 12:30 . 2010-11-02 05:18 229888 c:\windows\system32\XpsRasterService.dll - 2009-07-14 00:37 . 2009-07-14 01:41 229888 c:\windows\system32\XpsRasterService.dll + 2011-01-12 12:30 . 2010-11-02 05:18 662528 c:\windows\system32\XpsPrint.dll + 2011-01-12 12:30 . 2010-11-02 05:18 470016 c:\windows\system32\XpsGdiConverter.dll - 2010-09-18 16:06 . 2010-06-02 02:55 518488 c:\windows\system32\XAudio2_7.dll + 2011-01-12 12:37 . 2010-06-02 03:55 518488 c:\windows\system32\XAudio2_7.dll - 2010-09-18 16:06 . 2010-06-02 02:55 176984 c:\windows\system32\xactengine3_7.dll + 2011-01-12 12:37 . 2010-06-02 03:55 176984 c:\windows\system32\xactengine3_7.dll + 2009-07-14 09:16 . 2011-01-21 18:15 723254 c:\windows\system32\perfh013.dat - 2009-07-14 09:16 . 2011-01-07 15:06 723254 c:\windows\system32\perfh013.dat - 2009-07-14 02:36 . 2011-01-07 15:06 637686 c:\windows\system32\perfh009.dat + 2009-07-14 02:36 . 2011-01-21 18:15 637686 c:\windows\system32\perfh009.dat - 2009-07-14 09:16 . 2011-01-07 15:06 143106 c:\windows\system32\perfc013.dat + 2009-07-14 09:16 . 2011-01-21 18:15 143106 c:\windows\system32\perfc013.dat + 2009-07-14 02:36 . 2011-01-21 18:15 115736 c:\windows\system32\perfc009.dat - 2009-07-14 02:36 . 2011-01-07 15:06 115736 c:\windows\system32\perfc009.dat - 2009-07-14 05:30 . 2011-01-03 15:14 143360 c:\windows\system32\DriverStore\infstrng.dat + 2009-07-14 05:30 . 2011-01-21 20:54 143360 c:\windows\system32\DriverStore\infstrng.dat + 2009-07-14 05:30 . 2011-01-21 20:52 143360 c:\windows\system32\DriverStore\infstor.dat - 2009-07-14 05:30 . 2011-01-03 15:14 143360 c:\windows\system32\DriverStore\infstor.dat + 2011-01-15 14:54 . 2009-08-17 13:57 116640 c:\windows\system32\DriverStore\FileRepository\rtl2832ubda.inf_amd64_neutral_f843233e4d0bb94a\RTL2832UBDA.sys + 2011-01-21 20:49 . 2011-01-21 20:49 278528 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\Oemdspif.dll + 2011-01-21 20:49 . 2011-01-21 20:49 120320 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atitmm64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 356352 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atipdlxx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 423424 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atipdl64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 332800 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\ATIODE.exe + 2011-01-21 20:49 . 2011-01-21 20:49 289792 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atikmpag.sys + 2011-01-21 20:49 . 2011-01-21 20:49 224001 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiicdxx.dat + 2011-01-21 20:49 . 2011-01-21 20:49 203776 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiesrxx.exe + 2011-01-21 20:49 . 2011-01-21 20:49 478720 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atieclxx.exe + 2011-01-21 20:49 . 2011-01-21 20:49 462848 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\ATIDEMGX.dll + 2011-01-21 20:49 . 2011-01-21 20:49 648704 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\aticfx64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 550400 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\aticfx32.dll + 2011-01-21 20:49 . 2011-01-21 20:49 118784 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atibtmon.exe + 2011-01-21 20:49 . 2011-01-21 20:49 143360 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiapfxx.exe + 2011-01-21 20:49 . 2011-01-21 20:49 249856 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiadlxy.dll + 2011-01-21 20:49 . 2011-01-21 20:49 351232 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiadlxx.dll - 2009-07-13 23:38 . 2009-07-13 23:38 258048 c:\windows\system32\drivers\dxgmms1.sys + 2011-01-12 12:30 . 2010-11-02 02:55 258048 c:\windows\system32\drivers\dxgmms1.sys + 2011-01-12 12:30 . 2010-11-02 05:29 982912 c:\windows\system32\drivers\dxgkrnl.sys + 2011-01-21 20:49 . 2011-01-21 20:49 289792 c:\windows\system32\drivers\atikmpag.sys - 2010-09-18 16:06 . 2010-05-26 09:41 276832 c:\windows\system32\d3dx11_43.dll + 2011-01-12 12:37 . 2010-05-26 10:41 276832 c:\windows\system32\d3dx11_43.dll - 2010-09-18 16:06 . 2010-05-26 09:41 511328 c:\windows\system32\d3dx10_43.dll + 2011-01-12 12:37 . 2010-05-26 10:41 511328 c:\windows\system32\d3dx10_43.dll + 2011-01-12 12:30 . 2010-11-02 05:12 320512 c:\windows\system32\d3d10_1core.dll + 2011-01-12 12:30 . 2010-11-02 05:12 197120 c:\windows\system32\d3d10_1.dll - 2009-07-13 23:41 . 2009-07-14 01:40 197120 c:\windows\system32\d3d10_1.dll + 2011-01-12 12:30 . 2010-11-02 05:12 902656 c:\windows\system32\d2d1.dll - 2010-09-04 17:15 . 2010-05-19 14:31 144384 c:\windows\system32\cdd.dll + 2011-01-12 12:30 . 2010-11-02 05:05 144384 c:\windows\system32\cdd.dll - 2010-09-29 01:49 . 2010-09-29 01:49 120320 c:\windows\system32\atitmm64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 120320 c:\windows\system32\atitmm64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 224001 c:\windows\system32\atiicdxx.dat + 2011-01-21 20:49 . 2011-01-21 20:49 203776 c:\windows\system32\atiesrxx.exe + 2011-01-21 20:49 . 2011-01-21 20:49 478720 c:\windows\system32\atieclxx.exe + 2011-01-21 20:49 . 2011-01-21 20:49 462848 c:\windows\system32\ATIDEMGX.dll - 2010-09-29 01:55 . 2010-09-29 01:55 143360 c:\windows\system32\atiapfxx.exe + 2011-01-21 20:49 . 2011-01-21 20:49 143360 c:\windows\system32\atiapfxx.exe + 2009-07-14 05:01 . 2011-01-22 21:22 472004 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2011-01-04 21:39 . 2011-01-22 21:22 832494 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2100342236-492287434-466883542-1002-12288.dat + 2011-01-21 20:49 . 2011-01-21 20:49 279552 c:\windows\Installer\c9d4a8.msi + 2011-01-21 20:49 . 2011-01-21 20:49 562176 c:\windows\Installer\c9d49c.msi + 2011-01-21 20:49 . 2011-01-21 20:49 448512 c:\windows\Installer\c9d2e9.msi - 2010-09-04 17:51 . 2010-12-15 14:39 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe + 2010-09-04 17:51 . 2011-01-12 12:42 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe - 2010-09-04 17:51 . 2010-12-15 14:39 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe + 2010-09-04 17:51 . 2011-01-12 12:42 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe + 2010-09-04 17:51 . 2011-01-12 12:42 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe - 2010-09-04 17:51 . 2010-12-15 14:39 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe + 2010-09-04 17:51 . 2011-01-12 12:42 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe - 2010-09-04 17:51 . 2010-12-15 14:39 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe + 2010-09-04 17:51 . 2011-01-12 12:42 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe - 2010-09-04 17:51 . 2010-12-15 14:39 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe - 2010-09-04 17:51 . 2010-12-15 14:39 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe + 2010-09-04 17:51 . 2011-01-12 12:42 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe - 2010-09-04 17:51 . 2010-12-15 14:39 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe + 2010-09-04 17:51 . 2011-01-12 12:42 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe + 2004-08-03 23:56 . 2004-08-03 23:56 351232 c:\windows\Installer\$PatchCache$\Managed\D139E7FE48CDB174D86B8A3385904547\4.0.0\winhttp.dll - 2011-01-08 21:14 . 2011-01-08 21:14 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll + 2011-01-12 18:01 . 2011-01-12 18:01 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll - 2011-01-08 21:14 . 2011-01-08 21:14 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll + 2011-01-12 18:02 . 2011-01-12 18:02 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll - 2011-01-08 21:14 . 2011-01-08 21:14 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll + 2011-01-12 18:02 . 2011-01-12 18:02 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll + 2011-01-12 18:02 . 2011-01-12 18:02 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll - 2011-01-08 21:14 . 2011-01-08 21:14 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll + 2011-01-12 18:02 . 2011-01-12 18:02 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll - 2011-01-08 21:14 . 2011-01-08 21:14 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll - 2011-01-08 21:14 . 2011-01-08 21:14 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2011-01-12 12:35 . 2011-01-12 12:35 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2011-01-12 12:35 . 2011-01-12 12:35 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2011-01-08 21:14 . 2011-01-08 21:14 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2011-01-08 21:14 . 2011-01-08 21:14 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2011-01-12 12:35 . 2011-01-12 12:35 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2011-01-12 12:35 . 2011-01-12 12:35 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2011-01-08 21:14 . 2011-01-08 21:14 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2011-01-08 21:13 . 2011-01-08 21:13 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2011-01-12 12:35 . 2011-01-12 12:35 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2011-01-08 21:13 . 2011-01-08 21:13 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2011-01-12 12:35 . 2011-01-12 12:35 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2011-01-08 21:13 . 2011-01-08 21:13 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2011-01-12 18:01 . 2011-01-12 18:01 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2011-01-12 12:35 . 2011-01-12 12:35 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2011-01-08 21:13 . 2011-01-08 21:13 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2011-01-12 18:01 . 2011-01-12 18:01 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll - 2011-01-08 21:14 . 2011-01-08 21:14 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll - 2009-07-13 23:44 . 2009-07-14 01:15 1495040 c:\windows\SysWOW64\ExplorerFrame.dll + 2011-01-12 12:30 . 2010-06-26 05:14 1495040 c:\windows\SysWOW64\ExplorerFrame.dll + 2011-01-12 12:30 . 2010-11-02 04:35 1074176 c:\windows\SysWOW64\DWrite.dll + 2011-01-12 12:37 . 2010-05-26 10:41 1998168 c:\windows\SysWOW64\D3DX9_43.dll - 2010-09-18 16:06 . 2010-05-26 09:41 1998168 c:\windows\SysWOW64\D3DX9_43.dll + 2011-01-12 12:37 . 2010-05-26 10:41 1868128 c:\windows\SysWOW64\d3dcsx_43.dll - 2010-09-18 16:06 . 2010-05-26 09:41 1868128 c:\windows\SysWOW64\d3dcsx_43.dll + 2011-01-12 12:37 . 2010-05-26 10:41 2106216 c:\windows\SysWOW64\D3DCompiler_43.dll - 2010-09-18 16:06 . 2010-05-26 09:41 2106216 c:\windows\SysWOW64\D3DCompiler_43.dll + 2011-01-12 12:30 . 2010-11-02 04:35 1170944 c:\windows\SysWOW64\d3d10warp.dll + 2011-01-21 20:49 . 2011-01-21 20:49 3460096 c:\windows\SysWOW64\atiumdva.dll - 2010-09-29 01:22 . 2010-09-29 01:22 3460096 c:\windows\SysWOW64\atiumdva.dll + 2011-01-21 20:49 . 2011-01-21 20:49 4122624 c:\windows\SysWOW64\atiumdag.dll + 2011-01-21 20:49 . 2011-01-21 20:49 4066816 c:\windows\SysWOW64\atidxx32.dll + 2011-01-21 20:49 . 2011-01-21 20:49 5441024 c:\windows\SysWOW64\aticaldd.dll + 2011-01-12 12:30 . 2010-11-02 05:12 1133568 c:\windows\system32\FntCache.dll + 2011-01-12 12:30 . 2010-06-26 05:31 1863680 c:\windows\system32\ExplorerFrame.dll - 2009-07-13 23:57 . 2009-07-14 01:40 1863680 c:\windows\system32\ExplorerFrame.dll + 2011-01-12 12:30 . 2010-11-02 05:12 1540608 c:\windows\system32\DWrite.dll + 2011-01-21 20:49 . 2011-01-21 20:49 3460096 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiumdva.dll + 2011-01-21 20:49 . 2011-01-21 20:49 4122624 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiumdag.dll + 2011-01-21 20:49 . 2011-01-21 20:49 3217408 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiumd6a.dll + 2011-01-21 20:49 . 2011-01-21 20:49 5258240 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atiumd64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 8120320 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atikmdag.sys + 2011-01-21 20:49 . 2011-01-21 20:49 4794368 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atidxx64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 4066816 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atidxx32.dll + 2011-01-21 20:49 . 2011-01-21 20:49 6815232 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\aticaldd64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 5441024 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\aticaldd.dll + 2011-01-21 20:49 . 2011-01-21 20:49 8120320 c:\windows\system32\drivers\atikmdag.sys - 2010-09-18 16:06 . 2010-05-26 09:41 2401112 c:\windows\system32\D3DX9_43.dll + 2011-01-12 12:37 . 2010-05-26 10:41 2401112 c:\windows\system32\D3DX9_43.dll + 2011-01-12 12:37 . 2010-05-26 10:41 1907552 c:\windows\system32\d3dcsx_43.dll - 2010-09-18 16:06 . 2010-05-26 09:41 1907552 c:\windows\system32\d3dcsx_43.dll + 2011-01-12 12:37 . 2010-05-26 10:41 2526056 c:\windows\system32\D3DCompiler_43.dll - 2010-09-18 16:06 . 2010-05-26 09:41 2526056 c:\windows\system32\D3DCompiler_43.dll + 2011-01-21 20:49 . 2011-01-21 20:49 3217408 c:\windows\system32\atiumd6a.dll + 2011-01-21 20:49 . 2011-01-21 20:49 5258240 c:\windows\system32\atiumd64.dll + 2011-01-21 20:49 . 2011-01-21 20:49 6815232 c:\windows\system32\aticaldd64.dll + 2009-07-14 04:45 . 2011-01-12 12:56 3723533 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat - 2009-07-14 04:45 . 2011-01-02 17:27 3723533 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat + 2011-01-04 21:39 . 2011-01-10 22:47 1056648 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2100342236-492287434-466883542-1002-8192.dat - 2011-01-03 01:25 . 2011-01-09 22:26 4197156 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2100342236-492287434-466883542-1001-8192.dat + 2011-01-03 01:25 . 2011-01-11 20:32 4197156 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2100342236-492287434-466883542-1001-8192.dat + 2011-01-15 23:28 . 2011-01-20 23:05 1713732 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2100342236-492287434-466883542-1001-12288.dat + 2011-01-22 20:55 . 2011-01-22 20:55 1402880 c:\windows\Installer\e8c200.msi + 2011-01-21 20:49 . 2011-01-21 20:49 1469440 c:\windows\Installer\c9d4b5.msi + 2011-01-21 20:49 . 2011-01-21 20:49 1888768 c:\windows\Installer\c9d4a2.msi + 2011-01-21 20:49 . 2011-01-21 20:49 6744064 c:\windows\Installer\c9d2f0.msi + 2010-12-16 23:17 . 2010-12-16 23:17 3362304 c:\windows\Installer\141641.msp + 2010-09-04 17:51 . 2011-01-12 12:42 1172240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe - 2010-09-04 17:51 . 2010-12-15 14:39 1172240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe + 2010-09-04 17:51 . 2011-01-12 12:42 1165584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe - 2010-09-04 17:51 . 2010-12-15 14:39 1165584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe + 2011-01-21 20:42 . 2011-01-21 20:42 4374792 c:\windows\Installer\{4D87DC92-C328-46EC-A7B4-9C88129DC696}\EAregister.exe + 2011-01-12 12:35 . 2011-01-12 12:35 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2011-01-08 21:13 . 2011-01-08 21:13 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2011-01-12 12:35 . 2011-01-12 12:35 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2011-01-08 21:13 . 2011-01-08 21:13 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2011-01-21 20:49 . 2011-01-21 20:49 16702976 c:\windows\SysWOW64\atioglxx.dll + 2009-07-14 02:34 . 2011-01-22 17:08 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT - 2009-07-14 02:34 . 2011-01-10 18:50 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT + 2010-09-06 06:17 . 2011-01-12 12:43 39334856 c:\windows\system32\MRT.exe + 2011-01-21 20:49 . 2011-01-21 20:49 16702976 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atioglxx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 21610496 c:\windows\system32\DriverStore\FileRepository\c7109589.inf_amd64_neutral_d7454bc917e9ab34\B109234\atio6axx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 21610496 c:\windows\system32\atio6axx.dll + 2011-01-21 20:49 . 2011-01-21 20:49 14476288 c:\windows\Installer\c9d4af.msi + 2011-01-21 20:46 . 2011-01-21 20:46 13499392 c:\windows\Installer\c9d27d.msi + 2008-09-27 22:45 . 2008-09-27 22:45 10478592 c:\windows\Installer\c9d272.msi + 2010-02-25 12:01 . 2010-02-25 12:01 10967552 c:\windows\Installer\8794cc.msi + 2010-12-21 12:06 . 2010-12-21 12:06 11570688 c:\windows\Installer\14162a.msp . -- Snapshot teruggezet naar huidige datum -- . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Nero MediaHome 4"="c:\program files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe" [2010-03-08 5174568] "AdobeBridge"="" [BU] "Steam"="i:\games\stream\steam.exe" [2011-01-22 420352] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072] "BitTorrent"="i:\program files\Nieuwe map\BitTorrent.exe" [2010-12-22 4771184] "EA Core"="c:\program files (x86)\Electronic Arts\EADM\Core.exe" [2008-07-16 2772992] [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "ATICustomerCare"="c:\program files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-03-04 311296] "F-Secure TNB"="c:\program files (x86)\Telenet Security Pack\FSGUI\TNBUtil.exe" [2009-08-05 2349664] "F-Secure Manager"="c:\program files (x86)\Telenet Security Pack\Common\FSM32.EXE" [2009-08-05 199264] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-11-25 98304] [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce] "GrpConv"="grpconv -o" [X] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-09-04 834544] R1 F-Secure HIPS;F-Secure HIPS Driver;c:\program files (x86)\Telenet Security Pack\HIPS\drivers\fshs.sys [2009-08-05 57920] R1 FSES;F-Secure Email Scanning Driver;c:\windows\system32\drivers\fses.sys [2010-12-22 45624] R1 FSFW;F-Secure Firewall Driver;c:\windows\system32\drivers\fsdfw.sys [2010-12-22 94280] R1 fsvista;F-Secure Vista Support Driver;c:\program files (x86)\Telenet Security Pack\Anti-Virus\minifilter\fsvista.sys [2009-08-05 14904] R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-01-21 203776] R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [2010-11-09 21992] R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-04 136176] R3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2011-01-21 8120320] R3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2011-01-21 289792] R3 CTUPnPSv;Creative Centrale Media Server;c:\program files (x86)\Creative\Creative Centrale\CTUPnPSv.exe [2008-05-21 64000] R3 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files (x86)\Telenet Security Pack\Anti-Virus\minifilter\fsgk.sys [2010-11-30 194728] R3 FSORSPClient;F-Secure ORSP Client;c:\program files (x86)\Telenet Security Pack\ORSP Client\fsorsp.exe [2010-12-20 63992] R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 40832] R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 72064] R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 282616] R3 RTL2832UBDA;REALTEK 2832U BDA Driver;c:\windows\system32\drivers\RTL2832UBDA.sys [2009-08-17 116640] R3 RTL2832UUSB;REALTEK 2832U USB Driver;c:\windows\system32\Drivers\RTL2832UUSB.sys [2009-08-17 38944] R3 SiS6350;SiS6350;c:\windows\system32\DRIVERS\SISGRKMD.sys [2009-12-16 558592] R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-02 1255736] R4 F-Secure Filter;F-Secure File System Filter;c:\program files (x86)\Telenet Security Pack\Anti-Virus\Win2K\FSfilter.sys [2009-08-05 39776] R4 F-Secure Recognizer;F-Secure File System Recognizer;c:\program files (x86)\Telenet Security Pack\Anti-Virus\Win2K\FSrec.sys [2009-08-05 25184] S3 RTL8023x64;Realtek 10/100 NIC Family NDIS x64-stuurprogramma;c:\windows\system32\DRIVERS\Rtnic64.sys [2009-06-10 51712] S3 SiSGbeLH;SiS191/SiS190 NDIS 6.0-stuurprogramma voor Ethernet-apparaat;c:\windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832] . Inhoud van de 'Gedeelde Taken' map 2011-01-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-04 18:10] 2011-01-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-04 18:10] 2011-01-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2100342236-492287434-466883542-1002Core.job - c:\users\Niels\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-04 17:38] 2011-01-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2100342236-492287434-466883542-1002UA.job - c:\users\Niels\AppData\Local\Google\Update\GoogleUpdate.exe [2010-09-04 17:38] 2011-01-22 c:\windows\Tasks\Scheduled scanning task.job - c:\progra~2\TELENE~1\ANTI-V~1\fsav.exe [2010-10-24 15:56] . --------- x86-64 ----------- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2010-11-30 1436224] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x0 . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SYSTEM32\blank.htm uInternet Settings,ProxyServer = http= IE: &Download by Orbit - c:\program files (x86)\Orbitdownloader\orbitmxt.dll/201 IE: &Grab video by Orbit - c:\program files (x86)\Orbitdownloader\orbitmxt.dll/204 IE: Do&wnload selected by Orbit - c:\program files (x86)\Orbitdownloader\orbitmxt.dll/203 IE: Down&load all by Orbit - c:\program files (x86)\Orbitdownloader\orbitmxt.dll/202 IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: Free YouTube to Mp3 Converter - c:\users\Elise\AppData\Roaming\DVDVideoSoftIEHelpers\youtubetomp3.htm FF - ProfilePath - . - - - - ORPHANS VERWIJDERD - - - - Wow6432Node-HKCU-Run-MSSMSGS - winexi32.rom Wow6432Node-HKLM-RunOnce- - (no file) WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file) WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) AddRemove-facemoods - c:\program files (x86)\facemoods.com\facemoods\1.4.17.1\uninstall.exe AddRemove-Grand Theft Auto - d:\games\gta\Uninst.isu AddRemove-Grand Theft Auto IV_is1 - d:\games\Grand Theft Auto IV\unins000.exe AddRemove-Sacred Underworld_is1 - d:\games\Sacred Underworld\unins000.exe AddRemove-Sanny Builder 3_is1 - d:\program files\Sanny Builder 3\unins000.exe AddRemove-Shockwave - c:\windows\System32\Macromed\SHOCKW~1\UNWISE.EXE AddRemove-Star Wars Battlefront II_is1 - d:\games\Lucas Arts\Star Wars Battlefront II\unins000.exe AddRemove-Tipard Blu-ray Converter_is1 - d:\tipard blu-ray converter\unins000.exe AddRemove-Unreal - i:\ze\System\Uninst.isu AddRemove-Google Chrome - c:\users\Elise\AppData\Local\Google\Chrome\Application\6.0.472.63\Installer\setup.exe AddRemove-Google Chrome SxS - c:\users\Niels\AppData\Local\Google\Chrome SxS\Application\9.0.583.0\Installer\setup.exe AddRemove-ImTOO MKV Converter 6 - c:\program files (x86)\ImTOO\MKV Converter 6\Uninstall.exe AddRemove-Xilisoft HD Video Converter 6 - d:\hd video converter 6\Uninstall.exe . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- [HKEY_USERS\S-1-5-21-2100342236-492287434-466883542-1001\Software\SecuROM\License information*] "datasecu"=hex:9d,b0,e5,bb,67,4a,80,45,eb,a4,61,d5,2f,81,3f,fc,99,27,fe,61,3a, 6d,cc,dc,ee,ea,ad,58,96,92,ce,12,2c,09,37,27,e4,8e,13,a4,be,ba,22,82,6b,e4,\ "rkeysecu"=hex:8b,c3,4f,45,04,90,81,1e,6b,c9,d3,73,c6,e7,24,ba [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx" "ThreadingModel"="Apartment" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx" "ThreadingModel"="Apartment" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2011-01-22 22:48:52 ComboFix-quarantined-files.txt 2011-01-22 21:48 Pre-Run: 33.696.960.512 bytes beschikbaar Post-Run: 34.596.560.896 bytes beschikbaar - - End Of File - - CEA167E76EF271400877845D43938841