ComboFix 12-03-17.01 - Gateway 03/18/2012 18:02:54.2.

1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.52.3082.18.2038.1416 [GMT -5:
00]
Running from: c:\documents and settings\Gateway\Mis documentos\Downloads\ComboFi
x.exe
* Created a new restore point
* Resident AV is active
.
.
.
((((((((((((((((((((((((( Files Created from 2012-02-18 to 2012-03-18 )))))))
))))))))))))))))))))))))
.
.
2012-03-06 19:46 . 2012-03-06 19:47
-------d-----wc:\docum
ents and settings\a.rios
2012-03-06 16:04 . 2001-06-27 18:15
45056 ----a-wc:\archivos de p
rograma\Windows NT\HyperTerminal\HyperTrm.exe
2012-03-06 16:04 . 2001-06-27 18:15
475136 ----a-wc:\archivos de p
rograma\Windows NT\HyperTerminal\Hypertrm.dll
2012-03-06 16:04 . 2001-06-13 18:34
61440 ----a-wc:\archivos de p
rograma\Windows NT\HyperTerminal\Hticons.dll
2012-03-06 16:04 . 2000-09-19 13:56
113236 ----a-wc:\archivos de p
rograma\Windows NT\HyperTerminal\Purchase Private Edition.exe
2012-03-06 16:04 . 2000-08-22 14:24
149504 ----a-wc:\windows\syste
m32\UNWISE32.EXE
2012-03-06 16:04 . 2000-08-22 14:24
117390 ----a-wc:\archivos de p
rograma\Windows NT\HyperTerminal\register.exe
2012-02-20 18:31 . 2012-02-20 18:31
-------d-----wc:\archi
vos de programa\Citrix
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))
)))))))))))))))))))))))))))))))
.
2012-03-16 06:51 . 2011-06-18 11:34
414368 ----a-wc:\windows\syste
m32\FlashPlayerCPLApp.cpl
2012-02-07 13:11 . 2012-01-24 22:59
83360 ----a-wc:\windows\syste
m32\LMIRfsClientNP.dll
2012-02-07 13:11 . 2012-01-24 22:59
52096 ----a-wc:\windows\syste
m32\Spool\prtprocs\w32x86\LMIproc.dll
2012-02-07 13:11 . 2012-01-24 22:59
30592 ----a-wc:\windows\syste
m32\LMIport.dll
2012-02-07 13:11 . 2012-01-24 22:59
87424 ----a-wc:\windows\syste
m32\LMIinit.dll
2012-01-29 14:20 . 2012-01-29 14:20
499712 ----a-wc:\windows\syste
m32\msvcp71.dll
2012-01-29 14:20 . 2012-01-29 14:20
348160 ----a-wc:\windows\syste
m32\msvcr71.dll
2012-01-12 17:20 . 2008-04-14 01:52
1860096 ----a-wc:\windows\syste
m32\win32k.sys
2012-01-11 19:06 . 2012-02-16 21:29
3072
------wc:\windows\syste
m32\iacenc.dll
.
.
------- Sigcheck ------Note: Unsigned files aren't necessarily malware.
.
[-] 2008-06-03 . E33E01E006E907C758B2BD54E42E0ABD . 1572352 . . [5.1.2600.5512]

. . c:\windows\system32\sfcfiles.dll
.
[-] 2011-10-19 . 2C553EEFDDDE3B1EE88E0DBB2CD346BB . 296960 . . [5.1.2600.5512] .
. c:\windows\system32\termsrv.dll
[-] 2011-10-19 . 2C553EEFDDDE3B1EE88E0DBB2CD346BB . 296960 . . [5.1.2600.5512] .
. c:\windows\system32\dllcache\termsrv.dll
.
((((((((((((((((((((((((((((( SnapShot@2012-02-16_22.01.01 )))))))))))))))))
))))))))))))))))))))))))
.
- 2008-04-14 02:18 . 2008-04-14 02:18 90112
c:\windows\system32\w
shext.dll
+ 2008-04-14 02:18 . 2008-05-09 10:55 90112
c:\windows\system32\w
shext.dll
+ 2008-04-14 02:18 . 2009-06-25 08:26 54272
c:\windows\system32\w
digest.dll
+ 2008-04-14 02:19 . 2011-11-08 13:46 46080
c:\windows\system32\t
zchange.exe
+ 2008-04-14 02:19 . 2009-06-15 10:44 78336
c:\windows\system32\t
elnet.exe
+ 2012-02-16 21:24 . 2011-08-12 18:51 26488
c:\windows\system32\s
pupdsvc.exe
+ 2008-04-14 02:19 . 2010-08-17 13:17 58880
c:\windows\system32\s
poolsv.exe
+ 2011-03-14 06:29 . 2007-11-30 11:18 18808
c:\windows\system32\s
pmsg.dll
+ 2008-04-14 02:18 . 2009-06-25 08:26 56832
c:\windows\system32\s
ecur32.dll
+ 2001-08-24 11:00 . 2009-02-06 10:39 35328
c:\windows\system32\s
c.exe
- 2008-04-14 02:18 . 2008-04-14 02:18 79872
c:\windows\system32\r
aschap.dll
+ 2008-04-14 02:18 . 2009-10-12 13:39 79872
c:\windows\system32\r
aschap.dll
+ 2008-06-03 01:53 . 2011-12-19 08:07 44544
c:\windows\system32\p
ngfilt.dll
- 2008-06-03 01:53 . 2008-06-03 01:53 44544
c:\windows\system32\p
ngfilt.dll
- 2001-08-24 11:00 . 2012-01-02 19:45 76276
c:\windows\system32\p
erfc00A.dat
+ 2001-08-24 11:00 . 2012-02-19 23:21 76276
c:\windows\system32\p
erfc00A.dat
+ 2001-08-24 11:00 . 2012-02-19 23:21 58504
c:\windows\system32\p
erfc009.dat
- 2001-08-24 11:00 . 2012-01-02 19:45 58504
c:\windows\system32\p
erfc009.dat
+ 2001-08-24 11:00 . 2011-09-26 16:41 22528
c:\windows\system32\o
leaccrc.dll
+ 2011-03-14 06:24 . 2008-06-12 14:22 91648
c:\windows\system32\m
txoci.dll
- 2011-03-14 06:24 . 2008-04-14 02:18 91648
c:\windows\system32\m
txoci.dll
+ 2008-04-14 02:18 . 2008-06-12 14:22 66560
c:\windows\system32\m
txclu.dll
- 2008-04-14 02:18 . 2008-04-14 02:18 66560
c:\windows\system32\m
txclu.dll
+ 2008-04-14 03:18 . 2009-11-27 17:13 17920
c:\windows\system32\m
syuv.dll
+ 2001-08-24 11:00 . 2009-11-27 16:08 28672
c:\windows\system32\m
svidc32.dll

- 2008-04-14 02:18 .
srle32.dll
+ 2008-04-14 02:18 .
srle32.dll
+ 2008-06-03 01:53 .
sfeedsbs.dll
- 2011-03-14 06:24 .
sdtclog.dll
+ 2011-03-14 06:24 .
sdtclog.dll
+ 2008-04-14 02:18 .
scms.dll
+ 2008-04-14 02:18 .
sasn1.dll
- 2008-04-14 02:18 .
ciseq.dll
+ 2008-04-14 02:18 .
ciseq.dll
+ 2008-06-03 01:53 .
sproxy.dll
+ 2008-04-14 03:18 .
yuv_32.dll
- 2011-03-14 06:26 .
sign32.dll
+ 2011-03-14 06:26 .
sign32.dll
+ 2008-06-03 01:53 .
eudinit.exe
+ 2008-06-03 01:53 .
ernonce.dll
+ 2008-06-03 01:53 .
eencode.dll
- 2008-06-03 01:53 .
eencode.dll
+ 2008-06-03 01:53 .
e4uinit.exe
- 2008-04-14 02:18 .
ccvid.dll
+ 2008-04-14 02:18 .
ccvid.dll
+ 2008-06-03 01:53 .
cardie.dll
+ 2008-04-14 02:18 .
ontsub.dll
+ 2008-04-13 18:57 .
rivers\ndproxy.sys
+ 2008-04-13 18:57 .
rivers\ndistapi.sys
+ 2008-04-13 18:31 .
rivers\ksecdd.sys
+ 2008-04-14 02:18 .
nsrslvr.dll
- 2008-04-14 02:18 .
nsrslvr.dll
- 2008-04-14 02:18 .
llcache\wshext.dll
+ 2008-04-14 02:18 .
llcache\wshext.dll
+ 2008-04-14 02:18 .
llcache\wdigest.dll

2008-04-14 02:18

11264

c:\windows\system32\m

2009-11-27 16:08

11264

c:\windows\system32\m

2011-12-19 08:07

52224

c:\windows\system32\m

2008-04-14 02:18

58880

c:\windows\system32\m

2008-06-12 14:22

58880

c:\windows\system32\m

2008-06-24 16:44

74240

c:\windows\system32\m

2009-09-04 21:04

58880

c:\windows\system32\m

2008-04-14 02:18

23040

c:\windows\system32\m

2011-10-14 14:47

23040

c:\windows\system32\m

2011-12-19 08:07

27648

c:\windows\system32\j

2009-11-27 16:08

48128

c:\windows\system32\i

2008-04-14 02:18

86016

c:\windows\system32\i

2010-11-18 18:15

86016

c:\windows\system32\i

2011-12-16 12:22

13824

c:\windows\system32\i

2011-12-19 08:07

44544

c:\windows\system32\i

2011-12-19 08:07

78336

c:\windows\system32\i

2008-06-03 01:53

78336

c:\windows\system32\i

2011-12-16 12:22

70656

c:\windows\system32\i

2008-04-14 02:18

80384

c:\windows\system32\i

2010-06-17 14:03

80384

c:\windows\system32\i

2011-12-19 08:07

63488

c:\windows\system32\i

2009-10-15 16:32

81920

c:\windows\system32\f

2010-11-02 15:17

40960

c:\windows\system32\d

2011-07-08 14:02

10496

c:\windows\system32\d

2009-06-24 11:18

92928

c:\windows\system32\d

2009-04-20 17:18

45568

c:\windows\system32\d

2008-04-14 02:18

45568

c:\windows\system32\d

2008-04-14 02:18

90112

c:\windows\system32\d

2008-05-09 10:55

90112

c:\windows\system32\d

2009-06-25 08:26

54272

c:\windows\system32\d

+ 2011-03-14 06:26 . 2010-10-11

llcache\wab.exe
+ 2009-06-15 10:44 . 2009-06-15
llcache\tlntsess.exe
+ 2008-04-14 02:19 . 2009-06-15
llcache\telnet.exe
+ 2008-04-14 02:19 . 2010-08-17
llcache\spoolsv.exe
+ 2008-04-14 02:18 . 2009-06-25
llcache\secur32.dll
+ 2001-08-24 11:00 . 2009-02-06
llcache\sc.exe
+ 2008-04-14 02:18 . 2009-10-12
llcache\raschap.dll
- 2008-04-14 02:18 . 2008-04-14
llcache\raschap.dll
- 2008-06-03 01:53 . 2008-06-03
llcache\pngfilt.dll
+ 2008-06-03 01:53 . 2011-12-19
llcache\pngfilt.dll
+ 2001-08-24 11:00 . 2011-09-26
llcache\oleaccrc.dll
+ 2008-04-13 18:57 . 2010-11-02
llcache\ndproxy.sys
+ 2008-04-13 18:57 . 2011-07-08
llcache\ndistapi.sys
- 2011-03-14 06:24 . 2008-04-14
llcache\mtxoci.dll
+ 2011-03-14 06:24 . 2008-06-12
llcache\mtxoci.dll
- 2008-04-14 02:18 . 2008-04-14
llcache\mtxclu.dll
+ 2008-04-14 02:18 . 2008-06-12
llcache\mtxclu.dll
+ 2009-11-27 17:13 . 2009-11-27
llcache\msyuv.dll
+ 2001-08-24 11:00 . 2009-11-27
llcache\msvidc32.dll
+ 2008-04-14 02:18 . 2009-11-27
llcache\msrle32.dll
- 2008-04-14 02:18 . 2008-04-14
llcache\msrle32.dll
+ 2011-12-19 08:07 . 2011-12-19
llcache\msfeedsbs.dll
+ 2011-03-14 06:24 . 2008-06-12
llcache\msdtclog.dll
- 2011-03-14 06:24 . 2008-04-14
llcache\msdtclog.dll
+ 2008-04-14 02:18 . 2008-06-24
llcache\mscms.dll
+ 2008-04-14 02:18 . 2009-09-04
llcache\msasn1.dll
+ 2008-04-14 02:18 . 2011-10-14
llcache\mciseq.dll
- 2008-04-14 02:18 . 2008-04-14
llcache\mciseq.dll
+ 2008-04-13 18:31 . 2009-06-24
llcache\ksecdd.sys
+ 2008-06-03 01:53 . 2011-12-19
llcache\jsproxy.dll

14:59

45568

c:\windows\system32\d

10:44

81920

c:\windows\system32\d

10:44

78336

c:\windows\system32\d

13:17

58880

c:\windows\system32\d

08:26

56832

c:\windows\system32\d

10:39

35328

c:\windows\system32\d

13:39

79872

c:\windows\system32\d

02:18

79872

c:\windows\system32\d

01:53

44544

c:\windows\system32\d

08:07

44544

c:\windows\system32\d

16:41

22528

c:\windows\system32\d

15:17

40960

c:\windows\system32\d

14:02

10496

c:\windows\system32\d

02:18

91648

c:\windows\system32\d

14:22

91648

c:\windows\system32\d

02:18

66560

c:\windows\system32\d

14:22

66560

c:\windows\system32\d

17:13

17920

c:\windows\system32\d

16:08

28672

c:\windows\system32\d

16:08

11264

c:\windows\system32\d

02:18

11264

c:\windows\system32\d

08:07

52224

c:\windows\system32\d

14:22

58880

c:\windows\system32\d

02:18

58880

c:\windows\system32\d

16:44

74240

c:\windows\system32\d

21:04

58880

c:\windows\system32\d

14:47

23040

c:\windows\system32\d

02:18

23040

c:\windows\system32\d

11:18

92928

c:\windows\system32\d

08:07

27648

c:\windows\system32\d

+ 2009-11-27 16:08 .
llcache\iyuv_32.dll
- 2011-03-14 06:26 .
llcache\isign32.dll
+ 2011-03-14 06:26 .
llcache\isign32.dll
+ 2011-12-16 12:22 .
llcache\ieudinit.exe
+ 2008-06-03 01:53 .
llcache\iernonce.dll
+ 2008-06-03 01:53 .
llcache\ieencode.dll
- 2008-06-03 01:53 .
llcache\ieencode.dll
+ 2008-06-03 01:53 .
llcache\ie4uinit.exe
+ 2011-12-19 08:07 .
llcache\icardie.dll
+ 2008-04-14 02:18 .
llcache\fontsub.dll
- 2008-04-14 02:18 .
llcache\dnsrslvr.dll
+ 2008-04-14 02:18 .
llcache\dnsrslvr.dll
+ 2008-04-14 02:18 .
llcache\csrsrv.dll
- 2008-06-03 01:53 .
llcache\corpol.dll
+ 2008-06-03 01:53 .
llcache\corpol.dll
+ 2008-04-14 02:18 .
llcache\cabview.dll
- 2008-04-14 02:18 .
llcache\avifil32.dll
+ 2008-04-14 02:18 .
llcache\avifil32.dll
+ 2008-04-14 02:18 .
llcache\atl.dll
- 2008-04-14 02:18 .
llcache\atl.dll
+ 2008-04-14 02:18 .
llcache\asycfilt.dll
+ 2008-04-14 02:18 .
srsrv.dll
+ 2008-06-03 01:53 .
orpol.dll
- 2008-06-03 01:53 .
orpol.dll
+ 2008-04-14 02:18 .
abview.dll
+ 2008-04-14 02:18 .
vifil32.dll
- 2008-04-14 02:18 .
vifil32.dll
- 2008-04-14 02:18 .
tl.dll
+ 2008-04-14 02:18 .
tl.dll
+ 2008-04-14 02:18 .
sycfilt.dll

2009-11-27 16:08

48128

c:\windows\system32\d

2008-04-14 02:18

86016

c:\windows\system32\d

2010-11-18 18:15

86016

c:\windows\system32\d

2011-12-16 12:22

13824

c:\windows\system32\d

2011-12-19 08:07

44544

c:\windows\system32\d

2011-12-19 08:07

78336

c:\windows\system32\d

2008-06-03 01:53

78336

c:\windows\system32\d

2011-12-16 12:22

70656

c:\windows\system32\d

2011-12-19 08:07

63488

c:\windows\system32\d

2009-10-15 16:32

81920

c:\windows\system32\d

2008-04-14 02:18

45568

c:\windows\system32\d

2009-04-20 17:18

45568

c:\windows\system32\d

2011-10-28 05:31

33280

c:\windows\system32\d

2008-06-03 01:53

17408

c:\windows\system32\d

2011-12-19 08:07

17408

c:\windows\system32\d

2010-01-13 14:01

86528

c:\windows\system32\d

2008-04-14 02:18

85504

c:\windows\system32\d

2009-11-27 16:08

85504

c:\windows\system32\d

2009-07-17 19:03

58880

c:\windows\system32\d

2008-04-14 02:18

58880

c:\windows\system32\d

2010-03-05 14:38

65536

c:\windows\system32\d

2011-10-28 05:31

33280

c:\windows\system32\c

2011-12-19 08:07

17408

c:\windows\system32\c

2008-06-03 01:53

17408

c:\windows\system32\c

2010-01-13 14:01

86528

c:\windows\system32\c

2009-11-27 16:08

85504

c:\windows\system32\a

2008-04-14 02:18

85504

c:\windows\system32\a

2008-04-14 02:18

58880

c:\windows\system32\a

2009-07-17 19:03

58880

c:\windows\system32\a

2010-03-05 14:38

65536

c:\windows\system32\a

+ 2012-02-19 15:25 . 2008-06-03

\KB2647516-IE7\pngfilt.dll
+ 2012-02-19 15:25 . 2008-06-03
\KB2647516-IE7\msfeedsbs.dll
+ 2012-02-19 15:25 . 2008-06-03
\KB2647516-IE7\jsproxy.dll
+ 2012-02-19 15:25 . 2008-06-03
\KB2647516-IE7\ieudinit.exe
+ 2012-02-19 15:25 . 2008-06-03
\KB2647516-IE7\iernonce.dll
+ 2012-02-19 15:25 . 2008-06-03
\KB2647516-IE7\ieencode.dll
+ 2012-02-19 15:25 . 2008-06-03
\KB2647516-IE7\ie4uinit.exe
+ 2012-02-19 15:25 . 2008-06-03
\KB2647516-IE7\icardie.dll
+ 2012-02-19 15:25 . 2008-06-03
\KB2647516-IE7\corpol.dll
+ 2009-11-27 17:13 . 2009-11-27
he\i386\msyuv.dll
+ 2009-11-27 16:08 . 2009-11-27
he\i386\iyuv_32.dll
+ 2012-02-19 15:18 . 2010-02-22
B982665\update\spcustom.dll
+ 2012-02-19 15:18 . 2010-02-22
B982665\spmsg.dll
+ 2010-06-17 14:02 . 2010-06-17
B982665\SP3QFE\iccvid.dll
+ 2012-02-19 15:27 . 2009-05-26
B982132\update\spcustom.dll
+ 2012-02-19 15:27 . 2009-05-26
B982132\spmsg.dll
+ 2012-02-19 15:21 . 2009-05-26
B981322\update\spcustom.dll
+ 2012-02-19 15:21 . 2009-05-26
B981322\spmsg.dll
+ 2012-02-19 15:23 . 2010-02-22
B979687\update\spcustom.dll
+ 2012-02-19 15:23 . 2010-02-22
B979687\spmsg.dll
+ 2012-02-19 15:19 . 2009-05-26
B979482\update\spcustom.dll
+ 2012-02-19 15:19 . 2009-05-26
B979482\spmsg.dll
+ 2010-03-05 14:53 . 2010-03-05
B979482\SP3QFE\asycfilt.dll
+ 2012-02-19 15:19 . 2008-07-08
B979309\update\spcustom.dll
+ 2012-02-19 15:19 . 2008-07-08
B979309\spmsg.dll
+ 2010-01-13 13:48 . 2010-01-13
B979309\SP3QFE\cabview.dll
+ 2012-02-19 15:19 . 2009-05-26
B978706\update\spcustom.dll
+ 2012-02-19 15:19 . 2009-05-26
B978706\spmsg.dll
+ 2012-02-19 15:21 . 2008-07-08
B978601\update\spcustom.dll
+ 2012-02-19 15:21 . 2008-07-08
B978601\spmsg.dll

01:53

44544

c:\windows\ie7updates

01:53

50688

c:\windows\ie7updates

01:53

27136

c:\windows\ie7updates

01:53

13312

c:\windows\ie7updates

01:53

43008

c:\windows\ie7updates

01:53

78336

c:\windows\ie7updates

01:53

54784

c:\windows\ie7updates

01:53

61952

c:\windows\ie7updates

01:53

17408

c:\windows\ie7updates

17:13

17920

c:\windows\Driver Cac

16:08

48128

c:\windows\Driver Cac

14:24

26488

c:\windows\$hf_mig$\K

14:24

18808

c:\windows\$hf_mig$\K

14:02

80384

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

14:24

26488

c:\windows\$hf_mig$\K

14:24

18808

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

14:53

65536

c:\windows\$hf_mig$\K

13:02

26488

c:\windows\$hf_mig$\K

13:02

18808

c:\windows\$hf_mig$\K

13:48

86528

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

13:02

26488

c:\windows\$hf_mig$\K

13:02

18808

c:\windows\$hf_mig$\K

+ 2012-02-19 15:19 . 2009-05-26

B978542\update\spcustom.dll
+ 2012-02-19 15:19 . 2009-05-26
B978542\spmsg.dll
+ 2012-02-19 15:26 . 2009-05-26
B978338\update\spcustom.dll
+ 2012-02-19 15:26 . 2009-05-26
B978338\spmsg.dll
+ 2012-02-19 15:19 . 2009-05-26
B977914\update\spcustom.dll
+ 2012-02-19 15:19 . 2009-05-26
B977914\spmsg.dll
+ 2009-11-27 16:29 . 2009-11-27
B977914\SP3QFE\msvidc32.dll
+ 2009-11-27 16:29 . 2009-11-27
B977914\SP3QFE\msrle32.dll
+ 2009-11-27 16:29 . 2009-11-27
B977914\SP3QFE\iyuv_32.dll
+ 2009-11-27 16:29 . 2009-11-27
B977914\SP3QFE\avifil32.dll
+ 2012-02-19 15:21 . 2009-05-26
B977816\update\spcustom.dll
+ 2012-02-19 15:21 . 2009-05-26
B977816\spmsg.dll
+ 2012-02-19 15:27 . 2009-05-26
B975713\update\spcustom.dll
+ 2012-02-19 15:27 . 2009-05-26
B975713\spmsg.dll
+ 2012-02-19 15:22 . 2009-05-26
B975560\update\spcustom.dll
+ 2012-02-19 15:22 . 2009-05-26
B975560\spmsg.dll
+ 2009-11-27 17:24 . 2009-11-27
B975560\SP3QFE\msyuv.dll
+ 2012-02-19 15:17 . 2008-07-08
B975467\update\spcustom.dll
+ 2012-02-19 15:17 . 2008-07-08
B975467\spmsg.dll
+ 2012-02-19 15:23 . 2009-05-26
B975025\update\spcustom.dll
+ 2012-02-19 15:23 . 2009-05-26
B975025\spmsg.dll
+ 2012-02-19 15:23 . 2009-05-26
B974571\update\spcustom.dll
+ 2012-02-19 15:23 . 2009-05-26
B974571\spmsg.dll
+ 2009-09-04 21:01 . 2009-09-04
B974571\SP3QFE\msasn1.dll
+ 2012-02-19 15:20 . 2009-05-26
B974392\update\spcustom.dll
+ 2012-02-19 15:20 . 2009-05-26
B974392\spmsg.dll
+ 2012-02-19 15:28 . 2009-05-26
B974318\update\spcustom.dll
+ 2012-02-19 15:28 . 2009-05-26
B974318\spmsg.dll
+ 2009-10-12 13:29 . 2009-10-12
B974318\SP3QFE\raschap.dll
+ 2012-02-19 15:24 . 2009-05-26
B974112\update\spcustom.dll

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

16:29

28672

c:\windows\$hf_mig$\K

16:29

11264

c:\windows\$hf_mig$\K

16:29

48128

c:\windows\$hf_mig$\K

16:29

85504

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

17:24

17920

c:\windows\$hf_mig$\K

13:02

26488

c:\windows\$hf_mig$\K

13:02

18808

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

21:01

58880

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

13:29

79872

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

+ 2012-02-19 15:24 . 2009-05-26

B974112\spmsg.dll
+ 2012-02-19 15:18 . 2009-05-26
B973815\update\spcustom.dll
+ 2012-02-19 15:18 . 2009-05-26
B973815\spmsg.dll
+ 2012-02-19 15:22 . 2009-05-26
B973507\update\spcustom.dll
+ 2012-02-19 15:22 . 2009-05-26
B973507\spmsg.dll
+ 2009-07-17 19:27 . 2009-07-17
B973507\SP3QFE\atl.dll
+ 2012-02-19 15:27 . 2008-07-08
B971657\update\spcustom.dll
+ 2012-02-19 15:27 . 2008-07-08
B971657\spmsg.dll
+ 2012-02-19 15:20 . 2008-07-08
B971029\update\spcustom.dll
+ 2012-02-19 15:20 . 2008-07-08
B971029\spmsg.dll
+ 2012-02-19 15:28 . 2008-07-08
B969059\update\spcustom.dll
+ 2012-02-19 15:28 . 2008-07-08
B969059\spmsg.dll
+ 2012-02-19 15:17 . 2008-07-08
B968389\update\spcustom.dll
+ 2012-02-19 15:17 . 2008-07-08
B968389\spmsg.dll
+ 2009-06-25 08:42 . 2009-06-25
B968389\SP3QFE\wdigest.dll
+ 2009-06-25 08:42 . 2009-06-25
B968389\SP3QFE\secur32.dll
+ 2009-06-24 10:28 . 2009-06-24
B968389\SP3QFE\ksecdd.sys
+ 2012-02-19 15:27 . 2007-11-30
B961503\update\spcustom.dll
+ 2012-02-19 15:27 . 2007-11-30
B961503\spmsg.dll
+ 2012-02-19 15:23 . 2008-07-09
B961501\update\spcustom.dll
+ 2012-02-19 15:23 . 2008-07-09
B961501\spmsg.dll
+ 2012-02-19 15:33 . 2008-07-08
B960859\update\spcustom.dll
+ 2012-02-19 15:33 . 2008-07-08
B960859\spmsg.dll
+ 2009-06-15 11:14 . 2009-06-15
B960859\SP3QFE\tlntsess.exe
+ 2009-06-15 11:14 . 2009-06-15
B960859\SP3QFE\telnet.exe
+ 2012-02-19 15:19 . 2007-11-30
B960803\update\spcustom.dll
+ 2012-02-19 15:19 . 2007-11-30
B960803\spmsg.dll
+ 2012-02-19 15:33 . 2007-11-30
B959426\update\spcustom.dll
+ 2012-02-19 15:33 . 2007-11-30
B959426\spmsg.dll
+ 2009-02-04 09:13 . 2009-02-04
B959426\SP3QFE\secur32.dll

11:40

18808

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

19:27

58880

c:\windows\$hf_mig$\K

13:02

26488

c:\windows\$hf_mig$\K

13:02

18808

c:\windows\$hf_mig$\K

13:02

26488

c:\windows\$hf_mig$\K

13:02

18808

c:\windows\$hf_mig$\K

13:02

26488

c:\windows\$hf_mig$\K

13:02

18808

c:\windows\$hf_mig$\K

13:02

26488

c:\windows\$hf_mig$\K

13:02

18808

c:\windows\$hf_mig$\K

08:42

54272

c:\windows\$hf_mig$\K

08:42

56832

c:\windows\$hf_mig$\K

10:28

92928

c:\windows\$hf_mig$\K

12:39

26488

c:\windows\$hf_mig$\K

12:39

18808

c:\windows\$hf_mig$\K

07:39

26488

c:\windows\$hf_mig$\K

07:39

18808

c:\windows\$hf_mig$\K

13:02

26488

c:\windows\$hf_mig$\K

13:02

18808

c:\windows\$hf_mig$\K

11:14

81920

c:\windows\$hf_mig$\K

11:14

78336

c:\windows\$hf_mig$\K

12:39

26488

c:\windows\$hf_mig$\K

12:39

18808

c:\windows\$hf_mig$\K

12:39

26488

c:\windows\$hf_mig$\K

12:39

18808

c:\windows\$hf_mig$\K

09:13

56832

c:\windows\$hf_mig$\K

+ 2012-02-19 15:18 . 2008-07-08 13:02

B956802\update\spcustom.dll
+ 2012-02-19 15:18 . 2008-07-08 13:02
B956802\spmsg.dll
+ 2012-02-19 15:20 . 2007-11-30 12:39
B954459\update\spcustom.dll
+ 2012-02-19 15:20 . 2007-11-30 12:39
B954459\spmsg.dll
+ 2012-02-19 15:33 . 2007-11-30 12:39
B952954\update\spcustom.dll
+ 2012-02-19 15:33 . 2007-11-30 12:39
B952954\spmsg.dll
+ 2008-06-24 16:53 . 2008-06-24 16:53
B952954\SP3QFE\mscms.dll
+ 2012-02-19 15:23 . 2007-11-30 12:39
B952004\update\spcustom.dll
+ 2012-02-19 15:23 . 2007-11-30 12:39
B952004\spmsg.dll
+ 2008-06-12 14:10 . 2008-06-12 14:10
B952004\SP3QFE\mtxoci.dll
+ 2008-06-12 14:10 . 2008-06-12 14:10
B952004\SP3QFE\mtxclu.dll
+ 2008-06-12 14:10 . 2008-06-12 14:10
B952004\SP3QFE\msdtclog.dll
+ 2012-02-19 15:28 . 2007-11-30 12:39
B951978\update\spcustom.dll
+ 2012-02-19 15:28 . 2007-11-30 12:39
B951978\spmsg.dll
+ 2008-05-09 10:51 . 2008-05-09 10:51
B951978\SP3QFE\wshext.dll
+ 2012-02-19 15:27 . 2007-11-30 12:39
B950974\update\spcustom.dll
+ 2012-02-19 15:27 . 2007-11-30 12:39
B950974\spmsg.dll
+ 2012-02-19 15:27 . 2010-07-05 13:16
B2660465\update\spcustom.dll
+ 2012-02-19 15:27 . 2010-07-05 13:16
B2660465\spmsg.dll
+ 2012-02-19 15:25 . 2010-07-05 13:16
B2647516-IE7\update\spcustom.dll
+ 2012-02-19 15:25 . 2010-07-05 13:16
B2647516-IE7\spmsg.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
B2647516-IE7\SP3QFE\pngfilt.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
B2647516-IE7\SP3QFE\msfeedsbs.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
B2647516-IE7\SP3QFE\jsproxy.dll
+ 2011-12-16 12:32 . 2011-12-16 12:32
B2647516-IE7\SP3QFE\ieudinit.exe
+ 2011-12-19 08:06 . 2011-12-19 08:06
B2647516-IE7\SP3QFE\iernonce.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
B2647516-IE7\SP3QFE\ieencode.dll
+ 2011-12-16 12:32 . 2011-12-16 12:32
B2647516-IE7\SP3QFE\ie4uinit.exe
+ 2011-12-19 08:06 . 2011-12-19 08:06
B2647516-IE7\SP3QFE\icardie.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
B2647516-IE7\SP3QFE\corpol.dll

26488

c:\windows\$hf_mig$\K

18808

c:\windows\$hf_mig$\K

26488

c:\windows\$hf_mig$\K

18808

c:\windows\$hf_mig$\K

26488

c:\windows\$hf_mig$\K

18808

c:\windows\$hf_mig$\K

74240

c:\windows\$hf_mig$\K

26488

c:\windows\$hf_mig$\K

18808

c:\windows\$hf_mig$\K

91648

c:\windows\$hf_mig$\K

66560

c:\windows\$hf_mig$\K

58880

c:\windows\$hf_mig$\K

26488

c:\windows\$hf_mig$\K

18808

c:\windows\$hf_mig$\K

90112

c:\windows\$hf_mig$\K

26488

c:\windows\$hf_mig$\K

18808

c:\windows\$hf_mig$\K

26488

c:\windows\$hf_mig$\K

18808

c:\windows\$hf_mig$\K

26488

c:\windows\$hf_mig$\K

18808

c:\windows\$hf_mig$\K

44544

c:\windows\$hf_mig$\K

52224

c:\windows\$hf_mig$\K

27648

c:\windows\$hf_mig$\K

13824

c:\windows\$hf_mig$\K

44544

c:\windows\$hf_mig$\K

78336

c:\windows\$hf_mig$\K

70656

c:\windows\$hf_mig$\K

63488

c:\windows\$hf_mig$\K

17408

c:\windows\$hf_mig$\K

+ 2012-02-19 15:32 . 2010-07-05

B2646524\update\spcustom.dll
+ 2012-02-19 15:32 . 2010-07-05
B2646524\spmsg.dll
+ 2012-02-19 15:24 . 2010-07-05
B2641690\update\spcustom.dll
+ 2012-02-19 15:24 . 2010-07-05
B2641690\spmsg.dll
+ 2012-02-19 15:17 . 2010-07-05
B2633171\update\spcustom.dll
+ 2012-02-16 21:38 . 2011-10-26
B2633171\update\mpsyschk.dll
+ 2012-02-19 15:17 . 2010-07-05
B2633171\spmsg.dll
+ 2012-02-19 15:29 . 2010-07-05
B2631813\update\spcustom.dll
+ 2012-02-19 15:29 . 2010-07-05
B2631813\spmsg.dll
+ 2012-02-19 15:23 . 2010-07-05
B2624667\update\spcustom.dll
+ 2012-02-19 15:23 . 2010-07-05
B2624667\spmsg.dll
+ 2012-02-19 15:17 . 2010-07-05
B2620712\update\spcustom.dll
+ 2012-02-19 15:17 . 2010-07-05
B2620712\spmsg.dll
+ 2011-10-28 05:30 . 2011-10-28
B2620712\SP3QFE\csrsrv.dll
+ 2012-02-19 15:19 . 2010-07-05
B2619339\update\spcustom.dll
+ 2012-02-19 15:19 . 2010-07-05
B2619339\spmsg.dll
+ 2012-02-19 15:27 . 2010-07-05
B2598479\update\spcustom.dll
+ 2012-02-19 15:27 . 2010-07-05
B2598479\spmsg.dll
+ 2011-10-14 14:45 . 2011-10-14
B2598479\SP3QFE\mciseq.dll
+ 2012-02-19 15:32 . 2010-07-05
B2585542\update\spcustom.dll
+ 2012-02-19 15:32 . 2010-07-05
B2585542\spmsg.dll
+ 2012-02-19 15:32 . 2010-07-05
B2544893-v2\update\spcustom.dll
+ 2012-02-19 15:32 . 2010-07-05
B2544893-v2\spmsg.dll
+ 2012-02-19 15:25 . 2010-07-05
B2510581\update\spcustom.dll
+ 2012-02-19 15:25 . 2010-07-05
B2510581\spmsg.dll
+ 2012-02-19 15:18 . 2010-02-22
B2509553\update\spcustom.dll
+ 2012-02-19 15:18 . 2010-02-22
B2509553\spmsg.dll
+ 2009-04-20 17:08 . 2009-04-20
B2509553\SP3QFE\dnsrslvr.dll
+ 2012-02-19 15:20 . 2010-07-05
B2508429\update\spcustom.dll
+ 2012-02-19 15:20 . 2010-07-05
B2508429\spmsg.dll

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

10:50

16896

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

05:30

33280

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

14:45

23040

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

14:24

26488

c:\windows\$hf_mig$\K

14:24

18808

c:\windows\$hf_mig$\K

17:08

45568

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

+ 2012-02-19 15:25 . 2010-02-22

B2507938\update\spcustom.dll
+ 2012-02-19 15:25 . 2010-02-22
B2507938\spmsg.dll
+ 2011-04-26 11:02 . 2011-04-26
B2507938\SP3QFE\csrsrv.dll
+ 2012-02-19 15:21 . 2010-07-05
B2507618\update\spcustom.dll
+ 2012-02-19 15:21 . 2010-07-05
B2507618\spmsg.dll
+ 2012-02-19 15:19 . 2010-02-22
B2506212\update\spcustom.dll
+ 2012-02-19 15:19 . 2010-02-22
B2506212\spmsg.dll
+ 2012-02-19 15:24 . 2010-02-22
B2483185\update\spcustom.dll
+ 2012-02-19 15:24 . 2010-02-22
B2483185\spmsg.dll
+ 2012-02-19 15:27 . 2010-07-05
B2481109\update\spcustom.dll
+ 2012-02-19 15:27 . 2010-07-05
B2481109\spmsg.dll
+ 2011-02-02 07:57 . 2011-02-02
B2481109\SP3QFE\tsgqec.dll
+ 2012-02-19 15:32 . 2010-02-22
B2479943\update\spcustom.dll
+ 2012-02-19 15:32 . 2010-02-22
B2479943\spmsg.dll
+ 2012-02-19 15:32 . 2010-02-22
B2478971\update\spcustom.dll
+ 2012-02-19 15:32 . 2010-02-22
B2478971\spmsg.dll
+ 2012-02-19 15:18 . 2010-07-05
B2478960\update\spcustom.dll
+ 2012-02-19 15:18 . 2010-07-05
B2478960\spmsg.dll
+ 2012-02-19 15:24 . 2010-07-05
B2476490\update\spcustom.dll
+ 2012-02-19 15:24 . 2010-07-05
B2476490\spmsg.dll
+ 2012-02-19 15:27 . 2010-02-22
B2443105\update\spcustom.dll
+ 2012-02-19 15:27 . 2010-02-22
B2443105\spmsg.dll
+ 2010-11-18 18:15 . 2010-11-18
B2443105\SP3QFE\isign32.dll
+ 2012-02-19 15:20 . 2010-02-22
B2419632\update\spcustom.dll
+ 2012-02-19 15:20 . 2010-02-22
B2419632\spmsg.dll
+ 2012-02-19 15:24 . 2009-05-26
B2347290\update\spcustom.dll
+ 2012-02-19 15:24 . 2009-05-26
B2347290\spmsg.dll
+ 2010-08-17 13:19 . 2010-08-17
B2347290\SP3QFE\spoolsv.exe
+ 2012-02-19 15:28 . 2009-05-26
B2115168\update\spcustom.dll
+ 2012-02-19 15:28 . 2009-05-26
B2115168\spmsg.dll

14:24

26488

c:\windows\$hf_mig$\K

14:24

18808

c:\windows\$hf_mig$\K

11:02

33280

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

14:24

26488

c:\windows\$hf_mig$\K

14:24

18808

c:\windows\$hf_mig$\K

14:24

26488

c:\windows\$hf_mig$\K

14:24

18808

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

07:57

53248

c:\windows\$hf_mig$\K

14:24

26488

c:\windows\$hf_mig$\K

14:24

18808

c:\windows\$hf_mig$\K

14:24

26488

c:\windows\$hf_mig$\K

14:24

18808

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

13:16

26488

c:\windows\$hf_mig$\K

13:16

18808

c:\windows\$hf_mig$\K

14:24

26488

c:\windows\$hf_mig$\K

14:24

18808

c:\windows\$hf_mig$\K

18:15

86016

c:\windows\$hf_mig$\K

14:24

26488

c:\windows\$hf_mig$\K

14:24

18808

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

13:19

58880

c:\windows\$hf_mig$\K

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

+ 2012-02-19 15:23 . 2009-05-26

B2079403\update\spcustom.dll
+ 2012-02-19 15:23 . 2009-05-26
B2079403\spmsg.dll
+ 2010-08-13 23:44 . 2011-02-17
sp4res.dll
+ 2001-08-22 17:45 . 2009-11-27
byuv.dll
+ 2009-11-27 16:08 . 2009-11-27
lcache\tsbyuv.dll
+ 2012-02-16 21:29 . 2012-01-11
lcache\iacenc.dll
+ 2009-11-27 16:08 . 2009-11-27
e\i386\tsbyuv.dll
+ 2010-07-12 13:19 . 2010-07-12
979687\SP3QFE\sprv0c0a.dll
+ 2009-11-27 16:29 . 2009-11-27
977914\SP3QFE\tsbyuv.dll
+ 2011-02-17 12:54 . 2011-02-17
2508429\SP3QFE\sprv0c0a.dll
- 2008-04-14 02:19 . 2008-04-14
wscript.exe
+ 2008-04-14 02:19 . 2008-05-08
wscript.exe
+ 2008-06-03 01:53 . 2009-04-02
wmspdmod.dll
- 2001-08-24 11:00 . 2008-06-03
wmpeffects.dll
+ 2001-08-24 11:00 . 2008-06-24
wmpeffects.dll
+ 2008-06-03 01:53 . 2009-07-14
wmpdxm.dll
+ 2008-06-03 01:52 . 2008-06-18
WMNetmgr.dll
+ 2008-06-03 01:52 . 2007-10-25
wmasf.dll
+ 2008-04-14 02:18 . 2009-06-10
wkssvc.dll
- 2008-04-14 02:18 . 2008-04-14
wkssvc.dll
+ 2008-04-14 02:18 . 2009-12-24
wintrust.dll
+ 2008-04-14 02:18 . 2011-11-25
winsrv.dll
- 2008-04-14 02:18 . 2008-04-14
winsrv.dll
+ 2008-04-14 02:18 . 2011-10-14
winmm.dll
- 2008-04-14 02:18 . 2008-04-14
winmm.dll
+ 2008-06-03 01:53 . 2011-12-19
wininet.dll
+ 2008-04-14 02:18 . 2011-11-16
winhttp.dll
+ 2008-06-03 01:53 . 2011-12-19
webcheck.dll
+ 2011-03-14 06:23 . 2009-02-06
wbem\wmiprvse.exe
+ 2011-03-14 06:23 . 2009-02-09
wbem\wmiprvsd.dll

11:40

26488

c:\windows\$hf_mig$\K

11:40

18808

c:\windows\$hf_mig$\K

12:54

5632

c:\windows\system32\xp

16:08

8704

c:\windows\system32\ts

16:08

8704

c:\windows\system32\dl

19:06

3072

c:\windows\system32\dl

16:08

8704

c:\windows\Driver Cach

13:19

5632

c:\windows\$hf_mig$\KB

16:29

8704

c:\windows\$hf_mig$\KB

12:54

5632

c:\windows\$hf_mig$\KB

02:19

155648

c:\windows\system32\

11:24

155648

c:\windows\system32\

04:02

604160

c:\windows\system32\

01:52

295936

c:\windows\system32\

23:12

295936

c:\windows\system32\

04:43

286208

c:\windows\system32\

10:03

938496

c:\windows\system32\

14:28

222720

c:\windows\system32\

06:15

132096

c:\windows\system32\

02:18

132096

c:\windows\system32\

07:00

177664

c:\windows\system32\

21:57

293888

c:\windows\system32\

02:18

293888

c:\windows\system32\

14:47

180224

c:\windows\system32\

02:18

180224

c:\windows\system32\

08:07

832512

c:\windows\system32\

14:21

354816

c:\windows\system32\

08:07

233472

c:\windows\system32\

10:10

227840

c:\windows\system32\

10:52

453120

c:\windows\system32\

+ 2011-03-14 06:23 .
wbem\fastprox.dll
+ 2008-04-14 02:18 .
vbscript.dll
- 2008-04-14 02:18 .
vbscript.dll
+ 2008-04-14 02:18 .
usp10.dll
- 2008-04-14 02:18 .
usp10.dll
+ 2008-06-03 01:53 .
url.dll
+ 2011-09-26 16:41 .
uiautomationcore.dll
+ 2008-04-14 02:18 .
t2embed.dll
+ 2008-04-14 02:18 .
strmdll.dll
- 2008-04-14 02:18 .
shsvcs.dll
+ 2008-04-14 02:18 .
shsvcs.dll
- 2008-04-14 02:18 .
shlwapi.dll
+ 2008-04-14 02:18 .
shlwapi.dll
+ 2008-04-14 02:18 .
shimgvw.dll
+ 2008-04-14 02:19 .
services.exe
- 2008-04-14 02:18 .
scrrun.dll
+ 2008-04-14 02:18 .
scrrun.dll
+ 2008-04-14 02:18 .
scrobj.dll
- 2008-04-14 02:18 .
scrobj.dll
+ 2008-04-14 02:18 .
schannel.dll
+ 2008-04-14 02:18 .
sbe.dll
- 2008-04-14 02:18 .
sbe.dll
+ 2008-04-14 02:18 .
rpcss.dll
+ 2008-04-14 02:18 .
rpcrt4.dll
+ 2008-04-14 02:18 .
rastls.dll
+ 2008-04-14 02:18 .
qdvd.dll
- 2008-04-14 02:18 .
qdvd.dll
+ 2001-08-24 11:00 .
perfh00A.dat
- 2001-08-24 11:00 .
perfh00A.dat
- 2001-08-24 11:00 .
perfh009.dat

2009-02-09 10:52

473600

c:\windows\system32\

2011-03-04 08:43

434176

c:\windows\system32\

2008-04-14 02:18

434176

c:\windows\system32\

2010-04-16 15:38

406016

c:\windows\system32\

2008-04-14 02:18

406016

c:\windows\system32\

2011-12-19 08:07

106496

c:\windows\system32\

2011-09-26 16:41

613888

c:\windows\system32\

2010-08-27 08:03

119808

c:\windows\system32\

2009-08-26 08:01

247326

c:\windows\system32\

2008-04-14 02:18

135168

c:\windows\system32\

2009-07-27 23:17

135168

c:\windows\system32\

2008-04-14 02:18

474624

c:\windows\system32\

2009-12-08 09:24

474624

c:\windows\system32\

2011-01-21 14:44

441344

c:\windows\system32\

2009-02-09 11:23

111104

c:\windows\system32\

2008-04-14 02:18

172032

c:\windows\system32\

2008-05-09 10:55

172032

c:\windows\system32\

2008-05-09 10:55

180224

c:\windows\system32\

2008-04-14 02:18

180224

c:\windows\system32\

2011-11-16 14:21

152064

c:\windows\system32\

2011-02-09 13:53

270848

c:\windows\system32\

2008-04-14 02:18

270848

c:\windows\system32\

2009-02-09 10:52

401408

c:\windows\system32\

2010-08-16 08:44

590848

c:\windows\system32\

2009-10-12 13:39

150016

c:\windows\system32\

2011-11-03 15:28

387072

c:\windows\system32\

2008-04-14 02:18

387072

c:\windows\system32\

2012-02-19 23:21

454226

c:\windows\system32\

2012-01-02 19:45

454226

c:\windows\system32\

2012-01-02 19:45

393024

c:\windows\system32\

+ 2001-08-24
perfh009.dat
+ 2008-04-14
pdh.dll
- 2008-04-14
pdh.dll
- 2008-04-14
oleaut32.dll
+ 2008-04-14
oleaut32.dll
+ 2001-08-24
oleacc.dll
+ 2008-04-14
odbc32.dll
- 2008-04-14
odbc32.dll
+ 2008-06-03
occache.dll
+ 2008-04-14
oakley.dll
- 2008-04-14
oakley.dll
+ 2008-04-14
ntdll.dll
- 2008-04-14
netapi32.dll
+ 2008-04-14
netapi32.dll
+ 2008-04-14
mswsock.dll
- 2008-04-14
mswsock.dll
+ 2008-04-14
mswebdvd.dll
+ 2008-04-14
msv1_0.dll
+ 2011-03-14
mstsc.exe
- 2011-03-14
mstsc.exe
+ 2008-06-03
mstime.dll
+ 2008-06-03
msrating.dll
+ 2011-03-14
mspaint.exe
- 2011-03-14
mspaint.exe
+ 2008-06-03
mshtmled.dll
+ 2008-06-03
msfeeds.dll
+ 2011-03-14
msdtcuiu.dll
- 2011-03-14
msdtcuiu.dll
+ 2011-03-14
msdtctm.dll
- 2011-03-14
msdtctm.dll

11:00 . 2012-02-19 23:21

393024

c:\windows\system32\

02:18 . 2009-03-06 14:20

286720

c:\windows\system32\

02:18 . 2008-04-14 02:18

286720

c:\windows\system32\

02:18 . 2008-04-14 02:18

551936

c:\windows\system32\

02:18 . 2010-12-20 17:32

551936

c:\windows\system32\

11:00 . 2011-09-26 16:41

220160

c:\windows\system32\

02:18 . 2010-11-09 14:52

249856

c:\windows\system32\

02:18 . 2008-04-14 02:18

249856

c:\windows\system32\

01:53 . 2011-12-19 08:07

102912

c:\windows\system32\

02:18 . 2009-10-13 10:33

271360

c:\windows\system32\

02:18 . 2008-04-14 02:18

271360

c:\windows\system32\

02:18 . 2010-12-09 15:15

742912

c:\windows\system32\

02:18 . 2008-04-14 02:18

337408

c:\windows\system32\

02:18 . 2008-10-15 16:36

337408

c:\windows\system32\

02:18 . 2008-06-20 16:03

248320

c:\windows\system32\

02:18 . 2008-04-14 02:18

248320

c:\windows\system32\

02:18 . 2009-08-05 09:00

205312

c:\windows\system32\

02:18 . 2009-09-11 14:18

136192

c:\windows\system32\

06:24 . 2011-01-27 11:57

677888

c:\windows\system32\

06:24 . 2008-04-14 02:19

677888

c:\windows\system32\

01:53 . 2011-12-19 08:07

671232

c:\windows\system32\

01:53 . 2011-12-19 08:07

193024

c:\windows\system32\

06:24 . 2009-12-17 07:41

346624

c:\windows\system32\

06:24 . 2008-04-14 02:19

346624

c:\windows\system32\

01:53 . 2011-12-19 08:07

478720

c:\windows\system32\

01:53 . 2011-12-19 08:07

468480

c:\windows\system32\

06:24 . 2008-06-12 14:22

161792

c:\windows\system32\

06:24 . 2008-04-14 02:18

161792

c:\windows\system32\

06:24 . 2008-06-12 14:22

956928

c:\windows\system32\

06:24 . 2008-04-14 02:18

956928

c:\windows\system32\

+ 2011-03-14 06:24 . 2008-06-12 14:22

msdtcprx.dll
- 2008-06-03 01:52 . 2008-06-03 01:52
mp4sdecd.dll
+ 2008-06-03 01:52 . 2010-03-30 17:24
mp4sdecd.dll
+ 2007-04-03 03:14 . 2011-02-08 13:33
mfc42u.dll
+ 2008-04-14 02:18 . 2011-02-08 13:33
mfc42.dll
+ 2008-04-14 02:18 . 2010-09-18 06:53
mfc40u.dll
+ 2001-08-24 11:00 . 2010-09-18 06:53
mfc40.dll
+ 2012-03-16 06:51 . 2012-03-16 06:51
Macromed\Flash\FlashUtil11g_ActiveX.exe
+ 2012-03-16 06:51 . 2012-03-16 06:51
Macromed\Flash\FlashUtil11g_ActiveX.dll
+ 2008-04-14 02:18 . 2010-12-20 17:25
lsasrv.dll
+ 2008-06-03 01:52 . 2008-06-18 06:09
logagent.exe
- 2008-06-03 01:52 . 2008-06-03 01:52
logagent.exe
+ 2008-04-14 02:18 . 2009-05-07 15:33
localspl.dll
+ 2008-04-14 02:18 . 2010-12-22 12:34
kerberos.dll
+ 2008-04-14 02:18 . 2011-03-04 08:43
jscript.dll
- 2008-04-14 02:18 . 2008-04-14 02:18
jscript.dll
+ 2011-03-14 06:26 . 2011-10-10 14:22
inetcomm.dll
+ 2008-06-03 01:53 . 2011-12-19 08:07
iertutil.dll
+ 2008-06-03 01:53 . 2011-12-19 08:07
iepeers.dll
+ 2008-06-03 01:53 . 2011-12-19 08:07
iedkcs32.dll
+ 2008-06-03 01:53 . 2011-12-19 08:07
ieapfltr.dll
- 2008-06-03 01:53 . 2008-06-03 01:53
ieapfltr.dll
- 2008-06-03 01:53 . 2008-06-03 01:53
ieakui.dll
+ 2008-06-03 01:53 . 2011-12-16 10:58
ieakui.dll
+ 2008-06-03 01:53 . 2011-12-19 08:07
ieaksie.dll
+ 2008-06-03 01:53 . 2011-12-19 08:07
ieakeng.dll
+ 2008-04-14 02:18 . 2008-10-23 12:36
gdi32.dll
+ 2011-03-13 22:23 . 2012-03-06 16:59
FNTCACHE.DAT
+ 2008-06-03 01:53 . 2011-12-19 08:07
extmgr.dll
+ 2008-04-14 02:18 . 2008-07-07 20:27
es.dll

428032

c:\windows\system32\

317440

c:\windows\system32\

317440

c:\windows\system32\

974848

c:\windows\system32\

978944

c:\windows\system32\

953856

c:\windows\system32\

954368

c:\windows\system32\

250528

c:\windows\system32\

335520

c:\windows\system32\

734720

c:\windows\system32\

100864

c:\windows\system32\

100864

c:\windows\system32\

347648

c:\windows\system32\

301568

c:\windows\system32\

512000

c:\windows\system32\

512000

c:\windows\system32\

692736

c:\windows\system32\

268288

c:\windows\system32\

192512

c:\windows\system32\

384512

c:\windows\system32\

380928

c:\windows\system32\

380928

c:\windows\system32\

161792

c:\windows\system32\

161792

c:\windows\system32\

230400

c:\windows\system32\

153088

c:\windows\system32\

286720

c:\windows\system32\

282128

c:\windows\system32\

133120

c:\windows\system32\

253952

c:\windows\system32\

- 2008-04-14 02:18 . 2008-04-14

encdec.dll
+ 2008-04-14 02:18 . 2011-10-18
encdec.dll
- 2008-06-03 01:53 . 2008-06-03
dxtrans.dll
+ 2008-06-03 01:53 . 2011-12-19
dxtrans.dll
+ 2008-06-03 01:53 . 2011-12-19
dxtmsft.dll
+ 2008-04-13 19:00 . 2010-02-11
drivers\tcpip6.sys
+ 2008-06-03 01:54 . 2008-06-20
drivers\tcpip.sys
+ 2008-04-13 19:15 . 2011-02-17
drivers\srv.sys
+ 2008-04-13 18:55 . 2008-05-08
drivers\rmcast.sys
+ 2011-03-14 06:24 . 2011-06-24
drivers\rdpwd.sys
- 2011-03-14 06:24 . 2008-04-14
drivers\rdpwd.sys
+ 2008-04-13 19:17 . 2011-04-21
drivers\mup.sys
+ 2008-04-13 19:17 . 2011-07-15
drivers\mrxsmb.sys
+ 2012-02-16 21:42 . 2008-06-14
drivers\bthport.sys
+ 2008-04-13 19:19 . 2011-08-17
drivers\afd.sys
+ 2008-04-14 02:18 . 2011-03-03
dnsapi.dll
+ 2008-04-14 02:19 . 2008-05-08
dllcache\wscript.exe
- 2008-04-14 02:19 . 2008-04-14
dllcache\wscript.exe
+ 2010-07-16 11:57 . 2010-07-16
dllcache\wordpad.exe
+ 2008-06-03 01:53 . 2009-04-02
dllcache\wmspdmod.dll
+ 2008-06-03 01:53 . 2009-07-14
dllcache\wmpdxm.dll
+ 2008-06-03 01:52 . 2008-06-18
dllcache\WMNetmgr.dll
+ 2011-03-14 06:23 . 2009-02-06
dllcache\wmiprvse.exe
+ 2011-03-14 06:23 . 2009-02-09
dllcache\wmiprvsd.dll
+ 2008-06-03 01:52 . 2007-10-25
dllcache\wmasf.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\wkssvc.dll
+ 2008-04-14 02:18 . 2009-06-10
dllcache\wkssvc.dll
+ 2008-04-14 02:18 . 2009-12-24
dllcache\wintrust.dll
+ 2008-04-14 02:18 . 2011-11-25
dllcache\winsrv.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\winsrv.dll

02:18

186880

c:\windows\system32\

11:13

186880

c:\windows\system32\

01:53

214528

c:\windows\system32\

08:07

214528

c:\windows\system32\

08:07

347136

c:\windows\system32\

12:02

226880

c:\windows\system32\

11:51

361600

c:\windows\system32\

13:18

357888

c:\windows\system32\

14:02

203136

c:\windows\system32\

14:10

139656

c:\windows\system32\

02:19

139656

c:\windows\system32\

13:37

105472

c:\windows\system32\

13:29

456320

c:\windows\system32\

17:33

272512

c:\windows\system32\

13:49

138496

c:\windows\system32\

06:54

149504

c:\windows\system32\

11:24

155648

c:\windows\system32\

02:19

155648

c:\windows\system32\

11:57

221696

c:\windows\system32\

04:02

604160

c:\windows\system32\

04:43

286208

c:\windows\system32\

10:03

938496

c:\windows\system32\

10:10

227840

c:\windows\system32\

10:52

453120

c:\windows\system32\

14:28

222720

c:\windows\system32\

02:18

132096

c:\windows\system32\

06:15

132096

c:\windows\system32\

07:00

177664

c:\windows\system32\

21:57

293888

c:\windows\system32\

02:18

293888

c:\windows\system32\

- 2008-04-14 02:18 . 2008-04-14

dllcache\winmm.dll
+ 2008-04-14 02:18 . 2011-10-14
dllcache\winmm.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\wininet.dll
+ 2008-04-14 02:18 . 2011-11-16
dllcache\winhttp.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\webcheck.dll
+ 2011-03-14 06:27 . 2011-04-30
dllcache\vgx.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\vbscript.dll
+ 2008-04-14 02:18 . 2011-03-04
dllcache\vbscript.dll
+ 2008-04-14 02:18 . 2010-04-16
dllcache\usp10.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\usp10.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\url.dll
+ 2008-06-03 01:52 . 2007-06-29
dllcache\unregmp2.exe
- 2011-03-14 06:26 . 2008-04-14
dllcache\triedit.dll
+ 2011-03-14 06:26 . 2009-06-21
dllcache\triedit.dll
+ 2008-04-13 19:00 . 2010-02-11
dllcache\tcpip6.sys
+ 2012-02-15 20:52 . 2008-06-20
dllcache\tcpip.sys
+ 2008-04-14 02:18 . 2010-08-27
dllcache\t2embed.dll
+ 2008-04-14 02:18 . 2009-08-26
dllcache\strmdll.dll
+ 2008-04-13 19:15 . 2011-02-17
dllcache\srv.sys
- 2008-04-14 02:18 . 2008-04-14
dllcache\shsvcs.dll
+ 2008-04-14 02:18 . 2009-07-27
dllcache\shsvcs.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\shlwapi.dll
+ 2008-04-14 02:18 . 2009-12-08
dllcache\shlwapi.dll
+ 2008-04-14 02:18 . 2011-01-21
dllcache\shimgvw.dll
+ 2008-04-14 02:19 . 2009-02-09
dllcache\services.exe
+ 2008-04-14 02:18 . 2008-05-09
dllcache\scrrun.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\scrrun.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\scrobj.dll
+ 2008-04-14 02:18 . 2008-05-09
dllcache\scrobj.dll
+ 2008-04-14 02:18 . 2011-11-16
dllcache\schannel.dll

02:18

180224

c:\windows\system32\

14:47

180224

c:\windows\system32\

08:07

832512

c:\windows\system32\

14:21

354816

c:\windows\system32\

08:07

233472

c:\windows\system32\

08:50

766464

c:\windows\system32\

02:18

434176

c:\windows\system32\

08:43

434176

c:\windows\system32\

15:38

406016

c:\windows\system32\

02:18

406016

c:\windows\system32\

08:07

106496

c:\windows\system32\

17:04

319488

c:\windows\system32\

02:18

153088

c:\windows\system32\

21:47

153088

c:\windows\system32\

12:02

226880

c:\windows\system32\

11:51

361600

c:\windows\system32\

08:03

119808

c:\windows\system32\

08:01

247326

c:\windows\system32\

13:18

357888

c:\windows\system32\

02:18

135168

c:\windows\system32\

23:17

135168

c:\windows\system32\

02:18

474624

c:\windows\system32\

09:24

474624

c:\windows\system32\

14:44

441344

c:\windows\system32\

11:23

111104

c:\windows\system32\

10:55

172032

c:\windows\system32\

02:18

172032

c:\windows\system32\

02:18

180224

c:\windows\system32\

10:55

180224

c:\windows\system32\

14:21

152064

c:\windows\system32\

+ 2008-04-14 02:18 . 2011-02-09

dllcache\sbe.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\sbe.dll
+ 2008-04-14 02:18 . 2009-02-09
dllcache\rpcss.dll
+ 2008-04-14 02:18 . 2010-08-16
dllcache\rpcrt4.dll
+ 2008-04-13 18:55 . 2008-05-08
dllcache\rmcast.sys
- 2011-03-14 06:24 . 2008-04-14
dllcache\rdpwd.sys
+ 2011-03-14 06:24 . 2011-06-24
dllcache\rdpwd.sys
+ 2008-04-14 02:18 . 2009-10-12
dllcache\rastls.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\qdvd.dll
+ 2008-04-14 02:18 . 2011-11-03
dllcache\qdvd.dll
+ 2008-04-14 02:18 . 2009-03-06
dllcache\pdh.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\pdh.dll
+ 2008-04-14 02:18 . 2010-12-20
dllcache\oleaut32.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\oleaut32.dll
+ 2001-08-24 11:00 . 2011-09-26
dllcache\oleacc.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\odbc32.dll
+ 2008-04-14 02:18 . 2010-11-09
dllcache\odbc32.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\occache.dll
+ 2008-04-14 02:18 . 2009-10-13
dllcache\oakley.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\oakley.dll
+ 2008-04-14 02:18 . 2010-12-09
dllcache\ntdll.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\netapi32.dll
+ 2008-04-14 02:18 . 2008-10-15
dllcache\netapi32.dll
+ 2008-04-13 19:17 . 2011-04-21
dllcache\mup.sys
- 2008-04-14 02:18 . 2008-04-14
dllcache\mswsock.dll
+ 2008-04-14 02:18 . 2008-06-20
dllcache\mswsock.dll
+ 2008-04-14 02:18 . 2009-08-05
dllcache\mswebdvd.dll
+ 2008-04-14 02:18 . 2009-09-11
dllcache\msv1_0.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\mstime.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\msrating.dll

13:53

270848

c:\windows\system32\

02:18

270848

c:\windows\system32\

10:52

401408

c:\windows\system32\

08:44

590848

c:\windows\system32\

14:02

203136

c:\windows\system32\

02:19

139656

c:\windows\system32\

14:10

139656

c:\windows\system32\

13:39

150016

c:\windows\system32\

02:18

387072

c:\windows\system32\

15:28

387072

c:\windows\system32\

14:20

286720

c:\windows\system32\

02:18

286720

c:\windows\system32\

17:32

551936

c:\windows\system32\

02:18

551936

c:\windows\system32\

16:41

220160

c:\windows\system32\

02:18

249856

c:\windows\system32\

14:52

249856

c:\windows\system32\

08:07

102912

c:\windows\system32\

10:33

271360

c:\windows\system32\

02:18

271360

c:\windows\system32\

15:15

742912

c:\windows\system32\

02:18

337408

c:\windows\system32\

16:36

337408

c:\windows\system32\

13:37

105472

c:\windows\system32\

02:18

248320

c:\windows\system32\

16:03

248320

c:\windows\system32\

09:00

205312

c:\windows\system32\

14:18

136192

c:\windows\system32\

08:07

671232

c:\windows\system32\

08:07

193024

c:\windows\system32\

- 2011-03-14 06:24 . 2008-04-14

dllcache\mspaint.exe
+ 2011-03-14 06:24 . 2009-12-17
dllcache\mspaint.exe
- 2011-03-14 06:26 . 2008-04-14
dllcache\msjro.dll
+ 2011-03-14 06:26 . 2010-11-09
dllcache\msjro.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\mshtmled.dll
+ 2011-12-19 08:07 . 2011-12-19
dllcache\msfeeds.dll
+ 2011-03-14 06:24 . 2008-06-12
dllcache\msdtcuiu.dll
- 2011-03-14 06:24 . 2008-04-14
dllcache\msdtcuiu.dll
+ 2011-03-14 06:24 . 2008-06-12
dllcache\msdtctm.dll
- 2011-03-14 06:24 . 2008-04-14
dllcache\msdtctm.dll
+ 2011-03-14 06:24 . 2008-06-12
dllcache\msdtcprx.dll
- 2011-03-14 06:26 . 2008-04-14
dllcache\msadox.dll
+ 2011-03-14 06:26 . 2010-11-09
dllcache\msadox.dll
+ 2011-03-14 06:26 . 2010-11-09
dllcache\msadomd.dll
- 2011-03-14 06:26 . 2008-04-14
dllcache\msadomd.dll
+ 2011-03-14 06:26 . 2010-11-09
dllcache\msado15.dll
- 2011-03-14 06:26 . 2008-04-14
dllcache\msado15.dll
+ 2011-03-14 06:26 . 2010-11-09
dllcache\msadco.dll
- 2011-03-14 06:26 . 2008-04-14
dllcache\msadco.dll
- 2011-03-14 06:26 . 2008-04-14
dllcache\msadce.dll
+ 2011-03-14 06:26 . 2008-05-01
dllcache\msadce.dll
+ 2012-02-16 21:40 . 2011-07-15
dllcache\mrxsmb.sys
+ 2010-03-30 17:24 . 2010-03-30
dllcache\mp4sdecd.dll
+ 2007-04-03 03:14 . 2011-02-08
dllcache\mfc42u.dll
+ 2008-04-14 02:18 . 2011-02-08
dllcache\mfc42.dll
+ 2008-04-14 02:18 . 2010-09-18
dllcache\mfc40u.dll
+ 2001-08-24 11:00 . 2010-09-18
dllcache\mfc40.dll
+ 2008-04-14 02:18 . 2010-12-20
dllcache\lsasrv.dll
+ 2008-06-03 01:52 . 2008-06-18
dllcache\logagent.exe
- 2008-06-03 01:52 . 2008-06-03
dllcache\logagent.exe

02:19

346624

c:\windows\system32\

07:41

346624

c:\windows\system32\

02:18

102400

c:\windows\system32\

14:52

102400

c:\windows\system32\

08:07

478720

c:\windows\system32\

08:07

468480

c:\windows\system32\

14:22

161792

c:\windows\system32\

02:18

161792

c:\windows\system32\

14:22

956928

c:\windows\system32\

02:18

956928

c:\windows\system32\

14:22

428032

c:\windows\system32\

02:18

200704

c:\windows\system32\

14:52

200704

c:\windows\system32\

14:52

180224

c:\windows\system32\

02:18

180224

c:\windows\system32\

14:52

536576

c:\windows\system32\

02:18

536576

c:\windows\system32\

14:52

143360

c:\windows\system32\

02:18

143360

c:\windows\system32\

02:18

331776

c:\windows\system32\

14:36

331776

c:\windows\system32\

13:29

456320

c:\windows\system32\

17:24

317440

c:\windows\system32\

13:33

974848

c:\windows\system32\

13:33

978944

c:\windows\system32\

06:53

953856

c:\windows\system32\

06:53

954368

c:\windows\system32\

17:25

734720

c:\windows\system32\

06:09

100864

c:\windows\system32\

01:52

100864

c:\windows\system32\

+ 2008-04-14 02:18 . 2009-05-07

dllcache\localspl.dll
- 2011-03-14 06:24 . 2008-04-14
dllcache\lhmstsc.exe
+ 2011-03-14 06:24 . 2011-01-27
dllcache\lhmstsc.exe
+ 2008-04-14 02:18 . 2010-12-22
dllcache\kerberos.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\jscript.dll
+ 2008-04-14 02:18 . 2011-03-04
dllcache\jscript.dll
+ 2011-03-14 06:26 . 2011-10-10
dllcache\inetcomm.dll
+ 2011-03-14 06:26 . 2011-12-16
dllcache\iexplore.exe
+ 2011-12-19 08:07 . 2011-12-19
dllcache\iertutil.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\iepeers.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\iedkcs32.dll
+ 2011-12-19 08:07 . 2011-12-19
dllcache\ieapfltr.dll
- 2008-06-03 01:53 . 2008-06-03
dllcache\ieakui.dll
+ 2008-06-03 01:53 . 2011-12-16
dllcache\ieakui.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\ieaksie.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\ieakeng.dll
+ 2008-04-14 02:18 . 2008-10-23
dllcache\gdi32.dll
+ 2011-03-14 06:23 . 2009-02-09
dllcache\fastprox.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\extmgr.dll
+ 2008-04-14 02:18 . 2008-07-07
dllcache\es.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\encdec.dll
+ 2008-04-14 02:18 . 2011-10-18
dllcache\encdec.dll
- 2008-06-03 01:53 . 2008-06-03
dllcache\dxtrans.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\dxtrans.dll
+ 2008-06-03 01:53 . 2011-12-19
dllcache\dxtmsft.dll
+ 2008-04-14 02:18 . 2011-03-03
dllcache\dnsapi.dll
+ 2008-04-14 02:18 . 2008-05-07
dllcache\cscript.exe
+ 2008-04-14 02:18 . 2011-09-28
dllcache\crypt32.dll
- 2008-04-14 02:18 . 2008-04-14
dllcache\crypt32.dll
+ 2008-04-14 02:18 . 2010-08-23
dllcache\comctl32.dll

15:33

347648

c:\windows\system32\

02:19

677888

c:\windows\system32\

11:57

677888

c:\windows\system32\

12:34

301568

c:\windows\system32\

02:18

512000

c:\windows\system32\

08:43

512000

c:\windows\system32\

14:22

692736

c:\windows\system32\

11:00

634680

c:\windows\system32\

08:07

268288

c:\windows\system32\

08:07

192512

c:\windows\system32\

08:07

384512

c:\windows\system32\

08:07

380928

c:\windows\system32\

01:53

161792

c:\windows\system32\

10:58

161792

c:\windows\system32\

08:07

230400

c:\windows\system32\

08:07

153088

c:\windows\system32\

12:36

286720

c:\windows\system32\

10:52

473600

c:\windows\system32\

08:07

133120

c:\windows\system32\

20:27

253952

c:\windows\system32\

02:18

186880

c:\windows\system32\

11:13

186880

c:\windows\system32\

01:53

214528

c:\windows\system32\

08:07

214528

c:\windows\system32\

08:07

347136

c:\windows\system32\

06:54

149504

c:\windows\system32\

09:07

135168

c:\windows\system32\

07:06

605184

c:\windows\system32\

02:18

605184

c:\windows\system32\

16:12

617472

c:\windows\system32\

- 2008-04-14 02:18 . 2008-04-14 02:18

dllcache\comctl32.dll
+ 2012-02-16 21:42 . 2008-06-14 17:33
dllcache\bthport.sys
+ 2008-04-14 02:16 . 2011-02-15 12:56
dllcache\atmfd.dll
+ 2008-04-13 19:19 . 2011-08-17 13:49
dllcache\afd.sys
+ 2008-06-03 01:53 . 2011-12-19 08:07
dllcache\advpack.dll
+ 2008-04-14 02:18 . 2009-02-09 10:52
dllcache\advapi32.dll
- 2008-04-14 02:18 . 2008-04-14 02:18
dllcache\advapi32.dll
+ 2008-04-14 02:18 . 2009-11-21 15:58
dllcache\aclayers.dll
+ 2008-04-14 02:18 . 2010-02-12 04:34
dllcache\6to4svc.dll
+ 2008-04-14 02:18 . 2008-05-07 09:07
cscript.exe
- 2008-04-14 02:18 . 2008-04-14 02:18
crypt32.dll
+ 2008-04-14 02:18 . 2011-09-28 07:06
crypt32.dll
- 2008-04-14 02:18 . 2008-04-14 02:18
comctl32.dll
+ 2008-04-14 02:18 . 2010-08-23 16:12
comctl32.dll
+ 2008-04-14 02:16 . 2011-02-15 12:56
atmfd.dll
+ 2008-06-03 01:53 . 2011-12-19 08:07
advpack.dll
+ 2008-04-14 02:18 . 2009-02-09 10:52
advapi32.dll
- 2008-04-14 02:18 . 2008-04-14 02:18
advapi32.dll
+ 2008-04-14 02:18 . 2010-02-12 04:34
6to4svc.dll
+ 2008-06-03 01:52 . 2007-06-29 17:04
mp2.exe
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\wininet.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\webcheck.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\url.dll
+ 2012-02-19 15:25 . 2010-07-05 13:16
s\KB2647516-IE7\spuninst\updspapi.dll
+ 2012-02-19 15:25 . 2010-07-05 13:16
s\KB2647516-IE7\spuninst\spuninst.exe
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\occache.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\mstime.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\msrating.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\mshtmled.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\msfeeds.dll

617472

c:\windows\system32\

272512

c:\windows\system32\

290432

c:\windows\system32\

138496

c:\windows\system32\

124928

c:\windows\system32\

685056

c:\windows\system32\

685056

c:\windows\system32\

471552

c:\windows\system32\

100864

c:\windows\system32\

135168

c:\windows\system32\

605184

c:\windows\system32\

605184

c:\windows\system32\

617472

c:\windows\system32\

617472

c:\windows\system32\

290432

c:\windows\system32\

124928

c:\windows\system32\

685056

c:\windows\system32\

685056

c:\windows\system32\

100864

c:\windows\system32\

319488

c:\windows\inf\unreg

818688

c:\windows\ie7update

231424

c:\windows\ie7update

105984

c:\windows\ie7update

401272

c:\windows\ie7update

233848

c:\windows\ie7update

101376

c:\windows\ie7update

670720

c:\windows\ie7update

192000

c:\windows\ie7update

475648

c:\windows\ie7update

458752

c:\windows\ie7update

+ 2012-02-19 15:25 . 2008-06-03 01:53

s\KB2647516-IE7\iexplore.exe
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\iertutil.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\iepeers.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\iedkcs32.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\ieapfltr.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\ieakui.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\ieaksie.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\ieakeng.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\extmgr.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\dxtrans.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\dxtmsft.dll
+ 2012-02-19 15:25 . 2008-06-03 01:53
s\KB2647516-IE7\advpack.dll
+ 2012-02-19 15:32 . 2008-06-03 01:53
s\KB2544521-IE7\vgx.dll
+ 2012-02-19 15:32 . 2010-07-05 13:16
s\KB2544521-IE7\spuninst\updspapi.dll
+ 2012-02-19 15:32 . 2010-07-05 13:16
s\KB2544521-IE7\spuninst\spuninst.exe
+ 2012-02-16 21:40 . 2011-07-15 13:29
che\i386\mrxsmb.sys
+ 2012-02-16 21:42 . 2008-06-14 17:33
che\i386\bthport.sys
+ 2008-04-14 02:18 . 2009-11-21 15:58
aclayers.dll
+ 2012-02-19 15:18 . 2010-02-22 14:24
KB982665\update\updspapi.dll
+ 2012-02-19 15:18 . 2010-02-22 14:24
KB982665\update\update.exe
+ 2012-02-19 15:18 . 2010-02-22 14:24
KB982665\spuninst.exe
+ 2012-02-19 15:27 . 2009-05-26 11:40
KB982132\update\updspapi.dll
+ 2012-02-19 15:27 . 2009-05-26 11:40
KB982132\update\update.exe
+ 2012-02-19 15:27 . 2009-05-26 11:40
KB982132\spuninst.exe
+ 2010-08-27 08:00 . 2010-08-27 08:00
KB982132\SP3QFE\t2embed.dll
+ 2012-02-19 15:21 . 2009-05-26 11:40
KB981322\update\updspapi.dll
+ 2012-02-19 15:21 . 2009-05-26 11:40
KB981322\update\update.exe
+ 2012-02-19 15:21 . 2009-05-26 11:40
KB981322\spuninst.exe
+ 2010-04-16 15:30 . 2010-04-16 15:30
KB981322\SP3QFE\usp10.dll
+ 2012-02-19 15:23 . 2010-02-22 14:24
KB979687\update\updspapi.dll

622080

c:\windows\ie7update

266752

c:\windows\ie7update

191488

c:\windows\ie7update

382976

c:\windows\ie7update

380928

c:\windows\ie7update

161792

c:\windows\ie7update

229376

c:\windows\ie7update

152064

c:\windows\ie7update

131584

c:\windows\ie7update

214528

c:\windows\ie7update

346624

c:\windows\ie7update

123904

c:\windows\ie7update

765952

c:\windows\ie7update

401272

c:\windows\ie7update

233848

c:\windows\ie7update

456320

c:\windows\Driver Ca

272512

c:\windows\Driver Ca

471552

c:\windows\AppPatch\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

119808

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

406016

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

+ 2012-02-19 15:23 . 2010-02-22

KB979687\update\update.exe
+ 2012-02-19 15:23 . 2010-02-22
KB979687\spuninst.exe
+ 2010-07-16 11:56 . 2010-07-16
KB979687\SP3QFE\wordpad.exe
+ 2012-02-19 15:19 . 2009-05-26
KB979482\update\updspapi.dll
+ 2012-02-19 15:19 . 2009-05-26
KB979482\update\update.exe
+ 2012-02-19 15:19 . 2009-05-26
KB979482\spuninst.exe
+ 2012-02-19 15:19 . 2009-05-26
KB979309\update\updspapi.dll
+ 2012-02-19 15:19 . 2009-05-26
KB979309\update\update.exe
+ 2012-02-19 15:19 . 2008-07-08
KB979309\spuninst.exe
+ 2012-02-19 15:19 . 2009-05-26
KB978706\update\updspapi.dll
+ 2012-02-19 15:19 . 2009-05-26
KB978706\update\update.exe
+ 2012-02-19 15:19 . 2009-05-26
KB978706\spuninst.exe
+ 2009-12-17 07:38 . 2009-12-17
KB978706\SP3QFE\mspaint.exe
+ 2012-02-19 15:21 . 2009-05-26
KB978601\update\updspapi.dll
+ 2012-02-19 15:21 . 2009-05-26
KB978601\update\update.exe
+ 2012-02-19 15:21 . 2008-07-08
KB978601\spuninst.exe
+ 2009-12-24 06:43 . 2009-12-24
KB978601\SP3QFE\wintrust.dll
+ 2012-02-19 15:19 . 2009-05-26
KB978542\update\updspapi.dll
+ 2012-02-19 15:19 . 2009-05-26
KB978542\update\update.exe
+ 2012-02-19 15:19 . 2009-05-26
KB978542\spuninst.exe
+ 2010-01-29 14:54 . 2010-01-29
KB978542\SP3QFE\inetcomm.dll
+ 2012-02-19 15:26 . 2009-05-26
KB978338\update\updspapi.dll
+ 2012-02-19 15:26 . 2009-05-26
KB978338\update\update.exe
+ 2012-02-19 15:26 . 2009-05-26
KB978338\spuninst.exe
+ 2010-02-11 11:36 . 2010-02-11
KB978338\SP3QFE\tcpip6.sys
+ 2010-02-12 04:28 . 2010-02-12
KB978338\SP3QFE\6to4svc.dll
+ 2012-02-19 15:19 . 2009-05-26
KB977914\update\updspapi.dll
+ 2012-02-19 15:19 . 2009-05-26
KB977914\update\update.exe
+ 2012-02-19 15:19 . 2009-05-26
KB977914\spuninst.exe
+ 2012-02-19 15:21 . 2009-05-26
KB977816\update\updspapi.dll

14:24

764280

c:\windows\$hf_mig$\

14:24

233848

c:\windows\$hf_mig$\

11:56

221696

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

13:02

233848

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

07:38

346624

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

13:02

233848

c:\windows\$hf_mig$\

06:43

178176

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

14:54

691712

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

11:36

226880

c:\windows\$hf_mig$\

04:28

100864

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

+ 2012-02-19 15:21 . 2009-05-26

KB977816\update\update.exe
+ 2012-02-19 15:21 . 2009-05-26
KB977816\spuninst.exe
+ 2012-02-19 15:27 . 2009-05-26
KB975713\update\updspapi.dll
+ 2012-02-19 15:27 . 2009-05-26
KB975713\update\update.exe
+ 2012-02-19 15:27 . 2009-05-26
KB975713\spuninst.exe
+ 2009-12-08 09:02 . 2009-12-08
KB975713\SP3QFE\shlwapi.dll
+ 2012-02-19 15:22 . 2009-05-26
KB975560\update\updspapi.dll
+ 2012-02-19 15:22 . 2009-05-26
KB975560\update\update.exe
+ 2012-02-19 15:22 . 2009-05-26
KB975560\spuninst.exe
+ 2012-02-19 15:17 . 2009-05-26
KB975467\update\updspapi.dll
+ 2012-02-19 15:17 . 2009-05-26
KB975467\update\update.exe
+ 2012-02-19 15:17 . 2008-07-08
KB975467\spuninst.exe
+ 2009-09-11 14:15 . 2009-09-11
KB975467\SP3QFE\msv1_0.dll
+ 2012-02-19 15:23 . 2009-05-26
KB975025\update\updspapi.dll
+ 2012-02-19 15:23 . 2009-05-26
KB975025\update\update.exe
+ 2012-02-19 15:23 . 2009-05-26
KB975025\spuninst.exe
+ 2012-02-19 15:23 . 2009-05-26
KB974571\update\updspapi.dll
+ 2012-02-19 15:23 . 2009-05-26
KB974571\update\update.exe
+ 2012-02-19 15:23 . 2009-05-26
KB974571\spuninst.exe
+ 2012-02-19 15:20 . 2009-05-26
KB974392\update\updspapi.dll
+ 2012-02-19 15:20 . 2009-05-26
KB974392\update\update.exe
+ 2012-02-19 15:20 . 2009-05-26
KB974392\spuninst.exe
+ 2009-10-13 10:39 . 2009-10-13
KB974392\SP3QFE\oakley.dll
+ 2012-02-19 15:28 . 2009-05-26
KB974318\update\updspapi.dll
+ 2012-02-19 15:28 . 2009-05-26
KB974318\update\update.exe
+ 2012-02-19 15:28 . 2009-05-26
KB974318\spuninst.exe
+ 2009-10-12 13:29 . 2009-10-12
KB974318\SP3QFE\rastls.dll
+ 2012-02-19 15:24 . 2009-05-26
KB974112\update\updspapi.dll
+ 2012-02-19 15:24 . 2009-05-26
KB974112\update\update.exe
+ 2012-02-19 15:24 . 2009-05-26
KB974112\spuninst.exe

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

09:02

474624

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

13:02

233848

c:\windows\$hf_mig$\

14:15

136704

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

10:39

271360

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

13:29

150528

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

+ 2009-08-26 08:03 . 2009-08-26

KB974112\SP3QFE\strmdll.dll
+ 2012-02-19 15:18 . 2009-05-26
KB973815\update\updspapi.dll
+ 2012-02-19 15:18 . 2009-05-26
KB973815\update\update.exe
+ 2012-02-19 15:18 . 2009-05-26
KB973815\spuninst.exe
+ 2009-08-05 08:53 . 2009-08-05
KB973815\SP3QFE\mswebdvd.dll
+ 2012-02-19 15:22 . 2009-05-26
KB973507\update\updspapi.dll
+ 2012-02-19 15:22 . 2009-05-26
KB973507\update\update.exe
+ 2012-02-19 15:22 . 2009-05-26
KB973507\spuninst.exe
+ 2012-02-19 15:27 . 2009-05-26
KB971657\update\updspapi.dll
+ 2012-02-19 15:27 . 2009-05-26
KB971657\update\update.exe
+ 2012-02-19 15:27 . 2008-07-08
KB971657\spuninst.exe
+ 2009-06-10 06:17 . 2009-06-10
KB971657\SP3QFE\wkssvc.dll
+ 2012-02-19 15:20 . 2009-05-26
KB971029\update\updspapi.dll
+ 2012-02-19 15:20 . 2009-05-26
KB971029\update\update.exe
+ 2012-02-19 15:20 . 2008-07-08
KB971029\spuninst.exe
+ 2009-07-27 22:14 . 2009-07-27
KB971029\SP3QFE\shsvcs.dll
+ 2012-02-19 15:28 . 2009-05-26
KB969059\update\updspapi.dll
+ 2012-02-19 15:28 . 2009-05-26
KB969059\update\update.exe
+ 2012-02-19 15:28 . 2008-07-08
KB969059\spuninst.exe
+ 2012-02-19 15:17 . 2009-05-26
KB968389\update\updspapi.dll
+ 2012-02-19 15:17 . 2009-05-26
KB968389\update\update.exe
+ 2012-02-19 15:17 . 2008-07-08
KB968389\spuninst.exe
+ 2009-06-25 08:42 . 2009-06-25
KB968389\SP3QFE\schannel.dll
+ 2009-06-25 08:42 . 2009-06-25
KB968389\SP3QFE\msv1_0.dll
+ 2009-06-26 09:42 . 2009-06-26
KB968389\SP3QFE\lsasrv.dll
+ 2009-06-25 08:42 . 2009-06-25
KB968389\SP3QFE\kerberos.dll
+ 2012-02-19 15:27 . 2007-11-30
KB961503\update\updspapi.dll
+ 2012-02-19 15:27 . 2007-11-30
KB961503\update\update.exe
+ 2012-02-19 15:27 . 2007-11-30
KB961503\spuninst.exe
+ 2012-02-19 15:23 . 2008-07-09
KB961501\update\updspapi.dll

08:03

247326

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

08:53

205312

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

13:02

233848

c:\windows\$hf_mig$\

06:17

134144

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

13:02

233848

c:\windows\$hf_mig$\

22:14

135168

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

13:02

233848

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

13:02

233848

c:\windows\$hf_mig$\

08:42

147456

c:\windows\$hf_mig$\

08:42

136704

c:\windows\$hf_mig$\

09:42

734720

c:\windows\$hf_mig$\

08:42

301568

c:\windows\$hf_mig$\

12:39

401272

c:\windows\$hf_mig$\

12:39

764280

c:\windows\$hf_mig$\

12:39

233848

c:\windows\$hf_mig$\

07:39

401272

c:\windows\$hf_mig$\

+ 2012-02-19 15:23 . 2008-07-09

KB961501\update\update.exe
+ 2012-02-19 15:23 . 2008-07-09
KB961501\spuninst.exe
+ 2009-05-07 15:15 . 2009-05-07
KB961501\SP3QFE\localspl.dll
+ 2012-02-19 15:33 . 2009-05-26
KB960859\update\updspapi.dll
+ 2012-02-19 15:33 . 2009-05-26
KB960859\update\update.exe
+ 2012-02-19 15:33 . 2008-07-08
KB960859\spuninst.exe
+ 2012-02-19 15:19 . 2007-11-30
KB960803\update\updspapi.dll
+ 2012-02-19 15:19 . 2007-11-30
KB960803\update\update.exe
+ 2012-02-19 15:19 . 2007-11-30
KB960803\spuninst.exe
+ 2008-12-16 12:23 . 2008-12-16
KB960803\SP3QFE\winhttp.dll
+ 2012-02-19 15:33 . 2007-11-30
KB959426\update\updspapi.dll
+ 2012-02-19 15:33 . 2007-11-30
KB959426\update\update.exe
+ 2012-02-19 15:33 . 2007-11-30
KB959426\spuninst.exe
+ 2012-02-19 15:18 . 2008-07-09
KB956802\update\updspapi.dll
+ 2012-02-19 15:18 . 2008-07-09
KB956802\update\update.exe
+ 2012-02-19 15:18 . 2008-07-08
KB956802\spuninst.exe
+ 2008-10-23 12:44 . 2008-10-23
KB956802\SP3QFE\gdi32.dll
+ 2012-02-19 15:20 . 2007-11-30
KB954459\update\updspapi.dll
+ 2012-02-19 15:20 . 2007-11-30
KB954459\update\update.exe
+ 2012-02-19 15:20 . 2007-11-30
KB954459\spuninst.exe
+ 2012-02-19 15:33 . 2007-11-30
KB952954\update\updspapi.dll
+ 2012-02-19 15:33 . 2007-11-30
KB952954\update\update.exe
+ 2012-02-19 15:33 . 2007-11-30
KB952954\spuninst.exe
+ 2012-02-19 15:23 . 2007-11-30
KB952004\update\updspapi.dll
+ 2012-02-19 15:23 . 2007-11-30
KB952004\update\update.exe
+ 2012-02-19 15:23 . 2007-11-30
KB952004\spuninst.exe
+ 2008-06-12 14:10 . 2008-06-12
KB952004\SP3QFE\msdtcuiu.dll
+ 2008-06-12 14:10 . 2008-06-12
KB952004\SP3QFE\msdtctm.dll
+ 2008-06-12 14:10 . 2008-06-12
KB952004\SP3QFE\msdtcprx.dll
+ 2012-02-19 15:28 . 2007-11-30
KB951978\update\updspapi.dll

07:39

764280

c:\windows\$hf_mig$\

07:39

233848

c:\windows\$hf_mig$\

15:15

348160

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

13:02

233848

c:\windows\$hf_mig$\

12:39

401272

c:\windows\$hf_mig$\

12:39

764280

c:\windows\$hf_mig$\

12:39

233848

c:\windows\$hf_mig$\

12:23

354304

c:\windows\$hf_mig$\

12:39

401272

c:\windows\$hf_mig$\

12:39

764280

c:\windows\$hf_mig$\

12:39

233848

c:\windows\$hf_mig$\

07:39

401272

c:\windows\$hf_mig$\

07:39

764280

c:\windows\$hf_mig$\

13:02

233848

c:\windows\$hf_mig$\

12:44

286720

c:\windows\$hf_mig$\

12:39

401272

c:\windows\$hf_mig$\

12:39

764280

c:\windows\$hf_mig$\

12:39

233848

c:\windows\$hf_mig$\

12:39

401272

c:\windows\$hf_mig$\

12:39

764280

c:\windows\$hf_mig$\

12:39

233848

c:\windows\$hf_mig$\

12:39

401272

c:\windows\$hf_mig$\

12:39

764280

c:\windows\$hf_mig$\

12:39

233848

c:\windows\$hf_mig$\

14:10

161792

c:\windows\$hf_mig$\

14:10

956928

c:\windows\$hf_mig$\

14:10

428032

c:\windows\$hf_mig$\

12:39

401272

c:\windows\$hf_mig$\

+ 2012-02-19 15:28 . 2007-11-30 12:39

KB951978\update\update.exe
+ 2012-02-19 15:28 . 2007-11-30 12:39
KB951978\spuninst.exe
+ 2008-05-08 11:24 . 2008-05-08 11:24
KB951978\SP3QFE\wscript.exe
+ 2008-05-09 10:51 . 2008-05-09 10:51
KB951978\SP3QFE\vbscript.dll
+ 2008-05-09 10:51 . 2008-05-09 10:51
KB951978\SP3QFE\scrrun.dll
+ 2008-05-09 10:51 . 2008-05-09 10:51
KB951978\SP3QFE\scrobj.dll
+ 2008-05-09 10:51 . 2008-05-09 10:51
KB951978\SP3QFE\jscript.dll
+ 2008-05-07 09:07 . 2008-05-07 09:07
KB951978\SP3QFE\cscript.exe
+ 2012-02-19 15:27 . 2007-11-30 12:39
KB950974\update\updspapi.dll
+ 2012-02-19 15:27 . 2007-11-30 12:39
KB950974\update\update.exe
+ 2012-02-19 15:27 . 2007-11-30 12:39
KB950974\spuninst.exe
+ 2008-07-07 20:25 . 2008-07-07 20:25
KB950974\SP3QFE\es.dll
+ 2012-02-19 15:27 . 2010-07-05 13:16
KB2660465\update\updspapi.dll
+ 2012-02-19 15:27 . 2010-07-05 13:16
KB2660465\update\update.exe
+ 2012-02-19 15:27 . 2010-07-05 13:16
KB2660465\spuninst.exe
+ 2012-02-19 15:25 . 2010-07-05 13:16
KB2647516-IE7\update\updspapi.dll
+ 2012-02-19 15:25 . 2010-07-05 13:16
KB2647516-IE7\update\update.exe
+ 2012-02-19 15:25 . 2010-07-05 13:16
KB2647516-IE7\spuninst.exe
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\wininet.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\webcheck.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\url.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\occache.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\mstime.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\msrating.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\mshtmled.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\msfeeds.dll
+ 2011-12-16 10:35 . 2011-12-16 10:35
KB2647516-IE7\SP3QFE\iexplore.exe
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\iertutil.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\iepeers.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\iedkcs32.dll

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

155648

c:\windows\$hf_mig$\

430080

c:\windows\$hf_mig$\

172032

c:\windows\$hf_mig$\

180224

c:\windows\$hf_mig$\

512000

c:\windows\$hf_mig$\

135168

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

253952

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

841216

c:\windows\$hf_mig$\

233472

c:\windows\$hf_mig$\

106496

c:\windows\$hf_mig$\

102912

c:\windows\$hf_mig$\

671232

c:\windows\$hf_mig$\

193024

c:\windows\$hf_mig$\

478720

c:\windows\$hf_mig$\

468480

c:\windows\$hf_mig$\

634680

c:\windows\$hf_mig$\

268288

c:\windows\$hf_mig$\

193024

c:\windows\$hf_mig$\

388608

c:\windows\$hf_mig$\

+ 2011-12-19 08:06 . 2011-12-19 08:06

KB2647516-IE7\SP3QFE\ieapfltr.dll
+ 2011-12-16 10:33 . 2011-12-16 10:33
KB2647516-IE7\SP3QFE\ieakui.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\ieaksie.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\ieakeng.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\extmgr.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\dxtrans.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\dxtmsft.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06
KB2647516-IE7\SP3QFE\advpack.dll
+ 2012-02-19 15:32 . 2010-07-05 13:16
KB2646524\update\updspapi.dll
+ 2012-02-19 15:32 . 2010-07-05 13:16
KB2646524\update\update.exe
+ 2012-02-19 15:32 . 2010-07-05 13:16
KB2646524\spuninst.exe
+ 2011-11-25 21:56 . 2011-11-25 21:56
KB2646524\SP3QFE\winsrv.dll
+ 2012-02-19 15:24 . 2010-07-05 13:16
KB2641690\update\updspapi.dll
+ 2012-02-19 15:24 . 2010-07-05 13:16
KB2641690\update\update.exe
+ 2012-02-19 15:24 . 2010-07-05 13:16
KB2641690\spuninst.exe
+ 2011-09-28 07:05 . 2011-09-28 07:05
KB2641690\SP3QFE\crypt32.dll
+ 2012-02-19 15:17 . 2010-07-05 13:16
KB2633171\update\updspapi.dll
+ 2012-02-19 15:17 . 2010-07-05 13:16
KB2633171\update\update.exe
+ 2012-02-19 15:17 . 2010-07-05 13:16
KB2633171\spuninst.exe
+ 2012-02-19 15:29 . 2010-07-05 13:16
KB2631813\update\updspapi.dll
+ 2012-02-19 15:29 . 2010-07-05 13:16
KB2631813\update\update.exe
+ 2012-02-19 15:29 . 2010-07-05 13:16
KB2631813\spuninst.exe
+ 2011-11-03 15:27 . 2011-11-03 15:27
KB2631813\SP3QFE\qdvd.dll
+ 2012-02-19 15:23 . 2010-07-05 13:16
KB2624667\update\updspapi.dll
+ 2012-02-19 15:23 . 2010-07-05 13:16
KB2624667\update\update.exe
+ 2012-02-19 15:23 . 2010-07-05 13:16
KB2624667\spuninst.exe
+ 2012-02-19 15:17 . 2010-07-05 13:16
KB2620712\update\updspapi.dll
+ 2012-02-19 15:17 . 2010-07-05 13:16
KB2620712\update\update.exe
+ 2012-02-19 15:17 . 2010-07-05 13:16
KB2620712\spuninst.exe
+ 2012-02-19 15:19 . 2010-07-05 13:16
KB2619339\update\updspapi.dll

380928

c:\windows\$hf_mig$\

161792

c:\windows\$hf_mig$\

230400

c:\windows\$hf_mig$\

153088

c:\windows\$hf_mig$\

132608

c:\windows\$hf_mig$\

214528

c:\windows\$hf_mig$\

347136

c:\windows\$hf_mig$\

124928

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

293888

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

605696

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

387072

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

+ 2012-02-19 15:19 . 2010-07-05 13:16

KB2619339\update\update.exe
+ 2012-02-19 15:19 . 2010-07-05 13:16
KB2619339\spuninst.exe
+ 2011-10-18 11:12 . 2011-10-18 11:12
KB2619339\SP3QFE\encdec.dll
+ 2012-02-19 15:27 . 2010-07-05 13:16
KB2598479\update\updspapi.dll
+ 2012-02-19 15:27 . 2010-07-05 13:16
KB2598479\update\update.exe
+ 2012-02-19 15:27 . 2010-07-05 13:16
KB2598479\spuninst.exe
+ 2011-10-14 14:45 . 2011-10-14 14:45
KB2598479\SP3QFE\winmm.dll
+ 2012-02-19 15:32 . 2010-07-05 13:16
KB2585542\update\updspapi.dll
+ 2012-02-19 15:32 . 2010-07-05 13:16
KB2585542\update\update.exe
+ 2012-02-19 15:32 . 2010-07-05 13:16
KB2585542\spuninst.exe
+ 2011-11-16 14:20 . 2011-11-16 14:20
KB2585542\SP3QFE\winhttp.dll
+ 2011-11-16 14:20 . 2011-11-16 14:20
KB2585542\SP3QFE\schannel.dll
+ 2012-02-19 15:32 . 2010-07-05 13:16
KB2544893-v2\update\updspapi.dll
+ 2012-02-19 15:32 . 2010-07-05 13:16
KB2544893-v2\update\update.exe
+ 2012-02-19 15:32 . 2010-07-05 13:16
KB2544893-v2\spuninst.exe
+ 2011-10-10 14:21 . 2011-10-10 14:21
KB2544893-v2\SP3QFE\inetcomm.dll
+ 2012-02-19 15:25 . 2010-07-05 13:16
KB2510581\update\updspapi.dll
+ 2012-02-19 15:25 . 2010-07-05 13:16
KB2510581\update\update.exe
+ 2012-02-19 15:25 . 2010-07-05 13:16
KB2510581\spuninst.exe
+ 2011-03-04 08:42 . 2011-03-04 08:42
KB2510581\SP3QFE\vbscript.dll
+ 2011-03-04 08:42 . 2011-03-04 08:42
KB2510581\SP3QFE\jscript.dll
+ 2012-02-19 15:18 . 2010-02-22 14:24
KB2509553\update\updspapi.dll
+ 2012-02-19 15:18 . 2010-02-22 14:24
KB2509553\update\update.exe
+ 2012-02-19 15:18 . 2010-02-22 14:24
KB2509553\spuninst.exe
+ 2008-06-20 11:16 . 2008-06-20 11:16
KB2509553\SP3QFE\tcpip6.sys
+ 2008-06-20 11:59 . 2008-06-20 11:59
KB2509553\SP3QFE\tcpip.sys
+ 2008-06-20 17:44 . 2008-06-20 17:44
KB2509553\SP3QFE\mswsock.dll
+ 2011-03-03 06:53 . 2011-03-03 06:53
KB2509553\SP3QFE\dnsapi.dll
+ 2008-10-16 15:07 . 2008-10-16 15:07
KB2509553\SP3QFE\afd.sys
+ 2012-02-19 15:20 . 2010-07-05 13:16
KB2508429\update\updspapi.dll

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

186880

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

180224

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

354816

c:\windows\$hf_mig$\

152064

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

692736

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

434176

c:\windows\$hf_mig$\

512000

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

764280

c:\windows\$hf_mig$\

233848

c:\windows\$hf_mig$\

225856

c:\windows\$hf_mig$\

361600

c:\windows\$hf_mig$\

248320

c:\windows\$hf_mig$\

149504

c:\windows\$hf_mig$\

138496

c:\windows\$hf_mig$\

401272

c:\windows\$hf_mig$\

+ 2012-02-19 15:20 . 2010-07-05

KB2508429\update\update.exe
+ 2012-02-19 15:20 . 2010-07-05
KB2508429\spuninst.exe
+ 2011-02-17 13:19 . 2011-02-17
KB2508429\SP3QFE\srv.sys
+ 2012-02-19 15:25 . 2010-02-22
KB2507938\update\updspapi.dll
+ 2012-02-19 15:25 . 2010-02-22
KB2507938\update\update.exe
+ 2012-02-19 15:25 . 2010-02-22
KB2507938\spuninst.exe
+ 2011-04-26 11:02 . 2011-04-26
KB2507938\SP3QFE\winsrv.dll
+ 2012-02-19 15:21 . 2010-07-05
KB2507618\update\updspapi.dll
+ 2012-02-19 15:21 . 2010-07-05
KB2507618\update\update.exe
+ 2012-02-19 15:21 . 2010-07-05
KB2507618\spuninst.exe
+ 2011-02-15 13:05 . 2011-02-15
KB2507618\SP3QFE\atmfd.dll
+ 2012-02-19 15:19 . 2010-02-22
KB2506212\update\updspapi.dll
+ 2012-02-19 15:19 . 2010-02-22
KB2506212\update\update.exe
+ 2012-02-19 15:19 . 2010-02-22
KB2506212\spuninst.exe
+ 2011-02-08 13:32 . 2011-02-08
KB2506212\SP3QFE\mfc42u.dll
+ 2011-02-08 13:32 . 2011-02-08
KB2506212\SP3QFE\mfc42.dll
+ 2012-02-19 15:24 . 2010-02-22
KB2483185\update\updspapi.dll
+ 2012-02-19 15:24 . 2010-02-22
KB2483185\update\update.exe
+ 2012-02-19 15:24 . 2010-02-22
KB2483185\spuninst.exe
+ 2011-01-21 14:42 . 2011-01-21
KB2483185\SP3QFE\shimgvw.dll
+ 2012-02-19 15:27 . 2010-07-05
KB2481109\update\updspapi.dll
+ 2012-02-19 15:27 . 2010-07-05
KB2481109\update\update.exe
+ 2012-02-19 15:27 . 2010-07-05
KB2481109\spuninst.exe
+ 2011-01-27 11:41 . 2011-01-27
KB2481109\SP3QFE\lhmstsc.exe
+ 2011-02-02 07:57 . 2011-02-02
KB2481109\SP3QFE\aaclient.dll
+ 2012-02-19 15:32 . 2010-02-22
KB2479943\update\updspapi.dll
+ 2012-02-19 15:32 . 2010-02-22
KB2479943\update\update.exe
+ 2012-02-19 15:32 . 2010-02-22
KB2479943\spuninst.exe
+ 2011-02-09 13:52 . 2011-02-09
KB2479943\SP3QFE\sbe.dll
+ 2011-02-09 13:52 . 2011-02-09
KB2479943\SP3QFE\encdec.dll

13:16

764280

c:\windows\$hf_mig$\

13:16

233848

c:\windows\$hf_mig$\

13:19

357888

c:\windows\$hf_mig$\

14:24

401272

c:\windows\$hf_mig$\

14:24

764280

c:\windows\$hf_mig$\

14:24

233848

c:\windows\$hf_mig$\

11:02

293888

c:\windows\$hf_mig$\

13:16

401272

c:\windows\$hf_mig$\

13:16

764280

c:\windows\$hf_mig$\

13:16

233848

c:\windows\$hf_mig$\

13:05

290432

c:\windows\$hf_mig$\

14:24

401272

c:\windows\$hf_mig$\

14:24

764280

c:\windows\$hf_mig$\

14:24

233848

c:\windows\$hf_mig$\

13:32

974848

c:\windows\$hf_mig$\

13:32

978944

c:\windows\$hf_mig$\

14:24

401272

c:\windows\$hf_mig$\

14:24

764280

c:\windows\$hf_mig$\

14:24

233848

c:\windows\$hf_mig$\

14:42

441856

c:\windows\$hf_mig$\

13:16

401272

c:\windows\$hf_mig$\

13:16

764280

c:\windows\$hf_mig$\

13:16

233848

c:\windows\$hf_mig$\

11:41

677888

c:\windows\$hf_mig$\

07:57

136192

c:\windows\$hf_mig$\

14:24

401272

c:\windows\$hf_mig$\

14:24

764280

c:\windows\$hf_mig$\

14:24

233848

c:\windows\$hf_mig$\

13:52

270848

c:\windows\$hf_mig$\

13:52

186880

c:\windows\$hf_mig$\

+ 2012-02-19 15:32 . 2010-02-22

KB2478971\update\updspapi.dll
+ 2012-02-19 15:32 . 2010-02-22
KB2478971\update\update.exe
+ 2012-02-19 15:32 . 2010-02-22
KB2478971\spuninst.exe
+ 2010-12-22 12:32 . 2010-12-22
KB2478971\SP3QFE\kerberos.dll
+ 2012-02-19 15:18 . 2010-07-05
KB2478960\update\updspapi.dll
+ 2012-02-19 15:18 . 2010-07-05
KB2478960\update\update.exe
+ 2012-02-19 15:18 . 2010-07-05
KB2478960\spuninst.exe
+ 2010-12-20 17:24 . 2010-12-20
KB2478960\SP3QFE\lsasrv.dll
+ 2012-02-19 15:24 . 2010-07-05
KB2476490\update\updspapi.dll
+ 2012-02-19 15:24 . 2010-07-05
KB2476490\update\update.exe
+ 2012-02-19 15:24 . 2010-07-05
KB2476490\spuninst.exe
+ 2010-12-20 17:30 . 2010-12-20
KB2476490\SP3QFE\oleaut32.dll
+ 2012-02-19 15:27 . 2010-02-22
KB2443105\update\updspapi.dll
+ 2012-02-19 15:27 . 2010-02-22
KB2443105\update\update.exe
+ 2012-02-19 15:27 . 2010-02-22
KB2443105\spuninst.exe
+ 2012-02-19 15:20 . 2010-02-22
KB2419632\update\updspapi.dll
+ 2012-02-19 15:20 . 2010-02-22
KB2419632\update\update.exe
+ 2012-02-19 15:20 . 2010-02-22
KB2419632\spuninst.exe
+ 2010-11-09 14:50 . 2010-11-09
KB2419632\SP3QFE\odbc32.dll
+ 2010-11-09 14:50 . 2010-11-09
KB2419632\SP3QFE\msjro.dll
+ 2010-11-09 14:50 . 2010-11-09
KB2419632\SP3QFE\msadox.dll
+ 2010-11-09 14:50 . 2010-11-09
KB2419632\SP3QFE\msadomd.dll
+ 2010-11-09 14:50 . 2010-11-09
KB2419632\SP3QFE\msado15.dll
+ 2010-11-09 14:50 . 2010-11-09
KB2419632\SP3QFE\msadco.dll
+ 2012-02-19 15:24 . 2009-05-26
KB2347290\update\updspapi.dll
+ 2012-02-19 15:24 . 2009-05-26
KB2347290\update\update.exe
+ 2012-02-19 15:24 . 2009-05-26
KB2347290\spuninst.exe
+ 2012-02-19 15:28 . 2009-05-26
KB2115168\update\updspapi.dll
+ 2012-02-19 15:28 . 2009-05-26
KB2115168\update\update.exe
+ 2012-02-19 15:28 . 2009-05-26
KB2115168\spuninst.exe

14:24

401272

c:\windows\$hf_mig$\

14:24

764280

c:\windows\$hf_mig$\

14:24

233848

c:\windows\$hf_mig$\

12:32

301568

c:\windows\$hf_mig$\

13:16

401272

c:\windows\$hf_mig$\

13:16

764280

c:\windows\$hf_mig$\

13:16

233848

c:\windows\$hf_mig$\

17:24

734720

c:\windows\$hf_mig$\

13:16

401272

c:\windows\$hf_mig$\

13:16

764280

c:\windows\$hf_mig$\

13:16

233848

c:\windows\$hf_mig$\

17:30

552448

c:\windows\$hf_mig$\

14:24

401272

c:\windows\$hf_mig$\

14:24

764280

c:\windows\$hf_mig$\

14:24

233848

c:\windows\$hf_mig$\

14:24

401272

c:\windows\$hf_mig$\

14:24

764280

c:\windows\$hf_mig$\

14:24

233848

c:\windows\$hf_mig$\

14:50

253952

c:\windows\$hf_mig$\

14:50

102400

c:\windows\$hf_mig$\

14:50

200704

c:\windows\$hf_mig$\

14:50

180224

c:\windows\$hf_mig$\

14:50

565248

c:\windows\$hf_mig$\

14:50

143360

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

11:40

401272

c:\windows\$hf_mig$\

11:40

764280

c:\windows\$hf_mig$\

11:40

233848

c:\windows\$hf_mig$\

+ 2012-02-19 15:23 . 2009-05-26 11:40 401272

c:\windows\$hf_mig$\
KB2079403\update\updspapi.dll
+ 2012-02-19 15:23 . 2009-05-26 11:40 764280
c:\windows\$hf_mig$\
KB2079403\update\update.exe
+ 2012-02-19 15:23 . 2009-05-26 11:40 233848
c:\windows\$hf_mig$\
KB2079403\spuninst.exe
+ 2012-02-16 21:38 . 2010-10-23 00:47 1748992
c:\windows\WinSxS\x
86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22509_x-ww_c7dad023\GdiPl
us.dll
+ 2012-02-16 21:39 . 2010-08-23 16:12 1054208
c:\windows\WinSxS\x
86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e6520
2\comctl32.dll
+ 2008-06-03 01:53 . 2010-04-06 09:52 2462720
c:\windows\system32
\WMVCore.dll
+ 2008-06-03 01:53 . 2011-12-19 08:07 1168896
c:\windows\system32
\urlmon.dll
+ 2008-04-14 02:18 . 2011-01-21 14:44 8504320
c:\windows\system32
\shell32.dll
+ 2008-04-14 02:18 . 2009-07-17 16:16 1440256
c:\windows\system32
\query.dll
- 2008-04-14 02:18 . 2008-04-14 02:18 1440256
c:\windows\system32
\query.dll
+ 2008-04-14 02:18 . 2011-11-03 15:28 1298432
c:\windows\system32
\quartz.dll
+ 2008-04-14 02:18 . 2011-11-01 16:07 1288192
c:\windows\system32
\ole32.dll
+ 2008-04-14 01:57 . 2011-10-26 10:49 2195200
c:\windows\system32
\ntoskrnl.exe
+ 2008-04-14 02:57 . 2011-10-26 10:49 2071808
c:\windows\system32
\ntkrnlpa.exe
+ 2008-04-14 02:18 . 2009-07-31 15:03 1372672
c:\windows\system32
\msxml6.dll
+ 2008-04-14 02:18 . 2010-06-14 07:42 1172480
c:\windows\system32
\msxml3.dll
+ 2011-03-14 06:24 . 2011-02-02 07:58 2067456
c:\windows\system32
\mstscax.dll
+ 2008-06-03 01:53 . 2011-12-19 08:07 3616768
c:\windows\system32
\mshtml.dll
- 2008-04-14 02:18 . 2008-04-14 02:18 1042944
c:\windows\system32
\kernel32.dll
+ 2008-04-14 02:18 . 2009-03-21 14:08 1042944
c:\windows\system32
\kernel32.dll
+ 2008-06-03 01:53 . 2011-12-19 08:07 6076416
c:\windows\system32
\ieframe.dll
+ 2008-06-03 01:53 . 2010-07-05 20:32 2452872
c:\windows\system32
\ieapfltr.dat
+ 2008-06-03 01:53 . 2010-04-06 09:52 2462720
c:\windows\system32
\dllcache\WMVCore.dll
+ 2008-04-14 01:52 . 2012-01-12 17:20 1860096
c:\windows\system32
\dllcache\win32k.sys
+ 2008-06-03 01:53 . 2011-12-19 08:07 1168896
c:\windows\system32
\dllcache\urlmon.dll
+ 2008-04-14 02:18 . 2011-01-21 14:44 8504320
c:\windows\system32
\dllcache\shell32.dll
- 2008-04-14 02:18 . 2008-04-14 02:18 1440256
c:\windows\system32
\dllcache\query.dll
+ 2008-04-14 02:18 . 2009-07-17 16:16 1440256
c:\windows\system32
\dllcache\query.dll
+ 2008-04-14 02:18 . 2011-11-03 15:28 1298432
c:\windows\system32
\dllcache\quartz.dll

+ 2008-04-14 02:18 . 2011-11-01

\dllcache\ole32.dll
+ 2011-10-26 10:49 . 2011-10-26
\dllcache\ntoskrnl.exe
+ 2011-10-26 10:49 . 2011-10-26
\dllcache\ntkrpamp.exe
+ 2011-10-26 10:49 . 2011-10-26
\dllcache\ntkrnlpa.exe
+ 2011-10-26 10:49 . 2011-10-26
\dllcache\ntkrnlmp.exe
+ 2008-04-14 02:18 . 2009-07-31
\dllcache\msxml6.dll
+ 2008-04-14 02:18 . 2010-06-14
\dllcache\msxml3.dll
+ 2009-06-10 14:21 . 2009-06-10
\dllcache\mstscax.dll
+ 2011-03-14 06:26 . 2010-01-29
\dllcache\msoe.dll
+ 2008-06-03 01:53 . 2011-12-19
\dllcache\mshtml.dll
+ 2011-03-14 06:24 . 2011-02-02
\dllcache\lhmstscx.dll
+ 2008-04-14 02:18 . 2009-03-21
\dllcache\kernel32.dll
- 2008-04-14 02:18 . 2008-04-14
\dllcache\kernel32.dll
+ 2011-12-19 08:07 . 2011-12-19
\dllcache\ieframe.dll
+ 2010-07-05 20:32 . 2010-07-05
\dllcache\ieapfltr.dat
+ 2012-02-19 15:25 . 2008-06-03
es\KB2647516-IE7\urlmon.dll
+ 2012-02-19 15:25 . 2008-06-03
es\KB2647516-IE7\mshtml.dll
+ 2012-02-19 15:25 . 2008-06-03
es\KB2647516-IE7\ieframe.dll
+ 2012-02-19 15:25 . 2008-06-03
es\KB2647516-IE7\ieapfltr.dat
+ 2011-10-26 10:49 . 2011-10-26
ache\i386\ntoskrnl.exe
+ 2011-10-26 10:49 . 2011-10-26
ache\i386\ntkrpamp.exe
+ 2011-10-26 10:49 . 2011-10-26
ache\i386\ntkrnlpa.exe
+ 2011-10-26 10:49 . 2011-10-26
ache\i386\ntkrnlmp.exe
+ 2010-07-16 11:59 . 2010-07-16
\KB979687\SP3QFE\ole32.dll
+ 2010-01-29 14:54 . 2010-01-29
\KB978542\SP3QFE\msoe.dll
+ 2009-11-27 17:24 . 2009-11-27
\KB975560\SP3QFE\quartz.dll
+ 2009-07-27 22:14 . 2009-07-27
\KB971029\SP3QFE\shell32.dll
+ 2009-07-17 16:02 . 2009-07-17
\KB969059\SP3QFE\query.dll
+ 2009-03-21 14:00 . 2009-03-21
\KB959426\SP3QFE\kernel32.dll
+ 2008-09-10 01:12 . 2008-09-10
\KB954459\SP3QFE\msxml6.dll

16:07

1288192

c:\windows\system32

10:49

2195200

c:\windows\system32

10:49

2029568

c:\windows\system32

10:49

2071808

c:\windows\system32

10:49

2151424

c:\windows\system32

15:03

1372672

c:\windows\system32

07:42

1172480

c:\windows\system32

14:21

2066432

c:\windows\system32

15:00

1315328

c:\windows\system32

08:07

3616768

c:\windows\system32

07:58

2067456

c:\windows\system32

14:08

1042944

c:\windows\system32

02:18

1042944

c:\windows\system32

08:07

6076416

c:\windows\system32

20:32

2452872

c:\windows\system32

01:53

1162240

c:\windows\ie7updat

01:53

3577856

c:\windows\ie7updat

01:53

6049280

c:\windows\ie7updat

01:53

2451824

c:\windows\ie7updat

10:49

2195200

c:\windows\Driver C

10:49

2029568

c:\windows\Driver C

10:49

2071808

c:\windows\Driver C

10:49

2151424

c:\windows\Driver C

11:59

1288704

c:\windows\$hf_mig$

14:54

1315328

c:\windows\$hf_mig$

17:24

1297920

c:\windows\$hf_mig$

22:14

8504832

c:\windows\$hf_mig$

16:02

1440256

c:\windows\$hf_mig$

14:00

1044992

c:\windows\$hf_mig$

01:12

1379840

c:\windows\$hf_mig$

+ 2012-01-12 17:20 . 2012-01-12 17:20 1869184

c:\windows\$hf_mig$
\KB2660465\SP3QFE\win32k.sys
+ 2011-12-19 08:06 . 2011-12-19 08:06 1172992
c:\windows\$hf_mig$
\KB2647516-IE7\SP3QFE\urlmon.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06 3618816
c:\windows\$hf_mig$
\KB2647516-IE7\SP3QFE\mshtml.dll
+ 2011-12-19 08:06 . 2011-12-19 08:06 6080512
c:\windows\$hf_mig$
\KB2647516-IE7\SP3QFE\ieframe.dll
+ 2010-07-05 20:36 . 2010-07-05 20:36 2452872
c:\windows\$hf_mig$
\KB2647516-IE7\SP3QFE\ieapfltr.dat
+ 2011-10-26 10:49 . 2011-10-26 10:49 2195200
c:\windows\$hf_mig$
\KB2633171\SP3QFE\ntoskrnl.exe
+ 2011-10-26 10:48 . 2011-10-26 10:48 2029568
c:\windows\$hf_mig$
\KB2633171\SP3QFE\ntkrpamp.exe
+ 2011-10-26 10:49 . 2011-10-26 10:49 2071808
c:\windows\$hf_mig$
\KB2633171\SP3QFE\ntkrnlpa.exe
+ 2011-10-26 10:48 . 2011-10-26 10:48 2151424
c:\windows\$hf_mig$
\KB2633171\SP3QFE\ntkrnlmp.exe
+ 2011-11-03 15:27 . 2011-11-03 15:27 1298432
c:\windows\$hf_mig$
\KB2631813\SP3QFE\quartz.dll
+ 2011-11-01 16:05 . 2011-11-01 16:05 1288704
c:\windows\$hf_mig$
\KB2624667\SP3QFE\ole32.dll
+ 2011-01-21 14:42 . 2011-01-21 14:42 8505344
c:\windows\$hf_mig$
\KB2483185\SP3QFE\shell32.dll
+ 2011-02-02 07:57 . 2011-02-02 07:57 2069504
c:\windows\$hf_mig$
\KB2481109\SP3QFE\lhmstscx.dll
+ 2010-06-14 07:40 . 2010-06-14 07:40 1172480
c:\windows\$hf_mig$
\KB2079403\SP3QFE\msxml3.dll
+ 2008-06-03 01:53 . 2010-08-26 04:36 10841088
c:\windows\system3
2\wmp.dll
+ 2012-02-19 15:29 . 2012-01-27 04:20 52550552
c:\windows\system3
2\MRT.exe
+ 2008-06-03 01:53 . 2010-08-26 04:36 10841088
c:\windows\system3
2\dllcache\wmp.dll
.
-- Snapshot reset to current date -.
((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))
)))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Safe PST Backup"="c:\archivos de programa\4Team Corporation\Safe PST Backup\Saf
ePSTBackup.exe" [2011-06-01 3646128]
"Skype"="c:\archivos de programa\Skype5.8\Phone\Skype.exe" [2012-02-01 17146504]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2006-02-07 94208]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2006-02-07 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2006-02-07 118784]
"egui"="c:\archivos de programa\ESET\ESET NOD32 Antivirus\egui.exe" [2011-01-12
2219184]
"Adobe Reader Speed Launcher"="c:\archivos de programa\Adobe\Reader 10.0\Reader\
Reader_sl.exe" [2011-01-30 35736]
"Adobe ARM"="c:\archivos de programa\Archivos comunes\Adobe\ARM\1.0\AdobeARM.exe
" [2012-01-03 843712]
"GrooveMonitor"="c:\archivos de programa\Microsoft Office\Office12\GrooveMonitor

.exe" [2006-10-27 31016]

"SunKist"="c:\archivos de programa\Digital Media Reader\shwicon2k.exe" [2004-0526 139264]
"JobHisInit"="c:\archivos de programa\RDS\RMClient\JobHisInit.exe" [2005-11-01 1
51552]
"MplSetUp"="c:\archivos de programa\RDS\RMClient\MplSetUp.exe" [2005-06-01 40960
]
"LogMeIn GUI"="c:\archivos de programa\LogMeIn\x86\LogMeInSystray.exe" [2011-0916 63048]
"Safe PST Backup"="c:\archivos de programa\4Team Corporation\Safe PST Backup\Saf
ePSTBackup.exe" [2011-06-01 3646128]
"TkBellExe"="c:\archivos de programa\real\realplayer\update\realsched.exe" [2012
-01-29 296056]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]
"nltide_3"="advpack.dll" [2011-12-19 124928]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"NoSMConfigurePrograms"= 1 (0x1)
"NoResolveTrack"= 1 (0x1)
.
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer
]
"NoSMHelp"= 1 (0x1)
"ForceClassicControlPanel"= 1 (0x1)
"NoSMConfigurePrograms"= 1 (0x1)
"NoResolveTrack"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify
\LMIinit]
2012-02-07 13:11
87424 ----a-wc:\windows\system32\LMIinit.dll
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
"DisableUnicastResponsesToMulticastBroadcast"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\Authoriz
edApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Archivos de programa\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Archivos de programa\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Archivos de programa\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Archivos de programa\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Archivos de programa\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Documents and Settings\\Gateway\\Configuracin local\\Datos de programa\\Goog
le\\Google Talk Plugin\\googletalkplugin.exe"=
"c:\\Archivos de programa\\Orbitdownloader\\orbitdm.exe"=
"c:\\Archivos de programa\\Orbitdownloader\\orbitnet.exe"=
"c:\\Archivos de programa\\Skype5.8\\Phone\\Skype.exe"=
"c:\\Documents and Settings\\Gateway\\Datos de programa\\mjusbsp\\magicJack.exe"
=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\Globally
OpenPorts\List]

"443:TCP"= 443:TCP:*:Disabled:ooVoo TCP puerto 443

"443:UDP"= 443:UDP:*:Disabled:ooVoo UDP puerto 443
"37674:TCP"= 37674:TCP:*:Disabled:ooVoo TCP puerto 37674
"37674:UDP"= 37674:UDP:*:Disabled:ooVoo UDP puerto 37674
"37675:UDP"= 37675:UDP:*:Disabled:ooVoo UDP puerto 37675
.
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [12/21/2010 4:04 PM 115008]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [12/21/2010 2:47 P
M 94872]
R1 VBoxDrv;VirtualBox Service;c:\windows\system32\drivers\VBoxDrv.sys [8/21/2011
8:48 PM 158512]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\drivers\VBoxUSBM
on.sys [8/21/2011 8:48 PM 90928]
R2 ekrn;ESET Service;c:\archivos de programa\ESET\ESET NOD32 Antivirus\ekrn.exe
[1/12/2011 5:41 PM 810144]
R2 LMIGuardianSvc;LMIGuardianSvc;c:\archivos de programa\LogMeIn\x86\LMIGuardian
Svc.exe [12/7/2011 6:21 PM 374152]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\archivos de programa\LogMeIn\x
86\rainfo.sys [9/16/2011 2:10 PM 12856]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\drivers\
VBoxNetFlt.sys [8/15/2011 3:06 PM 116016]
S2 gupdate;Google Update Service (gupdate);c:\archivos de programa\Google\Update
\GoogleUpdate.exe [2/1/2012 5:57 PM 136176]
S2 SysAidServer;SysAid Server;c:\archivos de programa\SysAidServer\Wrapper.exe [
1/20/2012 4:34 PM 98304]
S3 gupdatem;Google Update Service (gupdatem);c:\archivos de programa\Google\Upda
te\GoogleUpdate.exe [2/1/2012 5:57 PM 136176]
S3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\drivers\ewusbdev.
sys [12/18/2011 9:58 AM 100736]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\drivers\
VBoxNetAdp.sys [8/15/2011 3:06 PM 104752]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{B17A6C
EB-057D-47DE-9F7C-0BB3FDF30F4C}]
2008-04-14 02:19
78848 ----a-wc:\windows\system32\msiexec.exe
.
Contents of the 'Scheduled Tasks' folder
.
2012-03-18 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\archivos de programa\Google\Update\GoogleUpdate.exe [2012-02-01 22:57]
.
2012-03-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\archivos de programa\Google\Update\GoogleUpdate.exe [2012-02-01 22:57]
.
2012-03-18 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1343024091-2000478354-1
177238915-1003.job
- c:\archivos de programa\Real\RealUpgrade\realupgrade.exe [2011-11-29 21:02]
.
2012-03-18 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1343024091-20004783
54-1177238915-1003.job
- c:\archivos de programa\Real\RealUpgrade\realupgrade.exe [2011-11-29 21:02]
.
.
------- Supplementary Scan ------.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyServer = 192.168.0.2:8080
IE: &Download by Orbit - c:\archivos de programa\Orbitdownloader\orbitmxt.dll/20
1
IE: &Grab video by Orbit - c:\archivos de programa\Orbitdownloader\orbitmxt.dll/

204
IE: Do&wnload selected by Orbit - c:\archivos de programa\Orbitdownloader\orbitm
xt.dll/203
IE: Down&load all by Orbit - c:\archivos de programa\Orbitdownloader\orbitmxt.dl
l/202
IE: E&xportar a Microsoft Excel - c:\archiv~1\MIBF9C~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 190.157.2.140 200.118.2.91
TCP: Interfaces\{DA5152DA-D85C-4C4A-8CBC-512C832499FE}: NameServer = 8.8.8.8,8.8
.4.4
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http:/
/www.gmer.net
Rootkit scan 2012-03-18 18:09
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes --------------------.
- - - - - - - > 'winlogon.exe'(1060)
c:\windows\system32\LMIinit.dll
c:\windows\system32\LMIRfsClientNP.dll
.
- - - - - - - > 'lsass.exe'(1116)
c:\windows\system32\LMIRfsClientNP.dll
.
- - - - - - - > 'explorer.exe'(344)
c:\windows\system32\WININET.dll
c:\windows\system32\wpdshserviceobj.dll
c:\windows\system32\portabledevicetypes.dll
c:\windows\system32\portabledeviceapi.dll
.
Completion time: 2012-03-18 18:10:55
ComboFix-quarantined-files.txt 2012-03-18 23:10
ComboFix2.txt 2012-02-16 22:03
.
Pre-Run: 23,659,581,440 bytes libres
Post-Run: 23,673,257,984 bytes libres
.
- - End Of File - - C2A82F972F1A0EF14502CB5567227B0F