ComboFix 08-05-09.1 - Simen 2008-05-11 19:59:23.2 - NTFSx86
Microsoft Windows XP Professional  5.1.2600.2.1252.1.1044.18.1584 [GMT 2:00]
Running from: C:\Documents and Settings\Simen\Skrivebord\ComboFix.exe
 * Created a new restore point

[color=red][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/b][/color]
.

(((((((((((((((((((((((((   Files Created from 2008-04-11 to 2008-05-11  )))))))))))))))))))))))))))))))
.

2008-05-10 22:21 . 2008-05-10 22:21	<DIR>	d--------	C:\Programfiler\iPod
2008-05-10 22:21 . 2008-05-11 12:57	54,156	--ah-----	C:\WINDOWS\QTFont.qfn
2008-05-10 22:21 . 2008-05-10 22:21	1,409	--a------	C:\WINDOWS\QTFont.for
2008-05-10 22:20 . 2008-05-10 22:20	<DIR>	d--------	C:\Programfiler\QuickTime
2008-05-10 22:20 . 2008-05-10 22:21	<DIR>	d--------	C:\Programfiler\iTunes
2008-05-10 22:17 . 2008-05-10 22:17	<DIR>	d--------	C:\Programfiler\Apple Software Update
2008-05-10 22:10 . 2008-05-10 22:10	<DIR>	d--------	C:\WINDOWS\system32\CatRoot_bak
2008-05-10 18:18 . 2008-05-10 18:20	<DIR>	d--------	C:\WINDOWS\NV24282432.TMP
2008-05-10 18:18 . 2008-05-10 18:18	<DIR>	d--------	C:\NVIDIA
2008-05-10 18:18 . 2008-03-24 11:27	442,368	--a------	C:\WINDOWS\system32\NVUNINST.EXE
2008-05-10 18:18 . 2008-03-24 19:52	442,368	--a------	C:\WINDOWS\system32\nvudisp.exe
2008-05-10 18:18 . 2008-05-11 12:57	175,033	--a------	C:\WINDOWS\system32\nvapps.xml
2008-05-10 18:18 . 2008-03-24 19:52	17,937	--a------	C:\WINDOWS\system32\nvdisp.nvu
2008-05-10 18:03 . 2008-05-10 18:23	<DIR>	d--------	C:\Documents and Settings\Simen\Programdata\AVG7
2008-05-10 18:03 . 2008-05-10 18:03	<DIR>	d--------	C:\Documents and Settings\LocalService\Programdata\AVG7
2008-05-10 18:03 . 2008-05-10 18:03	<DIR>	d--------	C:\Documents and Settings\All Users\Programdata\Grisoft
2008-05-10 18:01 . 2008-03-24 19:52	6,547,872	--a------	C:\WINDOWS\system32\drivers\nv4_mini.sys
2008-05-10 18:01 . 2004-08-03 22:29	1,897,408	--a--c---	C:\WINDOWS\system32\dllcache\nv4_mini.sys
2008-05-10 18:00 . 2008-05-10 18:00	<DIR>	d--------	C:\Programfiler\Driver Sweeper
2008-05-10 14:13 . 2008-05-11 02:39	30,210	--a------	C:\WINDOWS\system32\lnqASrmb.exe
2008-04-28 23:01 . 2008-04-29 21:31	63,926	--a------	C:\WINDOWS\system32\{51cfb767-a68f-f4ee-ff14-eb0a666b9c55}.dll-uninst.exe
2008-04-28 15:49 . 2008-04-28 15:49	330,752	--a------	C:\WINDOWS\system32\{51cfb767-a68f-f4ee-ff14-eb0a666b9c55}.dll
2008-04-19 12:33 . 2008-04-19 12:33	<DIR>	d--------	C:\Programfiler\Microsoft Games
2008-04-14 14:27 . 2008-04-14 14:27	<DIR>	d--------	C:\Program Files

.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-11 09:21	---------	d-----w	C:\Documents and Settings\Simen\Programdata\Azureus
2008-05-10 19:09	22,328	----a-w	C:\WINDOWS\system32\drivers\PnkBstrK.sys
2008-05-10 19:09	107,832	----a-w	C:\WINDOWS\system32\PnkBstrB.exe
2008-05-10 18:22	---------	d-----w	C:\Programfiler\Steam
2008-05-10 16:54	---------	d-----w	C:\Programfiler\DAEMON Tools Pro
2008-05-10 16:05	---------	d-----w	C:\Documents and Settings\All Users\Programdata\Avg7
2008-05-10 16:01	---------	d--h--w	C:\Programfiler\InstallShield Installation Information
2008-05-10 15:33	---------	d-----w	C:\Programfiler\Fellesfiler\Ahead
2008-05-06 18:36	---------	d-----w	C:\Programfiler\World of Warcraft
2008-04-29 22:15	---------	d-----w	C:\Programfiler\Opera
2008-04-18 20:16	---------	d-----w	C:\Programfiler\Codemasters
2008-04-16 22:00	---------	d-----w	C:\Programfiler\Azureus
2008-04-16 20:37	---------	d-----w	C:\Documents and Settings\Simen\Programdata\LimeWire
2008-04-13 17:08	---------	d-----w	C:\Programfiler\EA GAMES
2008-04-13 12:53	---------	d-----w	C:\Programfiler\Counter-Strike 1.6
2008-04-05 17:08	409,600	----a-w	C:\WINDOWS\system32\wrap_oal.dll
2008-04-05 17:08	114,688	----a-w	C:\WINDOWS\system32\OpenAL32.dll
2008-04-05 17:08	---------	d-----w	C:\Programfiler\OpenAL
2008-04-04 11:46	674,600	----a-w	C:\WINDOWS\system32\pbsvc.exe
2008-04-04 11:46	66,872	----a-w	C:\WINDOWS\system32\PnkBstrA.exe
2008-04-04 11:46	22,328	----a-w	C:\Documents and Settings\Simen\Programdata\PnkBstrK.sys
2008-04-04 10:47	---------	d-----w	C:\Programfiler\Activision
2008-04-04 10:44	---------	d-----w	C:\Programfiler\CCleaner
2008-04-04 10:38	2,560	----a-w	C:\WINDOWS\_MSRSTRT.EXE
2008-04-03 22:30	---------	d-----w	C:\Documents and Settings\Simen\Programdata\dvdcss
2008-03-31 15:28	---------	d-----w	C:\Documents and Settings\Simen\Programdata\Bioshock
2008-03-23 15:20	---------	d-----w	C:\Programfiler\Sierra Entertainment
2008-03-22 19:46	---------	d-----w	C:\Programfiler\Electronic Arts
2008-03-22 14:29	---------	d-----w	C:\Programfiler\Cheat Engine
2008-03-20 23:52	---------	d-----w	C:\Documents and Settings\Simen\Programdata\Xfire
2008-03-20 21:37	---------	d-----w	C:\Programfiler\Futuremark
2008-03-18 21:37	---------	d-----w	C:\Programfiler\Xfire
2008-03-13 23:06	41,296	----a-w	C:\WINDOWS\system32\xfcodec.dll
2008-03-11 07:43	---------	d-----w	C:\Documents and Settings\NetworkService\Programdata\Xfire
2008-03-11 07:27	---------	d-----w	C:\Documents and Settings\LocalService\Programdata\Xfire
2008-03-05 13:02	499,712	----a-w	C:\WINDOWS\system32\msvcp71.dll
2008-03-05 13:02	348,160	----a-w	C:\WINDOWS\system32\msvcr71.dll
2007-12-20 20:32	32	----a-w	C:\Documents and Settings\All Users\Programdata\ezsid.dat
.

------- Sigcheck -------

2004-08-04 01:03  1422848  f5df21a595bc0057e08cf5594649edb7	C:\WINDOWS\explorer.exe
2004-08-04 01:03  1032192  0b4a898de1aa20d133c91ba260e7a8a1	C:\WINDOWS\system32\VITrans\explorer.exe
.
(((((((((((((((((((((((((((((   snapshot@2008-03-05_21.21.03.42   )))))))))))))))))))))))))))))))))))))))))
.
+ 2006-07-14 15:52:22	121,856	----a-w	C:\WINDOWS\$hf_mig$\KB915865\SP2QFE\xmllite.dll
+ 2005-10-12 23:12:25	14,048	----a-w	C:\WINDOWS\$hf_mig$\KB915865\spmsg.dll
+ 2005-10-12 23:12:26	213,216	----a-w	C:\WINDOWS\$hf_mig$\KB915865\spuninst.exe
+ 2005-10-12 23:12:25	22,752	----a-w	C:\WINDOWS\$hf_mig$\KB915865\update\spcustom.dll
+ 2005-10-12 23:12:28	716,000	----a-w	C:\WINDOWS\$hf_mig$\KB915865\update\update.exe
+ 2005-10-12 23:12:33	371,424	----a-w	C:\WINDOWS\$hf_mig$\KB915865\update\updspapi.dll
+ 2006-05-25 09:29:04	213,216	-c----w	C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe
+ 2006-05-25 09:29:04	371,424	-c----w	C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\updspapi.dll
+ 2006-05-24 11:32:48	213,216	-c----w	C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe
+ 2006-05-24 11:32:48	371,424	-c----w	C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\updspapi.dll
+ 2005-10-12 23:12:26	213,216	-c----w	C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe
+ 2005-10-12 23:12:33	371,424	-c----w	C:\WINDOWS\$NtUninstallKB915865$\spuninst\updspapi.dll
+ 2008-04-04 10:38:57	2,560	----a-w	C:\WINDOWS\_MSRSTRT.EXE
- 2008-03-01 00:51:33	53,248	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2008-04-19 11:00:22	53,248	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
- 2008-03-01 00:51:33	12,800	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
+ 2008-04-19 11:00:22	12,800	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
- 2008-03-01 00:51:33	473,600	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2008-04-19 11:00:22	473,600	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
- 2007-12-16 20:32:26	2,676,224	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-19 11:00:19	2,676,224	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2007-12-16 20:32:26	2,846,720	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-19 11:00:19	2,846,720	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2007-12-16 20:32:26	563,712	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-19 11:00:19	563,712	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2008-03-01 00:51:34	567,296	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-19 11:00:20	567,296	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2007-12-16 20:32:27	576,000	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-19 11:00:20	576,000	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2007-12-16 20:32:28	577,024	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-19 11:00:20	577,024	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2007-12-16 20:32:28	577,536	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-19 11:00:21	577,536	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2007-12-16 20:32:28	577,536	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-19 11:00:21	577,536	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2007-12-16 20:32:28	578,560	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-19 11:00:21	578,560	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2007-12-16 20:32:29	578,560	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2008-04-19 11:00:22	578,560	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
- 2008-03-01 00:51:34	145,920	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
+ 2008-04-19 11:00:22	145,920	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
- 2008-03-01 00:51:34	159,232	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
+ 2008-04-19 11:00:23	159,232	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
- 2008-03-01 00:51:34	364,544	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
+ 2008-04-19 11:00:23	364,544	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
- 2008-03-01 00:51:34	178,176	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
+ 2008-04-19 11:00:23	178,176	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
- 2008-03-01 00:51:33	223,232	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
+ 2008-04-19 11:00:21	223,232	----a-w	C:\WINDOWS\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
+ 2008-04-19 10:47:05	92,496	----a-w	C:\WINDOWS\assembly\GAC_32\Microsoft.FlightSimulator.SimConnect\10.0.60905.0__31bf3856ad364e35\Microsoft.FlightSimulator.SimConnect.dll
+ 2008-04-19 11:06:47	103,832	----a-w	C:\WINDOWS\assembly\GAC_32\Microsoft.FlightSimulator.SimConnect\10.0.61242.0__31bf3856ad364e35\Microsoft.FlightSimulator.SimConnect.dll
+ 2008-05-11 10:55:30	2,048	--s-a-w	C:\WINDOWS\bootstat.dat
- 2000-08-31 07:00:00	163,328	----a-w	C:\WINDOWS\erdnt\Hiv-backup\ERDNT.EXE
+ 2005-10-20 18:02:28	163,328	----a-w	C:\WINDOWS\erdnt\Hiv-backup\ERDNT.EXE
+ 2000-08-31 06:00:00	73,728	----a-w	C:\WINDOWS\fdsv.exe
+ 2000-08-31 06:00:00	80,412	----a-w	C:\WINDOWS\grep.exe
+ 2004-08-03 23:03:06	61,440	-c----w	C:\WINDOWS\ie7\admparse.dll
+ 2004-08-03 23:03:08	100,352	-c----w	C:\WINDOWS\ie7\advpack.dll
+ 2004-08-03 23:03:08	1,016,832	-c----w	C:\WINDOWS\ie7\browseui.dll
+ 2004-08-03 23:03:08	35,328	-c----w	C:\WINDOWS\ie7\corpol.dll
+ 2004-08-03 23:03:10	357,888	-c----w	C:\WINDOWS\ie7\dxtmsft.dll
+ 2004-08-03 23:03:10	201,728	-c----w	C:\WINDOWS\ie7\dxtrans.dll
+ 2004-08-03 23:03:12	55,808	-c----w	C:\WINDOWS\ie7\extmgr.dll
+ 2004-08-03 23:03:12	38,912	-c----w	C:\WINDOWS\ie7\hmmapi.dll
+ 2004-08-03 23:03:32	34,304	-c----w	C:\WINDOWS\ie7\ie4uinit.exe
+ 2004-08-03 23:03:14	139,264	-c----w	C:\WINDOWS\ie7\ieakeng.dll
+ 2004-08-03 23:03:14	218,624	-c----w	C:\WINDOWS\ie7\ieaksie.dll
+ 2001-10-09 12:00:00	225,280	-c----w	C:\WINDOWS\ie7\ieakui.dll
+ 2004-08-03 23:03:14	323,584	-c----w	C:\WINDOWS\ie7\iedkcs32.dll
+ 2004-08-03 23:03:32	18,432	-c----w	C:\WINDOWS\ie7\iedw.exe
+ 2004-08-03 23:03:14	81,920	-c----w	C:\WINDOWS\ie7\ieencode.dll
+ 2004-08-03 23:03:14	249,344	-c----w	C:\WINDOWS\ie7\iepeers.dll
+ 2004-08-03 23:03:14	48,640	-c----w	C:\WINDOWS\ie7\iernonce.dll
+ 2004-08-03 23:03:14	62,976	-c----w	C:\WINDOWS\ie7\iesetup.dll
+ 2004-08-03 23:03:32	175,616	-c----w	C:\WINDOWS\ie7\iexplore.exe
+ 2004-08-03 23:03:14	35,840	-c----w	C:\WINDOWS\ie7\imgutil.dll
+ 2004-08-03 23:03:14	96,768	-c----w	C:\WINDOWS\ie7\inseng.dll
+ 2004-08-03 23:03:14	450,560	-c----w	C:\WINDOWS\ie7\jscript.dll
+ 2004-08-03 23:03:14	15,872	-c----w	C:\WINDOWS\ie7\jsproxy.dll
+ 2004-08-03 23:03:14	22,016	-c----w	C:\WINDOWS\ie7\licmgr10.dll
+ 2004-08-03 23:03:36	29,184	-c----w	C:\WINDOWS\ie7\mshta.exe
+ 2004-08-03 23:03:18	3,380,224	-c----w	C:\WINDOWS\ie7\mshtml.dll
+ 2004-08-03 23:03:18	448,512	-c----w	C:\WINDOWS\ie7\mshtmled.dll
+ 2004-08-03 23:02:16	57,344	-c----w	C:\WINDOWS\ie7\mshtmler.dll
+ 2001-10-09 12:00:00	146,432	-c----w	C:\WINDOWS\ie7\msls31.dll
+ 2004-08-03 23:03:18	146,432	-c----w	C:\WINDOWS\ie7\msrating.dll
+ 2004-08-03 23:03:18	530,432	-c----w	C:\WINDOWS\ie7\mstime.dll
+ 2004-08-03 23:03:20	96,768	-c----w	C:\WINDOWS\ie7\occache.dll
+ 2004-08-03 23:03:22	39,424	-c----w	C:\WINDOWS\ie7\pngfilt.dll
+ 2004-08-03 23:03:22	1,483,776	-c----w	C:\WINDOWS\ie7\shdocvw.dll
+ 2004-08-03 23:03:22	473,600	-c----w	C:\WINDOWS\ie7\shlwapi.dll
+ 2007-08-13 17:54:42	32,960	-c----w	C:\WINDOWS\ie7\spuninst\iecustom.dll
+ 2007-08-13 17:52:06	66,048	-c--a-w	C:\WINDOWS\ie7\spuninst\ieResetIcons.exe
+ 2006-09-06 16:43:16	213,216	-c----w	C:\WINDOWS\ie7\spuninst\spuninst.exe
+ 2006-09-06 16:43:18	371,424	-c----w	C:\WINDOWS\ie7\spuninst\updspapi.dll
+ 2004-08-03 23:03:26	37,888	-c----w	C:\WINDOWS\ie7\url.dll
+ 2004-08-03 23:03:26	601,088	-c----w	C:\WINDOWS\ie7\urlmon.dll
+ 2004-08-03 23:03:26	417,792	-c----w	C:\WINDOWS\ie7\vbscript.dll
+ 2004-08-03 23:03:26	848,384	-c----w	C:\WINDOWS\ie7\vgx.dll
+ 2004-08-03 23:03:26	402,944	-c----w	C:\WINDOWS\ie7\webcheck.dll
+ 2004-08-03 23:03:26	655,872	-c----w	C:\WINDOWS\ie7\wininet.dll
+ 2008-05-10 20:17:24	27,136	----a-r	C:\WINDOWS\Installer\{02DFF6B1-1654-411C-8D7B-FD6052EF016F}\AppleSoftwareUpdateIco.exe
+ 2008-03-10 13:09:18	10,134	----a-r	C:\WINDOWS\Installer\{3BD633E0-4BF8-4499-9149-88F0767D449C}\ARPPRODUCTICON.exe
+ 2008-05-10 20:21:15	102,400	----a-r	C:\WINDOWS\Installer\{585776BC-4BD6-4BD2-A19A-1D6CB44A403B}\iTunesIco.exe
+ 2008-04-19 11:00:25	32,768	----a-r	C:\WINDOWS\Installer\{716E0306-8318-4364-8B8F-0CC4E9376BAC}\icon.exe
+ 2008-03-10 13:44:33	10,134	----a-r	C:\WINDOWS\Installer\{8503C901-85D7-4262-88D2-8D8B2A7B08B8}\ARPPRODUCTICON.exe
+ 2008-04-19 11:07:30	126,976	----a-r	C:\WINDOWS\Installer\{9527A496-5DF9-412A-ADC7-168BA5379CA6}\ARPPRODUCTICON.exe
+ 2008-03-22 12:04:46	3,262	----a-r	C:\WINDOWS\Installer\{CC419DDC-E0F0-4013-B25A-6FA036516F0D}\nfs_icon.exe
- 2007-12-04 21:18:27	216,358	----a-r	C:\WINDOWS\Installer\{E48469CC-635E-4FD5-A122-1497C286D217}\ARPPRODUCTICON.exe
+ 2008-03-10 12:58:17	216,358	----a-r	C:\WINDOWS\Installer\{E48469CC-635E-4FD5-A122-1497C286D217}\ARPPRODUCTICON.exe
- 2000-08-31 07:00:00	28,160	----a-w	C:\WINDOWS\Nircmd.exe
+ 2000-08-31 06:00:00	28,160	----a-w	C:\WINDOWS\Nircmd.exe
+ 2007-10-30 17:19:46	2,426	----a-w	C:\WINDOWS\pchealth\helpctr\PackageStore\SkuStore.bin
+ 2000-08-31 06:00:00	98,816	----a-w	C:\WINDOWS\sed.exe
+ 2000-08-31 06:00:00	161,792	----a-w	C:\WINDOWS\swreg.exe
+ 2000-08-31 06:00:00	136,704	----a-w	C:\WINDOWS\swsc.exe
+ 2000-08-31 06:00:00	212,480	----a-w	C:\WINDOWS\swxcacls.exe
+ 2001-10-09 12:00:00	2,000	----a-w	C:\WINDOWS\system\KEYBOARD.DRV
+ 2001-10-09 12:00:00	2,032	----a-w	C:\WINDOWS\system\MOUSE.DRV
+ 2001-10-09 12:00:00	1,744	----a-w	C:\WINDOWS\system\SOUND.DRV
+ 2001-10-09 12:00:00	2,176	----a-w	C:\WINDOWS\system\VGA.DRV
+ 2008-04-29 19:31:39	63,926	----a-w	C:\WINDOWS\system32\{51cfb767-a68f-f4ee-ff14-eb0a666b9c55}.dll-uninst.exe
+ 2008-04-28 13:49:30	330,752	----a-w	C:\WINDOWS\system32\{51cfb767-a68f-f4ee-ff14-eb0a666b9c55}.dll
- 2004-08-03 23:03:06	61,440	----a-w	C:\WINDOWS\system32\admparse.dll
+ 2007-08-13 17:39:20	71,680	----a-w	C:\WINDOWS\system32\admparse.dll
- 2004-08-03 23:03:08	100,352	----a-w	C:\WINDOWS\system32\advpack.dll
+ 2007-08-13 17:39:00	123,904	----a-w	C:\WINDOWS\system32\advpack.dll
- 2004-08-03 23:03:08	1,016,832	----a-w	C:\WINDOWS\system32\browseui.dll
+ 2006-09-23 12:12:50	1,022,976	----a-w	C:\WINDOWS\system32\browseui.dll
- 2004-08-03 23:03:08	35,328	----a-w	C:\WINDOWS\system32\corpol.dll
+ 2007-08-13 17:42:54	17,408	----a-w	C:\WINDOWS\system32\corpol.dll
+ 2007-10-12 14:14:00	1,374,232	----a-w	C:\WINDOWS\system32\D3DCompiler_36.dll
+ 2007-10-02 08:56:34	444,776	----a-w	C:\WINDOWS\system32\d3dx10_36.dll
+ 2007-10-12 14:14:00	3,734,536	----a-w	C:\WINDOWS\system32\d3dx9_36.dll
+ 2004-08-03 23:16:06	1,788	----a-w	C:\WINDOWS\system32\Dcache.bin
+ 2007-08-13 17:39:20	71,680	-c----w	C:\WINDOWS\system32\dllcache\admparse.dll
+ 2007-08-13 17:39:00	123,904	-c----w	C:\WINDOWS\system32\dllcache\advpack.dll
+ 2006-09-23 12:12:50	1,022,976	-c----w	C:\WINDOWS\system32\dllcache\browseui.dll
+ 2004-08-03 22:10:18	17,024	-c--a-w	C:\WINDOWS\system32\dllcache\ccdecode.sys
+ 2007-08-13 17:42:54	17,408	-c----w	C:\WINDOWS\system32\dllcache\corpol.dll
+ 2007-08-13 17:54:10	33,792	-c----w	C:\WINDOWS\system32\dllcache\custsat.dll
+ 2007-08-13 17:35:46	346,624	-c----w	C:\WINDOWS\system32\dllcache\dxtmsft.dll
+ 2007-08-13 17:35:38	214,528	-c----w	C:\WINDOWS\system32\dllcache\dxtrans.dll
+ 2007-08-13 17:54:10	131,584	-c----w	C:\WINDOWS\system32\dllcache\extmgr.dll
+ 2007-08-13 17:18:02	60,416	-c----w	C:\WINDOWS\system32\dllcache\hmmapi.dll
+ 2007-08-13 17:39:06	54,784	-c----w	C:\WINDOWS\system32\dllcache\ie4uinit.exe
+ 2007-08-13 17:39:26	152,064	-c----w	C:\WINDOWS\system32\dllcache\ieakeng.dll
+ 2007-08-13 17:39:54	229,376	-c----w	C:\WINDOWS\system32\dllcache\ieaksie.dll
+ 2007-08-13 16:56:54	161,792	-c----w	C:\WINDOWS\system32\dllcache\ieakui.dll
+ 2007-08-13 17:39:50	382,976	-c----w	C:\WINDOWS\system32\dllcache\iedkcs32.dll
+ 2007-08-13 17:44:02	69,120	-c----w	C:\WINDOWS\system32\dllcache\iedw.exe
+ 2007-08-13 17:45:18	78,336	-c----w	C:\WINDOWS\system32\dllcache\ieencode.dll
+ 2007-08-13 17:54:10	191,488	-c----w	C:\WINDOWS\system32\dllcache\iepeers.dll
+ 2007-08-13 17:39:10	43,008	-c----w	C:\WINDOWS\system32\dllcache\iernonce.dll
+ 2007-08-13 17:39:12	55,296	-c----w	C:\WINDOWS\system32\dllcache\iesetup.dll
+ 2007-08-13 17:43:56	622,080	-c----w	C:\WINDOWS\system32\dllcache\iexplore.exe
+ 2007-08-13 17:36:06	36,352	-c----w	C:\WINDOWS\system32\dllcache\imgutil.dll
+ 2007-08-13 17:39:02	92,672	-c----w	C:\WINDOWS\system32\dllcache\inseng.dll
+ 2004-08-04 00:03:14	47,616	-c--a-w	C:\WINDOWS\system32\dllcache\iyuv_32.dll
+ 2007-08-13 17:38:04	491,520	-c----w	C:\WINDOWS\system32\dllcache\jscript.dll
+ 2007-08-13 17:54:10	27,136	-c----w	C:\WINDOWS\system32\dllcache\jsproxy.dll
+ 2007-08-13 17:44:18	40,960	-c----w	C:\WINDOWS\system32\dllcache\licmgr10.dll
+ 2007-08-13 17:32:30	45,568	-c----w	C:\WINDOWS\system32\dllcache\mshta.exe
+ 2007-08-13 17:54:12	3,578,368	-c----w	C:\WINDOWS\system32\dllcache\mshtml.dll
+ 2007-08-13 17:54:10	475,648	-c----w	C:\WINDOWS\system32\dllcache\mshtmled.dll
+ 2007-08-13 17:01:12	48,128	-c----w	C:\WINDOWS\system32\dllcache\mshtmler.dll
+ 2007-08-13 17:54:10	156,160	-c----w	C:\WINDOWS\system32\dllcache\msls31.dll
+ 2001-08-17 21:00:04	2,944	-c--a-w	C:\WINDOWS\system32\dllcache\msmpu401.sys
+ 2007-08-13 17:44:26	192,000	-c----w	C:\WINDOWS\system32\dllcache\msrating.dll
+ 2004-08-03 21:58:40	5,504	-c--a-w	C:\WINDOWS\system32\dllcache\mstee.sys
+ 2007-08-13 17:54:10	670,720	-c----w	C:\WINDOWS\system32\dllcache\mstime.dll
+ 2004-08-04 00:03:20	17,408	-c--a-w	C:\WINDOWS\system32\dllcache\msyuv.dll
+ 2004-08-03 22:10:30	85,376	-c--a-w	C:\WINDOWS\system32\dllcache\nabtsfec.sys
+ 2004-08-03 22:10:14	10,880	-c--a-w	C:\WINDOWS\system32\dllcache\ndisip.sys
+ 2007-08-13 17:44:06	101,376	-c----w	C:\WINDOWS\system32\dllcache\occache.dll
+ 2007-08-13 17:36:12	44,544	-c----w	C:\WINDOWS\system32\dllcache\pngfilt.dll
+ 2006-09-23 12:12:50	1,497,088	-c----w	C:\WINDOWS\system32\dllcache\shdocvw.dll
+ 2006-09-23 12:12:50	474,112	-c----w	C:\WINDOWS\system32\dllcache\shlwapi.dll
+ 2004-08-03 22:10:18	11,136	-c--a-w	C:\WINDOWS\system32\dllcache\slip.sys
+ 2004-08-03 22:10:14	15,360	-c--a-w	C:\WINDOWS\system32\dllcache\streamip.sys
+ 2001-10-06 13:02:38	8,192	-c--a-w	C:\WINDOWS\system32\dllcache\tsbyuv.dll
+ 2007-08-13 17:44:30	105,984	-c----w	C:\WINDOWS\system32\dllcache\url.dll
+ 2007-08-13 17:54:10	1,162,240	-c----w	C:\WINDOWS\system32\dllcache\urlmon.dll
+ 2007-08-13 17:54:10	413,696	-c----w	C:\WINDOWS\system32\dllcache\vbscript.dll
+ 2004-08-04 00:03:26	53,760	-c--a-w	C:\WINDOWS\system32\dllcache\vfwwdm32.dll
+ 2007-08-13 17:54:10	765,952	-c----w	C:\WINDOWS\system32\dllcache\VGX.dll
+ 2007-08-13 17:54:10	231,424	-c----w	C:\WINDOWS\system32\dllcache\webcheck.dll
+ 2007-08-13 17:54:10	818,688	-c----w	C:\WINDOWS\system32\dllcache\wininet.dll
+ 2004-08-03 22:10:22	19,328	-c--a-w	C:\WINDOWS\system32\dllcache\wstcodec.sys
- 2008-03-05 13:02:44	821,856	----a-w	C:\WINDOWS\system32\drivers\avg7core.sys
+ 2008-05-10 16:04:40	821,856	----a-w	C:\WINDOWS\system32\drivers\avg7core.sys
- 2008-03-05 13:02:47	4,224	----a-w	C:\WINDOWS\system32\drivers\avg7rsw.sys
+ 2008-05-10 16:03:31	4,224	----a-w	C:\WINDOWS\system32\drivers\avg7rsw.sys
- 2008-03-05 13:02:47	27,776	----a-w	C:\WINDOWS\system32\drivers\avg7rsxp.sys
+ 2008-05-10 16:03:31	27,776	----a-w	C:\WINDOWS\system32\drivers\avg7rsxp.sys
- 2008-03-05 13:02:57	3,968	----a-w	C:\WINDOWS\system32\drivers\avgclean.sys
+ 2008-05-10 16:04:42	10,760	----a-w	C:\WINDOWS\system32\drivers\avgclean.sys
- 2008-03-05 13:02:57	19,904	----a-w	C:\WINDOWS\system32\drivers\avgmfx86.sys
+ 2008-05-10 16:04:40	26,952	----a-w	C:\WINDOWS\system32\drivers\avgmfx86.sys
+ 2004-08-03 22:10:18	17,024	----a-w	C:\WINDOWS\system32\drivers\CCDECODE.sys
+ 2004-08-03 22:07:58	2,944	----a-w	C:\WINDOWS\system32\drivers\drmkaud.sys
- 2006-09-19 13:44:04	15,664	----a-w	C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
+ 2008-01-29 10:01:28	16,168	----a-w	C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
+ 2001-08-17 21:00:04	2,944	----a-w	C:\WINDOWS\system32\drivers\msmpu401.sys
+ 2004-08-03 21:58:40	5,504	----a-w	C:\WINDOWS\system32\drivers\MSTEE.sys
+ 2004-08-03 22:10:30	85,376	----a-w	C:\WINDOWS\system32\drivers\NABTSFEC.sys
+ 2004-08-03 22:10:14	10,880	----a-w	C:\WINDOWS\system32\drivers\NdisIP.sys
+ 2001-10-09 12:00:00	2,944	----a-w	C:\WINDOWS\system32\drivers\null.sys
+ 2004-08-03 22:10:18	11,136	----a-w	C:\WINDOWS\system32\drivers\SLIP.sys
- 2007-11-08 16:17:15	685,816	----a-w	C:\WINDOWS\system32\drivers\sptd.sys
+ 2008-03-07 14:28:02	716,272	----a-w	C:\WINDOWS\system32\drivers\sptd.sys
+ 2004-08-03 22:10:14	15,360	----a-w	C:\WINDOWS\system32\drivers\StreamIP.sys
+ 2007-01-29 11:21:00	1,294,336	----a-r	C:\WINDOWS\system32\drivers\vm30xx86.sys
+ 2004-08-03 22:10:22	19,328	----a-w	C:\WINDOWS\system32\drivers\WSTCODEC.SYS
+ 2006-06-01 13:15:20	509,440	----a-w	C:\WINDOWS\system32\drivers\xnacc.sys
+ 2008-02-18 09:16:24	30,464	-c--a-w	C:\WINDOWS\system32\DRVSTORE\usbaapl_4351B7DAFF62FD33510D77DFAE3CF8CC82517571\usbaapl.sys
- 2004-08-03 23:03:10	357,888	----a-w	C:\WINDOWS\system32\dxtmsft.dll
+ 2007-08-13 17:35:46	346,624	----a-w	C:\WINDOWS\system32\dxtmsft.dll
- 2004-08-03 23:03:10	201,728	----a-w	C:\WINDOWS\system32\dxtrans.dll
+ 2007-08-13 17:35:38	214,528	----a-w	C:\WINDOWS\system32\dxtrans.dll
- 2004-08-03 23:03:12	55,808	----a-w	C:\WINDOWS\system32\extmgr.dll
+ 2007-08-13 17:54:10	131,584	----a-w	C:\WINDOWS\system32\extmgr.dll
- 2008-03-01 20:05:52	267,008	----a-w	C:\WINDOWS\system32\FNTCACHE.DAT
+ 2008-05-10 16:11:44	268,600	----a-w	C:\WINDOWS\system32\FNTCACHE.DAT
- 2006-10-03 18:47:52	109,360	----a-w	C:\WINDOWS\system32\GEARAspi.dll
+ 2008-01-29 10:02:30	107,368	----a-w	C:\WINDOWS\system32\GEARAspi.dll
+ 2007-08-13 17:36:26	61,952	------w	C:\WINDOWS\system32\icardie.dll
+ 2006-06-29 07:05:44	26,112	------w	C:\WINDOWS\system32\idndl.dll
- 2004-08-03 23:03:32	34,304	----a-w	C:\WINDOWS\system32\ie4uinit.exe
+ 2007-08-13 17:39:06	54,784	----a-w	C:\WINDOWS\system32\ie4uinit.exe
- 2004-08-03 23:03:14	139,264	----a-w	C:\WINDOWS\system32\ieakeng.dll
+ 2007-08-13 17:39:26	152,064	----a-w	C:\WINDOWS\system32\ieakeng.dll
- 2004-08-03 23:03:14	218,624	----a-w	C:\WINDOWS\system32\ieaksie.dll
+ 2007-08-13 17:39:54	229,376	----a-w	C:\WINDOWS\system32\ieaksie.dll
- 2001-10-09 12:00:00	225,280	----a-w	C:\WINDOWS\system32\ieakui.dll
+ 2007-08-13 16:56:54	161,792	----a-w	C:\WINDOWS\system32\ieakui.dll
+ 2007-02-12 15:10:12	2,451,312	------w	C:\WINDOWS\system32\ieapfltr.dat
+ 2007-07-11 11:27:48	383,488	------w	C:\WINDOWS\system32\ieapfltr.dll
- 2004-08-03 23:03:14	323,584	----a-w	C:\WINDOWS\system32\iedkcs32.dll
+ 2007-08-13 17:39:50	382,976	----a-w	C:\WINDOWS\system32\iedkcs32.dll
- 2004-08-03 23:03:14	81,920	----a-w	C:\WINDOWS\system32\ieencode.dll
+ 2007-08-13 17:45:18	78,336	----a-w	C:\WINDOWS\system32\ieencode.dll
+ 2007-08-13 17:54:10	6,049,280	------w	C:\WINDOWS\system32\ieframe.dll
- 2004-08-03 23:03:14	249,344	----a-w	C:\WINDOWS\system32\iepeers.dll
+ 2007-08-13 17:54:10	191,488	----a-w	C:\WINDOWS\system32\iepeers.dll
- 2004-08-03 23:03:14	48,640	----a-w	C:\WINDOWS\system32\iernonce.dll
+ 2007-08-13 17:39:10	43,008	----a-w	C:\WINDOWS\system32\iernonce.dll
+ 2007-08-13 17:34:04	266,752	------w	C:\WINDOWS\system32\iertutil.dll
- 2004-08-03 23:03:14	62,976	----a-w	C:\WINDOWS\system32\iesetup.dll
+ 2007-08-13 17:39:12	55,296	----a-w	C:\WINDOWS\system32\iesetup.dll
+ 2007-08-13 17:39:10	13,312	----a-w	C:\WINDOWS\system32\ieudinit.exe
+ 2007-08-13 17:54:10	180,736	------w	C:\WINDOWS\system32\ieui.dll
- 2004-08-03 23:03:14	35,840	----a-w	C:\WINDOWS\system32\imgutil.dll
+ 2007-08-13 17:36:06	36,352	----a-w	C:\WINDOWS\system32\imgutil.dll
- 2004-08-03 23:03:14	96,768	----a-w	C:\WINDOWS\system32\inseng.dll
+ 2007-08-13 17:39:02	92,672	----a-w	C:\WINDOWS\system32\inseng.dll
- 2004-08-03 23:14:06	47,616	----a-w	C:\WINDOWS\system32\iyuv_32.dll
+ 2004-08-04 00:03:14	47,616	----a-w	C:\WINDOWS\system32\iyuv_32.dll
- 2004-08-03 23:03:14	450,560	----a-w	C:\WINDOWS\system32\jscript.dll
+ 2007-08-13 17:38:04	491,520	----a-w	C:\WINDOWS\system32\jscript.dll
- 2004-08-03 23:03:14	15,872	----a-w	C:\WINDOWS\system32\jsproxy.dll
+ 2007-08-13 17:54:10	27,136	----a-w	C:\WINDOWS\system32\jsproxy.dll
+ 2001-10-09 12:00:00	2,000	----a-w	C:\WINDOWS\system32\keyboard.drv
- 2007-12-18 18:55:00	425,984	----a-w	C:\WINDOWS\system32\keystone.exe
+ 2008-03-24 17:52:00	425,984	----a-w	C:\WINDOWS\system32\keystone.exe
- 2004-08-03 23:03:14	22,016	----a-w	C:\WINDOWS\system32\licmgr10.dll
+ 2007-08-13 17:44:18	40,960	----a-w	C:\WINDOWS\system32\licmgr10.dll
+ 2001-10-09 12:00:00	2,560	----a-w	C:\WINDOWS\system32\lz32.dll
+ 2001-10-09 12:00:00	2,032	----a-w	C:\WINDOWS\system32\mouse.drv
+ 2007-08-13 17:54:10	458,752	------w	C:\WINDOWS\system32\msfeeds.dll
+ 2007-08-13 17:54:10	50,688	------w	C:\WINDOWS\system32\msfeedsbs.dll
+ 2007-08-13 17:36:40	12,288	------w	C:\WINDOWS\system32\msfeedssync.exe
- 2004-08-03 23:14:06	294,912	----a-w	C:\WINDOWS\system32\msh263.drv
+ 2004-08-04 00:03:40	294,912	----a-w	C:\WINDOWS\system32\msh263.drv
- 2004-08-03 23:03:36	29,184	----a-w	C:\WINDOWS\system32\mshta.exe
+ 2007-08-13 17:32:30	45,568	----a-w	C:\WINDOWS\system32\mshta.exe
- 2004-08-03 23:03:18	3,380,224	----a-w	C:\WINDOWS\system32\mshtml.dll
+ 2007-08-13 17:54:12	3,578,368	----a-w	C:\WINDOWS\system32\mshtml.dll
- 2004-08-03 23:03:18	448,512	----a-w	C:\WINDOWS\system32\mshtmled.dll
+ 2007-08-13 17:54:10	475,648	----a-w	C:\WINDOWS\system32\mshtmled.dll
- 2004-08-03 23:02:16	57,344	----a-w	C:\WINDOWS\system32\mshtmler.dll
+ 2007-08-13 17:01:12	48,128	----a-w	C:\WINDOWS\system32\mshtmler.dll
- 2001-10-09 12:00:00	146,432	----a-w	C:\WINDOWS\system32\msls31.dll
+ 2007-08-13 17:54:10	156,160	----a-w	C:\WINDOWS\system32\msls31.dll
- 2004-08-03 23:03:18	146,432	----a-w	C:\WINDOWS\system32\msrating.dll
+ 2007-08-13 17:44:26	192,000	----a-w	C:\WINDOWS\system32\msrating.dll
- 2004-08-03 23:03:18	530,432	----a-w	C:\WINDOWS\system32\mstime.dll
+ 2007-08-13 17:54:10	670,720	----a-w	C:\WINDOWS\system32\mstime.dll
+ 2003-04-18 14:46:22	1,233,920	----a-w	C:\WINDOWS\system32\msxml4.dll
+ 2002-02-04 00:43:00	82,432	----a-w	C:\WINDOWS\system32\msxml4r.dll
- 2004-08-03 23:14:06	17,408	----a-w	C:\WINDOWS\system32\msyuv.dll
+ 2004-08-04 00:03:20	17,408	----a-w	C:\WINDOWS\system32\msyuv.dll
+ 2001-10-09 12:00:00	2,656	----a-w	C:\WINDOWS\system32\netware.drv
+ 2006-06-28 16:59:26	24,576	------w	C:\WINDOWS\system32\nlsdl.dll
+ 2006-06-29 07:05:44	23,552	------w	C:\WINDOWS\system32\normaliz.dll
- 2007-12-18 18:55:00	5,773,568	----a-w	C:\WINDOWS\system32\nv4_disp.dll
+ 2008-03-24 17:52:00	5,974,528	----a-w	C:\WINDOWS\system32\nv4_disp.dll
- 2007-12-18 18:55:00	385,024	----a-w	C:\WINDOWS\system32\nvapi.dll
+ 2008-03-24 17:52:00	413,696	----a-w	C:\WINDOWS\system32\nvapi.dll
- 2007-12-18 18:55:00	442,368	----a-w	C:\WINDOWS\system32\nvappbar.exe
+ 2008-03-24 17:52:00	442,368	----a-w	C:\WINDOWS\system32\nvappbar.exe
- 2007-12-18 18:55:00	35,328	----a-w	C:\WINDOWS\system32\nvcod.dll
+ 2008-03-24 17:52:00	35,840	----a-w	C:\WINDOWS\system32\nvcod.dll
- 2007-12-18 18:55:00	35,328	----a-w	C:\WINDOWS\system32\nvcodins.dll
+ 2008-03-24 17:52:00	35,840	----a-w	C:\WINDOWS\system32\nvcodins.dll
- 2007-12-18 18:55:00	147,456	----a-w	C:\WINDOWS\system32\nvcolor.exe
+ 2008-03-24 17:52:00	147,456	----a-w	C:\WINDOWS\system32\nvcolor.exe
- 2007-12-18 18:55:00	8,523,776	----a-w	C:\WINDOWS\system32\nvcpl.dll
+ 2008-03-24 17:52:00	13,524,992	----a-w	C:\WINDOWS\system32\nvcpl.dll
- 2007-12-18 18:55:00	753,664	----a-w	C:\WINDOWS\system32\nvcplui.exe
+ 2008-03-24 17:52:00	764,448	----a-w	C:\WINDOWS\system32\nvcplui.exe
- 2007-12-18 18:55:00	1,089,536	----a-w	C:\WINDOWS\system32\nvcuda.dll
+ 2008-03-24 17:52:00	1,126,400	----a-w	C:\WINDOWS\system32\nvcuda.dll
- 2007-12-18 18:55:00	6,549,504	----a-w	C:\WINDOWS\system32\nvdisps.dll
+ 2008-03-24 17:52:00	6,582,272	----a-w	C:\WINDOWS\system32\nvdisps.dll
- 2007-12-18 18:55:00	1,339,392	----a-w	C:\WINDOWS\system32\nvdspsch.exe
+ 2008-03-24 17:52:00	1,339,392	----a-w	C:\WINDOWS\system32\nvdspsch.exe
- 2007-12-18 18:55:00	307,200	----a-w	C:\WINDOWS\system32\nvexpbar.dll
+ 2008-03-24 17:52:00	313,888	----a-w	C:\WINDOWS\system32\nvexpbar.dll
- 2007-12-18 18:55:00	3,420,160	----a-w	C:\WINDOWS\system32\nvgames.dll
+ 2008-03-24 17:52:00	3,469,312	----a-w	C:\WINDOWS\system32\nvgames.dll
- 2007-12-18 18:55:00	1,474,560	----a-w	C:\WINDOWS\system32\nview.dll
+ 2008-03-24 17:52:00	1,482,752	----a-w	C:\WINDOWS\system32\nview.dll
- 2007-12-18 18:55:00	229,376	----a-w	C:\WINDOWS\system32\nvmccs.dll
+ 2008-03-24 17:52:00	229,376	----a-w	C:\WINDOWS\system32\nvmccs.dll
- 2007-12-18 18:55:00	45,056	----a-w	C:\WINDOWS\system32\nvmccsrs.dll
+ 2008-03-24 17:52:00	45,056	----a-w	C:\WINDOWS\system32\nvmccsrs.dll
- 2007-12-18 18:55:00	188,416	----a-w	C:\WINDOWS\system32\nvmccss.dll
+ 2008-03-24 17:52:00	188,416	----a-w	C:\WINDOWS\system32\nvmccss.dll
- 2007-12-18 18:55:00	81,920	----a-w	C:\WINDOWS\system32\nvmctray.dll
+ 2008-03-24 17:52:00	86,016	----a-w	C:\WINDOWS\system32\nvmctray.dll
- 2007-12-18 18:55:00	1,228,800	----a-w	C:\WINDOWS\system32\nvmobls.dll
+ 2008-03-24 17:52:00	1,257,472	----a-w	C:\WINDOWS\system32\nvmobls.dll
- 2007-12-18 18:55:00	286,720	----a-w	C:\WINDOWS\system32\nvnt4cpl.dll
+ 2008-03-24 17:52:00	286,720	----a-w	C:\WINDOWS\system32\nvnt4cpl.dll
- 2007-12-18 18:55:00	6,901,760	----a-w	C:\WINDOWS\system32\nvoglnt.dll
+ 2008-03-24 17:52:00	8,634,368	----a-w	C:\WINDOWS\system32\nvoglnt.dll
- 2007-12-18 18:55:00	466,944	----a-w	C:\WINDOWS\system32\nvshell.dll
+ 2008-03-24 17:52:00	466,944	----a-w	C:\WINDOWS\system32\nvshell.dll
- 2007-12-18 18:55:00	155,716	----a-w	C:\WINDOWS\system32\nvsvc32.exe
+ 2008-03-24 17:52:00	155,716	----a-w	C:\WINDOWS\system32\nvsvc32.exe
- 2007-12-18 18:55:00	3,710,976	----a-w	C:\WINDOWS\system32\nvvitvs.dll
+ 2008-03-24 17:52:00	3,776,512	----a-w	C:\WINDOWS\system32\nvvitvs.dll
- 2007-12-18 18:55:00	81,920	----a-w	C:\WINDOWS\system32\nvwddi.dll
+ 2008-03-24 17:52:00	81,920	----a-w	C:\WINDOWS\system32\nvwddi.dll
- 2007-12-18 18:55:00	1,703,936	----a-w	C:\WINDOWS\system32\nvwdmcpl.dll
+ 2008-03-24 17:52:00	1,703,936	----a-w	C:\WINDOWS\system32\nvwdmcpl.dll
- 2007-12-18 18:55:00	1,019,904	----a-w	C:\WINDOWS\system32\nvwimg.dll
+ 2008-03-24 17:52:00	1,019,904	----a-w	C:\WINDOWS\system32\nvwimg.dll
- 2007-12-18 18:55:00	2,498,560	----a-w	C:\WINDOWS\system32\nvwss.dll
+ 2008-03-24 17:52:00	2,629,632	----a-w	C:\WINDOWS\system32\nvwss.dll
- 2007-12-18 18:55:00	1,626,112	----a-w	C:\WINDOWS\system32\nwiz.exe
+ 2008-03-24 17:52:00	1,626,112	----a-w	C:\WINDOWS\system32\nwiz.exe
- 2004-08-03 23:03:20	96,768	----a-w	C:\WINDOWS\system32\occache.dll
+ 2007-08-13 17:44:06	101,376	----a-w	C:\WINDOWS\system32\occache.dll
- 2008-02-29 21:20:39	62,732	----a-w	C:\WINDOWS\system32\perfc009.dat
+ 2008-05-11 11:01:03	62,732	----a-w	C:\WINDOWS\system32\perfc009.dat
- 2008-02-29 21:20:39	71,212	----a-w	C:\WINDOWS\system32\perfc014.dat
+ 2008-05-11 11:01:03	71,212	----a-w	C:\WINDOWS\system32\perfc014.dat
- 2008-02-29 21:20:39	401,644	----a-w	C:\WINDOWS\system32\perfh009.dat
+ 2008-05-11 11:01:03	401,644	----a-w	C:\WINDOWS\system32\perfh009.dat
- 2008-02-29 21:20:39	405,862	----a-w	C:\WINDOWS\system32\perfh014.dat
+ 2008-05-11 11:01:03	405,862	----a-w	C:\WINDOWS\system32\perfh014.dat
- 2004-08-03 23:03:22	39,424	----a-w	C:\WINDOWS\system32\pngfilt.dll
+ 2007-08-13 17:36:12	44,544	----a-w	C:\WINDOWS\system32\pngfilt.dll
+ 2007-12-18 18:55:00	5,773,568	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nv4_disp.dll
+ 2007-12-18 18:55:00	7,435,136	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nv4_mini.sys
+ 2007-12-18 18:55:00	385,024	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvapi.dll
+ 2007-12-18 18:55:00	35,328	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvcod.dll
+ 2007-12-18 18:55:00	8,523,776	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvcpl.dll
+ 2007-12-18 18:55:00	1,089,536	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvcuda.dll
+ 2007-12-18 18:55:00	6,549,504	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvdisps.dll
+ 2007-12-18 18:55:00	5,611,520	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvdispsr.dll
+ 2007-12-18 18:55:00	3,420,160	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvgames.dll
+ 2007-12-18 18:55:00	3,334,144	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvgamesr.dll
+ 2007-12-18 18:55:00	229,376	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvmccs.dll
+ 2007-12-18 18:55:00	188,416	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvmccss.dll
+ 2007-12-18 18:55:00	458,752	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvmccssr.dll
+ 2007-12-18 18:55:00	81,920	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvmctray.dll
+ 2007-12-18 18:55:00	1,228,800	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvmobls.dll
+ 2007-12-18 18:55:00	2,854,912	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvmoblsr.dll
+ 2007-12-18 18:55:00	286,720	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvnt4cpl.dll
+ 2007-12-18 18:55:00	6,901,760	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvoglnt.dll
+ 2007-12-18 18:55:00	155,716	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvsvc32.exe
+ 2007-12-18 18:55:00	3,710,976	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvvitvs.dll
+ 2007-12-18 18:55:00	3,715,072	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvvitvsr.dll
+ 2007-12-18 18:55:00	81,920	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvwddi.dll
+ 2007-12-18 18:55:00	2,498,560	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvwss.dll
+ 2007-12-18 18:55:00	2,519,040	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]016\DriverFiles\nvwssr.dll
+ 2007-10-09 00:36:00	5,755,264	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nv4_disp.dll
+ 2007-10-09 00:36:00	7,399,936	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nv4_mini.sys
+ 2007-10-09 00:36:00	380,928	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvapi.dll
+ 2007-10-09 00:36:00	36,864	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvcod.dll
+ 2007-10-09 00:36:00	8,527,872	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvcpl.dll
+ 2007-10-09 00:36:00	6,541,312	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvdisps.dll
+ 2007-10-09 00:36:00	5,611,520	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvdispsr.dll
+ 2007-10-09 00:36:00	3,411,968	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvgames.dll
+ 2007-10-09 00:36:00	3,330,048	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvgamesr.dll
+ 2007-10-09 00:36:00	229,376	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvmccs.dll
+ 2007-10-09 00:36:00	188,416	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvmccss.dll
+ 2007-10-09 00:36:00	458,752	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvmccssr.dll
+ 2007-10-09 00:36:00	81,920	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvmctray.dll
+ 2007-10-09 00:36:00	1,212,416	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvmobls.dll
+ 2007-10-09 00:36:00	2,854,912	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvmoblsr.dll
+ 2007-10-09 00:36:00	286,720	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvnt4cpl.dll
+ 2007-10-09 00:36:00	6,897,664	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvoglnt.dll
+ 2007-10-09 00:36:00	155,716	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvsvc32.exe
+ 2007-10-09 00:36:00	3,698,688	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvvitvs.dll
+ 2007-10-09 00:36:00	3,715,072	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvvitvsr.dll
+ 2007-10-09 00:36:00	81,920	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvwddi.dll
+ 2007-10-09 00:36:00	2,486,272	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvwss.dll
+ 2007-10-09 00:36:00	2,519,040	----a-w	C:\WINDOWS\system32\ReinstallBackups\[u]0[/u]017\DriverFiles\nvwssr.dll
- 2004-08-03 23:03:22	1,483,776	----a-w	C:\WINDOWS\system32\shdocvw.dll
+ 2006-09-23 12:12:50	1,497,088	----a-w	C:\WINDOWS\system32\shdocvw.dll
- 2004-08-03 23:03:22	473,600	----a-w	C:\WINDOWS\system32\shlwapi.dll
+ 2006-09-23 12:12:50	474,112	----a-w	C:\WINDOWS\system32\shlwapi.dll
+ 2001-10-09 12:00:00	1,744	----a-w	C:\WINDOWS\system32\sound.drv
- 2005-08-31 13:50:12	14,048	------w	C:\WINDOWS\system32\spmsg.dll
+ 2006-09-06 16:43:16	14,048	------w	C:\WINDOWS\system32\spmsg.dll
+ 2006-09-06 16:43:16	22,752	----a-w	C:\WINDOWS\system32\spupdsvc.exe
- 2001-10-09 12:00:00	8,192	----a-w	C:\WINDOWS\system32\tsbyuv.dll
+ 2001-10-06 13:02:38	8,192	----a-w	C:\WINDOWS\system32\tsbyuv.dll
- 2004-08-03 23:03:26	37,888	----a-w	C:\WINDOWS\system32\url.dll
+ 2007-08-13 17:44:30	105,984	----a-w	C:\WINDOWS\system32\url.dll
- 2004-08-03 23:03:26	601,088	----a-w	C:\WINDOWS\system32\urlmon.dll
+ 2007-08-13 17:54:10	1,162,240	----a-w	C:\WINDOWS\system32\urlmon.dll
- 2004-08-03 23:03:26	417,792	----a-w	C:\WINDOWS\system32\vbscript.dll
+ 2007-08-13 17:54:10	413,696	----a-w	C:\WINDOWS\system32\vbscript.dll
+ 2004-08-04 00:03:26	53,760	----a-w	C:\WINDOWS\system32\vfwwdm32.dll
+ 2001-10-09 12:00:00	2,176	----a-w	C:\WINDOWS\system32\vga.drv
- 2004-08-03 23:03:26	402,944	----a-w	C:\WINDOWS\system32\webcheck.dll
+ 2007-08-13 17:54:10	231,424	----a-w	C:\WINDOWS\system32\webcheck.dll
+ 2007-08-13 17:45:16	206,336	------w	C:\WINDOWS\system32\WinFXDocObj.exe
- 2004-08-03 23:03:26	655,872	----a-w	C:\WINDOWS\system32\wininet.dll
+ 2007-08-13 17:54:10	818,688	----a-w	C:\WINDOWS\system32\wininet.dll
+ 2001-10-09 12:00:00	2,864	----a-w	C:\WINDOWS\system32\winsock.dll
+ 2001-10-09 12:00:00	2,112	----a-w	C:\WINDOWS\system32\winspool.exe
+ 2001-10-09 12:00:00	2,736	----a-w	C:\WINDOWS\system32\wowdeb.exe
+ 2005-09-28 12:46:30	1,184,984	----a-w	C:\WINDOWS\system32\wvc1dmod.dll
- 2007-07-19 23:54:28	18,280	----a-w	C:\WINDOWS\system32\x3daudio1_2.dll
+ 2007-10-22 02:37:16	17,928	----a-w	C:\WINDOWS\system32\X3DAudio1_2.dll
+ 2007-10-22 02:39:54	267,272	----a-w	C:\WINDOWS\system32\xactengine2_10.dll
+ 2006-07-14 15:51:51	121,856	------w	C:\WINDOWS\system32\xmllite.dll
+ 2000-08-31 06:00:00	49,152	----a-w	C:\WINDOWS\VFind.exe
+ 2008-04-19 10:47:05	37,888	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.FlightSimulator.SimConnect_67c7c14424d61b5b_10.0.60905.0_x-ww_429211e9\SimConnect.dll
+ 2008-04-19 11:06:49	38,912	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.FlightSimulator.SimConnect_67c7c14424d61b5b_10.0.61242.0_x-ww_35e8ee9a\SimConnect.dll
+ 2008-04-19 10:47:03	1,230,336	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.1.0.0_x-ww_b319d8da\msxml4.dll
+ 2008-04-19 11:00:25	1,233,920	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9818.0_x-ww_8ff50c5d\msxml4.dll
+ 2008-04-19 10:47:03	82,432	----a-w	C:\WINDOWS\WinSxS\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.0.0_x-ww_29c3ad6a\msxml4r.dll
+ 2000-08-31 06:00:00	68,096	----a-w	C:\WINDOWS\zip.exe
.
-- Snapshot reset to current date --
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 01:03 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="C:\Programfiler\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 01:47 31016]
"nwiz"="nwiz.exe" [2008-03-24 19:52 1626112 C:\WINDOWS\system32\nwiz.exe]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2008-03-24 19:52 13524992]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2008-03-24 19:52 86016]
"QuickTime Task"="C:\Programfiler\QuickTime\QTTask.exe" [2008-03-28 23:37 413696]
"iTunesHelper"="C:\Programfiler\iTunes\iTunesHelper.exe" [2008-03-30 10:36 267048]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 01:03 15360]
"AVG7_Run"="C:\PROGRA~1\Grisoft\AVG7\avgw.exe" [2008-05-10 18:04 219136]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"=hex(2):76,69,73,74,61,75,69,2e,65,78,65,00

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.XFR1"= xfcodec.dll

[HKLM\~\startupfolder\C:^Documents and Settings^Simen^Start-meny^Programmer^Oppstart^Xfire.lnk]
path=C:\Documents and Settings\Simen\Start-meny\Programmer\Oppstart\Xfire.lnk
backup=C:\WINDOWS\pss\Xfire.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ALi5289]
--------- 2005-03-10 15:56 405504 C:\Programfiler\ULI5289\ALi5289.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC]
--a------ 2008-05-10 18:22 579584 C:\PROGRA~1\Grisoft\AVG7\avgcc.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Blaero Start Orb]
C:\Programfiler\Blaero Start Orb\Blaero Start Orb.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Comrade.exe]
C:\Programfiler\GameSpy\Comrade\Comrade.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
--a------ 2004-08-04 01:03 15360 C:\WINDOWS\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
C:\Programfiler\DAEMON Tools\daemon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
--a------ 2007-09-06 15:08 136136 C:\Programfiler\DAEMON Tools Pro\DTProAgent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDDHealth]
F:\Programfiler\HDD Health\HDDHealth.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2008-03-30 10:36 267048 C:\Programfiler\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
C:\WINDOWS\system32\dumprep 0 -k

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Launch Ai Booster]
C:\Programfiler\ASUS\Ai Booster\OverClk.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LClock]
C:\Programfiler\LClock\LClock.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Programfiler\Fellesfiler\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
--a------ 2008-03-24 19:52 13524992 C:\WINDOWS\system32\NvCpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NVIDIA nTune]
C:\Programfiler\NVIDIA Corporation\nTune\\nTune.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
--a------ 2008-03-24 19:52 86016 C:\WINDOWS\system32\NvMcTray.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
--a------ 2008-03-24 19:52 1626112 C:\WINDOWS\system32\nwiz.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\P17Helper]
--a------ 2005-05-03 20:38 64512 C:\WINDOWS\system32\P17.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
--a------ 2007-08-07 02:05 200704 C:\Programfiler\PowerISO\PWRISOVM.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-03-28 23:37 413696 C:\Programfiler\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RivaTunerStartupDaemon]
--a------ 2007-10-30 20:05 2650112 C:\Programfiler\RivaTuner v2.06\RivaTuner.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Programfiler\Skype\Phone\Skype.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
--a------ 2007-04-16 16:28 577536 C:\WINDOWS\soundman.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
--a------ 2008-03-28 20:46 1271032 C:\Programfiler\Steam\Steam.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Styler]
C:\Programfiler\Styler\Styler.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2007-09-25 02:11 132496 C:\Programfiler\Java\jre1.6.0_03\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Vista Sidebar]
C:\Programfiler\Vista Sidebar\sidebar.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VisualTooltip]
--a------ 2006-10-06 10:21 942080 C:\Programfiler\VisualTooltip\VisualToolTip.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"usnjsvc"=3 (0x3)
"PnkBstrA"=2 (0x2)
"mnmsrvc"=3 (0x3)
"iPod Service"=3 (0x3)
"ImapiService"=3 (0x3)
"helpsvc"=2 (0x2)
"ERSvc"=2 (0x2)
"Apple Mobile Device"=2 (0x2)
"NBService"=3 (0x3)
"Microsoft Office Groove Audit Service"=3 (0x3)
"aawservice"=2 (0x2)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Programfiler\\LimeWire\\LimeWire.exe"=
"C:\\Programfiler\\Azureus\\Azureus.exe"=
"C:\\Programfiler\\Counter-Strike 1.6\\hl.exe"=
"C:\\Programfiler\\MSN Messenger\\msnmsgr.exe"=
"C:\\Programfiler\\MSN Messenger\\livecall.exe"=
"C:\\Programfiler\\Steam\\SteamApps\\nauitque\\counter-strike source\\hl2.exe"=
"C:\\Programfiler\\Electronic Arts\\Crytek\\Crysis\\Bin32\\Crysis.exe"=
"C:\\Programfiler\\Electronic Arts\\Crytek\\Crysis\\Bin32\\CrysisDedicatedServer.exe"=
"C:\\WINDOWS\\system32\\PnkBstrA.exe"=
"C:\\WINDOWS\\system32\\PnkBstrB.exe"=
"C:\\Programfiler\\Aspyr\\Guitar Hero III\\gh3.exe"=
"C:\\Programfiler\\Opera\\Opera.exe"=
"C:\\Programfiler\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"C:\\Programfiler\\Microsoft Office\\Office12\\GROOVE.EXE"=
"C:\\Programfiler\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"C:\\Programfiler\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Dx9.exe"=
"C:\\Programfiler\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Dx10.exe"=
"C:\\Programfiler\\Ubisoft\\Assassin's Creed\\AssassinsCreed_Launcher.exe"=
"C:\\Programfiler\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=
"C:\\Programfiler\\Sierra Entertainment\\World in Conflict\\wic.exe"=
"C:\\Programfiler\\Sierra Entertainment\\World in Conflict\\wic_online.exe"=
"C:\\Programfiler\\Sierra Entertainment\\World in Conflict\\wic_ds.exe"=
"C:\\Programfiler\\EA GAMES\\Battlefield 2\\BF2.exe"=
"C:\\Programfiler\\Codemasters\\DiRT\\DiRT.exe"=
"C:\\Programfiler\\Grisoft\\AVG7\\avginet.exe"=
"C:\\Programfiler\\Grisoft\\AVG7\\avgamsvr.exe"=
"C:\\Programfiler\\Grisoft\\AVG7\\avgcc.exe"=
"C:\\Programfiler\\iTunes\\iTunes.exe"=

R0 m5289;m5289;C:\WINDOWS\system32\DRIVERS\m5289.sys [2004-12-01 11:49]
R3 ULI5261XP;ULi M526X Ethernet NT Driver;C:\WINDOWS\system32\DRIVERS\ULILAN51.SYS [2005-03-22 21:36]
S1 SysTool;SysTool Overclocking Utility;C:\WINDOWS\system32\DRIVERS\SysTool.sys [2006-11-10 15:08]
S3 BS_DEF;BS_DEF;C:\Programfiler\ASUS\AsusUpdate\BS_DEF.sys []
S3 p17filt;p17filt;C:\WINDOWS\system32\drivers\p17filt.sys [2006-03-20 19:34]
S3 PciCon;PciCon;D:\PciCon.sys []
S3 sea1bus;Sony Ericsson Device 0A1 driver (WDM);C:\WINDOWS\system32\DRIVERS\sea1bus.sys [2007-01-04 13:01]
S3 sea1mdfl;Sony Ericsson Device 0A1 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\sea1mdfl.sys [2007-01-04 13:01]
S3 sea1mdm;Sony Ericsson Device 0A1 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\sea1mdm.sys [2007-01-04 13:01]
S3 sea1mgmt;Sony Ericsson Device 0A1 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\sea1mgmt.sys [2007-01-04 13:01]
S3 sea1nd5;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (NDIS);C:\WINDOWS\system32\DRIVERS\sea1nd5.sys [2007-01-04 13:01]
S3 sea1obex;Sony Ericsson Device 0A1 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\sea1obex.sys [2007-01-04 13:01]
S3 sea1unic;Sony Ericsson Device 0A1 USB Ethernet Emulation SEMCA1 (WDM);C:\WINDOWS\system32\DRIVERS\sea1unic.sys [2007-01-04 13:01]
S3 VM30xx86;Vimicro USB PC Camera (ZC030x);C:\WINDOWS\system32\Drivers\vm30xx86.sys [2007-01-29 13:21]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
\Shell\AutoRun\command - F:\dvdcheck.exe
\Shell\directx\command - DirectX9\dxsetup.exe
\Shell\setup\command - F:\setup.exe

*Newly Created Service* - CATCHME
.
Contents of the 'Scheduled Tasks' folder
"2008-05-10 20:17:24 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Programfiler\Apple Software Update\SoftwareUpdate.exe
"2008-05-10 22:00:01 C:\WINDOWS\Tasks\At1.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 07:00:01 C:\WINDOWS\Tasks\At10.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 08:00:01 C:\WINDOWS\Tasks\At11.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 09:00:01 C:\WINDOWS\Tasks\At12.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 10:00:01 C:\WINDOWS\Tasks\At13.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 11:00:01 C:\WINDOWS\Tasks\At14.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 12:00:01 C:\WINDOWS\Tasks\At15.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 13:00:01 C:\WINDOWS\Tasks\At16.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 14:00:01 C:\WINDOWS\Tasks\At17.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 15:00:01 C:\WINDOWS\Tasks\At18.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 16:00:01 C:\WINDOWS\Tasks\At19.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-10 23:00:01 C:\WINDOWS\Tasks\At2.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 17:00:01 C:\WINDOWS\Tasks\At20.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 18:00:01 C:\WINDOWS\Tasks\At21.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-10 19:00:02 C:\WINDOWS\Tasks\At22.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-10 20:00:03 C:\WINDOWS\Tasks\At23.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-10 21:00:01 C:\WINDOWS\Tasks\At24.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-10 22:24:05 C:\WINDOWS\Tasks\At25.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-10 23:00:05 C:\WINDOWS\Tasks\At26.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 00:00:05 C:\WINDOWS\Tasks\At27.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 01:00:05 C:\WINDOWS\Tasks\At28.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 02:00:05 C:\WINDOWS\Tasks\At29.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 00:00:01 C:\WINDOWS\Tasks\At3.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 03:00:05 C:\WINDOWS\Tasks\At30.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 04:00:05 C:\WINDOWS\Tasks\At31.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 05:00:05 C:\WINDOWS\Tasks\At32.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 06:00:05 C:\WINDOWS\Tasks\At33.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 07:00:05 C:\WINDOWS\Tasks\At34.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 08:00:05 C:\WINDOWS\Tasks\At35.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 09:00:05 C:\WINDOWS\Tasks\At36.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 10:55:31 C:\WINDOWS\Tasks\At37.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 11:00:00 C:\WINDOWS\Tasks\At38.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 12:00:05 C:\WINDOWS\Tasks\At39.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 01:00:01 C:\WINDOWS\Tasks\At4.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 13:00:05 C:\WINDOWS\Tasks\At40.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 14:00:05 C:\WINDOWS\Tasks\At41.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 15:00:05 C:\WINDOWS\Tasks\At42.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 16:00:05 C:\WINDOWS\Tasks\At43.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 17:00:05 C:\WINDOWS\Tasks\At44.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 18:00:05 C:\WINDOWS\Tasks\At45.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-10 20:13:53 C:\WINDOWS\Tasks\At46.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-10 20:00:06 C:\WINDOWS\Tasks\At47.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 09:22:28 C:\WINDOWS\Tasks\At48.job"
- C:\WINDOWS\system32\lnqASrmb.exe
"2008-05-11 02:00:01 C:\WINDOWS\Tasks\At5.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 03:00:01 C:\WINDOWS\Tasks\At6.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 04:00:01 C:\WINDOWS\Tasks\At7.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 05:00:01 C:\WINDOWS\Tasks\At8.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
"2008-05-11 06:00:01 C:\WINDOWS\Tasks\At9.job"
- C:\WINDOWS\system32\EMP0ruaJ.exe
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-11 20:01:56
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ... 

scanning hidden autostart entries ...

scanning hidden files ... 

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\cpuz128]
"ImagePath"="\??\C:\DOCUME~1\Simen\LOKALE~1\Temp\cpuz_x32.sys"
.
Completion time: 2008-05-11 20:04:02
ComboFix-quarantined-files.txt  2008-05-11 18:04:00
ComboFix2.txt  2008-03-05 20:21:14

Pre-Run: 102,950,035,456 byte ledig
Post-Run: 103,033,757,696 byte ledig

793